Network Analysis

POST /service/update2 HTTP/1.1 Cache-Control: no-cache Connection: Keep-Alive Pragma: no-cache User-Agent: Google Update/1.3.36.71;winhttp X-Old-UID: age=-1; cnt=1 X-Goog-Update-Updater: Omaha-1.3.36.71 X-Goog-Update-Interactivity: bg X-Last-HR: 0x0 X-Last-HTTP-Status-Code: 0 X-Retry-Count: 0 X-HTTP-Attempts: 1 Content-Length: 749 Host: flownetserv.com

HTTP/1.1 200 OK Date: Thu, 24 Jun 2021 14:14:08 GMT Content-Type: text/xml; charset=utf-8 Content-Length: 250 Connection: keep-alive X-Frame-Options: SAMEORIGIN CF-Cache-Status: DYNAMIC cf-request-id: 0adff80c380000fcd93c06c000000001 Expect-CT: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct" Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v2?s=qphnmlsCaSszEBIhY%2FTId%2B8%2BMJopiVmuW006G7v5qR%2FN2aa8wMQ1vYkavMedjFP54OmlyHlWS2xNihkNeRhybInuCOIRguzsxKvThkzME%2BlPilgOOJs1JprZ5cBM"}],"group":"cf-nel","max_age":604800} NEL: {"report_to":"cf-nel","max_age":604800} Server: cloudflare CF-RAY: 66468f8d1968fcd9-KIX alt-svc: h3-27=":443"; ma=86400, h3-28=":443"; ma=86400, h3-29=":443"; ma=86400, h3=":443"; ma=86400

POST /service/update2?cup2key=10:2041637316&cup2hreq=c44ca074fab98820e0ddea4abd5bbe7984d55eefb00cbc75bdb2c1c68dce87ec HTTP/1.1 Cache-Control: no-cache Connection: Keep-Alive Pragma: no-cache User-Agent: Google Update/1.3.36.71;winhttp;cup-ecdsa X-Old-UID: cnt=1 X-Goog-Update-AppId: {AB01C5D1-7F78-4A4E-A89B-0415F6466BCA} X-Goog-Update-Updater: Omaha-1.3.36.71 X-Goog-Update-Interactivity: fg X-Last-HR: 0x0 X-Last-HTTP-Status-Code: 0 X-Retry-Count: 0 X-HTTP-Attempts: 1 Content-Length: 664 Host: flownetserv.com

HTTP/1.1 200 OK Date: Thu, 24 Jun 2021 14:14:08 GMT Content-Type: text/xml; charset=utf-8 Content-Length: 946 Connection: keep-alive X-Frame-Options: SAMEORIGIN CF-Cache-Status: DYNAMIC cf-request-id: 0adff80cf80000fbd82d20f000000001 Expect-CT: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct" Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v2?s=BEs1qPfajN%2BT6dcwZQgE7IEHchsZWVNnfil94DiX9TqXs81SBdC1m85JTNjoUj6zOHICzw%2BHnU29i3tbzq8hUtRxGLQVaO%2BdVrUYi0ftcVZdwKkPvth5o2t%2Bx6IW"}],"group":"cf-nel","max_age":604800} NEL: {"report_to":"cf-nel","max_age":604800} Server: cloudflare CF-RAY: 66468f8e5bc5fbd8-KIX alt-svc: h3-27=":443"; ma=86400, h3-28=":443"; ma=86400, h3-29=":443"; ma=86400, h3=":443"; ma=86400

GET /app.php?ping=f%3D1%26a%3D3100%26u%3Dfldk-20210619-4126222-fbchff02%26p%3Dpa%26ck%3D430179789257580636%2F HTTP/1.1 User-Agent: NSIS_Inetc (Mozilla) Host: soloyama.com Connection: Keep-Alive Cache-Control: no-cache

HTTP/1.1 200 OK Server: nginx Date: Thu, 24 Jun 2021 14:14:42 GMT Content-Type: text/html; charset=UTF-8 Transfer-Encoding: chunked Connection: keep-alive P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT" Set-Cookie: _asd=16245440825417535; expires=Fri, 24-Jun-2022 14:14:42 GMT; Max-Age=31536000; path=/; samesite=none; domain=soloyama.com; secure

POST /service/update2 HTTP/1.1 Cache-Control: no-cache Connection: Keep-Alive Pragma: no-cache User-Agent: Google Update/1.3.36.71;winhttp X-Old-UID: cnt=1 X-Goog-Update-Updater: Omaha-1.3.36.71 X-Goog-Update-Interactivity: bg X-Last-HR: 0x0 X-Last-HTTP-Status-Code: 0 X-Retry-Count: 0 X-HTTP-Attempts: 1 Content-Length: 1402 Host: flownetserv.com

HTTP/1.1 200 OK Date: Thu, 24 Jun 2021 14:14:43 GMT Content-Type: text/xml; charset=utf-8 Content-Length: 375 Connection: keep-alive X-Frame-Options: SAMEORIGIN CF-Cache-Status: DYNAMIC cf-request-id: 0adff8940200000a4e6cbfb000000001 Expect-CT: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct" Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v2?s=mkCya6hsxcQUy9qhAKhhJfEDOioEDCD7qSuArYfpABRwcUvTpnpbSV1M3s6gVwMm2CY2mcBL9ndQsBRzbIUS4wlNPkUu6maWss1hD19zLkC4MyLHZSdqoIFZLovy"}],"group":"cf-nel","max_age":604800} NEL: {"report_to":"cf-nel","max_age":604800} Server: cloudflare CF-RAY: 664690666f500a4e-KIX alt-svc: h3-27=":443"; ma=86400, h3-28=":443"; ma=86400, h3-29=":443"; ma=86400, h3=":443"; ma=86400

