r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 1cdc095521e9ee2606059be447d1fdd5
02b5d0a5b5823e2338daf7e144700babe2a213af
8bda3aabcf331c2bfcc4c7023cd797c760fd301dc353641bb95048e072f66c66
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "8BDA3AABCF331C2BFCC4C7023CD797C760FD301DC353641BB95048E072F66C66"
Last-Modified: Sat, 04 Feb 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2159
Expires: Sat, 04 Feb 2023 16:31:37 GMT
Date: Sat, 04 Feb 2023 15:55:38 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash c21ba65e44ac95470c314e068e49a9eb
17a13b13738993d889d4afa3d848dc63bf6eba64
9bd0795b30e84ce63b6e2a365ca91bbffc395dd955e112152066c31e63a4ab66
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "9BD0795B30E84CE63B6E2A365CA91BBFFC395DD955E112152066C31E63A4AB66"
Last-Modified: Sat, 04 Feb 2023 11:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5257
Expires: Sat, 04 Feb 2023 17:23:15 GMT
Date: Sat, 04 Feb 2023 15:55:38 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash fb7b6b46e708ad73eaaa3c21e74569ae
950663c025acad81556af5aa3022ecc9d55097fe
763f58b9fb838378c92033b59907b036f4c33081f5103d9bcc2ca2a8de500d64
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "763F58B9FB838378C92033B59907B036F4C33081F5103D9BCC2CA2A8DE500D64"
Last-Modified: Sat, 04 Feb 2023 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12874
Expires: Sat, 04 Feb 2023 19:30:12 GMT
Date: Sat, 04 Feb 2023 15:55:38 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 30db107dcf4380cef05efea409c2e6a3
96e6a306fbc07299aba64e5c14e2bfca35872fa9
b64051a4a8e346e3c72b2aef77f360a5736ab5e16711d8e0bae3876feaa15b6e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Alert, Retry-After, Content-Length, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sat, 04 Feb 2023 15:36:15 GMT
content-type: application/json
age: 1163
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: M4dxy4YcOX1BzAY1odQT0HyCIXMsSHfKynEgDK1gGMkrgVMzvnF9Jevnn+abnjMZu980LkMgznVaiLRvPdViPA==
x-amz-request-id: N6DDCJ614S60W59Q
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sat, 04 Feb 2023 15:24:04 GMT
age: 1894
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 15:55:38 GMT
content-type: application/json
content-length: 12
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-expose-headers: content-type
access-control-allow-credentials: true
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Retry-After, Last-Modified, Cache-Control, Pragma, ETag, Backoff, Content-Type, Alert, Expires
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sat, 04 Feb 2023 15:49:07 GMT
age: 391
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash dedf9c519ac38c4bece9c5bc895787d7
4911175c3f8a435978c5301c33c7a99a5e00a1d5
bddd7e3a4939f863642a7c5348c1c8b9bc569b35c10a27f4cf5ec71f7e6b9698
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BDDD7E3A4939F863642A7C5348C1C8B9BC569B35C10A27F4CF5EC71F7E6B9698"
Last-Modified: Fri, 03 Feb 2023 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2349
Expires: Sat, 04 Feb 2023 16:34:48 GMT
Date: Sat, 04 Feb 2023 15:55:39 GMT
Connection: keep-alive
21426.url.tudown.com/xiaz/%E4%B8%87%E8%83%BD%E7%BD%91%E5%8D%A1%E9%A9%B1%E5%8A%A8forwin1064bitv2018.01.24.1733@719_271513.exe
154.218.151.71200 OK 6.7 kB URL HTTP/1.1 21426.url.tudown.com/xiaz/%E4%B8%87%E8%83%BD%E7%BD%91%E5%8D%A1%E9%A9%B1%E5%8A%A8forwin1064bitv2018.01.24.1733@719_271513.exe
IP 154.218.151.71:0
ASN #137951 Clayer Limited
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (729), with CRLF, LF line terminators
Hash b04cb0e0188d24e937332b41d2cde5a8
71d32afb0664e6ef7a036851661bbe934bf57f2f
2ec50bf4f534bfb2ec709bc6e10373fd109eb74d08b7dca29a6d85c602ac82f7
Analyzer Verdict Alert fortinet Malware
GET /xiaz/%E4%B8%87%E8%83%BD%E7%BD%91%E5%8D%A1%E9%A9%B1%E5%8A%A8forwin1064bitv2018.01.24.1733@719_271513.exe HTTP/1.1
Host: 21426.url.tudown.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 04 Feb 2023 15:55:38 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip
push.services.mozilla.com/
35.162.110.205101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 35.162.110.205:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: cQPZJbR7EB6m7OWMDjwFog==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: HYWjyCwXcfkX7teRaXxoyB7rHUs=
21426.url.tudown.com/template/company/0302/css/style.min.css
154.218.151.71200 OK 5.0 kB URL HTTP/1.1 21426.url.tudown.com/template/company/0302/css/style.min.css
IP 154.218.151.71:0
ASN #137951 Clayer Limited
File type ASCII text, with very long lines (25242), with no line terminators
Hash c7b1260ebcbb9c63a6744c1e9f37ba87
08de2e04ca3fe765892cc77a80c65d2c42eedec7
d8d7b908e1455fef566bb414772fd354a739ea3738d79294feea1293265a0d57
GET /template/company/0302/css/style.min.css HTTP/1.1
Host: 21426.url.tudown.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://21426.url.tudown.com/xiaz/%E4%B8%87%E8%83%BD%E7%BD%91%E5%8D%A1%E9%A9%B1%E5%8A%A8forwin1064bitv2018.01.24.1733@719_271513.exe
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 04 Feb 2023 15:55:39 GMT
Content-Type: text/css
Last-Modified: Tue, 02 Mar 2021 15:32:22 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"603e5a86-629a"
Expires: Sun, 05 Feb 2023 03:55:39 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip
21426.url.tudown.com/js/orsxg5a.script
154.218.151.71200 OK 531 B URL HTTP/1.1 21426.url.tudown.com/js/orsxg5a.script
IP 154.218.151.71:0
ASN #137951 Clayer Limited
File type HTML document, ASCII text, with CRLF line terminators
Hash 39fd4f4c17d424445d9f437c99c9d40a
84a56ab95c669d43c757a5f9a312d5f3a37f73fa
45f58e7b2e72c9f2734889b73ef5c3f2d3e1fb9ac69995afe1561ec4a7943d15
GET /js/orsxg5a.script HTTP/1.1
Host: 21426.url.tudown.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://21426.url.tudown.com/xiaz/%E4%B8%87%E8%83%BD%E7%BD%91%E5%8D%A1%E9%A9%B1%E5%8A%A8forwin1064bitv2018.01.24.1733@719_271513.exe
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 04 Feb 2023 15:55:39 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip
21426.url.tudown.com/template/company/0302/css//style.css
154.218.151.71200 OK 20 kB URL HTTP/1.1 21426.url.tudown.com/template/company/0302/css//style.css
IP 154.218.151.71:0
ASN #137951 Clayer Limited
File type HTML document, ASCII text, with very long lines (65196), with CRLF line terminators
Hash 5867494c833cc596e0a94c636a8b4e49
387a9f0cd088b2d551446ef3e4f44858f5588829
10b2002f9661120f7f6d13a8cbf377070a42b5bedf5f458bd8e7384a85f8a760
GET /template/company/0302/css//style.css HTTP/1.1
Host: 21426.url.tudown.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://21426.url.tudown.com/xiaz/%E4%B8%87%E8%83%BD%E7%BD%91%E5%8D%A1%E9%A9%B1%E5%8A%A8forwin1064bitv2018.01.24.1733@719_271513.exe
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 04 Feb 2023 15:55:39 GMT
Content-Type: text/css
Last-Modified: Tue, 02 Mar 2021 15:38:06 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"603e5bde-1bc98"
Expires: Sun, 05 Feb 2023 03:55:39 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip
21426.url.tudown.com/template/company/0302/js/main.js
154.218.151.71200 OK 18 kB URL HTTP/1.1 21426.url.tudown.com/template/company/0302/js/main.js
IP 154.218.151.71:0
ASN #137951 Clayer Limited
File type Unicode text, UTF-8 text, with very long lines (17543), with CRLF line terminators
Hash ea96e586f9095ed9d4b542159488d75a
81fd5eb364579e7c609f545be90d109eddf8b695
89fc7055f00e92705f671d339bf701a965f31a8a02852918c6a5de9ef2836483
GET /template/company/0302/js/main.js HTTP/1.1
Host: 21426.url.tudown.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://21426.url.tudown.com/xiaz/%E4%B8%87%E8%83%BD%E7%BD%91%E5%8D%A1%E9%A9%B1%E5%8A%A8forwin1064bitv2018.01.24.1733@719_271513.exe
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 04 Feb 2023 15:55:39 GMT
Content-Type: application/javascript
Last-Modified: Thu, 27 Aug 2020 11:40:24 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"5f479ba8-cd88"
Expires: Sun, 05 Feb 2023 03:55:39 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip
21426.url.tudown.com/template/company/0302/js/jquery.min.js
154.218.151.71200 OK 33 kB URL HTTP/1.1 21426.url.tudown.com/template/company/0302/js/jquery.min.js
IP 154.218.151.71:0
ASN #137951 Clayer Limited
File type ASCII text, with very long lines (32110), with CRLF line terminators
Hash 7509321c69d54b101a4a43e782868a2a
679c3d5a3772a714bc03a99ed06c18ab35961a53
b3fe20feaad99931eb923101edfaffcc11ca67d7d0f87f772b62fb2d86f74db0
GET /template/company/0302/js/jquery.min.js HTTP/1.1
Host: 21426.url.tudown.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://21426.url.tudown.com/xiaz/%E4%B8%87%E8%83%BD%E7%BD%91%E5%8D%A1%E9%A9%B1%E5%8A%A8forwin1064bitv2018.01.24.1733@719_271513.exe
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 04 Feb 2023 15:55:39 GMT
Content-Type: application/javascript
Last-Modified: Thu, 27 Aug 2020 11:40:27 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"5f479bab-1449c"
Expires: Sun, 05 Feb 2023 03:55:39 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash ae58d39edb7923f0dac8e7b20767f306
827e75323edf1548d2b898b96caaec9556893e3a
2c18f66718230665099bdc4a96dbed4e667ff233f9853aebd3e0802235c658d8
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "2C18F66718230665099BDC4A96DBED4E667FF233F9853AEBD3E0802235C658D8"
Last-Modified: Thu, 02 Feb 2023 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21007
Expires: Sat, 04 Feb 2023 21:45:47 GMT
Date: Sat, 04 Feb 2023 15:55:40 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash c14d3cf8ade0150a711f094be32ac474
11e7fb5487d364c5392e1594e09f5b49831043ea
2a98ce39894b7d9befdba3916467bc95962376d0b308103e0a1eea36c0bc2302
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "2A98CE39894B7D9BEFDBA3916467BC95962376D0B308103E0A1EEA36C0BC2302"
Last-Modified: Fri, 03 Feb 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=19772
Expires: Sat, 04 Feb 2023 21:25:12 GMT
Date: Sat, 04 Feb 2023 15:55:40 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash c14d3cf8ade0150a711f094be32ac474
11e7fb5487d364c5392e1594e09f5b49831043ea
2a98ce39894b7d9befdba3916467bc95962376d0b308103e0a1eea36c0bc2302
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "2A98CE39894B7D9BEFDBA3916467BC95962376D0B308103E0A1EEA36C0BC2302"
Last-Modified: Fri, 03 Feb 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=19772
Expires: Sat, 04 Feb 2023 21:25:12 GMT
Date: Sat, 04 Feb 2023 15:55:40 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash c14d3cf8ade0150a711f094be32ac474
11e7fb5487d364c5392e1594e09f5b49831043ea
2a98ce39894b7d9befdba3916467bc95962376d0b308103e0a1eea36c0bc2302
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "2A98CE39894B7D9BEFDBA3916467BC95962376D0B308103E0A1EEA36C0BC2302"
Last-Modified: Fri, 03 Feb 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=19772
Expires: Sat, 04 Feb 2023 21:25:12 GMT
Date: Sat, 04 Feb 2023 15:55:40 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash c14d3cf8ade0150a711f094be32ac474
11e7fb5487d364c5392e1594e09f5b49831043ea
2a98ce39894b7d9befdba3916467bc95962376d0b308103e0a1eea36c0bc2302
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "2A98CE39894B7D9BEFDBA3916467BC95962376D0B308103E0A1EEA36C0BC2302"
Last-Modified: Fri, 03 Feb 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=19772
Expires: Sat, 04 Feb 2023 21:25:12 GMT
Date: Sat, 04 Feb 2023 15:55:40 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd74fd89c-32f8-4ed4-ab23-e95f810fbc57.jpeg
34.120.237.76200 OK 9.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd74fd89c-32f8-4ed4-ab23-e95f810fbc57.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 4b5c35cdff2fb0758db780212b0b1f77
edbb557a3bf57128467335685aebbd4831d802f8
e0fa59843073ba8bd171c66610bc1b3d59a1a94c4991e6023507b9453ca0edba
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd74fd89c-32f8-4ed4-ab23-e95f810fbc57.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9349
x-amzn-requestid: ecd1913d-7dbe-4ffd-ba85-0549aab51a06
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fyayOGPlIAMFQ7Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dda4da-6a9b8d146155fa8b6c1c02d6;Sampled=0
x-amzn-remapped-date: Sat, 04 Feb 2023 00:20:42 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: jGBEz2d-SXXPBZhwlJgR4w248y-NY2c-18euLre5PULjWUIfhfUmNQ==
via: 1.1 a20e81b65d2465c729ce2f6bfe539dd0.cloudfront.net (CloudFront), 1.1 6172bb1a5d00a3b06ae3700570ebe116.cloudfront.net (CloudFront), 1.1 google
date: Sat, 04 Feb 2023 00:30:47 GMT
age: 55493
etag: "edbb557a3bf57128467335685aebbd4831d802f8"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F64144d1c-f524-496f-8b52-ba63714dbfc5.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F64144d1c-f524-496f-8b52-ba63714dbfc5.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash e366b32074025aaf60bbae8bdb08d330
a52c2883bad98fa20333aa639a5dd3a5bf544c8e
9d661c26effaec9efee16833f6459d6ecbe4f77b822c9c46e2a6433bda816e5c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F64144d1c-f524-496f-8b52-ba63714dbfc5.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11565
x-amzn-requestid: 87a84ffd-1176-4656-aac4-e98f38ec2cd9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fboIrFGboAMFyyQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d48704-162ed8114aa1809204500548;Sampled=0
x-amzn-remapped-date: Sat, 28 Jan 2023 02:23:00 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: lsQxPtozrh2Ty1T-3d-1crDfi8HgVKRafOXb1UFl033bCx3kAzTS7w==
via: 1.1 d83ae0e1ba84e92e58bc1efc23a0c652.cloudfront.net (CloudFront), 1.1 caf6806821bc479b28a6f1ce3043b8a6.cloudfront.net (CloudFront), 1.1 google
date: Sat, 04 Feb 2023 06:20:04 GMT
age: 34536
etag: "a52c2883bad98fa20333aa639a5dd3a5bf544c8e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2ec84086-8ac2-4887-bc81-86003255ab99.jpeg
34.120.237.76200 OK 5.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2ec84086-8ac2-4887-bc81-86003255ab99.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash e5b4e4f15da3323c73974c3f1cdb5d74
1f14971d0cf979cc34ff191849dc43d86e8ac463
5893d7e5b2fd9de92829b303c42d0c07ff32b3f6b8705b6f5b4a784315c8808e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2ec84086-8ac2-4887-bc81-86003255ab99.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5174
x-amzn-requestid: 35630c70-3bad-47b4-94bb-09c873632194
