Network Analysis

GET / HTTP/1.1 Host: www.google.com Connection: Keep-Alive

HTTP/1.1 200 OK Date: Fri, 13 Aug 2021 00:51:24 GMT Expires: -1 Cache-Control: private, max-age=0 Content-Type: text/html; charset=ISO-8859-1 P3P: CP="This is not a P3P policy! See g.co/p3phelp for more info." Server: gws X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN Set-Cookie: 1P_JAR=2021-08-13-00; expires=Sun, 12-Sep-2021 00:51:24 GMT; path=/; domain=.google.com; Secure Set-Cookie: NID=221=gzKSTSeYSsXVPQmN-TsEcSu6z0sQUgudQbrgKf6h5AuqM3tfemMcy5CJmF78DFXwFqyki70WHOiPJltU08-2NXEEW60ue3WCOfEDIRtvCyk4GD2Jcee4YbYlU6Kwr6F-nbZto0A5L_qa_Y0DtnQLRrAwA2tMtfMtpspG6kKG4kQ; expires=Sat, 12-Feb-2022 00:51:24 GMT; path=/; domain=.google.com; HttpOnly Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-T051=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" Accept-Ranges: none Vary: Accept-Encoding Transfer-Encoding: chunked

GET / HTTP/1.1 Host: www.bing.com Connection: Keep-Alive

HTTP/1.1 200 OK Cache-Control: private Transfer-Encoding: chunked Content-Type: text/html; charset=utf-8 P3P: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND" Set-Cookie: MUID=1F20DA914A576AFC2D01CA034B1C6B0F; domain=.bing.com; expires=Wed, 07-Sep-2022 00:51:24 GMT; path=/; secure; SameSite=None Set-Cookie: MUIDB=1F20DA914A576AFC2D01CA034B1C6B0F; expires=Wed, 07-Sep-2022 00:51:24 GMT; path=/ Set-Cookie: _EDGE_S=F=1&SID=1AF38CBA98446DC02B199C28990F6CA6; domain=.bing.com; path=/ Set-Cookie: _EDGE_V=1; domain=.bing.com; expires=Wed, 07-Sep-2022 00:51:24 GMT; path=/ Set-Cookie: SRCHD=AF=NOFORM; domain=.bing.com; expires=Sun, 13-Aug-2023 00:51:24 GMT; path=/ Set-Cookie: SRCHUID=V=2&GUID=3D24A7A064B044358A37960280481445&dmnchg=1; domain=.bing.com; expires=Sun, 13-Aug-2023 00:51:24 GMT; path=/ Set-Cookie: SRCHUSR=DOB=20210813; domain=.bing.com; expires=Sun, 13-Aug-2023 00:51:24 GMT; path=/ Set-Cookie: SRCHHPGUSR=SRCHLANG=ko; domain=.bing.com; expires=Sun, 13-Aug-2023 00:51:24 GMT; path=/ Set-Cookie: _SS=SID=1AF38CBA98446DC02B199C28990F6CA6; domain=.bing.com; path=/ Set-Cookie: ULC=; domain=.bing.com; expires=Thu, 12-Aug-2021 00:51:24 GMT; path=/ Set-Cookie: _HPVN=CS=eyJQbiI6eyJDbiI6MSwiU3QiOjAsIlFzIjowLCJQcm9kIjoiUCJ9LCJTYyI6eyJDbiI6MSwiU3QiOjAsIlFzIjowLCJQcm9kIjoiSCJ9LCJReiI6eyJDbiI6MSwiU3QiOjAsIlFzIjowLCJQcm9kIjoiVCJ9LCJBcCI6dHJ1ZSwiTXV0ZSI6dHJ1ZSwiTGFkIjoiMjAyMS0wOC0xM1QwMDowMDowMFoiLCJJb3RkIjowLCJEZnQiOm51bGwsIk12cyI6MCwiRmx0IjowLCJJbXAiOjF9; domain=.bing.com; expires=Sun, 13-Aug-2023 00:51:24 GMT; path=/ X-SNR-Routing: 1 Strict-Transport-Security: max-age=31536000; includeSubDomains; preload X-Cache: CONFIG_NOCACHE X-MSEdge-Ref: Ref A: 1FB224EEFA7E410BB441B0F3B8430B91 Ref B: SLAEDGE0316 Ref C: 2021-08-13T00:51:24Z Date: Fri, 13 Aug 2021 00:51:24 GMT

