r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 8997fa58a7262e8fd559d64b40511a1b
0aa1c4365c28f45e4d7a8a234fbcf51cd009e083
1580d1145f125c765e40e5983cb4bb4e2424010d2920a25ea7da992485da0dea
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1580D1145F125C765E40E5983CB4BB4E2424010D2920A25EA7DA992485DA0DEA"
Last-Modified: Sat, 21 Jan 2023 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11125
Expires: Mon, 23 Jan 2023 12:17:36 GMT
Date: Mon, 23 Jan 2023 09:12:11 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 0be6cec5607bb65c06dbadd33456aec1
9d13129e936eb5fc82e403931884cdc8c6e6ab92
cb028034340b709ece65e45e8fc1a26a64dd85926beaa542f308d3f1d5ee2c84
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "CB028034340B709ECE65E45E8FC1A26A64DD85926BEAA542F308D3F1D5EE2C84"
Last-Modified: Sun, 22 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7366
Expires: Mon, 23 Jan 2023 11:14:57 GMT
Date: Mon, 23 Jan 2023 09:12:11 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 30db107dcf4380cef05efea409c2e6a3
96e6a306fbc07299aba64e5c14e2bfca35872fa9
b64051a4a8e346e3c72b2aef77f360a5736ab5e16711d8e0bae3876feaa15b6e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Content-Length, Alert, Backoff, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Mon, 23 Jan 2023 08:34:59 GMT
content-type: application/json
age: 2232
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 31c8743c2b5202ce0228bac5aad7229b
4b5eee8e1ecbfc992505003be58e265ff3a0ee0a
8b3b47ea29fc02b8a08ee2a340a05ab23e391f0eb3b8d6beb17516706bb2e94d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "8B3B47EA29FC02B8A08EE2A340A05AB23E391F0EB3B8D6BEB17516706BB2E94D"
Last-Modified: Sun, 22 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15454
Expires: Mon, 23 Jan 2023 13:29:45 GMT
Date: Mon, 23 Jan 2023 09:12:11 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: dUAtYLbFRTLBso6garWHrStijvNAxMNVJAikZRPs7OIXPoyQ6GGzzBer18sDK2+bSHfTZMCYli02mjXpkogJyw==
x-amz-request-id: SVB6FQ4T9T5EVV1S
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Mon, 23 Jan 2023 08:47:39 GMT
age: 1472
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Mon, 23 Jan 2023 09:12:11 GMT
content-type: application/json
content-length: 12
access-control-expose-headers: content-type
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-credentials: true
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Expires, Last-Modified, Alert, Content-Type, Content-Length, ETag, Pragma, Cache-Control, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Mon, 23 Jan 2023 08:17:30 GMT
age: 3281
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 0c74880fa99032b5c3831c179d702419
0020b368309735c94d8053d3781a7efb7283cfc5
437e2d4e2bbfb33b0ff696172378ce55a0a5ed005a1b8c4005eab4a6995a3042
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3440
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Mon, 23 Jan 2023 09:12:12 GMT
Last-Modified: Mon, 23 Jan 2023 08:14:52 GMT
Server: ECS (ska/F710)
X-Cache: HIT
Content-Length: 471
12688.url.tudown.com/down/dpp%E8%BD%AF%E4%BB%B6@68_30634.exe
154.218.151.71200 OK 8.6 kB URL HTTP/1.1 12688.url.tudown.com/down/dpp%E8%BD%AF%E4%BB%B6@68_30634.exe
IP 154.218.151.71:0
ASN #137951 Clayer Limited
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (371), with CRLF, LF line terminators
Hash ca7fe9f3428c66887f551ef8614dfe17
7c682611832983bbb816bfaaa2d77faf24805103
9ca279bf0db0e40a0dbc638c089d15bd1f1951953a2bad2bede5ffe561f647c1
Analyzer Verdict Alert fortinet Malware
GET /down/dpp%E8%BD%AF%E4%BB%B6@68_30634.exe HTTP/1.1
Host: 12688.url.tudown.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 23 Jan 2023 09:12:11 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip
push.services.mozilla.com/
44.224.181.225101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 44.224.181.225:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: bb1Mt35h/rOgBLmuZu47uA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: D1icSUErEi78VY0oYXa4SadFJCk=
12688.url.tudown.com/js/orsxg5a.script
154.218.151.71200 OK 531 B URL HTTP/1.1 12688.url.tudown.com/js/orsxg5a.script
IP 154.218.151.71:0
ASN #137951 Clayer Limited
File type HTML document, ASCII text, with CRLF line terminators
Hash 39fd4f4c17d424445d9f437c99c9d40a
84a56ab95c669d43c757a5f9a312d5f3a37f73fa
45f58e7b2e72c9f2734889b73ef5c3f2d3e1fb9ac69995afe1561ec4a7943d15
Analyzer Verdict Alert fortinet Malware
GET /js/orsxg5a.script HTTP/1.1
Host: 12688.url.tudown.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://12688.url.tudown.com/down/dpp%E8%BD%AF%E4%BB%B6@68_30634.exe
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 23 Jan 2023 09:12:12 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip
12688.url.tudown.com/template/company/955yx/js/searchword.js
154.218.151.71200 OK 1.3 kB URL HTTP/1.1 12688.url.tudown.com/template/company/955yx/js/searchword.js
IP 154.218.151.71:0
ASN #137951 Clayer Limited
File type Unicode text, UTF-8 text, with CRLF line terminators
Hash 95c12a0f8944cbd1c05e11f7a72875dd
22430886820419d75b8da5721af251bdeb6811d1
36e33550c0a108df269183b53afe7f8c86316cc7e24a84ee3804e8ae12c627eb
Analyzer Verdict Alert fortinet Malware
GET /template/company/955yx/js/searchword.js HTTP/1.1
Host: 12688.url.tudown.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://12688.url.tudown.com/down/dpp%E8%BD%AF%E4%BB%B6@68_30634.exe
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 23 Jan 2023 09:12:12 GMT
Content-Type: application/javascript
Last-Modified: Tue, 15 Jun 2021 09:16:33 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"60c86ff1-fb5"
Expires: Mon, 23 Jan 2023 21:12:12 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip
12688.url.tudown.com/template/company/955yx/js/week_rank.js
154.218.151.71200 OK 656 B URL HTTP/1.1 12688.url.tudown.com/template/company/955yx/js/week_rank.js
IP 154.218.151.71:0
ASN #137951 Clayer Limited
File type ASCII text, with CRLF line terminators
Hash 00ac918b54dd742e0ec507274205038a
6a2976eb86376f33eb4f7b587f71296f07940da5
11624c98f05816c06f80e2ea5ef22376ce5509cb2c076003f9d5f27ac81f4ec9
Analyzer Verdict Alert fortinet Malware
GET /template/company/955yx/js/week_rank.js HTTP/1.1
Host: 12688.url.tudown.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://12688.url.tudown.com/down/dpp%E8%BD%AF%E4%BB%B6@68_30634.exe
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 23 Jan 2023 09:12:12 GMT
Content-Type: application/javascript
Content-Length: 656
Last-Modified: Tue, 15 Jun 2021 09:16:32 GMT
Connection: keep-alive
ETag: "60c86ff0-290"
Expires: Mon, 23 Jan 2023 21:12:12 GMT
Cache-Control: max-age=43200
Accept-Ranges: bytes
12688.url.tudown.com/template/company/955yx/js/jquery-1.8.3.min.js
154.218.151.71200 OK 41 kB URL HTTP/1.1 12688.url.tudown.com/template/company/955yx/js/jquery-1.8.3.min.js
IP 154.218.151.71:0
ASN #137951 Clayer Limited
File type ASCII text, with very long lines (65483)
Hash aef63d51fe884fe89d488a2abc96381b
ed39edfb824178566b87b08164c7d382a119705b
51826bef0d69d08144d8605e1c56e1602cb1b6f620f854972c31080cf17d11f5
Analyzer Verdict Alert fortinet Malware
GET /template/company/955yx/js/jquery-1.8.3.min.js HTTP/1.1
Host: 12688.url.tudown.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://12688.url.tudown.com/down/dpp%E8%BD%AF%E4%BB%B6@68_30634.exe
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 23 Jan 2023 09:12:12 GMT
Content-Type: application/javascript
Last-Modified: Tue, 15 Jun 2021 09:16:31 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"60c86fef-198c3"
Expires: Mon, 23 Jan 2023 21:12:12 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip
12688.url.tudown.com/template/company/955yx/js/script_index2.js
154.218.151.71200 OK 2.3 kB URL HTTP/1.1 12688.url.tudown.com/template/company/955yx/js/script_index2.js
IP 154.218.151.71:0
ASN #137951 Clayer Limited
File type ISO-8859 text, with CRLF line terminators
Hash e3f1b130f72b9756f002c6bbbc284fb7
d51b59da45422005ca5f02b66cb02eaf1b44a8fd
3c0e569d33461414b263a4a7e6602577873e4843bb450d5de979f263d02644c9
Analyzer Verdict Alert fortinet Malware
GET /template/company/955yx/js/script_index2.js HTTP/1.1
Host: 12688.url.tudown.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://12688.url.tudown.com/down/dpp%E8%BD%AF%E4%BB%B6@68_30634.exe
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 23 Jan 2023 09:12:12 GMT
Content-Type: application/javascript
Last-Modified: Tue, 15 Jun 2021 09:16:34 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"60c86ff2-1f77"
Expires: Mon, 23 Jan 2023 21:12:12 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip
12688.url.tudown.com/template/company/955yx/js/api.js
154.218.151.71200 OK 22 B URL HTTP/1.1 12688.url.tudown.com/template/company/955yx/js/api.js
IP 154.218.151.71:0
ASN #137951 Clayer Limited
File type ASCII text, with CRLF line terminators
Hash 143a35d673d243f56603ac04a89d8099
677acddc2a341ec711d74ecfd05bb919208c23df
ab368ffd11e345075f085c40cfdd9254280e0db19ed65e2668c287b17508170f
Analyzer Verdict Alert fortinet Malware
GET /template/company/955yx/js/api.js HTTP/1.1
Host: 12688.url.tudown.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://12688.url.tudown.com/down/dpp%E8%BD%AF%E4%BB%B6@68_30634.exe
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 23 Jan 2023 09:12:12 GMT
Content-Type: application/javascript
Content-Length: 22
Last-Modified: Tue, 15 Jun 2021 09:16:34 GMT
Connection: keep-alive
ETag: "60c86ff2-16"
Expires: Mon, 23 Jan 2023 21:12:12 GMT
Cache-Control: max-age=43200
Accept-Ranges: bytes
12688.url.tudown.com/template/company/955yx/js/gb.js
154.218.151.71200 OK 7.7 kB URL HTTP/1.1 12688.url.tudown.com/template/company/955yx/js/gb.js
IP 154.218.151.71:0
ASN #137951 Clayer Limited
File type Unicode text, UTF-8 text, with CRLF line terminators
Hash 2a105ecd23c8abe20d0f84a4d10903a7
f3a1339005455be7df05412b2bde5d33ed096da0
9e8e3180840152689c4d7732c3660da6c766645aad88f695c041720ff5ec0a67
Analyzer Verdict Alert fortinet Malware
GET /template/company/955yx/js/gb.js HTTP/1.1
Host: 12688.url.tudown.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://12688.url.tudown.com/down/dpp%E8%BD%AF%E4%BB%B6@68_30634.exe
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 23 Jan 2023 09:12:12 GMT
Content-Type: application/javascript
Last-Modified: Tue, 15 Jun 2021 09:16:31 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"60c86fef-7685"
Expires: Mon, 23 Jan 2023 21:12:12 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip
12688.url.tudown.com/template/company/955yx/css/gb.css
154.218.151.71200 OK 47 kB URL HTTP/1.1 12688.url.tudown.com/template/company/955yx/css/gb.css
IP 154.218.151.71:0
ASN #137951 Clayer Limited
File type Unicode text, UTF-8 text, with very long lines (393), with CRLF line terminators
Hash 50dd1318432db01d440645564e53edc9
ee0cb6adb44f515312f771197c6c08b951cb7689
2b908ce7540ed6b03b07bdec7eb7eb504b76e78b3304474f40af3b8f3afb2135
GET /template/company/955yx/css/gb.css HTTP/1.1
Host: 12688.url.tudown.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://12688.url.tudown.com/down/dpp%E8%BD%AF%E4%BB%B6@68_30634.exe
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 23 Jan 2023 09:12:12 GMT
Content-Type: text/css
Last-Modified: Tue, 15 Jun 2021 09:16:31 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"60c86fef-30c0d"
Expires: Mon, 23 Jan 2023 21:12:12 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash aff1c8f8bde400381877e95444ca236d
c532f6f9daa1d1685b4a4b75c2ab171f1731f78e
02cbcddfab60c295e61e716b7880c5acc66533a2cc2b151b4c9674109eacb71a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "02CBCDDFAB60C295E61E716B7880C5ACC66533A2CC2B151B4C9674109EACB71A"
Last-Modified: Mon, 23 Jan 2023 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=20858
Expires: Mon, 23 Jan 2023 14:59:51 GMT
Date: Mon, 23 Jan 2023 09:12:13 GMT
Connection: keep-alive
s.ssl.qhres2.com/ssl/ab77b6ea7f3fbf79.js
54.230.111.4200 OK 478 B URL HTTP/2 s.ssl.qhres2.com/ssl/ab77b6ea7f3fbf79.js
IP 54.230.111.4:0
File type ASCII text, with very long lines (478), with no line terminators
Hash 5dd27f8f2b042194c3cdabd62fd80110
c035036a939799d4c29b9c0f7229ae1953d03109
928131ab2183d971cdbfe2ed1329200212d0021db70574a35c89ae169c0f6e0a
GET /ssl/ab77b6ea7f3fbf79.js HTTP/1.1
Host: s.ssl.qhres2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://12688.url.tudown.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
content-length: 478
date: Thu, 24 Nov 2022 04:21:47 GMT
x-qstatic-hit: 1
last-modified: Mon, 01 Jan 2018 00:00:00 GMT
etag: W/"67d74adaac6d2f43"
access-control-allow-origin: *
cache-control: max-age=315360000, immutable
expires: Sun, 21 Nov 2032 04:21:47 GMT
kcs-via: HIT from w-fc03.lato;MISS from w-sc01.lato
accept-ranges: bytes
x-cache: Hit from cloudfront
via: 1.1 b053873243f91b1bb6dc406ce0c67db4.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: JiV3yUC1sxq7gBuI41gbVAR2MoTQZACjmiZWdndLj_OsWXctoCHPUw==
age: 5201426
X-Firefox-Spdy: h2
12688.url.tudown.com/uploads/images/435066.jpg
154.218.151.71301 Moved Permanently 0 B URL HTTP/1.1 12688.url.tudown.com/uploads/images/435066.jpg
IP 154.218.151.71:0
ASN #137951 Clayer Limited
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /uploads/images/435066.jpg HTTP/1.1
Host: 12688.url.tudown.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://12688.url.tudown.com/down/dpp%E8%BD%AF%E4%BB%B6@68_30634.exe
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Mon, 23 Jan 2023 09:12:13 GMT
Content-Type: image/jpg; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Location: https://img0.baidu.com/it/u=97040658,2737538612&fm=253&fmt=auto&app=138&f=JPEG?w=500&h=638
12688.url.tudown.com/static/api/http://12688.url.tudown.com/template/company/955yx/js/share.js?v=89860593.js?cdnversion=465128
154.218.151.71404 Not Found 146 B URL HTTP/1.1 12688.url.tudown.com/static/api/http://12688.url.tudown.com/template/company/955yx/js/share.js?v=89860593.js?cdnversion=465128
IP 154.218.151.71:0
ASN #137951 Clayer Limited
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 8eec510e57f5f732fd2cce73df7b73ef
3c0af39ecb3753c5fee3b53d063c7286019eac3b
55f7d9e99b8e2d4e0e193b2f0275501e6d9c1ebd29cadbea6a0da48a8587e3e0
Analyzer Verdict Alert fortinet Malware
GET /static/api/http://12688.url.tudown.com/template/company/955yx/js/share.js?v=89860593.js?cdnversion=465128 HTTP/1.1
Host: 12688.url.tudown.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://12688.url.tudown.com/down/dpp%E8%BD%AF%E4%BB%B6@68_30634.exe
HTTP/1.1 404 Not Found
Server: nginx
Date: Mon, 23 Jan 2023 09:12:13 GMT
Content-Type: text/html
Content-Length: 146
Connection: keep-alive
12688.url.tudown.com/uploads/images/707666.jpg
154.218.151.71301 Moved Permanently 0 B URL HTTP/1.1 12688.url.tudown.com/uploads/images/707666.jpg
IP 154.218.151.71:0
ASN #137951 Clayer Limited
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /uploads/images/707666.jpg HTTP/1.1
Host: 12688.url.tudown.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://12688.url.tudown.com/down/dpp%E8%BD%AF%E4%BB%B6@68_30634.exe
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Mon, 23 Jan 2023 09:12:13 GMT
Content-Type: image/jpg; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Location: https://img0.baidu.com/it/u=3625787569,2806665175&fm=253&fmt=auto&app=138&f=JPEG?w=523&h=500
12688.url.tudown.com/uploads/images/568641.jpg
154.218.151.71301 Moved Permanently 0 B URL HTTP/1.1 12688.url.tudown.com/uploads/images/568641.jpg
IP 154.218.151.71:0
ASN #137951 Clayer Limited
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /uploads/images/568641.jpg HTTP/1.1
Host: 12688.url.tudown.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://12688.url.tudown.com/down/dpp%E8%BD%AF%E4%BB%B6@68_30634.exe
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Mon, 23 Jan 2023 09:12:13 GMT
Content-Type: image/jpg; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Location: https://img0.baidu.com/it/u=586049009,1668046205&fm=253&fmt=auto&app=138&f=JPEG?w=500&h=500
12688.url.tudown.com/uploads/images/581148.jpg
154.218.151.71301 Moved Permanently 0 B URL HTTP/1.1 12688.url.tudown.com/uploads/images/581148.jpg
IP 154.218.151.71:0
ASN #137951 Clayer Limited
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /uploads/images/581148.jpg HTTP/1.1
Host: 12688.url.tudown.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://12688.url.tudown.com/down/dpp%E8%BD%AF%E4%BB%B6@68_30634.exe
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Mon, 23 Jan 2023 09:12:13 GMT
Content-Type: image/jpg; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Location: http://t14.baidu.com/it/u=2096322743,172455816&fm=224&app=112&f=JPEG?w=500&h=500
12688.url.tudown.com/uploads/images/764661.jpg
154.218.151.71301 Moved Permanently 0 B URL HTTP/1.1 12688.url.tudown.com/uploads/images/764661.jpg
IP 154.218.151.71:0
ASN #137951 Clayer Limited
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /uploads/images/764661.jpg HTTP/1.1
Host: 12688.url.tudown.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://12688.url.tudown.com/down/dpp%E8%BD%AF%E4%BB%B6@68_30634.exe
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Mon, 23 Jan 2023 09:12:13 GMT
Content-Type: image/jpg; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Location: https://img1.baidu.com/it/u=3701745270,5465264&fm=253&fmt=auto&app=138&f=JPEG?w=500&h=889
12688.url.tudown.com/uploads/images/383088.jpg
154.218.151.71301 Moved Permanently 0 B URL HTTP/1.1 12688.url.tudown.com/uploads/images/383088.jpg
IP 154.218.151.71:0
ASN #137951 Clayer Limited
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /uploads/images/383088.jpg HTTP/1.1
Host: 12688.url.tudown.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://12688.url.tudown.com/down/dpp%E8%BD%AF%E4%BB%B6@68_30634.exe
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Mon, 23 Jan 2023 09:12:13 GMT
Content-Type: image/jpg; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Location: https://img0.baidu.com/it/u=75828485,449531170&fm=253&fmt=auto&app=138&f=JPEG?w=440&h=951
t14.baidu.com/it/u=2096322743,172455816&fm=224&app=112&f=JPEG?w=500&h=500
185.10.104.124200 OK 37 kB URL HTTP/1.1 t14.baidu.com/it/u=2096322743,172455816&fm=224&app=112&f=JPEG?w=500&h=500
IP 185.10.104.124:0
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 500x500, components 3\012- data
Hash dc73a023aad828444fe7ba385a431d94
ed7248da0cd326e129591eb8a7de284ff28ab375
9545b4594247eac6261f75412b22f622dba5bf843455b476ee38c2e73127d7e0
GET /it/u=2096322743,172455816&fm=224&app=112&f=JPEG?w=500&h=500 HTTP/1.1
Host: t14.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://12688.url.tudown.com/
Connection: keep-alive
HTTP/1.1 200 OK
Server: JSP3/2.0.14
Date: Mon, 23 Jan 2023 09:12:13 GMT
Content-Type: image/jpeg
Content-Length: 36915
Connection: keep-alive
Expires: Thu, 16 Feb 2023 19:18:01 GMT
Last-Modified: Sat, 10 Jan 1970 00:00:00 GMT
ETag: dc73a023aad828444fe7ba385a431d94
Age: 27624
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Ohc-Global-Saved-Time: Tue, 17 Jan 2023 19:18:00 GMT
Ohc-Cache-HIT: fra01-sys-jomo7.fra01.baidu.com [4], zhuzuncache57 [4], bdix68 [4]
Ohc-Response-Time: 1 0 0 0 0 0
Ohc-File-Size: 36915
X-Cache-Status: HIT
Timing-Allow-Origin: *
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash a618971ebc90b5698ddbabc4637e3345
f920b73a7c9b57d77194ba8ba406664d8469b6b6
f7c66c647552a10c53d758e1eedd450226c969b0001a25a616773d57f10e16bf
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F7C66C647552A10C53D758E1EEDD450226C969B0001A25A616773D57F10E16BF"
Last-Modified: Sat, 21 Jan 2023 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6516
Expires: Mon, 23 Jan 2023 11:00:49 GMT
Date: Mon, 23 Jan 2023 09:12:13 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash a618971ebc90b5698ddbabc4637e3345
f920b73a7c9b57d77194ba8ba406664d8469b6b6
f7c66c647552a10c53d758e1eedd450226c969b0001a25a616773d57f10e16bf
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F7C66C647552A10C53D758E1EEDD450226C969B0001A25A616773D57F10E16BF"
Last-Modified: Sat, 21 Jan 2023 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6516
Expires: Mon, 23 Jan 2023 11:00:49 GMT
