r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 81713f952b51a865ad9764cde68e3fdb
278c3a9c4bb2a0ffb7375f90d89a1ba6e90a766a
c2eb0d8a24ecb51af28f1c71db4b9a95c568dcf6c94b41ee8c78787a4ebebcef
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C2EB0D8A24ECB51AF28F1C71DB4B9A95C568DCF6C94B41EE8C78787A4EBEBCEF"
Last-Modified: Fri, 03 Feb 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5580
Expires: Sat, 04 Feb 2023 14:24:45 GMT
Date: Sat, 04 Feb 2023 12:51:45 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash c21ba65e44ac95470c314e068e49a9eb
17a13b13738993d889d4afa3d848dc63bf6eba64
9bd0795b30e84ce63b6e2a365ca91bbffc395dd955e112152066c31e63a4ab66
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "9BD0795B30E84CE63B6E2A365CA91BBFFC395DD955E112152066C31E63A4AB66"
Last-Modified: Sat, 04 Feb 2023 11:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16290
Expires: Sat, 04 Feb 2023 17:23:15 GMT
Date: Sat, 04 Feb 2023 12:51:45 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 30db107dcf4380cef05efea409c2e6a3
96e6a306fbc07299aba64e5c14e2bfca35872fa9
b64051a4a8e346e3c72b2aef77f360a5736ab5e16711d8e0bae3876feaa15b6e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Alert, Retry-After, Content-Length, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sat, 04 Feb 2023 12:43:38 GMT
content-type: application/json
age: 487
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash fb7b6b46e708ad73eaaa3c21e74569ae
950663c025acad81556af5aa3022ecc9d55097fe
763f58b9fb838378c92033b59907b036f4c33081f5103d9bcc2ca2a8de500d64
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "763F58B9FB838378C92033B59907B036F4C33081F5103D9BCC2CA2A8DE500D64"
Last-Modified: Sat, 04 Feb 2023 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4451
Expires: Sat, 04 Feb 2023 14:05:56 GMT
Date: Sat, 04 Feb 2023 12:51:45 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: N0k39FnQrj4coGQGd/8W82vf4oXIi0gqLs9vue3R6/EzgdYMOf/GBL2sfvMtiMQoi2URYnU8nh0=
x-amz-request-id: 7S7BQAM4MHJXPW1Q
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sat, 04 Feb 2023 11:52:49 GMT
age: 3536
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 12:51:45 GMT
content-type: application/json
content-length: 12
access-control-expose-headers: content-type
access-control-allow-credentials: true
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
cdnjs.cloudflare.com/ajax/libs/material-design-iconic-font/2.2.0/css/material-design-iconic-font.min.css
104.17.24.14200 OK 5.8 kB URL HTTP/2 cdnjs.cloudflare.com/ajax/libs/material-design-iconic-font/2.2.0/css/material-design-iconic-font.min.css
IP 104.17.24.14:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash a7e25a22602a2b2ed35f90fd5210cff1
148c4f275b60e6cf6253d6b4c7bdc486515b2202
312d94bafa68e11e3a4a8d7c06bc25ee161d1d965afb1fa99db79815a272d0bf
GET /ajax/libs/material-design-iconic-font/2.2.0/css/material-design-iconic-font.min.css HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://kanok.alphagg7.cyou/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 04 Feb 2023 12:51:45 GMT
content-type: text/css; charset=utf-8
content-length: 5845
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03ed9-1149f"
last-modified: Mon, 04 May 2020 16:12:09 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 3751963
expires: Thu, 25 Jan 2024 12:51:45 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=U4Tq9Kv8RI3zYPWJRnQs1hkSglwrtwHLbndx4jtYqx4q57fdCsZvjENqd5qVYBxMGFkYmELzquc%2F%2BIoyn4e%2Bt3haQ1xtHqKe65HHnIM0kMGkwn0yCgPZuMsMuXsDA0YLvBN4wQJZ"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 79438a239f1f0b61-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 471 B IP 216.58.211.3:0
Hash c181c51a9326d56e60915a792c306c2c
de1cc0ce1384905e65a9fa9575743091d785e528
b74bc74e2920124b3288a980f9a7b59e3450ba63f2333027440cd6ebbdfdbf8d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 12:51:45 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash 149a2367312653ee73b6581578a2f84d
3c98fcaa27940cfcfb9a8c27bc3ec80476898bbc
007b5bc87b6006e78e97ea446e1979574d5c17782be5e901706a0881e62d05a4
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2940
Cache-Control: max-age=139579
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 12:51:45 GMT
Etag: "63ddc7a0-116"
Expires: Mon, 06 Feb 2023 03:38:04 GMT
Last-Modified: Sat, 04 Feb 2023 02:49:04 GMT
Server: ECS (ska/F719)
X-Cache: HIT
Content-Length: 278
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash c0660265f3bb0d69f48d99f02a020f0b
dc00beec27bd28bd91d937f8ac4d328db1028636
a52ac9c067882d806685b4e474d204d2ce56ff7197078f0937f17f6a5233cf00
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6052
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 12:51:45 GMT
Last-Modified: Sat, 04 Feb 2023 11:10:53 GMT
Server: ECS (ska/F719)
X-Cache: HIT
Content-Length: 471
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 471 B IP 216.58.211.3:0
Hash c181c51a9326d56e60915a792c306c2c
de1cc0ce1384905e65a9fa9575743091d785e528
b74bc74e2920124b3288a980f9a7b59e3450ba63f2333027440cd6ebbdfdbf8d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 12:51:45 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
stackpath.bootstrapcdn.com/font-awesome/4.7.0/css/font-awesome.min.css
188.114.98.234200 OK 7.3 kB URL HTTP/2 stackpath.bootstrapcdn.com/font-awesome/4.7.0/css/font-awesome.min.css
IP 188.114.98.234:0
File type ASCII text, with very long lines (30837)
Hash 459681ab0626d538d4e2bb61fe677228
61b4bb197419001d8bbb357a25aec4722d554532
cfd677f9ac2c7b539d24c3ae885ea289f0974dd9e957ac53c5a07dade109a160
GET /font-awesome/4.7.0/css/font-awesome.min.css HTTP/1.1
Host: stackpath.bootstrapcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://kanok.alphagg7.cyou/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 04 Feb 2023 12:51:45 GMT
content-type: text/css; charset=utf-8
vary: Accept-Encoding
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: DE
access-control-allow-origin: *
cache-control: public, max-age=31919000
last-modified: Mon, 25 Jan 2021 22:04:55 GMT
cdn-cachedat: 11/15/2021 21:49:00
cdn-proxyver: 1.0
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
cdn-edgestorageid: 723
cdn-status: 200
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
cdn-requestid: 2729ae8f2fc6c761bdc17d91cc795f58
cdn-cache: HIT
cf-cache-status: HIT
age: 20961859
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 79438a24187bb50c-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Pragma, Backoff, Retry-After, Content-Length, Last-Modified, Expires, Cache-Control, ETag, Alert, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sat, 04 Feb 2023 12:49:07 GMT
age: 158
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
kanok.alphagg7.cyou/css/style.css
20.38.4.152200 OK 4.4 kB URL HTTP/1.1 kanok.alphagg7.cyou/css/style.css
IP 20.38.4.152:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type ASCII text, with CRLF line terminators
Hash 205be553cedd23364bba7be93a2431d6
94e3f3c82716a3773825d89d02299f11d8ccd800
b51a6a75ff4e17d196d3d8c87fd739e0d259f273e4c2765a3780282d4990e383
Analyzer Verdict Alert openphish Tencent
GET /css/style.css HTTP/1.1
Host: kanok.alphagg7.cyou
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kanok.alphagg7.cyou/
HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 12:51:45 GMT
Server: Apache
Last-Modified: Thu, 19 Jan 2023 06:59:27 GMT
Accept-Ranges: bytes
Content-Length: 4429
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
kanok.alphagg7.cyou/
20.38.4.152200 OK 347 kB IP 20.38.4.152:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, Unicode text, UTF-8 text, with very long lines (2094), with CRLF line terminators
Size 347 kB (346655 bytes)
Hash 40b228903530c44e42daf9bb6aa7a2d1
dcbad4beb8d9102f3eb70edf0fed6b7cc76d7204
5d8a3d311d75872763483283fbc2cd69832963d00ea46da268f6351918704450
Analyzer Verdict Alert openphish Tencent
fortinet Phishing
NIDS Severity Alert suricata low ET HUNTING [TW] Likely Javascript-Obfuscator Usage Observed M1
suricata low ET HUNTING [TW] Likely Javascript-Obfuscator Usage Observed M2
suricata low ET HUNTING [TW] Likely Javascript-Obfuscator Usage Observed M3
GET / HTTP/1.1
Host: kanok.alphagg7.cyou
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 12:51:45 GMT
Server: Apache
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
kanok.alphagg7.cyou/css/twitter.css
20.38.4.152200 OK 2.4 kB URL HTTP/1.1 kanok.alphagg7.cyou/css/twitter.css
IP 20.38.4.152:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Hash 6a58da1e6f15e566125da4eb59e8b166
a0db25ee8cb53c4c2961257eee85368cb7ef959d
b1989e98d41c693bd44bae4e35bf8032e8577d411cb95f3f3150f4dc0c4b02f3
Analyzer Verdict Alert openphish Tencent
GET /css/twitter.css HTTP/1.1
Host: kanok.alphagg7.cyou
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kanok.alphagg7.cyou/
HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 12:51:46 GMT
Server: Apache
Last-Modified: Thu, 19 Jan 2023 06:59:38 GMT
Accept-Ranges: bytes
Content-Length: 2356
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
kanok.alphagg7.cyou/css/facebook.css
20.38.4.152200 OK 3.5 kB URL HTTP/1.1 kanok.alphagg7.cyou/css/facebook.css
IP 20.38.4.152:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Hash 31a6c2c1ec3e6f772d0a96ab19efd71a
3812620adea5ef46b36edba2fa4fc881af93f3f7
79206b4e0d48fc3e48592607011d72ed50e0d4d5effa6f6fa803c7ab9b566695
Analyzer Verdict Alert openphish Tencent
GET /css/facebook.css HTTP/1.1
Host: kanok.alphagg7.cyou
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kanok.alphagg7.cyou/
HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 12:51:46 GMT
Server: Apache
Last-Modified: Thu, 19 Jan 2023 06:57:59 GMT
Accept-Ranges: bytes
Content-Length: 3455
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash dedf9c519ac38c4bece9c5bc895787d7
4911175c3f8a435978c5301c33c7a99a5e00a1d5
bddd7e3a4939f863642a7c5348c1c8b9bc569b35c10a27f4cf5ec71f7e6b9698
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BDDD7E3A4939F863642A7C5348C1C8B9BC569B35C10A27F4CF5EC71F7E6B9698"
Last-Modified: Fri, 03 Feb 2023 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6789
Expires: Sat, 04 Feb 2023 14:44:55 GMT
Date: Sat, 04 Feb 2023 12:51:46 GMT
Connection: keep-alive
kanok.alphagg7.cyou/js/script.js
20.38.4.152200 OK 1.5 kB URL HTTP/1.1 kanok.alphagg7.cyou/js/script.js
IP 20.38.4.152:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Hash 2de426e5b77745094fec3db288e30e9d
01693d3f896cdc09ab8eae9cc9b7138643213c7d
719a5b33af79fb38b8498f988a7b2783c17d9c1a602a017f79dc4e965d5f48eb
Analyzer Verdict Alert openphish Tencent
fortinet Phishing
GET /js/script.js HTTP/1.1
Host: kanok.alphagg7.cyou
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kanok.alphagg7.cyou/
HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 12:51:46 GMT
Server: Apache
Last-Modified: Tue, 31 Jan 2023 14:23:05 GMT
Accept-Ranges: bytes
Content-Length: 1544
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/javascript
push.services.mozilla.com/
35.161.26.194101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 35.161.26.194:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: BJvbA2fjkD1++GA9wGPv8w==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: X0yY+uhCtkc1WSVmL3o4jbT1XR0=
ocsp.digicert.cn/
47.246.44.205200 OK 471 B IP 47.246.44.205:0
ASN #24429 Zhejiang Taobao Network Co.,Ltd
Hash 23b497e110ea936568d5d51d66f9f621
0117812a916c0536d20d97150b8a4d0c3f348a78
8196fd6f0e94e790234ae8091a725b3d77f43d4e0faebc483039e9e6f702db2b
POST / HTTP/1.1
Host: ocsp.digicert.cn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Tengine
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Date: Sat, 04 Feb 2023 12:51:47 GMT
Last-Modified: Sat, 04 Feb 2023 11:36:55 GMT
ETag: "63de4357-1d7"
Expires: Mon, 06 Feb 2023 11:36:55 GMT
Cache-Control: max-age=168308
Accept-Ranges: bytes
Ali-Swift-Global-Savetime: 1675515107
Via: cache21.l2de2[4,4,200-0,M], cache21.l2de2[5,0], cache5.se1[25,24,200-0,M], cache5.se1[27,0]
X-Cache: MISS TCP_MISS dirn:-2:-2
X-Swift-SaveTime: Sat, 04 Feb 2023 12:51:47 GMT
X-Swift-CacheTime: 0
Timing-Allow-Origin: *
EagleId: 2ff62c9916755151079537127e
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash c14d3cf8ade0150a711f094be32ac474
11e7fb5487d364c5392e1594e09f5b49831043ea
2a98ce39894b7d9befdba3916467bc95962376d0b308103e0a1eea36c0bc2302
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "2A98CE39894B7D9BEFDBA3916467BC95962376D0B308103E0A1EEA36C0BC2302"
Last-Modified: Fri, 03 Feb 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7305
Expires: Sat, 04 Feb 2023 14:53:33 GMT
Date: Sat, 04 Feb 2023 12:51:48 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F10640252-429d-4110-bf18-1908ac233402.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F10640252-429d-4110-bf18-1908ac233402.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 392b61306c346508d3ac4a2f28218f9c
d2de32b52e0d3f4fc6acaf687b3521294b01dc03
018712a4d6734b84ac1777124f97dae4d93b1e5b297a5dcfe0955b52710b8a35
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F10640252-429d-4110-bf18-1908ac233402.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10253
x-amzn-requestid: a90cb6b3-8a72-4b4b-b4f5-6dafc8c6752a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fyD7GGv5IAMFu8A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dd8046-3ca59e7c52800a4e44bda8fd;Sampled=0
x-amzn-remapped-date: Fri, 03 Feb 2023 21:44:38 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: G8F3Fflod6HB4QFtjpD09xzi-2LKPw_DBJT0PKYKU3bs3pvOwO_LRw==
via: 1.1 9c60d6224ac0b44e908b5c9dcf70e9a4.cloudfront.net (CloudFront), 1.1 caf6806821bc479b28a6f1ce3043b8a6.cloudfront.net (CloudFront), 1.1 google
date: Fri, 03 Feb 2023 22:10:32 GMT
age: 52876
etag: "d2de32b52e0d3f4fc6acaf687b3521294b01dc03"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2ec84086-8ac2-4887-bc81-86003255ab99.jpeg
34.120.237.76200 OK 5.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2ec84086-8ac2-4887-bc81-86003255ab99.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash e5b4e4f15da3323c73974c3f1cdb5d74
1f14971d0cf979cc34ff191849dc43d86e8ac463
5893d7e5b2fd9de92829b303c42d0c07ff32b3f6b8705b6f5b4a784315c8808e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2ec84086-8ac2-4887-bc81-86003255ab99.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5174
x-amzn-requestid: 35630c70-3bad-47b4-94bb-09c873632194
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fyD7EFAHIAMFQQQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dd8046-317b1fbb3bee0f377697bf3d;Sampled=0
x-amzn-remapped-date: Fri, 03 Feb 2023 21:44:38 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: OD5cy75AkNMwTIvIool2nKbKgr5Jpo1Plm_X_YPr3rdPbg86_V2fdA==
via: 1.1 112c6b3f9aea37a6cb00b7d933e5af6e.cloudfront.net (CloudFront), 1.1 e4d3d5aafc7d7d582423c073065ab562.cloudfront.net (CloudFront), 1.1 google
date: Fri, 03 Feb 2023 22:10:21 GMT
age: 52887
etag: "1f14971d0cf979cc34ff191849dc43d86e8ac463"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
cdn.midasbuy.com/oversea_web/static/css/buypage.c6deb7d4.css?max_age=864000
101.33.10.108200 OK 14 kB URL HTTP/2 cdn.midasbuy.com/oversea_web/static/css/buypage.c6deb7d4.css?max_age=864000
IP 101.33.10.108:0
ASN #132203 Tencent Building, Kejizhongyi Avenue
File type ASCII text, with very long lines (43313), with no line terminators
Hash 926c2d1e31cdbea3c9e001c8b3055de8
b967ec3a041c2c07b9768ae09c37fa10b11a90d7
367f67cbf5b073dc47a0434e089f81dc57171011634b5446ffa498b63cd3d068
GET /oversea_web/static/css/buypage.c6deb7d4.css?max_age=864000 HTTP/1.1
Host: cdn.midasbuy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://kanok.alphagg7.cyou/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: NWSs
date: Sat, 04 Feb 2023 12:51:47 GMT
content-type: text/css
content-length: 13829
cache-control: max-age=864000
expires: Tue, 14 Feb 2023 12:51:47 GMT
last-modified: Fri, 21 Oct 2022 12:53:18 GMT
content-encoding: gzip
x-nws-log-uuid: 6d9eb804-fb59-49fd-a9d0-5b7823de0c2e
x-cache-lookup: Hit From MemCache Gz
accept-ranges: bytes
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcae6042d-d677-4e39-b4e4-858988eb847b.jpeg
34.120.237.76200 OK 9.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcae6042d-d677-4e39-b4e4-858988eb847b.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash f7101f6e43855cb76ce48271a847ffbd
8e674830a97d8ce3818132fda197db4f0289d316
e78a83a4024e238bcdec3b9c4d5c12a99f49aabd57e34952f6a4cc8ed4422f55
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcae6042d-d677-4e39-b4e4-858988eb847b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9141
x-amzn-requestid: ed7db574-6bca-4f3e-8879-c3e836549339
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fyD8zE5lIAMF1HA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dd8051-4480112f11d4ced0037d1ad8;Sampled=0
x-amzn-remapped-date: Fri, 03 Feb 2023 21:44:49 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 6kDIOqhM4aVL80sF02uFu2TuGbiBE7_L_S2W7x-P46hO5YZFmuL9nQ==
via: 1.1 da5952aa802df39905ceb16592e9698a.cloudfront.net (CloudFront), 1.1 d8792dbd3191bbe722eba5b536b979c8.cloudfront.net (CloudFront), 1.1 google
date: Fri, 03 Feb 2023 22:13:30 GMT
age: 52698
etag: "8e674830a97d8ce3818132fda197db4f0289d316"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
cdn.midasbuy.com/oversea_web/static/js/auto-report2.0.2.umd.js
101.33.10.108200 OK 1.9 kB URL HTTP/2 cdn.midasbuy.com/oversea_web/static/js/auto-report2.0.2.umd.js
IP 101.33.10.108:0
ASN #132203 Tencent Building, Kejizhongyi Avenue
File type ASCII text, with very long lines (5710)
Hash ca639e9dd4b3048f93975cf005db7ea8
9924f934bb518a191b0ce9af1762c0c1018c0ae0
be0efbfd0da28bbc3cef33a2d61b17693241e357d94994323113af669cfcdf6b
GET /oversea_web/static/js/auto-report2.0.2.umd.js HTTP/1.1
Host: cdn.midasbuy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://kanok.alphagg7.cyou/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: NWSs
date: Sat, 04 Feb 2023 12:51:47 GMT
content-type: application/javascript
content-length: 1930
cache-control: max-age=600
expires: Sat, 04 Feb 2023 13:01:47 GMT
last-modified: Mon, 22 Nov 2021 11:18:46 GMT
content-encoding: gzip
x-nws-log-uuid: a9d88c58-23f8-4d74-934e-eebcc6e0a95f
x-cache-lookup: Hit From MemCache Gz
accept-ranges: bytes
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F64144d1c-f524-496f-8b52-ba63714dbfc5.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F64144d1c-f524-496f-8b52-ba63714dbfc5.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash e366b32074025aaf60bbae8bdb08d330
a52c2883bad98fa20333aa639a5dd3a5bf544c8e
9d661c26effaec9efee16833f6459d6ecbe4f77b822c9c46e2a6433bda816e5c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F64144d1c-f524-496f-8b52-ba63714dbfc5.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11565