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fyD7EFAHIAMFQQQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dd8046-317b1fbb3bee0f377697bf3d;Sampled=0
x-amzn-remapped-date: Fri, 03 Feb 2023 21:44:38 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: OD5cy75AkNMwTIvIool2nKbKgr5Jpo1Plm_X_YPr3rdPbg86_V2fdA==
via: 1.1 112c6b3f9aea37a6cb00b7d933e5af6e.cloudfront.net (CloudFront), 1.1 e4d3d5aafc7d7d582423c073065ab562.cloudfront.net (CloudFront), 1.1 google
date: Fri, 03 Feb 2023 22:00:26 GMT
age: 64514
etag: "1f14971d0cf979cc34ff191849dc43d86e8ac463"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F10640252-429d-4110-bf18-1908ac233402.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F10640252-429d-4110-bf18-1908ac233402.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 392b61306c346508d3ac4a2f28218f9c
d2de32b52e0d3f4fc6acaf687b3521294b01dc03
018712a4d6734b84ac1777124f97dae4d93b1e5b297a5dcfe0955b52710b8a35
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F10640252-429d-4110-bf18-1908ac233402.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10253
x-amzn-requestid: a90cb6b3-8a72-4b4b-b4f5-6dafc8c6752a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fyD7GGv5IAMFu8A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dd8046-3ca59e7c52800a4e44bda8fd;Sampled=0
x-amzn-remapped-date: Fri, 03 Feb 2023 21:44:38 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: jBxNmhfAeUgxg8w4XpQHZ1QoN9GatdUV7V7r2tHd7YePJYPHpesd2Q==
via: 1.1 9c60d6224ac0b44e908b5c9dcf70e9a4.cloudfront.net (CloudFront), 1.1 1b74ccf4cb51eacf97a0e6d60ae46a3e.cloudfront.net (CloudFront), 1.1 google
date: Fri, 03 Feb 2023 22:05:21 GMT
age: 64219
etag: "d2de32b52e0d3f4fc6acaf687b3521294b01dc03"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
at.alicdn.com/t/font_1652089_tg0x7qv1f1.woff2
47.246.44.252200 OK 1.0 kB URL HTTP/1.1 at.alicdn.com/t/font_1652089_tg0x7qv1f1.woff2
IP 47.246.44.252:0
ASN #24429 Zhejiang Taobao Network Co.,Ltd
File type Web Open Font Format (Version 2), TrueType, length 1032, version 1.0\012- data
Hash 5011371b36b7287ee277dee3889c83f6
d8e51076284dd4265431a4d44025642da256a89e
ccc1ce96db7771bb8bb0e54318fd87ab463c24b2e6bf0d9826fb33b097b6233f
GET /t/font_1652089_tg0x7qv1f1.woff2 HTTP/1.1
Host: at.alicdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://21426.url.tudown.com
Connection: keep-alive
Referer: http://21426.url.tudown.com/
HTTP/1.1 200 OK
Server: Tengine
Content-Type: font/woff2
Content-Length: 1032
Connection: keep-alive
Date: Sat, 04 Feb 2023 08:09:57 GMT
x-oss-request-id: 63DE12D59DDDB03537FC9207
Vary: Origin
Accept-Ranges: bytes
ETag: "5011371B36B7287EE277DEE3889C83F6"
Last-Modified: Fri, 24 Dec 2021 17:00:24 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 16100374768313971226
x-oss-storage-class: Standard
Cache-Control: max-age=63072000
Content-MD5: UBE3Gza3KH7id97jiJyD9g==
x-oss-server-time: 47
Ali-Swift-Global-Savetime: 1675498197
Via: cache13.l2us1[484,484,200-0,M], cache23.l2us1[485,0], cache3.se1[0,0,200-0,H], cache1.se1[2,0]
Age: 27943
X-Cache: HIT TCP_HIT dirn:1:188130338
X-Swift-SaveTime: Sat, 04 Feb 2023 08:09:57 GMT
X-Swift-CacheTime: 31104000
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
EagleId: 2ff62c9516755261404888939e
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash c14d3cf8ade0150a711f094be32ac474
11e7fb5487d364c5392e1594e09f5b49831043ea
2a98ce39894b7d9befdba3916467bc95962376d0b308103e0a1eea36c0bc2302
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "2A98CE39894B7D9BEFDBA3916467BC95962376D0B308103E0A1EEA36C0BC2302"
Last-Modified: Fri, 03 Feb 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=19772
Expires: Sat, 04 Feb 2023 21:25:12 GMT
Date: Sat, 04 Feb 2023 15:55:40 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcae6042d-d677-4e39-b4e4-858988eb847b.jpeg
34.120.237.76200 OK 9.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcae6042d-d677-4e39-b4e4-858988eb847b.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash f7101f6e43855cb76ce48271a847ffbd
8e674830a97d8ce3818132fda197db4f0289d316
e78a83a4024e238bcdec3b9c4d5c12a99f49aabd57e34952f6a4cc8ed4422f55
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcae6042d-d677-4e39-b4e4-858988eb847b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9141
x-amzn-requestid: ed7db574-6bca-4f3e-8879-c3e836549339
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fyD8zE5lIAMF1HA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dd8051-4480112f11d4ced0037d1ad8;Sampled=0
x-amzn-remapped-date: Fri, 03 Feb 2023 21:44:49 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: aKr85ooofBPeKkeJIDO5W_X5Rn6xnJlRHmVrs8tgBMYe3HQhobsm3w==
via: 1.1 da5952aa802df39905ceb16592e9698a.cloudfront.net (CloudFront), 1.1 32c16f33c8f5601364fa8229b0d74dc2.cloudfront.net (CloudFront), 1.1 google
date: Fri, 03 Feb 2023 21:56:07 GMT
age: 64773
etag: "8e674830a97d8ce3818132fda197db4f0289d316"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3a6c7026-85a2-4419-bd6b-ba1bac463dda.jpeg
34.120.237.76200 OK 8.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3a6c7026-85a2-4419-bd6b-ba1bac463dda.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 6661b7263315f5eb3cd2465f671e1fcd
b7b5831c6b3ccc41d7a980b6088adc10ff8785f1
eb25507950d81db4b54a1af7fadaceee1bcff780eb28b6a04dbfb3886785f5b7
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3a6c7026-85a2-4419-bd6b-ba1bac463dda.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8527
x-amzn-requestid: 6a8c6487-6069-47d1-afa1-648626f85439
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fyDqqGg5oAMFV-A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dd7fdd-0a772cde1e6fba6d7da97435;Sampled=0
x-amzn-remapped-date: Fri, 03 Feb 2023 21:42:53 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: CHWhIpyzhoPtMUplzh1430Q9FfCM1wkTc_hQsgQk6InM9tYBPGYnNg==
via: 1.1 e5af640ced3aa8764b82c4bc3f7af38e.cloudfront.net (CloudFront), 1.1 2bedbeaa49b4a77447d30097858cb81a.cloudfront.net (CloudFront), 1.1 google
date: Fri, 03 Feb 2023 22:05:44 GMT
age: 64196
etag: "b7b5831c6b3ccc41d7a980b6088adc10ff8785f1"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
21426.url.tudown.com/uploads/images/952083.jpg
154.218.151.71301 Moved Permanently 0 B URL HTTP/1.1 21426.url.tudown.com/uploads/images/952083.jpg
IP 154.218.151.71:0
ASN #137951 Clayer Limited
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /uploads/images/952083.jpg HTTP/1.1
Host: 21426.url.tudown.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://21426.url.tudown.com/xiaz/%E4%B8%87%E8%83%BD%E7%BD%91%E5%8D%A1%E9%A9%B1%E5%8A%A8forwin1064bitv2018.01.24.1733@719_271513.exe
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Sat, 04 Feb 2023 15:55:40 GMT
Content-Type: image/jpg; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Location: http://t14.baidu.com/it/u=2213038951,1708876553&fm=224&app=112&f=JPEG?w=500&h=500
21426.url.tudown.com/uploads/images/700885.jpg
154.218.151.71301 Moved Permanently 0 B URL HTTP/1.1 21426.url.tudown.com/uploads/images/700885.jpg
IP 154.218.151.71:0
ASN #137951 Clayer Limited
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /uploads/images/700885.jpg HTTP/1.1
Host: 21426.url.tudown.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://21426.url.tudown.com/xiaz/%E4%B8%87%E8%83%BD%E7%BD%91%E5%8D%A1%E9%A9%B1%E5%8A%A8forwin1064bitv2018.01.24.1733@719_271513.exe
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Sat, 04 Feb 2023 15:55:40 GMT
Content-Type: image/jpg; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Location: https://img1.baidu.com/it/u=105271310,1845818789&fm=253&fmt=auto&app=138&f=JPEG?w=440&h=425
21426.url.tudown.com/uploads/images/784882.jpg
154.218.151.71301 Moved Permanently 0 B URL HTTP/1.1 21426.url.tudown.com/uploads/images/784882.jpg
IP 154.218.151.71:0
ASN #137951 Clayer Limited
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /uploads/images/784882.jpg HTTP/1.1
Host: 21426.url.tudown.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://21426.url.tudown.com/xiaz/%E4%B8%87%E8%83%BD%E7%BD%91%E5%8D%A1%E9%A9%B1%E5%8A%A8forwin1064bitv2018.01.24.1733@719_271513.exe
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Sat, 04 Feb 2023 15:55:40 GMT
Content-Type: image/jpg; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Location: https://img2.baidu.com/it/u=4139232639,4042322656&fm=253&fmt=auto&app=138&f=JPEG?w=640&h=360
21426.url.tudown.com/uploads/images/227157.jpg
154.218.151.71301 Moved Permanently 0 B URL HTTP/1.1 21426.url.tudown.com/uploads/images/227157.jpg
IP 154.218.151.71:0
ASN #137951 Clayer Limited
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /uploads/images/227157.jpg HTTP/1.1
Host: 21426.url.tudown.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://21426.url.tudown.com/xiaz/%E4%B8%87%E8%83%BD%E7%BD%91%E5%8D%A1%E9%A9%B1%E5%8A%A8forwin1064bitv2018.01.24.1733@719_271513.exe
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Sat, 04 Feb 2023 15:55:40 GMT
Content-Type: image/jpg; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Location: https://img0.baidu.com/it/u=1783721675,635933565&fm=253&fmt=auto&app=138&f=JPEG?w=500&h=753
21426.url.tudown.com/uploads/images/944421.jpg
154.218.151.71301 Moved Permanently 0 B URL HTTP/1.1 21426.url.tudown.com/uploads/images/944421.jpg
IP 154.218.151.71:0
ASN #137951 Clayer Limited
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /uploads/images/944421.jpg HTTP/1.1
Host: 21426.url.tudown.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://21426.url.tudown.com/xiaz/%E4%B8%87%E8%83%BD%E7%BD%91%E5%8D%A1%E9%A9%B1%E5%8A%A8forwin1064bitv2018.01.24.1733@719_271513.exe
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Sat, 04 Feb 2023 15:55:40 GMT
Content-Type: image/jpg; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Location: http://t14.baidu.com/it/u=2134404391,1303417250&fm=224&app=112&f=JPEG?w=500&h=500
21426.url.tudown.com/uploads/images/950817.jpg
154.218.151.71301 Moved Permanently 0 B URL HTTP/1.1 21426.url.tudown.com/uploads/images/950817.jpg
IP 154.218.151.71:0
ASN #137951 Clayer Limited
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /uploads/images/950817.jpg HTTP/1.1
Host: 21426.url.tudown.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://21426.url.tudown.com/xiaz/%E4%B8%87%E8%83%BD%E7%BD%91%E5%8D%A1%E9%A9%B1%E5%8A%A8forwin1064bitv2018.01.24.1733@719_271513.exe
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Sat, 04 Feb 2023 15:55:40 GMT
Content-Type: image/jpg; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Location: http://img1.baidu.com/it/u=527263314,2525759300&fm=253&app=120&f=JPEG?w=1280&h=800
t14.baidu.com/it/u=2134404391,1303417250&fm=224&app=112&f=JPEG?w=500&h=500
185.10.104.124200 OK 46 kB URL HTTP/1.1 t14.baidu.com/it/u=2134404391,1303417250&fm=224&app=112&f=JPEG?w=500&h=500
IP 185.10.104.124:0
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 500x500, components 3\012- data
Hash 55e6af0f80bbf11f1f1361ba3eec8974
7b7a09e5c5ca32a8c843e416481b6fdf1559e7c4
74a94bc92deb10a6a7f4d962208c3307dcaa44ad4f5d388f5c08367f218c10e1
GET /it/u=2134404391,1303417250&fm=224&app=112&f=JPEG?w=500&h=500 HTTP/1.1
Host: t14.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://21426.url.tudown.com/
Connection: keep-alive
HTTP/1.1 200 OK
Server: JSP3/2.0.14
Date: Sat, 04 Feb 2023 15:55:40 GMT
Content-Type: image/jpeg
Content-Length: 46178
Connection: keep-alive
Expires: Tue, 21 Feb 2023 20:19:22 GMT
Last-Modified: Fri, 09 Jan 1970 00:00:00 GMT
ETag: 55e6af0f80bbf11f1f1361ba3eec8974
Age: 211709
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Ohc-Global-Saved-Time: Sun, 22 Jan 2023 20:19:22 GMT
Ohc-Cache-HIT: fra01-sys-jomo2.fra01.baidu.com [2], zhuzuncache53 [1], xaix199 [4]
Ohc-Response-Time: 1 0 0 0 0 0
Ohc-File-Size: 46178
X-Cache-Status: HIT
Timing-Allow-Origin: *
ocsp.globalsign.com/gsrsaovsslca2018
104.18.21.226200 OK 1.4 kB URL HTTP/1.1 ocsp.globalsign.com/gsrsaovsslca2018
IP 104.18.21.226:0
Hash 81f5c123f4a83e821e1e2f7c4101a7bf
650933ff62323a28072863389d558e213041f68a
5a56d766b7901444e0da4d430348ca3f0ddae9cf26f9bb4f41266c36750572d7
POST /gsrsaovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 15:55:41 GMT
Content-Type: application/ocsp-response
Content-Length: 1432
Connection: keep-alive
Expires: Wed, 08 Feb 2023 12:17:24 GMT
ETag: "650933ff62323a28072863389d558e213041f68a"
Last-Modified: Sat, 04 Feb 2023 12:17:25 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 2532
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7944978d6ba11c0a-OSL
t14.baidu.com/it/u=2213038951,1708876553&fm=224&app=112&f=JPEG?w=500&h=500
185.10.104.124200 OK 38 kB URL HTTP/1.1 t14.baidu.com/it/u=2213038951,1708876553&fm=224&app=112&f=JPEG?w=500&h=500
IP 185.10.104.124:0
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 500x500, components 3\012- data
Hash f877f88f76b32f82bb096c6015f7d57a
738fac966e30cba86c1e7e9cbcd27d4b95812088
e2be22a364a37cf92c36b286f155552bac54e1eaabc3fcf2e076a8cab7a53e9c
GET /it/u=2213038951,1708876553&fm=224&app=112&f=JPEG?w=500&h=500 HTTP/1.1
Host: t14.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://21426.url.tudown.com/
Connection: keep-alive
HTTP/1.1 200 OK
Server: JSP3/2.0.14
Date: Sat, 04 Feb 2023 15:55:40 GMT
Content-Type: image/jpeg
Content-Length: 37626
Connection: keep-alive
Expires: Mon, 06 Feb 2023 04:37:19 GMT
Last-Modified: Fri, 09 Jan 1970 00:00:00 GMT
ETag: f877f88f76b32f82bb096c6015f7d57a
Age: 2050628
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Ohc-Global-Saved-Time: Sat, 07 Jan 2023 04:37:18 GMT
Ohc-Cache-HIT: fra01-sys-jomo2.fra01.baidu.com [2], zhuzuncache62 [2], xaix112 [4]
Ohc-Response-Time: 1 0 0 0 0 0
Ohc-File-Size: 37626
X-Cache-Status: HIT
Timing-Allow-Origin: *
21426.url.tudown.com/uploads/images/259259.jpg
154.218.151.71301 Moved Permanently 0 B URL HTTP/1.1 21426.url.tudown.com/uploads/images/259259.jpg
IP 154.218.151.71:0
ASN #137951 Clayer Limited
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /uploads/images/259259.jpg HTTP/1.1
Host: 21426.url.tudown.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://21426.url.tudown.com/xiaz/%E4%B8%87%E8%83%BD%E7%BD%91%E5%8D%A1%E9%A9%B1%E5%8A%A8forwin1064bitv2018.01.24.1733@719_271513.exe
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Sat, 04 Feb 2023 15:55:40 GMT
Content-Type: image/jpg; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Location: https://img1.baidu.com/it/u=3780271033,1083899500&fm=253&fmt=auto&app=138&f=JPEG?w=500&h=889