Date: Mon, 23 Jan 2023 09:12:13 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash a618971ebc90b5698ddbabc4637e3345
f920b73a7c9b57d77194ba8ba406664d8469b6b6
f7c66c647552a10c53d758e1eedd450226c969b0001a25a616773d57f10e16bf
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F7C66C647552A10C53D758E1EEDD450226C969B0001A25A616773D57F10E16BF"
Last-Modified: Sat, 21 Jan 2023 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6516
Expires: Mon, 23 Jan 2023 11:00:49 GMT
Date: Mon, 23 Jan 2023 09:12:13 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash a618971ebc90b5698ddbabc4637e3345
f920b73a7c9b57d77194ba8ba406664d8469b6b6
f7c66c647552a10c53d758e1eedd450226c969b0001a25a616773d57f10e16bf
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F7C66C647552A10C53D758E1EEDD450226C969B0001A25A616773D57F10E16BF"
Last-Modified: Sat, 21 Jan 2023 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6516
Expires: Mon, 23 Jan 2023 11:00:49 GMT
Date: Mon, 23 Jan 2023 09:12:13 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash a618971ebc90b5698ddbabc4637e3345
f920b73a7c9b57d77194ba8ba406664d8469b6b6
f7c66c647552a10c53d758e1eedd450226c969b0001a25a616773d57f10e16bf
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F7C66C647552A10C53D758E1EEDD450226C969B0001A25A616773D57F10E16BF"
Last-Modified: Sat, 21 Jan 2023 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6516
Expires: Mon, 23 Jan 2023 11:00:49 GMT
Date: Mon, 23 Jan 2023 09:12:13 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Faf2abec1-a455-47b9-9aaf-69794032330f.jpeg
34.120.237.76200 OK 8.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Faf2abec1-a455-47b9-9aaf-69794032330f.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 8ec35d753b6b816abcd14030255a7b76
a67bd0fa5beb10935442bef246bf4f52ec6e74bd
9adfddc8877a8ea9f1c3bcc0af99548cb11dc4e1d62a706bf9b2a5cc6d72e82f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Faf2abec1-a455-47b9-9aaf-69794032330f.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7982
x-amzn-requestid: 59d91715-b444-445e-bd6b-268fc630024b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fKezLExAIAMFSeA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63cdab47-1e12e8f335ea162532ce6aca;Sampled=0
x-amzn-remapped-date: Sun, 22 Jan 2023 21:31:51 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 0BgrMQG0-OHmZipKTgnHTs3HxYGBqKowIS37tg_QooT4JPlqHBPFvw==
via: 1.1 26ca01ec7377e425b59b6a08cb1ec342.cloudfront.net (CloudFront), 1.1 1b74ccf4cb51eacf97a0e6d60ae46a3e.cloudfront.net (CloudFront), 1.1 google
date: Sun, 22 Jan 2023 21:47:46 GMT
age: 41067
etag: "a67bd0fa5beb10935442bef246bf4f52ec6e74bd"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F69f6ce48-0095-4b2b-b098-c6f6de90570c.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F69f6ce48-0095-4b2b-b098-c6f6de90570c.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 5401628b3bdd03eeee51f68177ac4d41
bb12e1d1bc5a87d3fa05371894a8bc8eb3d1bb29
3e231ba2e44699d88ed1e28510dad0762a57e0854a11d40f752421bd41738944
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F69f6ce48-0095-4b2b-b098-c6f6de90570c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10052
x-amzn-requestid: 10422f29-dc81-41f9-b03e-76fb2b0f4f87
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: e2vnHFT9oAMFbmg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c5c62d-780503606bec4fff6e911fc8;Sampled=0
x-amzn-remapped-date: Mon, 16 Jan 2023 21:48:29 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: bcQqOfvj5pAZj--Zx6PFaG7j5ei1DbbIzS90vaApoWwFWrxeLri4Ow==
via: 1.1 470e3fe246a660ba6ace67a79f78d246.cloudfront.net (CloudFront), 1.1 be082a2326b7d49643607b097f1e7180.cloudfront.net (CloudFront), 1.1 google
date: Mon, 23 Jan 2023 07:11:12 GMT
age: 7261
etag: "bb12e1d1bc5a87d3fa05371894a8bc8eb3d1bb29"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F27144ba0-24e7-4177-b8d9-4121af2315c9.jpeg
34.120.237.76200 OK 4.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F27144ba0-24e7-4177-b8d9-4121af2315c9.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 3d0dd6e84bd1708aec285a9153eafabc
2d2729ca550ecdca29a502eb76c68f4eed623032
3c0492fc05ab9a35cd8d833a031aa907a473f2ff22fed0732fa331a0c2939660
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F27144ba0-24e7-4177-b8d9-4121af2315c9.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4085
x-amzn-requestid: 444720ab-9a4d-40f7-a2e2-e574d4e2928d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fBP0uEeToAMFepA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c9f9b7-113188a040ff40ad479415cc;Sampled=0
x-amzn-remapped-date: Fri, 20 Jan 2023 02:17:27 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: keWFs-Nhkuz7lUygleMuZ8TqK5mbLbs8IvnNtlNqknIW12DwwgswKg==
via: 1.1 8f22423015641505b8c857a37450d6c0.cloudfront.net (CloudFront), 1.1 570075675953459325e00b7bcd171df2.cloudfront.net (CloudFront), 1.1 google
date: Sun, 22 Jan 2023 21:56:03 GMT
age: 40570
etag: "2d2729ca550ecdca29a502eb76c68f4eed623032"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2ed6afa7-c805-4ddd-a71c-bc9bde7aee5a.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2ed6afa7-c805-4ddd-a71c-bc9bde7aee5a.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash e42f475b1e14cb9d0939ef39db8e1f91
dda57d67c7b5f32123d3c9956dec8f805138b3bf
ace1e5843457dc5493432ea113059e67827e6c95d6998a7465dea1eb0e723a1e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2ed6afa7-c805-4ddd-a71c-bc9bde7aee5a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11818
x-amzn-requestid: e80dab53-5137-4776-a105-b1933e9bda6b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fEqu6GhZIAMFWSA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63cb57f8-696c3a7f103b96a23ed4abec;Sampled=0
x-amzn-remapped-date: Sat, 21 Jan 2023 03:11:52 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 5bEvPaVPmareEYTNHUoTIEtCn0EKpBBafR11mjrvwPFVS_DLFKgm3w==
via: 1.1 4f87745990545c1ac0195c157e1668f8.cloudfront.net (CloudFront), 1.1 943c6a4d4ee43b18ee91634536f53eae.cloudfront.net (CloudFront), 1.1 google
date: Mon, 23 Jan 2023 05:41:35 GMT
age: 12638
etag: "dda57d67c7b5f32123d3c9956dec8f805138b3bf"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F09ccbe5e-77b1-4d6d-98f5-a477f3861d8c.jpeg
34.120.237.76200 OK 13 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F09ccbe5e-77b1-4d6d-98f5-a477f3861d8c.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 7458f7a9b2070055df6f1d496794e43e
0f5d2a6d846f4f8f85dd7e8089e643cacc57d8a9
373097662c419eef9f4a19ce9f3bcead70f6eafbf0acf44806685eece43ce251
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F09ccbe5e-77b1-4d6d-98f5-a477f3861d8c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12758
x-amzn-requestid: c3540562-8c62-4957-9528-7ae952daebaa
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: e9gf1E87oAMFpsQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c87acb-49fd3f78275937e24d23fca3;Sampled=0
x-amzn-remapped-date: Wed, 18 Jan 2023 23:03:39 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: mjK4GJ3UCEuHk4XqmXdZCWHTVvJeX8Z2HFaem2GYzqfqlPSd_h6DfA==
via: 1.1 0c96ded7ff282d2dbcf47c918b6bb500.cloudfront.net (CloudFront), 1.1 64f86ae1c24221f3a2e4d653d6dbc416.cloudfront.net (CloudFront), 1.1 google
date: Mon, 23 Jan 2023 01:53:55 GMT
age: 26298
etag: "0f5d2a6d846f4f8f85dd7e8089e643cacc57d8a9"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F296d62aa-29a6-401f-a40f-9238dace1001.jpeg
34.120.237.76200 OK 7.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F296d62aa-29a6-401f-a40f-9238dace1001.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 9c9e3df640be93567ea081ffe31576f6
fb07a0e3cfcb7f53b94f614a2e96ec1d8d5967d4
679e5a9ab43a5599759171b70ad5dbe0c4ca8facb895f08ef0313b0c7e691ea3
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F296d62aa-29a6-401f-a40f-9238dace1001.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7387
x-amzn-requestid: 54845590-a39f-4a1b-ba4a-fe24368b268a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fD7N3GmQIAMF6AQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63cb0bf2-4b4bf4fc209388b74cb1c7f7;Sampled=0
x-amzn-remapped-date: Fri, 20 Jan 2023 21:47:30 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: Uv-WWW2LOuAxIaf_yYT1vVoI2G_h3uuC75aLEKAij4YM8tVdHwmfuw==
via: 1.1 030fe0607711293dda988e571617a9f2.cloudfront.net (CloudFront), 1.1 e4d3d5aafc7d7d582423c073065ab562.cloudfront.net (CloudFront), 1.1 google
date: Sun, 22 Jan 2023 21:54:22 GMT
age: 40671
etag: "fb07a0e3cfcb7f53b94f614a2e96ec1d8d5967d4"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
push.zhanzhang.baidu.com/push.js
112.34.113.148200 OK 227 B URL HTTP/1.1 push.zhanzhang.baidu.com/push.js
IP 112.34.113.148:0
ASN #9808 China Mobile Communications Group Co., Ltd.
File type ASCII text, with no line terminators
Hash e548b6ce15bb616c2bfba36e9cfbf307
a348285d9928a6548a57569f1fb9d62bdd747f33
7be3e4c53cc47ce5cfa40a5e79b42848a90acee0d7ff71f10ac31a49c81aead5
GET /push.js HTTP/1.1
Host: push.zhanzhang.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://12688.url.tudown.com/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=31536000
Content-Encoding: gzip
Content-Length: 227
Content-Type: text/javascript
Date: Mon, 23 Jan 2023 09:12:13 GMT
Etag: "4078521116"
Expires: Tue, 23 Jan 2024 09:12:13 GMT
Last-Modified: Wed, 25 Nov 2015 07:47:55 GMT
P3p: CP=" OTI DSP COR IVA OUR IND COM "
Server: apache
Set-Cookie: BAIDUID=7B33A7B81FD1BA76A84DCE4C9A2287A9:FG=1; max-age=31536000; expires=Tue, 23-Jan-24 09:12:13 GMT; domain=.baidu.com; path=/; version=1
Vary: Accept-Encoding
ocsp.globalsign.com/gsrsaovsslca2018
104.18.21.226200 OK 1.4 kB URL HTTP/1.1 ocsp.globalsign.com/gsrsaovsslca2018
IP 104.18.21.226:0
Hash 96426b8d462171c1ea848ea196db325a
25b8fc5a23d0bf02a3809d59472cd972d8528ab6
6941e1fb273720cda3a858c32e07289afe914597d6f991523de4d318213daa37
POST /gsrsaovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Mon, 23 Jan 2023 09:12:13 GMT
Content-Type: application/ocsp-response
Content-Length: 1432
Connection: keep-alive
Expires: Fri, 27 Jan 2023 05:47:17 GMT
ETag: "25b8fc5a23d0bf02a3809d59472cd972d8528ab6"
Last-Modified: Mon, 23 Jan 2023 05:47:18 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 2663
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 78df680d0b38fab4-OSL
12688.url.tudown.com/template/company/955yx/images/home.png
154.218.151.71200 OK 1.3 kB URL HTTP/1.1 12688.url.tudown.com/template/company/955yx/images/home.png
IP 154.218.151.71:0
ASN #137951 Clayer Limited
File type PNG image data, 22 x 22, 8-bit/color RGBA, non-interlaced\012- data
Hash 302b4d0465daebb6a02b59b721d92a41
20d18d0cb9f052ec48b775ec2de2e8ce1a233c1e
a7fa550286b2b0974ab70bbadbe26cfa5b6770da8a71445b3b3f87abd896d3f2
GET /template/company/955yx/images/home.png HTTP/1.1
Host: 12688.url.tudown.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://12688.url.tudown.com/template/company/955yx/css/gb.css
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 23 Jan 2023 09:12:13 GMT
Content-Type: image/png
Content-Length: 1270
Last-Modified: Tue, 15 Jun 2021 09:16:32 GMT
Connection: keep-alive
ETag: "60c86ff0-4f6"
Accept-Ranges: bytes
s.360.cn/so/zz.gif?url=http%3A%2F%2F12688.url.tudown.com%2Fdown%2Fdpp%25E8%25BD%25AF%25E4%25BB%25B6%4068_30634.exe&sid=d182b3f28525f2db83acfaaf6e696dba&token=de1x8e2.b433f620835_2856f@26dBb%
180.163.251.230200 OK 0 B URL HTTP/1.1 s.360.cn/so/zz.gif?url=http%3A%2F%2F12688.url.tudown.com%2Fdown%2Fdpp%25E8%25BD%25AF%25E4%25BB%25B6%4068_30634.exe&sid=d182b3f28525f2db83acfaaf6e696dba&token=de1x8e2.b433f620835_2856f@26dBb%
IP 180.163.251.230:0
ASN #4812 China Telecom Group
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /so/zz.gif?url=http%3A%2F%2F12688.url.tudown.com%2Fdown%2Fdpp%25E8%25BD%25AF%25E4%25BB%25B6%4068_30634.exe&sid=d182b3f28525f2db83acfaaf6e696dba&token=de1x8e2.b433f620835_2856f@26dBb% HTTP/1.1
Host: s.360.cn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://12688.url.tudown.com/
HTTP/1.1 200 OK
Server: openresty/1.15.8.2
Date: Mon, 23 Jan 2023 09:12:13 GMT
Content-Type: image/gif
Content-Length: 0
Last-Modified: Fri, 27 Jul 2018 07:37:50 GMT
Connection: keep-alive
ETag: "5b5acbce-0"
Accept-Ranges: bytes
12688.url.tudown.com/uploads/images/861045.jpg
154.218.151.71301 Moved Permanently 0 B URL HTTP/1.1 12688.url.tudown.com/uploads/images/861045.jpg
IP 154.218.151.71:0
ASN #137951 Clayer Limited
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /uploads/images/861045.jpg HTTP/1.1
Host: 12688.url.tudown.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://12688.url.tudown.com/down/dpp%E8%BD%AF%E4%BB%B6@68_30634.exe
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Mon, 23 Jan 2023 09:12:13 GMT
Content-Type: image/jpg; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Location: http://img0.baidu.com/it/u=3423795264,1977596823&fm=253&app=120&f=JPEG?w=1422&h=800
12688.url.tudown.com/uploads/images/58029.jpg
154.218.151.71301 Moved Permanently 0 B URL HTTP/1.1 12688.url.tudown.com/uploads/images/58029.jpg
IP 154.218.151.71:0
ASN #137951 Clayer Limited
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /uploads/images/58029.jpg HTTP/1.1
Host: 12688.url.tudown.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://12688.url.tudown.com/down/dpp%E8%BD%AF%E4%BB%B6@68_30634.exe
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Mon, 23 Jan 2023 09:12:13 GMT
Content-Type: image/jpg; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Location: https://img0.baidu.com/it/u=828399047,2921453799&fm=253&fmt=auto&app=138&f=PNG?w=500&h=800
12688.url.tudown.com/uploads/images/910884.jpg
154.218.151.71301 Moved Permanently 0 B URL HTTP/1.1 12688.url.tudown.com/uploads/images/910884.jpg
IP 154.218.151.71:0
ASN #137951 Clayer Limited
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /uploads/images/910884.jpg HTTP/1.1
Host: 12688.url.tudown.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://12688.url.tudown.com/down/dpp%E8%BD%AF%E4%BB%B6@68_30634.exe
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Mon, 23 Jan 2023 09:12:13 GMT
Content-Type: image/jpg; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Location: http://img0.baidu.com/it/u=1841333483,3877770809&fm=253&app=138&f=JPEG?w=500&h=889
12688.url.tudown.com/uploads/images/739881.jpg
154.218.151.71301 Moved Permanently 0 B URL HTTP/1.1 12688.url.tudown.com/uploads/images/739881.jpg
IP 154.218.151.71:0
ASN #137951 Clayer Limited
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /uploads/images/739881.jpg HTTP/1.1
Host: 12688.url.tudown.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://12688.url.tudown.com/down/dpp%E8%BD%AF%E4%BB%B6@68_30634.exe
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Mon, 23 Jan 2023 09:12:13 GMT
Content-Type: image/jpg; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Location: https://img2.baidu.com/it/u=517972516,2234849688&fm=253&fmt=auto&app=138&f=JPEG?w=889&h=500
12688.url.tudown.com/index.php?m=content&c=index&a=get_searchkey&pc_hash=WrCDxe&_=1674465131841
154.218.151.71200 OK 8.6 kB URL HTTP/1.1 12688.url.tudown.com/index.php?m=content&c=index&a=get_searchkey&pc_hash=WrCDxe&_=1674465131841
IP 154.218.151.71:0
ASN #137951 Clayer Limited
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (371), with CRLF, LF line terminators
Hash c14270adac47c4769abdf33c87b0878d
1ba0c78400df151f4eb44518cc62c33db96e2dd1
9388063026c03ff809e40caed142160ea6186a6948b94c89aaa3f4be2552f061
GET /index.php?m=content&c=index&a=get_searchkey&pc_hash=WrCDxe&_=1674465131841 HTTP/1.1
Host: 12688.url.tudown.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Referer: http://12688.url.tudown.com/down/dpp%E8%BD%AF%E4%BB%B6@68_30634.exe
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 23 Jan 2023 09:12:13 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip
12688.url.tudown.com/uploads/images/483766.jpg
154.218.151.71301 Moved Permanently 0 B URL HTTP/1.1 12688.url.tudown.com/uploads/images/483766.jpg
IP 154.218.151.71:0
ASN #137951 Clayer Limited
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /uploads/images/483766.jpg HTTP/1.1
Host: 12688.url.tudown.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://12688.url.tudown.com/down/dpp%E8%BD%AF%E4%BB%B6@68_30634.exe
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Mon, 23 Jan 2023 09:12:13 GMT
Content-Type: image/jpg; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Location: https://img1.baidu.com/it/u=3306085564,2992019217&fm=253&fmt=auto&app=138&f=JPEG?w=372&h=500
12688.url.tudown.com/uploads/images/24754.jpg
154.218.151.71301 Moved Permanently 0 B URL HTTP/1.1 12688.url.tudown.com/uploads/images/24754.jpg
IP 154.218.151.71:0
ASN #137951 Clayer Limited
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /uploads/images/24754.jpg HTTP/1.1
Host: 12688.url.tudown.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://12688.url.tudown.com/down/dpp%E8%BD%AF%E4%BB%B6@68_30634.exe
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Mon, 23 Jan 2023 09:12:13 GMT
Content-Type: image/jpg; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Location: http://img1.baidu.com/it/u=43230664,2102879730&fm=253&app=120&f=JPEG?w=1280&h=800
12688.url.tudown.com/uploads/images/890481.jpg
154.218.151.71301 Moved Permanently 0 B URL HTTP/1.1 12688.url.tudown.com/uploads/images/890481.jpg
IP 154.218.151.71:0
ASN #137951 Clayer Limited
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /uploads/images/890481.jpg HTTP/1.1
Host: 12688.url.tudown.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://12688.url.tudown.com/down/dpp%E8%BD%AF%E4%BB%B6@68_30634.exe
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Mon, 23 Jan 2023 09:12:13 GMT
Content-Type: image/jpg; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Location: http://img0.baidu.com/it/u=932576940,434585048&fm=253&app=138&f=JPEG?w=800&h=500
12688.url.tudown.com/uploads/images/65407.jpg
154.218.151.71301 Moved Permanently 0 B URL HTTP/1.1 12688.url.tudown.com/uploads/images/65407.jpg
IP 154.218.151.71:0
ASN #137951 Clayer Limited
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /uploads/images/65407.jpg HTTP/1.1
Host: 12688.url.tudown.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://12688.url.tudown.com/down/dpp%E8%BD%AF%E4%BB%B6@68_30634.exe
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Mon, 23 Jan 2023 09:12:14 GMT
Content-Type: image/jpg; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Location: http://img0.baidu.com/it/u=2970134638,2658398603&fm=253&app=120&f=JPEG?w=1422&h=800
12688.url.tudown.com/uploads/images/488050.jpg
154.218.151.71301 Moved Permanently 0 B URL HTTP/1.1 12688.url.tudown.com/uploads/images/488050.jpg
IP 154.218.151.71:0
ASN #137951 Clayer Limited
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /uploads/images/488050.jpg HTTP/1.1
Host: 12688.url.tudown.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://12688.url.tudown.com/down/dpp%E8%BD%AF%E4%BB%B6@68_30634.exe
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Mon, 23 Jan 2023 09:12:14 GMT
Content-Type: image/jpg; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Location: https://img2.baidu.com/it/u=3165194642,2183093100&fm=253&fmt=auto&app=138&f=JPEG?w=300&h=300
12688.url.tudown.com/api.php?op=digg&action=show&id=23038
154.218.151.71404 Not Found 146 B URL HTTP/1.1 12688.url.tudown.com/api.php?op=digg&action=show&id=23038
IP 154.218.151.71:0
ASN #137951 Clayer Limited
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 8eec510e57f5f732fd2cce73df7b73ef
3c0af39ecb3753c5fee3b53d063c7286019eac3b
55f7d9e99b8e2d4e0e193b2f0275501e6d9c1ebd29cadbea6a0da48a8587e3e0
GET /api.php?op=digg&action=show&id=23038 HTTP/1.1
Host: 12688.url.tudown.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Referer: http://12688.url.tudown.com/down/dpp%E8%BD%AF%E4%BB%B6@68_30634.exe
HTTP/1.1 404 Not Found
Server: nginx
Date: Mon, 23 Jan 2023 09:12:14 GMT
Content-Type: text/html
Content-Length: 146
Connection: keep-alive
img0.baidu.com/it/u=97040658,2737538612&fm=253&fmt=auto&app=138&f=JPEG?w=500&h=638
42.101.56.35200 OK 29 kB URL HTTP/2 img0.baidu.com/it/u=97040658,2737538612&fm=253&fmt=auto&app=138&f=JPEG?w=500&h=638
IP 42.101.56.35:0
ASN #137698 HaerbingHeilongjiang Province, P.R.China.