x-amzn-requestid: 87a84ffd-1176-4656-aac4-e98f38ec2cd9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fboIrFGboAMFyyQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d48704-162ed8114aa1809204500548;Sampled=0
x-amzn-remapped-date: Sat, 28 Jan 2023 02:23:00 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: lsQxPtozrh2Ty1T-3d-1crDfi8HgVKRafOXb1UFl033bCx3kAzTS7w==
via: 1.1 d83ae0e1ba84e92e58bc1efc23a0c652.cloudfront.net (CloudFront), 1.1 caf6806821bc479b28a6f1ce3043b8a6.cloudfront.net (CloudFront), 1.1 google
date: Fri, 03 Feb 2023 21:48:04 GMT
age: 54224
etag: "a52c2883bad98fa20333aa639a5dd3a5bf544c8e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
cdn.midasbuy.com/oversea_web/static/js/loginSdk2.0.1.42f19978.js
101.33.10.108200 OK 9.3 kB URL HTTP/2 cdn.midasbuy.com/oversea_web/static/js/loginSdk2.0.1.42f19978.js
IP 101.33.10.108:0
ASN #132203 Tencent Building, Kejizhongyi Avenue
File type ASCII text, with very long lines (20491)
Hash 89ae08dd745c430583731d07035ac01a
e55d211504197727a15452b8690eff5bfbeda8b6
ac41a6d0c1790f52a79cd6b3ae29a9aec8043dfb039a6dacc9bcc2e0fc63e9ea
GET /oversea_web/static/js/loginSdk2.0.1.42f19978.js HTTP/1.1
Host: cdn.midasbuy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://kanok.alphagg7.cyou/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: NWSs
date: Sat, 04 Feb 2023 12:51:47 GMT
content-type: application/javascript
content-length: 9329
cache-control: max-age=600
expires: Sat, 04 Feb 2023 13:01:47 GMT
last-modified: Wed, 27 Jul 2022 09:04:48 GMT
content-encoding: gzip
x-nws-log-uuid: 8cd62904-5e51-4c19-836a-41e95a0b88db
x-cache-lookup: Hit From MemCache Gz
accept-ranges: bytes
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8b2d6920-2a79-45a8-b007-d36cc875c52f.jpeg
34.120.237.76200 OK 9.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8b2d6920-2a79-45a8-b007-d36cc875c52f.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 3ac51fd6789cbe19c2d484c9022b0e39
bcba22a7b7f5dd1f59fffd1027e5d7002cecb6e9
300b5e50cb910f9f4905ee7313d98763b68f85f5874db499cc94469fb14cabfe
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8b2d6920-2a79-45a8-b007-d36cc875c52f.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9500
x-amzn-requestid: 8fe94388-e8d9-4329-b73a-e9a356df76bb
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fyD9QEA1IAMF3Ug=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dd8054-51f954ac4bec16d1055e38f5;Sampled=0
x-amzn-remapped-date: Fri, 03 Feb 2023 21:44:52 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: FkTJ6wQ4eFYBPDyS0l5vLeWvHHiQIx-cYyFzT4ggHJ8M5Gg3dozFxQ==
via: 1.1 8f22423015641505b8c857a37450d6c0.cloudfront.net (CloudFront), 1.1 6a9b42e38e76b7d4a4044ebe0e0eca08.cloudfront.net (CloudFront), 1.1 google
date: Fri, 03 Feb 2023 22:30:36 GMT
age: 51672
etag: "bcba22a7b7f5dd1f59fffd1027e5d7002cecb6e9"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3a6c7026-85a2-4419-bd6b-ba1bac463dda.jpeg
34.120.237.76200 OK 8.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3a6c7026-85a2-4419-bd6b-ba1bac463dda.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 6661b7263315f5eb3cd2465f671e1fcd
b7b5831c6b3ccc41d7a980b6088adc10ff8785f1
eb25507950d81db4b54a1af7fadaceee1bcff780eb28b6a04dbfb3886785f5b7
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3a6c7026-85a2-4419-bd6b-ba1bac463dda.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8527
x-amzn-requestid: f95a2821-ae89-4ea9-93b2-43e570285df3
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fyEC3FyboAMFe0A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dd8078-7e2177f11d5715d4092cad2c;Sampled=0
x-amzn-remapped-date: Fri, 03 Feb 2023 21:45:28 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: dcFgY5x3Ef0J__7wGn3llTjZ9as5nX1H4HErIT3VlKfeQaQTjymW2g==
via: 1.1 a4fe306096165bb1e86e69365dc8fac2.cloudfront.net (CloudFront), 1.1 a3bd0eb50c22e4d5fbda56a30b96002c.cloudfront.net (CloudFront), 1.1 google
date: Fri, 03 Feb 2023 22:10:33 GMT
etag: "b7b5831c6b3ccc41d7a980b6088adc10ff8785f1"
content-type: image/jpeg
age: 52875
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
cdn.midasbuy.com/oversea_web/static/js/footer.e4b5b316.js
101.33.10.108200 OK 60 kB URL HTTP/2 cdn.midasbuy.com/oversea_web/static/js/footer.e4b5b316.js
IP 101.33.10.108:0
ASN #132203 Tencent Building, Kejizhongyi Avenue
File type Unicode text, UTF-8 text, with very long lines (65389), with no line terminators
Hash 9fc11dff3588007a30ee43dfdc065bfc
06e63aee0d919fa245e40699ce4cae9890105973
8a9520b20500594d8850df6ff458b620c84f9fa916176b78f10f38ef7238a558
GET /oversea_web/static/js/footer.e4b5b316.js HTTP/1.1
Host: cdn.midasbuy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://kanok.alphagg7.cyou/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: NWSs
date: Sat, 04 Feb 2023 12:51:47 GMT
content-type: application/javascript
content-length: 60087
cache-control: max-age=600
expires: Sat, 04 Feb 2023 13:01:47 GMT
last-modified: Mon, 10 Oct 2022 09:10:04 GMT
content-encoding: gzip
x-nws-log-uuid: 463be164-73f1-42db-be2f-787f14cf30f8
x-cache-lookup: Hit From MemCache Gz
accept-ranges: bytes
X-Firefox-Spdy: h2
cdn.midasbuy.com/oversea_web/static/js/polyfills.343f3206.js
101.33.10.108200 OK 39 kB URL HTTP/2 cdn.midasbuy.com/oversea_web/static/js/polyfills.343f3206.js
IP 101.33.10.108:0
ASN #132203 Tencent Building, Kejizhongyi Avenue
File type Unicode text, UTF-8 text, with very long lines (41984), with NEL line terminators
Hash 4cbfadc4ce9b7eecd6b57eb66d21f9ad
dcb5dd0d2a1b6837012e2ea803b4fc85d6bfcb40
0885f7f59f94c325089413dbba63a876978af62cf231dff8d1ce63d7c05b48f8
GET /oversea_web/static/js/polyfills.343f3206.js HTTP/1.1
Host: cdn.midasbuy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://kanok.alphagg7.cyou/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: NWSs
date: Sat, 04 Feb 2023 12:51:47 GMT
content-type: application/javascript
content-length: 38697
cache-control: max-age=600
expires: Sat, 04 Feb 2023 13:01:47 GMT
last-modified: Fri, 03 Feb 2023 11:21:09 GMT
content-encoding: gzip
x-nws-log-uuid: ffd9d8f2-7c21-40a9-8c4c-d0aa73a8c7b6
x-cache-lookup: Hit From MemCache Gz
access-control-allow-origin: https://www.midasbuy.com
timing-allow-origin: https://www.midasbuy.com
accept-ranges: bytes
X-Firefox-Spdy: h2
cdn.midasbuy.com/oversea_web/static/js/buypage.21333a60.js
101.33.10.108200 OK 92 kB URL HTTP/2 cdn.midasbuy.com/oversea_web/static/js/buypage.21333a60.js
IP 101.33.10.108:0
ASN #132203 Tencent Building, Kejizhongyi Avenue
File type Unicode text, UTF-8 text, with very long lines (65440), with no line terminators
Hash bc283bcfd39691ae5837fee637f0a390
a474fe8a3e3465bc583e43588f1818c71a271f2b
e0cdf0f22b005c8c51874edbfbfad3566024be109a774785c2a9b96f35d81654
GET /oversea_web/static/js/buypage.21333a60.js HTTP/1.1
Host: cdn.midasbuy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://kanok.alphagg7.cyou/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: NWSs
date: Sat, 04 Feb 2023 12:51:47 GMT
content-type: application/javascript
content-length: 91578
cache-control: max-age=600
expires: Sat, 04 Feb 2023 13:01:47 GMT
last-modified: Wed, 28 Sep 2022 10:48:08 GMT
content-encoding: gzip
x-nws-log-uuid: 84b4c854-9f15-4c47-993f-e06657907276
x-cache-lookup: Hit From MemCache Gz
accept-ranges: bytes
X-Firefox-Spdy: h2
cdn.midasbuy.com/apps/activity/js/api/api.global.js
101.33.10.108200 OK 7.1 kB URL HTTP/2 cdn.midasbuy.com/apps/activity/js/api/api.global.js
IP 101.33.10.108:0
ASN #132203 Tencent Building, Kejizhongyi Avenue
File type Unicode text, UTF-8 text, with very long lines (21300), with no line terminators
Hash 82243d335df3e1c787e4e83de582bec8
7375d41160d5bdbce60a5aa64fcf345e84329e2f
3e08d6a9b0d1ea16fa149e66274090cf12045b080e14e8d413690de55b890681
GET /apps/activity/js/api/api.global.js HTTP/1.1
Host: cdn.midasbuy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://kanok.alphagg7.cyou/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: NWSs
date: Sat, 04 Feb 2023 12:51:47 GMT
content-type: application/javascript
content-length: 7065
cache-control: max-age=600
expires: Sat, 04 Feb 2023 13:01:47 GMT
last-modified: Tue, 08 Nov 2022 08:32:33 GMT
content-encoding: gzip
x-nws-log-uuid: 3681f6b0-30fb-4ea7-942f-3a97fed06c53
x-cache-lookup: Hit From MemCache Gz
accept-ranges: bytes
X-Firefox-Spdy: h2
cdn.midasbuy.com/images/30ee99398.png
101.33.10.108200 OK 3.2 kB URL HTTP/2 cdn.midasbuy.com/images/30ee99398.png
IP 101.33.10.108:0
ASN #132203 Tencent Building, Kejizhongyi Avenue
File type PNG image data, 72 x 48, 8-bit/color RGBA, non-interlaced\012- data
Hash 0ee99398065f2d000412b89818bcde71
4fc6a30f8071825d30b1264d98ba255b9f2a4973
3ae92fbc0ab23564539add612992ce7382d1c8aaa2a802dcb65fd834f00e7962
GET /images/30ee99398.png HTTP/1.1
Host: cdn.midasbuy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://kanok.alphagg7.cyou/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: NWSs
date: Sat, 04 Feb 2023 12:51:47 GMT
content-type: image/png
content-length: 3234
cache-control: max-age=600
expires: Sat, 04 Feb 2023 13:01:47 GMT
last-modified: Sat, 08 May 2021 10:10:20 GMT
x-nws-log-uuid: eb9b1f0b-a7e2-4d8c-be0d-85df0b11d3d8
x-cache-lookup: Hit From MemCache
access-control-allow-origin: https://www.midasbuy.com
timing-allow-origin: https://www.midasbuy.com
accept-ranges: bytes
X-Firefox-Spdy: h2
cdn.midasbuy.com/images/new-user-icon723b1902.png
101.33.10.108200 OK 1.9 kB URL HTTP/2 cdn.midasbuy.com/images/new-user-icon723b1902.png
IP 101.33.10.108:0
ASN #132203 Tencent Building, Kejizhongyi Avenue
File type PNG image data, 54 x 54, 8-bit/color RGBA, non-interlaced\012- data
Hash 723b190253572be857ace6f62bfe9a4c
fff04a6f473db94364a4625a0dec6bdf22db128a
dfd2e7c94a93c8549c8a5e670d9cd5b4c7f3251c3a1e9ac32f119df54edd4fd0
GET /images/new-user-icon723b1902.png HTTP/1.1
Host: cdn.midasbuy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://kanok.alphagg7.cyou/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: NWSs
date: Sat, 04 Feb 2023 12:51:48 GMT
content-type: image/png
content-length: 1871
cache-control: max-age=600
expires: Sat, 04 Feb 2023 13:01:47 GMT
last-modified: Tue, 19 Jan 2021 03:11:03 GMT
x-nws-log-uuid: cab9b28d-68b7-445b-8d56-d9b817943147
x-cache-lookup: Hit From MemCache
access-control-allow-origin: https://www.midasbuy.com
timing-allow-origin: https://www.midasbuy.com
accept-ranges: bytes
X-Firefox-Spdy: h2
cdn.midasbuy.com/oversea_web/static/images/pc-logo.png
101.33.10.108200 OK 5.4 kB URL HTTP/2 cdn.midasbuy.com/oversea_web/static/images/pc-logo.png
IP 101.33.10.108:0
ASN #132203 Tencent Building, Kejizhongyi Avenue
File type PNG image data, 442 x 88, 8-bit/color RGBA, non-interlaced\012- data
Hash 5f404ea4792424375fa4b16a520555ed
8a3e448779780a80af9adc5081e4fa793e51f436
607b00f0fd839eb7f8250d7c4d0c0b4a31a08b32b2b8b5cbdd9fe3125b2eb985
GET /oversea_web/static/images/pc-logo.png HTTP/1.1
Host: cdn.midasbuy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://kanok.alphagg7.cyou/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: NWSs
date: Sat, 04 Feb 2023 12:51:48 GMT
content-type: image/png
content-length: 5403
cache-control: max-age=600
expires: Sat, 04 Feb 2023 13:01:47 GMT
last-modified: Fri, 03 Feb 2023 11:20:01 GMT
x-nws-log-uuid: 231b218b-565f-4910-acb1-5a3c0eda94d1
x-cache-lookup: Hit From MemCache
access-control-allow-origin: https://www.midasbuy.com
timing-allow-origin: https://www.midasbuy.com
accept-ranges: bytes
X-Firefox-Spdy: h2
cdn.midasbuy.com/oversea_web/static/images/big-new-close-icon.png
101.33.10.108200 OK 373 B URL HTTP/2 cdn.midasbuy.com/oversea_web/static/images/big-new-close-icon.png
IP 101.33.10.108:0
ASN #132203 Tencent Building, Kejizhongyi Avenue
File type PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced\012- data
Hash ac6d8315af721860a75fff92418d6526
5c42e591ee0612a12d15c42e3bee0a8bd2f981b0
fea99403dd834e7b61ee51fd481e0d4fcbca047aadd57c15d405513e0b7e8a99
GET /oversea_web/static/images/big-new-close-icon.png HTTP/1.1
Host: cdn.midasbuy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://kanok.alphagg7.cyou/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: NWSs
date: Sat, 04 Feb 2023 12:51:48 GMT
content-type: image/png
content-length: 373
cache-control: max-age=600
expires: Sat, 04 Feb 2023 13:01:47 GMT
last-modified: Fri, 03 Feb 2023 11:18:59 GMT
x-nws-log-uuid: 15a6d8be-d13a-4ed5-b2ce-c4c6dc2d82d9
x-cache-lookup: Hit From MemCache
access-control-allow-origin: https://www.midasbuy.com
timing-allow-origin: https://www.midasbuy.com
accept-ranges: bytes
X-Firefox-Spdy: h2
cdn.midasbuy.com/images/apps/pubgm/1599546030876PIvqwGaa.png
101.33.10.108200 OK 23 kB URL HTTP/2 cdn.midasbuy.com/images/apps/pubgm/1599546030876PIvqwGaa.png
IP 101.33.10.108:0
ASN #132203 Tencent Building, Kejizhongyi Avenue
File type PNG image data, 176 x 80, 8-bit/color RGBA, non-interlaced\012- data
Hash 8ace3e800a42dab3b5005957fe832725
0ec4560b0ae9b3db0a92af3da3e823bf1c0abab3
9d52dca805b5ef33f989d9d425ec8a11f8b726c98fbaca9d41d0c11c1f5fa3d0
GET /images/apps/pubgm/1599546030876PIvqwGaa.png HTTP/1.1
Host: cdn.midasbuy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://kanok.alphagg7.cyou/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: NWSs
date: Sat, 04 Feb 2023 12:51:48 GMT
content-type: image/png
content-length: 22824
cache-control: max-age=600
expires: Sat, 04 Feb 2023 13:01:47 GMT
last-modified: Thu, 17 Dec 2020 08:04:24 GMT
x-nws-log-uuid: a55105d1-426b-47c5-8517-932f281887a6
x-cache-lookup: Hit From MemCache
access-control-allow-origin: https://www.midasbuy.com
timing-allow-origin: https://www.midasbuy.com
accept-ranges: bytes
X-Firefox-Spdy: h2
cdn.midasbuy.com/oversea_web/static/images/footer/footer-fb-new.png
101.33.10.108200 OK 2.9 kB URL HTTP/2 cdn.midasbuy.com/oversea_web/static/images/footer/footer-fb-new.png
IP 101.33.10.108:0
ASN #132203 Tencent Building, Kejizhongyi Avenue
File type PNG image data, 72 x 72, 8-bit/color RGBA, non-interlaced\012- data
Hash 9be2c56c1a42fab7e2f5b764573dea4d
16f58f9b1f5fd465d3a8bc765b972eadb5166f24
cc8830f258c471b9cb15d69cda554d5181bd680996dd0041e3b9986b3b0769bf
GET /oversea_web/static/images/footer/footer-fb-new.png HTTP/1.1
Host: cdn.midasbuy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://kanok.alphagg7.cyou/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: NWSs
date: Sat, 04 Feb 2023 12:51:48 GMT
content-type: image/png
content-length: 2899
cache-control: max-age=600
expires: Sat, 04 Feb 2023 13:01:47 GMT
last-modified: Tue, 13 Jul 2021 11:45:46 GMT
x-nws-log-uuid: 5d015aff-b38b-43d2-953e-fa23b32cc873
x-cache-lookup: Hit From MemCache
access-control-allow-origin: https://www.midasbuy.com
timing-allow-origin: https://www.midasbuy.com
accept-ranges: bytes
X-Firefox-Spdy: h2
cdn.midasbuy.com/h5/overseah5/js/midas-oversea-h5page.js
101.33.10.108200 OK 12 kB URL HTTP/2 cdn.midasbuy.com/h5/overseah5/js/midas-oversea-h5page.js
IP 101.33.10.108:0
ASN #132203 Tencent Building, Kejizhongyi Avenue
File type Unicode text, UTF-8 text, with very long lines (36887)
Hash 6312e2a083aaa0357db398351a7f2002
83229042c2408cf5ad671fd9340b3ad451ef4e5b
c2026ff96cc6c503c9343bac70076d53fc78e9e10c9dbdfd68b09446d48d2264
GET /h5/overseah5/js/midas-oversea-h5page.js HTTP/1.1
Host: cdn.midasbuy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://kanok.alphagg7.cyou/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: NWSs
date: Sat, 04 Feb 2023 12:51:48 GMT
content-type: application/javascript
content-length: 11963
cache-control: max-age=600
expires: Sat, 04 Feb 2023 13:01:47 GMT
last-modified: Thu, 05 Jan 2023 09:24:23 GMT
content-encoding: gzip
x-nws-log-uuid: 97b29347-e792-4843-92fe-63426734dd4d
x-cache-lookup: Hit From MemCache Gz
access-control-allow-origin: https://www.midasbuy.com
timing-allow-origin: https://www.midasbuy.com
accept-ranges: bytes
X-Firefox-Spdy: h2
cdn.midasbuy.com/oversea_web/static/images/footer/footer-ins-new.png
101.33.10.108200 OK 7.6 kB URL HTTP/2 cdn.midasbuy.com/oversea_web/static/images/footer/footer-ins-new.png
IP 101.33.10.108:0
ASN #132203 Tencent Building, Kejizhongyi Avenue
File type PNG image data, 72 x 72, 8-bit/color RGBA, non-interlaced\012- data
Hash cc70b37c298ba08069f3c91b1df297fe
d7c87f6337f5a48f94190eca6a1b74eef9323f38
f2ad27dbb5397878470e88c31ca3c398f490f9e720ba0ca649ec6bf137f4d6bc
GET /oversea_web/static/images/footer/footer-ins-new.png HTTP/1.1
Host: cdn.midasbuy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://kanok.alphagg7.cyou/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: NWSs
date: Sat, 04 Feb 2023 12:51:48 GMT
content-type: image/png
content-length: 7625
cache-control: max-age=600
expires: Sat, 04 Feb 2023 13:01:47 GMT
last-modified: Tue, 13 Jul 2021 11:45:46 GMT
x-nws-log-uuid: 52e01d10-cd23-4617-91ea-7d4dae5dd87b
x-cache-lookup: Hit From MemCache
access-control-allow-origin: https://www.midasbuy.com
timing-allow-origin: https://www.midasbuy.com
accept-ranges: bytes
X-Firefox-Spdy: h2
cdn.midasbuy.com/oversea_web/static/images/footer/footer-twitter-new.png
101.33.10.108200 OK 5.2 kB URL HTTP/2 cdn.midasbuy.com/oversea_web/static/images/footer/footer-twitter-new.png
IP 101.33.10.108:0
ASN #132203 Tencent Building, Kejizhongyi Avenue
File type PNG image data, 72 x 72, 8-bit/color RGBA, non-interlaced\012- data
Hash e13a1bb9c094e0f585719ee363feaa31
09cc870cb5cb04adde778ea6c5f1184840844689
d6a605020cfb1091630b300b918363d2b61333c9f68c498eb6a73f323b35e1a7
GET /oversea_web/static/images/footer/footer-twitter-new.png HTTP/1.1
Host: cdn.midasbuy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://kanok.alphagg7.cyou/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: NWSs
date: Sat, 04 Feb 2023 12:51:48 GMT
content-type: image/png
content-length: 5151
cache-control: max-age=600
expires: Sat, 04 Feb 2023 13:01:47 GMT
last-modified: Tue, 13 Jul 2021 11:45:46 GMT
x-nws-log-uuid: 5a6bf30c-3215-423b-87eb-c4bb6b360169
x-cache-lookup: Hit From MemCache
access-control-allow-origin: https://www.midasbuy.com
timing-allow-origin: https://www.midasbuy.com
accept-ranges: bytes
X-Firefox-Spdy: h2
site-assets.fontawesome.com/releases/v6.1.1/css/all.css
104.18.22.52200 OK 86 kB URL HTTP/2 site-assets.fontawesome.com/releases/v6.1.1/css/all.css
IP 104.18.22.52:0
Hash 7ea8e5efc12e06a3a480d4545a0295a3
da9ec22706a2be0fb3b6d014cde48fd3e8ac125d
ac29cbb68733fa9a88775cb9637649ecb312f364d0b015b4bde9abdbc1262a56
GET /releases/v6.1.1/css/all.css HTTP/1.1
Host: site-assets.fontawesome.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://kanok.alphagg7.cyou/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 04 Feb 2023 12:51:45 GMT
