Network Analysis

POST /ons6/ HTTP/1.1 Host: www.ilkermulla.com Connection: close Content-Length: 282 Cache-Control: no-cache Origin: http://www.ilkermulla.com User-Agent: Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; Win64; x64; Trident/5.0) Content-Type: application/x-www-form-urlencoded Accept: */* Referer: http://www.ilkermulla.com/ons6/ Accept-Language: en-US Accept-Encoding: gzip, deflate

HTTP/1.1 302 Found Date: Thu, 21 Oct 2021 09:28:06 GMT Server: Apache/2.4.25 (Debian) Set-Cookie: __tad=1634808486.4709869; expires=Sun, 19-Oct-2031 09:28:06 GMT; Max-Age=315360000 Location: http://ww25.ilkermulla.com/ons6/?subid1=20211021-2028-0690-a696-1e38c3905a2d Content-Length: 0 Connection: close Content-Type: text/html; charset=UTF-8

GET /ons6/?t8rL=htUh7pgQwNNfonrnVODaoHFM/ntRzGt2NReYjs2/5acpPEiDUC1M6/iirndOWmVYqwPaQDzl&1bVHT=mzrd HTTP/1.1 Host: www.ilkermulla.com Connection: close

HTTP/1.1 302 Found Date: Thu, 21 Oct 2021 09:28:06 GMT Server: Apache/2.4.25 (Debian) Set-Cookie: __tad=1634808486.6005780; expires=Sun, 19-Oct-2031 09:28:06 GMT; Max-Age=315360000 Location: http://ww25.ilkermulla.com/ons6/?t8rL=htUh7pgQwNNfonrnVODaoHFM/ntRzGt2NReYjs2/5acpPEiDUC1M6/iirndOWmVYqwPaQDzl&1bVHT=mzrd&subid1=20211021-2028-0689-a105-5d51e6841b00 Content-Length: 0 Connection: close Content-Type: text/html; charset=UTF-8

POST /ons6/ HTTP/1.1 Host: www.advertising.land Connection: close Content-Length: 282 Cache-Control: no-cache Origin: http://www.advertising.land User-Agent: Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; Win64; x64; Trident/5.0) Content-Type: application/x-www-form-urlencoded Accept: */* Referer: http://www.advertising.land/ons6/ Accept-Language: en-US Accept-Encoding: gzip, deflate

GET /ons6/?t8rL=5atXNRmUx37mOBRWSYjO7P9m1FhF1iu6rr12G6zuRSfmWlt8qfmLuUoCi3zjZJe340qI9kJw&1bVHT=mzrd HTTP/1.1 Host: www.advertising.land Connection: close

HTTP/1.1 404 Not Found Date: Thu, 21 Oct 2021 09:28:23 GMT Content-Length: 0 Connection: close CF-Cache-Status: DYNAMIC Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=PWXwW5iYo3OoTyMqA2iQJapnVRSjuLf8sb1R93%2BMOyMmS84OM9t7LLi1iupY%2Buw8PXaODbzw32XFpcYnJr%2FlNgVsPnTP2UK4DjLF1ND27rfN8OTb%2Bqpja4agMo0mA%2BSl4TiKhU%2F2xA%3D%3D"}],"group":"cf-nel","max_age":604800} NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} Server: cloudflare CF-RAY: 6a197499bb8f0a4a-KIX alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400, h3-28=":443"; ma=86400, h3-27=":443"; ma=86400

POST /ons6/ HTTP/1.1 Host: www.zitzies.xyz Connection: close Content-Length: 282 Cache-Control: no-cache Origin: http://www.zitzies.xyz User-Agent: Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; Win64; x64; Trident/5.0) Content-Type: application/x-www-form-urlencoded Accept: */* Referer: http://www.zitzies.xyz/ons6/ Accept-Language: en-US Accept-Encoding: gzip, deflate

GET /ons6/?t8rL=hZn+h4i3qdjTvlrFTGBuGCKYeL7fx9ifE9FggzQ92Zn9lbpv8mLmxbTq9s8XLHOhsR7FCksw&1bVHT=mzrd HTTP/1.1 Host: www.zitzies.xyz Connection: close

POST /ons6/ HTTP/1.1 Host: www.ancditalia.com Connection: close Content-Length: 282 Cache-Control: no-cache Origin: http://www.ancditalia.com User-Agent: Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; Win64; x64; Trident/5.0) Content-Type: application/x-www-form-urlencoded Accept: */* Referer: http://www.ancditalia.com/ons6/ Accept-Language: en-US Accept-Encoding: gzip, deflate