21426.url.tudown.com/uploads/images/739230.jpg
154.218.151.71301 Moved Permanently 0 B URL HTTP/1.1 21426.url.tudown.com/uploads/images/739230.jpg
IP 154.218.151.71:0
ASN #137951 Clayer Limited
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /uploads/images/739230.jpg HTTP/1.1
Host: 21426.url.tudown.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://21426.url.tudown.com/xiaz/%E4%B8%87%E8%83%BD%E7%BD%91%E5%8D%A1%E9%A9%B1%E5%8A%A8forwin1064bitv2018.01.24.1733@719_271513.exe
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Sat, 04 Feb 2023 15:55:40 GMT
Content-Type: image/jpg; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Location: http://img1.baidu.com/it/u=2999970737,3258617830&fm=253&app=120&f=JPEG?w=1280&h=800
21426.url.tudown.com/uploads/images/451508.jpg
154.218.151.71301 Moved Permanently 0 B URL HTTP/1.1 21426.url.tudown.com/uploads/images/451508.jpg
IP 154.218.151.71:0
ASN #137951 Clayer Limited
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /uploads/images/451508.jpg HTTP/1.1
Host: 21426.url.tudown.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://21426.url.tudown.com/xiaz/%E4%B8%87%E8%83%BD%E7%BD%91%E5%8D%A1%E9%A9%B1%E5%8A%A8forwin1064bitv2018.01.24.1733@719_271513.exe
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Sat, 04 Feb 2023 15:55:40 GMT
Content-Type: image/jpg; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Location: https://img2.baidu.com/it/u=99976081,3053834806&fm=253&fmt=auto&app=138&f=JPEG?w=500&h=889
21426.url.tudown.com/uploads/images/logo.png?n=5gmjz2mywps3raxfrsc6ri4f4weln2maudsy5aq&w=250
154.218.151.71200 OK 3.5 kB URL HTTP/1.1 21426.url.tudown.com/uploads/images/logo.png?n=5gmjz2mywps3raxfrsc6ri4f4weln2maudsy5aq&w=250
IP 154.218.151.71:0
ASN #137951 Clayer Limited
File type PNG image data, 250 x 66, 8-bit colormap, non-interlaced\012- data
Hash 54a0b5531a7677fa22acfb911c9cd66f
23117d308412030737b0baef4f1e139062397123
7f028ddfaab6034bada7cf7c1d0c34d1c9bc578634bd26d45818edcc9dc7ccbd
GET /uploads/images/logo.png?n=5gmjz2mywps3raxfrsc6ri4f4weln2maudsy5aq&w=250 HTTP/1.1
Host: 21426.url.tudown.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://21426.url.tudown.com/xiaz/%E4%B8%87%E8%83%BD%E7%BD%91%E5%8D%A1%E9%A9%B1%E5%8A%A8forwin1064bitv2018.01.24.1733@719_271513.exe
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 04 Feb 2023 15:55:40 GMT
Content-Type: image/png
Transfer-Encoding: chunked
Connection: keep-alive
21426.url.tudown.com/uploads/images/597025.jpg
154.218.151.71301 Moved Permanently 0 B URL HTTP/1.1 21426.url.tudown.com/uploads/images/597025.jpg
IP 154.218.151.71:0
ASN #137951 Clayer Limited
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /uploads/images/597025.jpg HTTP/1.1
Host: 21426.url.tudown.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://21426.url.tudown.com/xiaz/%E4%B8%87%E8%83%BD%E7%BD%91%E5%8D%A1%E9%A9%B1%E5%8A%A8forwin1064bitv2018.01.24.1733@719_271513.exe
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Sat, 04 Feb 2023 15:55:40 GMT
Content-Type: image/jpg; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Location: https://img0.baidu.com/it/u=1306697561,3766684422&fm=253&fmt=auto&app=138&f=JPEG?w=500&h=280
21426.url.tudown.com/template/company/0302/css//fonts/iconfont.woff2
154.218.151.71200 OK 34 kB URL HTTP/1.1 21426.url.tudown.com/template/company/0302/css//fonts/iconfont.woff2
IP 154.218.151.71:0
ASN #137951 Clayer Limited
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (729), with CRLF, LF line terminators
Hash e5e7bebdfd051330b31dfe875a013c4b
575f71385bf3ef5fa9941542747a8c89010bb9d9
844699bbbec0c7bfa4058ca1169736f6767c4bd6c7472a8ceb62649fd29eddce
GET /template/company/0302/css//fonts/iconfont.woff2 HTTP/1.1
Host: 21426.url.tudown.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://21426.url.tudown.com/template/company/0302/css//style.css
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 04 Feb 2023 15:55:40 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
21426.url.tudown.com/uploads/images/612835.jpg
154.218.151.71301 Moved Permanently 0 B URL HTTP/1.1 21426.url.tudown.com/uploads/images/612835.jpg
IP 154.218.151.71:0
ASN #137951 Clayer Limited
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /uploads/images/612835.jpg HTTP/1.1
Host: 21426.url.tudown.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://21426.url.tudown.com/xiaz/%E4%B8%87%E8%83%BD%E7%BD%91%E5%8D%A1%E9%A9%B1%E5%8A%A8forwin1064bitv2018.01.24.1733@719_271513.exe
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Sat, 04 Feb 2023 15:55:41 GMT
Content-Type: image/jpg; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Location: http://t15.baidu.com/it/u=2276253251,696465615&fm=224&app=112&f=JPEG?w=500&h=500
21426.url.tudown.com/uploads/images/745456.jpg
154.218.151.71301 Moved Permanently 0 B URL HTTP/1.1 21426.url.tudown.com/uploads/images/745456.jpg
IP 154.218.151.71:0
ASN #137951 Clayer Limited
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /uploads/images/745456.jpg HTTP/1.1
Host: 21426.url.tudown.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://21426.url.tudown.com/xiaz/%E4%B8%87%E8%83%BD%E7%BD%91%E5%8D%A1%E9%A9%B1%E5%8A%A8forwin1064bitv2018.01.24.1733@719_271513.exe
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Sat, 04 Feb 2023 15:55:41 GMT
Content-Type: image/jpg; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Location: http://img0.baidu.com/it/u=4152997764,3625799910&fm=253&app=138&f=JPEG?w=500&h=800
img2.baidu.com/it/u=4139232639,4042322656&fm=253&fmt=auto&app=138&f=JPEG?w=640&h=360
180.97.66.35200 OK 21 kB URL HTTP/2 img2.baidu.com/it/u=4139232639,4042322656&fm=253&fmt=auto&app=138&f=JPEG?w=640&h=360
IP 180.97.66.35:0
ASN #140292 CHINATELECOM Jiangsu province Suzhou 5G network
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 640x360, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash fbebe229a1a65f708b819bfeb0727676
0e3debae8fc33d897b422bc4d514720309654919
bc772531f3524056f24cd17be05f46db2aacbc788bdcc906c6c6ef903fe9a004
GET /it/u=4139232639,4042322656&fm=253&fmt=auto&app=138&f=JPEG?w=640&h=360 HTTP/1.1
Host: img2.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://21426.url.tudown.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: JSP3/2.0.14
date: Sat, 04 Feb 2023 15:55:41 GMT
content-type: image/webp
content-length: 20610
expires: Thu, 23 Feb 2023 07:54:37 GMT
last-modified: Sat, 10 Jan 1970 00:00:00 GMT
etag: fbebe229a1a65f708b819bfeb0727676
accept-ranges: bytes
access-control-allow-origin: *
timing-allow-origin: *
ohc-global-saved-time: Tue, 24 Jan 2023 07:54:37 GMT
ohc-cache-hit: suz2ct74 [1], suzix74 [4]
ohc-file-size: 20610
x-cache-status: MISS
X-Firefox-Spdy: h2
21426.url.tudown.com/uploads/images/62963.jpg
154.218.151.71301 Moved Permanently 0 B URL HTTP/1.1 21426.url.tudown.com/uploads/images/62963.jpg
IP 154.218.151.71:0
ASN #137951 Clayer Limited
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /uploads/images/62963.jpg HTTP/1.1
Host: 21426.url.tudown.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://21426.url.tudown.com/xiaz/%E4%B8%87%E8%83%BD%E7%BD%91%E5%8D%A1%E9%A9%B1%E5%8A%A8forwin1064bitv2018.01.24.1733@719_271513.exe
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Sat, 04 Feb 2023 15:55:41 GMT
Content-Type: image/jpg; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Location: https://img0.baidu.com/it/u=1801752014,1226642322&fm=253&fmt=auto&app=138&f=JPEG?w=500&h=729
21426.url.tudown.com/uploads/images/490539.jpg
154.218.151.71301 Moved Permanently 0 B URL HTTP/1.1 21426.url.tudown.com/uploads/images/490539.jpg
IP 154.218.151.71:0
ASN #137951 Clayer Limited
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /uploads/images/490539.jpg HTTP/1.1
Host: 21426.url.tudown.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://21426.url.tudown.com/xiaz/%E4%B8%87%E8%83%BD%E7%BD%91%E5%8D%A1%E9%A9%B1%E5%8A%A8forwin1064bitv2018.01.24.1733@719_271513.exe
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Sat, 04 Feb 2023 15:55:41 GMT
Content-Type: image/jpg; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Location: http://img2.baidu.com/it/u=1796838191,2842491992&fm=253&app=138&f=JPEG?w=500&h=666
img1.baidu.com/it/u=105271310,1845818789&fm=253&fmt=auto&app=138&f=JPEG?w=440&h=425
180.97.198.35200 OK 20 kB URL HTTP/2 img1.baidu.com/it/u=105271310,1845818789&fm=253&fmt=auto&app=138&f=JPEG?w=440&h=425
IP 180.97.198.35:0
ASN #140292 CHINATELECOM Jiangsu province Suzhou 5G network
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 440x425, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 969bae5ceac4e6a3c146c57b6abc9513
61614644048c8c5581f1cbd949881437fcd3aee1
8b1dfe99770434df51eb41a0868d7cd43edf0d03c6f8f0c66c9cffd8340b43ad
GET /it/u=105271310,1845818789&fm=253&fmt=auto&app=138&f=JPEG?w=440&h=425 HTTP/1.1
Host: img1.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://21426.url.tudown.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: JSP3/2.0.14
date: Sat, 04 Feb 2023 15:55:41 GMT
content-type: image/webp
content-length: 19582
expires: Tue, 21 Feb 2023 05:58:25 GMT
last-modified: Sat, 10 Jan 1970 00:00:00 GMT
etag: 969bae5ceac4e6a3c146c57b6abc9513
accept-ranges: bytes
access-control-allow-origin: *
timing-allow-origin: *
ohc-global-saved-time: Sun, 22 Jan 2023 05:58:25 GMT
ohc-cache-hit: suz4ct52 [1], qdix52 [4]
ohc-file-size: 19582
x-cache-status: MISS
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash e425d8f9e367de5af66503bc3e0e27b8
05b44906cbeb26e8515afbf78519e70e26fae4ee
9c792ca2e2db616bb44b4bea2d4e3229047698321c791e6b5907bf9bf026fc95
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 15:55:41 GMT
Server: ECS (amb/6BBC)
Content-Length: 471
21426.url.tudown.com/uploads/images/627984.jpg
154.218.151.71301 Moved Permanently 0 B URL HTTP/1.1 21426.url.tudown.com/uploads/images/627984.jpg
IP 154.218.151.71:0
ASN #137951 Clayer Limited
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /uploads/images/627984.jpg HTTP/1.1
Host: 21426.url.tudown.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://21426.url.tudown.com/xiaz/%E4%B8%87%E8%83%BD%E7%BD%91%E5%8D%A1%E9%A9%B1%E5%8A%A8forwin1064bitv2018.01.24.1733@719_271513.exe
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Sat, 04 Feb 2023 15:55:41 GMT
Content-Type: image/jpg; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Location: http://img1.baidu.com/it/u=953195472,4012866988&fm=253&app=138&f=JPEG?w=889&h=500
t15.baidu.com/it/u=2276253251,696465615&fm=224&app=112&f=JPEG?w=500&h=500
185.10.104.124200 OK 38 kB URL HTTP/1.1 t15.baidu.com/it/u=2276253251,696465615&fm=224&app=112&f=JPEG?w=500&h=500
IP 185.10.104.124:0
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 500x500, components 3\012- data
Hash 949041453e48044378f621e12ca34981
e644439fce2fc73ebe589a39b9e337dc37de0cdb
6d00372096c1efbe577aba94b0b2afad5d1fa697d37046f61730229e48f79ec5
GET /it/u=2276253251,696465615&fm=224&app=112&f=JPEG?w=500&h=500 HTTP/1.1
Host: t15.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://21426.url.tudown.com/
Connection: keep-alive
HTTP/1.1 200 OK
Server: JSP3/2.0.14
Date: Sat, 04 Feb 2023 15:55:41 GMT
Content-Type: image/jpeg
Content-Length: 38544
Connection: keep-alive
Expires: Mon, 06 Mar 2023 01:41:04 GMT
Last-Modified: Wed, 07 Jan 1970 00:00:00 GMT
ETag: 949041453e48044378f621e12ca34981
Age: 51277
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Ohc-Global-Saved-Time: Sat, 04 Feb 2023 01:41:04 GMT
Ohc-Cache-HIT: fra01-sys-jomo3.fra01.baidu.com [4], zhuzuncache53 [1], wzix99 [4]
Ohc-Response-Time: 1 0 0 0 0 0
Ohc-File-Size: 38544
X-Cache-Status: HIT
Timing-Allow-Origin: *
img1.baidu.com/it/u=527263314,2525759300&fm=253&app=120&f=JPEG?w=1280&h=800
180.97.198.35200 OK 81 kB URL HTTP/1.1 img1.baidu.com/it/u=527263314,2525759300&fm=253&app=120&f=JPEG?w=1280&h=800
IP 180.97.198.35:0
ASN #140292 CHINATELECOM Jiangsu province Suzhou 5G network
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 1280x800, components 3\012- data
Hash 4ba54c4aad8b30cfc8be98fdbe91a0cf
dc6d545e1d444a0621d0f5bbc7c902747562cd0a
6e87ab48e6e8a4ab061fe9b7dc37ae4514e8daa3600583f9cbeb18309bebcf40
GET /it/u=527263314,2525759300&fm=253&app=120&f=JPEG?w=1280&h=800 HTTP/1.1
Host: img1.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://21426.url.tudown.com/
Connection: keep-alive
HTTP/1.1 200 OK
Server: JSP3/2.0.14
Date: Sat, 04 Feb 2023 15:55:41 GMT
Content-Type: image/jpeg
Content-Length: 80592
Connection: keep-alive
Expires: Wed, 08 Feb 2023 12:56:32 GMT
Last-Modified: Thu, 15 Jan 1970 00:00:00 GMT
ETag: 4ba54c4aad8b30cfc8be98fdbe91a0cf
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Ohc-Global-Saved-Time: Mon, 09 Jan 2023 12:56:32 GMT
Ohc-Cache-HIT: suz4ct58 [1], czix78 [4]
Ohc-File-Size: 80592
X-Cache-Status: MISS
img0.baidu.com/it/u=1783721675,635933565&fm=253&fmt=auto&app=138&f=JPEG?w=500&h=753
124.239.243.35200 OK 27 kB URL HTTP/2 img0.baidu.com/it/u=1783721675,635933565&fm=253&fmt=auto&app=138&f=JPEG?w=500&h=753
IP 124.239.243.35:0
ASN #58539 Langfang,Hebei province, P.R.China
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 500x753, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash b17ce1899916b9599538d6327c66232f
03acc9318ee66e9709aa4d13af10a549e4f40d6a
2ee776a46276f9b77abd68d07408c630b90add59878c3303e6037d1a590ebc7b
GET /it/u=1783721675,635933565&fm=253&fmt=auto&app=138&f=JPEG?w=500&h=753 HTTP/1.1
Host: img0.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://21426.url.tudown.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: JSP3/2.0.14
date: Sat, 04 Feb 2023 15:55:41 GMT
content-type: image/webp
content-length: 27114
expires: Tue, 21 Feb 2023 21:31:51 GMT
last-modified: Sun, 11 Jan 1970 00:00:00 GMT
etag: b17ce1899916b9599538d6327c66232f
age: 135345
accept-ranges: bytes
access-control-allow-origin: *
timing-allow-origin: *
ohc-global-saved-time: Sun, 22 Jan 2023 21:31:51 GMT
ohc-cache-hit: lf7ct54 [4], suzix221 [4]
ohc-file-size: 27114
x-cache-status: HIT
X-Firefox-Spdy: h2
21426.url.tudown.com/uploads/images/863343.jpg
154.218.151.71301 Moved Permanently 0 B URL HTTP/1.1 21426.url.tudown.com/uploads/images/863343.jpg
IP 154.218.151.71:0
ASN #137951 Clayer Limited
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /uploads/images/863343.jpg HTTP/1.1