content-type: text/css
x-amz-id-2: 332zxxLyeOA0bVHaDihkoNN8z15TpqoPHwlgSqo0+JYF9Eb1EbFs+dM6zZXyMDQJzxobqXmUSog=
x-amz-request-id: DBBNDRR8JR1BQ6BC
last-modified: Tue, 22 Mar 2022 15:39:41 GMT
etag: W/"325672b036bab9b57f6873aed5eccc43"
cache-control: max-age=31556926
cf-cache-status: HIT
age: 1440902
vary: Accept-Encoding
server: cloudflare
cf-ray: 79438a241ddbb51e-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
cdn.midasbuy.com/images/Discord.8277bca0.png
101.33.10.108200 OK 5.2 kB URL HTTP/2 cdn.midasbuy.com/images/Discord.8277bca0.png
IP 101.33.10.108:0
ASN #132203 Tencent Building, Kejizhongyi Avenue
File type PNG image data, 72 x 72, 8-bit/color RGBA, non-interlaced\012- data
Hash 8277bca0aac01af0b679d71f4de55459
e06892977682cd5f57c31245ff7cc8efb14c92f0
25157739816315d396c664fd1f45336d8ab8bf9d768aa911e93cbebc95614a58
GET /images/Discord.8277bca0.png HTTP/1.1
Host: cdn.midasbuy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://kanok.alphagg7.cyou/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: NWSs
date: Sat, 04 Feb 2023 12:51:48 GMT
content-type: image/png
content-length: 5224
cache-control: max-age=600
expires: Sat, 04 Feb 2023 13:01:47 GMT
last-modified: Fri, 22 Apr 2022 08:25:18 GMT
x-nws-log-uuid: c333cd4c-52eb-41c6-9964-803760acb11e
x-cache-lookup: Hit From MemCache
access-control-allow-origin: https://www.midasbuy.com
timing-allow-origin: https://www.midasbuy.com
accept-ranges: bytes
X-Firefox-Spdy: h2
cdn.midasbuy.com/images/footer-tiktok-white.7743a9ae.png
101.33.10.108200 OK 2.1 kB URL HTTP/2 cdn.midasbuy.com/images/footer-tiktok-white.7743a9ae.png
IP 101.33.10.108:0
ASN #132203 Tencent Building, Kejizhongyi Avenue
File type PNG image data, 72 x 72, 8-bit/color RGBA, non-interlaced\012- data
Hash 7743a9aef9d3b6d89f6567e7514036d4
08fea638e8c8f7641edaae510c80879686ddeb77
f10cdb32b8d7212970310db9166bb421eaea8128f1767604c22001fac1d5aa97
GET /images/footer-tiktok-white.7743a9ae.png HTTP/1.1
Host: cdn.midasbuy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://kanok.alphagg7.cyou/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: NWSs
date: Sat, 04 Feb 2023 12:51:48 GMT
content-type: image/png
content-length: 2135
cache-control: max-age=600
expires: Sat, 04 Feb 2023 13:01:47 GMT
last-modified: Mon, 26 Sep 2022 03:12:26 GMT
x-nws-log-uuid: 303fccca-c27a-415e-87f4-2d9b11c3f41d
x-cache-lookup: Hit From MemCache
access-control-allow-origin: https://www.midasbuy.com
timing-allow-origin: https://www.midasbuy.com
accept-ranges: bytes
X-Firefox-Spdy: h2
cdn.midasbuy.com/oversea_web/static/images/footer/footer-email-subscribe.png
101.33.10.108200 OK 3.3 kB URL HTTP/2 cdn.midasbuy.com/oversea_web/static/images/footer/footer-email-subscribe.png
IP 101.33.10.108:0
ASN #132203 Tencent Building, Kejizhongyi Avenue
File type PNG image data, 72 x 72, 8-bit/color RGBA, non-interlaced\012- data
Hash 150e097b432034e3fedf6443b4551a16
a4299dadb4feda18e484362ce6892c52b507d5e6
b9ca6c3a516ec9dfbe4f33e318d560f265836d51627cb9fa3d881062a2fd98e2
GET /oversea_web/static/images/footer/footer-email-subscribe.png HTTP/1.1
Host: cdn.midasbuy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://kanok.alphagg7.cyou/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: NWSs
date: Sat, 04 Feb 2023 12:51:48 GMT
content-type: image/png
content-length: 3349
cache-control: max-age=600
expires: Sat, 04 Feb 2023 13:01:47 GMT
last-modified: Fri, 03 Feb 2023 11:19:36 GMT
x-nws-log-uuid: af005b5a-ed4b-4bd3-b75c-5ac12a7f14ad
x-cache-lookup: Hit From MemCache
access-control-allow-origin: https://www.midasbuy.com
timing-allow-origin: https://www.midasbuy.com
accept-ranges: bytes
X-Firefox-Spdy: h2
cdn.midasbuy.com/images/footer-reddit.d66cdc0d.png
101.33.10.108200 OK 5.0 kB URL HTTP/2 cdn.midasbuy.com/images/footer-reddit.d66cdc0d.png
IP 101.33.10.108:0
ASN #132203 Tencent Building, Kejizhongyi Avenue
File type PNG image data, 72 x 72, 8-bit/color RGBA, non-interlaced\012- data
Hash d66cdc0d92659b0e64d7aefab70a60f6
f8dcf359bb72ed8aa3ef84a6d3f79102869a82f0
642703b53950fc841394918d79cbabec6060242e45c8ded41d324e7d6dce8924
GET /images/footer-reddit.d66cdc0d.png HTTP/1.1
Host: cdn.midasbuy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://kanok.alphagg7.cyou/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: NWSs
date: Sat, 04 Feb 2023 12:51:48 GMT
content-type: image/png
content-length: 5043
cache-control: max-age=600
expires: Sat, 04 Feb 2023 13:01:47 GMT
last-modified: Mon, 26 Sep 2022 03:12:26 GMT
x-nws-log-uuid: cb403554-d15e-44f1-bd71-de1c06fc44c8
x-cache-lookup: Hit From MemCache
access-control-allow-origin: https://www.midasbuy.com
timing-allow-origin: https://www.midasbuy.com
accept-ranges: bytes
X-Firefox-Spdy: h2
cdn.midasbuy.com/images/apps/pubgm/guide001.png
101.33.10.108200 OK 442 kB URL HTTP/2 cdn.midasbuy.com/images/apps/pubgm/guide001.png
IP 101.33.10.108:0
ASN #132203 Tencent Building, Kejizhongyi Avenue
File type PNG image data, 1338 x 754, 8-bit colormap, non-interlaced\012- data
Size 442 kB (442225 bytes)
Hash b79c6ea08e40d9d9533cd83db49587af
a33cabc012f0433bc6001b390313995aa35e0bdf
9fe15b168ab9a542ae9410fdfca0fa9101d64a4b0c40c64a8d976b26207ddd99
GET /images/apps/pubgm/guide001.png HTTP/1.1
Host: cdn.midasbuy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://kanok.alphagg7.cyou/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: NWSs
date: Sat, 04 Feb 2023 12:51:48 GMT
content-type: image/png
content-length: 442225
cache-control: max-age=600
expires: Sat, 04 Feb 2023 13:01:47 GMT
last-modified: Wed, 01 Dec 2021 10:12:01 GMT
x-nws-log-uuid: 542fbad5-fad8-4981-b10b-7231ac972b89
x-cache-lookup: Hit From MemCache
accept-ranges: bytes
X-Firefox-Spdy: h2
ocsp.digicert.cn/
47.246.44.205200 OK 471 B IP 47.246.44.205:0
ASN #24429 Zhejiang Taobao Network Co.,Ltd
Hash 23b497e110ea936568d5d51d66f9f621
0117812a916c0536d20d97150b8a4d0c3f348a78
8196fd6f0e94e790234ae8091a725b3d77f43d4e0faebc483039e9e6f702db2b
POST / HTTP/1.1
Host: ocsp.digicert.cn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Tengine
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Cache-Control: 'max-age=158059'
Date: Sat, 04 Feb 2023 12:51:48 GMT
Ali-Swift-Global-Savetime: 1675515108
Via: cache20.l2de2[193,192,200-0,M], cache20.l2de2[193,0], cache4.se1[214,214,200-0,M], cache4.se1[216,0]
X-Cache: MISS TCP_MISS dirn:-2:-2
X-Swift-SaveTime: Sat, 04 Feb 2023 12:51:48 GMT
X-Swift-CacheTime: 0
Timing-Allow-Origin: *
EagleId: 2ff62c9816755151079537492e
cdn.midasbuy.com/images/apps/pubgm/guide002.png
101.33.10.108200 OK 448 kB URL HTTP/2 cdn.midasbuy.com/images/apps/pubgm/guide002.png
IP 101.33.10.108:0
ASN #132203 Tencent Building, Kejizhongyi Avenue
File type PNG image data, 1338 x 750, 8-bit colormap, non-interlaced\012- data
Size 448 kB (448284 bytes)
Hash 597f725d1acdadf8ac263021465ed51b
47d931fbbf164780a8a71cdfd9d3cb53b5ca583a
46101013f8555231d5e1e2bb9b09c402a334d29323094101d6caff277afd5c31
GET /images/apps/pubgm/guide002.png HTTP/1.1
Host: cdn.midasbuy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://kanok.alphagg7.cyou/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: NWSs
date: Sat, 04 Feb 2023 12:51:48 GMT
content-type: image/png
content-length: 448284
cache-control: max-age=600
expires: Sat, 04 Feb 2023 13:01:47 GMT
last-modified: Wed, 01 Dec 2021 10:12:19 GMT
x-nws-log-uuid: 123fb85e-3f5f-40a9-96f3-58f4712372a3
x-cache-lookup: Hit From Disktank3
accept-ranges: bytes
X-Firefox-Spdy: h2
cdn.midasbuy.com/oversea_web/static/css/media.ac7e56d9.css?max_age=864000
101.33.10.108200 OK 50 kB URL HTTP/2 cdn.midasbuy.com/oversea_web/static/css/media.ac7e56d9.css?max_age=864000
IP 101.33.10.108:0
ASN #132203 Tencent Building, Kejizhongyi Avenue
File type ASCII text, with very long lines (65536), with no line terminators
Hash d575e2827c90b2419261bbcbdef91a84
17f0b77452b5ffcb71a4455fddeb0e7be0f1ff33
56220fdf5417172106a2074027a5295f35633c1f4dcc19cb26ea16c883e8a34f
GET /oversea_web/static/css/media.ac7e56d9.css?max_age=864000 HTTP/1.1
Host: cdn.midasbuy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://kanok.alphagg7.cyou/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: NWSs
date: Sat, 04 Feb 2023 12:51:48 GMT
content-type: text/css
content-length: 49706
cache-control: max-age=864000
expires: Tue, 14 Feb 2023 12:51:47 GMT
last-modified: Fri, 21 Oct 2022 12:53:20 GMT
content-encoding: gzip
x-nws-log-uuid: 3e4ee9ad-c43b-4b79-bae6-bf461d7a8bdc
x-cache-lookup: Hit From MemCache Gz
accept-ranges: bytes
X-Firefox-Spdy: h2
cdn.midasbuy.com/oversea_web/static/css/vendor.afc3f335.css?max_age=864000
101.33.10.108200 OK 235 kB URL HTTP/2 cdn.midasbuy.com/oversea_web/static/css/vendor.afc3f335.css?max_age=864000
IP 101.33.10.108:0
ASN #132203 Tencent Building, Kejizhongyi Avenue
File type ASCII text, with very long lines (65536), with no line terminators
Size 235 kB (234940 bytes)
Hash 87195a9c7eb6304c71df9e18747fba1a
f61a8d8a7451b2e96088a7f2d735ff810a881e61
6b48dba384b2d0026776a79b73ba699716c90855887bc341cb0b0152add754ca
GET /oversea_web/static/css/vendor.afc3f335.css?max_age=864000 HTTP/1.1
Host: cdn.midasbuy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://kanok.alphagg7.cyou/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: NWSs
date: Sat, 04 Feb 2023 12:51:48 GMT
content-type: text/css
content-length: 234940
cache-control: max-age=864000
expires: Tue, 14 Feb 2023 12:51:47 GMT
last-modified: Wed, 28 Sep 2022 10:45:20 GMT
content-encoding: gzip
x-nws-log-uuid: ddc7e5bd-22e3-4ab1-a524-b40d5c59aa88
x-cache-lookup: Hit From MemCache Gz
accept-ranges: bytes
X-Firefox-Spdy: h2
ocsp.digicert.cn/
47.246.44.205200 OK 471 B IP 47.246.44.205:0
ASN #24429 Zhejiang Taobao Network Co.,Ltd
Hash ce8e8a8e8e6f665e3b8ee6653f7047ad
356634dd2e1e3cffa40af3d91ea485cca1190df6
545f11fce2fb711d2765b497dc4ae6df7de8541bdff7952dd72c716456366f59
POST / HTTP/1.1
Host: ocsp.digicert.cn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Tengine
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Date: Sat, 04 Feb 2023 12:51:48 GMT
Last-Modified: Fri, 03 Feb 2023 14:18:47 GMT
ETag: "63dd17c7-1d7"
Expires: Sun, 05 Feb 2023 14:18:47 GMT
Cache-Control: max-age=91619
Accept-Ranges: bytes
Ali-Swift-Global-Savetime: 1675515108
Via: cache17.l2de2[273,272,200-0,M], cache17.l2de2[274,0], cache4.se1[297,297,200-0,M], cache4.se1[298,0]
X-Cache: MISS TCP_MISS dirn:-2:-2
X-Swift-SaveTime: Sat, 04 Feb 2023 12:51:48 GMT
X-Swift-CacheTime: 0
Timing-Allow-Origin: *
EagleId: 2ff62c9816755151079537490e
ocsp.digicert.cn/
47.246.44.205200 OK 471 B IP 47.246.44.205:0
ASN #24429 Zhejiang Taobao Network Co.,Ltd
Hash 23b497e110ea936568d5d51d66f9f621
0117812a916c0536d20d97150b8a4d0c3f348a78
8196fd6f0e94e790234ae8091a725b3d77f43d4e0faebc483039e9e6f702db2b
POST / HTTP/1.1
Host: ocsp.digicert.cn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Tengine
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Date: Sat, 04 Feb 2023 12:51:48 GMT
Last-Modified: Sat, 04 Feb 2023 11:36:55 GMT
ETag: "63de4357-1d7"
Expires: Mon, 06 Feb 2023 11:36:55 GMT
Cache-Control: max-age=168307
Accept-Ranges: bytes
Ali-Swift-Global-Savetime: 1675515108
Via: cache2.l2de2[312,311,200-0,M], cache2.l2de2[312,0], cache2.se1[333,333,200-0,M], cache2.se1[335,0]
X-Cache: MISS TCP_MISS dirn:-2:-2
X-Swift-SaveTime: Sat, 04 Feb 2023 12:51:48 GMT
X-Swift-CacheTime: 0
Timing-Allow-Origin: *
EagleId: 2ff62c9616755151079514090e
ocsp.digicert.cn/
47.246.44.205200 OK 471 B IP 47.246.44.205:0
ASN #24429 Zhejiang Taobao Network Co.,Ltd
Hash ce8e8a8e8e6f665e3b8ee6653f7047ad
356634dd2e1e3cffa40af3d91ea485cca1190df6
545f11fce2fb711d2765b497dc4ae6df7de8541bdff7952dd72c716456366f59
POST / HTTP/1.1
Host: ocsp.digicert.cn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Tengine
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Date: Sat, 04 Feb 2023 12:51:48 GMT
Last-Modified: Fri, 03 Feb 2023 14:18:47 GMT
ETag: "63dd17c7-1d7"
Expires: Sun, 05 Feb 2023 14:18:47 GMT
Cache-Control: max-age=91619
Accept-Ranges: bytes
Ali-Swift-Global-Savetime: 1675515108
Via: cache25.l2de2[321,321,200-0,M], cache25.l2de2[322,0], cache5.se1[345,344,200-0,M], cache5.se1[346,0]
X-Cache: MISS TCP_MISS dirn:-2:-2
X-Swift-SaveTime: Sat, 04 Feb 2023 12:51:48 GMT
X-Swift-CacheTime: 0
Timing-Allow-Origin: *
EagleId: 2ff62c9916755151079537128e
ocsp.digicert.cn/
47.246.44.205200 OK 471 B IP 47.246.44.205:0
ASN #24429 Zhejiang Taobao Network Co.,Ltd
Hash 23b497e110ea936568d5d51d66f9f621
0117812a916c0536d20d97150b8a4d0c3f348a78
8196fd6f0e94e790234ae8091a725b3d77f43d4e0faebc483039e9e6f702db2b
POST / HTTP/1.1
Host: ocsp.digicert.cn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Tengine
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Date: Sat, 04 Feb 2023 12:51:48 GMT
Last-Modified: Sat, 04 Feb 2023 11:36:55 GMT
ETag: "63de4357-1d7"
Expires: Mon, 06 Feb 2023 11:36:55 GMT
Cache-Control: max-age=168307
Accept-Ranges: bytes
Ali-Swift-Global-Savetime: 1675515108
Via: cache15.l2de2[290,289,200-0,M], cache15.l2de2[291,0], cache5.se1[313,313,200-0,M], cache5.se1[315,0]
X-Cache: MISS TCP_MISS dirn:-2:-2
X-Swift-SaveTime: Sat, 04 Feb 2023 12:51:48 GMT
X-Swift-CacheTime: 0
Timing-Allow-Origin: *
EagleId: 2ff62c9916755151079887170e
cdn.midasbuy.com/js/x-midas/kEc9hjFh5DQJbz_iPEWrfFxadMVk4PbLDS-5P8jE73pfdUuDwNGKNVZjdEztcHdofAVaHXo6zRGXgLwuvsK_afAEj6w_mKyiUmq-7AesIRU~.js?max_age=31536000
101.33.10.108200 OK 20 kB URL HTTP/2 cdn.midasbuy.com/js/x-midas/kEc9hjFh5DQJbz_iPEWrfFxadMVk4PbLDS-5P8jE73pfdUuDwNGKNVZjdEztcHdofAVaHXo6zRGXgLwuvsK_afAEj6w_mKyiUmq-7AesIRU~.js?max_age=31536000
IP 101.33.10.108:0
ASN #132203 Tencent Building, Kejizhongyi Avenue
File type ASCII text, with very long lines (55927), with no line terminators
Hash aaa79c21027cbb6e68d4a74d70dcf1a5
f72eb38cd5dea1a189c37796a21fa6a21460d42a
ce0ef795a2e529b7e7e18d3b0916ba4c3cce054edf608b4407469d1ff34b59ab
GET /js/x-midas/kEc9hjFh5DQJbz_iPEWrfFxadMVk4PbLDS-5P8jE73pfdUuDwNGKNVZjdEztcHdofAVaHXo6zRGXgLwuvsK_afAEj6w_mKyiUmq-7AesIRU~.js?max_age=31536000 HTTP/1.1
Host: cdn.midasbuy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://kanok.alphagg7.cyou/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: NWSs
date: Sat, 04 Feb 2023 12:51:48 GMT
content-type: application/javascript
content-length: 20219
cache-control: max-age=31536000
expires: Sun, 04 Feb 2024 12:51:47 GMT
last-modified: Wed, 24 Mar 2021 09:43:44 GMT
content-encoding: gzip
x-nws-log-uuid: 644500cd-fa0f-42ed-a0d9-fc0a4d66880d
x-cache-lookup: Hit From MemCache Gz
accept-ranges: bytes
X-Firefox-Spdy: h2
cdn.midasbuy.com/oversea_web/static/js/midas.runtimev1.js
101.33.10.108200 OK 109 kB URL HTTP/2 cdn.midasbuy.com/oversea_web/static/js/midas.runtimev1.js
IP 101.33.10.108:0
ASN #132203 Tencent Building, Kejizhongyi Avenue
File type Unicode text, UTF-8 text, with very long lines (65535), with no line terminators
Size 109 kB (109236 bytes)
Hash 8f25f80100331102339bd30f0fa5cbd6
5b61fbcd7973e2176213f5cc6c850976405be317
a34fe73d2aa582155eced10e43b5fe2929911f33ee033276d77277618dad0a14
GET /oversea_web/static/js/midas.runtimev1.js HTTP/1.1
Host: cdn.midasbuy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://kanok.alphagg7.cyou/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: NWSs
date: Sat, 04 Feb 2023 12:51:48 GMT
content-type: application/javascript
content-length: 109236
cache-control: max-age=600
expires: Sat, 04 Feb 2023 13:01:47 GMT
last-modified: Tue, 22 Nov 2022 14:30:27 GMT
content-encoding: gzip
x-nws-log-uuid: 95c3c50d-8812-431c-9a65-d88f17102d84
x-cache-lookup: Hit From MemCache Gz
accept-ranges: bytes
X-Firefox-Spdy: h2
kepler.captcha.qcloud.com/tencent-kepler.js?appId=9865970
129.226.107.210200 OK 57 kB URL HTTP/1.1 kepler.captcha.qcloud.com/tencent-kepler.js?appId=9865970
IP 129.226.107.210:0
ASN #132203 Tencent Building, Kejizhongyi Avenue
File type Unicode text, UTF-8 text, with very long lines (65489), with no line terminators
Hash 1b75d80aec6b42ea2bd3dd7a614285e2
f08ca6b401628706324caf14a3997995d332cb64
b118a19c3320176bb54941329d784beda5b814667ac5fc2b2ba363a70e8aa765
GET /tencent-kepler.js?appId=9865970 HTTP/1.1
Host: kepler.captcha.qcloud.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://kanok.alphagg7.cyou/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 12:51:48 GMT
Content-Type: text/javascript
Content-Length: 56621
Connection: keep-alive
Content-Encoding: gzip
Server: tencent http server
Accept-Ranges: bytes
P3P: CP=CAO PSA OUR
Cache-Control: max-age=600
ocsp.digicert.cn/
47.246.44.205200 OK 471 B IP 47.246.44.205:0
ASN #24429 Zhejiang Taobao Network Co.,Ltd
Hash 7615233745915ddcb84780721b32469e
fd3861ec72b402bc5441a7d824064bb8d2a176a9
144892e70a1639ea407ff3ac858b3644b8fefa02c097b62ad25ea3c554c36ca3
POST / HTTP/1.1
Host: ocsp.digicert.cn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Tengine
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Date: Sat, 04 Feb 2023 12:51:49 GMT
Last-Modified: Sat, 04 Feb 2023 01:36:57 GMT
ETag: "63ddb6b9-1d7"
Expires: Mon, 06 Feb 2023 01:36:57 GMT
Cache-Control: max-age=132308
Accept-Ranges: bytes
Ali-Swift-Global-Savetime: 1675515109
Via: cache5.l2de2[187,187,200-0,M], cache5.l2de2[189,0], cache4.se1[210,209,200-0,M], cache4.se1[212,0]
X-Cache: MISS TCP_MISS dirn:-2:-2
X-Swift-SaveTime: Sat, 04 Feb 2023 12:51:49 GMT
X-Swift-CacheTime: 0
Timing-Allow-Origin: *
EagleId: 2ff62c9816755151095941617e
cdn-go.cn/aegis/aegis-sdk/latest/aegis.min.js?_bid=3977
101.33.10.29200 OK 20 kB URL HTTP/2 cdn-go.cn/aegis/aegis-sdk/latest/aegis.min.js?_bid=3977
IP 101.33.10.29:0
ASN #132203 Tencent Building, Kejizhongyi Avenue
File type Unicode text, UTF-8 text, with very long lines (62295)
Hash e650e286458aeef6386bccb1dfa2c337
4529f79fa4b1d969b83d2df7ea68bf2bedad2526
e80dda747ad1b76a894b57f05f1218b7763c9868211597fe54e09235e91a3f3c
GET /aegis/aegis-sdk/latest/aegis.min.js?_bid=3977 HTTP/1.1
Host: cdn-go.cn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://kanok.alphagg7.cyou/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: NWSs
date: Sat, 04 Feb 2023 12:51:49 GMT
content-type: application/javascript
content-length: 19776
cache-control: max-age=666
expires: Sat, 04 Feb 2023 13:02:55 GMT
last-modified: Thu, 12 Jan 2023 08:38:45 GMT
content-encoding: gzip
x-nws-log-uuid: 39d07d14-e809-4c16-bf53-9363296eec40
vary: Origin
is-immutable-in-the-future: false
access-control-allow-origin: *
timing-allow-origin: *
x-cache-lookup: Hit From MemCache Gz
accept-ranges: bytes
X-Firefox-Spdy: h2
www.pubgmobile.com/id/event/royalepass10/images/icon_logo.jpg
23.36.76.250200 OK 75 kB URL HTTP/2 www.pubgmobile.com/id/event/royalepass10/images/icon_logo.jpg
IP 23.36.76.250:0
ASN #20940 Akamai International B.V.
