Network Analysis

POST /8mwu/ HTTP/1.1 Host: www.baotrang-jewelry.com Connection: close Content-Length: 173 Cache-Control: no-cache Origin: http://www.baotrang-jewelry.com User-Agent: Mozilla/5.0 (iPad; CPU OS 7_0_4 like Mac OS X) AppleWebKit/537.51.1 (KHTML, like Gecko) Mercury/8.7 Mobile/11B554a Safari/9537.53 Content-Type: application/x-www-form-urlencoded Accept: */* Referer: http://www.baotrang-jewelry.com/8mwu/ Accept-Language: en-US Accept-Encoding: gzip, deflate

HTTP/1.1 301 Moved Permanently Server: openresty Date: Mon, 10 Jul 2023 22:27:48 GMT Content-Type: text/html Content-Length: 166 Connection: close Location: https://www.baotrang-jewelry.com/8mwu/

GET /8mwu/?AtRS=EU3iIBTa7/FiG89Zkn9giTIgWQjAgZeKQjtjqA56CDWeG/Y64M9bd0fUJ8VEDSTetbKxDk1W+HVeVL/Bv/O0oK42dWysymJF/Fz7e18=&L08E=VdmpZkW2d HTTP/1.1 Host: www.baotrang-jewelry.com Connection: close

HTTP/1.1 301 Moved Permanently Server: openresty Date: Mon, 10 Jul 2023 22:27:51 GMT Content-Type: text/html Content-Length: 166 Connection: close Location: https://www.baotrang-jewelry.com/8mwu/?AtRS=EU3iIBTa7/FiG89Zkn9giTIgWQjAgZeKQjtjqA56CDWeG/Y64M9bd0fUJ8VEDSTetbKxDk1W+HVeVL/Bv/O0oK42dWysymJF/Fz7e18=&L08E=VdmpZkW2d

GET /2017/sqlite-dll-win32-x86-3200000.zip HTTP/1.1 Accept: */* Accept-Encoding: gzip, deflate User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.1; WOW64; Trident/5.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; InfoPath.2; .NET4.0C; .NET4.0E) Host: www.sqlite.org Connection: Keep-Alive

HTTP/1.1 200 OK Connection: keep-alive Date: Mon, 10 Jul 2023 22:27:53 GMT Last-Modified: Mon, 21 Aug 2017 00:19:00 GMT Cache-Control: max-age=120 ETag: "m599a26f4s6ce10" Content-type: application/zip; charset=utf-8 Content-length: 445968

POST /8mwu/ HTTP/1.1 Host: www.date-store.info Connection: close Content-Length: 185 Cache-Control: no-cache Origin: http://www.date-store.info User-Agent: Mozilla/5.0 (iPad; CPU OS 7_0_4 like Mac OS X) AppleWebKit/537.51.1 (KHTML, like Gecko) Mercury/8.7 Mobile/11B554a Safari/9537.53 Content-Type: application/x-www-form-urlencoded Accept: */* Referer: http://www.date-store.info/8mwu/ Accept-Language: en-US Accept-Encoding: gzip, deflate

HTTP/1.1 404 Not Found Server: nginx Date: Mon, 10 Jul 2023 22:28:01 GMT Content-Type: text/html Transfer-Encoding: chunked Connection: close Vary: Accept-Encoding Last-Modified: Thu, 11 May 2023 05:41:14 GMT ETag: W/"afe-5fb646fc837f6" Content-Encoding: gzip

GET /8mwu/?AtRS=QCWughoEBLNWlxoKJazXJvFVptHaudS5CtBHXaoHYx4YCXEq+K4liCb7WZlVD+RMuH5kCBUqy3mcV+3Nr6i4SxN+kY5cxzsbKOKS/94=&L08E=VdmpZkW2d HTTP/1.1 Host: www.date-store.info Connection: close

