urlquery - report: vz.dyjqd.com/beiyang/snbc_btp-l520_l525

Overview

URL	vz.dyjqd.com/beiyang/snbc_btp-l520_l525_l540.exe
IP	103.205.7.139
ASN	AS Number for CHINANET jiangsu province backbone
Location	China
Report completed	2022-07-01 16:31:48 UTC
Status	Loading report..
urlquery Alerts	No alerts detected

Settings

UserAgent	Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Referer

Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Blocklists

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

Added / Verified	Severity	Host	Comment
2022-07-01	2	vz.dyjqd.com/beiyang/snbc_btp-l520_l525_l540.exe	Malware

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

Files

No files detected

Passive DNS (14)

Passive DNS Source	Fully Qualifying Domain Name	Rank	First Seen	Last Seen	IP	Comment
[Mnemonic Passive DNS]	contile.services.mozilla.com (1)	1114	No data	No data	34.117.237.239
[Mnemonic Passive DNS]	www.dyjqd.com (21)	0	2013-06-19 06:40:44 UTC	2013-06-19 06:40:44 UTC	103.38.42.118	Unknown ranking
[Mnemonic Passive DNS]	bdimg.share.baidu.com (9)	67969	2015-06-26 11:27:45 UTC	2022-07-01 12:14:54 UTC	182.61.201.93
[Mnemonic Passive DNS]	r3.o.lencr.org (5)	344	2020-12-02 08:52:13 UTC	2022-07-01 12:51:19 UTC	23.36.76.226
[Mnemonic Passive DNS]	push.services.mozilla.com (1)	2140	2014-10-24 08:27:06 UTC	2022-07-01 14:37:30 UTC	52.34.226.44
[Mnemonic Passive DNS]	img-getpocket.cdn.mozilla.net (6)	1631	2017-09-01 03:40:57 UTC	2022-07-01 14:37:32 UTC	34.120.237.76
[Mnemonic Passive DNS]	cpro.baidustatic.com (1)	23298	2012-08-26 15:55:02 UTC	2022-07-01 11:53:34 UTC	113.105.172.35
[Mnemonic Passive DNS]	firefox.settings.services.mozilla.com (2)	867	2016-03-17 08:25:01 UTC	2020-05-25 20:01:47 UTC	54.230.111.7
[Mnemonic Passive DNS]	content-signature-2.cdn.mozilla.net (1)	1152	2020-11-03 12:26:46 UTC	2022-07-01 05:33:42 UTC	54.230.111.14
[Mnemonic Passive DNS]	vz.dyjqd.com (2)	0	No data	No data	103.205.7.139	Unknown ranking
[Mnemonic Passive DNS]	ocsp.digicert.com (1)	86	2012-11-29 12:49:49 UTC	2022-07-01 15:56:06 UTC	93.184.220.29
[Mnemonic Passive DNS]	ocsp.globalsign.com (1)	2075	2012-05-25 06:20:55 UTC	2022-07-01 14:38:28 UTC	104.18.21.226
[Mnemonic Passive DNS]	hm.baidu.com (3)	8254	2017-01-30 05:28:59 UTC	2022-07-01 14:14:00 UTC	103.235.46.191
[Mnemonic Passive DNS]	a.dyjqd.com (2)	0	2019-07-23 04:20:52 UTC	2022-06-30 16:24:15 UTC	115.231.186.130	Unknown ranking

Recent reports on same IP/ASN/Domain

Last 2 reports on IP: 103.205.7.139

Date	UQ / IDS / BL	URL	IP
2022-07-02 16:23:36 +0000	0 - 0 - 1	vz.dyjqd.com/beiyang/snbc_btp-l520_l525_l540.exe	103.205.7.139
2022-06-30 16:24:22 +0000	0 - 0 - 1	vz.dyjqd.com/beiyang/snbc_btp-l520_l525_l540.exe	103.205.7.139

Last 10 reports on ASN: AS Number for CHINANET jiangsu province backbone

Date	UQ / IDS / BL	URL	IP
2022-08-07 16:17:05 +0000	0 - 0 - 1	csc025.com/userfiles/file/	103.26.79.77
2022-08-07 12:51:58 +0000	0 - 0 - 3	csc0532.com/userfiles/file/20210702071930_fma (...)	103.26.79.77
2022-08-05 11:47:48 +0000	0 - 0 - 3	csc025.com/userfiles/file/20220223234908_whus (...)	103.26.79.77
2022-08-04 03:01:09 +0000	0 - 0 - 1	ahhkc.com/M/Product/6294302734.html	103.56.154.30
2022-08-03 16:51:40 +0000	0 - 0 - 3	scsxian.com/userfiles/file/20220215102425_c7d (...)	103.26.79.77
2022-08-03 13:47:37 +0000	0 - 0 - 3	tscyw.net/userfiles/file/20210707080634_8awzmo.pdf	103.26.78.29
2022-08-02 20:58:47 +0000	0 - 0 - 3	csc0898.com/userfiles/file/20210906092914_jis (...)	103.26.79.77
2022-08-02 12:20:03 +0000	0 - 0 - 1	csc0512.com/userfiles/file/	103.26.79.77
2022-08-02 10:34:11 +0000	0 - 0 - 3	csc0731.com/userfiles/file/20220531064352_7cp (...)	103.26.78.29
2022-08-01 23:49:23 +0000	0 - 0 - 1	dl.198424.com/soft1/sc2_tool.zip	58.215.47.240

No other reports on domain: dyjqd.com

JavaScript

Executed Scripts (19)

Executed Evals (0)

Executed Writes (14)

#1 JavaScript::Write (size: 112, repeated: 1) - SHA256: 27efe312729674ebb7c50404796e0942d25d1da370a9f1df1193ed05fda74ae9

                                        < a href = "http://www.dyjqd.com/plus/search.php?kwtype=0&q=%B4%F2%D3%A1%BB%FA%B9%B2%CF%ED&.x=40&.y=25" > Sp: q� < /a>

#2 JavaScript::Write (size: 65, repeated: 1) - SHA256: fa7be97b30871ded940b0a454dde80c44629c341d36bb55a169f0e12ca9934fe

                                        < a href = "http://www.dyjqd.com/soft/list_69_1.html" > ��D� < /a>

#3 JavaScript::Write (size: 49, repeated: 1) - SHA256: e35c46b6e44b0357ca8d0062f850cf1e8aa370d1ffcee76ac9a1210363b91f43

                                        < div class = 'bdsharebuttonbox'
data - tag = 'share_1' >

#4 JavaScript::Write (size: 71, repeated: 1) - SHA256: f73273459e94a03567494fef357228173645235f6e63d2e8d0dfaf82a0153720

                                        < a href = '#'
class = 'bds_tieba'
data - cmd = 'tieba'
title = '�0~�4'
'></a>

#5 JavaScript::Write (size: 9, repeated: 1) - SHA256: 36027515792ddd0b10aa5f1b720580f79d5d9bfbd451324915a2a0faaba4607c

                                        ��
":

#6 JavaScript::Write (size: 65, repeated: 1) - SHA256: 9123978fb44291a2789810b23ab492b37794ec8704d67c4b582e7c15957be478

                                        < a href = "http://www.dyjqd.com/soft/list_68_1.html" > �o�
} < /a>

#7 JavaScript::Write (size: 73, repeated: 1) - SHA256: a608aa1544c086011c17e05442739302d912b7f8565e73655b2eb2807c554266

                                        < a href = '#'
class = 'bds_weixin'
data - cmd = 'weixin'
title = '�0��' > < /a>

#8 JavaScript::Write (size: 61, repeated: 1) - SHA256: b6c50360292a9c735d6ce243cb8572ce2c5388f33b8ce72abc019b83d887203b

                                        < a href = '#'
class = 'bds_more'
data - cmd = 'more' > < /a></div > < /div>

#9 JavaScript::Write (size: 429, repeated: 1) - SHA256: f5b5414abaa9ad4c49a533e5fe013bd8df8864c4b511df1727538916d6729387

                                        < script > window._bd_share_config = {
    'common': {
        'bdSnsKey': {},
        'bdText': '',
        'bdMini': '1',
        'bdMiniList': false,
        'bdPic': '',
        'bdStyle': '0',
        'bdSize': '32'
    },
    'share': [{
        'tag': 'share_1',
        'bdSize': 32,
    }, {
        'tag': 'share_2',
        'bdSize': 16,
    }]
};
with(document) 0[(getElementsByTagName('head')[0] || body).appendChild(createElement('script')).src = 'http://bdimg.share.baidu.com/static/api/js/share.js?v=89860593.js?cdnversion=' + ~(-new Date() / 36e5)]; < /script>

#10 JavaScript::Write (size: 69, repeated: 1) - SHA256: e2fc341fd214c2651341e96da7fdc2b6d2b5766bd14924dcc7b406931b135222

