Network Analysis

GET /wufn/?kDHl=+cvcaH9t4IGOvfSH2s/pGQCzCoMlKLNX9S4pg+CdqO+ehvTRSw4m6C0WiIEOYf+cYXNRRXby&KtxD=PnCTGx9Pf HTTP/1.1 Host: www.gaigoilaocai.com Connection: close

HTTP/1.1 301 Moved Permanently Date: Tue, 17 Aug 2021 00:57:01 GMT Transfer-Encoding: chunked Connection: close Cache-Control: max-age=3600 Expires: Tue, 17 Aug 2021 01:57:01 GMT Location: https://www.gaigoilaocai.com/wufn/?kDHl=+cvcaH9t4IGOvfSH2s/pGQCzCoMlKLNX9S4pg+CdqO+ehvTRSw4m6C0WiIEOYf+cYXNRRXby&KtxD=PnCTGx9Pf Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=BjIh5QLJ8yQWDnJH3Dy9hlwMTyQ9ZVXT43aQzzOAtHVtF7nZ4Nt9NoiUZOuGjHPyzMXhv8jbfu1kfsWiUFA0u%2FkbSEYKrHJcIh57BozFZIEnn3x%2ByGi%2FATeltmRHfBqP%2BZSVh%2FHnYA%3D%3D"}],"group":"cf-nel","max_age":604800} NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} Server: cloudflare CF-RAY: 67fef2275c7f0cd3-LAX alt-svc: h3-27=":443"; ma=86400, h3-28=":443"; ma=86400, h3-29=":443"; ma=86400, h3=":443"; ma=86400

GET /wufn/?kDHl=Mbz3eb2htBuwJm9my9qYpH4UWvi7L1jn54VVewVZerqVccc7GhECZ0+c8NYoPjvN/okzts0t&KtxD=PnCTGx9Pf HTTP/1.1 Host: www.hk6628.com Connection: close

HTTP/1.1 403 Forbidden Server: openresty Date: Tue, 17 Aug 2021 00:57:06 GMT Content-Type: text/html Content-Length: 275 ETag: "611a0e51-113" Via: 1.1 google Connection: close

GET /wufn/?kDHl=hrdaP+EsGTITsCagZnHefT6Bmc518UuvQeiOjF2tcIDpZFKKlutoy9+nHdETp4OhFNJGJnoo&KtxD=PnCTGx9Pf HTTP/1.1 Host: www.iqpt.info Connection: close

HTTP/1.1 302 Found Server: nginx Date: Tue, 17 Aug 2021 00:57:12 GMT Content-Type: text/html; charset=UTF-8 Content-Length: 0 Set-Cookie: anon_u=cHN1X19kNDQ2NDdmMC0yZDY4LTQ1MDEtYjVhNS0yZjcwYjEzNTI0NzU=|1629161832|7e3042d367822ed33903d116c67e5bec2d45d6fe; Domain=www.iqpt.info; expires=Sun, 13 Feb 2022 00:57:12 GMT; httponly; Path=/; secure Strict-Transport-Security: max-age=1209600 Location: https://bitly.com/pages/landing/branded-short-domains-powered-by-bitly?bsd=iqpt.info Pragma: no-cache Cache-Control: no-cache, no-store, max-age=0, must-revalidate X-Frame-Options: DENY P3p: CP="CAO PSA OUR" Via: 1.1 google Connection: close

GET /wufn/?kDHl=SehEse1yNcuBWox84Asm4eELW9pHyFfqJvW7VO2nDRTT0VQDXxZnF10XUkI9sb+IBYeHWwT5&KtxD=PnCTGx9Pf HTTP/1.1 Host: www.recipesdunnright.com Connection: close

GET /wufn/?kDHl=XjXBhjUVI334M/Uwl7gvZZ0GeOD10IACqOCIbULeYHXWrIpOZW21ZlaOwQdpB6LWbxxYrGle&KtxD=PnCTGx9Pf HTTP/1.1 Host: www.zwq.xyz Connection: close

HTTP/1.1 404 Not Found Server: nginx/1.16.1 Date: Tue, 17 Aug 2021 01:01:08 GMT Content-Type: text/html Content-Length: 153 Connection: close Vary: Accept-Encoding

GET /wufn/?kDHl=p6EPLUx6SmQWyT0aKUYWey1/moK0HCihbvuUxAKosV5aIj7OYHg92cDuRvb6vmm9eY3daRqd&KtxD=PnCTGx9Pf HTTP/1.1 Host: www.setadragon.com Connection: close