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 500x638, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash abe88d977fbbececae72b3167e36966e
abf82fad41c012c9f7684b14eebe05576bc7b339
f05e685b21d7b49464dc2d670124547bdceee1d33058573c0b9fbe041f5f3223
GET /it/u=97040658,2737538612&fm=253&fmt=auto&app=138&f=JPEG?w=500&h=638 HTTP/1.1
Host: img0.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://12688.url.tudown.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: JSP3/2.0.14
date: Mon, 23 Jan 2023 09:12:14 GMT
content-type: image/webp
content-length: 29422
expires: Sat, 18 Feb 2023 04:11:41 GMT
last-modified: Sun, 04 Jan 1970 00:00:00 GMT
etag: abe88d977fbbececae72b3167e36966e
accept-ranges: bytes
access-control-allow-origin: *
timing-allow-origin: *
ohc-global-saved-time: Thu, 19 Jan 2023 04:11:41 GMT
ohc-cache-hit: hrb4ct86 [1], qdix124 [4]
ohc-file-size: 29422
x-cache-status: MISS
X-Firefox-Spdy: h2
img0.baidu.com/it/u=1841333483,3877770809&fm=253&app=138&f=JPEG?w=500&h=889
42.101.56.35200 OK 17 kB URL HTTP/1.1 img0.baidu.com/it/u=1841333483,3877770809&fm=253&app=138&f=JPEG?w=500&h=889
IP 42.101.56.35:0
ASN #137698 HaerbingHeilongjiang Province, P.R.China.
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 500x889, components 3\012- data
Hash ef25743bd76baeb2c5fb8e6fc601d748
27c03d344b351984acdad6738d377fb6f01318eb
51db9c61ab6fffde7f719b8c6a95ea548e4a3627ee1341aab1dd03bdecd558df
GET /it/u=1841333483,3877770809&fm=253&app=138&f=JPEG?w=500&h=889 HTTP/1.1
Host: img0.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://12688.url.tudown.com/
Connection: keep-alive
HTTP/1.1 200 OK
Server: JSP3/2.0.14
Date: Mon, 23 Jan 2023 09:12:14 GMT
Content-Type: image/jpeg
Content-Length: 17375
Connection: keep-alive
Expires: Sun, 05 Feb 2023 17:41:53 GMT
Last-Modified: Tue, 06 Jan 1970 00:00:00 GMT
ETag: ef25743bd76baeb2c5fb8e6fc601d748
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Ohc-Global-Saved-Time: Fri, 06 Jan 2023 17:41:53 GMT
Ohc-Cache-HIT: hrb4ct51 [1], xaix51 [4]
Ohc-File-Size: 17375
X-Cache-Status: MISS
12688.url.tudown.com/template/company/955yx/images/bgs.png
154.218.151.71200 OK 101 kB URL HTTP/1.1 12688.url.tudown.com/template/company/955yx/images/bgs.png
IP 154.218.151.71:0
ASN #137951 Clayer Limited
File type PNG image data, 500 x 900, 8-bit/color RGBA, non-interlaced\012- data
Size 101 kB (101362 bytes)
Hash 1621ecee9c5f80ff96ab42e1ee259f58
5867acc872a638e86b981dbd81632c219a8093ec
f7809c07dbf542cc134fa715f678d4fba323bffdc649c9fb85a866b55b0c47f9
GET /template/company/955yx/images/bgs.png HTTP/1.1
Host: 12688.url.tudown.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://12688.url.tudown.com/template/company/955yx/css/gb.css
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 23 Jan 2023 09:12:13 GMT
Content-Type: image/png
Content-Length: 101362
Last-Modified: Tue, 15 Jun 2021 09:16:31 GMT
Connection: keep-alive
ETag: "60c86fef-18bf2"
Accept-Ranges: bytes
api.share.baidu.com/s.gif?l=http://12688.url.tudown.com/down/dpp%E8%BD%AF%E4%BB%B6@68_30634.exe
182.61.201.93200 OK 0 B URL HTTP/1.1 api.share.baidu.com/s.gif?l=http://12688.url.tudown.com/down/dpp%E8%BD%AF%E4%BB%B6@68_30634.exe
IP 182.61.201.93:0
ASN #38365 Beijing Baidu Netcom Science and Technology Co., Ltd.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /s.gif?l=http://12688.url.tudown.com/down/dpp%E8%BD%AF%E4%BB%B6@68_30634.exe HTTP/1.1
Host: api.share.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://12688.url.tudown.com/
HTTP/1.1 200 OK
Content-Length: 0
Content-Type: text/plain; charset=utf-8
Date: Mon, 23 Jan 2023 09:12:14 GMT
img0.baidu.com/it/u=75828485,449531170&fm=253&fmt=auto&app=138&f=JPEG?w=440&h=951
42.101.56.35200 OK 45 kB URL HTTP/2 img0.baidu.com/it/u=75828485,449531170&fm=253&fmt=auto&app=138&f=JPEG?w=440&h=951
IP 42.101.56.35:0
ASN #137698 HaerbingHeilongjiang Province, P.R.China.
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 440x951, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 52a85c266458932e25c57891c2b5f482
3959db8024477b3ae090da90a613e19e33ee763f
0834e4060a4af7fb2f54ff1b898315e6aff9967730c0545cadbdbf7525d8b89c
GET /it/u=75828485,449531170&fm=253&fmt=auto&app=138&f=JPEG?w=440&h=951 HTTP/1.1
Host: img0.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://12688.url.tudown.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: JSP3/2.0.14
date: Mon, 23 Jan 2023 09:12:14 GMT
content-type: image/webp
content-length: 44826
expires: Tue, 21 Feb 2023 06:30:56 GMT
last-modified: Sat, 10 Jan 1970 00:00:00 GMT
etag: 52a85c266458932e25c57891c2b5f482
accept-ranges: bytes
access-control-allow-origin: *
timing-allow-origin: *
ohc-global-saved-time: Sun, 22 Jan 2023 06:30:56 GMT
ohc-cache-hit: hrb4ct61 [1], xaix61 [4]
ohc-file-size: 44826
x-cache-status: MISS
X-Firefox-Spdy: h2
12688.url.tudown.com/template/company/955yx/images/litterstar.png
154.218.151.71200 OK 1.7 kB URL HTTP/1.1 12688.url.tudown.com/template/company/955yx/images/litterstar.png
IP 154.218.151.71:0
ASN #137951 Clayer Limited
File type PNG image data, 73 x 143, 8-bit colormap, non-interlaced\012- data
Hash d130270dc6abd41d1d40acbe01e36739
5dec8c0c88e9c3dfb13cbfc7d1d9818baa7ee96c
8b31f0ef117010f8ad5e5c8c73ede7468072e1cb08f994fce90ada97f461b59b
GET /template/company/955yx/images/litterstar.png HTTP/1.1
Host: 12688.url.tudown.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://12688.url.tudown.com/template/company/955yx/css/gb.css
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 23 Jan 2023 09:12:14 GMT
Content-Type: image/png
Content-Length: 1706
Last-Modified: Tue, 15 Jun 2021 09:16:33 GMT
Connection: keep-alive
ETag: "60c86ff1-6aa"
Accept-Ranges: bytes
12688.url.tudown.com/index.php?m=content&c=index&a=get_week_rank&catid=undefined&num=16
154.218.151.71200 OK 8.6 kB URL HTTP/1.1 12688.url.tudown.com/index.php?m=content&c=index&a=get_week_rank&catid=undefined&num=16
IP 154.218.151.71:0
ASN #137951 Clayer Limited
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (371), with CRLF, LF line terminators
Hash dce6692a1fdd756faca118288d1de418
62accabe960cf81df80b39e63844e50f4f8f351c
354f159b762a87076844928f8ac9a453e590da5174a0f05e6ee5f4254066fe80
GET /index.php?m=content&c=index&a=get_week_rank&catid=undefined&num=16 HTTP/1.1
Host: 12688.url.tudown.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Referer: http://12688.url.tudown.com/down/dpp%E8%BD%AF%E4%BB%B6@68_30634.exe
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 23 Jan 2023 09:12:14 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip
img1.baidu.com/it/u=3701745270,5465264&fm=253&fmt=auto&app=138&f=JPEG?w=500&h=889
111.170.27.1200 OK 36 kB URL HTTP/2 img1.baidu.com/it/u=3701745270,5465264&fm=253&fmt=auto&app=138&f=JPEG?w=500&h=889
IP 111.170.27.1:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 500x889, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 9399d09208dd19889f804e0a828dd1b7
78d52e518aec2f976d395d752f7408181e51dc05
5e08fd8f01fcc36423567700d31526110d7de6503588da7ad749b113b7d48a79
GET /it/u=3701745270,5465264&fm=253&fmt=auto&app=138&f=JPEG?w=500&h=889 HTTP/1.1
Host: img1.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://12688.url.tudown.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: JSP3/2.0.14
date: Mon, 23 Jan 2023 09:12:14 GMT
content-type: image/webp
content-length: 36118
expires: Tue, 24 Jan 2023 12:35:06 GMT
last-modified: Mon, 05 Jan 1970 00:00:00 GMT
etag: 9399d09208dd19889f804e0a828dd1b7
accept-ranges: bytes
access-control-allow-origin: *
timing-allow-origin: *
ohc-global-saved-time: Sun, 25 Dec 2022 12:35:06 GMT
ohc-cache-hit: xiangfct87 [1], xiangyix87 [4]
ohc-file-size: 36118
x-cache-status: MISS
X-Firefox-Spdy: h2
img1.baidu.com/it/u=3306085564,2992019217&fm=253&fmt=auto&app=138&f=JPEG?w=372&h=500
111.170.27.1200 OK 28 kB URL HTTP/2 img1.baidu.com/it/u=3306085564,2992019217&fm=253&fmt=auto&app=138&f=JPEG?w=372&h=500
IP 111.170.27.1:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 372x500, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 8177a9541a5fe560f015ca90682a6a42
8d0e81328860136f250f32016abb29b8fbaf2ad1
8ce0297f87ffff763aa3e24538a2554f48feec53892b8e4b1f2f927e37183b50
GET /it/u=3306085564,2992019217&fm=253&fmt=auto&app=138&f=JPEG?w=372&h=500 HTTP/1.1
Host: img1.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://12688.url.tudown.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: JSP3/2.0.14
date: Mon, 23 Jan 2023 09:12:14 GMT
content-type: image/webp
content-length: 27536
expires: Thu, 26 Jan 2023 12:06:35 GMT
last-modified: Mon, 05 Jan 1970 00:00:00 GMT
etag: 8177a9541a5fe560f015ca90682a6a42
accept-ranges: bytes
access-control-allow-origin: *
timing-allow-origin: *
ohc-global-saved-time: Tue, 27 Dec 2022 12:06:35 GMT
ohc-cache-hit: xiangfct67 [1], xiangyix202 [4]
ohc-file-size: 27536
x-cache-status: MISS
X-Firefox-Spdy: h2
12688.url.tudown.com/uploads/images/228110.jpg
154.218.151.71301 Moved Permanently 0 B URL HTTP/1.1 12688.url.tudown.com/uploads/images/228110.jpg
IP 154.218.151.71:0
ASN #137951 Clayer Limited
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /uploads/images/228110.jpg HTTP/1.1
Host: 12688.url.tudown.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://12688.url.tudown.com/down/dpp%E8%BD%AF%E4%BB%B6@68_30634.exe
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Mon, 23 Jan 2023 09:12:14 GMT
Content-Type: image/jpg; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Location: http://t13.baidu.com/it/u=2992555568,2283794369&fm=224&app=112&f=JPEG?w=500&h=500
img0.baidu.com/it/u=3625787569,2806665175&fm=253&fmt=auto&app=138&f=JPEG?w=523&h=500
42.101.56.35200 OK 17 kB URL HTTP/2 img0.baidu.com/it/u=3625787569,2806665175&fm=253&fmt=auto&app=138&f=JPEG?w=523&h=500
IP 42.101.56.35:0
ASN #137698 HaerbingHeilongjiang Province, P.R.China.
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 523x500, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash c817048fdd6af1099e6f872c3aac585a
e794e6259b178ac119b9e1bcaec416f9bd30fd51
8ef120473501ca86520259f78da89431bfce003819ac3932761d74b664daef7c
GET /it/u=3625787569,2806665175&fm=253&fmt=auto&app=138&f=JPEG?w=523&h=500 HTTP/1.1
Host: img0.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://12688.url.tudown.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: JSP3/2.0.14
date: Mon, 23 Jan 2023 09:12:14 GMT
content-type: image/webp
content-length: 17280
expires: Wed, 22 Feb 2023 01:43:33 GMT
last-modified: Sun, 11 Jan 1970 00:00:00 GMT
etag: c817048fdd6af1099e6f872c3aac585a
age: 24234
accept-ranges: bytes
access-control-allow-origin: *
timing-allow-origin: *
ohc-global-saved-time: Mon, 23 Jan 2023 01:43:33 GMT
ohc-cache-hit: hrb4ct56 [4], suzix212 [4]
ohc-file-size: 17280
x-cache-status: HIT
X-Firefox-Spdy: h2
12688.url.tudown.com/uploads/images/250095.jpg
154.218.151.71301 Moved Permanently 0 B URL HTTP/1.1 12688.url.tudown.com/uploads/images/250095.jpg
IP 154.218.151.71:0
ASN #137951 Clayer Limited
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /uploads/images/250095.jpg HTTP/1.1
Host: 12688.url.tudown.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://12688.url.tudown.com/down/dpp%E8%BD%AF%E4%BB%B6@68_30634.exe
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Mon, 23 Jan 2023 09:12:14 GMT
Content-Type: image/jpg; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Location: https://img2.baidu.com/it/u=1846765833,2220693254&fm=253&fmt=auto&app=120&f=JPEG?w=800&h=1422
12688.url.tudown.com/index.php?m=content&c=index&a=get_week_rank&catid=undefined&num=16
154.218.151.71200 OK 8.6 kB URL HTTP/1.1 12688.url.tudown.com/index.php?m=content&c=index&a=get_week_rank&catid=undefined&num=16
IP 154.218.151.71:0
ASN #137951 Clayer Limited
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (371), with CRLF, LF line terminators
Hash eebb46d740f1d1b1b2ed39c5ce2ccf73
5c8a4d9813f4c0e5bee761cc7329261f1076a48e
efbeef63401642cc9270dff818625d995d9cc1fe1d2369833a9e180c70d29ebe
GET /index.php?m=content&c=index&a=get_week_rank&catid=undefined&num=16 HTTP/1.1
Host: 12688.url.tudown.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Referer: http://12688.url.tudown.com/down/dpp%E8%BD%AF%E4%BB%B6@68_30634.exe
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 23 Jan 2023 09:12:14 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip
hm.baidu.com/hm.js?dd9836db2e433f487a0aa434b7b3deb7
103.235.46.191200 OK 11 kB URL HTTP/1.1 hm.baidu.com/hm.js?dd9836db2e433f487a0aa434b7b3deb7
IP 103.235.46.191:0
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type ASCII text, with very long lines (633)
Hash a878754a4a52248c075171a28b929e18
3732cf41a74e469878534a5835d9af0648a1b9bd
320a8fafa06f2eec252cc066febaa1626c18c17fba9f6525a71ac1a9b94bb954
GET /hm.js?dd9836db2e433f487a0aa434b7b3deb7 HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://12688.url.tudown.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: max-age=0, must-revalidate
Content-Encoding: gzip
Content-Length: 11271
Content-Type: application/javascript
Date: Mon, 23 Jan 2023 09:12:14 GMT
Etag: b79e066c97bfb99e73c99376b7d42be1
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Server: apache
Set-Cookie: HMACCOUNT=26E5C1F18F1F41E6; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
img2.baidu.com/it/u=517972516,2234849688&fm=253&fmt=auto&app=138&f=JPEG?w=889&h=500
42.101.56.35200 OK 27 kB URL HTTP/2 img2.baidu.com/it/u=517972516,2234849688&fm=253&fmt=auto&app=138&f=JPEG?w=889&h=500
IP 42.101.56.35:0
ASN #137698 HaerbingHeilongjiang Province, P.R.China.
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 889x500, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 533fc68f26e5a6fd0c61bcf4892bcb7e
513866379997094606da144f5327f6fe6fae549f
e02ede0c69da16bcf656d3d0837852df7625c425bc4b4d37242bddb9db8c00dc
GET /it/u=517972516,2234849688&fm=253&fmt=auto&app=138&f=JPEG?w=889&h=500 HTTP/1.1
Host: img2.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://12688.url.tudown.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: JSP3/2.0.14
date: Mon, 23 Jan 2023 09:12:14 GMT
content-type: image/webp
content-length: 27356
expires: Tue, 31 Jan 2023 02:43:06 GMT
last-modified: Thu, 08 Jan 1970 00:00:00 GMT
etag: 533fc68f26e5a6fd0c61bcf4892bcb7e
accept-ranges: bytes
access-control-allow-origin: *
timing-allow-origin: *
ohc-global-saved-time: Sun, 01 Jan 2023 02:43:06 GMT
ohc-cache-hit: hrb4ct72 [1], qdix72 [4]
ohc-file-size: 27356
x-cache-status: MISS
X-Firefox-Spdy: h2
img0.baidu.com/it/u=3423795264,1977596823&fm=253&app=120&f=JPEG?w=1422&h=800
42.101.56.35200 OK 149 kB URL HTTP/1.1 img0.baidu.com/it/u=3423795264,1977596823&fm=253&app=120&f=JPEG?w=1422&h=800
IP 42.101.56.35:0
ASN #137698 HaerbingHeilongjiang Province, P.R.China.