Host: 21426.url.tudown.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://21426.url.tudown.com/xiaz/%E4%B8%87%E8%83%BD%E7%BD%91%E5%8D%A1%E9%A9%B1%E5%8A%A8forwin1064bitv2018.01.24.1733@719_271513.exe
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Sat, 04 Feb 2023 15:55:41 GMT
Content-Type: image/jpg; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Location: https://img1.baidu.com/it/u=373447548,2598915678&fm=253&fmt=auto&app=138&f=JPEG?w=500&h=490
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash e425d8f9e367de5af66503bc3e0e27b8
05b44906cbeb26e8515afbf78519e70e26fae4ee
9c792ca2e2db616bb44b4bea2d4e3229047698321c791e6b5907bf9bf026fc95
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=96461
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 15:55:41 GMT
Etag: "63dd55ca-1d7"
Expires: Sun, 05 Feb 2023 18:43:22 GMT
Last-Modified: Fri, 03 Feb 2023 18:43:22 GMT
Server: nginx
Content-Length: 471
img2.baidu.com/it/u=99976081,3053834806&fm=253&fmt=auto&app=138&f=JPEG?w=500&h=889
180.97.66.35200 OK 25 kB URL HTTP/2 img2.baidu.com/it/u=99976081,3053834806&fm=253&fmt=auto&app=138&f=JPEG?w=500&h=889
IP 180.97.66.35:0
ASN #140292 CHINATELECOM Jiangsu province Suzhou 5G network
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 500x889, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 99bd68001cc727036f39fbfd980b4442
b21f4dcfd7a6f96eaf4c4cb29561870ba138a0d9
dd26e6ea20c0e0d89d912a6e47799bfc4465b1269703f4ab01c57e0f8d943c8d
GET /it/u=99976081,3053834806&fm=253&fmt=auto&app=138&f=JPEG?w=500&h=889 HTTP/1.1
Host: img2.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://21426.url.tudown.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: JSP3/2.0.14
date: Sat, 04 Feb 2023 15:55:41 GMT
content-type: image/webp
content-length: 24930
expires: Sun, 12 Feb 2023 09:46:23 GMT
last-modified: Fri, 09 Jan 1970 00:00:00 GMT
etag: 99bd68001cc727036f39fbfd980b4442
accept-ranges: bytes
access-control-allow-origin: *
timing-allow-origin: *
ohc-global-saved-time: Fri, 13 Jan 2023 09:46:23 GMT
ohc-cache-hit: suz2ct56 [1], suzix136 [4]
ohc-file-size: 24930
x-cache-status: MISS
X-Firefox-Spdy: h2
img1.baidu.com/it/u=3780271033,1083899500&fm=253&fmt=auto&app=138&f=JPEG?w=500&h=889
180.97.198.35200 OK 35 kB URL HTTP/2 img1.baidu.com/it/u=3780271033,1083899500&fm=253&fmt=auto&app=138&f=JPEG?w=500&h=889
IP 180.97.198.35:0
ASN #140292 CHINATELECOM Jiangsu province Suzhou 5G network
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 500x889, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash de753a248f36fc11113ee8266e48d0cf
477e1b6aa44e77a8f961864cd00638014f31ada6
11c17d0b4bd6aff496f1799a985feea4a4f40605149ce75ebbb9449ef0fe5a5c
GET /it/u=3780271033,1083899500&fm=253&fmt=auto&app=138&f=JPEG?w=500&h=889 HTTP/1.1
Host: img1.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://21426.url.tudown.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: JSP3/2.0.14
date: Sat, 04 Feb 2023 15:55:41 GMT
content-type: image/webp
content-length: 35132
expires: Mon, 27 Feb 2023 23:25:01 GMT
last-modified: Thu, 08 Jan 1970 00:00:00 GMT
etag: de753a248f36fc11113ee8266e48d0cf
accept-ranges: bytes
access-control-allow-origin: *
timing-allow-origin: *
ohc-global-saved-time: Sat, 28 Jan 2023 23:25:01 GMT
ohc-cache-hit: suz4ct54 [1], qdix183 [4]
ohc-file-size: 35132
x-cache-status: MISS
X-Firefox-Spdy: h2
img1.baidu.com/it/u=2999970737,3258617830&fm=253&app=120&f=JPEG?w=1280&h=800
180.97.198.35200 OK 71 kB URL HTTP/1.1 img1.baidu.com/it/u=2999970737,3258617830&fm=253&app=120&f=JPEG?w=1280&h=800
IP 180.97.198.35:0
ASN #140292 CHINATELECOM Jiangsu province Suzhou 5G network
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 1280x800, components 3\012- data
Hash 2a79695cfabb2a114224e6c1276d532b
6b90d564471b471b90302882d0537860b9bf897d
4190e38c6678e504b518212857cee55808d8fb0bc27ef4fb2efc1594a59ac58d
GET /it/u=2999970737,3258617830&fm=253&app=120&f=JPEG?w=1280&h=800 HTTP/1.1
Host: img1.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://21426.url.tudown.com/
Connection: keep-alive
HTTP/1.1 200 OK
Server: JSP3/2.0.14
Date: Sat, 04 Feb 2023 15:55:41 GMT
Content-Type: image/jpeg
Content-Length: 70568
Connection: keep-alive
Expires: Sun, 19 Feb 2023 11:20:34 GMT
Last-Modified: Mon, 05 Jan 1970 00:00:00 GMT
ETag: 2a79695cfabb2a114224e6c1276d532b
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Ohc-Global-Saved-Time: Fri, 20 Jan 2023 11:20:34 GMT
Ohc-Cache-HIT: suz4ct52 [1], wzix106 [4]
Ohc-File-Size: 70568
X-Cache-Status: MISS
21426.url.tudown.com/uploads/images/773994.jpg
154.218.151.71301 Moved Permanently 0 B URL HTTP/1.1 21426.url.tudown.com/uploads/images/773994.jpg
IP 154.218.151.71:0
ASN #137951 Clayer Limited
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /uploads/images/773994.jpg HTTP/1.1
Host: 21426.url.tudown.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://21426.url.tudown.com/xiaz/%E4%B8%87%E8%83%BD%E7%BD%91%E5%8D%A1%E9%A9%B1%E5%8A%A8forwin1064bitv2018.01.24.1733@719_271513.exe
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Sat, 04 Feb 2023 15:55:41 GMT
Content-Type: image/jpg; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Location: https://img2.baidu.com/it/u=1894656948,1686600260&fm=253&fmt=auto&app=138&f=JPEG?w=270&h=185
21426.url.tudown.com/uploads/images/633916.jpg
154.218.151.71301 Moved Permanently 0 B URL HTTP/1.1 21426.url.tudown.com/uploads/images/633916.jpg
IP 154.218.151.71:0
ASN #137951 Clayer Limited
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /uploads/images/633916.jpg HTTP/1.1
Host: 21426.url.tudown.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://21426.url.tudown.com/xiaz/%E4%B8%87%E8%83%BD%E7%BD%91%E5%8D%A1%E9%A9%B1%E5%8A%A8forwin1064bitv2018.01.24.1733@719_271513.exe
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Sat, 04 Feb 2023 15:55:41 GMT
Content-Type: image/jpg; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Location: https://img0.baidu.com/it/u=1838257260,3150999738&fm=253&fmt=auto&app=120&f=JPEG?w=800&h=1422
21426.url.tudown.com/uploads/images/522009.jpg
154.218.151.71301 Moved Permanently 0 B URL HTTP/1.1 21426.url.tudown.com/uploads/images/522009.jpg
IP 154.218.151.71:0
ASN #137951 Clayer Limited
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /uploads/images/522009.jpg HTTP/1.1
Host: 21426.url.tudown.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://21426.url.tudown.com/xiaz/%E4%B8%87%E8%83%BD%E7%BD%91%E5%8D%A1%E9%A9%B1%E5%8A%A8forwin1064bitv2018.01.24.1733@719_271513.exe
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Sat, 04 Feb 2023 15:55:41 GMT
Content-Type: image/jpg; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Location: https://img0.baidu.com/it/u=3872209673,3493442305&fm=253&fmt=auto&app=138&f=JPEG?w=600&h=458
img0.baidu.com/it/u=1801752014,1226642322&fm=253&fmt=auto&app=138&f=JPEG?w=500&h=729
124.239.243.35200 OK 23 kB URL HTTP/2 img0.baidu.com/it/u=1801752014,1226642322&fm=253&fmt=auto&app=138&f=JPEG?w=500&h=729
IP 124.239.243.35:0
ASN #58539 Langfang,Hebei province, P.R.China
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 500x729, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash ef23b7dc4cf29c61e6e5099131680242
0051f5158a29eabee124e0057530a37caa1395e9
562c22b0ccdba7743391460162144e1e230ba9247303fd9f225cac3383b4d8b1
GET /it/u=1801752014,1226642322&fm=253&fmt=auto&app=138&f=JPEG?w=500&h=729 HTTP/1.1
Host: img0.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://21426.url.tudown.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: JSP3/2.0.14
date: Sat, 04 Feb 2023 15:55:41 GMT
content-type: image/webp
content-length: 22844
expires: Wed, 22 Feb 2023 09:12:50 GMT
last-modified: Thu, 08 Jan 1970 00:00:00 GMT
etag: ef23b7dc4cf29c61e6e5099131680242
accept-ranges: bytes
access-control-allow-origin: *
timing-allow-origin: *
ohc-global-saved-time: Mon, 23 Jan 2023 09:12:50 GMT
ohc-cache-hit: lf7ct56 [1], qdix225 [4]
ohc-file-size: 22844
x-cache-status: MISS
X-Firefox-Spdy: h2
img0.baidu.com/it/u=1306697561,3766684422&fm=253&fmt=auto&app=138&f=JPEG?w=500&h=280
124.239.243.35200 OK 17 kB URL HTTP/2 img0.baidu.com/it/u=1306697561,3766684422&fm=253&fmt=auto&app=138&f=JPEG?w=500&h=280
IP 124.239.243.35:0
ASN #58539 Langfang,Hebei province, P.R.China
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 500x280, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 86abc34e91196da119058cd5b18945ec
45f89b47a266fd981ce6f1ebe2b4db7b3e138ecf
705f7097d4d3cfb724460d97f43b322c056892cb6829b89b8a87b0419e790d00
GET /it/u=1306697561,3766684422&fm=253&fmt=auto&app=138&f=JPEG?w=500&h=280 HTTP/1.1
Host: img0.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://21426.url.tudown.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: JSP3/2.0.14
date: Sat, 04 Feb 2023 15:55:41 GMT
content-type: image/webp
content-length: 16888
expires: Sun, 19 Feb 2023 14:08:12 GMT
last-modified: Thu, 08 Jan 1970 00:00:00 GMT
etag: 86abc34e91196da119058cd5b18945ec
accept-ranges: bytes
access-control-allow-origin: *
timing-allow-origin: *
ohc-global-saved-time: Fri, 20 Jan 2023 14:08:12 GMT
ohc-cache-hit: lf7ct74 [1], bdix128 [4]
ohc-file-size: 16888
x-cache-status: MISS
X-Firefox-Spdy: h2
21426.url.tudown.com/uploads/images/245721.jpg
154.218.151.71301 Moved Permanently 0 B URL HTTP/1.1 21426.url.tudown.com/uploads/images/245721.jpg
IP 154.218.151.71:0
ASN #137951 Clayer Limited
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /uploads/images/245721.jpg HTTP/1.1
Host: 21426.url.tudown.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://21426.url.tudown.com/xiaz/%E4%B8%87%E8%83%BD%E7%BD%91%E5%8D%A1%E9%A9%B1%E5%8A%A8forwin1064bitv2018.01.24.1733@719_271513.exe
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Sat, 04 Feb 2023 15:55:41 GMT
Content-Type: image/jpg; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Location: https://img2.baidu.com/it/u=2722795116,804736560&fm=253&fmt=auto&app=138&f=JPEG?w=500&h=375
img1.baidu.com/it/u=373447548,2598915678&fm=253&fmt=auto&app=138&f=JPEG?w=500&h=490
180.97.198.35200 OK 19 kB URL HTTP/2 img1.baidu.com/it/u=373447548,2598915678&fm=253&fmt=auto&app=138&f=JPEG?w=500&h=490
IP 180.97.198.35:0
ASN #140292 CHINATELECOM Jiangsu province Suzhou 5G network
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 500x490, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 1c7b22d7f7b6dad2fd7daac1aab61586
a4ddfbbf722bea9e5829a142eacc412935ac7301
09c68e6a74bbd34b898a84f9584c37931e237f904b781fdd52f316c1f9e2b8e5
GET /it/u=373447548,2598915678&fm=253&fmt=auto&app=138&f=JPEG?w=500&h=490 HTTP/1.1
Host: img1.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://21426.url.tudown.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: JSP3/2.0.14
date: Sat, 04 Feb 2023 15:55:41 GMT
content-type: image/webp
content-length: 18700
expires: Thu, 02 Mar 2023 02:48:56 GMT
last-modified: Fri, 09 Jan 1970 00:00:00 GMT
etag: 1c7b22d7f7b6dad2fd7daac1aab61586
accept-ranges: bytes
access-control-allow-origin: *
timing-allow-origin: *
ohc-global-saved-time: Tue, 31 Jan 2023 02:48:56 GMT
ohc-cache-hit: suz4ct51 [1], qdix183 [4]
ohc-file-size: 18700
x-cache-status: MISS
X-Firefox-Spdy: h2
21426.url.tudown.com/uploads/images/42268.jpg
154.218.151.71301 Moved Permanently 0 B URL HTTP/1.1 21426.url.tudown.com/uploads/images/42268.jpg
IP 154.218.151.71:0
ASN #137951 Clayer Limited
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /uploads/images/42268.jpg HTTP/1.1
Host: 21426.url.tudown.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://21426.url.tudown.com/xiaz/%E4%B8%87%E8%83%BD%E7%BD%91%E5%8D%A1%E9%A9%B1%E5%8A%A8forwin1064bitv2018.01.24.1733@719_271513.exe
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Sat, 04 Feb 2023 15:55:41 GMT
Content-Type: image/jpg; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Location: http://t13.baidu.com/it/u=1666716483,1636785354&fm=224&app=112&f=JPEG?w=500&h=500
img1.baidu.com/it/u=953195472,4012866988&fm=253&app=138&f=JPEG?w=889&h=500
180.97.198.35200 OK 70 kB URL HTTP/1.1 img1.baidu.com/it/u=953195472,4012866988&fm=253&app=138&f=JPEG?w=889&h=500
IP 180.97.198.35:0
ASN #140292 CHINATELECOM Jiangsu province Suzhou 5G network
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 889x500, components 3\012- data
Hash c9e89d550ea5af4ca84233f514f74ee2
8efa37c843cd54164d15675f90b2ab11298a3518
022a6fbcd30a0cba20d3412663b93be43c1f9d0d0bd32b83c1c05af404737bfc
GET /it/u=953195472,4012866988&fm=253&app=138&f=JPEG?w=889&h=500 HTTP/1.1
Host: img1.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://21426.url.tudown.com/
Connection: keep-alive
HTTP/1.1 200 OK
Server: JSP3/2.0.14
Date: Sat, 04 Feb 2023 15:55:41 GMT
Content-Type: image/jpeg
Content-Length: 70379
Connection: keep-alive
Expires: Wed, 01 Mar 2023 00:56:11 GMT
Last-Modified: Thu, 08 Jan 1970 00:00:00 GMT
ETag: c9e89d550ea5af4ca84233f514f74ee2
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Ohc-Global-Saved-Time: Mon, 30 Jan 2023 00:56:11 GMT
Ohc-Cache-HIT: suz4ct50 [1], bdix124 [4]
Ohc-File-Size: 70379
X-Cache-Status: MISS
img2.baidu.com/it/u=1894656948,1686600260&fm=253&fmt=auto&app=138&f=JPEG?w=270&h=185
180.97.66.35200 OK 7.6 kB URL HTTP/2 img2.baidu.com/it/u=1894656948,1686600260&fm=253&fmt=auto&app=138&f=JPEG?w=270&h=185
IP 180.97.66.35:0
ASN #140292 CHINATELECOM Jiangsu province Suzhou 5G network
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 270x185, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash e7b58d127ab2a7115919838e7951eb25
0557b37a5fd6c9ed29bcd359b901c62ecec59f74
a985276be31e376d7e974a4f58e745d92ca867158442daeb295094e2af55ae84
GET /it/u=1894656948,1686600260&fm=253&fmt=auto&app=138&f=JPEG?w=270&h=185 HTTP/1.1
Host: img2.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://21426.url.tudown.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: JSP3/2.0.14
date: Sat, 04 Feb 2023 15:55:42 GMT
content-type: image/webp
content-length: 7632
expires: Fri, 03 Mar 2023 06:37:12 GMT
last-modified: Fri, 09 Jan 1970 00:00:00 GMT
etag: e7b58d127ab2a7115919838e7951eb25
accept-ranges: bytes
access-control-allow-origin: *
timing-allow-origin: *
ohc-global-saved-time: Wed, 01 Feb 2023 06:37:11 GMT
ohc-cache-hit: suz2ct59 [1], csix59 [4]
ohc-file-size: 7632
x-cache-status: MISS
X-Firefox-Spdy: h2
img.yingyongge.com/wp-content/uploads/apk.png
47.75.18.176404 Not Found 264 B URL HTTP/1.1 img.yingyongge.com/wp-content/uploads/apk.png
IP 47.75.18.176:0
ASN #45102 Alibaba US Technology Co., Ltd.