HTTP/1.1 404 Not Found Server: nginx Date: Mon, 10 Jul 2023 22:28:04 GMT Content-Type: text/html Content-Length: 2814 Connection: close Vary: Accept-Encoding Last-Modified: Thu, 11 May 2023 05:41:14 GMT ETag: "afe-5fb646fc837f6"

POST /8mwu/ HTTP/1.1 Host: www.investmentmastr.com Connection: close Content-Length: 185 Cache-Control: no-cache Origin: http://www.investmentmastr.com User-Agent: Mozilla/5.0 (iPad; CPU OS 7_0_4 like Mac OS X) AppleWebKit/537.51.1 (KHTML, like Gecko) Mercury/8.7 Mobile/11B554a Safari/9537.53 Content-Type: application/x-www-form-urlencoded Accept: */* Referer: http://www.investmentmastr.com/8mwu/ Accept-Language: en-US Accept-Encoding: gzip, deflate

HTTP/1.1 404 Not Found Date: Mon, 10 Jul 2023 22:28:09 GMT Server: Apache Content-Length: 315 Connection: close Content-Type: text/html; charset=iso-8859-1

GET /8mwu/?AtRS=PsH7VurMFQyD6ju4MnYVKLsngyhRF0i3kpEyk+bvF+v2WbyUoo2xQnfNKDF27FubHa/Uq1yd2iymJaC1K/rhLY6C/0yWRYEJmyt9xCA=&L08E=VdmpZkW2d HTTP/1.1 Host: www.investmentmastr.com Connection: close

HTTP/1.1 404 Not Found Date: Mon, 10 Jul 2023 22:28:12 GMT Server: Apache Content-Length: 315 Connection: close Content-Type: text/html; charset=iso-8859-1

POST /8mwu/ HTTP/1.1 Host: www.snazzy.top Connection: close Content-Length: 185 Cache-Control: no-cache Origin: http://www.snazzy.top User-Agent: Mozilla/5.0 (iPad; CPU OS 7_0_4 like Mac OS X) AppleWebKit/537.51.1 (KHTML, like Gecko) Mercury/8.7 Mobile/11B554a Safari/9537.53 Content-Type: application/x-www-form-urlencoded Accept: */* Referer: http://www.snazzy.top/8mwu/ Accept-Language: en-US Accept-Encoding: gzip, deflate

HTTP/1.1 404 Not Found Date: Mon, 10 Jul 2023 22:28:24 GMT Server: Apache Content-Length: 1414 Connection: close Content-Type: text/html

GET /8mwu/?AtRS=hq4LUNPbOJJ32NO4taYz6MbqZKFszgoxkz2vk6DroaZ2ot5/vFuGkg9TSETWpPkUvR5zvHY4W4/OsVbmF+Jpeu4hTeI286k5D1jdj0E=&L08E=VdmpZkW2d HTTP/1.1 Host: www.snazzy.top Connection: close

HTTP/1.1 404 Not Found Date: Mon, 10 Jul 2023 22:28:26 GMT Server: Apache Content-Length: 1414 Connection: close Content-Type: text/html; charset=utf-8

POST /8mwu/ HTTP/1.1 Host: www.niubiseo158.top Connection: close Content-Length: 185 Cache-Control: no-cache Origin: http://www.niubiseo158.top User-Agent: Mozilla/5.0 (iPad; CPU OS 7_0_4 like Mac OS X) AppleWebKit/537.51.1 (KHTML, like Gecko) Mercury/8.7 Mobile/11B554a Safari/9537.53 Content-Type: application/x-www-form-urlencoded Accept: */* Referer: http://www.niubiseo158.top/8mwu/ Accept-Language: en-US Accept-Encoding: gzip, deflate

HTTP/1.1 200 OK Server: nginx Date: Mon, 10 Jul 2023 22:28:32 GMT Content-Type: text/html;charset=utf-8 Transfer-Encoding: chunked Connection: close Vary: Accept-Encoding Content-Encoding: gzip