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 1422x800, components 3\012- data
Size 149 kB (148791 bytes)
Hash aee0a894e7380fcf4e6baadeede03a1a
35e3c2a519b5079f1d208b37e7b384010e925d14
f053c8a07266c2fb79b08771525ca161dacc1902018eca952a0ece509325879d
GET /it/u=3423795264,1977596823&fm=253&app=120&f=JPEG?w=1422&h=800 HTTP/1.1
Host: img0.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://12688.url.tudown.com/
Connection: keep-alive
HTTP/1.1 200 OK
Server: JSP3/2.0.14
Date: Mon, 23 Jan 2023 09:12:14 GMT
Content-Type: image/jpeg
Content-Length: 148791
Connection: keep-alive
Expires: Tue, 21 Feb 2023 06:15:36 GMT
Last-Modified: Wed, 07 Jan 1970 00:00:00 GMT
ETag: aee0a894e7380fcf4e6baadeede03a1a
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Ohc-Global-Saved-Time: Sun, 22 Jan 2023 06:15:36 GMT
Ohc-Cache-HIT: hrb4ct50 [2], qdix118 [4]
Ohc-File-Size: 148791
X-Cache-Status: MISS
img0.baidu.com/it/u=586049009,1668046205&fm=253&fmt=auto&app=138&f=JPEG?w=500&h=500
42.101.56.35200 OK 12 kB URL HTTP/2 img0.baidu.com/it/u=586049009,1668046205&fm=253&fmt=auto&app=138&f=JPEG?w=500&h=500
IP 42.101.56.35:0
ASN #137698 HaerbingHeilongjiang Province, P.R.China.
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 500x500, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 8fe9874cc2add9653e1aeea68a1d097d
6eb10b646f1d12529c03a9b42fae85add2bc855a
8a38057912004c7b8a2d09dae92d261c867b241db93602ef513ae7a9c5fe6e64
GET /it/u=586049009,1668046205&fm=253&fmt=auto&app=138&f=JPEG?w=500&h=500 HTTP/1.1
Host: img0.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://12688.url.tudown.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: JSP3/2.0.14
date: Mon, 23 Jan 2023 09:12:14 GMT
content-type: image/webp
content-length: 12484
expires: Wed, 25 Jan 2023 01:35:03 GMT
last-modified: Mon, 05 Jan 1970 00:00:00 GMT
etag: 8fe9874cc2add9653e1aeea68a1d097d
accept-ranges: bytes
access-control-allow-origin: *
timing-allow-origin: *
ohc-global-saved-time: Mon, 26 Dec 2022 01:35:03 GMT
ohc-cache-hit: hrb4ct76 [1], xiangyix205 [2]
ohc-file-size: 12484
x-cache-status: MISS
X-Firefox-Spdy: h2
12688.url.tudown.com/uploads/images/617425.jpg
154.218.151.71301 Moved Permanently 0 B URL HTTP/1.1 12688.url.tudown.com/uploads/images/617425.jpg
IP 154.218.151.71:0
ASN #137951 Clayer Limited
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /uploads/images/617425.jpg HTTP/1.1
Host: 12688.url.tudown.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://12688.url.tudown.com/down/dpp%E8%BD%AF%E4%BB%B6@68_30634.exe
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Mon, 23 Jan 2023 09:12:14 GMT
Content-Type: image/jpg; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Location: https://img0.baidu.com/it/u=2395338404,3276982375&fm=253&fmt=auto&app=120&f=JPEG?w=1180&h=800
12688.url.tudown.com/uploads/images/510222.jpg
154.218.151.71301 Moved Permanently 0 B URL HTTP/1.1 12688.url.tudown.com/uploads/images/510222.jpg
IP 154.218.151.71:0
ASN #137951 Clayer Limited
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /uploads/images/510222.jpg HTTP/1.1
Host: 12688.url.tudown.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://12688.url.tudown.com/down/dpp%E8%BD%AF%E4%BB%B6@68_30634.exe
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Mon, 23 Jan 2023 09:12:14 GMT
Content-Type: image/jpg; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Location: https://img0.baidu.com/it/u=2438558792,4176619806&fm=253&fmt=auto&app=138&f=JPEG?w=350&h=350
12688.url.tudown.com/uploads/images/121101.jpg
154.218.151.71301 Moved Permanently 0 B URL HTTP/1.1 12688.url.tudown.com/uploads/images/121101.jpg
IP 154.218.151.71:0
ASN #137951 Clayer Limited
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /uploads/images/121101.jpg HTTP/1.1
Host: 12688.url.tudown.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://12688.url.tudown.com/down/dpp%E8%BD%AF%E4%BB%B6@68_30634.exe
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Mon, 23 Jan 2023 09:12:14 GMT
Content-Type: image/jpg; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Location: http://img1.baidu.com/it/u=533479094,3961760428&fm=253&app=120&f=JPEG?w=1280&h=800
t13.baidu.com/it/u=2992555568,2283794369&fm=224&app=112&f=JPEG?w=500&h=500
185.10.104.124200 OK 53 kB URL HTTP/1.1 t13.baidu.com/it/u=2992555568,2283794369&fm=224&app=112&f=JPEG?w=500&h=500
IP 185.10.104.124:0
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 500x500, components 3\012- data
Hash 885913a7755f8dd254a001059b8ea8d8
39763057fd9ae5256fa4c1417a20a2e255772221
89e59a1c2f6f2c117fb0de2b09f1e63d382969b2578678a317edcd210a5b260b
GET /it/u=2992555568,2283794369&fm=224&app=112&f=JPEG?w=500&h=500 HTTP/1.1
Host: t13.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://12688.url.tudown.com/
Connection: keep-alive
HTTP/1.1 200 OK
Server: JSP3/2.0.14
Date: Mon, 23 Jan 2023 09:12:14 GMT
Content-Type: image/jpeg
Content-Length: 52869
Connection: keep-alive
Expires: Mon, 06 Feb 2023 14:14:08 GMT
Last-Modified: Thu, 08 Jan 1970 00:00:00 GMT
ETag: 885913a7755f8dd254a001059b8ea8d8
Age: 716401
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Ohc-Global-Saved-Time: Sat, 07 Jan 2023 14:14:08 GMT
Ohc-Cache-HIT: fra01-sys-jomo4.fra01.baidu.com [4], zhuzuncache57 [1], xaix176 [4]
Ohc-Response-Time: 1 0 0 0 0 0
Ohc-File-Size: 52869
X-Cache-Status: HIT
Timing-Allow-Origin: *
12688.url.tudown.com/uploads/images/839129.jpg
154.218.151.71301 Moved Permanently 0 B URL HTTP/1.1 12688.url.tudown.com/uploads/images/839129.jpg
IP 154.218.151.71:0
ASN #137951 Clayer Limited
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /uploads/images/839129.jpg HTTP/1.1
Host: 12688.url.tudown.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://12688.url.tudown.com/down/dpp%E8%BD%AF%E4%BB%B6@68_30634.exe
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Mon, 23 Jan 2023 09:12:14 GMT
Content-Type: image/jpg; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Location: http://t14.baidu.com/it/u=3205459285,918962695&fm=224&app=112&f=JPEG?w=500&h=500&s=00A0FA12D6C76CEB48E4307803003071
img0.baidu.com/it/u=932576940,434585048&fm=253&app=138&f=JPEG?w=800&h=500
113.219.142.35200 OK 62 kB URL HTTP/1.1 img0.baidu.com/it/u=932576940,434585048&fm=253&app=138&f=JPEG?w=800&h=500
IP 113.219.142.35:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 800x500, components 3\012- data
Hash 7762bf3f71bf08544e633918f3cce547
6737e9ff86a86f3d1bc77e48956b86715637564e
d027748586541dbe2514481729fdc33063c97dfc1e071012da458a8ee838134b
GET /it/u=932576940,434585048&fm=253&app=138&f=JPEG?w=800&h=500 HTTP/1.1
Host: img0.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://12688.url.tudown.com/
Connection: keep-alive
HTTP/1.1 200 OK
Server: JSP3/2.0.14
Date: Mon, 23 Jan 2023 09:12:14 GMT
Content-Type: image/jpeg
Content-Length: 62510
Connection: keep-alive
Expires: Mon, 06 Feb 2023 09:35:35 GMT
Last-Modified: Fri, 09 Jan 1970 00:00:00 GMT
ETag: 7762bf3f71bf08544e633918f3cce547
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Ohc-Global-Saved-Time: Sat, 07 Jan 2023 09:35:35 GMT
Ohc-Cache-HIT: chenzct76 [1], suzix234 [4]
Ohc-File-Size: 62510
X-Cache-Status: MISS
12688.url.tudown.com/uploads/images/840343.jpg
154.218.151.71301 Moved Permanently 0 B URL HTTP/1.1 12688.url.tudown.com/uploads/images/840343.jpg
IP 154.218.151.71:0
ASN #137951 Clayer Limited
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /uploads/images/840343.jpg HTTP/1.1
Host: 12688.url.tudown.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://12688.url.tudown.com/down/dpp%E8%BD%AF%E4%BB%B6@68_30634.exe
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Mon, 23 Jan 2023 09:12:14 GMT
Content-Type: image/jpg; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Location: https://img0.baidu.com/it/u=2662145951,780736403&fm=253&fmt=auto&app=138&f=JPEG?w=800&h=500
t14.baidu.com/it/u=3205459285,918962695&fm=224&app=112&f=JPEG?w=500&h=500&s=00A0FA12D6C76CEB48E4307803003071
185.10.104.124200 OK 32 kB URL HTTP/1.1 t14.baidu.com/it/u=3205459285,918962695&fm=224&app=112&f=JPEG?w=500&h=500&s=00A0FA12D6C76CEB48E4307803003071
IP 185.10.104.124:0
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 500x500, components 3\012- data
Hash 63742751afcfbce6d52b113f8f029249
f3101cdc0e3bcf06bc804bace723c079fd9afd9a
958b389b37918395db6c2de60d49e9fabb35bea405f1022be2cd2c9e8e668eb5
GET /it/u=3205459285,918962695&fm=224&app=112&f=JPEG?w=500&h=500&s=00A0FA12D6C76CEB48E4307803003071 HTTP/1.1
Host: t14.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://12688.url.tudown.com/
Connection: keep-alive
HTTP/1.1 200 OK
Server: JSP3/2.0.14
Date: Mon, 23 Jan 2023 09:12:14 GMT
Content-Type: image/jpeg
Content-Length: 32354
Connection: keep-alive
Expires: Tue, 14 Feb 2023 08:09:36 GMT
Last-Modified: Sat, 10 Jan 1970 00:00:00 GMT
ETag: 63742751afcfbce6d52b113f8f029249
Age: 633372
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Ohc-Global-Saved-Time: Sun, 15 Jan 2023 08:09:36 GMT
Ohc-Cache-HIT: fra01-sys-jomo0.fra01.baidu.com [4], zhuzuncache64 [1], xaix208 [4]
Ohc-Response-Time: 1 0 0 0 0 0
Ohc-File-Size: 32354
X-Cache-Status: HIT
Timing-Allow-Origin: *
12688.url.tudown.com/uploads/images/261127.jpg
154.218.151.71301 Moved Permanently 0 B URL HTTP/1.1 12688.url.tudown.com/uploads/images/261127.jpg
IP 154.218.151.71:0
ASN #137951 Clayer Limited
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /uploads/images/261127.jpg HTTP/1.1
Host: 12688.url.tudown.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://12688.url.tudown.com/down/dpp%E8%BD%AF%E4%BB%B6@68_30634.exe
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Mon, 23 Jan 2023 09:12:14 GMT
Content-Type: image/jpg; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Location: https://img2.baidu.com/it/u=1754256136,1046376279&fm=253&fmt=auto&app=138&f=JPEG?w=224&h=224
img0.baidu.com/it/u=828399047,2921453799&fm=253&fmt=auto&app=138&f=PNG?w=500&h=800
42.101.56.35200 OK 117 kB URL HTTP/2 img0.baidu.com/it/u=828399047,2921453799&fm=253&fmt=auto&app=138&f=PNG?w=500&h=800
IP 42.101.56.35:0
ASN #137698 HaerbingHeilongjiang Province, P.R.China.
File type RIFF (little-endian) data, Web/P image\012- data
Size 117 kB (117290 bytes)
Hash a7e384f8250b763c9c7e26a4eff5dfca
f93ea6c676bbf9bdd08786e480e95f7296b2b127
040c7186f9922a1a7c426355b02a5c3268dc6b6b5b688a4bc8de6ce8f14176b2
GET /it/u=828399047,2921453799&fm=253&fmt=auto&app=138&f=PNG?w=500&h=800 HTTP/1.1
Host: img0.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://12688.url.tudown.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: JSP3/2.0.14
date: Mon, 23 Jan 2023 09:12:14 GMT
content-type: image/webp
content-length: 117290
expires: Fri, 17 Feb 2023 18:39:38 GMT
last-modified: Sat, 10 Jan 1970 00:00:00 GMT
etag: a7e384f8250b763c9c7e26a4eff5dfca
accept-ranges: bytes
access-control-allow-origin: *
timing-allow-origin: *
ohc-global-saved-time: Wed, 18 Jan 2023 18:39:38 GMT
ohc-cache-hit: hrb4ct81 [1], xaix192 [2]
ohc-file-size: 117290
x-cache-status: MISS
X-Firefox-Spdy: h2
img2.baidu.com/it/u=3165194642,2183093100&fm=253&fmt=auto&app=138&f=JPEG?w=300&h=300
42.101.56.35200 OK 13 kB URL HTTP/2 img2.baidu.com/it/u=3165194642,2183093100&fm=253&fmt=auto&app=138&f=JPEG?w=300&h=300
IP 42.101.56.35:0
ASN #137698 HaerbingHeilongjiang Province, P.R.China.
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 300x300, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 6a4286e896ac7df96a9af222d777f086
21a707ad4da00ee8f44b0a6f63bacb7d86904ff3
2ba233bae98fbe980c52e0401ed62f5fc231b8832e5335cd8d747a793e8306a7
GET /it/u=3165194642,2183093100&fm=253&fmt=auto&app=138&f=JPEG?w=300&h=300 HTTP/1.1
Host: img2.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://12688.url.tudown.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: JSP3/2.0.14
date: Mon, 23 Jan 2023 09:12:14 GMT
content-type: image/webp
content-length: 13206
expires: Tue, 31 Jan 2023 22:18:46 GMT
last-modified: Tue, 06 Jan 1970 00:00:00 GMT
etag: 6a4286e896ac7df96a9af222d777f086
accept-ranges: bytes
access-control-allow-origin: *
timing-allow-origin: *
ohc-global-saved-time: Sun, 01 Jan 2023 22:18:46 GMT
ohc-cache-hit: hrb4ct79 [1], wzix79 [4]
ohc-file-size: 13206
x-cache-status: MISS
X-Firefox-Spdy: h2
hm.baidu.com/hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=939&et=0&ja=0&ln=en-us&lo=0&rnd=214066773&si=dd9836db2e433f487a0aa434b7b3deb7&v=1.3.0&lv=1&sn=45883&r=0&ww=1280&u=http%3A%2F%2F12688.url.tudown.com%2Fdown%2Fdpp%25E8%25BD%25AF%25E4%25BB%25B6%4068_30634.exe&tt=ag%E4%B9%9D%E6%B8%B8(%E4%B8%AD%E5%9B%BD)%E5%AE%98%E6%96%B9%E7%BD%91%E7%AB%99%2F%E6%89%8B%E6%9C%BA%E6%9C%80%E6%96%B0%E7%89%88%E4%B8%8B%E8%BD%BD
103.235.46.191200 OK 43 B URL HTTP/1.1 hm.baidu.com/hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=939&et=0&ja=0&ln=en-us&lo=0&rnd=214066773&si=dd9836db2e433f487a0aa434b7b3deb7&v=1.3.0&lv=1&sn=45883&r=0&ww=1280&u=http%3A%2F%2F12688.url.tudown.com%2Fdown%2Fdpp%25E8%25BD%25AF%25E4%25BB%25B6%4068_30634.exe&tt=ag%E4%B9%9D%E6%B8%B8(%E4%B8%AD%E5%9B%BD)%E5%AE%98%E6%96%B9%E7%BD%91%E7%AB%99%2F%E6%89%8B%E6%9C%BA%E6%9C%80%E6%96%B0%E7%89%88%E4%B8%8B%E8%BD%BD
IP 103.235.46.191:0
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=939&et=0&ja=0&ln=en-us&lo=0&rnd=214066773&si=dd9836db2e433f487a0aa434b7b3deb7&v=1.3.0&lv=1&sn=45883&r=0&ww=1280&u=http%3A%2F%2F12688.url.tudown.com%2Fdown%2Fdpp%25E8%25BD%25AF%25E4%25BB%25B6%4068_30634.exe&tt=ag%E4%B9%9D%E6%B8%B8(%E4%B8%AD%E5%9B%BD)%E5%AE%98%E6%96%B9%E7%BD%91%E7%AB%99%2F%E6%89%8B%E6%9C%BA%E6%9C%80%E6%96%B0%E7%89%88%E4%B8%8B%E8%BD%BD HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://12688.url.tudown.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: private, max-age=0, no-cache
Content-Length: 43
Content-Type: image/gif
Date: Mon, 23 Jan 2023 09:12:14 GMT
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Pragma: no-cache
Server: apache
Set-Cookie: HMACCOUNT=5CC5BAE2D71E5F4A; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
X-Content-Type-Options: nosniff
12688.url.tudown.com/uploads/images/821495.jpg
154.218.151.71301 Moved Permanently 0 B URL HTTP/1.1 12688.url.tudown.com/uploads/images/821495.jpg
IP 154.218.151.71:0
ASN #137951 Clayer Limited
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /uploads/images/821495.jpg HTTP/1.1
Host: 12688.url.tudown.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://12688.url.tudown.com/down/dpp%E8%BD%AF%E4%BB%B6@68_30634.exe
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Mon, 23 Jan 2023 09:12:14 GMT
Content-Type: image/jpg; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Location: http://img1.baidu.com/it/u=317228569,3094631423&fm=253&app=120&f=JPEG?w=1280&h=800
img2.baidu.com/it/u=1846765833,2220693254&fm=253&fmt=auto&app=120&f=JPEG?w=800&h=1422
42.101.56.35200 OK 108 kB URL HTTP/2 img2.baidu.com/it/u=1846765833,2220693254&fm=253&fmt=auto&app=120&f=JPEG?w=800&h=1422
IP 42.101.56.35:0
ASN #137698 HaerbingHeilongjiang Province, P.R.China.
