Network Analysis

POST /wufn/ HTTP/1.1 Host: www.laterlifelendingsupermarket.com Connection: close Content-Length: 281 Cache-Control: no-cache Origin: http://www.laterlifelendingsupermarket.com User-Agent: Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; Win64; x64; Trident/5.0) Content-Type: application/x-www-form-urlencoded Accept: */* Referer: http://www.laterlifelendingsupermarket.com/wufn/ Accept-Language: en-US Accept-Encoding: gzip, deflate

HTTP/1.0 200 OK Date: Tue, 17 Aug 2021 00:56:10 GMT Server: Apache Connection: close Content-Type: text/html; charset=iso-8859-1

GET /wufn/?wPT=JK53FQapth9VDdSHXGajN0L5nsR3wCbJsKyzCV6oZDicv5erkPKtybHomSqu7DQ5sf8AoARo&oXN=6lSd02cp HTTP/1.1 Host: www.laterlifelendingsupermarket.com Connection: close

HTTP/1.1 200 OK Date: Tue, 17 Aug 2021 00:56:10 GMT Server: Apache Connection: close Transfer-Encoding: chunked Content-Type: text/html; charset=iso-8859-1

POST /wufn/ HTTP/1.1 Host: www.theforumonline.com Connection: close Content-Length: 281 Cache-Control: no-cache Origin: http://www.theforumonline.com User-Agent: Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; Win64; x64; Trident/5.0) Content-Type: application/x-www-form-urlencoded Accept: */* Referer: http://www.theforumonline.com/wufn/ Accept-Language: en-US Accept-Encoding: gzip, deflate

HTTP/1.1 301 Moved Permanently Date: Tue, 17 Aug 2021 00:56:15 GMT Server: Apache Location: https://theforumonline.com/wufn/ Content-Length: 240 Connection: close Content-Type: text/html; charset=iso-8859-1

GET /wufn/?wPT=oMJPIIffiJ/xnzh2dmE4H4v++ePVGdJ47Cs+qN5CdohcdEg0FINWW3sNxjaQaIOEvkNj7L2f&oXN=6lSd02cp HTTP/1.1 Host: www.theforumonline.com Connection: close

HTTP/1.1 301 Moved Permanently Date: Tue, 17 Aug 2021 00:56:16 GMT Server: Apache Location: https://theforumonline.com/wufn/?wPT=oMJPIIffiJ/xnzh2dmE4H4v++ePVGdJ47Cs+qN5CdohcdEg0FINWW3sNxjaQaIOEvkNj7L2f&oXN=6lSd02cp Content-Length: 334 Connection: close Content-Type: text/html; charset=iso-8859-1

POST /wufn/ HTTP/1.1 Host: www.rootmoover.com Connection: close Content-Length: 281 Cache-Control: no-cache Origin: http://www.rootmoover.com User-Agent: Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; Win64; x64; Trident/5.0) Content-Type: application/x-www-form-urlencoded Accept: */* Referer: http://www.rootmoover.com/wufn/ Accept-Language: en-US Accept-Encoding: gzip, deflate

GET /wufn/?wPT=jUqWC+wM+s2Yehearj52syV+yALdMbb6PeN2CvBJSFCwW1HLktm3ATZosqzbiXJTH9I2JiE2&oXN=6lSd02cp HTTP/1.1 Host: www.rootmoover.com Connection: close

HTTP/1.1 403 Forbidden Date: Tue, 17 Aug 2021 00:56:21 GMT Content-Type: text/html Transfer-Encoding: chunked Connection: close Vary: Accept-Encoding X-Sorting-Hat-PodId: -1 X-Dc: gcp-us-central1 X-Request-ID: 05027958-f046-4ed7-a95e-02118cedd44d X-Permitted-Cross-Domain-Policies: none X-XSS-Protection: 1; mode=block X-Download-Options: noopen X-Content-Type-Options: nosniff CF-Cache-Status: DYNAMIC Server: cloudflare CF-RAY: 67fef12fbe9e5239-LAX alt-svc: h3-27=":443"; ma=86400, h3-28=":443"; ma=86400, h3-29=":443"; ma=86400, h3=":443"; ma=86400

POST /wufn/ HTTP/1.1 Host: www.talleresmulticar.com Connection: close Content-Length: 281 Cache-Control: no-cache Origin: http://www.talleresmulticar.com User-Agent: Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; Win64; x64; Trident/5.0) Content-Type: application/x-www-form-urlencoded Accept: */* Referer: http://www.talleresmulticar.com/wufn/ Accept-Language: en-US Accept-Encoding: gzip, deflate