GET /8mwu/?AtRS=DpBsY/EqeNdrZFzJBhJgkE6I4JhtuhKG/ihhRdK7+ZddsX/RTtTF+8Mul1ZbonjYts59d9bhAh3cEH3KC86wGfwsRy2myXMRgqa2uDs=&L08E=VdmpZkW2d HTTP/1.1 Host: www.niubiseo158.top Connection: close

HTTP/1.1 200 OK Server: nginx Date: Mon, 10 Jul 2023 22:28:34 GMT Content-Type: text/html;charset=utf-8 Transfer-Encoding: chunked Connection: close Vary: Accept-Encoding

POST /8mwu/ HTTP/1.1 Host: www.homesalerealtywi.com Connection: close Content-Length: 185 Cache-Control: no-cache Origin: http://www.homesalerealtywi.com User-Agent: Mozilla/5.0 (iPad; CPU OS 7_0_4 like Mac OS X) AppleWebKit/537.51.1 (KHTML, like Gecko) Mercury/8.7 Mobile/11B554a Safari/9537.53 Content-Type: application/x-www-form-urlencoded Accept: */* Referer: http://www.homesalerealtywi.com/8mwu/ Accept-Language: en-US Accept-Encoding: gzip, deflate

GET /8mwu/?AtRS=oINJ/gp/aJeJF1lmtDttIp5zYupEQ9+i41jy+2inlUmQPi8yQegxtF+73D7Viv9VJKhdmECNx8qtF80OZhRsVw7SvxMGhJ4ooOkNn5A=&L08E=VdmpZkW2d HTTP/1.1 Host: www.homesalerealtywi.com Connection: close

HTTP/1.1 200 OK Date: Mon, 10 Jul 2023 22:28:43 GMT Server: Apache Set-Cookie: vsid=931vr436573723332047424; expires=Sat, 08-Jul-2028 22:28:43 GMT; Max-Age=157680000; path=/; domain=www.homesalerealtywi.com; HttpOnly X-Adblock-Key: MFwwDQYJKoZIhvcNAQEBBQADSwAwSAJBAKX74ixpzVyXbJprcLfbH4psP4+L2entqri0lzh6pkAaXLPIcclv6DQBeJJjGFWrBIF6QMyFwXT5CCRyjS2penECAwEAAQ==_lB+GVGrR8kfg2CaS6s48FWzhXiLWelMiXKdOXR9o2cDOwV9eoksvkqf+GSaBTlpyS5Ew8ymU5gzwHT7Sc5+Xqw== Transfer-Encoding: chunked Content-Type: text/html; charset=UTF-8 Connection: close

POST /8mwu/ HTTP/1.1 Host: www.framedeals.buzz Connection: close Content-Length: 185 Cache-Control: no-cache Origin: http://www.framedeals.buzz User-Agent: Mozilla/5.0 (iPad; CPU OS 7_0_4 like Mac OS X) AppleWebKit/537.51.1 (KHTML, like Gecko) Mercury/8.7 Mobile/11B554a Safari/9537.53 Content-Type: application/x-www-form-urlencoded Accept: */* Referer: http://www.framedeals.buzz/8mwu/ Accept-Language: en-US Accept-Encoding: gzip, deflate

HTTP/1.1 404 Not Found Date: Mon, 10 Jul 2023 22:28:49 GMT Content-Type: text/html Transfer-Encoding: chunked Connection: close cache-control: private, no-cache, no-store, must-revalidate, max-age=0 pragma: no-cache x-turbo-charged-by: LiteSpeed CF-Cache-Status: DYNAMIC Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=qDnnwKmyNGXCaof7mRWPdrwCyO8GrgXMGflLotgDtQ3rqf9EVQKuT%2FHur111o4tIjrT5rCB8%2F4nqMXE8RXII1eTDOyWg6TppKeTC9D60Toh1sTC4QWvUU47Rwkg3ldpo3%2BhQFByY"}],"group":"cf-nel","max_age":604800} NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} Server: cloudflare CF-RAY: 7e4c3ded0e411a19-KIX Content-Encoding: gzip alt-svc: h3=":443"; ma=86400