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 800x1422, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size 108 kB (107642 bytes)
Hash bda56f6c92023ded65278d28ebc06397
250a59dab1aa721fabcbb8a3a56f6fca688d7876
9b59889b8281da80c10216ea3122123f0783275950adbf8a94e08ff7c81826bc
GET /it/u=1846765833,2220693254&fm=253&fmt=auto&app=120&f=JPEG?w=800&h=1422 HTTP/1.1
Host: img2.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://12688.url.tudown.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: JSP3/2.0.14
date: Mon, 23 Jan 2023 09:12:14 GMT
content-type: image/webp
content-length: 107642
expires: Wed, 08 Feb 2023 12:12:03 GMT
last-modified: Thu, 08 Jan 1970 00:00:00 GMT
etag: bda56f6c92023ded65278d28ebc06397
age: 639248
accept-ranges: bytes
access-control-allow-origin: *
timing-allow-origin: *
ohc-global-saved-time: Mon, 09 Jan 2023 12:12:03 GMT
ohc-cache-hit: hrb4ct83 [4], xiangyix98 [4]
ohc-file-size: 107642
x-cache-status: HIT
X-Firefox-Spdy: h2
12688.url.tudown.com/uploads/images/826525.jpg
154.218.151.71301 Moved Permanently 0 B URL HTTP/1.1 12688.url.tudown.com/uploads/images/826525.jpg
IP 154.218.151.71:0
ASN #137951 Clayer Limited
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /uploads/images/826525.jpg HTTP/1.1
Host: 12688.url.tudown.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://12688.url.tudown.com/down/dpp%E8%BD%AF%E4%BB%B6@68_30634.exe
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Mon, 23 Jan 2023 09:12:15 GMT
Content-Type: image/jpg; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Location: https://img2.baidu.com/it/u=2781658542,4276537418&fm=253&fmt=auto&app=138&f=JPEG?w=500&h=702
12688.url.tudown.com/uploads/images/264984.jpg
154.218.151.71301 Moved Permanently 0 B URL HTTP/1.1 12688.url.tudown.com/uploads/images/264984.jpg
IP 154.218.151.71:0
ASN #137951 Clayer Limited
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /uploads/images/264984.jpg HTTP/1.1
Host: 12688.url.tudown.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://12688.url.tudown.com/down/dpp%E8%BD%AF%E4%BB%B6@68_30634.exe
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Mon, 23 Jan 2023 09:12:15 GMT
Content-Type: image/jpg; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Location: http://img1.baidu.com/it/u=2486809130,354022677&fm=253&app=120&f=JPEG?w=1280&h=800
12688.url.tudown.com/uploads/images/357970.jpg
154.218.151.71301 Moved Permanently 0 B URL HTTP/1.1 12688.url.tudown.com/uploads/images/357970.jpg
IP 154.218.151.71:0
ASN #137951 Clayer Limited
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /uploads/images/357970.jpg HTTP/1.1
Host: 12688.url.tudown.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://12688.url.tudown.com/down/dpp%E8%BD%AF%E4%BB%B6@68_30634.exe
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Mon, 23 Jan 2023 09:12:15 GMT
Content-Type: image/jpg; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Location: http://t15.baidu.com/it/u=954685909,1799378445&fm=224&app=112&f=JPEG?w=500&h=500
img1.baidu.com/it/u=43230664,2102879730&fm=253&app=120&f=JPEG?w=1280&h=800
111.170.27.1200 OK 133 kB URL HTTP/1.1 img1.baidu.com/it/u=43230664,2102879730&fm=253&app=120&f=JPEG?w=1280&h=800
IP 111.170.27.1:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 1280x800, components 3\012- data
Size 133 kB (133146 bytes)
Hash cbba44971c75a5afb6529f4dc20b819a
a830d7e4a7ec1da2ebce267fab08a71fc9551c72
b72ddac026c239b0431db1c56fea26d2a004d389d23cbb58798c8ad5ff508066
GET /it/u=43230664,2102879730&fm=253&app=120&f=JPEG?w=1280&h=800 HTTP/1.1
Host: img1.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://12688.url.tudown.com/
Connection: keep-alive
HTTP/1.1 200 OK
Server: JSP3/2.0.14
Date: Mon, 23 Jan 2023 09:12:14 GMT
Content-Type: image/jpeg
Content-Length: 133146
Connection: keep-alive
Expires: Tue, 21 Feb 2023 06:04:22 GMT
Last-Modified: Tue, 06 Jan 1970 00:00:00 GMT
ETag: cbba44971c75a5afb6529f4dc20b819a
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Ohc-Global-Saved-Time: Sun, 22 Jan 2023 06:04:22 GMT
Ohc-Cache-HIT: xiangfct63 [2], wzix63 [2]
Ohc-File-Size: 133146
X-Cache-Status: MISS
12688.url.tudown.com/uploads/images/89010.jpg
154.218.151.71301 Moved Permanently 0 B URL HTTP/1.1 12688.url.tudown.com/uploads/images/89010.jpg
IP 154.218.151.71:0
ASN #137951 Clayer Limited
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /uploads/images/89010.jpg HTTP/1.1
Host: 12688.url.tudown.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://12688.url.tudown.com/down/dpp%E8%BD%AF%E4%BB%B6@68_30634.exe
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Mon, 23 Jan 2023 09:12:15 GMT
Content-Type: image/jpg; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Location: https://img0.baidu.com/it/u=3258500394,2968879137&fm=253&fmt=auto&app=138&f=JPEG?w=90&h=150
12688.url.tudown.com/uploads/images/247814.jpg
154.218.151.71301 Moved Permanently 0 B URL HTTP/1.1 12688.url.tudown.com/uploads/images/247814.jpg
IP 154.218.151.71:0
ASN #137951 Clayer Limited
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /uploads/images/247814.jpg HTTP/1.1
Host: 12688.url.tudown.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://12688.url.tudown.com/down/dpp%E8%BD%AF%E4%BB%B6@68_30634.exe
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Mon, 23 Jan 2023 09:12:15 GMT
Content-Type: image/jpg; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Location: https://img2.baidu.com/it/u=2672696717,2348314105&fm=253&fmt=auto&app=138&f=JPEG?w=500&h=500
img0.baidu.com/it/u=2970134638,2658398603&fm=253&app=120&f=JPEG?w=1422&h=800
113.219.142.35200 OK 145 kB URL HTTP/1.1 img0.baidu.com/it/u=2970134638,2658398603&fm=253&app=120&f=JPEG?w=1422&h=800
IP 113.219.142.35:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 1422x800, components 3\012- data
Size 145 kB (144982 bytes)
Hash d1263292975c2efe67b899a91bd7721f
2f38b95a4c2cfc3eca1ec843e78d49e8626a13d0
96156ef718f5abd33c78f0a2a5cd77b2d54c14d984b4759c339cb44e41d13d26
GET /it/u=2970134638,2658398603&fm=253&app=120&f=JPEG?w=1422&h=800 HTTP/1.1
Host: img0.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://12688.url.tudown.com/
Connection: keep-alive
HTTP/1.1 200 OK
Server: JSP3/2.0.14
Date: Mon, 23 Jan 2023 09:12:14 GMT
Content-Type: image/jpeg
Content-Length: 144982
Connection: keep-alive
Expires: Sat, 04 Feb 2023 14:02:35 GMT
Last-Modified: Tue, 06 Jan 1970 00:00:00 GMT
ETag: d1263292975c2efe67b899a91bd7721f
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Ohc-Global-Saved-Time: Thu, 05 Jan 2023 14:02:35 GMT
Ohc-Cache-HIT: chenzct73 [2], czix180 [4]
Ohc-File-Size: 144982
X-Cache-Status: MISS
t15.baidu.com/it/u=954685909,1799378445&fm=224&app=112&f=JPEG?w=500&h=500
185.10.104.124200 OK 59 kB URL HTTP/1.1 t15.baidu.com/it/u=954685909,1799378445&fm=224&app=112&f=JPEG?w=500&h=500
IP 185.10.104.124:0
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 500x500, components 3\012- data
Hash 3d2e48241773c77a8847718674cc3fab
0f22336ca9b52cb018ec76b6710235b3adfefda4
3755a534825540f1a4346105451197cb8f8add415a3caae67bafaa43a21e85dd
GET /it/u=954685909,1799378445&fm=224&app=112&f=JPEG?w=500&h=500 HTTP/1.1
Host: t15.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://12688.url.tudown.com/
Connection: keep-alive
HTTP/1.1 200 OK
Server: JSP3/2.0.14
Date: Mon, 23 Jan 2023 09:12:15 GMT
Content-Type: image/jpeg
Content-Length: 58862
Connection: keep-alive
Expires: Mon, 06 Feb 2023 01:54:08 GMT
Last-Modified: Fri, 09 Jan 1970 00:00:00 GMT
ETag: 3d2e48241773c77a8847718674cc3fab
Age: 992002
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Ohc-Global-Saved-Time: Sat, 07 Jan 2023 01:54:08 GMT
Ohc-Cache-HIT: fra01-sys-jomo2.fra01.baidu.com [4], zhuzuncache64 [2], suzix70 [4]
Ohc-Response-Time: 1 0 0 0 0 0
Ohc-File-Size: 58862
X-Cache-Status: HIT
Timing-Allow-Origin: *
img1.baidu.com/it/u=533479094,3961760428&fm=253&app=120&f=JPEG?w=1280&h=800
111.170.27.1200 OK 74 kB URL HTTP/1.1 img1.baidu.com/it/u=533479094,3961760428&fm=253&app=120&f=JPEG?w=1280&h=800
IP 111.170.27.1:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 1280x800, components 3\012- data
Hash 9c4c612c40efbb335c3f46f27fdaffa8
63c141c68b1fb217075c847ac6d730e0da1c3955
02323a7feb6fc39759e678f5e53b394f3a6e54d68533da430705968f52002814
GET /it/u=533479094,3961760428&fm=253&app=120&f=JPEG?w=1280&h=800 HTTP/1.1
Host: img1.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://12688.url.tudown.com/
Connection: keep-alive
HTTP/1.1 200 OK
Server: JSP3/2.0.14
Date: Mon, 23 Jan 2023 09:12:15 GMT
Content-Type: image/jpeg
Content-Length: 74237
Connection: keep-alive
Expires: Tue, 21 Feb 2023 04:46:53 GMT
Last-Modified: Thu, 08 Jan 1970 00:00:00 GMT
ETag: 9c4c612c40efbb335c3f46f27fdaffa8
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Ohc-Global-Saved-Time: Sun, 22 Jan 2023 04:46:53 GMT
Ohc-Cache-HIT: xiangfct85 [2], bdix85 [2]
Ohc-File-Size: 74237
X-Cache-Status: MISS
img0.baidu.com/it/u=2438558792,4176619806&fm=253&fmt=auto&app=138&f=JPEG?w=350&h=350
42.101.56.35200 OK 13 kB URL HTTP/2 img0.baidu.com/it/u=2438558792,4176619806&fm=253&fmt=auto&app=138&f=JPEG?w=350&h=350
IP 42.101.56.35:0
ASN #137698 HaerbingHeilongjiang Province, P.R.China.
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 350x350, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash a9bfb78796253df9fe7bc2a6f685d877
b07aa79238a7b4295a0a8ffc5995a1beb67cdbfd
d39602dc1881b3af6b1712306976b06b6cbddc0a8e4524015671fa1baff6b85e
GET /it/u=2438558792,4176619806&fm=253&fmt=auto&app=138&f=JPEG?w=350&h=350 HTTP/1.1
Host: img0.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://12688.url.tudown.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: JSP3/2.0.14
date: Mon, 23 Jan 2023 09:12:15 GMT
content-type: image/webp
content-length: 12796
expires: Sun, 19 Feb 2023 18:55:28 GMT
last-modified: Thu, 08 Jan 1970 00:00:00 GMT
etag: a9bfb78796253df9fe7bc2a6f685d877
accept-ranges: bytes
access-control-allow-origin: *
timing-allow-origin: *
ohc-global-saved-time: Fri, 20 Jan 2023 18:55:28 GMT
ohc-cache-hit: hrb4ct57 [1], czix198 [4]
ohc-file-size: 12796
x-cache-status: MISS
X-Firefox-Spdy: h2
12688.url.tudown.com/uploads/images/795006.jpg
154.218.151.71301 Moved Permanently 0 B URL HTTP/1.1 12688.url.tudown.com/uploads/images/795006.jpg
IP 154.218.151.71:0
ASN #137951 Clayer Limited
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /uploads/images/795006.jpg HTTP/1.1
Host: 12688.url.tudown.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://12688.url.tudown.com/down/dpp%E8%BD%AF%E4%BB%B6@68_30634.exe
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Mon, 23 Jan 2023 09:12:15 GMT
Content-Type: image/jpg; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Location: https://img2.baidu.com/it/u=2911521491,4002851214&fm=253&fmt=auto&app=138&f=JPEG?w=500&h=707
img0.baidu.com/it/u=2395338404,3276982375&fm=253&fmt=auto&app=120&f=JPEG?w=1180&h=800
42.101.56.35200 OK 67 kB URL HTTP/2 img0.baidu.com/it/u=2395338404,3276982375&fm=253&fmt=auto&app=120&f=JPEG?w=1180&h=800
IP 42.101.56.35:0
ASN #137698 HaerbingHeilongjiang Province, P.R.China.
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 1180x800, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash f0ced8d0a1a5040a6548a8ff8cd6201f
9f1aaf8c35059ec54a1384049aa83a918853049e
a7fb8ad54bab35676c662440453f5fb4fd6b45b673887a5a71849481417f550d
GET /it/u=2395338404,3276982375&fm=253&fmt=auto&app=120&f=JPEG?w=1180&h=800 HTTP/1.1
Host: img0.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://12688.url.tudown.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: JSP3/2.0.14
date: Mon, 23 Jan 2023 09:12:15 GMT
content-type: image/webp
content-length: 67240
expires: Mon, 20 Feb 2023 09:38:55 GMT
last-modified: Thu, 08 Jan 1970 00:00:00 GMT
etag: f0ced8d0a1a5040a6548a8ff8cd6201f
accept-ranges: bytes
access-control-allow-origin: *
timing-allow-origin: *
ohc-global-saved-time: Sat, 21 Jan 2023 09:38:55 GMT
ohc-cache-hit: hrb4ct78 [1], xaix213 [2]
ohc-file-size: 67240
x-cache-status: MISS
X-Firefox-Spdy: h2
12688.url.tudown.com/uploads/images/820960.jpg
154.218.151.71301 Moved Permanently 0 B URL HTTP/1.1 12688.url.tudown.com/uploads/images/820960.jpg
IP 154.218.151.71:0
ASN #137951 Clayer Limited
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /uploads/images/820960.jpg HTTP/1.1
Host: 12688.url.tudown.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://12688.url.tudown.com/down/dpp%E8%BD%AF%E4%BB%B6@68_30634.exe
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Mon, 23 Jan 2023 09:12:15 GMT
Content-Type: image/jpg; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Location: https://img2.baidu.com/it/u=2886130545,2499560266&fm=253&fmt=auto&app=138&f=JPEG?w=280&h=180
img2.baidu.com/it/u=1754256136,1046376279&fm=253&fmt=auto&app=138&f=JPEG?w=224&h=224
42.101.56.35200 OK 4.5 kB URL HTTP/2 img2.baidu.com/it/u=1754256136,1046376279&fm=253&fmt=auto&app=138&f=JPEG?w=224&h=224
IP 42.101.56.35:0
ASN #137698 HaerbingHeilongjiang Province, P.R.China.
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 224x224, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash ffee779a64d7b60bba4f12a3cb782100
cc88bd3ff961f59d61d2f89211ab64f9c455e250
910263421737a3a34505f7c22f0c3a939975ee3f4c7dffca10a572578d9cb117
GET /it/u=1754256136,1046376279&fm=253&fmt=auto&app=138&f=JPEG?w=224&h=224 HTTP/1.1
Host: img2.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://12688.url.tudown.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: JSP3/2.0.14
date: Mon, 23 Jan 2023 09:12:15 GMT
content-type: image/webp
content-length: 4502
expires: Tue, 21 Feb 2023 02:20:11 GMT
last-modified: Fri, 09 Jan 1970 00:00:00 GMT
etag: ffee779a64d7b60bba4f12a3cb782100
age: 22916
accept-ranges: bytes
access-control-allow-origin: *
timing-allow-origin: *
ohc-global-saved-time: Sun, 22 Jan 2023 02:20:11 GMT
ohc-cache-hit: hrb4ct71 [4], suzix71 [2]
ohc-file-size: 4502
x-cache-status: HIT
X-Firefox-Spdy: h2
12688.url.tudown.com/uploads/images/360695.jpg
154.218.151.71301 Moved Permanently 0 B URL HTTP/1.1 12688.url.tudown.com/uploads/images/360695.jpg
IP 154.218.151.71:0
ASN #137951 Clayer Limited
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /uploads/images/360695.jpg HTTP/1.1
Host: 12688.url.tudown.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://12688.url.tudown.com/down/dpp%E8%BD%AF%E4%BB%B6@68_30634.exe
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Mon, 23 Jan 2023 09:12:15 GMT
Content-Type: image/jpg; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Location: http://img1.baidu.com/it/u=3740647695,2160788051&fm=253&app=120&f=JPEG?w=1280&h=800
12688.url.tudown.com/uploads/images/471333.jpg
154.218.151.71301 Moved Permanently 0 B URL HTTP/1.1 12688.url.tudown.com/uploads/images/471333.jpg
IP 154.218.151.71:0
ASN #137951 Clayer Limited
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /uploads/images/471333.jpg HTTP/1.1
Host: 12688.url.tudown.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://12688.url.tudown.com/down/dpp%E8%BD%AF%E4%BB%B6@68_30634.exe
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Mon, 23 Jan 2023 09:12:15 GMT
Content-Type: image/jpg; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Location: http://t15.baidu.com/it/u=12062494,947302549&fm=224&app=112&f=JPEG?w=500&h=500
img0.baidu.com/it/u=2662145951,780736403&fm=253&fmt=auto&app=138&f=JPEG?w=800&h=500
42.101.56.35200 OK 37 kB URL HTTP/2 img0.baidu.com/it/u=2662145951,780736403&fm=253&fmt=auto&app=138&f=JPEG?w=800&h=500
IP 42.101.56.35:0
ASN #137698 HaerbingHeilongjiang Province, P.R.China.
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 800x500, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 091a1564ffe3457a599f526bd4bbf113
2f276a2d24378df6ad7fe86210782d4520f0c995
7b123c201e06421eb961b1575d7231d59bcca35ff62cf801d7624c1c0e028628
GET /it/u=2662145951,780736403&fm=253&fmt=auto&app=138&f=JPEG?w=800&h=500 HTTP/1.1
Host: img0.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://12688.url.tudown.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: JSP3/2.0.14
date: Mon, 23 Jan 2023 09:12:15 GMT
content-type: image/webp
content-length: 36986
expires: Tue, 21 Feb 2023 02:58:33 GMT
last-modified: Sat, 10 Jan 1970 00:00:00 GMT
etag: 091a1564ffe3457a599f526bd4bbf113
accept-ranges: bytes
access-control-allow-origin: *
timing-allow-origin: *
ohc-global-saved-time: Sun, 22 Jan 2023 02:58:33 GMT
ohc-cache-hit: hrb4ct68 [1], wzix68 [4]
ohc-file-size: 36986
x-cache-status: MISS
X-Firefox-Spdy: h2
12688.url.tudown.com/uploads/images/630497.jpg
154.218.151.71301 Moved Permanently 0 B URL HTTP/1.1 12688.url.tudown.com/uploads/images/630497.jpg
IP 154.218.151.71:0
ASN #137951 Clayer Limited
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /uploads/images/630497.jpg HTTP/1.1
Host: 12688.url.tudown.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://12688.url.tudown.com/down/dpp%E8%BD%AF%E4%BB%B6@68_30634.exe
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Mon, 23 Jan 2023 09:12:15 GMT
Content-Type: image/jpg; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Location: http://t13.baidu.com/it/u=2350081765,1873408083&fm=224&app=112&f=JPEG?w=500&h=375
t15.baidu.com/it/u=12062494,947302549&fm=224&app=112&f=JPEG?w=500&h=500
185.10.104.124200 OK 54 kB URL HTTP/1.1 t15.baidu.com/it/u=12062494,947302549&fm=224&app=112&f=JPEG?w=500&h=500
IP 185.10.104.124:0
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 500x500, components 3\012- data
Hash 4a8c7490198503b7631759b00e7e4d4e
767a8265ea2a6845c6e562ef16011652dca9627f
ae4b83062c6dd3d43538ac97292d76fe172b398eaaa3c1dabc0e3a98880aac8c
GET /it/u=12062494,947302549&fm=224&app=112&f=JPEG?w=500&h=500 HTTP/1.1
Host: t15.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://12688.url.tudown.com/
Connection: keep-alive
HTTP/1.1 200 OK
Server: JSP3/2.0.14
Date: Mon, 23 Jan 2023 09:12:15 GMT
Content-Type: image/jpeg
Content-Length: 54259
Connection: keep-alive
Expires: Fri, 17 Feb 2023 10:49:41 GMT
Last-Modified: Fri, 09 Jan 1970 00:00:00 GMT
ETag: 4a8c7490198503b7631759b00e7e4d4e
Age: 370521
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Ohc-Global-Saved-Time: Wed, 18 Jan 2023 10:49:41 GMT
Ohc-Cache-HIT: fra01-sys-jomo2.fra01.baidu.com [4], zhuzuncache55 [1], xiangyix119 [4]
Ohc-Response-Time: 1 0 0 0 0 0
Ohc-File-Size: 54259
X-Cache-Status: HIT
Timing-Allow-Origin: *
img1.baidu.com/it/u=317228569,3094631423&fm=253&app=120&f=JPEG?w=1280&h=800
111.170.27.1200 OK 65 kB URL HTTP/1.1 img1.baidu.com/it/u=317228569,3094631423&fm=253&app=120&f=JPEG?w=1280&h=800
IP 111.170.27.1:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 1280x800, components 3\012- data
Hash b474057c0f4cddd9aadd7bc591d56ba3
2fdfa426f35bba96ef52d610a5cb7f08a4029aae
f9e019057163b82b253bec1eb86751fac1069dfd0ede17b6b1443740a3f64361
GET /it/u=317228569,3094631423&fm=253&app=120&f=JPEG?w=1280&h=800 HTTP/1.1
Host: img1.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://12688.url.tudown.com/
Connection: keep-alive
HTTP/1.1 200 OK
Server: JSP3/2.0.14
Date: Mon, 23 Jan 2023 09:12:15 GMT
Content-Type: image/jpeg
Content-Length: 64682
Connection: keep-alive
Expires: Wed, 01 Feb 2023 11:28:51 GMT
Last-Modified: Tue, 06 Jan 1970 00:00:00 GMT
ETag: b474057c0f4cddd9aadd7bc591d56ba3
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Ohc-Global-Saved-Time: Mon, 02 Jan 2023 11:28:51 GMT
Ohc-Cache-HIT: xiangfct72 [1], csix117 [4]
Ohc-File-Size: 64682
X-Cache-Status: MISS
12688.url.tudown.com/uploads/images/458252.jpg
154.218.151.71301 Moved Permanently 0 B URL HTTP/1.1 12688.url.tudown.com/uploads/images/458252.jpg
IP 154.218.151.71:0
ASN #137951 Clayer Limited
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /uploads/images/458252.jpg HTTP/1.1
Host: 12688.url.tudown.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://12688.url.tudown.com/down/dpp%E8%BD%AF%E4%BB%B6@68_30634.exe
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Mon, 23 Jan 2023 09:12:15 GMT
Content-Type: image/jpg; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Location: https://img0.baidu.com/it/u=1340597392,2485130826&fm=253&fmt=auto&app=138&f=JPEG?w=500&h=375
img2.baidu.com/it/u=2781658542,4276537418&fm=253&fmt=auto&app=138&f=JPEG?w=500&h=702
42.101.56.35200 OK 36 kB URL HTTP/2 img2.baidu.com/it/u=2781658542,4276537418&fm=253&fmt=auto&app=138&f=JPEG?w=500&h=702
IP 42.101.56.35:0
ASN #137698 HaerbingHeilongjiang Province, P.R.China.