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 500x500, components 3\012- data
Hash 92c19dc5bd77186e5bb8ed35ce668979
646bf70d1c669c7d7388f95a0a33755e4721289c
0d9cf7eb8fb12be77685134e63f7dae9a95fbf9306ae0529bd0347582d18a8ef
GET /id/event/royalepass10/images/icon_logo.jpg HTTP/1.1
Host: www.pubgmobile.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://kanok.alphagg7.cyou/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-type: image/jpeg
content-length: 75149
last-modified: Wed, 15 Sep 2021 06:46:59 GMT
etag: "614196e3-1258d"
accept-ranges: bytes
cache-control: max-age=133
expires: Sat, 04 Feb 2023 12:54:02 GMT
date: Sat, 04 Feb 2023 12:51:49 GMT
X-Firefox-Spdy: h2
i.postimg.cc/3wBVgZTz/login-Method1.png
162.19.88.68200 OK 29 kB URL HTTP/2 i.postimg.cc/3wBVgZTz/login-Method1.png
IP 162.19.88.68:0
File type PNG image data, 604 x 158, 8-bit/color RGBA, non-interlaced\012- data
Hash 74190b93fc4f5d88f0c8e6411ba20bd8
89ce2ecb660a90b8e6ed1b335443d7767c59f28a
092a3cd5f86b3f039feefdeb86694cd16ae545af214cfda614bdbbe2d1bde401
GET /3wBVgZTz/login-Method1.png HTTP/1.1
Host: i.postimg.cc
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://kanok.alphagg7.cyou/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 12:51:49 GMT
content-type: image/png
content-length: 28789
last-modified: Sun, 26 Dec 2021 01:51:44 GMT
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
access-control-allow-origin: *
access-control-allow-methods: GET, OPTIONS
accept-ranges: bytes
X-Firefox-Spdy: h2
i.postimg.cc/dtyfWFF2/login-Method2.png
162.19.88.68200 OK 4.3 kB URL HTTP/2 i.postimg.cc/dtyfWFF2/login-Method2.png
IP 162.19.88.68:0
File type PNG image data, 400 x 400, 8-bit/color RGBA, non-interlaced\012- data
Hash fef946b8bba756359e2a1e87ccd915ea
acc364946077b0e32b2343474ce4066ad3ee524c
1be5d05ce6faad469f7f9c5a5879f2d9f8d267b60eb394e92c19217268bcea8f
GET /dtyfWFF2/login-Method2.png HTTP/1.1
Host: i.postimg.cc
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://kanok.alphagg7.cyou/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 12:51:49 GMT
content-type: image/png
content-length: 4298
last-modified: Sun, 26 Dec 2021 01:53:00 GMT
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
access-control-allow-origin: *
access-control-allow-methods: GET, OPTIONS
accept-ranges: bytes
X-Firefox-Spdy: h2
mp.midasbuy.com/cdn/upload/Activity_1668582829_GLONSO/9fd0c624ea5b92aac211b32ca479ac5a.png?imageMogr2/format/webp
3.126.195.33200 OK 24 kB URL HTTP/2 mp.midasbuy.com/cdn/upload/Activity_1668582829_GLONSO/9fd0c624ea5b92aac211b32ca479ac5a.png?imageMogr2/format/webp
IP 3.126.195.33:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash a2c8f15bcae0a15db44d70da6f31d1d1
360e618f235e91712d483aa893ef4f8bcf8f10a0
05d17c211af98894b8d8e7cbc02fa5ec2aebf2ac663970e50906b2dd007a39d2
GET /cdn/upload/Activity_1668582829_GLONSO/9fd0c624ea5b92aac211b32ca479ac5a.png?imageMogr2/format/webp HTTP/1.1
Host: mp.midasbuy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://kanok.alphagg7.cyou/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
last-modified: Tue, 17 Jan 2023 11:32:26 GMT
content-type: image/webp
access-control-allow-origin: *
date: Sat, 04 Feb 2023 11:19:55 GMT
server: tencent-cos
size: 23794
timing-allow-origin: *
x-datasrc: 1
x-delay: 15600 us
x-info: real data
x-rtflag: 1
x-cos-request-id: NjNkZTNmNWJfZGVlZjc4MGJfMTVkMjNfZTQxMjEzMA==
age: 5514
content-length: 23794
accept-ranges: bytes
x-nws-log-uuid: 8463893870006761444
x-cache-lookup: Cache Hit
cache-control: max-age=2592000
X-Firefox-Spdy: h2
kanok.alphagg7.cyou/img/3.png
20.38.4.152200 OK 21 kB URL HTTP/1.1 kanok.alphagg7.cyou/img/3.png
IP 20.38.4.152:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type PNG image data, 500 x 500, 8-bit colormap, non-interlaced\012- data
Hash c514c257d2b15e66f0aeadb38c7aa3f5
91fb9852bc3a40bd5aa423c8879ac51dbbfb461e
cbfb417c25a65f8a0b361aace9b56e8d67f6f97a33fb650fd0fb71aa52ae8bdd
Analyzer Verdict Alert openphish Tencent
GET /img/3.png HTTP/1.1
Host: kanok.alphagg7.cyou
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kanok.alphagg7.cyou/
HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 12:51:49 GMT
Server: Apache
Last-Modified: Wed, 25 Jan 2023 23:59:06 GMT
Accept-Ranges: bytes
Content-Length: 20707
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: image/png
kanok.alphagg7.cyou/img/2.png
20.38.4.152200 OK 32 kB URL HTTP/1.1 kanok.alphagg7.cyou/img/2.png
IP 20.38.4.152:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type PNG image data, 500 x 500, 8-bit colormap, non-interlaced\012- data
Hash 1690f57a208365786b7386a0dc48bc4f
dc2b15de8b8238659ed406aebbc9cec0846ffede
7472dbff15779907e894181accaf5d548e233ede69fe49ed1f545eb93a42abad
Analyzer Verdict Alert openphish Tencent
GET /img/2.png HTTP/1.1
Host: kanok.alphagg7.cyou
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kanok.alphagg7.cyou/
HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 12:51:49 GMT
Server: Apache
Last-Modified: Wed, 25 Jan 2023 23:59:06 GMT
Accept-Ranges: bytes
Content-Length: 32058
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: image/png
kanok.alphagg7.cyou/img/7.png
20.38.4.152200 OK 21 kB URL HTTP/1.1 kanok.alphagg7.cyou/img/7.png
IP 20.38.4.152:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type PNG image data, 500 x 500, 8-bit colormap, non-interlaced\012- data
Hash 80a11f2bffebd50e559905a02023ef60
f25f21f39298277ef7eafa647e4d98637ddbd313
c941d28fecca3ead456c28f13e76c620703e9e271d1e5c5da6460e2b773a7c9a
Analyzer Verdict Alert openphish Tencent
GET /img/7.png HTTP/1.1
Host: kanok.alphagg7.cyou
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kanok.alphagg7.cyou/
HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 12:51:49 GMT
Server: Apache
Last-Modified: Wed, 25 Jan 2023 23:59:06 GMT
Accept-Ranges: bytes
Content-Length: 20797
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: image/png
kanok.alphagg7.cyou/img/1.png
20.38.4.152200 OK 29 kB URL HTTP/1.1 kanok.alphagg7.cyou/img/1.png
IP 20.38.4.152:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type PNG image data, 500 x 500, 8-bit colormap, non-interlaced\012- data
Hash e4818580738ff01c6c546ffb855fe232
c8136a371232dee7e83e8f6726464d297a204f26
c238d91a35dc681081052f5754c172a551784b2c00711d0cbb86ec8dfecb2511
Analyzer Verdict Alert openphish Tencent
GET /img/1.png HTTP/1.1
Host: kanok.alphagg7.cyou
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kanok.alphagg7.cyou/
HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 12:51:49 GMT
Server: Apache
Last-Modified: Wed, 25 Jan 2023 23:59:06 GMT
Accept-Ranges: bytes
Content-Length: 28582
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: image/png
kanok.alphagg7.cyou/img/5.png
20.38.4.152200 OK 23 kB URL HTTP/1.1 kanok.alphagg7.cyou/img/5.png
IP 20.38.4.152:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type PNG image data, 500 x 500, 8-bit colormap, non-interlaced\012- data
Hash ad2abaab386ce8c4aa065b630dd3547b
0d3fa404a165ee1f6c1b2e8e76f63f63decda2fa
490bdb7425e075419c296cc75cf11eb758f884d8fb4b3c9aa4781c5c86762c8b
Analyzer Verdict Alert openphish Tencent
GET /img/5.png HTTP/1.1
Host: kanok.alphagg7.cyou
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kanok.alphagg7.cyou/
HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 12:51:50 GMT
Server: Apache
Last-Modified: Wed, 25 Jan 2023 23:59:06 GMT
Accept-Ranges: bytes
Content-Length: 22618
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: image/png
cdn.midasbuy.com/images/M19-1920x240.22e16422.jpg
101.33.10.108200 OK 209 kB URL HTTP/2 cdn.midasbuy.com/images/M19-1920x240.22e16422.jpg
IP 101.33.10.108:0
ASN #132203 Tencent Building, Kejizhongyi Avenue
File type JPEG image data, baseline, precision 8, 1920x240, components 3\012- data
Size 209 kB (209426 bytes)
Hash 22e164220ff037d248962b7c5d63d540
c936e9106ca578d2169303bae598903a985ffa78
e997b83d3adb675fdba866c19f2da95876dc737467d76287e81dedd1b2aeaf6c
GET /images/M19-1920x240.22e16422.jpg HTTP/1.1
Host: cdn.midasbuy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://kanok.alphagg7.cyou/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: NWSs
date: Sat, 04 Feb 2023 12:51:50 GMT
content-type: image/jpeg
content-length: 209426
cache-control: max-age=600
expires: Sat, 04 Feb 2023 13:01:49 GMT
last-modified: Wed, 11 Jan 2023 08:47:45 GMT
x-nws-log-uuid: 9b5540c6-698e-4449-9e3e-e991984c8993
x-cache-lookup: Hit From MemCache
access-control-allow-origin: https://www.midasbuy.com
timing-allow-origin: https://www.midasbuy.com
accept-ranges: bytes
X-Firefox-Spdy: h2
cdn.midasbuy.com/oversea_web/static/js/default.71c7960f.js
101.33.10.108200 OK 14 kB URL HTTP/2 cdn.midasbuy.com/oversea_web/static/js/default.71c7960f.js
IP 101.33.10.108:0
ASN #132203 Tencent Building, Kejizhongyi Avenue
Hash 183492c6e80a837955ac4f7aa758cfa6
02fac0011a8f4ad0be049eb151f952c7570198a2
8350c8c2825a477677f5b00e3be20deaedd0d7bb14bdb5629d185a5d345cec15
GET /oversea_web/static/js/default.71c7960f.js HTTP/1.1
Host: cdn.midasbuy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://kanok.alphagg7.cyou/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: NWSs
date: Sat, 04 Feb 2023 12:51:47 GMT
content-type: application/javascript
content-length: 31156
cache-control: max-age=600
expires: Sat, 04 Feb 2023 13:01:47 GMT
last-modified: Mon, 28 Nov 2022 11:27:25 GMT
content-encoding: gzip
x-nws-log-uuid: 4271fc7a-c633-4f58-a286-176634966f2d
x-cache-lookup: Hit From MemCache Gz
access-control-allow-origin: https://www.midasbuy.com
timing-allow-origin: https://www.midasbuy.com
accept-ranges: bytes
X-Firefox-Spdy: h2
kanok.alphagg7.cyou/img/6.png
20.38.4.152200 OK 28 kB URL HTTP/1.1 kanok.alphagg7.cyou/img/6.png
IP 20.38.4.152:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type PNG image data, 500 x 500, 8-bit colormap, non-interlaced\012- data
Hash 0f5ad74cf4bb35d937941cb7856099e4
2faf29a1a7ed373131bc51e35b672aae9e7a5592
9d0f60866ecab883445dca8fa823d2d27d5c7b3a9defa810a1102a63c68db02b
Analyzer Verdict Alert openphish Tencent
GET /img/6.png HTTP/1.1
Host: kanok.alphagg7.cyou
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kanok.alphagg7.cyou/
HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 12:51:50 GMT
Server: Apache
Last-Modified: Wed, 25 Jan 2023 23:59:06 GMT
Accept-Ranges: bytes
Content-Length: 28310
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: image/png
kanok.alphagg7.cyou/receivemsg?buy_type_key=CURRENT_BUY_ITEM_SAVE_page_09801731054520803
20.38.4.152404 Not Found 315 B URL HTTP/1.1 kanok.alphagg7.cyou/receivemsg?buy_type_key=CURRENT_BUY_ITEM_SAVE_page_09801731054520803
IP 20.38.4.152:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3
Analyzer Verdict Alert openphish Tencent
fortinet Phishing
GET /receivemsg?buy_type_key=CURRENT_BUY_ITEM_SAVE_page_09801731054520803 HTTP/1.1
Host: kanok.alphagg7.cyou
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kanok.alphagg7.cyou/
Upgrade-Insecure-Requests: 1
HTTP/1.1 404 Not Found
Date: Sat, 04 Feb 2023 12:51:50 GMT
Server: Apache
Content-Length: 315
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
cdn.midasbuy.com/images/906-1920x240-EN.71b79b20.jpg
101.33.10.108200 OK 220 kB URL HTTP/2 cdn.midasbuy.com/images/906-1920x240-EN.71b79b20.jpg
IP 101.33.10.108:0
ASN #132203 Tencent Building, Kejizhongyi Avenue
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop 22.0 (Windows), datetime=2022:12:20 18:09:57], baseline, precision 8, 1920x240, components 3\012- data
Size 220 kB (220248 bytes)
Hash 71b79b20c6e79d844e06e54b97f910c8
7cc19326663e04b5839506debbd44094fbb7b59b
3225b6ea8b6f95f767b985b43fcaa64147e1205f8cc9e01d914351b79be9e625
GET /images/906-1920x240-EN.71b79b20.jpg HTTP/1.1
Host: cdn.midasbuy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://kanok.alphagg7.cyou/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: NWSs
date: Sat, 04 Feb 2023 12:51:50 GMT
content-type: image/jpeg
content-length: 220248
cache-control: max-age=600
expires: Sat, 04 Feb 2023 13:01:49 GMT
last-modified: Fri, 23 Dec 2022 09:42:36 GMT
x-nws-log-uuid: 8bd630dc-e915-4ae4-aa57-0020654a3d84
x-cache-lookup: Hit From MemCache
access-control-allow-origin: https://www.midasbuy.com
timing-allow-origin: https://www.midasbuy.com
accept-ranges: bytes
X-Firefox-Spdy: h2
kanok.alphagg7.cyou/font/DINMITTELSCHRIFTSTD.woff
20.38.4.152200 OK 25 kB URL HTTP/1.1 kanok.alphagg7.cyou/font/DINMITTELSCHRIFTSTD.woff
IP 20.38.4.152:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type Web Open Font Format, TrueType, length 24996, version 1.40\012- data
Hash 2018d35e708e07985693c6bc12a59861
12faf69d54217b30d4458fffad689e758b8a91c6
c2293fa86d99d0f1f06b2ac7f85ae0517e4a3bacfd9946de7b012f04aa2d831c
Analyzer Verdict Alert openphish Tencent
fortinet Phishing
GET /font/DINMITTELSCHRIFTSTD.woff HTTP/1.1
Host: kanok.alphagg7.cyou
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://kanok.alphagg7.cyou/
HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 12:51:50 GMT
Server: Apache
Last-Modified: Mon, 15 Mar 2021 17:36:23 GMT
Accept-Ranges: bytes
Content-Length: 24996
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: font/woff
cdn.midasbuy.com/oversea_web/static/images/card-bg.2ef5f06c.png
101.33.10.108200 OK 5.1 kB URL HTTP/2 cdn.midasbuy.com/oversea_web/static/images/card-bg.2ef5f06c.png
IP 101.33.10.108:0
ASN #132203 Tencent Building, Kejizhongyi Avenue
File type PNG image data, 326 x 480, 1-bit colormap, non-interlaced\012- data
Hash 04fbb1d37cbd34be7b86e86462ccd14d
a15b60ac83c29447dce0e28908c93bb835fe3d6f
29cbcd6976d4b5bd40e95317c0d8363f2a17cc8eb7f0dbed399d6b55a56a3d23
GET /oversea_web/static/images/card-bg.2ef5f06c.png HTTP/1.1
Host: cdn.midasbuy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cdn.midasbuy.com/oversea_web/static/css/buypage.c6deb7d4.css?max_age=864000
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: NWSs
date: Sat, 04 Feb 2023 12:51:50 GMT
content-type: image/png
content-length: 5132
cache-control: max-age=600
expires: Sat, 04 Feb 2023 13:01:49 GMT
last-modified: Fri, 03 Feb 2023 11:19:00 GMT
x-nws-log-uuid: 47dcab62-e3b6-467c-86c5-19cc77e7f92d
timing-allow-origin: https://cdn.midasbuy.com
access-control-allow-origin: https://cdn.midasbuy.com
x-cache-lookup: Hit From MemCache
accept-ranges: bytes
X-Firefox-Spdy: h2
cdn.midasbuy.com/images/1920-240.321b317e.png
101.33.10.108200 OK 720 kB URL HTTP/2 cdn.midasbuy.com/images/1920-240.321b317e.png
IP 101.33.10.108:0
ASN #132203 Tencent Building, Kejizhongyi Avenue
File type PNG image data, 1920 x 240, 8-bit/color RGBA, non-interlaced\012- data
Size 720 kB (720107 bytes)
Hash 321b317ea44cd5b773ef917b2eeba155
617f3648bb41105545b0db5ac9f34c9a17a05208
6e5c589a1159ea679bcb283e5214cf99b128a6647f8f8bae5b04b58c57a87bc7
GET /images/1920-240.321b317e.png HTTP/1.1
Host: cdn.midasbuy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://kanok.alphagg7.cyou/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: NWSs
date: Sat, 04 Feb 2023 12:51:50 GMT
content-type: image/png
content-length: 720107
cache-control: max-age=600
expires: Sat, 04 Feb 2023 13:01:49 GMT
last-modified: Thu, 03 Nov 2022 03:13:24 GMT
x-nws-log-uuid: f4312e7e-8892-4a5c-a4c9-436ccf06adf3
x-cache-lookup: Hit From Disktank3
access-control-allow-origin: https://www.midasbuy.com
timing-allow-origin: https://www.midasbuy.com
accept-ranges: bytes
X-Firefox-Spdy: h2
kanok.alphagg7.cyou/img/4.png
20.38.4.152200 OK 36 kB URL HTTP/1.1 kanok.alphagg7.cyou/img/4.png
IP 20.38.4.152:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type PNG image data, 500 x 500, 8-bit colormap, non-interlaced\012- data
Hash 13df7cc7216166c08e62a673472efbcb
d5bca4612abd04c8af27224c29aeeeab78784ab6
82c43daaca36319293cd6561902a4ea9449ae80518e7ba500b0458bc232289c3
Analyzer Verdict Alert openphish Tencent
GET /img/4.png HTTP/1.1
Host: kanok.alphagg7.cyou
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kanok.alphagg7.cyou/
HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 12:51:50 GMT
Server: Apache
Last-Modified: Wed, 25 Jan 2023 23:59:06 GMT
Accept-Ranges: bytes
Content-Length: 36196
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: image/png
cdn.midasbuy.com/images/1920_240.ed4ed184.png
101.33.10.108200 OK 318 kB URL HTTP/2 cdn.midasbuy.com/images/1920_240.ed4ed184.png
IP 101.33.10.108:0
ASN #132203 Tencent Building, Kejizhongyi Avenue
File type PNG image data, 1920 x 240, 8-bit/color RGBA, non-interlaced\012- data
Size 318 kB (318328 bytes)
Hash ed4ed1843bfe1b364ab82ab321901104
0ad436b9d758f6a1c94a47de98650488396b7aea
3655a0c9340bbb7452e048db3b4953fba2be53df65dbdabd7504b858b49ca2ac
GET /images/1920_240.ed4ed184.png HTTP/1.1
Host: cdn.midasbuy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://kanok.alphagg7.cyou/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: NWSs
date: Sat, 04 Feb 2023 12:51:50 GMT
content-type: image/png
content-length: 318328
cache-control: max-age=600
expires: Sat, 04 Feb 2023 13:01:49 GMT
last-modified: Thu, 27 Oct 2022 09:34:38 GMT
x-nws-log-uuid: 5fae0b86-5fb1-4473-a1ee-505294014be8
x-cache-lookup: Hit From MemCache
access-control-allow-origin: https://www.midasbuy.com
timing-allow-origin: https://www.midasbuy.com
accept-ranges: bytes
X-Firefox-Spdy: h2
cdn.midasbuy.com/images/1920_240.5f1ba3cc.jpg
101.33.10.108200 OK 276 kB URL HTTP/2 cdn.midasbuy.com/images/1920_240.5f1ba3cc.jpg
IP 101.33.10.108:0
ASN #132203 Tencent Building, Kejizhongyi Avenue
File type JPEG image data, baseline, precision 8, 1920x240, components 3\012- data
Size 276 kB (276367 bytes)
Hash 5f1ba3cccdfcc1ff9d377fbed7fa8387