File type XML 1.0 document text\012- XML document, ASCII text
Hash eee1a93d2ed7f6569ca3b2ebba68cd01
5314e3c9da91384cd880deb69980fb49b354eeeb
89f72334b52276227ea1371bf0c4028885a63e541b07d917be5a7fb56c389daf
GET /wp-content/uploads/apk.png HTTP/1.1
Host: img.yingyongge.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://21426.url.tudown.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 404 Not Found
Server: AliyunOSS
Date: Sat, 04 Feb 2023 15:55:42 GMT
Content-Type: application/xml
Content-Length: 264
Connection: keep-alive
x-oss-request-id: 63DE7FFE9DB578313659A7D5
x-oss-server-time: 8
img.yingyongge.com/wp-content/uploads/ios.png
47.75.18.176404 Not Found 264 B URL HTTP/1.1 img.yingyongge.com/wp-content/uploads/ios.png
IP 47.75.18.176:0
ASN #45102 Alibaba US Technology Co., Ltd.
File type XML 1.0 document text\012- XML document, ASCII text
Hash be9a05111c9114ae029fcee680ec06a8
bbcc840363caed40996a4e38b791b05313365dc0
3a8f9c26e554f5fee7d251986309028edecdf9a5ada87a0fe25fd5056063bd2d
GET /wp-content/uploads/ios.png HTTP/1.1
Host: img.yingyongge.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://21426.url.tudown.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 404 Not Found
Server: AliyunOSS
Date: Sat, 04 Feb 2023 15:55:42 GMT
Content-Type: application/xml
Content-Length: 264
Connection: keep-alive
x-oss-request-id: 63DE7FFEFC567C38319F0CC7
x-oss-server-time: 4
21426.url.tudown.com/uploads/images/407837.jpg
154.218.151.71301 Moved Permanently 0 B URL HTTP/1.1 21426.url.tudown.com/uploads/images/407837.jpg
IP 154.218.151.71:0
ASN #137951 Clayer Limited
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /uploads/images/407837.jpg HTTP/1.1
Host: 21426.url.tudown.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://21426.url.tudown.com/xiaz/%E4%B8%87%E8%83%BD%E7%BD%91%E5%8D%A1%E9%A9%B1%E5%8A%A8forwin1064bitv2018.01.24.1733@719_271513.exe
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Sat, 04 Feb 2023 15:55:42 GMT
Content-Type: image/jpg; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Location: https://img2.baidu.com/it/u=489772125,984164896&fm=253&fmt=auto&app=120&f=JPEG?w=1422&h=800
21426.url.tudown.com/uploads/images/275657.jpg
154.218.151.71301 Moved Permanently 0 B URL HTTP/1.1 21426.url.tudown.com/uploads/images/275657.jpg
IP 154.218.151.71:0
ASN #137951 Clayer Limited
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /uploads/images/275657.jpg HTTP/1.1
Host: 21426.url.tudown.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://21426.url.tudown.com/xiaz/%E4%B8%87%E8%83%BD%E7%BD%91%E5%8D%A1%E9%A9%B1%E5%8A%A8forwin1064bitv2018.01.24.1733@719_271513.exe
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Sat, 04 Feb 2023 15:55:42 GMT
Content-Type: image/jpg; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Location: https://img1.baidu.com/it/u=2706246333,1131866061&fm=253&fmt=auto&app=138&f=JPEG?w=420&h=560
21426.url.tudown.com/uploads/images/383801.jpg
154.218.151.71301 Moved Permanently 0 B URL HTTP/1.1 21426.url.tudown.com/uploads/images/383801.jpg
IP 154.218.151.71:0
ASN #137951 Clayer Limited
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /uploads/images/383801.jpg HTTP/1.1
Host: 21426.url.tudown.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://21426.url.tudown.com/xiaz/%E4%B8%87%E8%83%BD%E7%BD%91%E5%8D%A1%E9%A9%B1%E5%8A%A8forwin1064bitv2018.01.24.1733@719_271513.exe
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Sat, 04 Feb 2023 15:55:42 GMT
Content-Type: image/jpg; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Location: http://t13.baidu.com/it/u=2999582254,2869472530&fm=224&app=112&f=JPEG?w=500&h=500
img2.baidu.com/it/u=2722795116,804736560&fm=253&fmt=auto&app=138&f=JPEG?w=500&h=375
180.97.66.35200 OK 20 kB URL HTTP/2 img2.baidu.com/it/u=2722795116,804736560&fm=253&fmt=auto&app=138&f=JPEG?w=500&h=375
IP 180.97.66.35:0
ASN #140292 CHINATELECOM Jiangsu province Suzhou 5G network
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 500x375, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash d322746a1651d22623ac94ae6054d461
10f16a462a89bda93e495182b6d39612ec86e708
350a51045f98f80477dcbff73d29a0952136baeeafe3652e3743d6294863529a
GET /it/u=2722795116,804736560&fm=253&fmt=auto&app=138&f=JPEG?w=500&h=375 HTTP/1.1
Host: img2.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://21426.url.tudown.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: JSP3/2.0.14
date: Sat, 04 Feb 2023 15:55:42 GMT
content-type: image/webp
content-length: 20544
expires: Wed, 22 Feb 2023 03:06:33 GMT
last-modified: Mon, 05 Jan 1970 00:00:00 GMT
etag: d322746a1651d22623ac94ae6054d461
accept-ranges: bytes
access-control-allow-origin: *
timing-allow-origin: *
ohc-global-saved-time: Mon, 23 Jan 2023 03:06:33 GMT
ohc-cache-hit: suz2ct62 [1], xiangyix60 [4]
ohc-file-size: 20544
x-cache-status: MISS
X-Firefox-Spdy: h2
img2.baidu.com/it/u=1796838191,2842491992&fm=253&app=138&f=JPEG?w=500&h=666
180.97.66.35200 OK 69 kB URL HTTP/1.1 img2.baidu.com/it/u=1796838191,2842491992&fm=253&app=138&f=JPEG?w=500&h=666
IP 180.97.66.35:0
ASN #140292 CHINATELECOM Jiangsu province Suzhou 5G network
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 500x666, components 3\012- data
Hash 063f1cc89b78cc4020e967fd2ee45c12
869151dd83fd321ef648eef2fc1071e45d71a2b1
450e0dd35811e92b2b117efbfed86c7a1b623383cc097ecdc1cea1e06d3240d4
GET /it/u=1796838191,2842491992&fm=253&app=138&f=JPEG?w=500&h=666 HTTP/1.1
Host: img2.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://21426.url.tudown.com/
Connection: keep-alive
HTTP/1.1 200 OK
Server: JSP3/2.0.14
Date: Sat, 04 Feb 2023 15:55:41 GMT
Content-Type: image/jpeg
Content-Length: 68675
Connection: keep-alive
Expires: Sun, 05 Feb 2023 11:01:48 GMT
Last-Modified: Mon, 05 Jan 1970 00:00:00 GMT
ETag: 063f1cc89b78cc4020e967fd2ee45c12
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Ohc-Global-Saved-Time: Fri, 06 Jan 2023 11:01:48 GMT
Ohc-Cache-HIT: suz2ct56 [1], czix222 [4]
Ohc-File-Size: 68675
X-Cache-Status: MISS
21426.url.tudown.com/template/company/0302/css//fonts/iconfont.woff
154.218.151.71200 OK 34 kB URL HTTP/1.1 21426.url.tudown.com/template/company/0302/css//fonts/iconfont.woff
IP 154.218.151.71:0
ASN #137951 Clayer Limited
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (729), with CRLF, LF line terminators
Hash 0e74db62d7f02a8dc7562a37356f29ad
b13725aa38ba1de02ebd05b29458c7a91de68817
840a3a2e07823de91ad2849ecebab827596d7c0b33627a21c4c997b2e002ac2e
GET /template/company/0302/css//fonts/iconfont.woff HTTP/1.1
Host: 21426.url.tudown.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://21426.url.tudown.com/template/company/0302/css//style.css
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 04 Feb 2023 15:55:41 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
21426.url.tudown.com/uploads/images/604401.jpg
154.218.151.71301 Moved Permanently 0 B URL HTTP/1.1 21426.url.tudown.com/uploads/images/604401.jpg
IP 154.218.151.71:0
ASN #137951 Clayer Limited
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /uploads/images/604401.jpg HTTP/1.1
Host: 21426.url.tudown.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://21426.url.tudown.com/xiaz/%E4%B8%87%E8%83%BD%E7%BD%91%E5%8D%A1%E9%A9%B1%E5%8A%A8forwin1064bitv2018.01.24.1733@719_271513.exe
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Sat, 04 Feb 2023 15:55:42 GMT
Content-Type: image/jpg; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Location: https://img1.baidu.com/it/u=564267584,1454964416&fm=253&fmt=auto&app=138&f=JPEG?w=500&h=500
hm.baidu.com/hm.js?dd9836db2e433f487a0aa434b7b3deb7
103.235.46.191200 OK 11 kB URL HTTP/1.1 hm.baidu.com/hm.js?dd9836db2e433f487a0aa434b7b3deb7
IP 103.235.46.191:0
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type ASCII text, with very long lines (633)
Hash c6ac592f9c9fef710dc21868e5ad30ef
a625c220a9e6592177554e8dd39bca1b74e1ac33
10f4a34a8d9a431c8ab636f94d2050ab8ac92976417296aaec6b97b04273723c
GET /hm.js?dd9836db2e433f487a0aa434b7b3deb7 HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://21426.url.tudown.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: max-age=0, must-revalidate
Content-Encoding: gzip
Content-Length: 11271
Content-Type: application/javascript
Date: Sat, 04 Feb 2023 15:55:41 GMT
Etag: 9599966f54c20acf068ef44a1e90ef9b
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Server: apache
Set-Cookie: HMACCOUNT=6C53AB7EED6B846C; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
img0.baidu.com/it/u=4152997764,3625799910&fm=253&app=138&f=JPEG?w=500&h=800
124.239.243.35200 OK 37 kB URL HTTP/1.1 img0.baidu.com/it/u=4152997764,3625799910&fm=253&app=138&f=JPEG?w=500&h=800
IP 124.239.243.35:0
ASN #58539 Langfang,Hebei province, P.R.China
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 500x800, components 3\012- data
Hash f3d58433aa73d83602ec83a05be040df
0aad589cb8ad492641a5a0516d547f2ecd4003ea
d3d4911c8ea552a0552e1655d4eae978258cf3fb204779ea34d22e994dd2250b
GET /it/u=4152997764,3625799910&fm=253&app=138&f=JPEG?w=500&h=800 HTTP/1.1
Host: img0.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://21426.url.tudown.com/
Connection: keep-alive
HTTP/1.1 200 OK
Server: JSP3/2.0.14
Date: Sat, 04 Feb 2023 15:55:41 GMT
Content-Type: image/jpeg
Content-Length: 36700
Connection: keep-alive
Expires: Sun, 12 Feb 2023 19:02:30 GMT
Last-Modified: Wed, 07 Jan 1970 00:00:00 GMT
ETag: f3d58433aa73d83602ec83a05be040df
Age: 35055
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Ohc-Global-Saved-Time: Fri, 13 Jan 2023 19:02:30 GMT
Ohc-Cache-HIT: lf7ct65 [4], csix116 [4]
Ohc-File-Size: 36700
X-Cache-Status: HIT
t13.baidu.com/it/u=1666716483,1636785354&fm=224&app=112&f=JPEG?w=500&h=500
185.10.104.124200 OK 36 kB URL HTTP/1.1 t13.baidu.com/it/u=1666716483,1636785354&fm=224&app=112&f=JPEG?w=500&h=500
IP 185.10.104.124:0
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 500x500, components 3\012- data
Hash e83db45f2a736a8da246b48ad678b06d
0878bec6ad1070d38ac7eb578ccbc73453f93edd
acc3311c4c3a87f24c4cc97fdd21a7c77b968e28586fd36955979501ed03a1c3
GET /it/u=1666716483,1636785354&fm=224&app=112&f=JPEG?w=500&h=500 HTTP/1.1
Host: t13.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://21426.url.tudown.com/
Connection: keep-alive
HTTP/1.1 200 OK
Server: JSP3/2.0.14
Date: Sat, 04 Feb 2023 15:55:42 GMT
Content-Type: image/jpeg
Content-Length: 35502
Connection: keep-alive
Expires: Mon, 06 Feb 2023 00:48:04 GMT
Last-Modified: Thu, 08 Jan 1970 00:00:00 GMT
ETag: e83db45f2a736a8da246b48ad678b06d
Age: 2051582
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Ohc-Global-Saved-Time: Sat, 07 Jan 2023 00:48:04 GMT
Ohc-Cache-HIT: fra01-sys-jomo4.fra01.baidu.com [4], zhuzuncache60 [1], xiangyix215 [4]
Ohc-Response-Time: 1 0 0 0 0 0
Ohc-File-Size: 35502
X-Cache-Status: HIT
Timing-Allow-Origin: *
hm.baidu.com/hm.js?71b36f22c21839fd7a38e40d68b92934
103.235.46.191200 OK 11 kB URL HTTP/1.1 hm.baidu.com/hm.js?71b36f22c21839fd7a38e40d68b92934
IP 103.235.46.191:0
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type ASCII text, with very long lines (624)
Hash 0136d1eeb5565da402f685fc1b42100c
9ebec2ae82fb71aee999d36b0c92fa685f3881d6
08b36dc6b96abee209175125dcb08a87290c2c2bec8eabdcc41655cb2694b995
GET /hm.js?71b36f22c21839fd7a38e40d68b92934 HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://21426.url.tudown.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: max-age=0, must-revalidate
Content-Encoding: gzip
Content-Length: 11262
Content-Type: application/javascript
Date: Sat, 04 Feb 2023 15:55:41 GMT
Etag: 6d1b585d8d2bdbd0ee51b595d2ee7be9
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Server: apache
Set-Cookie: HMACCOUNT=709EC0A141197544; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
21426.url.tudown.com/uploads/images/39152.jpg