                                        < a href = '#'
class = 'bds_tqq'
data - cmd = 'tqq'
title = '�0~��Z' > < /a>

#11 JavaScript::Write (size: 25, repeated: 1) - SHA256: 0082e1e85746c1c4da675f6b65f90236f3c03bcf26297ddeefd8131f59378d9d

                                        < div class = 'fxd' > �0:

#12 JavaScript::Write (size: 67, repeated: 1) - SHA256: c3e4c585107f9ff10d31d2ba02b8f5ad8a2b3dcf1b16b8bc11976c3e7ef93fd5

                                        < a href = '#'
class = 'bds_sqq'
data - cmd = 'sqq'
title = '�0QQ}�' > < /a>

#13 JavaScript::Write (size: 73, repeated: 1) - SHA256: 59c5487f36e45e509a4b913b0f9294583dc76da006f97213215ac9b666fef70f

                                        < a href = '#'
class = 'bds_tsina'
data - cmd = 'tsina'
title = '�0�j�Z' > < /a>

#14 JavaScript::Write (size: 100, repeated: 1) - SHA256: 4bafd2562a0790e752449e29ee60958db7ab9364b42d7015cdec850834b65a83

                                        < script type = 'text/javascript'
src = '//a.dyjqd.com/common/js/resource/lf19em.js?qldkht=dth' > < /script>

HTTP Transactions (56)