GET /8mwu/?AtRS=VWM5CmNEXV0Wws5lOi41B/CT5DkRJBR63DKPnwmZQhPPNIeL3HbUg+RwDwZOLCkdO7WSUUICcQ5s3r8q/6yBYhvdm+7LZZAalqtbZFE=&L08E=VdmpZkW2d HTTP/1.1 Host: www.framedeals.buzz Connection: close

HTTP/1.1 404 Not Found Date: Mon, 10 Jul 2023 22:28:51 GMT Content-Type: text/html Transfer-Encoding: chunked Connection: close cache-control: private, no-cache, no-store, must-revalidate, max-age=0 pragma: no-cache x-turbo-charged-by: LiteSpeed CF-Cache-Status: DYNAMIC Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=cz6%2FLSEiGn%2BSx6%2Fd5dqPfbmAhAfAE0J9ChA%2FELNBPzcIiW3%2FWq8dwINr8MK1Uux8SfWNWIQ0YRW2LJ5bZxrkCo8QZzoBSW5USXoTRII6bAXZgb4DG1Sp2pnYXnDhFmC2lcmTkQj6"}],"group":"cf-nel","max_age":604800} NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} Server: cloudflare CF-RAY: 7e4c3dfccd638d16-KIX alt-svc: h3=":443"; ma=86400

POST /8mwu/ HTTP/1.1 Host: www.effmkg.top Connection: close Content-Length: 185 Cache-Control: no-cache Origin: http://www.effmkg.top User-Agent: Mozilla/5.0 (iPad; CPU OS 7_0_4 like Mac OS X) AppleWebKit/537.51.1 (KHTML, like Gecko) Mercury/8.7 Mobile/11B554a Safari/9537.53 Content-Type: application/x-www-form-urlencoded Accept: */* Referer: http://www.effmkg.top/8mwu/ Accept-Language: en-US Accept-Encoding: gzip, deflate

HTTP/1.1 301 Moved Permanently Server: nginx Date: Mon, 10 Jul 2023 22:28:35 GMT Content-Type: text/html Content-Length: 162 Connection: close Location: https://www.effmkg.top/8mwu/ Strict-Transport-Security: max-age=31536000

GET /8mwu/?AtRS=cuz6fZ9rAQU+AblclZ0dz+AWyQnWqvDu1YxezGquJoJchTSyh9fWxECepA/LrKXAq+eZ/F2gxCu5cJ8yEGWuS25DvJh6mlleb3H+l3g=&L08E=VdmpZkW2d HTTP/1.1 Host: www.effmkg.top Connection: close

HTTP/1.1 301 Moved Permanently Server: nginx Date: Mon, 10 Jul 2023 22:28:38 GMT Content-Type: text/html Content-Length: 162 Connection: close Location: https://www.effmkg.top/8mwu/?AtRS=cuz6fZ9rAQU+AblclZ0dz+AWyQnWqvDu1YxezGquJoJchTSyh9fWxECepA/LrKXAq+eZ/F2gxCu5cJ8yEGWuS25DvJh6mlleb3H+l3g=&L08E=VdmpZkW2d Strict-Transport-Security: max-age=31536000

POST /8mwu/ HTTP/1.1 Host: www.uty186.com Connection: close Content-Length: 185 Cache-Control: no-cache Origin: http://www.uty186.com User-Agent: Mozilla/5.0 (iPad; CPU OS 7_0_4 like Mac OS X) AppleWebKit/537.51.1 (KHTML, like Gecko) Mercury/8.7 Mobile/11B554a Safari/9537.53 Content-Type: application/x-www-form-urlencoded Accept: */* Referer: http://www.uty186.com/8mwu/ Accept-Language: en-US Accept-Encoding: gzip, deflate

HTTP/1.1 404 Not Found Server: nginx Date: Mon, 10 Jul 2023 22:29:05 GMT Content-Type: text/html Content-Length: 146 Connection: close