HTTP/1.1 301 Moved Permanently Server: nginx Date: Tue, 17 Aug 2021 00:56:27 GMT Content-Type: text/html Content-Length: 162 Connection: close Location: https://www.talleresmulticar.com/wufn/ Host-Header: 8441280b0c35cbc1147f8ba998a563a7 X-HTTPS-Enforce: 1 X-Proxy-Cache-Info: DT:1

GET /wufn/?wPT=Zc0zQFnrMcwVTscPp4D3wnK22drhHRSNJ7F8xfTSBTL6y4OaZRoxz+uo8RGanShoJ1lpBNes&oXN=6lSd02cp HTTP/1.1 Host: www.talleresmulticar.com Connection: close

HTTP/1.1 301 Moved Permanently Server: nginx Date: Tue, 17 Aug 2021 00:56:28 GMT Content-Type: text/html Content-Length: 162 Connection: close Location: https://www.talleresmulticar.com/wufn/?wPT=Zc0zQFnrMcwVTscPp4D3wnK22drhHRSNJ7F8xfTSBTL6y4OaZRoxz+uo8RGanShoJ1lpBNes&oXN=6lSd02cp Host-Header: 8441280b0c35cbc1147f8ba998a563a7 X-HTTPS-Enforce: 1 X-Proxy-Cache-Info: DT:1

POST /wufn/ HTTP/1.1 Host: www.setadragon.com Connection: close Content-Length: 281 Cache-Control: no-cache Origin: http://www.setadragon.com User-Agent: Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; Win64; x64; Trident/5.0) Content-Type: application/x-www-form-urlencoded Accept: */* Referer: http://www.setadragon.com/wufn/ Accept-Language: en-US Accept-Encoding: gzip, deflate

GET /wufn/?wPT=p6EPLUx6SmQWyT0aKUYWey1/moK0HCihbvuUxAKosV5aIj7OYHg92cDuRvb6vmm9eY3daRqd&oXN=6lSd02cp HTTP/1.1 Host: www.setadragon.com Connection: close

HTTP/1.1 200 OK Date: Tue, 17 Aug 2021 00:56:38 GMT Server: Apache Set-Cookie: vsid=928vr3767073990014582; expires=Sun, 16-Aug-2026 00:56:39 GMT; Max-Age=157680000; path=/; domain=www.setadragon.com; HttpOnly X-Adblock-Key: MFwwDQYJKoZIhvcNAQEBBQADSwAwSAJBAKX74ixpzVyXbJprcLfbH4psP4+L2entqri0lzh6pkAaXLPIcclv6DQBeJJjGFWrBIF6QMyFwXT5CCRyjS2penECAwEAAQ==_mn/7Ef7cO0CsY0W8XxcG9keoxqphcpzY31NcyQUp7XwUNOmP7D9f6FTZTmC3MNQyUV/ln+4VmfjzY/Zt5nUIUw== Keep-Alive: timeout=5, max=127 Connection: Keep-Alive Transfer-Encoding: chunked Content-Type: text/html; charset=UTF-8

POST /wufn/ HTTP/1.1 Host: www.zwq.xyz Connection: close Content-Length: 281 Cache-Control: no-cache Origin: http://www.zwq.xyz User-Agent: Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; Win64; x64; Trident/5.0) Content-Type: application/x-www-form-urlencoded Accept: */* Referer: http://www.zwq.xyz/wufn/ Accept-Language: en-US Accept-Encoding: gzip, deflate

GET /wufn/?wPT=XjXBhjUVI334M/Uwl7gvZZ0GeOD10IACqOCIbULeYHXWrIpOZW21ZlaOwQdpB6LWbxxYrGle&oXN=6lSd02cp HTTP/1.1 Host: www.zwq.xyz Connection: close

HTTP/1.1 404 Not Found Server: nginx/1.16.1 Date: Tue, 17 Aug 2021 01:00:21 GMT Content-Type: text/html Content-Length: 153 Connection: close Vary: Accept-Encoding

POST /wufn/ HTTP/1.1 Host: www.recipesdunnright.com Connection: close Content-Length: 281 Cache-Control: no-cache Origin: http://www.recipesdunnright.com User-Agent: Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; Win64; x64; Trident/5.0) Content-Type: application/x-www-form-urlencoded Accept: */* Referer: http://www.recipesdunnright.com/wufn/ Accept-Language: en-US Accept-Encoding: gzip, deflate