Request	Response
POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	23.36.76.226 HTTP/1.1 200 OK Content-Type: application/ocsp-response Server: nginx Content-Length: 503 ETag: "3E2650132BC75A58C9B08C2A69EC353237F48E840D9D2481F9D5E63D92ABBC6F" Last-Modified: Wed, 29 Jun 2022 04:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=4898 Expires: Fri, 01 Jul 2022 17:53:13 GMT Date: Fri, 01 Jul 2022 16:31:35 GMT Connection: keep-alive --- Additional Info --- Magic: data Size: 503 Md5: f877dcf1049551cb05fe926e4b94fb51 Sha1: 2f5c8da538c78853b68ca58a3df5dd64b032291b Sha256: 3e2650132bc75a58c9b08c2a69ec353237f48e840d9d2481f9d5e63d92abbc6f
GET /v1/ HTTP/1.1 Host: firefox.settings.services.mozilla.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	$Magic: JSON data\012- , ASCII text, with very long lines (939), with no line terminators Size: 939 Md5: 91dd975a7b17b2922dd23c0e49314e40$ 54.230.111.7 HTTP/1.1 200 OK Content-Type: application/json Content-Length: 939 Connection: keep-alive Access-Control-Allow-Origin: * Access-Control-Expose-Headers: Retry-After, Backoff, Content-Type, Content-Length, Alert Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none'; Date: Fri, 01 Jul 2022 15:48:59 GMT Strict-Transport-Security: max-age=31536000 X-Content-Type-Options: nosniff X-Cache: Hit from cloudfront Via: 1.1 92c4bb210eab82a152000047d3609a02.cloudfront.net (CloudFront) X-Amz-Cf-Pop: OSL50-P1 X-Amz-Cf-Id: y5AZnfEYDBSR9VyHQRX8w3-h5g9zKSlcyyEYIVhz5TO0rXptirdWgg== Age: 2556 --- Additional Info --- Magic: JSON data\012- , ASCII text, with very long lines (939), with no line terminators Size: 939 Md5: 91dd975a7b17b2922dd23c0e49314e40 Sha1: 57a2ece1e3cee7c4ebf927f2ba92f52cac395fe2 Sha256: 09966873bbf317f8910c59544cfde2a6d46e8acd2905797cc7c85c6b4d18ea8a
GET /chains/remote-settings.content-signature.mozilla.org-2022-08-10-12-10-21.chain HTTP/1.1 Host: content-signature-2.cdn.mozilla.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	$Magic: PEM certificate\012- , ASCII text Size: 5348 Md5: 581454acdd98f34fd3fbabd0977ade29$ 54.230.111.14 HTTP/2 200 OK content-type: binary/octet-stream content-length: 5348 last-modified: Tue, 21 Jun 2022 12:10:22 GMT content-disposition: attachment accept-ranges: bytes server: AmazonS3 date: Fri, 01 Jul 2022 03:26:42 GMT etag: "581454acdd98f34fd3fbabd0977ade29" x-cache: Hit from cloudfront via: 1.1 193a8c13b6e0a6b90db7172f6358335e.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-P1 x-amz-cf-id: rVCp8KmTse4DDjE4REn4B9hQ_18IUPYtM9V3aQ6O6IXPp9bX2cCCCQ== age: 47094 X-Firefox-Spdy: h2 --- Additional Info --- Magic: PEM certificate\012- , ASCII text Size: 5348 Md5: 581454acdd98f34fd3fbabd0977ade29 Sha1: d8d86c0b513137aeb85de01cea7b272c35eb6ab4 Sha256: e98f8f33ba5ed59c3cfdf2ae54957ed32652cf0899f3c8db4b5872e3ece1e4eb
GET /v1/tiles HTTP/1.1 Host: contile.services.mozilla.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	$Magic: JSON data\012- , ASCII text, with no line terminators Size: 12 Md5: 23e88fb7b99543fb33315b29b1fad9d6$ 34.117.237.239 HTTP/2 200 OK server: nginx date: Fri, 01 Jul 2022 16:31:35 GMT content-type: application/json content-length: 12 strict-transport-security: max-age=31536000 via: 1.1 google alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JSON data\012- , ASCII text, with no line terminators Size: 12 Md5: 23e88fb7b99543fb33315b29b1fad9d6 Sha1: a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce Sha256: 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /beiyang/snbc_btp-l520_l525_l540.exe HTTP/1.1 Host: vz.dyjqd.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Upgrade-Insecure-Requests: 1	$Magic: HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ISO-8859 text, with very long lines (414), with CRLF line terminators Size: 4348 Md5: 116ad16e44165beca16d5dcde9736e3d$ 103.205.7.139 HTTP/1.1 404 Not Found Content-Type: text/html Server: Microsoft-IIS/8.5 Date: Fri, 01 Jul 2022 16:31:34 GMT Content-Length: 4348 --- Additional Info --- Magic: HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ISO-8859 text, with very long lines (414), with CRLF line terminators Size: 4348 Md5: 116ad16e44165beca16d5dcde9736e3d Sha1: 7bfc5babba9f99671d3025fc85ff55706f354cd6 Sha256: 3ef4b60e7138aa6011a1fd54c8fd8980dc50fce37ad479eacd59e114f3eb5196 Alerts: Blocklists: - fortinet: Malware
GET /images/logo.gif HTTP/1.1 Host: www.dyjqd.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://vz.dyjqd.com/	$Magic: GIF image data, version 89a, 196 x 56\012- data Size: 4089 Md5: 0ab99dcf186484633ab49697e4d34a5a$ 103.38.42.118 HTTP/1.1 200 OK Content-Type: image/gif Last-Modified: Mon, 26 Nov 2012 16:15:56 GMT Accept-Ranges: bytes ETag: "0866550f1cbcd1:0" Server: Microsoft-IIS/8.5 Date: Fri, 01 Jul 2022 16:31:36 GMT Content-Length: 4089 --- Additional Info --- Magic: GIF image data, version 89a, 196 x 56\012- data Size: 4089 Md5: 0ab99dcf186484633ab49697e4d34a5a Sha1: b6ceca0ca2eb1a173e70fe982a0d94ea1f489aac Sha256: 6ed45c31966f19bfbcb710492a5bd607c182031d105c40e4504cda3be817b9ed
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 Host: firefox.settings.services.mozilla.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: application/json Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: application/json Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	$Magic: JSON data\012- , ASCII text, with very long lines (329), with no line terminators Size: 329 Md5: 0333b0655111aa68de771adfcc4db243$ 54.230.111.7 HTTP/1.1 200 OK Content-Type: application/json Content-Length: 329 Connection: keep-alive Access-Control-Allow-Origin: * Access-Control-Expose-Headers: Content-Type, Alert, Cache-Control, Pragma, Backoff, Last-Modified, ETag, Expires, Content-Length, Retry-After Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none'; Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT Strict-Transport-Security: max-age=31536000 X-Content-Type-Options: nosniff Cache-Control: max-age=3600 Date: Fri, 01 Jul 2022 15:38:48 GMT Expires: Fri, 01 Jul 2022 16:11:33 GMT ETag: "1648230346554" X-Cache: Hit from cloudfront Via: 1.1 c2b101e67ac25a2f0013450d56ecac38.cloudfront.net (CloudFront) X-Amz-Cf-Pop: OSL50-P1 X-Amz-Cf-Id: RX5HA8lXZBB_fGKR2_O5A9QJLJraYnXKuJ5gZKSZEpEjQJ1YDR6tZg== Age: 3168 --- Additional Info --- Magic: JSON data\012- , ASCII text, with very long lines (329), with no line terminators Size: 329 Md5: 0333b0655111aa68de771adfcc4db243 Sha1: 63f295a144ac87a7c8e23417626724eeca68a7eb Sha256: 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /favicon.ico HTTP/1.1 Host: vz.dyjqd.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://vz.dyjqd.com/beiyang/snbc_btp-l520_l525_l540.exe	$Magic: HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ISO-8859 text, with very long lines (414), with CRLF line terminators Size: 4348 Md5: 116ad16e44165beca16d5dcde9736e3d$ 103.205.7.139 HTTP/1.1 404 Not Found Content-Type: text/html Server: Microsoft-IIS/8.5 Date: Fri, 01 Jul 2022 16:31:34 GMT Content-Length: 4348 --- Additional Info --- Magic: HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ISO-8859 text, with very long lines (414), with CRLF line terminators Size: 4348 Md5: 116ad16e44165beca16d5dcde9736e3d Sha1: 7bfc5babba9f99671d3025fc85ff55706f354cd6 Sha256: 3ef4b60e7138aa6011a1fd54c8fd8980dc50fce37ad479eacd59e114f3eb5196
POST / HTTP/1.1 Host: ocsp.digicert.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	93.184.220.29 HTTP/1.1 200 OK Content-Type: application/ocsp-response Accept-Ranges: bytes Age: 1673 Cache-Control: 'max-age=158059' Date: Fri, 01 Jul 2022 16:31:36 GMT Last-Modified: Fri, 01 Jul 2022 16:03:43 GMT Server: ECS (ska/F6FD) X-Cache: HIT Content-Length: 471 --- Additional Info --- Magic: data Size: 471 Md5: a5af35b6c6d203c1f7943571f558c790 Sha1: 832cfc0aff6943cf487e007f97216fd91ee45713 Sha256: 8f1ee2202e24b6dc484d8b6b284ee6d4153e802386344e5edc106b5c1d6a0777