154.218.151.71301 Moved Permanently 0 B URL HTTP/1.1 21426.url.tudown.com/uploads/images/39152.jpg
IP 154.218.151.71:0
ASN #137951 Clayer Limited
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /uploads/images/39152.jpg HTTP/1.1
Host: 21426.url.tudown.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://21426.url.tudown.com/xiaz/%E4%B8%87%E8%83%BD%E7%BD%91%E5%8D%A1%E9%A9%B1%E5%8A%A8forwin1064bitv2018.01.24.1733@719_271513.exe
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Sat, 04 Feb 2023 15:55:42 GMT
Content-Type: image/jpg; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Location: https://img2.baidu.com/it/u=3147742287,2683026221&fm=253&fmt=auto&app=138&f=JPEG?w=500&h=500
img0.baidu.com/it/u=1838257260,3150999738&fm=253&fmt=auto&app=120&f=JPEG?w=800&h=1422
124.239.243.35200 OK 94 kB URL HTTP/2 img0.baidu.com/it/u=1838257260,3150999738&fm=253&fmt=auto&app=120&f=JPEG?w=800&h=1422
IP 124.239.243.35:0
ASN #58539 Langfang,Hebei province, P.R.China
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 800x1422, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 11bcb53531ca8d4f4e01b74408914190
e79aa2d657a5642d09531107897d44c4ee8a81b7
e82b314eb92093e3c3294d37dadde9edc5712fc14485a04e6fc9481bef9e01d7
GET /it/u=1838257260,3150999738&fm=253&fmt=auto&app=120&f=JPEG?w=800&h=1422 HTTP/1.1
Host: img0.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://21426.url.tudown.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: JSP3/2.0.14
date: Sat, 04 Feb 2023 15:55:42 GMT
content-type: image/webp
content-length: 93736
expires: Wed, 22 Feb 2023 12:47:59 GMT
last-modified: Sat, 10 Jan 1970 00:00:00 GMT
etag: 11bcb53531ca8d4f4e01b74408914190
age: 980044
accept-ranges: bytes
access-control-allow-origin: *
timing-allow-origin: *
ohc-global-saved-time: Mon, 23 Jan 2023 12:47:59 GMT
ohc-cache-hit: lf7ct58 [2], qdix103 [2]
ohc-file-size: 93736
x-cache-status: HIT
X-Firefox-Spdy: h2
t13.baidu.com/it/u=2999582254,2869472530&fm=224&app=112&f=JPEG?w=500&h=500
185.10.104.124200 OK 46 kB URL HTTP/1.1 t13.baidu.com/it/u=2999582254,2869472530&fm=224&app=112&f=JPEG?w=500&h=500
IP 185.10.104.124:0
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 500x500, components 3\012- data
Hash 0763f480a22ca010bcd5dcfe8f288412
6b37f8d6270986a82afd66f3146b5b0690656ac0
ce14be0fa49272f92f2ec54e56f5f7d5b4332b5e51dad9010bdb2a526f26a999
GET /it/u=2999582254,2869472530&fm=224&app=112&f=JPEG?w=500&h=500 HTTP/1.1
Host: t13.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://21426.url.tudown.com/
Connection: keep-alive
HTTP/1.1 200 OK
Server: JSP3/2.0.14
Date: Sat, 04 Feb 2023 15:55:42 GMT
Content-Type: image/jpeg
Content-Length: 45738
Connection: keep-alive
Expires: Mon, 06 Feb 2023 21:28:50 GMT
Last-Modified: Thu, 08 Jan 1970 00:00:00 GMT
ETag: 0763f480a22ca010bcd5dcfe8f288412
Age: 1987621
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Ohc-Global-Saved-Time: Sat, 07 Jan 2023 21:28:50 GMT
Ohc-Cache-HIT: fra01-sys-jomo4.fra01.baidu.com [2], zhuzuncache62 [1], qdix162 [4]
Ohc-Response-Time: 1 0 0 0 0 0
Ohc-File-Size: 45738
X-Cache-Status: HIT
Timing-Allow-Origin: *
img0.baidu.com/it/u=3872209673,3493442305&fm=253&fmt=auto&app=138&f=JPEG?w=600&h=458
124.239.243.35200 OK 56 kB URL HTTP/2 img0.baidu.com/it/u=3872209673,3493442305&fm=253&fmt=auto&app=138&f=JPEG?w=600&h=458
IP 124.239.243.35:0
ASN #58539 Langfang,Hebei province, P.R.China
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 600x458, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 5d7a33ef4725f4a72e6e8547af2b3cfe
22cbb03bfc58744b0ebe2a997c52e42c52a61cbc
139ad2e5d7d5244fdd96158b9d10e7f7844867b9e04e96b374fbce88acf065be
GET /it/u=3872209673,3493442305&fm=253&fmt=auto&app=138&f=JPEG?w=600&h=458 HTTP/1.1
Host: img0.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://21426.url.tudown.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: JSP3/2.0.14
date: Sat, 04 Feb 2023 15:55:42 GMT
content-type: image/webp
content-length: 56396
expires: Wed, 22 Feb 2023 03:14:50 GMT
last-modified: Thu, 08 Jan 1970 00:00:00 GMT
etag: 5d7a33ef4725f4a72e6e8547af2b3cfe
accept-ranges: bytes
access-control-allow-origin: *
timing-allow-origin: *
ohc-global-saved-time: Mon, 23 Jan 2023 03:14:50 GMT
ohc-cache-hit: lf7ct67 [1], wzix108 [4]
ohc-file-size: 56396
x-cache-status: MISS
X-Firefox-Spdy: h2
img1.baidu.com/it/u=2706246333,1131866061&fm=253&fmt=auto&app=138&f=JPEG?w=420&h=560
180.97.198.35200 OK 20 kB URL HTTP/2 img1.baidu.com/it/u=2706246333,1131866061&fm=253&fmt=auto&app=138&f=JPEG?w=420&h=560
IP 180.97.198.35:0
ASN #140292 CHINATELECOM Jiangsu province Suzhou 5G network
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 420x560, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 642ba864b0b4f56d3f19bc5686efaee6
ec8b97579c8180b1fd3f5558ef1844cd58ebe93e
8b5013c9616f45b03bdc818d380b851bf5d582db7f7e36a5ce529c14bf568acb
GET /it/u=2706246333,1131866061&fm=253&fmt=auto&app=138&f=JPEG?w=420&h=560 HTTP/1.1
Host: img1.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://21426.url.tudown.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: JSP3/2.0.14
date: Sat, 04 Feb 2023 15:55:42 GMT
content-type: image/webp
content-length: 20452
expires: Sun, 26 Feb 2023 02:20:18 GMT
last-modified: Thu, 08 Jan 1970 00:00:00 GMT
etag: 642ba864b0b4f56d3f19bc5686efaee6
accept-ranges: bytes
access-control-allow-origin: *
timing-allow-origin: *
ohc-global-saved-time: Fri, 27 Jan 2023 02:20:18 GMT
ohc-cache-hit: suz4ct52 [1], xaix136 [4]
ohc-file-size: 20452
x-cache-status: MISS
X-Firefox-Spdy: h2
img1.baidu.com/it/u=564267584,1454964416&fm=253&fmt=auto&app=138&f=JPEG?w=500&h=500
180.97.198.35200 OK 38 kB URL HTTP/2 img1.baidu.com/it/u=564267584,1454964416&fm=253&fmt=auto&app=138&f=JPEG?w=500&h=500
IP 180.97.198.35:0
ASN #140292 CHINATELECOM Jiangsu province Suzhou 5G network
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 500x500, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 63d1c9fb69d435d527d3d58fc4a65fde
3464d029167eb164bca3a4f8f93e06a260bbae32
4834c1948bd8ca0978171079d96c57275d58f68bf716375156aaf31d5856ce87
GET /it/u=564267584,1454964416&fm=253&fmt=auto&app=138&f=JPEG?w=500&h=500 HTTP/1.1
Host: img1.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://21426.url.tudown.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: JSP3/2.0.14
date: Sat, 04 Feb 2023 15:55:42 GMT
content-type: image/webp
content-length: 38174
expires: Thu, 02 Mar 2023 10:33:13 GMT
last-modified: Wed, 07 Jan 1970 00:00:00 GMT
etag: 63d1c9fb69d435d527d3d58fc4a65fde
accept-ranges: bytes
access-control-allow-origin: *
timing-allow-origin: *
ohc-global-saved-time: Tue, 31 Jan 2023 10:33:13 GMT
ohc-cache-hit: suz4ct58 [1], csix104 [2]
ohc-file-size: 38174
x-cache-status: MISS
X-Firefox-Spdy: h2
21426.url.tudown.com/uploads/images/31652.jpg
154.218.151.71301 Moved Permanently 0 B URL HTTP/1.1 21426.url.tudown.com/uploads/images/31652.jpg
IP 154.218.151.71:0
ASN #137951 Clayer Limited
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /uploads/images/31652.jpg HTTP/1.1
Host: 21426.url.tudown.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://21426.url.tudown.com/xiaz/%E4%B8%87%E8%83%BD%E7%BD%91%E5%8D%A1%E9%A9%B1%E5%8A%A8forwin1064bitv2018.01.24.1733@719_271513.exe
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Sat, 04 Feb 2023 15:55:42 GMT
Content-Type: image/jpg; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Location: http://img0.baidu.com/it/u=1509955901,1996398254&fm=253&app=120&f=JPEG?w=1280&h=800
21426.url.tudown.com/uploads/images/569931.jpg
154.218.151.71301 Moved Permanently 0 B URL HTTP/1.1 21426.url.tudown.com/uploads/images/569931.jpg
IP 154.218.151.71:0
ASN #137951 Clayer Limited
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /uploads/images/569931.jpg HTTP/1.1
Host: 21426.url.tudown.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://21426.url.tudown.com/xiaz/%E4%B8%87%E8%83%BD%E7%BD%91%E5%8D%A1%E9%A9%B1%E5%8A%A8forwin1064bitv2018.01.24.1733@719_271513.exe
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Sat, 04 Feb 2023 15:55:42 GMT
Content-Type: image/jpg; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Location: https://img0.baidu.com/it/u=1780152834,3106425156&fm=253&fmt=auto&app=138&f=JPEG?w=500&h=852
21426.url.tudown.com/uploads/images/522774.jpg
154.218.151.71301 Moved Permanently 0 B URL HTTP/1.1 21426.url.tudown.com/uploads/images/522774.jpg
IP 154.218.151.71:0
ASN #137951 Clayer Limited
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /uploads/images/522774.jpg HTTP/1.1
Host: 21426.url.tudown.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://21426.url.tudown.com/xiaz/%E4%B8%87%E8%83%BD%E7%BD%91%E5%8D%A1%E9%A9%B1%E5%8A%A8forwin1064bitv2018.01.24.1733@719_271513.exe
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Sat, 04 Feb 2023 15:55:42 GMT
Content-Type: image/jpg; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Location: http://t13.baidu.com/it/u=597796126,2190243643&fm=224&app=112&f=JPEG?w=500&h=500
21426.url.tudown.com/uploads/images/891936.jpg
154.218.151.71301 Moved Permanently 0 B URL HTTP/1.1 21426.url.tudown.com/uploads/images/891936.jpg
IP 154.218.151.71:0
ASN #137951 Clayer Limited
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /uploads/images/891936.jpg HTTP/1.1
Host: 21426.url.tudown.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://21426.url.tudown.com/xiaz/%E4%B8%87%E8%83%BD%E7%BD%91%E5%8D%A1%E9%A9%B1%E5%8A%A8forwin1064bitv2018.01.24.1733@719_271513.exe
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Sat, 04 Feb 2023 15:55:42 GMT
Content-Type: image/jpg; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Location: https://img0.baidu.com/it/u=1851531205,2081593831&fm=253&fmt=auto&app=138&f=JPEG?w=434&h=344
21426.url.tudown.com/uploads/images/53764.jpg
154.218.151.71301 Moved Permanently 0 B URL HTTP/1.1 21426.url.tudown.com/uploads/images/53764.jpg
IP 154.218.151.71:0
ASN #137951 Clayer Limited
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /uploads/images/53764.jpg HTTP/1.1
Host: 21426.url.tudown.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://21426.url.tudown.com/xiaz/%E4%B8%87%E8%83%BD%E7%BD%91%E5%8D%A1%E9%A9%B1%E5%8A%A8forwin1064bitv2018.01.24.1733@719_271513.exe
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Sat, 04 Feb 2023 15:55:42 GMT
Content-Type: image/jpg; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Location: https://img0.baidu.com/it/u=3225676419,2873755523&fm=253&fmt=auto&app=138&f=JPEG?w=500&h=500
hm.baidu.com/hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=939&et=0&ja=0&ln=en-us&lo=0&rnd=839288850&si=dd9836db2e433f487a0aa434b7b3deb7&v=1.3.0&lv=1&sn=58369&r=0&ww=1280&u=http%3A%2F%2F21426.url.tudown.com%2Fxiaz%2F%25E4%25B8%2587%25E8%2583%25BD%25E7%25BD%2591%25E5%258D%25A1%25E9%25A9%25B1%25E5%258A%25A8forwin1064bitv2018.01.24.1733%40719_271513.exe&tt=Ag%E4%BA%9A%E6%B4%B2%E6%B8%B8%E6%88%8F(%E4%B8%AD%E5%9B%BD)%E5%AE%98%E6%96%B9%E7%BD%91%E7%AB%99v5.5.31
103.235.46.191200 OK 43 B URL HTTP/1.1 hm.baidu.com/hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=939&et=0&ja=0&ln=en-us&lo=0&rnd=839288850&si=dd9836db2e433f487a0aa434b7b3deb7&v=1.3.0&lv=1&sn=58369&r=0&ww=1280&u=http%3A%2F%2F21426.url.tudown.com%2Fxiaz%2F%25E4%25B8%2587%25E8%2583%25BD%25E7%25BD%2591%25E5%258D%25A1%25E9%25A9%25B1%25E5%258A%25A8forwin1064bitv2018.01.24.1733%40719_271513.exe&tt=Ag%E4%BA%9A%E6%B4%B2%E6%B8%B8%E6%88%8F(%E4%B8%AD%E5%9B%BD)%E5%AE%98%E6%96%B9%E7%BD%91%E7%AB%99v5.5.31
IP 103.235.46.191:0
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=939&et=0&ja=0&ln=en-us&lo=0&rnd=839288850&si=dd9836db2e433f487a0aa434b7b3deb7&v=1.3.0&lv=1&sn=58369&r=0&ww=1280&u=http%3A%2F%2F21426.url.tudown.com%2Fxiaz%2F%25E4%25B8%2587%25E8%2583%25BD%25E7%25BD%2591%25E5%258D%25A1%25E9%25A9%25B1%25E5%258A%25A8forwin1064bitv2018.01.24.1733%40719_271513.exe&tt=Ag%E4%BA%9A%E6%B4%B2%E6%B8%B8%E6%88%8F(%E4%B8%AD%E5%9B%BD)%E5%AE%98%E6%96%B9%E7%BD%91%E7%AB%99v5.5.31 HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://21426.url.tudown.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: private, max-age=0, no-cache