7ba0a1f4a9e26332b06361e5dfbe5e330cacc331
8041d0c444ed152da7ce6ad33cb3a6a38084fb0ad1c3bfaaac377b31a92c490d
GET /images/1920_240.5f1ba3cc.jpg HTTP/1.1
Host: cdn.midasbuy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://kanok.alphagg7.cyou/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: NWSs
date: Sat, 04 Feb 2023 12:51:50 GMT
content-type: image/jpeg
content-length: 276367
cache-control: max-age=600
expires: Sat, 04 Feb 2023 13:01:49 GMT
last-modified: Thu, 29 Sep 2022 02:59:26 GMT
x-nws-log-uuid: c1e9f81f-d1d5-4985-8f1a-4e7342d95bbb
x-cache-lookup: Hit From MemCache
access-control-allow-origin: https://www.midasbuy.com
timing-allow-origin: https://www.midasbuy.com
accept-ranges: bytes
X-Firefox-Spdy: h2
cdn.midasbuy.com/images/1920x240.c14b9297.jpg
101.33.10.108200 OK 201 kB URL HTTP/2 cdn.midasbuy.com/images/1920x240.c14b9297.jpg
IP 101.33.10.108:0
ASN #132203 Tencent Building, Kejizhongyi Avenue
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1920x240, components 3\012- data
Size 201 kB (201387 bytes)
Hash c14b9297f780dbcb040c1ca5ccf5887a
aa46f073f5698456d91b0bf07eb334034adabad2
a1f612eccc1972fe3716595659a228ebc8578b36ebb2aa92d4b092bf4a862f0a
GET /images/1920x240.c14b9297.jpg HTTP/1.1
Host: cdn.midasbuy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://kanok.alphagg7.cyou/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: NWSs
date: Sat, 04 Feb 2023 12:51:50 GMT
content-type: image/jpeg
content-length: 201387
cache-control: max-age=600
expires: Sat, 04 Feb 2023 13:01:49 GMT
last-modified: Fri, 10 Jun 2022 08:06:02 GMT
x-nws-log-uuid: 6dbb9577-52f1-4cbb-b1b0-586f1f33eadf
x-cache-lookup: Hit From MemCache
access-control-allow-origin: https://www.midasbuy.com
timing-allow-origin: https://www.midasbuy.com
accept-ranges: bytes
X-Firefox-Spdy: h2
kanok.alphagg7.cyou/apps/activity/api/activity-initialize/many-valid-events?appid=1450015065&country=ot&supportEmbed=1
20.38.4.152404 Not Found 315 B URL HTTP/1.1 kanok.alphagg7.cyou/apps/activity/api/activity-initialize/many-valid-events?appid=1450015065&country=ot&supportEmbed=1
IP 20.38.4.152:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3
Analyzer Verdict Alert openphish Tencent
GET /apps/activity/api/activity-initialize/many-valid-events?appid=1450015065&country=ot&supportEmbed=1 HTTP/1.1
Host: kanok.alphagg7.cyou
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kanok.alphagg7.cyou/
HTTP/1.1 404 Not Found
Date: Sat, 04 Feb 2023 12:51:50 GMT
Server: Apache
Content-Length: 315
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
cdn.midasbuy.com/images/1920x240.7c808b6c.jpg
101.33.10.108200 OK 194 kB URL HTTP/2 cdn.midasbuy.com/images/1920x240.7c808b6c.jpg
IP 101.33.10.108:0
ASN #132203 Tencent Building, Kejizhongyi Avenue
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1920x240, components 3\012- data
Size 194 kB (193591 bytes)
Hash 7c808b6c30ccf225fb52ee69bee87857
3792ceb060596224bb8efad8d76a73b9d142e6ff
43ba6fe926cd68300dcdc8829c6bf73aeb24768ad2d5f46177041d9a3b08f3d6
GET /images/1920x240.7c808b6c.jpg HTTP/1.1
Host: cdn.midasbuy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://kanok.alphagg7.cyou/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: NWSs
date: Sat, 04 Feb 2023 12:51:50 GMT
content-type: image/jpeg
content-length: 193591
cache-control: max-age=600
expires: Sat, 04 Feb 2023 13:01:49 GMT
last-modified: Fri, 10 Jun 2022 08:11:25 GMT
x-nws-log-uuid: 223f7dd5-719d-439b-8b9d-a692d95a8808
x-cache-lookup: Hit From MemCache
access-control-allow-origin: https://www.midasbuy.com
timing-allow-origin: https://www.midasbuy.com
accept-ranges: bytes
X-Firefox-Spdy: h2
cdn.midasbuy.com/images/1920x240.dbf12c4a.jpg
101.33.10.108200 OK 218 kB URL HTTP/2 cdn.midasbuy.com/images/1920x240.dbf12c4a.jpg
IP 101.33.10.108:0
ASN #132203 Tencent Building, Kejizhongyi Avenue
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1920x240, components 3\012- data
Size 218 kB (218481 bytes)
Hash dbf12c4a95c3020e6ed2ec7257288b38
556e7b6a6a9ebe72fc7df64a3c9608c31ba30631
b962b25d728f30dc950f67560e8a26a57ebfaf2e6da255b75398c1d197ba3711
GET /images/1920x240.dbf12c4a.jpg HTTP/1.1
Host: cdn.midasbuy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://kanok.alphagg7.cyou/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: NWSs
date: Sat, 04 Feb 2023 12:51:50 GMT
content-type: image/jpeg
content-length: 218481
cache-control: max-age=600
expires: Sat, 04 Feb 2023 13:01:49 GMT
last-modified: Fri, 10 Jun 2022 08:07:52 GMT
x-nws-log-uuid: e4ac5656-7790-4455-b48c-a8ed948a901e
x-cache-lookup: Hit From MemCache
access-control-allow-origin: https://www.midasbuy.com
timing-allow-origin: https://www.midasbuy.com
accept-ranges: bytes
X-Firefox-Spdy: h2
report1.midasbuy.com/cgi-bin/log_data.fcg?num=1&record0=21=midasbuy.req.getFingerPrint.start|8=test_id%3D%26bucket_id%3D%26order_refer%3D|4=uv_046123862290262841666404955068|51=mds_hkweb_pc-v2-android-midasweb-midasbuy|31=oversea_web_v2_ot|43=|24=1450015065|23=v2|25=http%3A%2F%2Fkanok.alphagg7.cyou%2F|26=pc|3=|36=|50=Mozilla%252F5.0%2520(Windows%2520NT%252010.0%253B%2520Win64%253B%2520x64%253B%2520rv%253A105.0)%2520Gecko%252F20100101%2520Firefox%252F105.0|38=0348384880898043871649691398854|6=1675515145692|29=046123862290262841666404955068&rr=0.6276237947554457
211.152.137.25302 Found 0 B URL HTTP/1.1 report1.midasbuy.com/cgi-bin/log_data.fcg?num=1&record0=21=midasbuy.req.getFingerPrint.start|8=test_id%3D%26bucket_id%3D%26order_refer%3D|4=uv_046123862290262841666404955068|51=mds_hkweb_pc-v2-android-midasweb-midasbuy|31=oversea_web_v2_ot|43=|24=1450015065|23=v2|25=http%3A%2F%2Fkanok.alphagg7.cyou%2F|26=pc|3=|36=|50=Mozilla%252F5.0%2520(Windows%2520NT%252010.0%253B%2520Win64%253B%2520x64%253B%2520rv%253A105.0)%2520Gecko%252F20100101%2520Firefox%252F105.0|38=0348384880898043871649691398854|6=1675515145692|29=046123862290262841666404955068&rr=0.6276237947554457
IP 211.152.137.25:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cgi-bin/log_data.fcg?num=1&record0=21=midasbuy.req.getFingerPrint.start|8=test_id%3D%26bucket_id%3D%26order_refer%3D|4=uv_046123862290262841666404955068|51=mds_hkweb_pc-v2-android-midasweb-midasbuy|31=oversea_web_v2_ot|43=|24=1450015065|23=v2|25=http%3A%2F%2Fkanok.alphagg7.cyou%2F|26=pc|3=|36=|50=Mozilla%252F5.0%2520(Windows%2520NT%252010.0%253B%2520Win64%253B%2520x64%253B%2520rv%253A105.0)%2520Gecko%252F20100101%2520Firefox%252F105.0|38=0348384880898043871649691398854|6=1675515145692|29=046123862290262841666404955068&rr=0.6276237947554457 HTTP/1.1
Host: report1.midasbuy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kanok.alphagg7.cyou/
HTTP/1.1 302 Found
Location: https://report1.midasbuy.com/cgi-bin/log_data.fcg?num=1&record0=21=midasbuy.req.getFingerPrint.start|8=test_id%3D%26bucket_id%3D%26order_refer%3D|4=uv_046123862290262841666404955068|51=mds_hkweb_pc-v2-android-midasweb-midasbuy|31=oversea_web_v2_ot|43=|24=1450015065|23=v2|25=http%3A%2F%2Fkanok.alphagg7.cyou%2F|26=pc|3=|36=|50=Mozilla%252F5.0%2520(Windows%2520NT%252010.0%253B%2520Win64%253B%2520x64%253B%2520rv%253A105.0)%2520Gecko%252F20100101%2520Firefox%252F105.0|38=0348384880898043871649691398854|6=1675515145692|29=046123862290262841666404955068&rr=0.6276237947554457
Content-Length: 0
X-NWS-LOG-UUID: 5208963686164848753
Connection: keep-alive
Server: OverSea_E0
Date: Sat, 04 Feb 2023 12:51:50 GMT
X-Cache-Lookup: Return Directly
report1.midasbuy.com/cgi-bin/log_data.fcg?num=1&record0=21=midasbuy.custom.xmidas.init|8=test_id%3D%26bucket_id%3D%26order_refer%3D%26times%3D29|4=uv_046123862290262841666404955068|51=mds_hkweb_pc-v2-android-midasweb-midasbuy|31=oversea_web_v2_ot|43=|24=1450015065|23=v2|25=http%3A%2F%2Fkanok.alphagg7.cyou%2F|26=pc|3=|36=|50=Mozilla%252F5.0%2520(Windows%2520NT%252010.0%253B%2520Win64%253B%2520x64%253B%2520rv%253A105.0)%2520Gecko%252F20100101%2520Firefox%252F105.0|38=0348384880898043871649691398854|6=1675515145722|29=046123862290262841666404955068&rr=0.3529373914361431
211.152.137.25302 Found 0 B URL HTTP/1.1 report1.midasbuy.com/cgi-bin/log_data.fcg?num=1&record0=21=midasbuy.custom.xmidas.init|8=test_id%3D%26bucket_id%3D%26order_refer%3D%26times%3D29|4=uv_046123862290262841666404955068|51=mds_hkweb_pc-v2-android-midasweb-midasbuy|31=oversea_web_v2_ot|43=|24=1450015065|23=v2|25=http%3A%2F%2Fkanok.alphagg7.cyou%2F|26=pc|3=|36=|50=Mozilla%252F5.0%2520(Windows%2520NT%252010.0%253B%2520Win64%253B%2520x64%253B%2520rv%253A105.0)%2520Gecko%252F20100101%2520Firefox%252F105.0|38=0348384880898043871649691398854|6=1675515145722|29=046123862290262841666404955068&rr=0.3529373914361431
IP 211.152.137.25:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cgi-bin/log_data.fcg?num=1&record0=21=midasbuy.custom.xmidas.init|8=test_id%3D%26bucket_id%3D%26order_refer%3D%26times%3D29|4=uv_046123862290262841666404955068|51=mds_hkweb_pc-v2-android-midasweb-midasbuy|31=oversea_web_v2_ot|43=|24=1450015065|23=v2|25=http%3A%2F%2Fkanok.alphagg7.cyou%2F|26=pc|3=|36=|50=Mozilla%252F5.0%2520(Windows%2520NT%252010.0%253B%2520Win64%253B%2520x64%253B%2520rv%253A105.0)%2520Gecko%252F20100101%2520Firefox%252F105.0|38=0348384880898043871649691398854|6=1675515145722|29=046123862290262841666404955068&rr=0.3529373914361431 HTTP/1.1
Host: report1.midasbuy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kanok.alphagg7.cyou/
HTTP/1.1 302 Found
Location: https://report1.midasbuy.com/cgi-bin/log_data.fcg?num=1&record0=21=midasbuy.custom.xmidas.init|8=test_id%3D%26bucket_id%3D%26order_refer%3D%26times%3D29|4=uv_046123862290262841666404955068|51=mds_hkweb_pc-v2-android-midasweb-midasbuy|31=oversea_web_v2_ot|43=|24=1450015065|23=v2|25=http%3A%2F%2Fkanok.alphagg7.cyou%2F|26=pc|3=|36=|50=Mozilla%252F5.0%2520(Windows%2520NT%252010.0%253B%2520Win64%253B%2520x64%253B%2520rv%253A105.0)%2520Gecko%252F20100101%2520Firefox%252F105.0|38=0348384880898043871649691398854|6=1675515145722|29=046123862290262841666404955068&rr=0.3529373914361431
Content-Length: 0
X-NWS-LOG-UUID: 10093859512924954360
Connection: keep-alive
Server: OverSea_E0
Date: Sat, 04 Feb 2023 12:51:50 GMT
X-Cache-Lookup: Return Directly
report1.midasbuy.com/cgi-bin/log_data.fcg?num=1&record0=21=midas.api.call.init.ok|25=http%3A%2F%2Fkanok.alphagg7.cyou%2F|36=|50=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0|51=&r=0.8169859083407977
211.152.137.25200 OK 29 B URL HTTP/2 report1.midasbuy.com/cgi-bin/log_data.fcg?num=1&record0=21=midas.api.call.init.ok|25=http%3A%2F%2Fkanok.alphagg7.cyou%2F|36=|50=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0|51=&r=0.8169859083407977
IP 211.152.137.25:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 2935fb252651c11a0686fa86463b502b
61d2f0bb210e47ae4e1828536a5a8ab18db01017
37bb2788d2a768dc291105ef695562033e91d7b6d0283600d27d482b985d27ae
GET /cgi-bin/log_data.fcg?num=1&record0=21=midas.api.call.init.ok|25=http%3A%2F%2Fkanok.alphagg7.cyou%2F|36=|50=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0|51=&r=0.8169859083407977 HTTP/1.1
Host: report1.midasbuy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://kanok.alphagg7.cyou/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 04 Feb 2023 12:51:50 GMT
content-type: text/html;charset=utf-8
server: nginx
content-encoding: gzip
content-length: 29
x-nws-log-uuid: 7815541153039699895
x-cache-lookup: Cache Miss, Cache Miss
X-Firefox-Spdy: h2
report1.midasbuy.com/cgi-bin/log_data.fcg?num=1&record0=21=midasbuy.req.getFingerPrint.start|8=test_id%3D%26bucket_id%3D%26order_refer%3D|4=uv_046123862290262841666404955068|51=mds_hkweb_pc-v2-android-midasweb-midasbuy|31=oversea_web_v2_ot|43=|24=1450015065|23=v2|25=http%3A%2F%2Fkanok.alphagg7.cyou%2F|26=pc|3=|36=|50=Mozilla%252F5.0%2520(Windows%2520NT%252010.0%253B%2520Win64%253B%2520x64%253B%2520rv%253A105.0)%2520Gecko%252F20100101%2520Firefox%252F105.0|38=0348384880898043871649691398854|6=1675515145692|29=046123862290262841666404955068&rr=0.6276237947554457
211.152.137.25200 OK 29 B URL HTTP/2 report1.midasbuy.com/cgi-bin/log_data.fcg?num=1&record0=21=midasbuy.req.getFingerPrint.start|8=test_id%3D%26bucket_id%3D%26order_refer%3D|4=uv_046123862290262841666404955068|51=mds_hkweb_pc-v2-android-midasweb-midasbuy|31=oversea_web_v2_ot|43=|24=1450015065|23=v2|25=http%3A%2F%2Fkanok.alphagg7.cyou%2F|26=pc|3=|36=|50=Mozilla%252F5.0%2520(Windows%2520NT%252010.0%253B%2520Win64%253B%2520x64%253B%2520rv%253A105.0)%2520Gecko%252F20100101%2520Firefox%252F105.0|38=0348384880898043871649691398854|6=1675515145692|29=046123862290262841666404955068&rr=0.6276237947554457
IP 211.152.137.25:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 2935fb252651c11a0686fa86463b502b
61d2f0bb210e47ae4e1828536a5a8ab18db01017
37bb2788d2a768dc291105ef695562033e91d7b6d0283600d27d482b985d27ae
GET /cgi-bin/log_data.fcg?num=1&record0=21=midasbuy.req.getFingerPrint.start|8=test_id%3D%26bucket_id%3D%26order_refer%3D|4=uv_046123862290262841666404955068|51=mds_hkweb_pc-v2-android-midasweb-midasbuy|31=oversea_web_v2_ot|43=|24=1450015065|23=v2|25=http%3A%2F%2Fkanok.alphagg7.cyou%2F|26=pc|3=|36=|50=Mozilla%252F5.0%2520(Windows%2520NT%252010.0%253B%2520Win64%253B%2520x64%253B%2520rv%253A105.0)%2520Gecko%252F20100101%2520Firefox%252F105.0|38=0348384880898043871649691398854|6=1675515145692|29=046123862290262841666404955068&rr=0.6276237947554457 HTTP/1.1
Host: report1.midasbuy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://kanok.alphagg7.cyou/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 12:51:50 GMT
content-type: text/html;charset=utf-8
server: nginx
content-encoding: gzip
content-length: 29
x-nws-log-uuid: 9950490221369489703
x-cache-lookup: Cache Miss, Cache Miss
X-Firefox-Spdy: h2
report1.midasbuy.com/cgi-bin/log_data.fcg?num=1&record0=21=midasbuy.custom.xmidas.init.result|8=test_id%3D%26bucket_id%3D%26order_refer%3D%26result%3Dv0.1.12%252C211|4=uv_046123862290262841666404955068|51=mds_hkweb_pc-v2-android-midasweb-midasbuy|31=oversea_web_v2_ot|43=|24=1450015065|23=v2|25=http%3A%2F%2Fkanok.alphagg7.cyou%2F|26=pc|3=|36=|50=Mozilla%252F5.0%2520(Windows%2520NT%252010.0%253B%2520Win64%253B%2520x64%253B%2520rv%253A105.0)%2520Gecko%252F20100101%2520Firefox%252F105.0|38=0348384880898043871649691398854|6=1675515145723|29=046123862290262841666404955068&rr=0.6501224418350111
211.152.137.25302 Found 0 B URL HTTP/1.1 report1.midasbuy.com/cgi-bin/log_data.fcg?num=1&record0=21=midasbuy.custom.xmidas.init.result|8=test_id%3D%26bucket_id%3D%26order_refer%3D%26result%3Dv0.1.12%252C211|4=uv_046123862290262841666404955068|51=mds_hkweb_pc-v2-android-midasweb-midasbuy|31=oversea_web_v2_ot|43=|24=1450015065|23=v2|25=http%3A%2F%2Fkanok.alphagg7.cyou%2F|26=pc|3=|36=|50=Mozilla%252F5.0%2520(Windows%2520NT%252010.0%253B%2520Win64%253B%2520x64%253B%2520rv%253A105.0)%2520Gecko%252F20100101%2520Firefox%252F105.0|38=0348384880898043871649691398854|6=1675515145723|29=046123862290262841666404955068&rr=0.6501224418350111
IP 211.152.137.25:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cgi-bin/log_data.fcg?num=1&record0=21=midasbuy.custom.xmidas.init.result|8=test_id%3D%26bucket_id%3D%26order_refer%3D%26result%3Dv0.1.12%252C211|4=uv_046123862290262841666404955068|51=mds_hkweb_pc-v2-android-midasweb-midasbuy|31=oversea_web_v2_ot|43=|24=1450015065|23=v2|25=http%3A%2F%2Fkanok.alphagg7.cyou%2F|26=pc|3=|36=|50=Mozilla%252F5.0%2520(Windows%2520NT%252010.0%253B%2520Win64%253B%2520x64%253B%2520rv%253A105.0)%2520Gecko%252F20100101%2520Firefox%252F105.0|38=0348384880898043871649691398854|6=1675515145723|29=046123862290262841666404955068&rr=0.6501224418350111 HTTP/1.1
Host: report1.midasbuy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kanok.alphagg7.cyou/
HTTP/1.1 302 Found
Location: https://report1.midasbuy.com/cgi-bin/log_data.fcg?num=1&record0=21=midasbuy.custom.xmidas.init.result|8=test_id%3D%26bucket_id%3D%26order_refer%3D%26result%3Dv0.1.12%252C211|4=uv_046123862290262841666404955068|51=mds_hkweb_pc-v2-android-midasweb-midasbuy|31=oversea_web_v2_ot|43=|24=1450015065|23=v2|25=http%3A%2F%2Fkanok.alphagg7.cyou%2F|26=pc|3=|36=|50=Mozilla%252F5.0%2520(Windows%2520NT%252010.0%253B%2520Win64%253B%2520x64%253B%2520rv%253A105.0)%2520Gecko%252F20100101%2520Firefox%252F105.0|38=0348384880898043871649691398854|6=1675515145723|29=046123862290262841666404955068&rr=0.6501224418350111
Content-Length: 0
X-NWS-LOG-UUID: 12640523841696989824
Connection: keep-alive
Server: OverSea_E0
Date: Sat, 04 Feb 2023 12:51:51 GMT
X-Cache-Lookup: Return Directly
kanok.alphagg7.cyou/interface/getLoginInfoV2?encrypt_msg=TfRFauIiAqtpG8kOd5qfA%2F1vLhkHL%2BLR%2BQJ7LDxwKh4%3D&ctoken_ver=1.0.1&ctoken=d356f0bae5ca9abd01785bf204c57fbcd775c5620d0e24f80fdf59ab34b681638959674f474b5999ba66516ca547b0c7&_r=0.523460796823029
20.38.4.152404 Not Found 315 B URL HTTP/1.1 kanok.alphagg7.cyou/interface/getLoginInfoV2?encrypt_msg=TfRFauIiAqtpG8kOd5qfA%2F1vLhkHL%2BLR%2BQJ7LDxwKh4%3D&ctoken_ver=1.0.1&ctoken=d356f0bae5ca9abd01785bf204c57fbcd775c5620d0e24f80fdf59ab34b681638959674f474b5999ba66516ca547b0c7&_r=0.523460796823029
IP 20.38.4.152:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3
GET /interface/getLoginInfoV2?encrypt_msg=TfRFauIiAqtpG8kOd5qfA%2F1vLhkHL%2BLR%2BQJ7LDxwKh4%3D&ctoken_ver=1.0.1&ctoken=d356f0bae5ca9abd01785bf204c57fbcd775c5620d0e24f80fdf59ab34b681638959674f474b5999ba66516ca547b0c7&_r=0.523460796823029 HTTP/1.1
Host: kanok.alphagg7.cyou
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://kanok.alphagg7.cyou
Connection: keep-alive
Referer: http://kanok.alphagg7.cyou/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 404 Not Found
Date: Sat, 04 Feb 2023 12:51:50 GMT
Server: Apache
Content-Length: 315