POST /gsrsaovsslca2018 HTTP/1.1 Host: ocsp.globalsign.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 79 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	104.18.21.226 HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Fri, 01 Jul 2022 16:31:36 GMT Content-Length: 1432 Connection: keep-alive Expires: Tue, 05 Jul 2022 13:54:25 GMT ETag: "10fe6bf96a96d6963cb778fcf6c8fe5eb787cead" Last-Modified: Fri, 01 Jul 2022 13:54:25 GMT Cache-Control: public, no-transform, must-revalidate, s-maxage=3600 CF-Cache-Status: HIT Age: 813 Accept-Ranges: bytes Vary: Accept-Encoding Server: cloudflare CF-RAY: 7240886f9ddbb518-OSL --- Additional Info --- Magic: data Size: 1432 Md5: c1aba6f3a81d655cee9a34276f165e23 Sha1: 10fe6bf96a96d6963cb778fcf6c8fe5eb787cead Sha256: 223be211556467610d8b78a4c4ed99187cfdb8daab3ba1607640d913855ae7f8
GET / HTTP/1.1 Host: push.services.mozilla.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Sec-WebSocket-Version: 13 Origin: wss://push.services.mozilla.com/ Sec-WebSocket-Protocol: push-notification Sec-WebSocket-Extensions: permessage-deflate Sec-WebSocket-Key: oha6TGRlWgbcevJZMJcYrw== Connection: keep-alive, Upgrade Sec-Fetch-Dest: websocket Sec-Fetch-Mode: websocket Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache Upgrade: websocket	52.34.226.44 HTTP/1.1 101 Switching Protocols Connection: Upgrade Upgrade: websocket Sec-WebSocket-Accept: mF5AEwyyvuakyqwdJtHWU7e2Vc4= --- Additional Info --- Magic: Size: 0 Md5: d41d8cd98f00b204e9800998ecf8427e Sha1: da39a3ee5e6b4b0d3255bfef95601890afd80709 Sha256: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	23.36.76.226 HTTP/1.1 200 OK Content-Type: application/ocsp-response Server: nginx Content-Length: 503 ETag: "6A0721423C3B7EF429DA855641043D8F038DA4FFF1A788C1273BA18B1C0C9F8B" Last-Modified: Wed, 29 Jun 2022 07:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=6622 Expires: Fri, 01 Jul 2022 18:22:00 GMT Date: Fri, 01 Jul 2022 16:31:38 GMT Connection: keep-alive --- Additional Info --- Magic: data Size: 503 Md5: d538dea07a9f0bd634392c5975b0fa70 Sha1: 0b80d11db004a10fe57cf73757a6d7b00b698f12 Sha256: 6a0721423c3b7ef429da855641043d8f038da4fff1a788c1273ba18b1c0c9f8b
POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	23.36.76.226 HTTP/1.1 200 OK Content-Type: application/ocsp-response Server: nginx Content-Length: 503 ETag: "6A0721423C3B7EF429DA855641043D8F038DA4FFF1A788C1273BA18B1C0C9F8B" Last-Modified: Wed, 29 Jun 2022 07:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=6622 Expires: Fri, 01 Jul 2022 18:22:00 GMT Date: Fri, 01 Jul 2022 16:31:38 GMT Connection: keep-alive --- Additional Info --- Magic: data Size: 503 Md5: d538dea07a9f0bd634392c5975b0fa70 Sha1: 0b80d11db004a10fe57cf73757a6d7b00b698f12 Sha256: 6a0721423c3b7ef429da855641043d8f038da4fff1a788c1273ba18b1c0c9f8b
POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	23.36.76.226 HTTP/1.1 200 OK Content-Type: application/ocsp-response Server: nginx Content-Length: 503 ETag: "6A0721423C3B7EF429DA855641043D8F038DA4FFF1A788C1273BA18B1C0C9F8B" Last-Modified: Wed, 29 Jun 2022 07:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=6622 Expires: Fri, 01 Jul 2022 18:22:00 GMT Date: Fri, 01 Jul 2022 16:31:38 GMT Connection: keep-alive --- Additional Info --- Magic: data Size: 503 Md5: d538dea07a9f0bd634392c5975b0fa70 Sha1: 0b80d11db004a10fe57cf73757a6d7b00b698f12 Sha256: 6a0721423c3b7ef429da855641043d8f038da4fff1a788c1273ba18b1c0c9f8b
POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	23.36.76.226 HTTP/1.1 200 OK Content-Type: application/ocsp-response Server: nginx Content-Length: 503 ETag: "6A0721423C3B7EF429DA855641043D8F038DA4FFF1A788C1273BA18B1C0C9F8B" Last-Modified: Wed, 29 Jun 2022 07:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=6622 Expires: Fri, 01 Jul 2022 18:22:00 GMT Date: Fri, 01 Jul 2022 16:31:38 GMT Connection: keep-alive --- Additional Info --- Magic: data Size: 503 Md5: d538dea07a9f0bd634392c5975b0fa70 Sha1: 0b80d11db004a10fe57cf73757a6d7b00b698f12 Sha256: 6a0721423c3b7ef429da855641043d8f038da4fff1a788c1273ba18b1c0c9f8b
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1934ff6c-738b-4ee1-a3a7-f172a73da4bd.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	$Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 10798 Md5: 23c2976b6fa0265e05566907f71bd9e3$ 34.120.237.76 HTTP/2 200 OK server: nginx content-length: 10798 x-amzn-requestid: ec008800-0485-48fc-ad7d-1f28baff782f x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: UjickERbIAMF1NA= x-content-type-options: nosniff x-amzn-trace-id: Root=1-62be1783-328a674d1742f9c236542ec2;Sampled=0 x-amzn-remapped-date: Thu, 30 Jun 2022 21:37:07 GMT x-amz-cf-pop: SEA73-P2, SEA73-P1 x-cache: Hit from cloudfront x-amz-cf-id: o3AnxqrsGxaBlFc3pR1fNbgG8owT3PJgY29iVJBLj3DXcaZYfGX0EQ== via: 1.1 ca66331b52971370c4e54619e8a952cc.cloudfront.net (CloudFront), 1.1 73cb83fe6699afc2791b5c690c1ff8c6.cloudfront.net (CloudFront), 1.1 google date: Thu, 30 Jun 2022 22:03:52 GMT age: 66466 etag: "7db6b42dda26780d3a6cf5c9e3761db08722c630" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 10798 Md5: 23c2976b6fa0265e05566907f71bd9e3 Sha1: 7db6b42dda26780d3a6cf5c9e3761db08722c630 Sha256: a706e15acd54d9ffa304b4f931c811c57ba91e4d58c3970794a77eb873be3287
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5924f935-0276-4e17-ba18-fa6068a5ba5a.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	$Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 5364 Md5: 381cdb6fbff5b63b25b18e2d77244459$ 34.120.237.76 HTTP/2 200 OK server: nginx content-length: 5364 x-amzn-requestid: 04b31ed6-a40f-4305-a6b7-f3baf6b30f9c x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: UT0p_G-3oAMFbOA= x-content-type-options: nosniff x-amzn-trace-id: Root=1-62b7ce3f-51d2cf647ca0a90a1688e057;Sampled=0 x-amzn-remapped-date: Sun, 26 Jun 2022 03:10:55 GMT x-amz-cf-pop: YVR50-C1, SEA73-P1 x-cache: Hit from cloudfront x-amz-cf-id: OL0DC0TutvwnEaf8Iizovsksx31TJrbZt_N7S6YfkhB6Wed_VVv6Cg== via: 1.1 feda34dcbf6a00e232656b7983c2c7f0.cloudfront.net (CloudFront), 1.1 2ab6211e66998c8b58132661a7e3cade.cloudfront.net (CloudFront), 1.1 google date: Thu, 30 Jun 2022 22:04:05 GMT age: 66453 etag: "be19836a433d7f3f6f4a887315a24c202781d62d" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 5364 Md5: 381cdb6fbff5b63b25b18e2d77244459 Sha1: be19836a433d7f3f6f4a887315a24c202781d62d Sha256: 5bf3d36d33e492f39ab2ce799229fa03eec9658004db0bf2c435697bfe005cb2
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8fb8f8ac-1447-4cbf-a03d-3b6276064e5d.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	$Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 5228 Md5: 2403216bc2dcf981397210dd8c97d21b$ 34.120.237.76 HTTP/2 200 OK server: nginx content-length: 5228 x-amzn-requestid: aa2ae070-d7af-4ab5-a62b-cd3133c0717d x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: UXjQMF1fIAMFm-Q= x-content-type-options: nosniff x-amzn-trace-id: Root=1-62b94c01-39c87d2c65b06bc212bee113;Sampled=0 x-amzn-remapped-date: Mon, 27 Jun 2022 06:19:45 GMT x-amz-cf-pop: SEA73-P1 x-cache: Hit from cloudfront x-amz-cf-id: -hFyOxRNAoBAZwq1tZEZx-WmK1wrvy7_GMngpvsKzKrngHEWN8dWTg== via: 1.1 0800f067ff646622f3e8e507cb9b52e8.cloudfront.net (CloudFront), 1.1 2ab6211e66998c8b58132661a7e3cade.cloudfront.net (CloudFront), 1.1 google date: Thu, 30 Jun 2022 22:03:52 GMT age: 66466 etag: "ce25cc6aba5d9ebdd79eb30b51847cf96807f608" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 5228 Md5: 2403216bc2dcf981397210dd8c97d21b Sha1: ce25cc6aba5d9ebdd79eb30b51847cf96807f608 Sha256: ca2d93917806e02e9015493ba5fee438c720d23509a2628bc1bf13e4bb76128d