POST /niot/ HTTP/1.1 Host: www.thingstodoindunedin.com Connection: close Content-Length: 284 Cache-Control: no-cache Origin: http://www.thingstodoindunedin.com User-Agent: Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; Win64; x64; Trident/5.0) Content-Type: application/x-www-form-urlencoded Accept: */* Referer: http://www.thingstodoindunedin.com/niot/ Accept-Language: en-US Accept-Encoding: gzip, deflate

HTTP/1.1 502 Bad Gateway Connection: close Date: Fri, 13 Aug 2021 00:52:50 GMT Content-Length: 0

GET /niot/?EZU4Dv=48uOoX6Wc2hsKvIrOtn0ApaRaENJVHQfIumx6wM4fMbKLWvSbJa5dB449gGtDQ00apEQBZxS&DzrLW=VBZHTpkXnd1TKz HTTP/1.1 Host: www.thingstodoindunedin.com Connection: close

HTTP/1.1 400 Bad Request Cache-Control: no-cache, must-revalidate Content-Length: 77564 Content-Type: text/html; charset=UTF-8 Date: Fri, 13 Aug 2021 00:52:50 UTC Expires: Thu, 01 Jan 1970 00:00:00 UTC Pragma: no-cache Server: Squarespace X-Contextid: EDoFhqQn/AOGZz1bD Connection: close

POST /niot/ HTTP/1.1 Host: www.gardencitybmt.com Connection: close Content-Length: 284 Cache-Control: no-cache Origin: http://www.gardencitybmt.com User-Agent: Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; Win64; x64; Trident/5.0) Content-Type: application/x-www-form-urlencoded Accept: */* Referer: http://www.gardencitybmt.com/niot/ Accept-Language: en-US Accept-Encoding: gzip, deflate

HTTP/1.1 502 Bad Gateway Connection: close Date: Fri, 13 Aug 2021 00:52:56 GMT Content-Length: 0

GET /niot/?EZU4Dv=ZaqbUaYvDjuGQr0EDqqcWZh9vPIpKnCjn6oCX8HmduoUF/2PWdF8sZmlygdtdl7q61ZcKLMo&DzrLW=VBZHTpkXnd1TKz HTTP/1.1 Host: www.gardencitybmt.com Connection: close

HTTP/1.1 400 Bad Request Cache-Control: no-cache, must-revalidate Content-Length: 77564 Content-Type: text/html; charset=UTF-8 Date: Fri, 13 Aug 2021 00:52:56 UTC Expires: Thu, 01 Jan 1970 00:00:00 UTC Pragma: no-cache Server: Squarespace X-Contextid: tmeRU9hN/8sMrAXol Connection: close

POST /niot/ HTTP/1.1 Host: www.finanzasparamamas.com Connection: close Content-Length: 284 Cache-Control: no-cache Origin: http://www.finanzasparamamas.com User-Agent: Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; Win64; x64; Trident/5.0) Content-Type: application/x-www-form-urlencoded Accept: */* Referer: http://www.finanzasparamamas.com/niot/ Accept-Language: en-US Accept-Encoding: gzip, deflate

GET /niot/?EZU4Dv=YkTW+uzHL3SLBgk98Yosihv/KnE1sA5ZUP1MhCVnb/WzKuMtU2Nje3FBoHkkeJnSDHuX0U/l&DzrLW=VBZHTpkXnd1TKz HTTP/1.1 Host: www.finanzasparamamas.com Connection: close

HTTP/1.1 302 Found Date: Fri, 13 Aug 2021 00:53:19 GMT Content-Type: text/html; charset=utf-8 Transfer-Encoding: chunked Connection: close Location: https://www.finanzasparamamas.com/gratis CF-Ray: 67ddf7394f823513-ICN Access-Control-Allow-Origin: * Cache-Control: no-cache Vary: Accept-Encoding CF-Cache-Status: MISS Access-Control-Allow-Credentials: true Access-Control-Allow-Headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization Access-Control-Allow-Methods: GET, PUT, POST, DELETE, PATCH, OPTIONS Status: 302 Found X-Frame-Options: ALLOWALL X-Powered-By: Phusion Passenger Enterprise 6.0.7 X-Rack-Cache: miss X-Request-Id: c833a7e4cef6b4953bb8225eb3443f79 X-Runtime: 0.101012 Set-Cookie: __cf_bm=73acd896dec614438b3f48d560af2a6249166e7d-1628815999-1800-AWdgBoCnjneuBeoEZ+5H1rttrPV73igNXOEqlWYjmjGRyoFH1MFEf45aALkYHWX/5amj9UxoowwrKfbrdNs6VHnXBIEij6l70sNo4ruv0uCL; path=/; expires=Fri, 13-Aug-21 01:23:19 GMT; domain=.www.finanzasparamamas.com; HttpOnly Server: cloudflare