HTTP/1.1 200 OK Date: Tue, 17 Aug 2021 00:57:36 GMT Server: Apache Set-Cookie: vsid=926vr3767074569339715; expires=Sun, 16-Aug-2026 00:57:36 GMT; Max-Age=157680000; path=/; domain=www.setadragon.com; HttpOnly X-Adblock-Key: MFwwDQYJKoZIhvcNAQEBBQADSwAwSAJBAKX74ixpzVyXbJprcLfbH4psP4+L2entqri0lzh6pkAaXLPIcclv6DQBeJJjGFWrBIF6QMyFwXT5CCRyjS2penECAwEAAQ==_AzV2SkHfNGA5sBw4yoJlx7ZSvsLl2KIL9kT9mhLTXCLWMzTlK3lGVvjfI/1UjoZOLrADMPqXWKxzZ3lBkvOgYw== Keep-Alive: timeout=5, max=126 Connection: Keep-Alive Transfer-Encoding: chunked Content-Type: text/html; charset=UTF-8

GET /wufn/?kDHl=jUqWC+wM+s2Yehearj52syV+yALdMbb6PeN2CvBJSFCwW1HLktm3ATZosqzbiXJTH9I2JiE2&KtxD=PnCTGx9Pf HTTP/1.1 Host: www.rootmoover.com Connection: close

HTTP/1.1 403 Forbidden Date: Tue, 17 Aug 2021 00:57:42 GMT Content-Type: text/html Transfer-Encoding: chunked Connection: close Vary: Accept-Encoding X-Sorting-Hat-PodId: -1 X-Request-ID: db264982-f76f-497f-8f81-7a4b85d6a6b4 X-XSS-Protection: 1; mode=block X-Download-Options: noopen X-Content-Type-Options: nosniff X-Permitted-Cross-Domain-Policies: none X-Dc: gcp-us-central1 CF-Cache-Status: DYNAMIC Server: cloudflare CF-RAY: 67fef328e9abeaf0-LAX alt-svc: h3-27=":443"; ma=86400, h3-28=":443"; ma=86400, h3-29=":443"; ma=86400, h3=":443"; ma=86400

GET /wufn/?kDHl=Zc0zQFnrMcwVTscPp4D3wnK22drhHRSNJ7F8xfTSBTL6y4OaZRoxz+uo8RGanShoJ1lpBNes&KtxD=PnCTGx9Pf HTTP/1.1 Host: www.talleresmulticar.com Connection: close

HTTP/1.1 301 Moved Permanently Server: nginx Date: Tue, 17 Aug 2021 00:57:48 GMT Content-Type: text/html Content-Length: 162 Connection: close Location: https://www.talleresmulticar.com/wufn/?kDHl=Zc0zQFnrMcwVTscPp4D3wnK22drhHRSNJ7F8xfTSBTL6y4OaZRoxz+uo8RGanShoJ1lpBNes&KtxD=PnCTGx9Pf Host-Header: 8441280b0c35cbc1147f8ba998a563a7 X-HTTPS-Enforce: 1 X-Proxy-Cache-Info: DT:1

GET /wufn/?kDHl=dH6MS4iXfwK5vVCsjjY0pJ1yp3fpUyK5ZhheQrTomEU+/cdclqzrfoafLlR5qbdrvg8w2+Rd&KtxD=PnCTGx9Pf HTTP/1.1 Host: www.mimortgageexpert.com Connection: close

HTTP/1.1 403 Forbidden Server: nginx Date: Tue, 17 Aug 2021 00:58:06 GMT Content-Type: text/html Content-Length: 146 Connection: close

GET /wufn/?kDHl=+zzRrn2LuczUop/Cd/o3ZSAnv7QTnqViuhwHS4/CIqz6rF5318dL6hgqnxmK9Gf+t0N7z3vJ&KtxD=PnCTGx9Pf HTTP/1.1 Host: www.solanohomebuyerclass.com Connection: close

HTTP/1.1 302 Found Connection: close Pragma: no-cache cache-control: no-cache Location: /wufn/?kDHl=+zzRrn2LuczUop/Cd/o3ZSAnv7QTnqViuhwHS4/CIqz6rF5318dL6hgqnxmK9Gf+t0N7z3vJ&KtxD=PnCTGx9Pf