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc64139e3-1714-4207-9f83-6963efdebdb1.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	$Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 11303 Md5: b38a21dc4af2a753ec1149a58eca2ee2$ 34.120.237.76 HTTP/2 200 OK server: nginx content-length: 11303 x-amzn-requestid: bb4e28bd-b8fe-46aa-b7e1-9df6f52c9d34 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: UeQW-EnzIAMFSfw= x-content-type-options: nosniff x-amzn-trace-id: Root=1-62bbfa92-4788a606125c42431ba5c73a;Sampled=0 x-amzn-remapped-date: Wed, 29 Jun 2022 07:09:06 GMT x-amz-cf-pop: SEA73-P1 x-cache: Miss from cloudfront x-amz-cf-id: FECr8vnUNXIJXah4ilgSdBbkbjEIYjsLUdys3R4NE65S9iuOzjcSwQ== via: 1.1 0005a84c2971ff4f5bbb79e7ebc622a8.cloudfront.net (CloudFront), 1.1 707e733794d52100fde0ab21bf0b1462.cloudfront.net (CloudFront), 1.1 google date: Fri, 01 Jul 2022 07:42:41 GMT age: 31737 etag: "91d2dc48008a198adb2b740bec1843a146f826c1" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 11303 Md5: b38a21dc4af2a753ec1149a58eca2ee2 Sha1: 91d2dc48008a198adb2b740bec1843a146f826c1 Sha256: 2e56992e4642c248dd330fc1343977dedd2ec4e944564214be432f3f390488e7
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffd936a38-7fb2-43eb-b94b-bd2c81ade0b1.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	$Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 6777 Md5: da6177e6bf4587c118780e44a2277b81$ 34.120.237.76 HTTP/2 200 OK server: nginx content-length: 6777 x-amzn-requestid: c005a5ae-e474-43cb-9973-43dd74949627 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: Ujh1tGKcIAMF3Jw= x-content-type-options: nosniff x-amzn-trace-id: Root=1-62be168a-25378680023affeb0bffc59f;Sampled=0 x-amzn-remapped-date: Thu, 30 Jun 2022 21:32:58 GMT x-amz-cf-pop: HIO50-C1, SEA73-P1 x-cache: Hit from cloudfront x-amz-cf-id: 000k2cEQiMmUv5ID8GTy9B1KwjTaNmfTKRd0P7ysMmgXmPx1emJJRA== via: 1.1 95b0ac620fa3a80ee590ecf1cda1c698.cloudfront.net (CloudFront), 1.1 b13f158bdf9805ca47e07c0c35870c12.cloudfront.net (CloudFront), 1.1 google date: Thu, 30 Jun 2022 21:53:10 GMT age: 67108 etag: "3ef7bccae71f2082f56d185cb2e009f35eee08df" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 6777 Md5: da6177e6bf4587c118780e44a2277b81 Sha1: 3ef7bccae71f2082f56d185cb2e009f35eee08df Sha256: e49dafb03a8e282c3137b9efa813a9b0da81da02d1f128e40b9609d31d62d9bd
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc6db634e-e239-4b93-881b-a8655a27d650.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	$Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 8188 Md5: a00287c642d20230cf09897d4c7cf848$ 34.120.237.76 HTTP/2 200 OK server: nginx content-length: 8188 x-amzn-requestid: 27339e76-dbd1-45f6-b0d3-d60795d3402c x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: Uji5yEvRIAMFoEg= x-content-type-options: nosniff x-amzn-trace-id: Root=1-62be183e-71771e9a59cd04481fa7155b;Sampled=0 x-amzn-remapped-date: Thu, 30 Jun 2022 21:40:14 GMT x-amz-cf-pop: SEA73-P2, SEA73-P1 x-cache: Hit from cloudfront x-amz-cf-id: iyLcPUUXob_B75mtzJaEBU0CV9Qs99qBmJMQB_X1Py5d-CEkrHYiGg== via: 1.1 7d01bcfcfe27ce0b8979cf621dd081de.cloudfront.net (CloudFront), 1.1 d01e7742f82df0bbc1fb681d709ed69c.cloudfront.net (CloudFront), 1.1 google date: Thu, 30 Jun 2022 21:57:04 GMT age: 66874 etag: "bce84b1e6ac56efc7ad37190eeefd129183d2a2b" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 8188 Md5: a00287c642d20230cf09897d4c7cf848 Sha1: bce84b1e6ac56efc7ad37190eeefd129183d2a2b Sha256: 6e2b5ba420cba4324d3f1232a680ebff32babd2bc7fbc125d16f32b7bdc19b34
GET /hm.js?26c28b966ff2c7d4a6fa15295a761ea6 HTTP/1.1 Host: hm.baidu.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: http://vz.dyjqd.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	103.235.46.191 HTTP/1.1 200 OK Content-Type: application/javascript Cache-Control: max-age=0, must-revalidate Content-Encoding: gzip Content-Length: 11297 Date: Fri, 01 Jul 2022 16:31:37 GMT Etag: df61e6214b425fa63994dcb2a1181369 P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR" Server: apache Set-Cookie: HMACCOUNT=472D475C8E94C053; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT Strict-Transport-Security: max-age=172800 --- Additional Info --- Magic: ASCII text, with very long lines (630) Size: 11297 Md5: a014e0dc241a4ae6ae711970c909baa8 Sha1: f1bd0958af115180e0240f1ccd77c405a67b44d5 Sha256: 210c0446f374f7e61cd564500dcdc63ea58eb7bff7611d682c717b1d0ee6028b
GET /hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=1024&et=0&ja=0&ln=en-us&lo=0&rnd=1341325194&si=26c28b966ff2c7d4a6fa15295a761ea6&v=1.2.94&lv=1&sn=33833&r=0&ww=1280&ct=!!&u=http%3A%2F%2Fvz.dyjqd.com%2Fbeiyang%2Fsnbc_btp-l520_l525_l540.exe&tt=%E6%89%93%E5%8D%B0%E6%9C%BA%E9%A9%B1%E5%8A%A8%E7%BD%91--%E6%82%A8%E7%9A%84%E8%AE%BF%E9%97%AE%E5%87%BA%E9%94%99%E4%BA%86 HTTP/1.1 Host: hm.baidu.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: http://vz.dyjqd.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	$Magic: GIF image data, version 89a, 1 x 1\012- data Size: 43 Md5: ad4b0f606e0f8465bc4c4c170b37e1a3$ 103.235.46.191 HTTP/1.1 200 OK Content-Type: image/gif Cache-Control: private, max-age=0, no-cache Content-Length: 43 Date: Fri, 01 Jul 2022 16:31:38 GMT P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR" Pragma: no-cache Server: apache Set-Cookie: HMACCOUNT=A8CF1FEC8A0FCB22; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT Strict-Transport-Security: max-age=172800 X-Content-Type-Options: nosniff --- Additional Info --- Magic: GIF image data, version 89a, 1 x 1\012- data Size: 43 Md5: ad4b0f606e0f8465bc4c4c170b37e1a3 Sha1: 50b30fd5f87c85fe5cba2635cb83316ca71250d7 Sha256: cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET / HTTP/1.1 Host: www.dyjqd.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://vz.dyjqd.com/ Upgrade-Insecure-Requests: 1	$Magic: HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ISO-8859 text, with very long lines (465), with CRLF line terminators Size: 31083 Md5: 4d3cdfe89013d5232a9f8a3a8f6e8f59$ 103.38.42.118 HTTP/1.1 200 OK Content-Type: text/html Last-Modified: Thu, 30 Jun 2022 10:50:17 GMT Accept-Ranges: bytes ETag: "6151a52f6f8cd81:0" Server: Microsoft-IIS/8.5 Date: Fri, 01 Jul 2022 16:31:40 GMT Content-Length: 31083 --- Additional Info --- Magic: HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ISO-8859 text, with very long lines (465), with CRLF line terminators Size: 31083 Md5: 4d3cdfe89013d5232a9f8a3a8f6e8f59 Sha1: 71bb0aee2c21a5b786f8f0b0286732e668a2873b Sha256: df2770635d3bfd828fbed218f56dafa9e5d7baf6bdbdbc82997252b9b669d386
GET /hm.gif?hca=472D475C8E94C053&cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=1024&ep=1737%2C1737&et=3&ja=0&ln=en-us&lo=0&rnd=804680942&si=26c28b966ff2c7d4a6fa15295a761ea6&v=1.2.94&lv=1&sn=33833&r=0&ww=1280&u=http%3A%2F%2Fvz.dyjqd.com%2Fbeiyang%2Fsnbc_btp-l520_l525_l540.exe HTTP/1.1 Host: hm.baidu.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: http://vz.dyjqd.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	$Magic: GIF image data, version 89a, 1 x 1\012- data Size: 43 Md5: ad4b0f606e0f8465bc4c4c170b37e1a3$ 103.235.46.191 HTTP/1.1 200 OK Content-Type: image/gif Cache-Control: private, max-age=0, no-cache Content-Length: 43 Date: Fri, 01 Jul 2022 16:31:40 GMT P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR" Pragma: no-cache Server: apache Set-Cookie: HMACCOUNT=057D2564F24DFDDD; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT Strict-Transport-Security: max-age=172800 X-Content-Type-Options: nosniff --- Additional Info --- Magic: GIF image data, version 89a, 1 x 1\012- data Size: 43 Md5: ad4b0f606e0f8465bc4c4c170b37e1a3 Sha1: 50b30fd5f87c85fe5cba2635cb83316ca71250d7 Sha256: cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /images/css/index.css HTTP/1.1 Host: www.dyjqd.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://www.dyjqd.com/	103.38.42.118 HTTP/1.1 200 OK Content-Type: text/css Last-Modified: Mon, 29 Mar 2021 11:16:38 GMT Accept-Ranges: bytes ETag: "0ef70fc8c24d71:0" Server: Microsoft-IIS/8.5 Date: Fri, 01 Jul 2022 16:31:41 GMT Content-Length: 3089 --- Additional Info --- Magic: Unicode text, UTF-8 text, with CRLF line terminators Size: 3089 Md5: 2307577b2a49b154dbb4377c7d775015 Sha1: 6ab7b72d11fc9280f713917cd5a0211123a723c5 Sha256: 2a7044649574c8212cb7c56e30b86d439633c118c377372476b8cee152f25e35