HTTP/1.1 405 Method Not Allowed Content-Length: 91 Content-Type: text/html; charset=UTF-8 X-Trans-Id: txbeb6dedc80124d5fa576d-00617132c3dfw1 Cache-Control: public, max-age=86386 Expires: Fri, 22 Oct 2021 09:28:21 GMT Date: Thu, 21 Oct 2021 09:28:35 GMT Connection: close

GET /ons6/?t8rL=FqNY8GtcjD33AatuGxZVeLNAL7NCMjzFx4DR/EkfIuUI1nBdJ29F87IFN/JOzYZj2heFFPtj&1bVHT=mzrd HTTP/1.1 Host: www.ancditalia.com Connection: close

HTTP/1.1 404 Not Found Content-Length: 685 Content-Type: text/html; charset=UTF-8 X-Trans-Id: txb0178f1e35f44935817a6-00617132c3dfw1 Cache-Control: public, max-age=30 Expires: Thu, 21 Oct 2021 09:29:05 GMT Date: Thu, 21 Oct 2021 09:28:35 GMT Connection: close

POST /ons6/ HTTP/1.1 Host: www.parasitevhs.net Connection: close Content-Length: 282 Cache-Control: no-cache Origin: http://www.parasitevhs.net User-Agent: Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; Win64; x64; Trident/5.0) Content-Type: application/x-www-form-urlencoded Accept: */* Referer: http://www.parasitevhs.net/ons6/ Accept-Language: en-US Accept-Encoding: gzip, deflate

GET /ons6/?t8rL=K3/O5qStXw91cEZafq/vhJilaUZh0YJN+5nekOno/0bdfp1j2HTF92oxwv5f7cu06ufW7UgY&1bVHT=mzrd HTTP/1.1 Host: www.parasitevhs.net Connection: close

HTTP/1.1 200 OK Date: Thu, 21 Oct 2021 09:28:41 GMT Server: Apache Set-Cookie: vsid=917vr3823541217403236; expires=Tue, 20-Oct-2026 09:28:41 GMT; Max-Age=157680000; path=/; domain=www.parasitevhs.net; HttpOnly X-Adblock-Key: MFwwDQYJKoZIhvcNAQEBBQADSwAwSAJBAKX74ixpzVyXbJprcLfbH4psP4+L2entqri0lzh6pkAaXLPIcclv6DQBeJJjGFWrBIF6QMyFwXT5CCRyjS2penECAwEAAQ==_JoREpqyT8IwEh9ebZAOkBwL65Lr4vtMSm7UaUEy3k1tP7SAaBTGvOMcD9Q0g3mAlRtghUxc4HZsikRHHHMLECg== Keep-Alive: timeout=5, max=60 Connection: Keep-Alive Transfer-Encoding: chunked Content-Type: text/html; charset=UTF-8

POST /ons6/ HTTP/1.1 Host: www.nikurei.com Connection: close Content-Length: 282 Cache-Control: no-cache Origin: http://www.nikurei.com User-Agent: Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; Win64; x64; Trident/5.0) Content-Type: application/x-www-form-urlencoded Accept: */* Referer: http://www.nikurei.com/ons6/ Accept-Language: en-US Accept-Encoding: gzip, deflate

HTTP/1.1 405 Not Allowed Server: openresty Date: Thu, 21 Oct 2021 09:28:57 GMT Content-Type: text/html Content-Length: 556 X-Adblock-Key: MFwwDQYJKoZIhvcNAQEBBQADSwAwSAJBAJRmzcpTevQqkWn6dJuX/N/Hxl7YxbOwy8+73ijqYSQEN+WGxrruAKtZtliWC86+ewQ0msW1W8psOFL/b00zWqsCAwEAAQ_JKBWQOOSUy+lu4QpfHZ0AlkYIs/Ku/tc8pvNtZlNl7IT3cAEH2Ls0BI9Q020Q+S7Vulpk9uc2ItJe11x2U69jA Via: 1.1 google Connection: close

GET /ons6/?t8rL=p66laJGF/T/0GpXxDd5hPjZubfTol0Lr3IwBrqBRPCvhxhKDrtw9PJ387dQ2b+OE0rZGfG2l&1bVHT=mzrd HTTP/1.1 Host: www.nikurei.com Connection: close

HTTP/1.1 403 Forbidden Server: openresty Date: Thu, 21 Oct 2021 09:28:57 GMT Content-Type: text/html Content-Length: 275 ETag: "6169a6d1-113" Via: 1.1 google Connection: close

POST /ons6/ HTTP/1.1 Host: www.algoescrow.com Connection: close Content-Length: 282 Cache-Control: no-cache Origin: http://www.algoescrow.com User-Agent: Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; Win64; x64; Trident/5.0) Content-Type: application/x-www-form-urlencoded Accept: */* Referer: http://www.algoescrow.com/ons6/ Accept-Language: en-US Accept-Encoding: gzip, deflate

