Network Analysis

POST /dyeb/ HTTP/1.1 Host: www.treeremovalkingwood.com Connection: close Content-Length: 174 Cache-Control: no-cache Origin: http://www.treeremovalkingwood.com User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.1; Win64; x64; Trident/5.0; .NET CLR 2.0.50727; SLCC2; .NET CLR 3.5.30729; .NET CLR 3.0.30729; .NET4.0C; .NET4.0E; InfoPath.3) Content-Type: application/x-www-form-urlencoded Accept: */* Referer: http://www.treeremovalkingwood.com/dyeb/ Accept-Language: en-US Accept-Encoding: gzip, deflate

HTTP/1.1 301 Moved Permanently Date: Thu, 25 May 2023 00:38:58 GMT Transfer-Encoding: chunked Connection: close Cache-Control: max-age=3600 Expires: Thu, 25 May 2023 01:38:58 GMT Location: https://landandtreeservices.com/ Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=tiU1L6VKesabFfnOycfe9PzqxKLkBn5qncX0DiZqxAWcdxZIFlJz5DfkIM3wKcZ6uaWwc%2BaF2XgkahxSDPDiPpkmjKTNfuOkEZK32Z%2BgSGnybVDIegH8J7EC3yGEC%2FfQk0Adig%2F9FuKmbrx23UE%3D"}],"group":"cf-nel","max_age":604800} NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} Vary: Accept-Encoding Server: cloudflare CF-RAY: 7cc9b7f74b3c1a09-KIX alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400

GET /dyeb/?2lH7=ot2zVt7gYiYVRQ9vvNmBHR7+ThDbtsc5ek8bGz74xX5U1doydBpcmiSkVy8u8MuUFpWdZPDPZrAoOHnwm5gEHBkymeZFezCBl1qs2nQ=&vVy=lpZFPvqgan42T HTTP/1.1 Host: www.treeremovalkingwood.com Connection: close

HTTP/1.1 301 Moved Permanently Date: Thu, 25 May 2023 00:39:00 GMT Transfer-Encoding: chunked Connection: close Cache-Control: max-age=3600 Expires: Thu, 25 May 2023 01:39:00 GMT Location: https://landandtreeservices.com/ Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=yeD9Aa0rVyp4wdMY%2BRg8dfNjJRek1xRCI4gz%2Bm33nruDd%2BNA3vT6JTls5XKfsFoRl3CqRWuUyQG1jOqNO8%2BiKVqVQCWv2oPiolL9MzyWk9QHR%2FNCLgMErXtul8CohYMfFUKHhmikUTvpMOilr9c%3D"}],"group":"cf-nel","max_age":604800} NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} Server: cloudflare CF-RAY: 7cc9b807180d19f0-KIX alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400

GET /2019/sqlite-dll-win32-x86-3280000.zip HTTP/1.1 Accept: */* Accept-Encoding: gzip, deflate User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.1; WOW64; Trident/5.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; .NET4.0C; .NET4.0E; InfoPath.3) Host: www.sqlite.org Connection: Keep-Alive

HTTP/1.1 200 OK Connection: keep-alive Date: Thu, 25 May 2023 00:39:04 GMT Last-Modified: Tue, 09 Jul 2019 09:49:15 GMT Cache-Control: max-age=120 ETag: "m5d24631bs762f9" Content-type: application/zip; charset=utf-8 Content-length: 484089

POST /dyeb/ HTTP/1.1 Host: www.sk676.com Connection: close Content-Length: 3414 Cache-Control: no-cache Origin: http://www.sk676.com User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.1; Win64; x64; Trident/5.0; .NET CLR 2.0.50727; SLCC2; .NET CLR 3.5.30729; .NET CLR 3.0.30729; .NET4.0C; .NET4.0E; InfoPath.3) Content-Type: application/x-www-form-urlencoded Accept: */* Referer: http://www.sk676.com/dyeb/ Accept-Language: en-US Accept-Encoding: gzip, deflate

POST /dyeb/ HTTP/1.1 Host: www.sk676.com Connection: close Content-Length: 186 Cache-Control: no-cache Origin: http://www.sk676.com User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.1; Win64; x64; Trident/5.0; .NET CLR 2.0.50727; SLCC2; .NET CLR 3.5.30729; .NET CLR 3.0.30729; .NET4.0C; .NET4.0E; InfoPath.3) Content-Type: application/x-www-form-urlencoded Accept: */* Referer: http://www.sk676.com/dyeb/ Accept-Language: en-US Accept-Encoding: gzip, deflate

GET /dyeb/?2lH7=eRDn4OYLwGAFOe+oMCQszUCYwMg+uVi8ZbKWpPBz42pRqgBZU372Jy+dcILn2QiWfPdOhu0Hdz7kmVVrr+zaLBc9OSgj6EJ8eLn4AGY=&vVy=lpZFPvqgan42T HTTP/1.1 Host: www.sk676.com Connection: close

HTTP/1.1 200 OK Server: nginx Date: Thu, 25 May 2023 00:39:21 GMT Content-Type: text/html Content-Length: 1889 Connection: close Vary: Accept-Encoding

POST /dyeb/ HTTP/1.1 Host: www.gullsteam.com Connection: close Content-Length: 3414 Cache-Control: no-cache Origin: http://www.gullsteam.com User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.1; Win64; x64; Trident/5.0; .NET CLR 2.0.50727; SLCC2; .NET CLR 3.5.30729; .NET CLR 3.0.30729; .NET4.0C; .NET4.0E; InfoPath.3) Content-Type: application/x-www-form-urlencoded Accept: */* Referer: http://www.gullsteam.com/dyeb/ Accept-Language: en-US Accept-Encoding: gzip, deflate

HTTP/1.1 404 Not Found Server: nginx/1.14.1 Date: Thu, 25 May 2023 00:39:28 GMT Content-Length: 0 Connection: close X-Rate-Limit-Limit: 5s X-Rate-Limit-Remaining: 9 X-Rate-Limit-Reset: 2023-05-25T00:39:33.0850146Z

POST /dyeb/ HTTP/1.1 Host: www.gullsteam.com Connection: close Content-Length: 186 Cache-Control: no-cache Origin: http://www.gullsteam.com User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.1; Win64; x64; Trident/5.0; .NET CLR 2.0.50727; SLCC2; .NET CLR 3.5.30729; .NET CLR 3.0.30729; .NET4.0C; .NET4.0E; InfoPath.3) Content-Type: application/x-www-form-urlencoded Accept: */* Referer: http://www.gullsteam.com/dyeb/ Accept-Language: en-US Accept-Encoding: gzip, deflate

HTTP/1.1 404 Not Found Server: nginx/1.14.1 Date: Thu, 25 May 2023 00:39:30 GMT Content-Length: 0 Connection: close X-Rate-Limit-Limit: 5s X-Rate-Limit-Remaining: 8 X-Rate-Limit-Reset: 2023-05-25T00:39:33.0850146Z