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 500x702, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash b9599f4b51ea446ad1945eeffa0bf291
57478c15f240c807af7368651beb65cfba5e1cf3
c8eda80c01b3baf2f659b314ac532096a964896a9037bf5a9930f331ecfba4d5
GET /it/u=2781658542,4276537418&fm=253&fmt=auto&app=138&f=JPEG?w=500&h=702 HTTP/1.1
Host: img2.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://12688.url.tudown.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: JSP3/2.0.14
date: Mon, 23 Jan 2023 09:12:15 GMT
content-type: image/webp
content-length: 36216
expires: Mon, 20 Feb 2023 13:04:38 GMT
last-modified: Sat, 10 Jan 1970 00:00:00 GMT
etag: b9599f4b51ea446ad1945eeffa0bf291
accept-ranges: bytes
access-control-allow-origin: *
timing-allow-origin: *
ohc-global-saved-time: Sat, 21 Jan 2023 13:04:38 GMT
ohc-cache-hit: hrb4ct86 [1], czix249 [2]
ohc-file-size: 36216
x-cache-status: MISS
X-Firefox-Spdy: h2
img0.baidu.com/it/u=3258500394,2968879137&fm=253&fmt=auto&app=138&f=JPEG?w=90&h=150
42.101.56.35200 OK 3.6 kB URL HTTP/2 img0.baidu.com/it/u=3258500394,2968879137&fm=253&fmt=auto&app=138&f=JPEG?w=90&h=150
IP 42.101.56.35:0
ASN #137698 HaerbingHeilongjiang Province, P.R.China.
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 90x150, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 7e82ead935b5fe96428fe1c31f47e94f
be7592ccaa3c3e4c91e3a0517c6c12d1166bd609
531c18c8e8c06b19f95095fb709b2555f5872f743511d2e674fd361a62bbe9e1
GET /it/u=3258500394,2968879137&fm=253&fmt=auto&app=138&f=JPEG?w=90&h=150 HTTP/1.1
Host: img0.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://12688.url.tudown.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: JSP3/2.0.14
date: Mon, 23 Jan 2023 09:12:15 GMT
content-type: image/webp
content-length: 3562
expires: Mon, 06 Feb 2023 14:03:59 GMT
last-modified: Mon, 05 Jan 1970 00:00:00 GMT
etag: 7e82ead935b5fe96428fe1c31f47e94f
accept-ranges: bytes
access-control-allow-origin: *
timing-allow-origin: *
ohc-global-saved-time: Sat, 07 Jan 2023 14:03:59 GMT
ohc-cache-hit: hrb4ct57 [1], czix129 [4]
ohc-file-size: 3562
x-cache-status: MISS
X-Firefox-Spdy: h2
img2.baidu.com/it/u=2672696717,2348314105&fm=253&fmt=auto&app=138&f=JPEG?w=500&h=500
42.101.56.35200 OK 31 kB URL HTTP/2 img2.baidu.com/it/u=2672696717,2348314105&fm=253&fmt=auto&app=138&f=JPEG?w=500&h=500
IP 42.101.56.35:0
ASN #137698 HaerbingHeilongjiang Province, P.R.China.
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 500x500, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 4de50be2b323e03a6bbedf9aeb8d5860
a5e42124b3b6874ec8a2d8c2ed73496484ad7002
e74432d70d9fe147926484dec557c4f1e773aca137d88ae94b11aefa3eac67bd
GET /it/u=2672696717,2348314105&fm=253&fmt=auto&app=138&f=JPEG?w=500&h=500 HTTP/1.1
Host: img2.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://12688.url.tudown.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: JSP3/2.0.14
date: Mon, 23 Jan 2023 09:12:15 GMT
content-type: image/webp
content-length: 31064
expires: Mon, 20 Feb 2023 04:49:44 GMT
last-modified: Thu, 08 Jan 1970 00:00:00 GMT
etag: 4de50be2b323e03a6bbedf9aeb8d5860
accept-ranges: bytes
access-control-allow-origin: *
timing-allow-origin: *
ohc-global-saved-time: Sat, 21 Jan 2023 04:49:44 GMT
ohc-cache-hit: hrb4ct66 [1], czix206 [4]
ohc-file-size: 31064
x-cache-status: MISS
X-Firefox-Spdy: h2
t13.baidu.com/it/u=2350081765,1873408083&fm=224&app=112&f=JPEG?w=500&h=375
185.10.104.124200 OK 30 kB URL HTTP/1.1 t13.baidu.com/it/u=2350081765,1873408083&fm=224&app=112&f=JPEG?w=500&h=375
IP 185.10.104.124:0
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 500x375, components 3\012- data
Hash 21f5062f2941ed08db7abf7c981db11f
960a6cab4f36a26d967dc570ee8910ab5d6069df
5032801de8ee333bf9e4010c858929bba8e609626df9b584ac11021e1525c89b
GET /it/u=2350081765,1873408083&fm=224&app=112&f=JPEG?w=500&h=375 HTTP/1.1
Host: t13.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://12688.url.tudown.com/
Connection: keep-alive
HTTP/1.1 200 OK
Server: JSP3/2.0.14
Date: Mon, 23 Jan 2023 09:12:15 GMT
Content-Type: image/jpeg
Content-Length: 29887
Connection: keep-alive
Expires: Tue, 07 Feb 2023 20:40:19 GMT
Last-Modified: Fri, 09 Jan 1970 00:00:00 GMT
ETag: 21f5062f2941ed08db7abf7c981db11f
Age: 998319
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Ohc-Global-Saved-Time: Sun, 08 Jan 2023 20:40:19 GMT
Ohc-Cache-HIT: fra01-sys-jomo4.fra01.baidu.com [4], zhuzuncache63 [4], czix74 [4]
Ohc-Response-Time: 1 0 0 0 0 0
Ohc-File-Size: 29887
X-Cache-Status: HIT
Timing-Allow-Origin: *
img2.baidu.com/it/u=2911521491,4002851214&fm=253&fmt=auto&app=138&f=JPEG?w=500&h=707
42.101.56.35200 OK 40 kB URL HTTP/2 img2.baidu.com/it/u=2911521491,4002851214&fm=253&fmt=auto&app=138&f=JPEG?w=500&h=707
IP 42.101.56.35:0
ASN #137698 HaerbingHeilongjiang Province, P.R.China.
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 500x707, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash cc0f2bd76bc2648e0eaaf36c91e9d3fc
bf81354d3fec632b30e6e81fa23dfb3ffef44f31
5d666850a56576d235b5bb8cd6e860316029ed68907dfd23f0a502a705b46bf1
GET /it/u=2911521491,4002851214&fm=253&fmt=auto&app=138&f=JPEG?w=500&h=707 HTTP/1.1
Host: img2.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://12688.url.tudown.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: JSP3/2.0.14
date: Mon, 23 Jan 2023 09:12:15 GMT
content-type: image/webp
content-length: 40390
expires: Thu, 09 Feb 2023 14:28:59 GMT
last-modified: Fri, 09 Jan 1970 00:00:00 GMT
etag: cc0f2bd76bc2648e0eaaf36c91e9d3fc
accept-ranges: bytes
access-control-allow-origin: *
timing-allow-origin: *
ohc-global-saved-time: Tue, 10 Jan 2023 14:28:59 GMT
ohc-cache-hit: hrb4ct72 [1], czix134 [4]
ohc-file-size: 40390
x-cache-status: MISS
X-Firefox-Spdy: h2
12688.url.tudown.com/uploads/images/120450.jpg
154.218.151.71301 Moved Permanently 0 B URL HTTP/1.1 12688.url.tudown.com/uploads/images/120450.jpg
IP 154.218.151.71:0
ASN #137951 Clayer Limited
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /uploads/images/120450.jpg HTTP/1.1
Host: 12688.url.tudown.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://12688.url.tudown.com/down/dpp%E8%BD%AF%E4%BB%B6@68_30634.exe
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Mon, 23 Jan 2023 09:12:15 GMT
Content-Type: image/jpg; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Location: http://img0.baidu.com/it/u=2469901256,3578058512&fm=253&app=120&f=JPEG?w=1280&h=800
12688.url.tudown.com/uploads/images/595704.jpg
154.218.151.71301 Moved Permanently 0 B URL HTTP/1.1 12688.url.tudown.com/uploads/images/595704.jpg
IP 154.218.151.71:0
ASN #137951 Clayer Limited
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /uploads/images/595704.jpg HTTP/1.1
Host: 12688.url.tudown.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://12688.url.tudown.com/down/dpp%E8%BD%AF%E4%BB%B6@68_30634.exe
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Mon, 23 Jan 2023 09:12:15 GMT
Content-Type: image/jpg; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Location: https://img1.baidu.com/it/u=1806814706,935794547&fm=253&fmt=auto&app=138&f=JPEG?w=354&h=500
img2.baidu.com/it/u=2886130545,2499560266&fm=253&fmt=auto&app=138&f=JPEG?w=280&h=180
42.101.56.35200 OK 8.9 kB URL HTTP/2 img2.baidu.com/it/u=2886130545,2499560266&fm=253&fmt=auto&app=138&f=JPEG?w=280&h=180
IP 42.101.56.35:0
ASN #137698 HaerbingHeilongjiang Province, P.R.China.
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 280x180, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash a9cdaa248577a780d06f725728b978c4
f3c2a7134a7465815774ba61bad89a3f64d03832
ec24c339936d8d99e12938db734084714cf00b2a100a1caeeeb4450b30101319
GET /it/u=2886130545,2499560266&fm=253&fmt=auto&app=138&f=JPEG?w=280&h=180 HTTP/1.1
Host: img2.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://12688.url.tudown.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: JSP3/2.0.14
date: Mon, 23 Jan 2023 09:12:15 GMT
content-type: image/webp
content-length: 8912
expires: Tue, 14 Feb 2023 08:26:46 GMT
last-modified: Wed, 07 Jan 1970 00:00:00 GMT
etag: a9cdaa248577a780d06f725728b978c4
accept-ranges: bytes
access-control-allow-origin: *
timing-allow-origin: *
ohc-global-saved-time: Sun, 15 Jan 2023 08:26:46 GMT
ohc-cache-hit: hrb4ct76 [1], czix76 [4]
ohc-file-size: 8912
x-cache-status: MISS
X-Firefox-Spdy: h2
12688.url.tudown.com/uploads/images/118977.jpg
154.218.151.71301 Moved Permanently 0 B URL HTTP/1.1 12688.url.tudown.com/uploads/images/118977.jpg
IP 154.218.151.71:0
ASN #137951 Clayer Limited
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /uploads/images/118977.jpg HTTP/1.1
Host: 12688.url.tudown.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://12688.url.tudown.com/down/dpp%E8%BD%AF%E4%BB%B6@68_30634.exe
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Mon, 23 Jan 2023 09:12:15 GMT
Content-Type: image/jpg; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Location: https://img2.baidu.com/it/u=4139232639,4042322656&fm=253&fmt=auto&app=138&f=JPEG?w=640&h=360
img1.baidu.com/it/u=2486809130,354022677&fm=253&app=120&f=JPEG?w=1280&h=800
111.170.27.1200 OK 84 kB URL HTTP/1.1 img1.baidu.com/it/u=2486809130,354022677&fm=253&app=120&f=JPEG?w=1280&h=800
IP 111.170.27.1:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 1280x800, components 3\012- data
Hash ca5855570b036c8874cd6dab70cba907
b9901f3dcd9098e28cfafc891909a340fb1dd83a
f8624d922acdd19621446da2ee565534ce4170488e595eacb64ff60127659d7d
GET /it/u=2486809130,354022677&fm=253&app=120&f=JPEG?w=1280&h=800 HTTP/1.1
Host: img1.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://12688.url.tudown.com/
Connection: keep-alive
HTTP/1.1 200 OK
Server: JSP3/2.0.14
Date: Mon, 23 Jan 2023 09:12:15 GMT
Content-Type: image/jpeg
Content-Length: 83590
Connection: keep-alive
Expires: Tue, 07 Feb 2023 07:47:21 GMT
Last-Modified: Fri, 09 Jan 1970 00:00:00 GMT
ETag: ca5855570b036c8874cd6dab70cba907
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Ohc-Global-Saved-Time: Sun, 08 Jan 2023 07:47:21 GMT
Ohc-Cache-HIT: xiangfct96 [1], suzix143 [4]
Ohc-File-Size: 83590
X-Cache-Status: MISS
12688.url.tudown.com/uploads/images/287600.jpg
154.218.151.71301 Moved Permanently 0 B URL HTTP/1.1 12688.url.tudown.com/uploads/images/287600.jpg
IP 154.218.151.71:0
ASN #137951 Clayer Limited
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /uploads/images/287600.jpg HTTP/1.1
Host: 12688.url.tudown.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://12688.url.tudown.com/down/dpp%E8%BD%AF%E4%BB%B6@68_30634.exe
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Mon, 23 Jan 2023 09:12:15 GMT
Content-Type: image/jpg; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Location: http://t15.baidu.com/it/u=3568268945,2034740167&fm=224&app=112&f=JPEG?w=500&h=500
img0.baidu.com/it/u=1340597392,2485130826&fm=253&fmt=auto&app=138&f=JPEG?w=500&h=375
42.101.56.35200 OK 13 kB URL HTTP/2 img0.baidu.com/it/u=1340597392,2485130826&fm=253&fmt=auto&app=138&f=JPEG?w=500&h=375
IP 42.101.56.35:0
ASN #137698 HaerbingHeilongjiang Province, P.R.China.
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 500x375, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash afb6fc52b862e19195a9497084d37fe5
03a50901e78f770aafafc6db1b692635a963f0fe
8e8e3c9733784b51f16773388d6a6253aef00c7dff6aedd616dce50f959fec71
GET /it/u=1340597392,2485130826&fm=253&fmt=auto&app=138&f=JPEG?w=500&h=375 HTTP/1.1
Host: img0.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://12688.url.tudown.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: JSP3/2.0.14
date: Mon, 23 Jan 2023 09:12:15 GMT
content-type: image/webp
content-length: 13204
expires: Thu, 02 Feb 2023 03:47:44 GMT
last-modified: Tue, 06 Jan 1970 00:00:00 GMT
etag: afb6fc52b862e19195a9497084d37fe5
age: 1059989
accept-ranges: bytes
access-control-allow-origin: *
timing-allow-origin: *
ohc-global-saved-time: Tue, 03 Jan 2023 03:47:44 GMT
ohc-cache-hit: hrb4ct88 [4], xiangyix230 [4]
ohc-file-size: 13204
x-cache-status: HIT
X-Firefox-Spdy: h2
12688.url.tudown.com/uploads/images/779345.jpg
154.218.151.71301 Moved Permanently 0 B URL HTTP/1.1 12688.url.tudown.com/uploads/images/779345.jpg
IP 154.218.151.71:0
ASN #137951 Clayer Limited
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /uploads/images/779345.jpg HTTP/1.1
Host: 12688.url.tudown.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://12688.url.tudown.com/down/dpp%E8%BD%AF%E4%BB%B6@68_30634.exe
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Mon, 23 Jan 2023 09:12:15 GMT
Content-Type: image/jpg; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Location: http://img1.baidu.com/it/u=3209097461,3787991228&fm=253&app=120&f=JPEG?w=1422&h=800
t15.baidu.com/it/u=3568268945,2034740167&fm=224&app=112&f=JPEG?w=500&h=500
185.10.104.124200 OK 57 kB URL HTTP/1.1 t15.baidu.com/it/u=3568268945,2034740167&fm=224&app=112&f=JPEG?w=500&h=500
IP 185.10.104.124:0
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 500x500, components 3\012- data
Hash a7b8372bbd65c0501fe5222fbbb7a157
9900f6f2591adb48f8a6347bb56d5e2826bb0a20
e28758883cb1afee1a7cd87f54a8afda786be43a0748a576e77151305c933f8f
GET /it/u=3568268945,2034740167&fm=224&app=112&f=JPEG?w=500&h=500 HTTP/1.1
Host: t15.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://12688.url.tudown.com/
Connection: keep-alive
HTTP/1.1 200 OK
Server: JSP3/2.0.14
Date: Mon, 23 Jan 2023 09:12:15 GMT
Content-Type: image/jpeg
Content-Length: 56948
Connection: keep-alive
Expires: Tue, 14 Feb 2023 01:27:45 GMT
Last-Modified: Thu, 08 Jan 1970 00:00:00 GMT
ETag: a7b8372bbd65c0501fe5222fbbb7a157
Age: 719070
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Ohc-Global-Saved-Time: Sun, 15 Jan 2023 01:27:44 GMT
Ohc-Cache-HIT: fra01-sys-jomo6.fra01.baidu.com [2], zhuzuncache56 [1], csix96 [4]
Ohc-Response-Time: 1 0 0 0 0 0
Ohc-File-Size: 56948
X-Cache-Status: HIT
Timing-Allow-Origin: *
12688.url.tudown.com/uploads/images/logo.png?n=4s4ltzfytts3raxhss26llmq46tzdzukqdsy5aq&w=250
154.218.151.71200 OK 3.6 kB URL HTTP/1.1 12688.url.tudown.com/uploads/images/logo.png?n=4s4ltzfytts3raxhss26llmq46tzdzukqdsy5aq&w=250
IP 154.218.151.71:0
ASN #137951 Clayer Limited
File type PNG image data, 250 x 66, 8-bit colormap, non-interlaced\012- data
Hash 6df8bc31431d68c0a5265ad7b9eb37e9
ac651f3615e2e186c582c9a0b8c1d71a86dd0f19
cc547979924c0a2df344f015f6ef06379f8ad4133f642a93b02c853381ed427a
GET /uploads/images/logo.png?n=4s4ltzfytts3raxhss26llmq46tzdzukqdsy5aq&w=250 HTTP/1.1
Host: 12688.url.tudown.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://12688.url.tudown.com/down/dpp%E8%BD%AF%E4%BB%B6@68_30634.exe
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 23 Jan 2023 09:12:15 GMT
Content-Type: image/png
Transfer-Encoding: chunked
Connection: keep-alive
img1.baidu.com/it/u=3740647695,2160788051&fm=253&app=120&f=JPEG?w=1280&h=800
111.170.27.1200 OK 144 kB URL HTTP/1.1 img1.baidu.com/it/u=3740647695,2160788051&fm=253&app=120&f=JPEG?w=1280&h=800
IP 111.170.27.1:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 100x100, segment length 16, baseline, precision 8, 1280x800, components 3\012- data
Size 144 kB (144429 bytes)
Hash 9c72a07167d79d94ef5c46a7dc334f54
c5cbbfd84a49112a6d0120b0c3ad36f936297180
93e1c0498a6bf941231794e56db23118c06677ec9fa2e6b366f491c247b9d7a7
GET /it/u=3740647695,2160788051&fm=253&app=120&f=JPEG?w=1280&h=800 HTTP/1.1
Host: img1.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://12688.url.tudown.com/
Connection: keep-alive
HTTP/1.1 200 OK
Server: JSP3/2.0.14
Date: Mon, 23 Jan 2023 09:12:15 GMT
Content-Type: image/jpeg
Content-Length: 144429
Connection: keep-alive
Expires: Thu, 02 Feb 2023 13:50:29 GMT
Last-Modified: Tue, 06 Jan 1970 00:00:00 GMT
ETag: 9c72a07167d79d94ef5c46a7dc334f54
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Ohc-Global-Saved-Time: Tue, 03 Jan 2023 13:50:29 GMT
Ohc-Cache-HIT: xiangfct83 [2], csix83 [4]
Ohc-File-Size: 144429
X-Cache-Status: MISS
img0.baidu.com/it/u=2469901256,3578058512&fm=253&app=120&f=JPEG?w=1280&h=800
42.101.56.35200 OK 148 kB URL HTTP/1.1 img0.baidu.com/it/u=2469901256,3578058512&fm=253&app=120&f=JPEG?w=1280&h=800
IP 42.101.56.35:0
ASN #137698 HaerbingHeilongjiang Province, P.R.China.