Content-Length: 43
Content-Type: image/gif
Date: Sat, 04 Feb 2023 15:55:42 GMT
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Pragma: no-cache
Server: apache
Set-Cookie: HMACCOUNT=174CDAD291C9AA78; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
X-Content-Type-Options: nosniff
img2.baidu.com/it/u=489772125,984164896&fm=253&fmt=auto&app=120&f=JPEG?w=1422&h=800
180.97.66.35200 OK 108 kB URL HTTP/2 img2.baidu.com/it/u=489772125,984164896&fm=253&fmt=auto&app=120&f=JPEG?w=1422&h=800
IP 180.97.66.35:0
ASN #140292 CHINATELECOM Jiangsu province Suzhou 5G network
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 1422x800, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size 108 kB (107838 bytes)
Hash 8afe8efe452c0129e21d0af3925951f0
e44556c612b524607bd05a2d5597656f32996a13
03db89b7f62f4f298e15ceaae9b0056478ba9ceef51f15ef405a30ba3c497e8d
GET /it/u=489772125,984164896&fm=253&fmt=auto&app=120&f=JPEG?w=1422&h=800 HTTP/1.1
Host: img2.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://21426.url.tudown.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: JSP3/2.0.14
date: Sat, 04 Feb 2023 15:55:42 GMT
content-type: image/webp
content-length: 107838
expires: Wed, 01 Mar 2023 02:54:35 GMT
last-modified: Mon, 05 Jan 1970 00:00:00 GMT
etag: 8afe8efe452c0129e21d0af3925951f0
accept-ranges: bytes
access-control-allow-origin: *
timing-allow-origin: *
ohc-global-saved-time: Mon, 30 Jan 2023 02:54:35 GMT
ohc-cache-hit: suz2ct73 [1], xiangyix80 [4]
ohc-file-size: 107838
x-cache-status: MISS
X-Firefox-Spdy: h2
hm.baidu.com/hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=939&et=0&ja=0&ln=en-us&lo=0&rnd=1865358604&si=71b36f22c21839fd7a38e40d68b92934&v=1.3.0&lv=1&sn=58369&r=0&ww=1280&u=http%3A%2F%2F21426.url.tudown.com%2Fxiaz%2F%25E4%25B8%2587%25E8%2583%25BD%25E7%25BD%2591%25E5%258D%25A1%25E9%25A9%25B1%25E5%258A%25A8forwin1064bitv2018.01.24.1733%40719_271513.exe&tt=Ag%E4%BA%9A%E6%B4%B2%E6%B8%B8%E6%88%8F(%E4%B8%AD%E5%9B%BD)%E5%AE%98%E6%96%B9%E7%BD%91%E7%AB%99v5.5.31
103.235.46.191200 OK 43 B URL HTTP/1.1 hm.baidu.com/hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=939&et=0&ja=0&ln=en-us&lo=0&rnd=1865358604&si=71b36f22c21839fd7a38e40d68b92934&v=1.3.0&lv=1&sn=58369&r=0&ww=1280&u=http%3A%2F%2F21426.url.tudown.com%2Fxiaz%2F%25E4%25B8%2587%25E8%2583%25BD%25E7%25BD%2591%25E5%258D%25A1%25E9%25A9%25B1%25E5%258A%25A8forwin1064bitv2018.01.24.1733%40719_271513.exe&tt=Ag%E4%BA%9A%E6%B4%B2%E6%B8%B8%E6%88%8F(%E4%B8%AD%E5%9B%BD)%E5%AE%98%E6%96%B9%E7%BD%91%E7%AB%99v5.5.31
IP 103.235.46.191:0
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=939&et=0&ja=0&ln=en-us&lo=0&rnd=1865358604&si=71b36f22c21839fd7a38e40d68b92934&v=1.3.0&lv=1&sn=58369&r=0&ww=1280&u=http%3A%2F%2F21426.url.tudown.com%2Fxiaz%2F%25E4%25B8%2587%25E8%2583%25BD%25E7%25BD%2591%25E5%258D%25A1%25E9%25A9%25B1%25E5%258A%25A8forwin1064bitv2018.01.24.1733%40719_271513.exe&tt=Ag%E4%BA%9A%E6%B4%B2%E6%B8%B8%E6%88%8F(%E4%B8%AD%E5%9B%BD)%E5%AE%98%E6%96%B9%E7%BD%91%E7%AB%99v5.5.31 HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://21426.url.tudown.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: private, max-age=0, no-cache
Content-Length: 43
Content-Type: image/gif
Date: Sat, 04 Feb 2023 15:55:42 GMT
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Pragma: no-cache
Server: apache
Set-Cookie: HMACCOUNT=B3303E50D6F57F90; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
X-Content-Type-Options: nosniff
img2.baidu.com/it/u=3147742287,2683026221&fm=253&fmt=auto&app=138&f=JPEG?w=500&h=500
180.97.66.35200 OK 9.2 kB URL HTTP/2 img2.baidu.com/it/u=3147742287,2683026221&fm=253&fmt=auto&app=138&f=JPEG?w=500&h=500
IP 180.97.66.35:0
ASN #140292 CHINATELECOM Jiangsu province Suzhou 5G network
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 500x500, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 9b73d4a05a965972980d12322e9cb382
a9fa48d0c251f077566e891f6db8ff73a29d7640
7b25e4e82a50f92fbdcaee9177d0d3f0de66571d6d89b570428eab3b43265169
GET /it/u=3147742287,2683026221&fm=253&fmt=auto&app=138&f=JPEG?w=500&h=500 HTTP/1.1
Host: img2.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://21426.url.tudown.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: JSP3/2.0.14
date: Sat, 04 Feb 2023 15:55:42 GMT
content-type: image/webp
content-length: 9206
expires: Sun, 12 Feb 2023 07:26:14 GMT
last-modified: Sat, 10 Jan 1970 00:00:00 GMT
etag: 9b73d4a05a965972980d12322e9cb382
age: 197187
accept-ranges: bytes
access-control-allow-origin: *
timing-allow-origin: *
ohc-global-saved-time: Fri, 13 Jan 2023 07:26:14 GMT
ohc-cache-hit: suz2ct53 [4], wzix119 [4]
ohc-file-size: 9206
x-cache-status: HIT
X-Firefox-Spdy: h2
21426.url.tudown.com/template/company/0302/css//fonts/iconfont.ttf
154.218.151.71200 OK 6.9 kB URL HTTP/1.1 21426.url.tudown.com/template/company/0302/css//fonts/iconfont.ttf
IP 154.218.151.71:0
ASN #137951 Clayer Limited
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (729), with CRLF, LF line terminators
Hash 1688903587349726ab0b07ad93be781e
fe415136d0c20528e798f89ec54cfe3bec1ac2ef
2d78c5ebf703ed9de8c76007e6063813a9995ed87cd41977f74628e5df5c744d
GET /template/company/0302/css//fonts/iconfont.ttf HTTP/1.1
Host: 21426.url.tudown.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://21426.url.tudown.com/template/company/0302/css//style.css
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 04 Feb 2023 15:55:42 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip
img0.baidu.com/it/u=1780152834,3106425156&fm=253&fmt=auto&app=138&f=JPEG?w=500&h=852
124.239.243.35200 OK 27 kB URL HTTP/2 img0.baidu.com/it/u=1780152834,3106425156&fm=253&fmt=auto&app=138&f=JPEG?w=500&h=852
IP 124.239.243.35:0
ASN #58539 Langfang,Hebei province, P.R.China
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 500x852, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 6f7c48be42a7cfff061630f38547a019
581733c87fa82bcfbfd2732aa76bf080c8a67781
32ba5f9834f1857dde94bf8ac23dede351d42254462f9ff76aeb67a3c00849e8
GET /it/u=1780152834,3106425156&fm=253&fmt=auto&app=138&f=JPEG?w=500&h=852 HTTP/1.1
Host: img0.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://21426.url.tudown.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: JSP3/2.0.14
date: Sat, 04 Feb 2023 15:55:42 GMT
content-type: image/webp
content-length: 27294
expires: Fri, 24 Feb 2023 05:34:40 GMT
last-modified: Tue, 06 Jan 1970 00:00:00 GMT
etag: 6f7c48be42a7cfff061630f38547a019
age: 385829
accept-ranges: bytes
access-control-allow-origin: *
timing-allow-origin: *
ohc-global-saved-time: Wed, 25 Jan 2023 05:34:40 GMT
ohc-cache-hit: lf7ct69 [4], xiangyix69 [2]
ohc-file-size: 27294
x-cache-status: HIT
X-Firefox-Spdy: h2
img0.baidu.com/it/u=1851531205,2081593831&fm=253&fmt=auto&app=138&f=JPEG?w=434&h=344
124.239.243.35200 OK 26 kB URL HTTP/2 img0.baidu.com/it/u=1851531205,2081593831&fm=253&fmt=auto&app=138&f=JPEG?w=434&h=344
IP 124.239.243.35:0
ASN #58539 Langfang,Hebei province, P.R.China
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 434x344, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 012bb87d49e4abf251ea44e140e902e8
6a1ab463d9f7fe9c395a72ff2140d688ec2ce347
434842876aebde876690d761895aad78edd77bdfa70e6febe620359d3548c901
GET /it/u=1851531205,2081593831&fm=253&fmt=auto&app=138&f=JPEG?w=434&h=344 HTTP/1.1
Host: img0.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://21426.url.tudown.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: JSP3/2.0.14
date: Sat, 04 Feb 2023 15:55:42 GMT
content-type: image/webp
content-length: 26214
expires: Thu, 16 Feb 2023 15:06:30 GMT
last-modified: Sun, 11 Jan 1970 00:00:00 GMT
etag: 012bb87d49e4abf251ea44e140e902e8
age: 4235
accept-ranges: bytes
access-control-allow-origin: *
timing-allow-origin: *
ohc-global-saved-time: Tue, 17 Jan 2023 15:06:30 GMT
ohc-cache-hit: lf7ct59 [4], qdix155 [4]
ohc-file-size: 26214
x-cache-status: HIT
X-Firefox-Spdy: h2
img0.baidu.com/it/u=3225676419,2873755523&fm=253&fmt=auto&app=138&f=JPEG?w=500&h=500
124.239.243.35200 OK 29 kB URL HTTP/2 img0.baidu.com/it/u=3225676419,2873755523&fm=253&fmt=auto&app=138&f=JPEG?w=500&h=500
IP 124.239.243.35:0
ASN #58539 Langfang,Hebei province, P.R.China
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 500x500, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash f0a92e01ed7c9ad57bc267f3cd325999
11aa6327b3804ca5e6f4e2af7406214e976821a9
a12eb8cee649aee6b04680ea84454fa27bfedf07644e613f625257506ab34b09
GET /it/u=3225676419,2873755523&fm=253&fmt=auto&app=138&f=JPEG?w=500&h=500 HTTP/1.1
Host: img0.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://21426.url.tudown.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: JSP3/2.0.14
date: Sat, 04 Feb 2023 15:55:42 GMT
content-type: image/webp
content-length: 28940
expires: Sat, 25 Feb 2023 07:33:31 GMT
last-modified: Thu, 08 Jan 1970 00:00:00 GMT
etag: f0a92e01ed7c9ad57bc267f3cd325999
accept-ranges: bytes
access-control-allow-origin: *
timing-allow-origin: *
ohc-global-saved-time: Thu, 26 Jan 2023 07:33:31 GMT
ohc-cache-hit: lf7ct69 [1], qdix246 [4]
ohc-file-size: 28940
x-cache-status: MISS
X-Firefox-Spdy: h2
21426.url.tudown.com/uploads/images/956043.jpg
154.218.151.71301 Moved Permanently 0 B URL HTTP/1.1 21426.url.tudown.com/uploads/images/956043.jpg
IP 154.218.151.71:0
ASN #137951 Clayer Limited
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /uploads/images/956043.jpg HTTP/1.1
Host: 21426.url.tudown.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://21426.url.tudown.com/xiaz/%E4%B8%87%E8%83%BD%E7%BD%91%E5%8D%A1%E9%A9%B1%E5%8A%A8forwin1064bitv2018.01.24.1733@719_271513.exe
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Sat, 04 Feb 2023 15:55:42 GMT
Content-Type: image/jpg; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Location: http://img1.baidu.com/it/u=2145446479,2817737559&fm=253&fmt=auto&app=138&f=JPEG?w=260&h=300
21426.url.tudown.com/uploads/images/613272.jpg
154.218.151.71301 Moved Permanently 0 B URL HTTP/1.1 21426.url.tudown.com/uploads/images/613272.jpg
IP 154.218.151.71:0
ASN #137951 Clayer Limited
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /uploads/images/613272.jpg HTTP/1.1
Host: 21426.url.tudown.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://21426.url.tudown.com/xiaz/%E4%B8%87%E8%83%BD%E7%BD%91%E5%8D%A1%E9%A9%B1%E5%8A%A8forwin1064bitv2018.01.24.1733@719_271513.exe
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Sat, 04 Feb 2023 15:55:42 GMT
Content-Type: image/jpg; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Location: https://img0.baidu.com/it/u=2205886886,575532321&fm=253&fmt=auto&app=138&f=JPEG?w=750&h=500
21426.url.tudown.com/uploads/images/262608.jpg
154.218.151.71301 Moved Permanently 0 B URL HTTP/1.1 21426.url.tudown.com/uploads/images/262608.jpg
IP 154.218.151.71:0
ASN #137951 Clayer Limited
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /uploads/images/262608.jpg HTTP/1.1
Host: 21426.url.tudown.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://21426.url.tudown.com/xiaz/%E4%B8%87%E8%83%BD%E7%BD%91%E5%8D%A1%E9%A9%B1%E5%8A%A8forwin1064bitv2018.01.24.1733@719_271513.exe
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Sat, 04 Feb 2023 15:55:42 GMT
Content-Type: image/jpg; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Location: https://img2.baidu.com/it/u=1061100348,253143778&fm=253&fmt=auto&app=138&f=JPEG?w=268&h=500
21426.url.tudown.com/uploads/images/710082.jpg
154.218.151.71301 Moved Permanently 0 B URL HTTP/1.1 21426.url.tudown.com/uploads/images/710082.jpg
IP 154.218.151.71:0
ASN #137951 Clayer Limited
