Network Analysis

POST /wdhc/ HTTP/1.1 Host: www.bloombathbombs.com Connection: close Content-Length: 286 Cache-Control: no-cache Origin: http://www.bloombathbombs.com User-Agent: Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; Win64; x64; Trident/5.0) Content-Type: application/x-www-form-urlencoded Accept: */* Referer: http://www.bloombathbombs.com/wdhc/ Accept-Language: en-US Accept-Encoding: gzip, deflate

GET /wdhc/?XRm0zD6x=Es2RL7ETYJMjLsjERN1lcxAyqHM3gPvC7jfKXp5P0BAnxIVDyWZz5xeNY17RRs6Z+z5zNg1k&V4=CXFL6 HTTP/1.1 Host: www.bloombathbombs.com Connection: close

HTTP/1.1 403 Forbidden Date: Wed, 08 Sep 2021 01:07:52 GMT Content-Type: text/html Transfer-Encoding: chunked Connection: close Vary: Accept-Encoding X-Sorting-Hat-PodId: 165 X-Sorting-Hat-ShopId: 47026438310 X-Dc: gcp-asia-northeast2 X-Request-ID: ef474293-bb9f-402a-af27-f635b19a4a84 X-Download-Options: noopen X-Content-Type-Options: nosniff X-Permitted-Cross-Domain-Policies: none X-XSS-Protection: 1; mode=block CF-Cache-Status: DYNAMIC Server: cloudflare CF-RAY: 68b4484b5a080a42-KIX alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400, h3-28=":443"; ma=86400, h3-27=":443"; ma=86400

POST /wdhc/ HTTP/1.1 Host: www.xn--i1b6ewaaie7gm.com Connection: close Content-Length: 286 Cache-Control: no-cache Origin: http://www.xn--i1b6ewaaie7gm.com User-Agent: Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; Win64; x64; Trident/5.0) Content-Type: application/x-www-form-urlencoded Accept: */* Referer: http://www.xn--i1b6ewaaie7gm.com/wdhc/ Accept-Language: en-US Accept-Encoding: gzip, deflate

HTTP/1.1 405 Not Allowed Server: openresty Date: Wed, 08 Sep 2021 01:08:02 GMT Content-Type: text/html Content-Length: 556 X-Adblock-Key: MFwwDQYJKoZIhvcNAQEBBQADSwAwSAJBAJRmzcpTevQqkWn6dJuX/N/Hxl7YxbOwy8+73ijqYSQEN+WGxrruAKtZtliWC86+ewQ0msW1W8psOFL/b00zWqsCAwEAAQ_LtemXpEO9swjRWDYLnRUu5ALn0YdTk1l5rmMDwRGOm/HGOpQhEL5zsWPRGec7havuAviXYx7CFY9HWOpyk5ZCg Via: 1.1 google Connection: close

GET /wdhc/?XRm0zD6x=0LiCscd4a7tI1zgKVF8S+rUGSV/54ZmkWb1WgMQi+fSgg1lYhx/FQ5t44sMewl7CbCPqX6d4&V4=CXFL6 HTTP/1.1 Host: www.xn--i1b6ewaaie7gm.com Connection: close

HTTP/1.1 403 Forbidden Server: openresty Date: Wed, 08 Sep 2021 01:08:02 GMT Content-Type: text/html Content-Length: 275 ETag: "6130b7cc-113" Via: 1.1 google Connection: close

POST /wdhc/ HTTP/1.1 Host: www.webtinchap.com Connection: close Content-Length: 286 Cache-Control: no-cache Origin: http://www.webtinchap.com User-Agent: Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; Win64; x64; Trident/5.0) Content-Type: application/x-www-form-urlencoded Accept: */* Referer: http://www.webtinchap.com/wdhc/ Accept-Language: en-US Accept-Encoding: gzip, deflate

HTTP/1.1 405 Method Not Allowed Content-Type: text/html; charset=UTF-8 Content-Encoding: gzip Date: Wed, 08 Sep 2021 01:08:08 GMT Expires: Wed, 08 Sep 2021 01:08:08 GMT Cache-Control: private, max-age=0 X-Content-Type-Options: nosniff X-XSS-Protection: 1; mode=block Content-Length: 127 Server: GSE Connection: close

GET /wdhc/?XRm0zD6x=OWqWFeXUvcYjnVbfh3wKs9xVY9LZ1xcjdI/DmFSv+ONwutCEFIA/Zdh+BBdL9yWKptOZcTg1&V4=CXFL6 HTTP/1.1 Host: www.webtinchap.com Connection: close

HTTP/1.1 301 Moved Permanently Location: https://www.webtinchap.com/wdhc/?XRm0zD6x=OWqWFeXUvcYjnVbfh3wKs9xVY9LZ1xcjdI/DmFSv+ONwutCEFIA/Zdh+BBdL9yWKptOZcTg1&V4=CXFL6 Content-Type: text/html; charset=UTF-8 Date: Wed, 08 Sep 2021 01:08:08 GMT Expires: Wed, 08 Sep 2021 01:08:08 GMT Cache-Control: private, max-age=0 X-Content-Type-Options: nosniff X-Frame-Options: SAMEORIGIN Content-Security-Policy: frame-ancestors 'self' X-XSS-Protection: 1; mode=block Server: GSE Accept-Ranges: none Vary: Accept-Encoding Transfer-Encoding: chunked Connection: close

POST /wdhc/ HTTP/1.1 Host: www.ez-skin.com Connection: close Content-Length: 286 Cache-Control: no-cache Origin: http://www.ez-skin.com User-Agent: Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; Win64; x64; Trident/5.0) Content-Type: application/x-www-form-urlencoded Accept: */* Referer: http://www.ez-skin.com/wdhc/ Accept-Language: en-US Accept-Encoding: gzip, deflate

GET /wdhc/?XRm0zD6x=hHcB1VF6gDirRlefmXVbqwZcvdb0sQI2CijSGZ0QjQGvt1HSnIQLaIN/81JJPY4ZtN7YRgzA&V4=CXFL6 HTTP/1.1 Host: www.ez-skin.com Connection: close

HTTP/1.1 403 Forbidden Date: Wed, 08 Sep 2021 01:08:13 GMT Content-Type: text/html Transfer-Encoding: chunked Connection: close Vary: Accept-Encoding X-Sorting-Hat-PodId: 186 X-Sorting-Hat-ShopId: 47218655386 X-Request-ID: 726a7591-249f-4b92-8a65-f7c5aaa0e3df X-Permitted-Cross-Domain-Policies: none X-XSS-Protection: 1; mode=block X-Download-Options: noopen X-Content-Type-Options: nosniff X-Dc: gcp-asia-northeast2 CF-Cache-Status: DYNAMIC Server: cloudflare CF-RAY: 68b448d27c3ffced-KIX alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400, h3-28=":443"; ma=86400, h3-27=":443"; ma=86400