Network Analysis

GET /build/Agent/win/2203318943744/desktop_single_agent-d47545d41d.exe HTTP/1.1 Cache-Control: no-cache Connection: Keep-Alive Pragma: no-cache User-Agent: Google Update/1.3.107.1;winhttp X-Old-UID: cnt=1 X-Last-HR: 0x80072f7d X-Last-HTTP-Status-Code: 0 X-Retry-Count: 0 X-HTTP-Attempts: 2 Host: lumu-updates.s3.amazonaws.com

HTTP/1.1 200 OK x-amz-id-2: LzhR6kSmDgVfX07sR7xss8U/bpIJwF7lIW+/ve7kHvQlCPCkgOXtFqJI6bmd5JGIbPhU1FltzC4= x-amz-request-id: MVVWPHZJMM4DJHPP Date: Fri, 23 Aug 2024 11:06:32 GMT Last-Modified: Thu, 23 May 2024 15:18:10 GMT ETag: "8438df02ba5aab4ae7998393611b7251" x-amz-server-side-encryption: AES256 Accept-Ranges: bytes Content-Type: application/x-msdownload Server: AmazonS3 Content-Length: 2761096

GET / HTTP/1.1 Connection: Keep-Alive Accept: */* User-Agent: Microsoft-CryptoAPI/6.1 Host: x1.i.lencr.org

HTTP/1.1 200 OK Server: nginx Content-Type: application/pkix-cert Last-Modified: Fri, 04 Aug 2023 20:57:56 GMT ETag: "64cd6654-56f" Content-Disposition: attachment; filename="ISRG Root X1.der" Cache-Control: max-age=54444 Expires: Sat, 24 Aug 2024 02:13:33 GMT Date: Fri, 23 Aug 2024 11:06:09 GMT Content-Length: 1391 Connection: keep-alive

GET / HTTP/1.1 Connection: Keep-Alive Accept: */* User-Agent: Microsoft-CryptoAPI/6.1 Host: x1.i.lencr.org

HTTP/1.1 200 OK Server: nginx Content-Type: application/pkix-cert Last-Modified: Fri, 04 Aug 2023 20:57:56 GMT ETag: "64cd6654-56f" Content-Disposition: attachment; filename="ISRG Root X1.der" Cache-Control: max-age=54433 Expires: Sat, 24 Aug 2024 02:13:22 GMT Date: Fri, 23 Aug 2024 11:06:09 GMT Content-Length: 1391 Connection: keep-alive

POST /service/update2 HTTP/1.1 Cache-Control: no-cache Connection: Keep-Alive Pragma: no-cache User-Agent: Google Update/1.3.107.1;winhttp X-Old-UID: age=-1; cnt=1 X-Goog-Update-Updater: Omaha-1.3.107.1 X-Goog-Update-Interactivity: bg X-Last-HR: 0x0 X-Last-HTTP-Status-Code: 0 X-Retry-Count: 0 X-HTTP-Attempts: 1 Content-Length: 742 Host: client-updates.lumu.io

HTTP/1.1 200 OK Server: nginx Date: Fri, 23 Aug 2024 11:06:23 GMT Content-Type: text/xml; charset=utf-8 Content-Length: 250 Connection: keep-alive X-Frame-Options: DENY X-Content-Type-Options: nosniff Referrer-Policy: same-origin Cross-Origin-Opener-Policy: same-origin

POST /service/update2?cup2key=1:aiyktIlMWjC_YDIJkn6k3-6XqffwkP2DaBfamURTQIA&cup2hreq=a4125a8074c9af063159ba78027272f9671c42488dea9878a9c5f20b4b7c8dc7 HTTP/1.1 Cache-Control: no-cache Connection: Keep-Alive Pragma: no-cache User-Agent: Google Update/1.3.107.1;winhttp;cup-ecdsa X-Old-UID: cnt=1 X-Goog-Update-AppId: {F29544FA-DF33-470F-90E9-B19EF24DF010} X-Goog-Update-Updater: Omaha-1.3.107.1 X-Goog-Update-Interactivity: fg X-Last-HR: 0x0 X-Last-HTTP-Status-Code: 0 X-Retry-Count: 0 X-HTTP-Attempts: 1 Content-Length: 690 Host: client-updates.lumu.io

HTTP/1.1 200 OK Server: nginx Date: Fri, 23 Aug 2024 11:06:24 GMT Content-Type: text/xml; charset=utf-8 Content-Length: 870 Connection: keep-alive X-Frame-Options: DENY X-Content-Type-Options: nosniff Referrer-Policy: same-origin Cross-Origin-Opener-Policy: same-origin ETag: 30460221008ac756b8afdfff14b56b7d778fb1618a93006a0c55491699f0c45ea07f81bda70221009b9dd5e192a3454503f7e33b39457c76552426432bb300e7051985532fccf7b4:a4125a8074c9af063159ba78027272f9671c42488dea9878a9c5f20b4b7c8dc7

POST /service/update2 HTTP/1.1 Cache-Control: no-cache Connection: Keep-Alive Pragma: no-cache User-Agent: Google Update/1.3.107.1;winhttp X-Old-UID: cnt=1 X-Goog-Update-Updater: Omaha-1.3.107.1 X-Goog-Update-Interactivity: bg X-Last-HR: 0x0 X-Last-HTTP-Status-Code: 0 X-Retry-Count: 0 X-HTTP-Attempts: 1 Content-Length: 1619 Host: client-updates.lumu.io

HTTP/1.1 200 OK Server: nginx Date: Fri, 23 Aug 2024 11:07:00 GMT Content-Type: text/xml; charset=utf-8 Content-Length: 400 Connection: keep-alive X-Frame-Options: DENY X-Content-Type-Options: nosniff Referrer-Policy: same-origin Cross-Origin-Opener-Policy: same-origin