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /uploads/images/710082.jpg HTTP/1.1
Host: 21426.url.tudown.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://21426.url.tudown.com/xiaz/%E4%B8%87%E8%83%BD%E7%BD%91%E5%8D%A1%E9%A9%B1%E5%8A%A8forwin1064bitv2018.01.24.1733@719_271513.exe
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Sat, 04 Feb 2023 15:55:42 GMT
Content-Type: image/jpg; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Location: http://img0.baidu.com/it/u=2688390421,310851128&fm=253&app=120&f=JPEG?w=1280&h=800
21426.url.tudown.com/uploads/images/541161.jpg
154.218.151.71301 Moved Permanently 0 B URL HTTP/1.1 21426.url.tudown.com/uploads/images/541161.jpg
IP 154.218.151.71:0
ASN #137951 Clayer Limited
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /uploads/images/541161.jpg HTTP/1.1
Host: 21426.url.tudown.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://21426.url.tudown.com/xiaz/%E4%B8%87%E8%83%BD%E7%BD%91%E5%8D%A1%E9%A9%B1%E5%8A%A8forwin1064bitv2018.01.24.1733@719_271513.exe
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Sat, 04 Feb 2023 15:55:42 GMT
Content-Type: image/jpg; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Location: http://t14.baidu.com/it/u=178061165,4207654412&fm=224&app=112&f=JPEG?w=500&h=281
t13.baidu.com/it/u=597796126,2190243643&fm=224&app=112&f=JPEG?w=500&h=500
185.10.104.124200 OK 53 kB URL HTTP/1.1 t13.baidu.com/it/u=597796126,2190243643&fm=224&app=112&f=JPEG?w=500&h=500
IP 185.10.104.124:0
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 500x500, components 3\012- data
Hash a847e9383fb727ce8c5a2190594e18cb
c74ec435acd19d56c02c07b5cdaed115062e528a
88f0e9742191b9eb36e97eeb25d939aed28f68c737b1e4f1365b1f3351efe071
GET /it/u=597796126,2190243643&fm=224&app=112&f=JPEG?w=500&h=500 HTTP/1.1
Host: t13.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://21426.url.tudown.com/
Connection: keep-alive
HTTP/1.1 200 OK
Server: JSP3/2.0.14
Date: Sat, 04 Feb 2023 15:55:42 GMT
Content-Type: image/jpeg
Content-Length: 52758
Connection: keep-alive
Expires: Mon, 06 Mar 2023 13:10:42 GMT
Last-Modified: Thu, 08 Jan 1970 00:00:00 GMT
ETag: a847e9383fb727ce8c5a2190594e18cb
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Ohc-Global-Saved-Time: Sat, 04 Feb 2023 13:10:42 GMT
Ohc-Upstream-Trace: 111.177.6.161; 58.20.204.52
Ohc-Cache-HIT: fra01-sys-jomo5.fra01.baidu.com [2], zhuzuncache52 [1], xiangyix161 [2]
Ohc-Response-Time: 1 0 0 0 258 259
Ohc-File-Size: 52758
X-Cache-Status: MISS
Timing-Allow-Origin: *
t14.baidu.com/it/u=178061165,4207654412&fm=224&app=112&f=JPEG?w=500&h=281
185.10.104.124200 OK 35 kB URL HTTP/1.1 t14.baidu.com/it/u=178061165,4207654412&fm=224&app=112&f=JPEG?w=500&h=281
IP 185.10.104.124:0
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 500x281, components 3\012- data
Hash a6c2daba45dde30dd9131f9171169231
d702b8fe2c0d525e2071b39130d7681926a33532
720de0d6691ba46706da89b52afa7b2057d9908e1f7b8e61e7436ef945b6dd12
GET /it/u=178061165,4207654412&fm=224&app=112&f=JPEG?w=500&h=281 HTTP/1.1
Host: t14.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://21426.url.tudown.com/
Connection: keep-alive
HTTP/1.1 200 OK
Server: JSP3/2.0.14
Date: Sat, 04 Feb 2023 15:55:43 GMT
Content-Type: image/jpeg
Content-Length: 35046
Connection: keep-alive
Expires: Fri, 10 Feb 2023 07:52:21 GMT
Last-Modified: Wed, 07 Jan 1970 00:00:00 GMT
ETag: a6c2daba45dde30dd9131f9171169231
Age: 1982604
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Ohc-Global-Saved-Time: Wed, 11 Jan 2023 07:52:21 GMT
Ohc-Cache-HIT: fra01-sys-jomo0.fra01.baidu.com [4], zhuzuncache60 [4], wzix60 [2]
Ohc-Response-Time: 1 0 0 0 0 0
Ohc-File-Size: 35046
X-Cache-Status: HIT
Timing-Allow-Origin: *
img1.baidu.com/it/u=2145446479,2817737559&fm=253&fmt=auto&app=138&f=JPEG?w=260&h=300
180.97.198.35200 OK 10 kB URL HTTP/1.1 img1.baidu.com/it/u=2145446479,2817737559&fm=253&fmt=auto&app=138&f=JPEG?w=260&h=300
IP 180.97.198.35:0
ASN #140292 CHINATELECOM Jiangsu province Suzhou 5G network
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 260x300, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 570f572dd8d206b622412a5ae66aff74
861f80ced1a946c2b44e904a31cd539ccaeca52d
c0079ac729e2e0efaf1655a8ad96b09cbf387d82ad4df4903d6355b1f9bb8b2b
GET /it/u=2145446479,2817737559&fm=253&fmt=auto&app=138&f=JPEG?w=260&h=300 HTTP/1.1
Host: img1.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://21426.url.tudown.com/
Connection: keep-alive
HTTP/1.1 200 OK
Server: JSP3/2.0.14
Date: Sat, 04 Feb 2023 15:55:43 GMT
Content-Type: image/webp
Content-Length: 10034
Connection: keep-alive
Expires: Sun, 19 Feb 2023 02:30:25 GMT
Last-Modified: Thu, 08 Jan 1970 00:00:00 GMT
ETag: 570f572dd8d206b622412a5ae66aff74
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Ohc-Global-Saved-Time: Fri, 20 Jan 2023 02:30:25 GMT
Ohc-Cache-HIT: suz4ct52 [1], suzix173 [4]
Ohc-File-Size: 10034
X-Cache-Status: MISS
img0.baidu.com/it/u=1509955901,1996398254&fm=253&app=120&f=JPEG?w=1280&h=800
124.239.243.35200 OK 107 kB URL HTTP/1.1 img0.baidu.com/it/u=1509955901,1996398254&fm=253&app=120&f=JPEG?w=1280&h=800
IP 124.239.243.35:0
ASN #58539 Langfang,Hebei province, P.R.China
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CC 2017 (Windows), datetime=2019:04:01 17:23:12], baseline, precision 8, 1280x800, components 3\012- data
Size 107 kB (106774 bytes)
Hash 4ea61bfb320e9f250591dc30d955f30e
e6bdcf37df2b2655de418af2ecffee266a3efb6e
2472d1de6b554ce3ac4f66707994b36057f49a1e2c2effaa8ee10c3be9c2c4b0
GET /it/u=1509955901,1996398254&fm=253&app=120&f=JPEG?w=1280&h=800 HTTP/1.1
Host: img0.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://21426.url.tudown.com/
Connection: keep-alive
HTTP/1.1 200 OK
Server: JSP3/2.0.14
Date: Sat, 04 Feb 2023 15:55:42 GMT
Content-Type: image/jpeg
Content-Length: 106774
Connection: keep-alive
Expires: Sun, 05 Mar 2023 14:44:35 GMT
Last-Modified: Thu, 15 Jan 1970 00:00:00 GMT
ETag: 4ea61bfb320e9f250591dc30d955f30e
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Ohc-Global-Saved-Time: Fri, 03 Feb 2023 14:44:35 GMT
Ohc-Cache-HIT: lf7ct65 [1], qdix229 [4]
Ohc-File-Size: 106774
X-Cache-Status: MISS
img2.baidu.com/it/u=1061100348,253143778&fm=253&fmt=auto&app=138&f=JPEG?w=268&h=500
180.97.66.35200 OK 18 kB URL HTTP/2 img2.baidu.com/it/u=1061100348,253143778&fm=253&fmt=auto&app=138&f=JPEG?w=268&h=500
IP 180.97.66.35:0
ASN #140292 CHINATELECOM Jiangsu province Suzhou 5G network
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 268x500, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 3f7742725ed1db39a8ba822bf252ca1a
3db62e27835547159ea71c3bda285baa3b2b5ed2
5862eb867da8dc8f0797bb6c86be57737556e387de3f1e6993db5a95b0ccf02c
GET /it/u=1061100348,253143778&fm=253&fmt=auto&app=138&f=JPEG?w=268&h=500 HTTP/1.1
Host: img2.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://21426.url.tudown.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: JSP3/2.0.14
date: Sat, 04 Feb 2023 15:55:43 GMT
content-type: image/webp
content-length: 17832
expires: Tue, 21 Feb 2023 04:06:51 GMT
last-modified: Sat, 10 Jan 1970 00:00:00 GMT
etag: 3f7742725ed1db39a8ba822bf252ca1a
accept-ranges: bytes
access-control-allow-origin: *
timing-allow-origin: *
ohc-global-saved-time: Sun, 22 Jan 2023 04:06:51 GMT
ohc-cache-hit: suz2ct63 [1], czix170 [4]
ohc-file-size: 17832
x-cache-status: MISS
X-Firefox-Spdy: h2
img0.baidu.com/it/u=2205886886,575532321&fm=253&fmt=auto&app=138&f=JPEG?w=750&h=500
124.239.243.35200 OK 52 kB URL HTTP/2 img0.baidu.com/it/u=2205886886,575532321&fm=253&fmt=auto&app=138&f=JPEG?w=750&h=500
IP 124.239.243.35:0
ASN #58539 Langfang,Hebei province, P.R.China
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 750x500, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash e342133f541c4500dc0c4d8a402f9098
2a2ef272e92e8c2d0bd9c965c50055a8ffff8a59
5388813eaa2093e989b5bb154df843dc99f35203585ec6fcc69691f6da7a2d90
GET /it/u=2205886886,575532321&fm=253&fmt=auto&app=138&f=JPEG?w=750&h=500 HTTP/1.1
Host: img0.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://21426.url.tudown.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: JSP3/2.0.14
date: Sat, 04 Feb 2023 15:55:43 GMT
content-type: image/webp
content-length: 52490
expires: Thu, 23 Feb 2023 09:23:57 GMT
last-modified: Fri, 09 Jan 1970 00:00:00 GMT
etag: e342133f541c4500dc0c4d8a402f9098
age: 950054
accept-ranges: bytes
access-control-allow-origin: *
timing-allow-origin: *
ohc-global-saved-time: Tue, 24 Jan 2023 09:23:57 GMT
ohc-cache-hit: lf7ct88 [4], xiangyix113 [2]
ohc-file-size: 52490
x-cache-status: HIT
X-Firefox-Spdy: h2
img0.baidu.com/it/u=2688390421,310851128&fm=253&app=120&f=JPEG?w=1280&h=800
124.239.243.35200 OK 69 kB URL HTTP/1.1 img0.baidu.com/it/u=2688390421,310851128&fm=253&app=120&f=JPEG?w=1280&h=800
IP 124.239.243.35:0
ASN #58539 Langfang,Hebei province, P.R.China
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 1280x800, components 3\012- data
Hash c1d9b0a20c9d31bde5ff9694a64ca11a
8bdcdfd3bda3024aeb1e1030ad993dc84f3174db
807a69cccde2ed24645da418fa2edab0a940d43f3474440e029998faca537c96
GET /it/u=2688390421,310851128&fm=253&app=120&f=JPEG?w=1280&h=800 HTTP/1.1
Host: img0.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://21426.url.tudown.com/
Connection: keep-alive
HTTP/1.1 200 OK
Server: JSP3/2.0.14
Date: Sat, 04 Feb 2023 15:55:43 GMT
Content-Type: image/jpeg
Content-Length: 68737
Connection: keep-alive
Expires: Sat, 04 Mar 2023 08:03:31 GMT
Last-Modified: Tue, 06 Jan 1970 00:00:00 GMT
ETag: c1d9b0a20c9d31bde5ff9694a64ca11a
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Ohc-Global-Saved-Time: Thu, 02 Feb 2023 08:03:31 GMT
Ohc-Cache-HIT: lf7ct62 [1], xiangyix97 [4]
Ohc-File-Size: 68737
X-Cache-Status: MISS
21426.url.tudown.com/favicon.ico
154.218.151.71200 OK 0 B URL HTTP/1.1 21426.url.tudown.com/favicon.ico
IP 154.218.151.71:0
ASN #137951 Clayer Limited
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /favicon.ico HTTP/1.1
Host: 21426.url.tudown.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://21426.url.tudown.com/xiaz/%E4%B8%87%E8%83%BD%E7%BD%91%E5%8D%A1%E9%A9%B1%E5%8A%A8forwin1064bitv2018.01.24.1733@719_271513.exe
Cookie: Hm_lvt_dd9836db2e433f487a0aa434b7b3deb7=1675526179; Hm_lpvt_dd9836db2e433f487a0aa434b7b3deb7=1675526179; Hm_lvt_71b36f22c21839fd7a38e40d68b92934=1675526179; Hm_lpvt_71b36f22c21839fd7a38e40d68b92934=1675526179
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 04 Feb 2023 15:55:43 GMT
Content-Type: image/x-icon
Content-Length: 0
Last-Modified: Tue, 30 Jul 2019 15:51:36 GMT
Connection: keep-alive
ETag: "5d406788-0"
Accept-Ranges: bytes
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5c030376-7935-4601-969c-86a91f4f5e85.jpeg
34.120.237.76200 OK 7.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5c030376-7935-4601-969c-86a91f4f5e85.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash d7afd5ce8fb9ec7b62e528bf97705e49
afbf22f5d8f54adcb00e8980a9b22f2c5b6703c3
b2d93ba6c0ed2c858d91afba1c81251afbffa41c779be2e9203994dcfb7bbc9d
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5c030376-7935-4601-969c-86a91f4f5e85.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 7249
x-amzn-requestid: 007ce521-ed5c-4074-a314-684ad0df2e22
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fyD9GH5goAMF_ag=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dd8053-7060f02b767c90371991a190;Sampled=0
x-amzn-remapped-date: Fri, 03 Feb 2023 21:44:51 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 5fTV_e56nzjiXo4Guu67WXDDvp3nrjB0Yfyy6ByjcDSx23J-8r0fmQ==
via: 1.1 0aebf3fe433ff96e68d785fad4ea4c0e.cloudfront.net (CloudFront), 1.1 a847181d425b7fc57e81eb3c800bfdf2.cloudfront.net (CloudFront), 1.1 google
date: Fri, 03 Feb 2023 22:10:21 GMT
age: 63926
etag: "afbf22f5d8f54adcb00e8980a9b22f2c5b6703c3"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2