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 1280x800, components 3\012- data
Size 148 kB (148385 bytes)
Hash 2b8b7740e907dc689ace72d2d062a321
bbd79aaf27c29899b431d93b83e2cab658ce8017
55c08c7e6dd042680fcc5302817cee2401c585a0ddf118d23fd5d0bfdb75a220
GET /it/u=2469901256,3578058512&fm=253&app=120&f=JPEG?w=1280&h=800 HTTP/1.1
Host: img0.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://12688.url.tudown.com/
Connection: keep-alive
HTTP/1.1 200 OK
Server: JSP3/2.0.14
Date: Mon, 23 Jan 2023 09:12:15 GMT
Content-Type: image/jpeg
Content-Length: 148385
Connection: keep-alive
Expires: Tue, 07 Feb 2023 03:13:48 GMT
Last-Modified: Mon, 05 Jan 1970 00:00:00 GMT
ETag: 2b8b7740e907dc689ace72d2d062a321
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Ohc-Global-Saved-Time: Sun, 08 Jan 2023 03:13:48 GMT
Ohc-Cache-HIT: hrb4ct80 [2], qdix164 [3]
Ohc-File-Size: 148385
X-Cache-Status: MISS
12688.url.tudown.com/uploads/images/368366.jpg
154.218.151.71301 Moved Permanently 0 B URL HTTP/1.1 12688.url.tudown.com/uploads/images/368366.jpg
IP 154.218.151.71:0
ASN #137951 Clayer Limited
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /uploads/images/368366.jpg HTTP/1.1
Host: 12688.url.tudown.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://12688.url.tudown.com/down/dpp%E8%BD%AF%E4%BB%B6@68_30634.exe
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Mon, 23 Jan 2023 09:12:15 GMT
Content-Type: image/jpg; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Location: https://img0.baidu.com/it/u=1485686461,1794842286&fm=253&fmt=auto?w=500&h=500
12688.url.tudown.com/uploads/images/589928.jpg
154.218.151.71301 Moved Permanently 0 B URL HTTP/1.1 12688.url.tudown.com/uploads/images/589928.jpg
IP 154.218.151.71:0
ASN #137951 Clayer Limited
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /uploads/images/589928.jpg HTTP/1.1
Host: 12688.url.tudown.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://12688.url.tudown.com/down/dpp%E8%BD%AF%E4%BB%B6@68_30634.exe
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Mon, 23 Jan 2023 09:12:15 GMT
Content-Type: image/jpg; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Location: https://img2.baidu.com/it/u=3794858678,39526755&fm=253&fmt=auto&app=138&f=JPEG?w=500&h=500
img1.baidu.com/it/u=1806814706,935794547&fm=253&fmt=auto&app=138&f=JPEG?w=354&h=500
111.170.27.1200 OK 26 kB URL HTTP/2 img1.baidu.com/it/u=1806814706,935794547&fm=253&fmt=auto&app=138&f=JPEG?w=354&h=500
IP 111.170.27.1:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 354x500, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 5eb61cbe36e8220d683c3e6f9017b8f4
369e8d757167ad5436cee2d3acebf8ec73a4d0dc
0cd3e1b21101ee3526900ade3f8b420aa45a67ef4de1d469b7581c1603ff66d3
GET /it/u=1806814706,935794547&fm=253&fmt=auto&app=138&f=JPEG?w=354&h=500 HTTP/1.1
Host: img1.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://12688.url.tudown.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: JSP3/2.0.14
date: Mon, 23 Jan 2023 09:12:15 GMT
content-type: image/webp
content-length: 25966
expires: Sat, 18 Feb 2023 02:04:09 GMT
last-modified: Sat, 10 Jan 1970 00:00:00 GMT
etag: 5eb61cbe36e8220d683c3e6f9017b8f4
accept-ranges: bytes
access-control-allow-origin: *
timing-allow-origin: *
ohc-global-saved-time: Thu, 19 Jan 2023 02:04:09 GMT
ohc-cache-hit: xiangfct86 [1], czix163 [4]
ohc-file-size: 25966
x-cache-status: MISS
X-Firefox-Spdy: h2
img2.baidu.com/it/u=4139232639,4042322656&fm=253&fmt=auto&app=138&f=JPEG?w=640&h=360
42.101.56.35200 OK 21 kB URL HTTP/2 img2.baidu.com/it/u=4139232639,4042322656&fm=253&fmt=auto&app=138&f=JPEG?w=640&h=360
IP 42.101.56.35:0
ASN #137698 HaerbingHeilongjiang Province, P.R.China.
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 640x360, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash fbebe229a1a65f708b819bfeb0727676
0e3debae8fc33d897b422bc4d514720309654919
bc772531f3524056f24cd17be05f46db2aacbc788bdcc906c6c6ef903fe9a004
GET /it/u=4139232639,4042322656&fm=253&fmt=auto&app=138&f=JPEG?w=640&h=360 HTTP/1.1
Host: img2.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://12688.url.tudown.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: JSP3/2.0.14
date: Mon, 23 Jan 2023 09:12:16 GMT
content-type: image/webp
content-length: 20610
expires: Mon, 23 Jan 2023 20:59:56 GMT
last-modified: Sat, 10 Jan 1970 00:00:00 GMT
etag: fbebe229a1a65f708b819bfeb0727676
age: 186943
accept-ranges: bytes
access-control-allow-origin: *
timing-allow-origin: *
ohc-global-saved-time: Sat, 24 Dec 2022 20:59:55 GMT
ohc-cache-hit: hrb4ct88 [4], suzix74 [4]
ohc-file-size: 20610
x-cache-status: HIT
X-Firefox-Spdy: h2
12688.url.tudown.com/uploads/images/922676.jpg
154.218.151.71301 Moved Permanently 0 B URL HTTP/1.1 12688.url.tudown.com/uploads/images/922676.jpg
IP 154.218.151.71:0
ASN #137951 Clayer Limited
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /uploads/images/922676.jpg HTTP/1.1
Host: 12688.url.tudown.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://12688.url.tudown.com/down/dpp%E8%BD%AF%E4%BB%B6@68_30634.exe
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Mon, 23 Jan 2023 09:12:16 GMT
Content-Type: image/jpg; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Location: https://img1.baidu.com/it/u=4099142448,954710776&fm=253&fmt=auto&app=138&f=JPEG?w=500&h=707
12688.url.tudown.com/uploads/images/152612.jpg
154.218.151.71301 Moved Permanently 0 B URL HTTP/1.1 12688.url.tudown.com/uploads/images/152612.jpg
IP 154.218.151.71:0
ASN #137951 Clayer Limited
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /uploads/images/152612.jpg HTTP/1.1
Host: 12688.url.tudown.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://12688.url.tudown.com/down/dpp%E8%BD%AF%E4%BB%B6@68_30634.exe
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Mon, 23 Jan 2023 09:12:16 GMT
Content-Type: image/jpg; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Location: http://t14.baidu.com/it/u=4095203243,3902174060&fm=224&app=112&f=JPEG?w=500&h=500
t14.baidu.com/it/u=4095203243,3902174060&fm=224&app=112&f=JPEG?w=500&h=500
185.10.104.124200 OK 45 kB URL HTTP/1.1 t14.baidu.com/it/u=4095203243,3902174060&fm=224&app=112&f=JPEG?w=500&h=500
IP 185.10.104.124:0
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 500x500, components 3\012- data
Hash dbd86544e77c29b81be387ba01478c59
82347e322aafa823c0c47c97419db6fc73c0f241
3f3a807c73028ffb37891616635ca46caba402817540153e3f80d4fc48c746b5
GET /it/u=4095203243,3902174060&fm=224&app=112&f=JPEG?w=500&h=500 HTTP/1.1
Host: t14.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://12688.url.tudown.com/
Connection: keep-alive
HTTP/1.1 200 OK
Server: JSP3/2.0.14
Date: Mon, 23 Jan 2023 09:12:16 GMT
Content-Type: image/jpeg
Content-Length: 44680
Connection: keep-alive
Expires: Fri, 27 Jan 2023 08:50:43 GMT
Last-Modified: Tue, 13 Jan 1970 00:00:00 GMT
ETag: dbd86544e77c29b81be387ba01478c59
Age: 1474111
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Ohc-Global-Saved-Time: Wed, 28 Dec 2022 08:50:43 GMT
Ohc-Cache-HIT: fra01-sys-jomo1.fra01.baidu.com [4], zhuzuncache61 [1], czix170 [4]
Ohc-Response-Time: 1 0 0 0 0 0
Ohc-File-Size: 44680
X-Cache-Status: HIT
Timing-Allow-Origin: *
12688.url.tudown.com/uploads/images/165955.jpg
154.218.151.71301 Moved Permanently 0 B URL HTTP/1.1 12688.url.tudown.com/uploads/images/165955.jpg
IP 154.218.151.71:0
ASN #137951 Clayer Limited
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /uploads/images/165955.jpg HTTP/1.1
Host: 12688.url.tudown.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://12688.url.tudown.com/down/dpp%E8%BD%AF%E4%BB%B6@68_30634.exe
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Mon, 23 Jan 2023 09:12:16 GMT
Content-Type: image/jpg; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Location: https://img1.baidu.com/it/u=4099382992,2033558443&fm=253&fmt=auto&app=138&f=JPEG?w=500&h=718
12688.url.tudown.com/uploads/images/926083.jpg
154.218.151.71301 Moved Permanently 0 B URL HTTP/1.1 12688.url.tudown.com/uploads/images/926083.jpg
IP 154.218.151.71:0
ASN #137951 Clayer Limited
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /uploads/images/926083.jpg HTTP/1.1
Host: 12688.url.tudown.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://12688.url.tudown.com/down/dpp%E8%BD%AF%E4%BB%B6@68_30634.exe
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Mon, 23 Jan 2023 09:12:16 GMT
Content-Type: image/jpg; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Location: https://img0.baidu.com/it/u=665295695,3984405478&fm=253&fmt=auto&app=138&f=JPEG?w=120&h=80
12688.url.tudown.com/uploads/images/466537.jpg
154.218.151.71301 Moved Permanently 0 B URL HTTP/1.1 12688.url.tudown.com/uploads/images/466537.jpg
IP 154.218.151.71:0
ASN #137951 Clayer Limited
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /uploads/images/466537.jpg HTTP/1.1
Host: 12688.url.tudown.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://12688.url.tudown.com/down/dpp%E8%BD%AF%E4%BB%B6@68_30634.exe
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Mon, 23 Jan 2023 09:12:16 GMT
Content-Type: image/jpg; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Location: https://img1.baidu.com/it/u=1194076453,1425750803&fm=253&fmt=auto&app=138&f=JPEG?w=500&h=500
img1.baidu.com/it/u=3209097461,3787991228&fm=253&app=120&f=JPEG?w=1422&h=800
111.170.27.1200 OK 113 kB URL HTTP/1.1 img1.baidu.com/it/u=3209097461,3787991228&fm=253&app=120&f=JPEG?w=1422&h=800
IP 111.170.27.1:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 1422x800, components 3\012- data
Size 113 kB (113256 bytes)
Hash fe249d1ff29f0dc5a603defde6f44633
7185ea93b5d1238c417b92f552f66e22a52ad627
c8edb99eb76e1e28aceafdb8d5b2464af747267159e9f3143d5782c61d9e6701
GET /it/u=3209097461,3787991228&fm=253&app=120&f=JPEG?w=1422&h=800 HTTP/1.1
Host: img1.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://12688.url.tudown.com/
Connection: keep-alive
HTTP/1.1 200 OK
Server: JSP3/2.0.14
Date: Mon, 23 Jan 2023 09:12:16 GMT
Content-Type: image/jpeg
Content-Length: 113256
Connection: keep-alive
Expires: Sun, 12 Feb 2023 20:32:21 GMT
Last-Modified: Wed, 14 Jan 1970 00:00:00 GMT
ETag: fe249d1ff29f0dc5a603defde6f44633
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Ohc-Global-Saved-Time: Fri, 13 Jan 2023 20:32:21 GMT
Ohc-Cache-HIT: xiangfct70 [1], xaix223 [4]
Ohc-File-Size: 113256
X-Cache-Status: MISS
img0.baidu.com/it/u=1485686461,1794842286&fm=253&fmt=auto?w=500&h=500
42.101.56.35200 OK 16 kB URL HTTP/2 img0.baidu.com/it/u=1485686461,1794842286&fm=253&fmt=auto?w=500&h=500
IP 42.101.56.35:0
ASN #137698 HaerbingHeilongjiang Province, P.R.China.
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 500x500, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 089058185bbe2dff4bc19afc85131286
5e70689d826cb6dce40d8991e75702e9091d2a6a
f342f5a9d213b242d569df3a49dc61c2ffab1affa5a76aabf16a98e9a00bb0d1
GET /it/u=1485686461,1794842286&fm=253&fmt=auto?w=500&h=500 HTTP/1.1
Host: img0.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://12688.url.tudown.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: JSP3/2.0.14
date: Mon, 23 Jan 2023 09:12:16 GMT
content-type: image/webp
content-length: 15858
expires: Tue, 21 Feb 2023 21:31:10 GMT
last-modified: Sat, 10 Jan 1970 00:00:00 GMT
etag: 089058185bbe2dff4bc19afc85131286
accept-ranges: bytes
access-control-allow-origin: *
timing-allow-origin: *
ohc-global-saved-time: Sun, 22 Jan 2023 21:31:10 GMT
ohc-cache-hit: hrb4ct73 [1], xaix164 [4]
ohc-file-size: 15858
x-cache-status: MISS
X-Firefox-Spdy: h2
12688.url.tudown.com/uploads/images/350377.jpg
154.218.151.71301 Moved Permanently 0 B URL HTTP/1.1 12688.url.tudown.com/uploads/images/350377.jpg
IP 154.218.151.71:0
ASN #137951 Clayer Limited
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /uploads/images/350377.jpg HTTP/1.1
Host: 12688.url.tudown.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://12688.url.tudown.com/down/dpp%E8%BD%AF%E4%BB%B6@68_30634.exe
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Mon, 23 Jan 2023 09:12:16 GMT
Content-Type: image/jpg; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Location: https://img2.baidu.com/it/u=3263708423,1002168037&fm=253&fmt=auto&app=138&f=JPEG?w=434&h=434
img2.baidu.com/it/u=3794858678,39526755&fm=253&fmt=auto&app=138&f=JPEG?w=500&h=500
42.101.56.35200 OK 22 kB URL HTTP/2 img2.baidu.com/it/u=3794858678,39526755&fm=253&fmt=auto&app=138&f=JPEG?w=500&h=500
IP 42.101.56.35:0
ASN #137698 HaerbingHeilongjiang Province, P.R.China.