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
report1.midasbuy.com/cgi-bin/log_data.fcg?num=1&record0=21=midasbuy.custom.xmidas.init|8=test_id%3D%26bucket_id%3D%26order_refer%3D%26times%3D29|4=uv_046123862290262841666404955068|51=mds_hkweb_pc-v2-android-midasweb-midasbuy|31=oversea_web_v2_ot|43=|24=1450015065|23=v2|25=http%3A%2F%2Fkanok.alphagg7.cyou%2F|26=pc|3=|36=|50=Mozilla%252F5.0%2520(Windows%2520NT%252010.0%253B%2520Win64%253B%2520x64%253B%2520rv%253A105.0)%2520Gecko%252F20100101%2520Firefox%252F105.0|38=0348384880898043871649691398854|6=1675515145722|29=046123862290262841666404955068&rr=0.3529373914361431
211.152.137.25200 OK 29 B URL HTTP/2 report1.midasbuy.com/cgi-bin/log_data.fcg?num=1&record0=21=midasbuy.custom.xmidas.init|8=test_id%3D%26bucket_id%3D%26order_refer%3D%26times%3D29|4=uv_046123862290262841666404955068|51=mds_hkweb_pc-v2-android-midasweb-midasbuy|31=oversea_web_v2_ot|43=|24=1450015065|23=v2|25=http%3A%2F%2Fkanok.alphagg7.cyou%2F|26=pc|3=|36=|50=Mozilla%252F5.0%2520(Windows%2520NT%252010.0%253B%2520Win64%253B%2520x64%253B%2520rv%253A105.0)%2520Gecko%252F20100101%2520Firefox%252F105.0|38=0348384880898043871649691398854|6=1675515145722|29=046123862290262841666404955068&rr=0.3529373914361431
IP 211.152.137.25:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 2935fb252651c11a0686fa86463b502b
61d2f0bb210e47ae4e1828536a5a8ab18db01017
37bb2788d2a768dc291105ef695562033e91d7b6d0283600d27d482b985d27ae
GET /cgi-bin/log_data.fcg?num=1&record0=21=midasbuy.custom.xmidas.init|8=test_id%3D%26bucket_id%3D%26order_refer%3D%26times%3D29|4=uv_046123862290262841666404955068|51=mds_hkweb_pc-v2-android-midasweb-midasbuy|31=oversea_web_v2_ot|43=|24=1450015065|23=v2|25=http%3A%2F%2Fkanok.alphagg7.cyou%2F|26=pc|3=|36=|50=Mozilla%252F5.0%2520(Windows%2520NT%252010.0%253B%2520Win64%253B%2520x64%253B%2520rv%253A105.0)%2520Gecko%252F20100101%2520Firefox%252F105.0|38=0348384880898043871649691398854|6=1675515145722|29=046123862290262841666404955068&rr=0.3529373914361431 HTTP/1.1
Host: report1.midasbuy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://kanok.alphagg7.cyou/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 12:51:50 GMT
content-type: text/html;charset=utf-8
server: nginx
content-encoding: gzip
content-length: 29
x-nws-log-uuid: 6810323776110194744
x-cache-lookup: Cache Miss, Cache Miss
X-Firefox-Spdy: h2
report1.midasbuy.com/cgi-bin/log_data.fcg?num=1&record0=21=midasbuy.req.getFingerPrint.start|8=test_id%3D%26bucket_id%3D%26order_refer%3D|4=uv_046123862290262841666404955068|51=mds_hkweb_pc-v2-android-midasweb-midasbuy|31=oversea_web_v2_ot|43=|24=1450015065|23=v2|25=http%3A%2F%2Fkanok.alphagg7.cyou%2F|26=pc|3=|36=|50=Mozilla%252F5.0%2520(Windows%2520NT%252010.0%253B%2520Win64%253B%2520x64%253B%2520rv%253A105.0)%2520Gecko%252F20100101%2520Firefox%252F105.0|38=0348384880898043871649691398854|6=1675515145741|29=046123862290262841666404955068&rr=0.6211956522876244
211.152.137.25302 Found 0 B URL HTTP/1.1 report1.midasbuy.com/cgi-bin/log_data.fcg?num=1&record0=21=midasbuy.req.getFingerPrint.start|8=test_id%3D%26bucket_id%3D%26order_refer%3D|4=uv_046123862290262841666404955068|51=mds_hkweb_pc-v2-android-midasweb-midasbuy|31=oversea_web_v2_ot|43=|24=1450015065|23=v2|25=http%3A%2F%2Fkanok.alphagg7.cyou%2F|26=pc|3=|36=|50=Mozilla%252F5.0%2520(Windows%2520NT%252010.0%253B%2520Win64%253B%2520x64%253B%2520rv%253A105.0)%2520Gecko%252F20100101%2520Firefox%252F105.0|38=0348384880898043871649691398854|6=1675515145741|29=046123862290262841666404955068&rr=0.6211956522876244
IP 211.152.137.25:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cgi-bin/log_data.fcg?num=1&record0=21=midasbuy.req.getFingerPrint.start|8=test_id%3D%26bucket_id%3D%26order_refer%3D|4=uv_046123862290262841666404955068|51=mds_hkweb_pc-v2-android-midasweb-midasbuy|31=oversea_web_v2_ot|43=|24=1450015065|23=v2|25=http%3A%2F%2Fkanok.alphagg7.cyou%2F|26=pc|3=|36=|50=Mozilla%252F5.0%2520(Windows%2520NT%252010.0%253B%2520Win64%253B%2520x64%253B%2520rv%253A105.0)%2520Gecko%252F20100101%2520Firefox%252F105.0|38=0348384880898043871649691398854|6=1675515145741|29=046123862290262841666404955068&rr=0.6211956522876244 HTTP/1.1
Host: report1.midasbuy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kanok.alphagg7.cyou/
HTTP/1.1 302 Found
Location: https://report1.midasbuy.com/cgi-bin/log_data.fcg?num=1&record0=21=midasbuy.req.getFingerPrint.start|8=test_id%3D%26bucket_id%3D%26order_refer%3D|4=uv_046123862290262841666404955068|51=mds_hkweb_pc-v2-android-midasweb-midasbuy|31=oversea_web_v2_ot|43=|24=1450015065|23=v2|25=http%3A%2F%2Fkanok.alphagg7.cyou%2F|26=pc|3=|36=|50=Mozilla%252F5.0%2520(Windows%2520NT%252010.0%253B%2520Win64%253B%2520x64%253B%2520rv%253A105.0)%2520Gecko%252F20100101%2520Firefox%252F105.0|38=0348384880898043871649691398854|6=1675515145741|29=046123862290262841666404955068&rr=0.6211956522876244
Content-Length: 0
X-NWS-LOG-UUID: 5072985885225928184
Connection: keep-alive
Server: OverSea_E0
Date: Sat, 04 Feb 2023 12:51:51 GMT
X-Cache-Lookup: Return Directly
report1.midasbuy.com/cgi-bin/log_data.fcg?num=1&record0=21=midasbuy.custom.xmidas.init|8=test_id%3D%26bucket_id%3D%26order_refer%3D%26times%3D0|4=uv_046123862290262841666404955068|51=mds_hkweb_pc-v2-android-midasweb-midasbuy|31=oversea_web_v2_ot|43=|24=1450015065|23=v2|25=http%3A%2F%2Fkanok.alphagg7.cyou%2F|26=pc|3=|36=|50=Mozilla%252F5.0%2520(Windows%2520NT%252010.0%253B%2520Win64%253B%2520x64%253B%2520rv%253A105.0)%2520Gecko%252F20100101%2520Firefox%252F105.0|38=0348384880898043871649691398854|6=1675515145741|29=046123862290262841666404955068&rr=0.1684970315148946
211.152.137.25302 Found 0 B URL HTTP/1.1 report1.midasbuy.com/cgi-bin/log_data.fcg?num=1&record0=21=midasbuy.custom.xmidas.init|8=test_id%3D%26bucket_id%3D%26order_refer%3D%26times%3D0|4=uv_046123862290262841666404955068|51=mds_hkweb_pc-v2-android-midasweb-midasbuy|31=oversea_web_v2_ot|43=|24=1450015065|23=v2|25=http%3A%2F%2Fkanok.alphagg7.cyou%2F|26=pc|3=|36=|50=Mozilla%252F5.0%2520(Windows%2520NT%252010.0%253B%2520Win64%253B%2520x64%253B%2520rv%253A105.0)%2520Gecko%252F20100101%2520Firefox%252F105.0|38=0348384880898043871649691398854|6=1675515145741|29=046123862290262841666404955068&rr=0.1684970315148946
IP 211.152.137.25:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cgi-bin/log_data.fcg?num=1&record0=21=midasbuy.custom.xmidas.init|8=test_id%3D%26bucket_id%3D%26order_refer%3D%26times%3D0|4=uv_046123862290262841666404955068|51=mds_hkweb_pc-v2-android-midasweb-midasbuy|31=oversea_web_v2_ot|43=|24=1450015065|23=v2|25=http%3A%2F%2Fkanok.alphagg7.cyou%2F|26=pc|3=|36=|50=Mozilla%252F5.0%2520(Windows%2520NT%252010.0%253B%2520Win64%253B%2520x64%253B%2520rv%253A105.0)%2520Gecko%252F20100101%2520Firefox%252F105.0|38=0348384880898043871649691398854|6=1675515145741|29=046123862290262841666404955068&rr=0.1684970315148946 HTTP/1.1
Host: report1.midasbuy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kanok.alphagg7.cyou/
HTTP/1.1 302 Found
Location: https://report1.midasbuy.com/cgi-bin/log_data.fcg?num=1&record0=21=midasbuy.custom.xmidas.init|8=test_id%3D%26bucket_id%3D%26order_refer%3D%26times%3D0|4=uv_046123862290262841666404955068|51=mds_hkweb_pc-v2-android-midasweb-midasbuy|31=oversea_web_v2_ot|43=|24=1450015065|23=v2|25=http%3A%2F%2Fkanok.alphagg7.cyou%2F|26=pc|3=|36=|50=Mozilla%252F5.0%2520(Windows%2520NT%252010.0%253B%2520Win64%253B%2520x64%253B%2520rv%253A105.0)%2520Gecko%252F20100101%2520Firefox%252F105.0|38=0348384880898043871649691398854|6=1675515145741|29=046123862290262841666404955068&rr=0.1684970315148946
Content-Length: 0
X-NWS-LOG-UUID: 14267193532680346874
Connection: keep-alive
Server: OverSea_E0
Date: Sat, 04 Feb 2023 12:51:51 GMT
X-Cache-Lookup: Return Directly
report1.midasbuy.com/cgi-bin/log_data.fcg?num=1&record0=21=midasbuy.req.getFingerPrint.start|8=test_id%3D%26bucket_id%3D%26order_refer%3D|4=uv_046123862290262841666404955068|51=mds_hkweb_pc-v2-android-midasweb-midasbuy|31=oversea_web_v2_ot|43=|24=1450015065|23=v2|25=http%3A%2F%2Fkanok.alphagg7.cyou%2F|26=pc|3=|36=|50=Mozilla%252F5.0%2520(Windows%2520NT%252010.0%253B%2520Win64%253B%2520x64%253B%2520rv%253A105.0)%2520Gecko%252F20100101%2520Firefox%252F105.0|38=0348384880898043871649691398854|6=1675515145741|29=046123862290262841666404955068&rr=0.6211956522876244
211.152.137.25200 OK 29 B URL HTTP/2 report1.midasbuy.com/cgi-bin/log_data.fcg?num=1&record0=21=midasbuy.req.getFingerPrint.start|8=test_id%3D%26bucket_id%3D%26order_refer%3D|4=uv_046123862290262841666404955068|51=mds_hkweb_pc-v2-android-midasweb-midasbuy|31=oversea_web_v2_ot|43=|24=1450015065|23=v2|25=http%3A%2F%2Fkanok.alphagg7.cyou%2F|26=pc|3=|36=|50=Mozilla%252F5.0%2520(Windows%2520NT%252010.0%253B%2520Win64%253B%2520x64%253B%2520rv%253A105.0)%2520Gecko%252F20100101%2520Firefox%252F105.0|38=0348384880898043871649691398854|6=1675515145741|29=046123862290262841666404955068&rr=0.6211956522876244
IP 211.152.137.25:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 2935fb252651c11a0686fa86463b502b
61d2f0bb210e47ae4e1828536a5a8ab18db01017
37bb2788d2a768dc291105ef695562033e91d7b6d0283600d27d482b985d27ae
GET /cgi-bin/log_data.fcg?num=1&record0=21=midasbuy.req.getFingerPrint.start|8=test_id%3D%26bucket_id%3D%26order_refer%3D|4=uv_046123862290262841666404955068|51=mds_hkweb_pc-v2-android-midasweb-midasbuy|31=oversea_web_v2_ot|43=|24=1450015065|23=v2|25=http%3A%2F%2Fkanok.alphagg7.cyou%2F|26=pc|3=|36=|50=Mozilla%252F5.0%2520(Windows%2520NT%252010.0%253B%2520Win64%253B%2520x64%253B%2520rv%253A105.0)%2520Gecko%252F20100101%2520Firefox%252F105.0|38=0348384880898043871649691398854|6=1675515145741|29=046123862290262841666404955068&rr=0.6211956522876244 HTTP/1.1
Host: report1.midasbuy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://kanok.alphagg7.cyou/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 12:51:51 GMT
content-type: text/html;charset=utf-8
server: nginx
content-encoding: gzip
content-length: 29
x-nws-log-uuid: 9998888978589224588
x-cache-lookup: Cache Miss, Cache Miss
X-Firefox-Spdy: h2
report1.midasbuy.com/cgi-bin/log_data.fcg?num=1&record0=21=midasbuy.custom.xmidas.init.result|8=test_id%3D%26bucket_id%3D%26order_refer%3D%26result%3Dv0.1.12%252C211|4=uv_046123862290262841666404955068|51=mds_hkweb_pc-v2-android-midasweb-midasbuy|31=oversea_web_v2_ot|43=|24=1450015065|23=v2|25=http%3A%2F%2Fkanok.alphagg7.cyou%2F|26=pc|3=|36=|50=Mozilla%252F5.0%2520(Windows%2520NT%252010.0%253B%2520Win64%253B%2520x64%253B%2520rv%253A105.0)%2520Gecko%252F20100101%2520Firefox%252F105.0|38=0348384880898043871649691398854|6=1675515145742|29=046123862290262841666404955068&rr=0.5334250114391875
211.152.137.25302 Found 0 B URL HTTP/1.1 report1.midasbuy.com/cgi-bin/log_data.fcg?num=1&record0=21=midasbuy.custom.xmidas.init.result|8=test_id%3D%26bucket_id%3D%26order_refer%3D%26result%3Dv0.1.12%252C211|4=uv_046123862290262841666404955068|51=mds_hkweb_pc-v2-android-midasweb-midasbuy|31=oversea_web_v2_ot|43=|24=1450015065|23=v2|25=http%3A%2F%2Fkanok.alphagg7.cyou%2F|26=pc|3=|36=|50=Mozilla%252F5.0%2520(Windows%2520NT%252010.0%253B%2520Win64%253B%2520x64%253B%2520rv%253A105.0)%2520Gecko%252F20100101%2520Firefox%252F105.0|38=0348384880898043871649691398854|6=1675515145742|29=046123862290262841666404955068&rr=0.5334250114391875
IP 211.152.137.25:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cgi-bin/log_data.fcg?num=1&record0=21=midasbuy.custom.xmidas.init.result|8=test_id%3D%26bucket_id%3D%26order_refer%3D%26result%3Dv0.1.12%252C211|4=uv_046123862290262841666404955068|51=mds_hkweb_pc-v2-android-midasweb-midasbuy|31=oversea_web_v2_ot|43=|24=1450015065|23=v2|25=http%3A%2F%2Fkanok.alphagg7.cyou%2F|26=pc|3=|36=|50=Mozilla%252F5.0%2520(Windows%2520NT%252010.0%253B%2520Win64%253B%2520x64%253B%2520rv%253A105.0)%2520Gecko%252F20100101%2520Firefox%252F105.0|38=0348384880898043871649691398854|6=1675515145742|29=046123862290262841666404955068&rr=0.5334250114391875 HTTP/1.1
Host: report1.midasbuy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kanok.alphagg7.cyou/
HTTP/1.1 302 Found
Location: https://report1.midasbuy.com/cgi-bin/log_data.fcg?num=1&record0=21=midasbuy.custom.xmidas.init.result|8=test_id%3D%26bucket_id%3D%26order_refer%3D%26result%3Dv0.1.12%252C211|4=uv_046123862290262841666404955068|51=mds_hkweb_pc-v2-android-midasweb-midasbuy|31=oversea_web_v2_ot|43=|24=1450015065|23=v2|25=http%3A%2F%2Fkanok.alphagg7.cyou%2F|26=pc|3=|36=|50=Mozilla%252F5.0%2520(Windows%2520NT%252010.0%253B%2520Win64%253B%2520x64%253B%2520rv%253A105.0)%2520Gecko%252F20100101%2520Firefox%252F105.0|38=0348384880898043871649691398854|6=1675515145742|29=046123862290262841666404955068&rr=0.5334250114391875
Content-Length: 0
X-NWS-LOG-UUID: 8791769715346673754
Connection: keep-alive
Server: OverSea_E0
Date: Sat, 04 Feb 2023 12:51:51 GMT
X-Cache-Lookup: Return Directly
report1.midasbuy.com/cgi-bin/log_data.fcg?num=1&record0=21=midasbuy.custom.xmidas.init|8=test_id%3D%26bucket_id%3D%26order_refer%3D%26times%3D0|4=uv_046123862290262841666404955068|51=mds_hkweb_pc-v2-android-midasweb-midasbuy|31=oversea_web_v2_ot|43=|24=1450015065|23=v2|25=http%3A%2F%2Fkanok.alphagg7.cyou%2F|26=pc|3=|36=|50=Mozilla%252F5.0%2520(Windows%2520NT%252010.0%253B%2520Win64%253B%2520x64%253B%2520rv%253A105.0)%2520Gecko%252F20100101%2520Firefox%252F105.0|38=0348384880898043871649691398854|6=1675515145741|29=046123862290262841666404955068&rr=0.1684970315148946
211.152.137.25200 OK 29 B URL HTTP/2 report1.midasbuy.com/cgi-bin/log_data.fcg?num=1&record0=21=midasbuy.custom.xmidas.init|8=test_id%3D%26bucket_id%3D%26order_refer%3D%26times%3D0|4=uv_046123862290262841666404955068|51=mds_hkweb_pc-v2-android-midasweb-midasbuy|31=oversea_web_v2_ot|43=|24=1450015065|23=v2|25=http%3A%2F%2Fkanok.alphagg7.cyou%2F|26=pc|3=|36=|50=Mozilla%252F5.0%2520(Windows%2520NT%252010.0%253B%2520Win64%253B%2520x64%253B%2520rv%253A105.0)%2520Gecko%252F20100101%2520Firefox%252F105.0|38=0348384880898043871649691398854|6=1675515145741|29=046123862290262841666404955068&rr=0.1684970315148946
IP 211.152.137.25:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 2935fb252651c11a0686fa86463b502b
61d2f0bb210e47ae4e1828536a5a8ab18db01017
37bb2788d2a768dc291105ef695562033e91d7b6d0283600d27d482b985d27ae
GET /cgi-bin/log_data.fcg?num=1&record0=21=midasbuy.custom.xmidas.init|8=test_id%3D%26bucket_id%3D%26order_refer%3D%26times%3D0|4=uv_046123862290262841666404955068|51=mds_hkweb_pc-v2-android-midasweb-midasbuy|31=oversea_web_v2_ot|43=|24=1450015065|23=v2|25=http%3A%2F%2Fkanok.alphagg7.cyou%2F|26=pc|3=|36=|50=Mozilla%252F5.0%2520(Windows%2520NT%252010.0%253B%2520Win64%253B%2520x64%253B%2520rv%253A105.0)%2520Gecko%252F20100101%2520Firefox%252F105.0|38=0348384880898043871649691398854|6=1675515145741|29=046123862290262841666404955068&rr=0.1684970315148946 HTTP/1.1
Host: report1.midasbuy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://kanok.alphagg7.cyou/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 12:51:51 GMT
content-type: text/html;charset=utf-8
server: nginx
content-encoding: gzip
content-length: 29
x-nws-log-uuid: 313278376749726327
x-cache-lookup: Cache Miss, Cache Miss
X-Firefox-Spdy: h2
report1.midasbuy.com/cgi-bin/log_data.fcg?num=1&record0=21=midasbuy.custom.xmidas.init.result|8=test_id%3D%26bucket_id%3D%26order_refer%3D%26result%3Dv0.1.12%252C211|4=uv_046123862290262841666404955068|51=mds_hkweb_pc-v2-android-midasweb-midasbuy|31=oversea_web_v2_ot|43=|24=1450015065|23=v2|25=http%3A%2F%2Fkanok.alphagg7.cyou%2F|26=pc|3=|36=|50=Mozilla%252F5.0%2520(Windows%2520NT%252010.0%253B%2520Win64%253B%2520x64%253B%2520rv%253A105.0)%2520Gecko%252F20100101%2520Firefox%252F105.0|38=0348384880898043871649691398854|6=1675515145723|29=046123862290262841666404955068&rr=0.6501224418350111
211.152.137.25200 OK 29 B URL HTTP/2 report1.midasbuy.com/cgi-bin/log_data.fcg?num=1&record0=21=midasbuy.custom.xmidas.init.result|8=test_id%3D%26bucket_id%3D%26order_refer%3D%26result%3Dv0.1.12%252C211|4=uv_046123862290262841666404955068|51=mds_hkweb_pc-v2-android-midasweb-midasbuy|31=oversea_web_v2_ot|43=|24=1450015065|23=v2|25=http%3A%2F%2Fkanok.alphagg7.cyou%2F|26=pc|3=|36=|50=Mozilla%252F5.0%2520(Windows%2520NT%252010.0%253B%2520Win64%253B%2520x64%253B%2520rv%253A105.0)%2520Gecko%252F20100101%2520Firefox%252F105.0|38=0348384880898043871649691398854|6=1675515145723|29=046123862290262841666404955068&rr=0.6501224418350111
IP 211.152.137.25:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 2935fb252651c11a0686fa86463b502b
61d2f0bb210e47ae4e1828536a5a8ab18db01017
37bb2788d2a768dc291105ef695562033e91d7b6d0283600d27d482b985d27ae
GET /cgi-bin/log_data.fcg?num=1&record0=21=midasbuy.custom.xmidas.init.result|8=test_id%3D%26bucket_id%3D%26order_refer%3D%26result%3Dv0.1.12%252C211|4=uv_046123862290262841666404955068|51=mds_hkweb_pc-v2-android-midasweb-midasbuy|31=oversea_web_v2_ot|43=|24=1450015065|23=v2|25=http%3A%2F%2Fkanok.alphagg7.cyou%2F|26=pc|3=|36=|50=Mozilla%252F5.0%2520(Windows%2520NT%252010.0%253B%2520Win64%253B%2520x64%253B%2520rv%253A105.0)%2520Gecko%252F20100101%2520Firefox%252F105.0|38=0348384880898043871649691398854|6=1675515145723|29=046123862290262841666404955068&rr=0.6501224418350111 HTTP/1.1
Host: report1.midasbuy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://kanok.alphagg7.cyou/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 12:51:51 GMT
content-type: text/html;charset=utf-8
server: nginx
content-encoding: gzip
content-length: 29
x-nws-log-uuid: 11580319837916296449
x-cache-lookup: Cache Miss, Cache Miss
X-Firefox-Spdy: h2