GET /images/quanzhan.js HTTP/1.1 Host: www.dyjqd.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://www.dyjqd.com/	$Magic: HTML document text\012- HTML document, ISO-8859 text, with very long lines (339), with CRLF line terminators Size: 4805 Md5: d01b7168a176c84e12f7a27ea98a78e2$ 103.38.42.118 HTTP/1.1 200 OK Content-Type: application/javascript Last-Modified: Mon, 18 Apr 2022 11:57:06 GMT Accept-Ranges: bytes ETag: "015ae6c1b53d81:0" Server: Microsoft-IIS/8.5 Date: Fri, 01 Jul 2022 16:31:41 GMT Content-Length: 4805 --- Additional Info --- Magic: HTML document text\012- HTML document, ISO-8859 text, with very long lines (339), with CRLF line terminators Size: 4805 Md5: d01b7168a176c84e12f7a27ea98a78e2 Sha1: d604ee9f89e5f293949e6adb68ef319e5d7064b3 Sha256: 67bb6b1f4220fab94a4cd5e6a04bc0f12bc570f28217d93eec69bbb212dc6f0a
GET /images/css/public.css HTTP/1.1 Host: www.dyjqd.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://www.dyjqd.com/	103.38.42.118 HTTP/1.1 200 OK Content-Type: text/css Last-Modified: Thu, 15 Apr 2021 11:37:36 GMT Accept-Ranges: bytes ETag: "0404abbeb31d71:0" Server: Microsoft-IIS/8.5 Date: Fri, 01 Jul 2022 16:31:41 GMT Content-Length: 7635 --- Additional Info --- Magic: ISO-8859 text, with CRLF line terminators Size: 7635 Md5: 8999ae1bce1fa331238c807f912743bf Sha1: 86bb0c14008bc8d01d53d17c92b930417f85f0e2 Sha256: 5eef631deb7179b47205a3ef62785d23e576c670bd18e0421ee2ce9e862c0830
GET /images/public.js HTTP/1.1 Host: www.dyjqd.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://www.dyjqd.com/	$Magic: HTML document text\012- HTML document, ISO-8859 text, with very long lines (2165), with CRLF line terminators Size: 9784 Md5: 51fd6e95889330876e44bf0c3a449856$ 103.38.42.118 HTTP/1.1 200 OK Content-Type: application/javascript Last-Modified: Tue, 14 Jun 2022 10:23:28 GMT Accept-Ranges: bytes ETag: "010a3c9d87fd81:0" Server: Microsoft-IIS/8.5 Date: Fri, 01 Jul 2022 16:31:41 GMT Content-Length: 9784 --- Additional Info --- Magic: HTML document text\012- HTML document, ISO-8859 text, with very long lines (2165), with CRLF line terminators Size: 9784 Md5: 51fd6e95889330876e44bf0c3a449856 Sha1: 3c6a8033c1a5a2759d4e78c109fda783e4a26d23 Sha256: d2c9c0c737d3cff1107f1308b7d097cbd87633600f01fa2d7a251ba2e47bff12
GET /logo/samsung.jpg HTTP/1.1 Host: www.dyjqd.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://www.dyjqd.com/	$Magic: JPEG image data, JFIF standard 1.01, resolution (DPI), density 100x100, segment length 16, baseline, precision 8, 100x50, components 3\012- data Size: 3167 Md5: 1bcd2c0ae24e51ee92edb4d112f0f76d$ 103.38.42.118 HTTP/1.1 200 OK Content-Type: image/jpeg Last-Modified: Tue, 26 Jul 2011 08:18:06 GMT Accept-Ranges: bytes ETag: "0f3be8b6c4bcc1:0" Server: Microsoft-IIS/8.5 Date: Fri, 01 Jul 2022 16:31:41 GMT Content-Length: 3167 --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, resolution (DPI), density 100x100, segment length 16, baseline, precision 8, 100x50, components 3\012- data Size: 3167 Md5: 1bcd2c0ae24e51ee92edb4d112f0f76d Sha1: e60c53f9110d437e2576a731f3d70107bdda86f7 Sha256: a0c83d194106586169d0cef6e92ce58fa87c2ed700c964499c8145b9b9cec0b9
GET /logo/brother.jpg HTTP/1.1 Host: www.dyjqd.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://www.dyjqd.com/	$Magic: JPEG image data, JFIF standard 1.01, resolution (DPI), density 100x100, segment length 16, baseline, precision 8, 100x50, components 3\012- data Size: 3846 Md5: 286e4ccea1c706dc7fcf7abbeb88104d$ 103.38.42.118 HTTP/1.1 200 OK Content-Type: image/jpeg Last-Modified: Tue, 26 Jul 2011 23:09:54 GMT Accept-Ranges: bytes ETag: "0cdff20e94bcc1:0" Server: Microsoft-IIS/8.5 Date: Fri, 01 Jul 2022 16:31:41 GMT Content-Length: 3846 --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, resolution (DPI), density 100x100, segment length 16, baseline, precision 8, 100x50, components 3\012- data Size: 3846 Md5: 286e4ccea1c706dc7fcf7abbeb88104d Sha1: 19a7d87377b4797674ee55b5ba0ee1cb5a17c1be Sha256: f6d80dadd8bcef92856a63456a043f10e8a7e09c333b30186b2050c2fb2fc6b6
GET /logo/gainscha.jpg HTTP/1.1 Host: www.dyjqd.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://www.dyjqd.com/	$Magic: JPEG image data, JFIF standard 1.01, resolution (DPI), density 120x120, segment length 16, baseline, precision 8, 223x72, components 3\012- data Size: 3952 Md5: da7ee614e3e4622855ec499980c58b6d$ 103.38.42.118 HTTP/1.1 200 OK Content-Type: image/jpeg Last-Modified: Sat, 08 Sep 2018 06:31:54 GMT Accept-Ranges: bytes ETag: "0a92ca23d47d41:0" Server: Microsoft-IIS/8.5 Date: Fri, 01 Jul 2022 16:31:41 GMT Content-Length: 3952 --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, resolution (DPI), density 120x120, segment length 16, baseline, precision 8, 223x72, components 3\012- data Size: 3952 Md5: da7ee614e3e4622855ec499980c58b6d Sha1: ee7d64422ced87d6391c143947cbc8391bb0a772 Sha256: 606c682d4872cc69814dd66503bbe790aeda6378a8aee3b01b63d9db43db6782
GET /logo/jolimark.jpg HTTP/1.1 Host: www.dyjqd.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://www.dyjqd.com/	$Magic: JPEG image data, JFIF standard 1.01, resolution (DPI), density 120x120, segment length 16, baseline, precision 8, 200x67, components 3\012- data Size: 3694 Md5: a19fcdb93b583852a4678548aed9eee6$ 103.38.42.118 HTTP/1.1 200 OK Content-Type: image/jpeg Last-Modified: Sat, 08 Sep 2018 06:51:12 GMT Accept-Ranges: bytes ETag: "07065544047d41:0" Server: Microsoft-IIS/8.5 Date: Fri, 01 Jul 2022 16:31:41 GMT Content-Length: 3694 --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, resolution (DPI), density 120x120, segment length 16, baseline, precision 8, 200x67, components 3\012- data Size: 3694 Md5: a19fcdb93b583852a4678548aed9eee6 Sha1: c02cdde82a0199cdcd44a8e37382887737e388bd Sha256: 8fe2584f6d8c3713eeeaf11219a582300438127242a19d8ebf7e00d9bfb9a5e8
GET /logo/hp.jpg HTTP/1.1 Host: www.dyjqd.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://www.dyjqd.com/	$Magic: JPEG image data, JFIF standard 1.01, resolution (DPI), density 100x100, segment length 16, baseline, precision 8, 100x50, components 3\012- data Size: 1688 Md5: 8d9606793bceeccc218465fd10c86d5a$ 103.38.42.118 HTTP/1.1 200 OK Content-Type: image/jpeg Last-Modified: Tue, 26 Jul 2011 08:16:22 GMT Accept-Ranges: bytes ETag: "0cfc14d6c4bcc1:0" Server: Microsoft-IIS/8.5 Date: Fri, 01 Jul 2022 16:31:41 GMT Content-Length: 1688 --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, resolution (DPI), density 100x100, segment length 16, baseline, precision 8, 100x50, components 3\012- data Size: 1688 Md5: 8d9606793bceeccc218465fd10c86d5a Sha1: f9487748d4089e2dc68289c95b62182fe3c0317d Sha256: f6bc946478e840c9efaf8a57fbed3e72352bba789a6d40c98d66eacfb3c65a3e
GET /logo/konicaminolta.jpg HTTP/1.1 Host: www.dyjqd.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://www.dyjqd.com/	$Magic: JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 93x54, components 3\012- data Size: 5050 Md5: d8a7f22fef86dca36c1752704578d930$ 103.38.42.118 HTTP/1.1 200 OK Content-Type: image/jpeg Last-Modified: Fri, 09 Mar 2012 05:45:44 GMT Accept-Ranges: bytes ETag: "0b475deb7fdcc1:0" Server: Microsoft-IIS/8.5 Date: Fri, 01 Jul 2022 16:31:41 GMT Content-Length: 5050 --- Additional Info --- Magic: JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 93x54, components 3\012- data Size: 5050 Md5: d8a7f22fef86dca36c1752704578d930 Sha1: f0598cd2e6727c6b7a5788f47e04461c7d84960a Sha256: 2a42bc56ac66a09801573b343eec11a4e6cc375d386318a37c117f32b4c47faa
GET /images/h_soso.jpg HTTP/1.1 Host: www.dyjqd.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://www.dyjqd.com/	$Magic: JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 64x33, components 3\012- data Size: 966 Md5: b263ede60b5c3f5361cb0dbc1372c451$ 103.38.42.118 HTTP/1.1 200 OK Content-Type: image/jpeg Last-Modified: Tue, 28 Jun 2016 22:45:52 GMT Accept-Ranges: bytes ETag: "050a4d28ed1d11:0" Server: Microsoft-IIS/8.5 Date: Fri, 01 Jul 2022 16:31:41 GMT Content-Length: 966 --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 64x33, components 3\012- data Size: 966 Md5: b263ede60b5c3f5361cb0dbc1372c451 Sha1: ee17a331ba2b5700752d58cd488c1f1745adc33d Sha256: ac359f7e96c4aa99715dd35efd734122503e5ee88ec04c158100368d3777507c