GET /ons6/?t8rL=UZGepyMrR79POtZQLeB3ajJI81oFbK1boHubTc9HwB4nkf80NE7aBFqbJaYFAd0yFJ1izkfv&1bVHT=mzrd HTTP/1.1 Host: www.algoescrow.com Connection: close

HTTP/1.1 302 Found Server: nginx Date: Thu, 21 Oct 2021 09:29:02 GMT Content-Type: text/html; charset=utf-8 Content-Length: 50 Connection: close Location: https://cryptodomain.agency X-Served-By: Namecheap URL Forward

POST /ons6/ HTTP/1.1 Host: www.miltonjorge.net Connection: close Content-Length: 282 Cache-Control: no-cache Origin: http://www.miltonjorge.net User-Agent: Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; Win64; x64; Trident/5.0) Content-Type: application/x-www-form-urlencoded Accept: */* Referer: http://www.miltonjorge.net/ons6/ Accept-Language: en-US Accept-Encoding: gzip, deflate

HTTP/1.1 404 Not Found Date: Thu, 21 Oct 2021 09:29:13 GMT Server: Apache Expires: Wed, 11 Jan 1984 05:00:00 GMT Cache-Control: no-cache, must-revalidate, max-age=0 Link: <https://miltonjorge.net/wp-json/>; rel="https://api.w.org/" Upgrade: h2,h2c Connection: Upgrade, close Vary: Accept-Encoding Content-Encoding: gzip Content-Length: 5797 Content-Type: text/html; charset=UTF-8

GET /ons6/?t8rL=ion/dvzazzRROQ/XthjQyoKaw08WdXBcQebFYFFZYCISD6I22k/rL6VDxVsOJE+QY/yDsfb+&1bVHT=mzrd HTTP/1.1 Host: www.miltonjorge.net Connection: close

HTTP/1.1 301 Moved Permanently Date: Thu, 21 Oct 2021 09:29:13 GMT Server: Apache Expires: Wed, 11 Jan 1984 05:00:00 GMT Cache-Control: no-cache, must-revalidate, max-age=0 X-Redirect-By: WordPress Upgrade: h2,h2c Connection: Upgrade, close Location: http://miltonjorge.net/ons6/?t8rL=ion/dvzazzRROQ/XthjQyoKaw08WdXBcQebFYFFZYCISD6I22k/rL6VDxVsOJE+QY/yDsfb+&1bVHT=mzrd Content-Length: 0 Content-Type: text/html; charset=UTF-8

POST /ons6/ HTTP/1.1 Host: www.regencyimperial.com Connection: close Content-Length: 282 Cache-Control: no-cache Origin: http://www.regencyimperial.com User-Agent: Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; Win64; x64; Trident/5.0) Content-Type: application/x-www-form-urlencoded Accept: */* Referer: http://www.regencyimperial.com/ons6/ Accept-Language: en-US Accept-Encoding: gzip, deflate

HTTP/1.1 405 Not Allowed Server: openresty Date: Thu, 21 Oct 2021 09:29:19 GMT Content-Type: text/html Content-Length: 556 X-Adblock-Key: MFwwDQYJKoZIhvcNAQEBBQADSwAwSAJBAJRmzcpTevQqkWn6dJuX/N/Hxl7YxbOwy8+73ijqYSQEN+WGxrruAKtZtliWC86+ewQ0msW1W8psOFL/b00zWqsCAwEAAQ_YfFdPSqt41FsmV2GwJJIuUaDCu1FRWjMGQ17MylxObBrWxk/dhabsCQHl0mrak7Ra56wFNDY4OzZL+0KMobbsQ Via: 1.1 google Connection: close

GET /ons6/?t8rL=pLcPY8DfVC4nF6nImpsYDslgQTm8hb6zaSbefXYfTYcwDwG8RZYyRprx0kRJ8HTy9l/fsGrp&1bVHT=mzrd HTTP/1.1 Host: www.regencyimperial.com Connection: close

HTTP/1.1 403 Forbidden Server: openresty Date: Thu, 21 Oct 2021 09:29:19 GMT Content-Type: text/html Content-Length: 275 ETag: "6169a6b5-113" Via: 1.1 google Connection: close

POST /ons6/ HTTP/1.1 Host: www.ktndetermine.xyz Connection: close Content-Length: 282 Cache-Control: no-cache Origin: http://www.ktndetermine.xyz User-Agent: Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; Win64; x64; Trident/5.0) Content-Type: application/x-www-form-urlencoded Accept: */* Referer: http://www.ktndetermine.xyz/ons6/ Accept-Language: en-US Accept-Encoding: gzip, deflate