report1.midasbuy.com/cgi-bin/log_data.fcg?num=1&record0=21=midasbuy.custom.xmidas.init|8=test_id%3D%26bucket_id%3D%26order_refer%3D%26times%3D0|4=uv_046123862290262841666404955068|51=mds_hkweb_pc-v2-android-midasweb-midasbuy|31=oversea_web_v2_ot|43=|24=1450015065|23=v2|25=http%3A%2F%2Fkanok.alphagg7.cyou%2F|26=pc|3=|36=|50=Mozilla%252F5.0%2520(Windows%2520NT%252010.0%253B%2520Win64%253B%2520x64%253B%2520rv%253A105.0)%2520Gecko%252F20100101%2520Firefox%252F105.0|38=0348384880898043871649691398854|6=1675515145743|29=046123862290262841666404955068&rr=0.8249690433348792
211.152.137.25302 Found 0 B URL HTTP/1.1 report1.midasbuy.com/cgi-bin/log_data.fcg?num=1&record0=21=midasbuy.custom.xmidas.init|8=test_id%3D%26bucket_id%3D%26order_refer%3D%26times%3D0|4=uv_046123862290262841666404955068|51=mds_hkweb_pc-v2-android-midasweb-midasbuy|31=oversea_web_v2_ot|43=|24=1450015065|23=v2|25=http%3A%2F%2Fkanok.alphagg7.cyou%2F|26=pc|3=|36=|50=Mozilla%252F5.0%2520(Windows%2520NT%252010.0%253B%2520Win64%253B%2520x64%253B%2520rv%253A105.0)%2520Gecko%252F20100101%2520Firefox%252F105.0|38=0348384880898043871649691398854|6=1675515145743|29=046123862290262841666404955068&rr=0.8249690433348792
IP 211.152.137.25:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cgi-bin/log_data.fcg?num=1&record0=21=midasbuy.custom.xmidas.init|8=test_id%3D%26bucket_id%3D%26order_refer%3D%26times%3D0|4=uv_046123862290262841666404955068|51=mds_hkweb_pc-v2-android-midasweb-midasbuy|31=oversea_web_v2_ot|43=|24=1450015065|23=v2|25=http%3A%2F%2Fkanok.alphagg7.cyou%2F|26=pc|3=|36=|50=Mozilla%252F5.0%2520(Windows%2520NT%252010.0%253B%2520Win64%253B%2520x64%253B%2520rv%253A105.0)%2520Gecko%252F20100101%2520Firefox%252F105.0|38=0348384880898043871649691398854|6=1675515145743|29=046123862290262841666404955068&rr=0.8249690433348792 HTTP/1.1
Host: report1.midasbuy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kanok.alphagg7.cyou/
HTTP/1.1 302 Found
Location: https://report1.midasbuy.com/cgi-bin/log_data.fcg?num=1&record0=21=midasbuy.custom.xmidas.init|8=test_id%3D%26bucket_id%3D%26order_refer%3D%26times%3D0|4=uv_046123862290262841666404955068|51=mds_hkweb_pc-v2-android-midasweb-midasbuy|31=oversea_web_v2_ot|43=|24=1450015065|23=v2|25=http%3A%2F%2Fkanok.alphagg7.cyou%2F|26=pc|3=|36=|50=Mozilla%252F5.0%2520(Windows%2520NT%252010.0%253B%2520Win64%253B%2520x64%253B%2520rv%253A105.0)%2520Gecko%252F20100101%2520Firefox%252F105.0|38=0348384880898043871649691398854|6=1675515145743|29=046123862290262841666404955068&rr=0.8249690433348792
Content-Length: 0
X-NWS-LOG-UUID: 12690932738023841694
Connection: keep-alive
Server: OverSea_E0
Date: Sat, 04 Feb 2023 12:51:51 GMT
X-Cache-Lookup: Return Directly
report1.midasbuy.com/cgi-bin/log_data.fcg?num=1&record0=21=midasbuy.custom.xmidas.init.result|8=test_id%3D%26bucket_id%3D%26order_refer%3D%26result%3Dv0.1.12%252C211|4=uv_046123862290262841666404955068|51=mds_hkweb_pc-v2-android-midasweb-midasbuy|31=oversea_web_v2_ot|43=|24=1450015065|23=v2|25=http%3A%2F%2Fkanok.alphagg7.cyou%2F|26=pc|3=|36=|50=Mozilla%252F5.0%2520(Windows%2520NT%252010.0%253B%2520Win64%253B%2520x64%253B%2520rv%253A105.0)%2520Gecko%252F20100101%2520Firefox%252F105.0|38=0348384880898043871649691398854|6=1675515145742|29=046123862290262841666404955068&rr=0.5334250114391875
211.152.137.25200 OK 29 B URL HTTP/2 report1.midasbuy.com/cgi-bin/log_data.fcg?num=1&record0=21=midasbuy.custom.xmidas.init.result|8=test_id%3D%26bucket_id%3D%26order_refer%3D%26result%3Dv0.1.12%252C211|4=uv_046123862290262841666404955068|51=mds_hkweb_pc-v2-android-midasweb-midasbuy|31=oversea_web_v2_ot|43=|24=1450015065|23=v2|25=http%3A%2F%2Fkanok.alphagg7.cyou%2F|26=pc|3=|36=|50=Mozilla%252F5.0%2520(Windows%2520NT%252010.0%253B%2520Win64%253B%2520x64%253B%2520rv%253A105.0)%2520Gecko%252F20100101%2520Firefox%252F105.0|38=0348384880898043871649691398854|6=1675515145742|29=046123862290262841666404955068&rr=0.5334250114391875
IP 211.152.137.25:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 2935fb252651c11a0686fa86463b502b
61d2f0bb210e47ae4e1828536a5a8ab18db01017
37bb2788d2a768dc291105ef695562033e91d7b6d0283600d27d482b985d27ae
GET /cgi-bin/log_data.fcg?num=1&record0=21=midasbuy.custom.xmidas.init.result|8=test_id%3D%26bucket_id%3D%26order_refer%3D%26result%3Dv0.1.12%252C211|4=uv_046123862290262841666404955068|51=mds_hkweb_pc-v2-android-midasweb-midasbuy|31=oversea_web_v2_ot|43=|24=1450015065|23=v2|25=http%3A%2F%2Fkanok.alphagg7.cyou%2F|26=pc|3=|36=|50=Mozilla%252F5.0%2520(Windows%2520NT%252010.0%253B%2520Win64%253B%2520x64%253B%2520rv%253A105.0)%2520Gecko%252F20100101%2520Firefox%252F105.0|38=0348384880898043871649691398854|6=1675515145742|29=046123862290262841666404955068&rr=0.5334250114391875 HTTP/1.1
Host: report1.midasbuy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://kanok.alphagg7.cyou/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 12:51:51 GMT
content-type: text/html;charset=utf-8
server: nginx
content-encoding: gzip
content-length: 29
x-nws-log-uuid: 3656869930521134868
x-cache-lookup: Cache Miss, Cache Miss
X-Firefox-Spdy: h2
report1.midasbuy.com/cgi-bin/log_data.fcg?num=1&record0=21=midasbuy.custom.xmidas.init.result|8=test_id%3D%26bucket_id%3D%26order_refer%3D%26result%3Dv0.1.12%252C211|4=uv_046123862290262841666404955068|51=mds_hkweb_pc-v2-android-midasweb-midasbuy|31=oversea_web_v2_ot|43=|24=1450015065|23=v2|25=http%3A%2F%2Fkanok.alphagg7.cyou%2F|26=pc|3=|36=|50=Mozilla%252F5.0%2520(Windows%2520NT%252010.0%253B%2520Win64%253B%2520x64%253B%2520rv%253A105.0)%2520Gecko%252F20100101%2520Firefox%252F105.0|38=0348384880898043871649691398854|6=1675515145743|29=046123862290262841666404955068&rr=0.8535539023227714
211.152.137.25302 Found 0 B URL HTTP/1.1 report1.midasbuy.com/cgi-bin/log_data.fcg?num=1&record0=21=midasbuy.custom.xmidas.init.result|8=test_id%3D%26bucket_id%3D%26order_refer%3D%26result%3Dv0.1.12%252C211|4=uv_046123862290262841666404955068|51=mds_hkweb_pc-v2-android-midasweb-midasbuy|31=oversea_web_v2_ot|43=|24=1450015065|23=v2|25=http%3A%2F%2Fkanok.alphagg7.cyou%2F|26=pc|3=|36=|50=Mozilla%252F5.0%2520(Windows%2520NT%252010.0%253B%2520Win64%253B%2520x64%253B%2520rv%253A105.0)%2520Gecko%252F20100101%2520Firefox%252F105.0|38=0348384880898043871649691398854|6=1675515145743|29=046123862290262841666404955068&rr=0.8535539023227714
IP 211.152.137.25:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cgi-bin/log_data.fcg?num=1&record0=21=midasbuy.custom.xmidas.init.result|8=test_id%3D%26bucket_id%3D%26order_refer%3D%26result%3Dv0.1.12%252C211|4=uv_046123862290262841666404955068|51=mds_hkweb_pc-v2-android-midasweb-midasbuy|31=oversea_web_v2_ot|43=|24=1450015065|23=v2|25=http%3A%2F%2Fkanok.alphagg7.cyou%2F|26=pc|3=|36=|50=Mozilla%252F5.0%2520(Windows%2520NT%252010.0%253B%2520Win64%253B%2520x64%253B%2520rv%253A105.0)%2520Gecko%252F20100101%2520Firefox%252F105.0|38=0348384880898043871649691398854|6=1675515145743|29=046123862290262841666404955068&rr=0.8535539023227714 HTTP/1.1
Host: report1.midasbuy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kanok.alphagg7.cyou/
HTTP/1.1 302 Found
Location: https://report1.midasbuy.com/cgi-bin/log_data.fcg?num=1&record0=21=midasbuy.custom.xmidas.init.result|8=test_id%3D%26bucket_id%3D%26order_refer%3D%26result%3Dv0.1.12%252C211|4=uv_046123862290262841666404955068|51=mds_hkweb_pc-v2-android-midasweb-midasbuy|31=oversea_web_v2_ot|43=|24=1450015065|23=v2|25=http%3A%2F%2Fkanok.alphagg7.cyou%2F|26=pc|3=|36=|50=Mozilla%252F5.0%2520(Windows%2520NT%252010.0%253B%2520Win64%253B%2520x64%253B%2520rv%253A105.0)%2520Gecko%252F20100101%2520Firefox%252F105.0|38=0348384880898043871649691398854|6=1675515145743|29=046123862290262841666404955068&rr=0.8535539023227714
Content-Length: 0
X-NWS-LOG-UUID: 3404497649126217393
Connection: keep-alive
Server: OverSea_E0
Date: Sat, 04 Feb 2023 12:51:52 GMT
X-Cache-Lookup: Return Directly
ocsp.digicert.cn/
47.246.44.205200 OK 471 B IP 47.246.44.205:0
ASN #24429 Zhejiang Taobao Network Co.,Ltd
Hash 4fd0f31ebd2dfa30726ab5ff71b7692b
8635866c3b2c1fab9e79beb00c0d1f94c52667d1
f90d115ceb265bdcc1fb1c8163b90a69bb9fc67566722c86d66093537bc65fe0
POST / HTTP/1.1
Host: ocsp.digicert.cn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Tengine
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Cache-Control: 'max-age=158059'
Date: Sat, 04 Feb 2023 12:51:51 GMT
Ali-Swift-Global-Savetime: 1675515112
Via: cache26.l2de2[294,294,200-0,M], cache26.l2de2[295,0], cache2.se1[315,315,200-0,M], cache2.se1[316,0]
X-Cache: MISS TCP_MISS dirn:-2:-2
X-Swift-SaveTime: Sat, 04 Feb 2023 12:51:52 GMT
X-Swift-CacheTime: 0
Timing-Allow-Origin: *
EagleId: 2ff62c9616755151117078516e
ocsp.digicert.cn/
47.246.44.205200 OK 471 B IP 47.246.44.205:0
ASN #24429 Zhejiang Taobao Network Co.,Ltd
Hash 4fd0f31ebd2dfa30726ab5ff71b7692b
8635866c3b2c1fab9e79beb00c0d1f94c52667d1
f90d115ceb265bdcc1fb1c8163b90a69bb9fc67566722c86d66093537bc65fe0
POST / HTTP/1.1
Host: ocsp.digicert.cn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Tengine
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Cache-Control: 'max-age=158059'
Date: Sat, 04 Feb 2023 12:51:51 GMT
Ali-Swift-Global-Savetime: 1675515112
Via: cache19.l2de2[330,330,200-0,M], cache19.l2de2[331,0], cache4.se1[353,353,200-0,M], cache4.se1[355,0]
X-Cache: MISS TCP_MISS dirn:-2:-2
X-Swift-SaveTime: Sat, 04 Feb 2023 12:51:52 GMT
X-Swift-CacheTime: 0
Timing-Allow-Origin: *
EagleId: 2ff62c9816755151116844038e
ocsp.digicert.cn/
47.246.44.205200 OK 471 B IP 47.246.44.205:0
ASN #24429 Zhejiang Taobao Network Co.,Ltd
Hash 4fd0f31ebd2dfa30726ab5ff71b7692b
8635866c3b2c1fab9e79beb00c0d1f94c52667d1
f90d115ceb265bdcc1fb1c8163b90a69bb9fc67566722c86d66093537bc65fe0
POST / HTTP/1.1
Host: ocsp.digicert.cn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Tengine
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Cache-Control: 'max-age=158059'
Date: Sat, 04 Feb 2023 12:51:51 GMT
Ali-Swift-Global-Savetime: 1675515112
Via: cache12.l2de2[274,273,200-0,M], cache12.l2de2[275,0], cache5.se1[296,296,200-0,M], cache5.se1[298,0]
X-Cache: MISS TCP_MISS dirn:-2:-2
X-Swift-SaveTime: Sat, 04 Feb 2023 12:51:52 GMT
X-Swift-CacheTime: 0
Timing-Allow-Origin: *
EagleId: 2ff62c9916755151117603630e
report1.midasbuy.com/cgi-bin/log_data.fcg?num=1&record0=21=midasbuy.custom.xmidas.init|8=test_id%3D%26bucket_id%3D%26order_refer%3D%26times%3D0|4=uv_046123862290262841666404955068|51=mds_hkweb_pc-v2-android-midasweb-midasbuy|31=oversea_web_v2_ot|43=|24=1450015065|23=v2|25=http%3A%2F%2Fkanok.alphagg7.cyou%2F|26=pc|3=|36=|50=Mozilla%252F5.0%2520(Windows%2520NT%252010.0%253B%2520Win64%253B%2520x64%253B%2520rv%253A105.0)%2520Gecko%252F20100101%2520Firefox%252F105.0|38=0348384880898043871649691398854|6=1675515145743|29=046123862290262841666404955068&rr=0.8249690433348792
211.152.137.25200 OK 29 B URL HTTP/2 report1.midasbuy.com/cgi-bin/log_data.fcg?num=1&record0=21=midasbuy.custom.xmidas.init|8=test_id%3D%26bucket_id%3D%26order_refer%3D%26times%3D0|4=uv_046123862290262841666404955068|51=mds_hkweb_pc-v2-android-midasweb-midasbuy|31=oversea_web_v2_ot|43=|24=1450015065|23=v2|25=http%3A%2F%2Fkanok.alphagg7.cyou%2F|26=pc|3=|36=|50=Mozilla%252F5.0%2520(Windows%2520NT%252010.0%253B%2520Win64%253B%2520x64%253B%2520rv%253A105.0)%2520Gecko%252F20100101%2520Firefox%252F105.0|38=0348384880898043871649691398854|6=1675515145743|29=046123862290262841666404955068&rr=0.8249690433348792
IP 211.152.137.25:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 2935fb252651c11a0686fa86463b502b
61d2f0bb210e47ae4e1828536a5a8ab18db01017
37bb2788d2a768dc291105ef695562033e91d7b6d0283600d27d482b985d27ae
GET /cgi-bin/log_data.fcg?num=1&record0=21=midasbuy.custom.xmidas.init|8=test_id%3D%26bucket_id%3D%26order_refer%3D%26times%3D0|4=uv_046123862290262841666404955068|51=mds_hkweb_pc-v2-android-midasweb-midasbuy|31=oversea_web_v2_ot|43=|24=1450015065|23=v2|25=http%3A%2F%2Fkanok.alphagg7.cyou%2F|26=pc|3=|36=|50=Mozilla%252F5.0%2520(Windows%2520NT%252010.0%253B%2520Win64%253B%2520x64%253B%2520rv%253A105.0)%2520Gecko%252F20100101%2520Firefox%252F105.0|38=0348384880898043871649691398854|6=1675515145743|29=046123862290262841666404955068&rr=0.8249690433348792 HTTP/1.1
Host: report1.midasbuy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://kanok.alphagg7.cyou/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 12:51:51 GMT
content-type: text/html;charset=utf-8
server: nginx
content-encoding: gzip
content-length: 29
x-nws-log-uuid: 6992919804644112141
x-cache-lookup: Cache Miss, Cache Miss
X-Firefox-Spdy: h2
report1.midasbuy.com/cgi-bin/log_data.fcg?num=1&record0=21=midasbuy.req.getFingerPrint.start|8=test_id%3D%26bucket_id%3D%26order_refer%3D|4=uv_046123862290262841666404955068|51=mds_hkweb_pc-v2-android-midasweb-midasbuy|31=oversea_web_v2_ot|43=|24=1450015065|23=v2|25=http%3A%2F%2Fkanok.alphagg7.cyou%2F|26=pc|3=|36=|50=Mozilla%252F5.0%2520(Windows%2520NT%252010.0%253B%2520Win64%253B%2520x64%253B%2520rv%253A105.0)%2520Gecko%252F20100101%2520Firefox%252F105.0|38=0348384880898043871649691398854|6=1675515145744|29=046123862290262841666404955068&rr=0.9553474120681317
211.152.137.25302 Found 0 B URL HTTP/1.1 report1.midasbuy.com/cgi-bin/log_data.fcg?num=1&record0=21=midasbuy.req.getFingerPrint.start|8=test_id%3D%26bucket_id%3D%26order_refer%3D|4=uv_046123862290262841666404955068|51=mds_hkweb_pc-v2-android-midasweb-midasbuy|31=oversea_web_v2_ot|43=|24=1450015065|23=v2|25=http%3A%2F%2Fkanok.alphagg7.cyou%2F|26=pc|3=|36=|50=Mozilla%252F5.0%2520(Windows%2520NT%252010.0%253B%2520Win64%253B%2520x64%253B%2520rv%253A105.0)%2520Gecko%252F20100101%2520Firefox%252F105.0|38=0348384880898043871649691398854|6=1675515145744|29=046123862290262841666404955068&rr=0.9553474120681317
IP 211.152.137.25:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cgi-bin/log_data.fcg?num=1&record0=21=midasbuy.req.getFingerPrint.start|8=test_id%3D%26bucket_id%3D%26order_refer%3D|4=uv_046123862290262841666404955068|51=mds_hkweb_pc-v2-android-midasweb-midasbuy|31=oversea_web_v2_ot|43=|24=1450015065|23=v2|25=http%3A%2F%2Fkanok.alphagg7.cyou%2F|26=pc|3=|36=|50=Mozilla%252F5.0%2520(Windows%2520NT%252010.0%253B%2520Win64%253B%2520x64%253B%2520rv%253A105.0)%2520Gecko%252F20100101%2520Firefox%252F105.0|38=0348384880898043871649691398854|6=1675515145744|29=046123862290262841666404955068&rr=0.9553474120681317 HTTP/1.1
Host: report1.midasbuy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kanok.alphagg7.cyou/
HTTP/1.1 302 Found
Location: https://report1.midasbuy.com/cgi-bin/log_data.fcg?num=1&record0=21=midasbuy.req.getFingerPrint.start|8=test_id%3D%26bucket_id%3D%26order_refer%3D|4=uv_046123862290262841666404955068|51=mds_hkweb_pc-v2-android-midasweb-midasbuy|31=oversea_web_v2_ot|43=|24=1450015065|23=v2|25=http%3A%2F%2Fkanok.alphagg7.cyou%2F|26=pc|3=|36=|50=Mozilla%252F5.0%2520(Windows%2520NT%252010.0%253B%2520Win64%253B%2520x64%253B%2520rv%253A105.0)%2520Gecko%252F20100101%2520Firefox%252F105.0|38=0348384880898043871649691398854|6=1675515145744|29=046123862290262841666404955068&rr=0.9553474120681317
Content-Length: 0
X-NWS-LOG-UUID: 870095487429078356
Connection: keep-alive
Server: OverSea_E0
Date: Sat, 04 Feb 2023 12:51:52 GMT
X-Cache-Lookup: Return Directly
report1.midasbuy.com/cgi-bin/log_data.fcg?num=1&record0=21=midasbuy.custom.xmidas.init.result|8=test_id%3D%26bucket_id%3D%26order_refer%3D%26result%3Dv0.1.12%252C211|4=uv_046123862290262841666404955068|51=mds_hkweb_pc-v2-android-midasweb-midasbuy|31=oversea_web_v2_ot|43=|24=1450015065|23=v2|25=http%3A%2F%2Fkanok.alphagg7.cyou%2F|26=pc|3=|36=|50=Mozilla%252F5.0%2520(Windows%2520NT%252010.0%253B%2520Win64%253B%2520x64%253B%2520rv%253A105.0)%2520Gecko%252F20100101%2520Firefox%252F105.0|38=0348384880898043871649691398854|6=1675515145743|29=046123862290262841666404955068&rr=0.8535539023227714
211.152.137.25200 OK 29 B URL HTTP/2 report1.midasbuy.com/cgi-bin/log_data.fcg?num=1&record0=21=midasbuy.custom.xmidas.init.result|8=test_id%3D%26bucket_id%3D%26order_refer%3D%26result%3Dv0.1.12%252C211|4=uv_046123862290262841666404955068|51=mds_hkweb_pc-v2-android-midasweb-midasbuy|31=oversea_web_v2_ot|43=|24=1450015065|23=v2|25=http%3A%2F%2Fkanok.alphagg7.cyou%2F|26=pc|3=|36=|50=Mozilla%252F5.0%2520(Windows%2520NT%252010.0%253B%2520Win64%253B%2520x64%253B%2520rv%253A105.0)%2520Gecko%252F20100101%2520Firefox%252F105.0|38=0348384880898043871649691398854|6=1675515145743|29=046123862290262841666404955068&rr=0.8535539023227714
IP 211.152.137.25:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 2935fb252651c11a0686fa86463b502b
61d2f0bb210e47ae4e1828536a5a8ab18db01017
37bb2788d2a768dc291105ef695562033e91d7b6d0283600d27d482b985d27ae
GET /cgi-bin/log_data.fcg?num=1&record0=21=midasbuy.custom.xmidas.init.result|8=test_id%3D%26bucket_id%3D%26order_refer%3D%26result%3Dv0.1.12%252C211|4=uv_046123862290262841666404955068|51=mds_hkweb_pc-v2-android-midasweb-midasbuy|31=oversea_web_v2_ot|43=|24=1450015065|23=v2|25=http%3A%2F%2Fkanok.alphagg7.cyou%2F|26=pc|3=|36=|50=Mozilla%252F5.0%2520(Windows%2520NT%252010.0%253B%2520Win64%253B%2520x64%253B%2520rv%253A105.0)%2520Gecko%252F20100101%2520Firefox%252F105.0|38=0348384880898043871649691398854|6=1675515145743|29=046123862290262841666404955068&rr=0.8535539023227714 HTTP/1.1
Host: report1.midasbuy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://kanok.alphagg7.cyou/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 12:51:52 GMT
content-type: text/html;charset=utf-8
server: nginx
content-encoding: gzip
content-length: 29
x-nws-log-uuid: 14621817935158449982
x-cache-lookup: Cache Miss, Cache Miss
X-Firefox-Spdy: h2