GET /images/h_sobg.jpg HTTP/1.1 Host: www.dyjqd.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://www.dyjqd.com/images/css/public.css	$Magic: JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 406x34, components 3\012- data Size: 1662 Md5: 77a2027b6c3345ee0e52a132bed0b82d$ 103.38.42.118 HTTP/1.1 200 OK Content-Type: image/jpeg Last-Modified: Thu, 22 Nov 2012 13:51:14 GMT Accept-Ranges: bytes ETag: "075de6fb8c8cd1:0" Server: Microsoft-IIS/8.5 Date: Fri, 01 Jul 2022 16:31:41 GMT Content-Length: 1662 --- Additional Info --- Magic: JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 406x34, components 3\012- data Size: 1662 Md5: 77a2027b6c3345ee0e52a132bed0b82d Sha1: 7e7e2814a826c47dc3bc6ce7fed5b609f403294e Sha256: ef094201c608fdeaa461a1443b842623d75c13b98e036251da20831d70c87875
GET /images/h_so_ico.jpg HTTP/1.1 Host: www.dyjqd.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://www.dyjqd.com/images/css/public.css	$Magic: JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 18x18, components 3\012- data Size: 478 Md5: 3376e07ea435d4265debe37bccc2f7e5$ 103.38.42.118 HTTP/1.1 200 OK Content-Type: image/jpeg Last-Modified: Thu, 22 Nov 2012 13:48:12 GMT Accept-Ranges: bytes ETag: "076633b8c8cd1:0" Server: Microsoft-IIS/8.5 Date: Fri, 01 Jul 2022 16:31:41 GMT Content-Length: 478 --- Additional Info --- Magic: JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 18x18, components 3\012- data Size: 478 Md5: 3376e07ea435d4265debe37bccc2f7e5 Sha1: 3207eece6053ae2e0eb447a25a4ffb0423e69247 Sha256: bebb0d0d13d5b5fcdfa7592dd9b9bd99c99c2daafcbf14b9a5b407b84d5a70c3
GET /images/Nav_bg.gif HTTP/1.1 Host: www.dyjqd.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://www.dyjqd.com/images/css/public.css	$Magic: GIF image data, version 89a, 960 x 50\012- data Size: 5476 Md5: 9e4cc06bc0046d32a6b6936021e8bf82$ 103.38.42.118 HTTP/1.1 200 OK Content-Type: image/gif Last-Modified: Thu, 22 Nov 2012 13:51:14 GMT Accept-Ranges: bytes ETag: "075de6fb8c8cd1:0" Server: Microsoft-IIS/8.5 Date: Fri, 01 Jul 2022 16:31:41 GMT Content-Length: 5476 --- Additional Info --- Magic: GIF image data, version 89a, 960 x 50\012- data Size: 5476 Md5: 9e4cc06bc0046d32a6b6936021e8bf82 Sha1: e7008ae759ed6b540bd2b04e23e87207c627642a Sha256: 9a2d5ed4777b1e32fc26f3b20b9222ac13840eab506d8416b6ddb3f46b8ab190
GET /logo/epson.jpg HTTP/1.1 Host: www.dyjqd.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://www.dyjqd.com/	$Magic: JPEG image data, JFIF standard 1.01, resolution (DPI), density 100x100, segment length 16, baseline, precision 8, 100x50, components 3\012- data Size: 3281 Md5: 927728a9cb0e966402ba95a25806ba22$ 103.38.42.118 HTTP/1.1 200 OK Content-Type: image/jpeg Last-Modified: Tue, 26 Jul 2011 08:16:20 GMT Accept-Ranges: bytes ETag: "0a2904c6c4bcc1:0" Server: Microsoft-IIS/8.5 Date: Fri, 01 Jul 2022 16:31:41 GMT Content-Length: 3281 --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, resolution (DPI), density 100x100, segment length 16, baseline, precision 8, 100x50, components 3\012- data Size: 3281 Md5: 927728a9cb0e966402ba95a25806ba22 Sha1: 170eb475864ed29709b327c14ca412a5099db339 Sha256: 83e52159e2d29184a72779d8e6948a7298be2bf8aa6b8142a9090d17ce7b2004
GET /logo/fujixerox.jpg HTTP/1.1 Host: www.dyjqd.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://www.dyjqd.com/	$Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 140x50, components 3\012- data Size: 1994 Md5: d25c03068bed0ff5a734ab89c84fcd8d$ 103.38.42.118 HTTP/1.1 200 OK Content-Type: image/jpeg Last-Modified: Thu, 15 Dec 2011 13:59:18 GMT Accept-Ranges: bytes ETag: "0bfaabc31bbcc1:0" Server: Microsoft-IIS/8.5 Date: Fri, 01 Jul 2022 16:31:41 GMT Content-Length: 1994 --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 140x50, components 3\012- data Size: 1994 Md5: d25c03068bed0ff5a734ab89c84fcd8d Sha1: 89727872921459f4a98fddfa9a7566c93284cfef Sha256: ef9d3d4fcd0af5754605bb7346b9ba19cc734ccb2e46d23b3c8402eb878944ce
GET /logo/canon.jpg HTTP/1.1 Host: www.dyjqd.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://www.dyjqd.com/	$Magic: JPEG image data, JFIF standard 1.01, resolution (DPI), density 100x100, segment length 16, baseline, precision 8, 100x50, components 3\012- data Size: 2538 Md5: f9d38a038024b995a081cea8fac9db10$ 103.38.42.118 HTTP/1.1 200 OK Content-Type: image/jpeg Last-Modified: Tue, 26 Jul 2011 08:16:20 GMT Accept-Ranges: bytes ETag: "0a2904c6c4bcc1:0" Server: Microsoft-IIS/8.5 Date: Fri, 01 Jul 2022 16:31:41 GMT Content-Length: 2538 --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, resolution (DPI), density 100x100, segment length 16, baseline, precision 8, 100x50, components 3\012- data Size: 2538 Md5: f9d38a038024b995a081cea8fac9db10 Sha1: f2eb9603d7ee7925c4d0d76cf8f3f06568a6dfa8 Sha256: a640506621c490589360f945f37ee14f9beb077e5f90e87d2c75c9b441751841
GET /logo/lenovo.jpg HTTP/1.1 Host: www.dyjqd.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://www.dyjqd.com/	$Magic: JPEG image data, JFIF standard 1.01, resolution (DPI), density 100x100, segment length 16, baseline, precision 8, 100x50, components 3\012- data Size: 1848 Md5: a38a3e6c266c4a7cfe197fd3bbc07ba3$ 103.38.42.118 HTTP/1.1 200 OK Content-Type: image/jpeg Last-Modified: Tue, 26 Jul 2011 08:16:56 GMT Accept-Ranges: bytes ETag: "0cc5626c4bcc1:0" Server: Microsoft-IIS/8.5 Date: Fri, 01 Jul 2022 16:31:41 GMT Content-Length: 1848 --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, resolution (DPI), density 100x100, segment length 16, baseline, precision 8, 100x50, components 3\012- data Size: 1848 Md5: a38a3e6c266c4a7cfe197fd3bbc07ba3 Sha1: 2255d1d5c9ce82bad1f01480fadfc0bd242d080c Sha256: 76ac58426b83f177597a51208e592cd8fe409b2d3172dcbc0aebe0182814c120
GET /images/Nav_bg3.gif HTTP/1.1 Host: www.dyjqd.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://www.dyjqd.com/images/css/public.css	$Magic: GIF image data, version 89a, 960 x 40\012- data Size: 16056 Md5: c952c6c5b9ccb925f87d209a8b6ddc81$ 103.38.42.118 HTTP/1.1 200 OK Content-Type: image/gif Last-Modified: Thu, 22 Nov 2012 13:51:08 GMT Accept-Ranges: bytes ETag: "0ee4a6cb8c8cd1:0" Server: Microsoft-IIS/8.5 Date: Fri, 01 Jul 2022 16:31:41 GMT Content-Length: 16056 --- Additional Info --- Magic: GIF image data, version 89a, 960 x 40\012- data Size: 16056 Md5: c952c6c5b9ccb925f87d209a8b6ddc81 Sha1: 29a5fe0838fe45d67ab293bed441b2ba890573a0 Sha256: 5e43924ccd19e03d89a828e75f7c1795059f1aa74bdf0413e3661af9b2c487c2
GET /static/api/js/share.js?v=89860593.js?cdnversion=460191 HTTP/1.1 Host: bdimg.share.baidu.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://www.dyjqd.com/	182.61.201.93 HTTP/1.1 200 OK Content-Type: text/javascript Accept-Ranges: bytes Cache-Control: max-age=1800 Content-Encoding: gzip Content-Length: 6218 Date: Fri, 01 Jul 2022 16:31:41 GMT Etag: "2981715462" Expires: Fri, 01 Jul 2022 17:01:41 GMT Last-Modified: Fri, 05 Jun 2015 08:50:07 GMT Server: BWS/1.0 Vary: Accept-Encoding --- Additional Info --- Magic: ASCII text, with very long lines (17305), with no line terminators Size: 6218 Md5: a78bd68ac53bbc7eff7039d2c4e2c4ab Sha1: 52e17a124e5ef7c4729e2000f8a7ffa14c2a4eb9 Sha256: dbaf841ced63da2a82e537cf643b52d50b71620c39b5fbb6c90965ba8b78fd8e
GET /common/js/resource/lf19em.js?qldkht=dth HTTP/1.1 Host: a.dyjqd.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://www.dyjqd.com/	115.231.186.130 HTTP/1.1 200 OK Content-Type: text/javascript; charset=utf-8 Date: Fri, 01 Jul 2022 16:31:41 GMT Content-Length: 1800 Connection: keep-alive Cache-Control: public, max-age=14400 Content-Encoding: gzip Expires: Fri, 01 Jul 2022 20:31:41 GMT Last-Modified: Thu, 30 Jun 2022 16:33:46 GMT P3p: CP=" OTI DSP COR IVA OUR IND COM " YJS-ID: b6cda74ba90f2b6a-111 Server: yunjiasu YJS-CacheStatus: HIT --- Additional Info --- Magic: ASCII text, with very long lines (4228), with no line terminators Size: 1800 Md5: 31c7559a801f54f8e677f4cbbbdb7800 Sha1: bbc860028d72733ef2a52434d3bf7ad8d6c48b86 Sha256: 9eb4407a4d3a1798a1cd7bc10e33db69cf252220dcb5cab80dea661767840afb