HTTP/1.1 405 Not Allowed Server: openresty Date: Thu, 21 Oct 2021 09:29:24 GMT Content-Type: text/html Content-Length: 556 X-Adblock-Key: MFwwDQYJKoZIhvcNAQEBBQADSwAwSAJBAJRmzcpTevQqkWn6dJuX/N/Hxl7YxbOwy8+73ijqYSQEN+WGxrruAKtZtliWC86+ewQ0msW1W8psOFL/b00zWqsCAwEAAQ_AOC9qL7TwiNKxN5Y8B7iFheqWqL3MLAPpEfrdMefdJO56IXAmvGyLo9C/myuvQu7XWgKcCm5GOma5SJx56W34A Via: 1.1 google Connection: close

GET /ons6/?t8rL=hsISH4OHQbwAzFD8sw5R8ibBoXqjnq3rD9DL1tZnwnB9Hd1+cJwfc431OSdC7X2Zl5JwC7n9&1bVHT=mzrd HTTP/1.1 Host: www.ktndetermine.xyz Connection: close

HTTP/1.1 403 Forbidden Server: openresty Date: Thu, 21 Oct 2021 09:29:24 GMT Content-Type: text/html Content-Length: 275 ETag: "6169a6c0-113" Via: 1.1 google Connection: close

POST /ons6/ HTTP/1.1 Host: www.pinnap.online Connection: close Content-Length: 282 Cache-Control: no-cache Origin: http://www.pinnap.online User-Agent: Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; Win64; x64; Trident/5.0) Content-Type: application/x-www-form-urlencoded Accept: */* Referer: http://www.pinnap.online/ons6/ Accept-Language: en-US Accept-Encoding: gzip, deflate

GET /ons6/?t8rL=T6IzNIefCt9asoM7wwl9vJHvNA8mHbVSIT7fQPN9khiXvHagvcAS0QXryNsRvv6cCNHi/hH2&1bVHT=mzrd HTTP/1.1 Host: www.pinnap.online Connection: close

HTTP/1.1 404 Not Found Server: nginx Date: Thu, 21 Oct 2021 09:29:30 GMT Content-Type: text/html; charset=iso-8859-1 Content-Length: 196 Connection: close x-ray: p17866:0.005/wn20307:0.010/wa20307:D=4409

POST /ons6/ HTTP/1.1 Host: www.nagukoohatomo.xyz Connection: close Content-Length: 282 Cache-Control: no-cache Origin: http://www.nagukoohatomo.xyz User-Agent: Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; Win64; x64; Trident/5.0) Content-Type: application/x-www-form-urlencoded Accept: */* Referer: http://www.nagukoohatomo.xyz/ons6/ Accept-Language: en-US Accept-Encoding: gzip, deflate

HTTP/1.1 405 Method Not Allowed Content-Type: text/html; charset=UTF-8 Content-Encoding: gzip Date: Thu, 21 Oct 2021 09:29:36 GMT Expires: Thu, 21 Oct 2021 09:29:36 GMT Cache-Control: private, max-age=0 X-Content-Type-Options: nosniff X-XSS-Protection: 1; mode=block Content-Length: 127 Server: GSE Connection: close

GET /ons6/?t8rL=AU+/5gjjPw5Dm7aO9w7wHS0YBjsv8vB0MKtvFyQe5P/L/nwKZqqTHP+wSIlGIao5xIcO+W/k&1bVHT=mzrd HTTP/1.1 Host: www.nagukoohatomo.xyz Connection: close

HTTP/1.1 301 Moved Permanently Location: https://www.nagukoohatomo.xyz/ons6/?t8rL=AU+/5gjjPw5Dm7aO9w7wHS0YBjsv8vB0MKtvFyQe5P/L/nwKZqqTHP+wSIlGIao5xIcO+W/k&1bVHT=mzrd Content-Type: text/html; charset=UTF-8 Date: Thu, 21 Oct 2021 09:29:36 GMT Expires: Thu, 21 Oct 2021 09:29:36 GMT Cache-Control: private, max-age=0 X-Content-Type-Options: nosniff X-Frame-Options: SAMEORIGIN Content-Security-Policy: frame-ancestors 'self' X-XSS-Protection: 1; mode=block Server: GSE Accept-Ranges: none Vary: Accept-Encoding Transfer-Encoding: chunked Connection: close

GET /ons6/?t8rL=iIzayoLE23mGgxynHjOYRl9PYUP2qm5VdNCSkLZw3/FXI9XjUQBaDfeomXYvjIDjuyHUqn+8&RRm=rzrxPvVXEt3h1V HTTP/1.1 Host: www.tinturas-espagiricas.com Connection: close

HTTP/1.1 403 Forbidden Server: openresty Date: Thu, 21 Oct 2021 09:29:43 GMT Content-Type: text/html Content-Length: 275 ETag: "6169a6ec-113" Via: 1.1 google Connection: close