HEAD /static/media/build/Flow%20Browser%20-%20SearchBip/stable/win/x64/97856822509658/Setup.exe HTTP/1.1 Connection: Keep-Alive Accept: */* Accept-Encoding: identity User-Agent: Microsoft BITS/7.5 X-Old-UID: cnt=1 X-Last-HR: 0x0 X-Last-HTTP-Status-Code: 0 X-Retry-Count: 0 X-HTTP-Attempts: 1 Host: flownetserv.com

HTTP/1.1 200 OK Date: Thu, 24 Jun 2021 14:14:11 GMT Content-Type: application/octet-stream Content-Length: 62909168 Connection: keep-alive Last-Modified: Fri, 09 Apr 2021 19:06:10 GMT ETag: "6070a5a2-3bfeaf0" Accept-Ranges: bytes CF-Cache-Status: DYNAMIC cf-request-id: 0adff817e40000fbe05c1a5000000001 Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v2?s=pw%2BVvoG3yMa7nt77mpAGt5tlElNuK5B8TER7olKSc1ocxm4uG9isojjFvDCYOefIlXTnivVVKsPcu1WZhZA1GlttrmZHtjENAYh6qTM73k9qLXTS1lUraEYRxV5L"}],"group":"cf-nel","max_age":604800} NEL: {"report_to":"cf-nel","max_age":604800} Server: cloudflare CF-RAY: 66468f9fdbe6fbe0-KIX alt-svc: h3-27=":443"; ma=86400, h3-28=":443"; ma=86400, h3-29=":443"; ma=86400, h3=":443"; ma=86400

GET /static/media/build/Flow%20Browser%20-%20SearchBip/stable/win/x64/97856822509658/Setup.exe HTTP/1.1 Connection: Keep-Alive Accept: */* Accept-Encoding: identity If-Unmodified-Since: Fri, 09 Apr 2021 19:06:10 GMT User-Agent: Microsoft BITS/7.5 X-Old-UID: cnt=1 X-Last-HR: 0x0 X-Last-HTTP-Status-Code: 0 X-Retry-Count: 0 X-HTTP-Attempts: 1 Host: flownetserv.com

HTTP/1.1 200 OK Date: Thu, 24 Jun 2021 14:14:11 GMT Content-Type: application/octet-stream Content-Length: 62909168 Connection: keep-alive Last-Modified: Fri, 09 Apr 2021 19:06:10 GMT ETag: "6070a5a2-3bfeaf0" Accept-Ranges: bytes CF-Cache-Status: DYNAMIC cf-request-id: 0adff8192c0000fbe0170bf000000001 Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v2?s=4w8kLjA2OQULzbual7q6br7gJXXOHQrJOvDET%2Bzp%2B6YjvWGLT7BNupeuIeJQ%2B1iot0DR5206z8YaSwlMM4%2FNUXobnl4R0GSUexTFBTEPTdsHK8f1xn4HwqoE4V19"}],"group":"cf-nel","max_age":604800} NEL: {"report_to":"cf-nel","max_age":604800} Server: cloudflare CF-RAY: 66468fa1e88cfbe0-KIX alt-svc: h3-27=":443"; ma=86400, h3-28=":443"; ma=86400, h3-29=":443"; ma=86400, h3=":443"; ma=86400

HEAD /edgedl/chromewebstore/L2Nocm9tZV9leHRlbnNpb24vYmxvYnMvYjFkQUFWdmlaXy12MHFUTGhWQUViMUVlUQ/0.57.44.2492_hnimpnehoodheedghdeeijklkeaacbdc.crx HTTP/1.1 Connection: Keep-Alive Accept: */* Accept-Encoding: identity User-Agent: Microsoft BITS/7.5 Host: edgedl.me.gvt1.com

HTTP/1.1 200 OK accept-ranges: bytes content-disposition: attachment content-length: 6760942 content-security-policy: default-src 'none' content-type: application/x-chrome-extension etag: "2e2fe7" last-modified: Wed, 10 Oct 2018 17:49:21 GMT server: Google-Edge-Cache x-content-type-options: nosniff x-frame-options: SAMEORIGIN x-xss-protection: 0 date: Wed, 23 Jun 2021 20:00:20 GMT age: 65720 alt-svc: h3=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-29=":443"; ma=2592000 cache-control: public,max-age=86400

GET /edgedl/chromewebstore/L2Nocm9tZV9leHRlbnNpb24vYmxvYnMvYjFkQUFWdmlaXy12MHFUTGhWQUViMUVlUQ/0.57.44.2492_hnimpnehoodheedghdeeijklkeaacbdc.crx HTTP/1.1 Connection: Keep-Alive Accept: */* Accept-Encoding: identity If-Unmodified-Since: Wed, 10 Oct 2018 17:49:21 GMT Range: bytes=0-5481 User-Agent: Microsoft BITS/7.5 Host: edgedl.me.gvt1.com

HTTP/1.1 206 Partial Content accept-ranges: bytes content-disposition: attachment content-length: 5482 content-security-policy: default-src 'none' content-type: application/x-chrome-extension etag: "2e2fe7" last-modified: Wed, 10 Oct 2018 17:49:21 GMT server: Google-Edge-Cache x-content-type-options: nosniff x-frame-options: SAMEORIGIN x-xss-protection: 0 date: Wed, 23 Jun 2021 20:00:20 GMT age: 65737 content-range: bytes 0-5481/6760942 alt-svc: h3=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-29=":443"; ma=2592000 cache-control: public,max-age=86400