GET /static/api/js/share/share_api.js?v=226108fe.js HTTP/1.1 Host: bdimg.share.baidu.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://www.dyjqd.com/	182.61.201.93 HTTP/1.1 200 OK Content-Type: text/javascript Accept-Ranges: bytes Cache-Control: max-age=1800 Content-Encoding: gzip Content-Length: 374 Date: Fri, 01 Jul 2022 16:31:42 GMT Etag: "2151209923" Expires: Fri, 01 Jul 2022 17:01:42 GMT Last-Modified: Fri, 05 Jun 2015 08:50:08 GMT Server: BWS/1.0 Vary: Accept-Encoding --- Additional Info --- Magic: ASCII text, with very long lines (636), with no line terminators Size: 374 Md5: d83d9b2e8f9991d48228eacaa36ed9d8 Sha1: 43f570d57795ff92f4f9765ca13fe8e7c04004dc Sha256: 0823a3af4f618739366bd95c18c78716313d835adb2b20bcfa1bf44265fb7cfb
GET /static/api/js/share/api_base.js HTTP/1.1 Host: bdimg.share.baidu.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://www.dyjqd.com/	182.61.201.93 HTTP/1.1 200 OK Content-Type: text/javascript Accept-Ranges: bytes Cache-Control: max-age=1800 Content-Encoding: gzip Content-Length: 580 Date: Fri, 01 Jul 2022 16:31:42 GMT Etag: "3610826631" Expires: Fri, 01 Jul 2022 17:01:42 GMT Last-Modified: Fri, 05 Jun 2015 08:50:08 GMT Server: BWS/1.0 Vary: Accept-Encoding --- Additional Info --- Magic: ASCII text, with very long lines (1468), with no line terminators Size: 580 Md5: a2f2cddb86ee350731a332b4c44f5e0d Sha1: e8ec70d2a62da5fff2ce1b684a4a9d112d640315 Sha256: 142e59628a500e248c6155c8fe279eeb70bc6aebf516c1bb6cd9486ea1b207b1
GET /rnpthw.js HTTP/1.1 Host: a.dyjqd.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://www.dyjqd.com/	115.231.186.130 HTTP/1.1 200 OK Content-Type: text/javascript; charset=utf-8 Date: Fri, 01 Jul 2022 16:31:42 GMT Content-Length: 37312 Connection: keep-alive Cache-Control: public, max-age=14400 Content-Encoding: gzip Expires: Fri, 01 Jul 2022 20:31:42 GMT Last-Modified: Thu, 30 Jun 2022 07:27:07 GMT P3p: CP=" OTI DSP COR IVA OUR IND COM " YJS-ID: b6cda74ea9102b6a-111 Server: yunjiasu YJS-CacheStatus: REVALIDATED --- Additional Info --- Magic: Unicode text, UTF-8 text, with very long lines (65532), with no line terminators Size: 37312 Md5: 1e99ceb78ee144d8c293e5944cbb3308 Sha1: 1cb84e56695510eff00a7b13cc861d1d81fdd8a9 Sha256: 12d351a47a9211ae725fdc9940ac22dfe33dc1054581d6dc5d8f50b3570c84c2
GET /static/api/js/base/tangram.js?v=37768233.js HTTP/1.1 Host: bdimg.share.baidu.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://www.dyjqd.com/	182.61.201.93 HTTP/1.1 200 OK Content-Type: text/javascript Accept-Ranges: bytes Cache-Control: max-age=1800 Content-Encoding: gzip Content-Length: 36055 Date: Fri, 01 Jul 2022 16:31:42 GMT Etag: "814241156" Expires: Fri, 01 Jul 2022 17:01:42 GMT Last-Modified: Fri, 05 Jun 2015 08:50:07 GMT Server: BWS/1.0 Vary: Accept-Encoding --- Additional Info --- Magic: ASCII text, with very long lines (32769) Size: 36055 Md5: 1a17164900cba54de0776f3d66b38647 Sha1: 115ecb2a379ead464545695c324301d95164b16c Sha256: 2eb4ae8ab6cc0e3b820134d3da036902344908846eecc4f7d0adb6dbdab23a79
GET /static/api/js/view/share_view.js?v=3ae6026d.js HTTP/1.1 Host: bdimg.share.baidu.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://www.dyjqd.com/	182.61.201.93 HTTP/1.1 200 OK Content-Type: text/javascript Accept-Ranges: bytes Cache-Control: max-age=1800 Content-Encoding: gzip Content-Length: 751 Date: Fri, 01 Jul 2022 16:31:42 GMT Etag: "2738411398" Expires: Fri, 01 Jul 2022 17:01:42 GMT Last-Modified: Fri, 05 Jun 2015 08:50:09 GMT Server: BWS/1.0 Vary: Accept-Encoding --- Additional Info --- Magic: ASCII text, with very long lines (1410), with no line terminators Size: 751 Md5: 2f70d93b9f03bdfbd94c882baa358ba0 Sha1: f2ff3411db7c99b8c38f88ef83d8d2c1e36cc97c Sha256: 2d79560384a4a5d390dc9979d68b9db79d01076b2e89a110d16a42af3dbfaadc
GET /static/api/js/view/view_base.js HTTP/1.1 Host: bdimg.share.baidu.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://www.dyjqd.com/	182.61.201.93 HTTP/1.1 200 OK Content-Type: text/javascript Accept-Ranges: bytes Cache-Control: max-age=1800 Content-Encoding: gzip Content-Length: 728 Date: Fri, 01 Jul 2022 16:31:43 GMT Etag: "2688079746" Expires: Fri, 01 Jul 2022 17:01:43 GMT Last-Modified: Fri, 05 Jun 2015 08:50:09 GMT Server: BWS/1.0 Vary: Accept-Encoding --- Additional Info --- Magic: ASCII text, with very long lines (1616), with no line terminators Size: 728 Md5: 7ee144ca4be853ced65e63463259e6eb Sha1: a171d2b09ecb55590628a71a7f50fc05eb2d7e92 Sha256: 89119613d47f7bd1c2daf15d878fea5cfbca158fbd90930fcf106b4dc177d9f6
GET /static/api/css/share_style0_32.css?v=5090ac8b.css HTTP/1.1 Host: bdimg.share.baidu.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://www.dyjqd.com/	182.61.201.93 HTTP/1.1 200 OK Content-Type: text/css Accept-Ranges: bytes Cache-Control: max-age=1800 Content-Encoding: gzip Content-Length: 831 Date: Fri, 01 Jul 2022 16:31:43 GMT Etag: "3786987277" Expires: Fri, 01 Jul 2022 17:01:43 GMT Last-Modified: Fri, 05 Jun 2015 08:50:04 GMT Server: BWS/1.0 Vary: Accept-Encoding --- Additional Info --- Magic: ASCII text, with very long lines (3755), with no line terminators Size: 831 Md5: b285529cc8961b4ace7ad9357d213bb2 Sha1: 4d9f3d6fc78ff2e77a58ff6cd6553f80dc3dd12c Sha256: 44fea272339fc0c5709de07b60a91f8cbfa9750ef1657c4b2f0c64b0214154df
GET /static/api/css/share_style0_16.css?v=8105b07e.css HTTP/1.1 Host: bdimg.share.baidu.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://www.dyjqd.com/	182.61.201.93 HTTP/1.1 200 OK Content-Type: text/css Accept-Ranges: bytes Cache-Control: max-age=1800 Content-Encoding: gzip Content-Length: 879 Date: Fri, 01 Jul 2022 16:31:43 GMT Etag: "3619215041" Expires: Fri, 01 Jul 2022 17:01:43 GMT Last-Modified: Fri, 05 Jun 2015 08:50:04 GMT Server: BWS/1.0 Vary: Accept-Encoding --- Additional Info --- Magic: ASCII text, with very long lines (4169), with no line terminators Size: 879 Md5: f504d0c0b5039bff55257cf4482a3bb4 Sha1: a35c77ba6ce6b9319f3c29710171f71149e07338 Sha256: 4e9ad9ea58d34aa8f554cd3c455623a954ce80560ac9d6d4f135f80630631c4b
GET /cpro/ui/pr.js HTTP/1.1 Host: cpro.baidustatic.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://www.dyjqd.com/	113.105.172.35 HTTP/1.1 200 OK Content-Type: application/x-javascript Server: JSP3/2.0.14 Date: Fri, 01 Jul 2022 16:31:43 GMT Transfer-Encoding: chunked Connection: keep-alive Expires: Fri, 01 Jul 2022 16:35:06 GMT Last-Modified: Tue, 18 Jan 2022 03:17:10 GMT ETag: "61e63136-ff" Cache-Control: max-age=900 Content-Encoding: gzip Age: 697 Accept-Ranges: bytes Timing-Allow-Origin: * Ohc-Cache-HIT: dg3ct52 [2], xactcache64 [2], bdix239 [2] Ohc-File-Size: 191 X-Cache-Status: HIT --- Additional Info --- Magic: ASCII text, with CRLF line terminators Size: 191 Md5: 48bbe750b892850b181762bf739e10dd Sha1: 716574fe9afcde8faef513b16d6867cb07afe626 Sha256: e538c894cae59538764a334e2cf2bc02e53fa6a9e4efebcd251bc5da82fa2158
GET /static/api/js/component/partners.js?v=96dbe85a.js HTTP/1.1 Host: bdimg.share.baidu.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://www.dyjqd.com/	182.61.201.93 HTTP/1.1 200 OK Content-Type: text/javascript Accept-Ranges: bytes Cache-Control: max-age=1800 Content-Encoding: gzip Content-Length: 790 Date: Fri, 01 Jul 2022 16:31:43 GMT Etag: "3493386128" Expires: Fri, 01 Jul 2022 17:01:43 GMT Last-Modified: Fri, 05 Jun 2015 08:50:07 GMT Server: BWS/1.0 Vary: Accept-Encoding --- Additional Info --- Magic: ASCII text, with very long lines (1866), with no line terminators Size: 790 Md5: 1fe5dfa0f217378c6a269d0907572b26 Sha1: e02e330ef145b006002710a57642d06bfcf5bd76 Sha256: 53912ed51acc9f854c807eb4e0ce6a23e51e6614e1c9881c0e0eaaae7b65bb94