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 500x500, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 4c63e55209513d542b8a99727f31a5eb
aae075632bbbddf655c219d2befaa897441df167
d0fa3b6f33e1ae966a4e58c6ee250403dd64fea29c59218cebe364392594651a
GET /it/u=3794858678,39526755&fm=253&fmt=auto&app=138&f=JPEG?w=500&h=500 HTTP/1.1
Host: img2.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://12688.url.tudown.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: JSP3/2.0.14
date: Mon, 23 Jan 2023 09:12:16 GMT
content-type: image/webp
content-length: 21814
expires: Mon, 30 Jan 2023 13:02:38 GMT
last-modified: Wed, 07 Jan 1970 00:00:00 GMT
etag: 4c63e55209513d542b8a99727f31a5eb
accept-ranges: bytes
access-control-allow-origin: *
timing-allow-origin: *
ohc-global-saved-time: Sat, 31 Dec 2022 13:02:38 GMT
ohc-cache-hit: hrb4ct55 [1], xiangyix172 [4]
ohc-file-size: 21814
x-cache-status: MISS
X-Firefox-Spdy: h2
12688.url.tudown.com/uploads/images/212446.jpg
154.218.151.71301 Moved Permanently 0 B URL HTTP/1.1 12688.url.tudown.com/uploads/images/212446.jpg
IP 154.218.151.71:0
ASN #137951 Clayer Limited
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /uploads/images/212446.jpg HTTP/1.1
Host: 12688.url.tudown.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://12688.url.tudown.com/down/dpp%E8%BD%AF%E4%BB%B6@68_30634.exe
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Mon, 23 Jan 2023 09:12:16 GMT
Content-Type: image/jpg; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Location: http://t14.baidu.com/it/u=2157937604,4119465798&fm=224&app=112&f=JPEG?w=500&h=500
img1.baidu.com/it/u=4099142448,954710776&fm=253&fmt=auto&app=138&f=JPEG?w=500&h=707
111.170.27.1200 OK 27 kB URL HTTP/2 img1.baidu.com/it/u=4099142448,954710776&fm=253&fmt=auto&app=138&f=JPEG?w=500&h=707
IP 111.170.27.1:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 500x707, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash a5a2cf78b9c09b0e0b81546ec7824172
508c7f5d9d3904e4986a489d96af5af10729458d
0264af5faad6af2f74feb6f081c8c035ab8cd4215ef759c15551133eb112feb6
GET /it/u=4099142448,954710776&fm=253&fmt=auto&app=138&f=JPEG?w=500&h=707 HTTP/1.1
Host: img1.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://12688.url.tudown.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: JSP3/2.0.14
date: Mon, 23 Jan 2023 09:12:16 GMT
content-type: image/webp
content-length: 27086
expires: Tue, 21 Feb 2023 17:54:13 GMT
last-modified: Sat, 10 Jan 1970 00:00:00 GMT
etag: a5a2cf78b9c09b0e0b81546ec7824172
accept-ranges: bytes
access-control-allow-origin: *
timing-allow-origin: *
ohc-global-saved-time: Sun, 22 Jan 2023 17:54:13 GMT
ohc-cache-hit: xiangfct91 [1], bdix212 [4]
ohc-file-size: 27086
x-cache-status: MISS
X-Firefox-Spdy: h2
12688.url.tudown.com/uploads/images/626694.jpg
154.218.151.71301 Moved Permanently 0 B URL HTTP/1.1 12688.url.tudown.com/uploads/images/626694.jpg
IP 154.218.151.71:0
ASN #137951 Clayer Limited
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /uploads/images/626694.jpg HTTP/1.1
Host: 12688.url.tudown.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://12688.url.tudown.com/down/dpp%E8%BD%AF%E4%BB%B6@68_30634.exe
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Mon, 23 Jan 2023 09:12:16 GMT
Content-Type: image/jpg; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Location: https://img2.baidu.com/it/u=1289201735,4289421782&fm=253&fmt=auto&app=138&f=JPEG?w=500&h=562
t14.baidu.com/it/u=2157937604,4119465798&fm=224&app=112&f=JPEG?w=500&h=500
185.10.104.124200 OK 64 kB URL HTTP/1.1 t14.baidu.com/it/u=2157937604,4119465798&fm=224&app=112&f=JPEG?w=500&h=500
IP 185.10.104.124:0
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 500x500, components 3\012- data
Hash bc368497a56046dad66d6c571e0ecc3c
cdd204424d7efecba203e64c59a820e4cd92b4d2
6870199d71ac1041410c39a321660f824ed538be3e8c6966c0a0094571cc69f6
GET /it/u=2157937604,4119465798&fm=224&app=112&f=JPEG?w=500&h=500 HTTP/1.1
Host: t14.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://12688.url.tudown.com/
Connection: keep-alive
HTTP/1.1 200 OK
Server: JSP3/2.0.14
Date: Mon, 23 Jan 2023 09:12:16 GMT
Content-Type: image/jpeg
Content-Length: 63765
Connection: keep-alive
Expires: Mon, 06 Feb 2023 18:45:25 GMT
Last-Modified: Thu, 08 Jan 1970 00:00:00 GMT
ETag: bc368497a56046dad66d6c571e0ecc3c
Age: 231286
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Ohc-Global-Saved-Time: Sat, 07 Jan 2023 18:45:25 GMT
Ohc-Cache-HIT: fra01-sys-jomo3.fra01.baidu.com [4], zhuzuncache59 [1], csix59 [4]
Ohc-Response-Time: 1 0 0 0 0 0
Ohc-File-Size: 63765
X-Cache-Status: HIT
Timing-Allow-Origin: *
12688.url.tudown.com/uploads/images/507327.jpg
154.218.151.71301 Moved Permanently 0 B URL HTTP/1.1 12688.url.tudown.com/uploads/images/507327.jpg
IP 154.218.151.71:0
ASN #137951 Clayer Limited
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /uploads/images/507327.jpg HTTP/1.1
Host: 12688.url.tudown.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://12688.url.tudown.com/down/dpp%E8%BD%AF%E4%BB%B6@68_30634.exe
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Mon, 23 Jan 2023 09:12:16 GMT
Content-Type: image/jpg; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Location: http://t13.baidu.com/it/u=581786987,1275673580&fm=224&app=112&f=JPEG?w=500&h=500
12688.url.tudown.com/uploads/images/874285.jpg
154.218.151.71301 Moved Permanently 0 B URL HTTP/1.1 12688.url.tudown.com/uploads/images/874285.jpg
IP 154.218.151.71:0
ASN #137951 Clayer Limited
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /uploads/images/874285.jpg HTTP/1.1
Host: 12688.url.tudown.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://12688.url.tudown.com/down/dpp%E8%BD%AF%E4%BB%B6@68_30634.exe
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Mon, 23 Jan 2023 09:12:16 GMT
Content-Type: image/jpg; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Location: http://img1.baidu.com/it/u=1882486880,2128999514&fm=253&app=138&f=JPEG?w=500&h=800
img1.baidu.com/it/u=4099382992,2033558443&fm=253&fmt=auto&app=138&f=JPEG?w=500&h=718
111.170.27.1200 OK 38 kB URL HTTP/2 img1.baidu.com/it/u=4099382992,2033558443&fm=253&fmt=auto&app=138&f=JPEG?w=500&h=718
IP 111.170.27.1:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 500x718, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash bb1b07eb28c53c4ef25a3b64d9f162d6
5e997c895cebea8eb672497b56f720fb6463fd48
347c58f3f24f7c872c0b69de7b274035654dc538cdb94650f1f1c84231099da6
GET /it/u=4099382992,2033558443&fm=253&fmt=auto&app=138&f=JPEG?w=500&h=718 HTTP/1.1
Host: img1.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://12688.url.tudown.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: JSP3/2.0.14
date: Mon, 23 Jan 2023 09:12:16 GMT
content-type: image/webp
content-length: 37638
expires: Sun, 29 Jan 2023 13:53:27 GMT
last-modified: Fri, 09 Jan 1970 00:00:00 GMT
etag: bb1b07eb28c53c4ef25a3b64d9f162d6
accept-ranges: bytes
access-control-allow-origin: *
timing-allow-origin: *
ohc-global-saved-time: Fri, 30 Dec 2022 13:53:27 GMT
ohc-cache-hit: xiangfct71 [1], bdix226 [4]
ohc-file-size: 37638
x-cache-status: MISS
X-Firefox-Spdy: h2
12688.url.tudown.com/uploads/images/664341.jpg
154.218.151.71301 Moved Permanently 0 B URL HTTP/1.1 12688.url.tudown.com/uploads/images/664341.jpg
IP 154.218.151.71:0
ASN #137951 Clayer Limited
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /uploads/images/664341.jpg HTTP/1.1
Host: 12688.url.tudown.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://12688.url.tudown.com/down/dpp%E8%BD%AF%E4%BB%B6@68_30634.exe
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Mon, 23 Jan 2023 09:12:16 GMT
Content-Type: image/jpg; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Location: https://img1.baidu.com/it/u=3415786549,1590726208&fm=253&fmt=auto&app=138&f=JPEG?w=500&h=699
img1.baidu.com/it/u=1194076453,1425750803&fm=253&fmt=auto&app=138&f=JPEG?w=500&h=500
111.170.27.1200 OK 14 kB URL HTTP/2 img1.baidu.com/it/u=1194076453,1425750803&fm=253&fmt=auto&app=138&f=JPEG?w=500&h=500
IP 111.170.27.1:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 500x500, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 3994120c8ee26ddd543bb5b842e4e137
fa939c0e7db0a6aa3d216180ecce175a7de4265e
d3c3f03706d10933bfe9500927e5f1bc7f4775b39942a9dc414e977a6e0aeb0d
GET /it/u=1194076453,1425750803&fm=253&fmt=auto&app=138&f=JPEG?w=500&h=500 HTTP/1.1
Host: img1.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://12688.url.tudown.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: JSP3/2.0.14
date: Mon, 23 Jan 2023 09:12:16 GMT
content-type: image/webp
content-length: 13528
expires: Mon, 20 Feb 2023 21:52:09 GMT
last-modified: Thu, 08 Jan 1970 00:00:00 GMT
etag: 3994120c8ee26ddd543bb5b842e4e137
accept-ranges: bytes
access-control-allow-origin: *
timing-allow-origin: *
ohc-global-saved-time: Sat, 21 Jan 2023 21:52:09 GMT
ohc-cache-hit: xiangfct111 [1], czix203 [4]
ohc-file-size: 13528
x-cache-status: MISS
X-Firefox-Spdy: h2
12688.url.tudown.com/uploads/images/461003.jpg
154.218.151.71301 Moved Permanently 0 B URL HTTP/1.1 12688.url.tudown.com/uploads/images/461003.jpg
IP 154.218.151.71:0
ASN #137951 Clayer Limited
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /uploads/images/461003.jpg HTTP/1.1
Host: 12688.url.tudown.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://12688.url.tudown.com/down/dpp%E8%BD%AF%E4%BB%B6@68_30634.exe
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Mon, 23 Jan 2023 09:12:16 GMT
Content-Type: image/jpg; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Location: https://img1.baidu.com/it/u=2715862534,251542908&fm=253&fmt=auto&app=138&f=JPEG?w=889&h=500
t13.baidu.com/it/u=581786987,1275673580&fm=224&app=112&f=JPEG?w=500&h=500
185.10.104.124200 OK 43 kB URL HTTP/1.1 t13.baidu.com/it/u=581786987,1275673580&fm=224&app=112&f=JPEG?w=500&h=500
IP 185.10.104.124:0
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 500x500, components 3\012- data
Hash aa1b44430a9f70992b02256bb9aadfd8
cdba196bd359ef92c0edc72de9172b4c43d0b0d9
32192d2654a75f93f51b98904315c147bdda05f5d99380fd360e331dc57036f8
GET /it/u=581786987,1275673580&fm=224&app=112&f=JPEG?w=500&h=500 HTTP/1.1
Host: t13.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://12688.url.tudown.com/
Connection: keep-alive
HTTP/1.1 200 OK
Server: JSP3/2.0.14
Date: Mon, 23 Jan 2023 09:12:16 GMT
Content-Type: image/jpeg
Content-Length: 43268
Connection: keep-alive
Expires: Wed, 08 Feb 2023 06:48:30 GMT
Last-Modified: Thu, 08 Jan 1970 00:00:00 GMT
ETag: aa1b44430a9f70992b02256bb9aadfd8
Age: 993877
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Ohc-Global-Saved-Time: Mon, 09 Jan 2023 06:48:30 GMT
Ohc-Cache-HIT: fra01-sys-jomo3.fra01.baidu.com [2], zhuzuncache53 [1], czix219 [4]
Ohc-Response-Time: 1 0 0 0 0 0
Ohc-File-Size: 43268
X-Cache-Status: HIT
Timing-Allow-Origin: *
12688.url.tudown.com/uploads/images/911383.jpg
154.218.151.71301 Moved Permanently 0 B URL HTTP/1.1 12688.url.tudown.com/uploads/images/911383.jpg
IP 154.218.151.71:0
ASN #137951 Clayer Limited
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /uploads/images/911383.jpg HTTP/1.1
Host: 12688.url.tudown.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://12688.url.tudown.com/down/dpp%E8%BD%AF%E4%BB%B6@68_30634.exe
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Mon, 23 Jan 2023 09:12:16 GMT
Content-Type: image/jpg; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Location: https://img1.baidu.com/it/u=3181986009,1094391166&fm=253&fmt=auto&app=138&f=JPEG?w=500&h=525
img2.baidu.com/it/u=3263708423,1002168037&fm=253&fmt=auto&app=138&f=JPEG?w=434&h=434
42.101.56.35200 OK 20 kB URL HTTP/2 img2.baidu.com/it/u=3263708423,1002168037&fm=253&fmt=auto&app=138&f=JPEG?w=434&h=434
IP 42.101.56.35:0
ASN #137698 HaerbingHeilongjiang Province, P.R.China.
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 434x434, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 45fb0301977a9a22dfa6a99d22c9b54d
fd9ecb0a6a9e05973e5e80964a246def547a55ee
42f7ed6d6cf4dfb141f71936ce1aa7a7e29f04919be47be907cf4ce311fc31fc
GET /it/u=3263708423,1002168037&fm=253&fmt=auto&app=138&f=JPEG?w=434&h=434 HTTP/1.1
Host: img2.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://12688.url.tudown.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: JSP3/2.0.14
date: Mon, 23 Jan 2023 09:12:16 GMT
content-type: image/webp
content-length: 20512
expires: Wed, 25 Jan 2023 09:42:53 GMT
last-modified: Thu, 08 Jan 1970 00:00:00 GMT
etag: 45fb0301977a9a22dfa6a99d22c9b54d
age: 6106
accept-ranges: bytes
access-control-allow-origin: *
timing-allow-origin: *
ohc-global-saved-time: Mon, 26 Dec 2022 09:42:53 GMT
ohc-cache-hit: hrb4ct56 [4], xiangyix157 [2]
ohc-file-size: 20512
x-cache-status: HIT
X-Firefox-Spdy: h2
img1.baidu.com/it/u=1882486880,2128999514&fm=253&app=138&f=JPEG?w=500&h=800
111.170.27.1200 OK 46 kB URL HTTP/1.1 img1.baidu.com/it/u=1882486880,2128999514&fm=253&app=138&f=JPEG?w=500&h=800
IP 111.170.27.1:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 500x800, components 3\012- data
Hash b38626bbfdb46a6481f57b7b086f8c75
be8c5790b47b8961369665ac23deee5c60285a68
f26e50d9ad79926befade956feebc42009658ad59cf63544c71f46b96d49d4e3
GET /it/u=1882486880,2128999514&fm=253&app=138&f=JPEG?w=500&h=800 HTTP/1.1
Host: img1.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://12688.url.tudown.com/
Connection: keep-alive
HTTP/1.1 200 OK
Server: JSP3/2.0.14
Date: Mon, 23 Jan 2023 09:12:16 GMT
Content-Type: image/jpeg
Content-Length: 45752
Connection: keep-alive
Expires: Wed, 25 Jan 2023 09:14:38 GMT
Last-Modified: Sun, 11 Jan 1970 00:00:00 GMT
ETag: b38626bbfdb46a6481f57b7b086f8c75
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Ohc-Global-Saved-Time: Mon, 26 Dec 2022 09:14:38 GMT
Ohc-Cache-HIT: xiangfct89 [1], xaix123 [4]
Ohc-File-Size: 45752
X-Cache-Status: MISS
img0.baidu.com/it/u=665295695,3984405478&fm=253&fmt=auto&app=138&f=JPEG?w=120&h=80
42.101.56.35200 OK 2.6 kB URL HTTP/2 img0.baidu.com/it/u=665295695,3984405478&fm=253&fmt=auto&app=138&f=JPEG?w=120&h=80
IP 42.101.56.35:0
ASN #137698 HaerbingHeilongjiang Province, P.R.China.
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 120x80, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash fcf7ae270590e6fadcd8b8718971320f
966c0f6afbca3c9fff567bd1b77b1b889ce13282
639c80751a19cb1e037dac52d0f9babc11a50ad17a4b5273b2e6cbef6a15cbc9
GET /it/u=665295695,3984405478&fm=253&fmt=auto&app=138&f=JPEG?w=120&h=80 HTTP/1.1
Host: img0.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://12688.url.tudown.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: JSP3/2.0.14
date: Mon, 23 Jan 2023 09:12:16 GMT
content-type: image/webp
content-length: 2606
expires: Tue, 31 Jan 2023 04:07:12 GMT
last-modified: Mon, 05 Jan 1970 00:00:00 GMT
etag: fcf7ae270590e6fadcd8b8718971320f
accept-ranges: bytes
access-control-allow-origin: *
timing-allow-origin: *
ohc-global-saved-time: Sun, 01 Jan 2023 04:07:12 GMT
ohc-cache-hit: hrb4ct80 [1], xiangyix133 [4]
ohc-file-size: 2606
x-cache-status: MISS
X-Firefox-Spdy: h2
img2.baidu.com/it/u=1289201735,4289421782&fm=253&fmt=auto&app=138&f=JPEG?w=500&h=562
42.101.56.35200 OK 20 kB URL HTTP/2 img2.baidu.com/it/u=1289201735,4289421782&fm=253&fmt=auto&app=138&f=JPEG?w=500&h=562
IP 42.101.56.35:0
ASN #137698 HaerbingHeilongjiang Province, P.R.China.
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 500x562, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash dc5d5c3fbac125bd84839f9e93aee66e
cedd569f4758086b987ab345225ad8de0849274c
1ccdc4ff28fecbb7abdd498ef44c6181f599155edb88b8aa30836e3ccfb88e3c
GET /it/u=1289201735,4289421782&fm=253&fmt=auto&app=138&f=JPEG?w=500&h=562 HTTP/1.1
Host: img2.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://12688.url.tudown.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: JSP3/2.0.14
date: Mon, 23 Jan 2023 09:12:16 GMT
content-type: image/webp
content-length: 19740
expires: Sun, 19 Feb 2023 05:13:53 GMT
last-modified: Thu, 08 Jan 1970 00:00:00 GMT
etag: dc5d5c3fbac125bd84839f9e93aee66e
accept-ranges: bytes
access-control-allow-origin: *
timing-allow-origin: *
ohc-global-saved-time: Fri, 20 Jan 2023 05:13:53 GMT
ohc-cache-hit: hrb4ct73 [1], xaix73 [4]
ohc-file-size: 19740
x-cache-status: MISS
X-Firefox-Spdy: h2
img1.baidu.com/it/u=3415786549,1590726208&fm=253&fmt=auto&app=138&f=JPEG?w=500&h=699
111.170.27.1200 OK 43 kB URL HTTP/2 img1.baidu.com/it/u=3415786549,1590726208&fm=253&fmt=auto&app=138&f=JPEG?w=500&h=699
IP 111.170.27.1:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 500x699, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash b51278d62b15849f870278cc2ff4e802
39d5624a6f113803937b1362c7d89f98e3ff3596
1334f698f5ddd5fc0e640faf434f8c30af2e14171112edfd6994b6c9c1309f43
GET /it/u=3415786549,1590726208&fm=253&fmt=auto&app=138&f=JPEG?w=500&h=699 HTTP/1.1
Host: img1.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://12688.url.tudown.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: JSP3/2.0.14
date: Mon, 23 Jan 2023 09:12:16 GMT
content-type: image/webp
content-length: 42942
expires: Mon, 23 Jan 2023 11:53:48 GMT
last-modified: Fri, 09 Jan 1970 00:00:00 GMT
etag: b51278d62b15849f870278cc2ff4e802
age: 199434
accept-ranges: bytes
access-control-allow-origin: *
timing-allow-origin: *
ohc-global-saved-time: Sat, 24 Dec 2022 11:53:48 GMT
ohc-cache-hit: xiangfct103 [4], qdix103 [4]
ohc-file-size: 42942
x-cache-status: HIT
X-Firefox-Spdy: h2
img1.baidu.com/it/u=3181986009,1094391166&fm=253&fmt=auto&app=138&f=JPEG?w=500&h=525
111.170.27.1200 OK 14 kB URL HTTP/2 img1.baidu.com/it/u=3181986009,1094391166&fm=253&fmt=auto&app=138&f=JPEG?w=500&h=525
IP 111.170.27.1:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 500x525, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 0db3693918945f3f466cc0c4ce16b857
ab6186db03a9bfbb63d2c45f1ed8d5960dbe5c41
972e1afaa1251d2a0340b0a444e7c12635ee7d02b9be487cb9e7e369042cc57d
GET /it/u=3181986009,1094391166&fm=253&fmt=auto&app=138&f=JPEG?w=500&h=525 HTTP/1.1
Host: img1.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://12688.url.tudown.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: JSP3/2.0.14
date: Mon, 23 Jan 2023 09:12:17 GMT
content-type: image/webp
content-length: 13592
expires: Tue, 21 Feb 2023 02:59:02 GMT
last-modified: Sun, 11 Jan 1970 00:00:00 GMT
etag: 0db3693918945f3f466cc0c4ce16b857
age: 188
accept-ranges: bytes
access-control-allow-origin: *
timing-allow-origin: *
ohc-global-saved-time: Sun, 22 Jan 2023 02:59:02 GMT
ohc-cache-hit: xiangfct65 [4], suzix206 [2]
ohc-file-size: 13592
x-cache-status: HIT
X-Firefox-Spdy: h2
img1.baidu.com/it/u=2715862534,251542908&fm=253&fmt=auto&app=138&f=JPEG?w=889&h=500
111.170.27.1200 OK 30 kB URL HTTP/2 img1.baidu.com/it/u=2715862534,251542908&fm=253&fmt=auto&app=138&f=JPEG?w=889&h=500
IP 111.170.27.1:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 889x500, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash c08e76fa7708dd174f8bc7b8a4882498
c6493e4a5c92076462afc375e0c78bb7cfa7c5ef
0952a01a364cabed3bca57a86f46a8ca846ccad45ab61a458fb32a59bc712b4c
GET /it/u=2715862534,251542908&fm=253&fmt=auto&app=138&f=JPEG?w=889&h=500 HTTP/1.1
Host: img1.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://12688.url.tudown.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: JSP3/2.0.14
date: Mon, 23 Jan 2023 09:12:17 GMT
content-type: image/webp
content-length: 30156
expires: Wed, 22 Feb 2023 01:41:39 GMT
last-modified: Sat, 10 Jan 1970 00:00:00 GMT
etag: c08e76fa7708dd174f8bc7b8a4882498
accept-ranges: bytes
access-control-allow-origin: *
timing-allow-origin: *
ohc-global-saved-time: Mon, 23 Jan 2023 01:41:39 GMT
ohc-cache-hit: xiangfct83 [1], czix83 [4]
ohc-file-size: 30156
x-cache-status: MISS
X-Firefox-Spdy: h2
12688.url.tudown.com/favicon.ico
154.218.151.71200 OK 0 B URL HTTP/1.1 12688.url.tudown.com/favicon.ico
IP 154.218.151.71:0
ASN #137951 Clayer Limited
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /favicon.ico HTTP/1.1
Host: 12688.url.tudown.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://12688.url.tudown.com/down/dpp%E8%BD%AF%E4%BB%B6@68_30634.exe
Cookie: Hm_lvt_dd9836db2e433f487a0aa434b7b3deb7=1674465133; Hm_lpvt_dd9836db2e433f487a0aa434b7b3deb7=1674465133
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 23 Jan 2023 09:12:17 GMT
Content-Type: image/x-icon
Content-Length: 0
Last-Modified: Tue, 30 Jul 2019 15:51:36 GMT
Connection: keep-alive
ETag: "5d406788-0"
Accept-Ranges: bytes
jspassport.ssl.qhimg.com/11.0.1.js?d182b3f28525f2db83acfaaf6e696dba
54.230.111.66200 OK 0 B URL HTTP/2 jspassport.ssl.qhimg.com/11.0.1.js?d182b3f28525f2db83acfaaf6e696dba
IP 54.230.111.66:0
GET /11.0.1.js?d182b3f28525f2db83acfaaf6e696dba HTTP/1.1
Host: jspassport.ssl.qhimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://12688.url.tudown.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/x-javascript
last-modified: Wed, 28 Nov 2018 07:43:20 GMT
kcs-via: HIT from w-fc01.lato;REVALIDATED from w-sc01.lato
date: Mon, 23 Jan 2023 09:05:22 GMT
cache-control: max-age=600
expires: Mon, 23 Jan 2023 09:15:09 GMT
x-cache: Hit from cloudfront
via: 1.1 fc5e625db631bc657fc73f189d53fa14.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: tyz2-yxbXgzuV_dKpB1njDqbAoJq_RJP1982dJAsG_BJLu88kVMqBA==
age: 424
X-Firefox-Spdy: h2