GET /wufn/?wPT=SehEse1yNcuBWox84Asm4eELW9pHyFfqJvW7VO2nDRTT0VQDXxZnF10XUkI9sb+IBYeHWwT5&oXN=6lSd02cp HTTP/1.1 Host: www.recipesdunnright.com Connection: close

POST /wufn/ HTTP/1.1 Host: www.mybodysaver.com Connection: close Content-Length: 281 Cache-Control: no-cache Origin: http://www.mybodysaver.com User-Agent: Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; Win64; x64; Trident/5.0) Content-Type: application/x-www-form-urlencoded Accept: */* Referer: http://www.mybodysaver.com/wufn/ Accept-Language: en-US Accept-Encoding: gzip, deflate

GET /wufn/?wPT=iAyrziyFF9RqM6kqTrR2Gz8v85ou6HqcZ1qFLOyqSC08U8XZpeh2g5fFjWykbq8K9Lt/Vzcu&oXN=6lSd02cp HTTP/1.1 Host: www.mybodysaver.com Connection: close

HTTP/1.1 301 Moved Permanently Date: Tue, 17 Aug 2021 00:56:56 GMT Content-Type: text/html; charset=iso-8859-1 Transfer-Encoding: chunked Connection: close location: https://www.mybodysaver.com/wufn/?wPT=iAyrziyFF9RqM6kqTrR2Gz8v85ou6HqcZ1qFLOyqSC08U8XZpeh2g5fFjWykbq8K9Lt/Vzcu&oXN=6lSd02cp CF-Cache-Status: DYNAMIC Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Ku9p0zqKjed18CCIb8Ym6dj9HjJl1PGlymE2R6UHlmUrjGpw2J1xKq4DyOA4AI4iLjktGdi0ZD5IFDo2lgXbA2T2WVS5A993M8qmuYEaW34KnQ45HOKRGruH4s2%2B9xOjqDTv9rf6"}],"group":"cf-nel","max_age":604800} NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} Server: cloudflare CF-RAY: 67fef2088a343689-LAX alt-svc: h3-27=":443"; ma=86400, h3-28=":443"; ma=86400, h3-29=":443"; ma=86400, h3=":443"; ma=86400

POST /wufn/ HTTP/1.1 Host: www.joneshondaservice.com Connection: close Content-Length: 281 Cache-Control: no-cache Origin: http://www.joneshondaservice.com User-Agent: Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; Win64; x64; Trident/5.0) Content-Type: application/x-www-form-urlencoded Accept: */* Referer: http://www.joneshondaservice.com/wufn/ Accept-Language: en-US Accept-Encoding: gzip, deflate

HTTP/1.1 301 Moved Permanently Date: Tue, 17 Aug 2021 00:57:02 GMT Server: Apache Expires: Wed, 11 Jan 1984 05:00:00 GMT Cache-Control: no-cache, must-revalidate, max-age=0 X-Redirect-By: WordPress Upgrade: h2,h2c Connection: Upgrade Location: https://www.joneshondaservice.com/wufn/ host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ== X-Endurance-Cache-Level: 2 Content-Length: 0 Content-Type: text/html; charset=UTF-8

GET /wufn/?wPT=cHwUMaOvOUl4mR2wsbRfLYaultZ7TSeYo2Z/vCzCk8dNTOF36Jse9g+x5El8dvRa2DMYrrKS&oXN=6lSd02cp HTTP/1.1 Host: www.joneshondaservice.com Connection: close

HTTP/1.1 301 Moved Permanently Date: Tue, 17 Aug 2021 00:57:02 GMT Server: nginx/1.19.10 Content-Type: text/html; charset=UTF-8 Content-Length: 0 Expires: Wed, 11 Jan 1984 05:00:00 GMT Cache-Control: no-cache, must-revalidate, max-age=0 X-Redirect-By: WordPress Location: https://www.joneshondaservice.com/wufn/?wPT=cHwUMaOvOUl4mR2wsbRfLYaultZ7TSeYo2Z/vCzCk8dNTOF36Jse9g+x5El8dvRa2DMYrrKS&oXN=6lSd02cp host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ== X-Endurance-Cache-Level: 2 X-Server-Cache: true X-Proxy-Cache: MISS