report1.midasbuy.com/cgi-bin/log_data.fcg?num=1&record0=21=midasbuy.custom.xmidas.init|8=test_id%3D%26bucket_id%3D%26order_refer%3D%26times%3D0|4=uv_046123862290262841666404955068|51=mds_hkweb_pc-v2-android-midasweb-midasbuy|31=oversea_web_v2_ot|43=|24=1450015065|23=v2|25=http%3A%2F%2Fkanok.alphagg7.cyou%2F|26=pc|3=|36=|50=Mozilla%252F5.0%2520(Windows%2520NT%252010.0%253B%2520Win64%253B%2520x64%253B%2520rv%253A105.0)%2520Gecko%252F20100101%2520Firefox%252F105.0|38=0348384880898043871649691398854|6=1675515145744|29=046123862290262841666404955068&rr=0.13977760072665768
211.152.137.25302 Found 0 B URL HTTP/1.1 report1.midasbuy.com/cgi-bin/log_data.fcg?num=1&record0=21=midasbuy.custom.xmidas.init|8=test_id%3D%26bucket_id%3D%26order_refer%3D%26times%3D0|4=uv_046123862290262841666404955068|51=mds_hkweb_pc-v2-android-midasweb-midasbuy|31=oversea_web_v2_ot|43=|24=1450015065|23=v2|25=http%3A%2F%2Fkanok.alphagg7.cyou%2F|26=pc|3=|36=|50=Mozilla%252F5.0%2520(Windows%2520NT%252010.0%253B%2520Win64%253B%2520x64%253B%2520rv%253A105.0)%2520Gecko%252F20100101%2520Firefox%252F105.0|38=0348384880898043871649691398854|6=1675515145744|29=046123862290262841666404955068&rr=0.13977760072665768
IP 211.152.137.25:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cgi-bin/log_data.fcg?num=1&record0=21=midasbuy.custom.xmidas.init|8=test_id%3D%26bucket_id%3D%26order_refer%3D%26times%3D0|4=uv_046123862290262841666404955068|51=mds_hkweb_pc-v2-android-midasweb-midasbuy|31=oversea_web_v2_ot|43=|24=1450015065|23=v2|25=http%3A%2F%2Fkanok.alphagg7.cyou%2F|26=pc|3=|36=|50=Mozilla%252F5.0%2520(Windows%2520NT%252010.0%253B%2520Win64%253B%2520x64%253B%2520rv%253A105.0)%2520Gecko%252F20100101%2520Firefox%252F105.0|38=0348384880898043871649691398854|6=1675515145744|29=046123862290262841666404955068&rr=0.13977760072665768 HTTP/1.1
Host: report1.midasbuy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kanok.alphagg7.cyou/
HTTP/1.1 302 Found
Location: https://report1.midasbuy.com/cgi-bin/log_data.fcg?num=1&record0=21=midasbuy.custom.xmidas.init|8=test_id%3D%26bucket_id%3D%26order_refer%3D%26times%3D0|4=uv_046123862290262841666404955068|51=mds_hkweb_pc-v2-android-midasweb-midasbuy|31=oversea_web_v2_ot|43=|24=1450015065|23=v2|25=http%3A%2F%2Fkanok.alphagg7.cyou%2F|26=pc|3=|36=|50=Mozilla%252F5.0%2520(Windows%2520NT%252010.0%253B%2520Win64%253B%2520x64%253B%2520rv%253A105.0)%2520Gecko%252F20100101%2520Firefox%252F105.0|38=0348384880898043871649691398854|6=1675515145744|29=046123862290262841666404955068&rr=0.13977760072665768
Content-Length: 0
X-NWS-LOG-UUID: 3795784937035985786
Connection: keep-alive
Server: OverSea_E0
Date: Sat, 04 Feb 2023 12:51:52 GMT
X-Cache-Lookup: Return Directly
report1.midasbuy.com/cgi-bin/log_data.fcg?num=1&record0=21=midasbuy.req.getFingerPrint.start|8=test_id%3D%26bucket_id%3D%26order_refer%3D|4=uv_046123862290262841666404955068|51=mds_hkweb_pc-v2-android-midasweb-midasbuy|31=oversea_web_v2_ot|43=|24=1450015065|23=v2|25=http%3A%2F%2Fkanok.alphagg7.cyou%2F|26=pc|3=|36=|50=Mozilla%252F5.0%2520(Windows%2520NT%252010.0%253B%2520Win64%253B%2520x64%253B%2520rv%253A105.0)%2520Gecko%252F20100101%2520Firefox%252F105.0|38=0348384880898043871649691398854|6=1675515145744|29=046123862290262841666404955068&rr=0.9553474120681317
211.152.137.25200 OK 29 B URL HTTP/2 report1.midasbuy.com/cgi-bin/log_data.fcg?num=1&record0=21=midasbuy.req.getFingerPrint.start|8=test_id%3D%26bucket_id%3D%26order_refer%3D|4=uv_046123862290262841666404955068|51=mds_hkweb_pc-v2-android-midasweb-midasbuy|31=oversea_web_v2_ot|43=|24=1450015065|23=v2|25=http%3A%2F%2Fkanok.alphagg7.cyou%2F|26=pc|3=|36=|50=Mozilla%252F5.0%2520(Windows%2520NT%252010.0%253B%2520Win64%253B%2520x64%253B%2520rv%253A105.0)%2520Gecko%252F20100101%2520Firefox%252F105.0|38=0348384880898043871649691398854|6=1675515145744|29=046123862290262841666404955068&rr=0.9553474120681317
IP 211.152.137.25:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 2935fb252651c11a0686fa86463b502b
61d2f0bb210e47ae4e1828536a5a8ab18db01017
37bb2788d2a768dc291105ef695562033e91d7b6d0283600d27d482b985d27ae
GET /cgi-bin/log_data.fcg?num=1&record0=21=midasbuy.req.getFingerPrint.start|8=test_id%3D%26bucket_id%3D%26order_refer%3D|4=uv_046123862290262841666404955068|51=mds_hkweb_pc-v2-android-midasweb-midasbuy|31=oversea_web_v2_ot|43=|24=1450015065|23=v2|25=http%3A%2F%2Fkanok.alphagg7.cyou%2F|26=pc|3=|36=|50=Mozilla%252F5.0%2520(Windows%2520NT%252010.0%253B%2520Win64%253B%2520x64%253B%2520rv%253A105.0)%2520Gecko%252F20100101%2520Firefox%252F105.0|38=0348384880898043871649691398854|6=1675515145744|29=046123862290262841666404955068&rr=0.9553474120681317 HTTP/1.1
Host: report1.midasbuy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://kanok.alphagg7.cyou/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 12:51:52 GMT
content-type: text/html;charset=utf-8
server: nginx
content-encoding: gzip
content-length: 29
x-nws-log-uuid: 8105850879729522373
x-cache-lookup: Cache Miss, Cache Miss
X-Firefox-Spdy: h2
report1.midasbuy.com/cgi-bin/log_data.fcg?num=1&record0=21=midasbuy.custom.xmidas.init.result|8=test_id%3D%26bucket_id%3D%26order_refer%3D%26result%3Dv0.1.12%252C211|4=uv_046123862290262841666404955068|51=mds_hkweb_pc-v2-android-midasweb-midasbuy|31=oversea_web_v2_ot|43=|24=1450015065|23=v2|25=http%3A%2F%2Fkanok.alphagg7.cyou%2F|26=pc|3=|36=|50=Mozilla%252F5.0%2520(Windows%2520NT%252010.0%253B%2520Win64%253B%2520x64%253B%2520rv%253A105.0)%2520Gecko%252F20100101%2520Firefox%252F105.0|38=0348384880898043871649691398854|6=1675515145744|29=046123862290262841666404955068&rr=0.9992487252674185
211.152.137.25302 Found 0 B URL HTTP/1.1 report1.midasbuy.com/cgi-bin/log_data.fcg?num=1&record0=21=midasbuy.custom.xmidas.init.result|8=test_id%3D%26bucket_id%3D%26order_refer%3D%26result%3Dv0.1.12%252C211|4=uv_046123862290262841666404955068|51=mds_hkweb_pc-v2-android-midasweb-midasbuy|31=oversea_web_v2_ot|43=|24=1450015065|23=v2|25=http%3A%2F%2Fkanok.alphagg7.cyou%2F|26=pc|3=|36=|50=Mozilla%252F5.0%2520(Windows%2520NT%252010.0%253B%2520Win64%253B%2520x64%253B%2520rv%253A105.0)%2520Gecko%252F20100101%2520Firefox%252F105.0|38=0348384880898043871649691398854|6=1675515145744|29=046123862290262841666404955068&rr=0.9992487252674185
IP 211.152.137.25:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cgi-bin/log_data.fcg?num=1&record0=21=midasbuy.custom.xmidas.init.result|8=test_id%3D%26bucket_id%3D%26order_refer%3D%26result%3Dv0.1.12%252C211|4=uv_046123862290262841666404955068|51=mds_hkweb_pc-v2-android-midasweb-midasbuy|31=oversea_web_v2_ot|43=|24=1450015065|23=v2|25=http%3A%2F%2Fkanok.alphagg7.cyou%2F|26=pc|3=|36=|50=Mozilla%252F5.0%2520(Windows%2520NT%252010.0%253B%2520Win64%253B%2520x64%253B%2520rv%253A105.0)%2520Gecko%252F20100101%2520Firefox%252F105.0|38=0348384880898043871649691398854|6=1675515145744|29=046123862290262841666404955068&rr=0.9992487252674185 HTTP/1.1
Host: report1.midasbuy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kanok.alphagg7.cyou/
HTTP/1.1 302 Found
Location: https://report1.midasbuy.com/cgi-bin/log_data.fcg?num=1&record0=21=midasbuy.custom.xmidas.init.result|8=test_id%3D%26bucket_id%3D%26order_refer%3D%26result%3Dv0.1.12%252C211|4=uv_046123862290262841666404955068|51=mds_hkweb_pc-v2-android-midasweb-midasbuy|31=oversea_web_v2_ot|43=|24=1450015065|23=v2|25=http%3A%2F%2Fkanok.alphagg7.cyou%2F|26=pc|3=|36=|50=Mozilla%252F5.0%2520(Windows%2520NT%252010.0%253B%2520Win64%253B%2520x64%253B%2520rv%253A105.0)%2520Gecko%252F20100101%2520Firefox%252F105.0|38=0348384880898043871649691398854|6=1675515145744|29=046123862290262841666404955068&rr=0.9992487252674185
Content-Length: 0
X-NWS-LOG-UUID: 10530165673777777488
Connection: keep-alive
Server: OverSea_E0
Date: Sat, 04 Feb 2023 12:51:52 GMT
X-Cache-Lookup: Return Directly
report1.midasbuy.com/cgi-bin/log_data.fcg?num=1&record0=21=midasbuy.custom.xmidas.init|8=test_id%3D%26bucket_id%3D%26order_refer%3D%26times%3D0|4=uv_046123862290262841666404955068|51=mds_hkweb_pc-v2-android-midasweb-midasbuy|31=oversea_web_v2_ot|43=|24=1450015065|23=v2|25=http%3A%2F%2Fkanok.alphagg7.cyou%2F|26=pc|3=|36=|50=Mozilla%252F5.0%2520(Windows%2520NT%252010.0%253B%2520Win64%253B%2520x64%253B%2520rv%253A105.0)%2520Gecko%252F20100101%2520Firefox%252F105.0|38=0348384880898043871649691398854|6=1675515145744|29=046123862290262841666404955068&rr=0.13977760072665768
211.152.137.25200 OK 29 B URL HTTP/2 report1.midasbuy.com/cgi-bin/log_data.fcg?num=1&record0=21=midasbuy.custom.xmidas.init|8=test_id%3D%26bucket_id%3D%26order_refer%3D%26times%3D0|4=uv_046123862290262841666404955068|51=mds_hkweb_pc-v2-android-midasweb-midasbuy|31=oversea_web_v2_ot|43=|24=1450015065|23=v2|25=http%3A%2F%2Fkanok.alphagg7.cyou%2F|26=pc|3=|36=|50=Mozilla%252F5.0%2520(Windows%2520NT%252010.0%253B%2520Win64%253B%2520x64%253B%2520rv%253A105.0)%2520Gecko%252F20100101%2520Firefox%252F105.0|38=0348384880898043871649691398854|6=1675515145744|29=046123862290262841666404955068&rr=0.13977760072665768
IP 211.152.137.25:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 2935fb252651c11a0686fa86463b502b
61d2f0bb210e47ae4e1828536a5a8ab18db01017
37bb2788d2a768dc291105ef695562033e91d7b6d0283600d27d482b985d27ae
GET /cgi-bin/log_data.fcg?num=1&record0=21=midasbuy.custom.xmidas.init|8=test_id%3D%26bucket_id%3D%26order_refer%3D%26times%3D0|4=uv_046123862290262841666404955068|51=mds_hkweb_pc-v2-android-midasweb-midasbuy|31=oversea_web_v2_ot|43=|24=1450015065|23=v2|25=http%3A%2F%2Fkanok.alphagg7.cyou%2F|26=pc|3=|36=|50=Mozilla%252F5.0%2520(Windows%2520NT%252010.0%253B%2520Win64%253B%2520x64%253B%2520rv%253A105.0)%2520Gecko%252F20100101%2520Firefox%252F105.0|38=0348384880898043871649691398854|6=1675515145744|29=046123862290262841666404955068&rr=0.13977760072665768 HTTP/1.1
Host: report1.midasbuy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://kanok.alphagg7.cyou/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 12:51:52 GMT
content-type: text/html;charset=utf-8
server: nginx
content-encoding: gzip
content-length: 29
x-nws-log-uuid: 16427038532545610293
x-cache-lookup: Cache Miss, Cache Miss
X-Firefox-Spdy: h2
report1.midasbuy.com/cgi-bin/log_data.fcg?num=1&record0=21=midasbuy.req.getFingerPrint.start|8=test_id%3D%26bucket_id%3D%26order_refer%3D|4=uv_046123862290262841666404955068|51=mds_hkweb_pc-v2-android-midasweb-midasbuy|31=oversea_web_v2_ot|43=|24=1450015065|23=v2|25=http%3A%2F%2Fkanok.alphagg7.cyou%2F|26=pc|3=|36=|50=Mozilla%252F5.0%2520(Windows%2520NT%252010.0%253B%2520Win64%253B%2520x64%253B%2520rv%253A105.0)%2520Gecko%252F20100101%2520Firefox%252F105.0|38=0348384880898043871649691398854|6=1675515145749|29=046123862290262841666404955068&rr=0.2405954213673953
211.152.137.25302 Found 0 B URL HTTP/1.1 report1.midasbuy.com/cgi-bin/log_data.fcg?num=1&record0=21=midasbuy.req.getFingerPrint.start|8=test_id%3D%26bucket_id%3D%26order_refer%3D|4=uv_046123862290262841666404955068|51=mds_hkweb_pc-v2-android-midasweb-midasbuy|31=oversea_web_v2_ot|43=|24=1450015065|23=v2|25=http%3A%2F%2Fkanok.alphagg7.cyou%2F|26=pc|3=|36=|50=Mozilla%252F5.0%2520(Windows%2520NT%252010.0%253B%2520Win64%253B%2520x64%253B%2520rv%253A105.0)%2520Gecko%252F20100101%2520Firefox%252F105.0|38=0348384880898043871649691398854|6=1675515145749|29=046123862290262841666404955068&rr=0.2405954213673953
IP 211.152.137.25:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cgi-bin/log_data.fcg?num=1&record0=21=midasbuy.req.getFingerPrint.start|8=test_id%3D%26bucket_id%3D%26order_refer%3D|4=uv_046123862290262841666404955068|51=mds_hkweb_pc-v2-android-midasweb-midasbuy|31=oversea_web_v2_ot|43=|24=1450015065|23=v2|25=http%3A%2F%2Fkanok.alphagg7.cyou%2F|26=pc|3=|36=|50=Mozilla%252F5.0%2520(Windows%2520NT%252010.0%253B%2520Win64%253B%2520x64%253B%2520rv%253A105.0)%2520Gecko%252F20100101%2520Firefox%252F105.0|38=0348384880898043871649691398854|6=1675515145749|29=046123862290262841666404955068&rr=0.2405954213673953 HTTP/1.1
Host: report1.midasbuy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kanok.alphagg7.cyou/
HTTP/1.1 302 Found
Location: https://report1.midasbuy.com/cgi-bin/log_data.fcg?num=1&record0=21=midasbuy.req.getFingerPrint.start|8=test_id%3D%26bucket_id%3D%26order_refer%3D|4=uv_046123862290262841666404955068|51=mds_hkweb_pc-v2-android-midasweb-midasbuy|31=oversea_web_v2_ot|43=|24=1450015065|23=v2|25=http%3A%2F%2Fkanok.alphagg7.cyou%2F|26=pc|3=|36=|50=Mozilla%252F5.0%2520(Windows%2520NT%252010.0%253B%2520Win64%253B%2520x64%253B%2520rv%253A105.0)%2520Gecko%252F20100101%2520Firefox%252F105.0|38=0348384880898043871649691398854|6=1675515145749|29=046123862290262841666404955068&rr=0.2405954213673953
Content-Length: 0
X-NWS-LOG-UUID: 334977020102910265
Connection: keep-alive
Server: OverSea_E0
Date: Sat, 04 Feb 2023 12:51:52 GMT
X-Cache-Lookup: Return Directly
report1.midasbuy.com/cgi-bin/log_data.fcg?num=1&record0=21=midasbuy.custom.xmidas.init.result|8=test_id%3D%26bucket_id%3D%26order_refer%3D%26result%3Dv0.1.12%252C211|4=uv_046123862290262841666404955068|51=mds_hkweb_pc-v2-android-midasweb-midasbuy|31=oversea_web_v2_ot|43=|24=1450015065|23=v2|25=http%3A%2F%2Fkanok.alphagg7.cyou%2F|26=pc|3=|36=|50=Mozilla%252F5.0%2520(Windows%2520NT%252010.0%253B%2520Win64%253B%2520x64%253B%2520rv%253A105.0)%2520Gecko%252F20100101%2520Firefox%252F105.0|38=0348384880898043871649691398854|6=1675515145744|29=046123862290262841666404955068&rr=0.9992487252674185
211.152.137.25200 OK 29 B URL HTTP/2 report1.midasbuy.com/cgi-bin/log_data.fcg?num=1&record0=21=midasbuy.custom.xmidas.init.result|8=test_id%3D%26bucket_id%3D%26order_refer%3D%26result%3Dv0.1.12%252C211|4=uv_046123862290262841666404955068|51=mds_hkweb_pc-v2-android-midasweb-midasbuy|31=oversea_web_v2_ot|43=|24=1450015065|23=v2|25=http%3A%2F%2Fkanok.alphagg7.cyou%2F|26=pc|3=|36=|50=Mozilla%252F5.0%2520(Windows%2520NT%252010.0%253B%2520Win64%253B%2520x64%253B%2520rv%253A105.0)%2520Gecko%252F20100101%2520Firefox%252F105.0|38=0348384880898043871649691398854|6=1675515145744|29=046123862290262841666404955068&rr=0.9992487252674185
IP 211.152.137.25:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 2935fb252651c11a0686fa86463b502b
61d2f0bb210e47ae4e1828536a5a8ab18db01017
37bb2788d2a768dc291105ef695562033e91d7b6d0283600d27d482b985d27ae
GET /cgi-bin/log_data.fcg?num=1&record0=21=midasbuy.custom.xmidas.init.result|8=test_id%3D%26bucket_id%3D%26order_refer%3D%26result%3Dv0.1.12%252C211|4=uv_046123862290262841666404955068|51=mds_hkweb_pc-v2-android-midasweb-midasbuy|31=oversea_web_v2_ot|43=|24=1450015065|23=v2|25=http%3A%2F%2Fkanok.alphagg7.cyou%2F|26=pc|3=|36=|50=Mozilla%252F5.0%2520(Windows%2520NT%252010.0%253B%2520Win64%253B%2520x64%253B%2520rv%253A105.0)%2520Gecko%252F20100101%2520Firefox%252F105.0|38=0348384880898043871649691398854|6=1675515145744|29=046123862290262841666404955068&rr=0.9992487252674185 HTTP/1.1
Host: report1.midasbuy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://kanok.alphagg7.cyou/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 12:51:52 GMT
content-type: text/html;charset=utf-8
server: nginx
content-encoding: gzip
content-length: 29
x-nws-log-uuid: 3847954264606719687
x-cache-lookup: Cache Miss, Cache Miss
X-Firefox-Spdy: h2
report1.midasbuy.com/cgi-bin/log_data.fcg?num=1&record0=21=midasbuy.custom.xmidas.init|8=test_id%3D%26bucket_id%3D%26order_refer%3D%26times%3D0|4=uv_046123862290262841666404955068|51=mds_hkweb_pc-v2-android-midasweb-midasbuy|31=oversea_web_v2_ot|43=|24=1450015065|23=v2|25=http%3A%2F%2Fkanok.alphagg7.cyou%2F|26=pc|3=|36=|50=Mozilla%252F5.0%2520(Windows%2520NT%252010.0%253B%2520Win64%253B%2520x64%253B%2520rv%253A105.0)%2520Gecko%252F20100101%2520Firefox%252F105.0|38=0348384880898043871649691398854|6=1675515145749|29=046123862290262841666404955068&rr=0.6686732769550521
211.152.137.25302 Found 0 B URL HTTP/1.1 report1.midasbuy.com/cgi-bin/log_data.fcg?num=1&record0=21=midasbuy.custom.xmidas.init|8=test_id%3D%26bucket_id%3D%26order_refer%3D%26times%3D0|4=uv_046123862290262841666404955068|51=mds_hkweb_pc-v2-android-midasweb-midasbuy|31=oversea_web_v2_ot|43=|24=1450015065|23=v2|25=http%3A%2F%2Fkanok.alphagg7.cyou%2F|26=pc|3=|36=|50=Mozilla%252F5.0%2520(Windows%2520NT%252010.0%253B%2520Win64%253B%2520x64%253B%2520rv%253A105.0)%2520Gecko%252F20100101%2520Firefox%252F105.0|38=0348384880898043871649691398854|6=1675515145749|29=046123862290262841666404955068&rr=0.6686732769550521
IP 211.152.137.25:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cgi-bin/log_data.fcg?num=1&record0=21=midasbuy.custom.xmidas.init|8=test_id%3D%26bucket_id%3D%26order_refer%3D%26times%3D0|4=uv_046123862290262841666404955068|51=mds_hkweb_pc-v2-android-midasweb-midasbuy|31=oversea_web_v2_ot|43=|24=1450015065|23=v2|25=http%3A%2F%2Fkanok.alphagg7.cyou%2F|26=pc|3=|36=|50=Mozilla%252F5.0%2520(Windows%2520NT%252010.0%253B%2520Win64%253B%2520x64%253B%2520rv%253A105.0)%2520Gecko%252F20100101%2520Firefox%252F105.0|38=0348384880898043871649691398854|6=1675515145749|29=046123862290262841666404955068&rr=0.6686732769550521 HTTP/1.1
Host: report1.midasbuy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kanok.alphagg7.cyou/
HTTP/1.1 302 Found
Location: https://report1.midasbuy.com/cgi-bin/log_data.fcg?num=1&record0=21=midasbuy.custom.xmidas.init|8=test_id%3D%26bucket_id%3D%26order_refer%3D%26times%3D0|4=uv_046123862290262841666404955068|51=mds_hkweb_pc-v2-android-midasweb-midasbuy|31=oversea_web_v2_ot|43=|24=1450015065|23=v2|25=http%3A%2F%2Fkanok.alphagg7.cyou%2F|26=pc|3=|36=|50=Mozilla%252F5.0%2520(Windows%2520NT%252010.0%253B%2520Win64%253B%2520x64%253B%2520rv%253A105.0)%2520Gecko%252F20100101%2520Firefox%252F105.0|38=0348384880898043871649691398854|6=1675515145749|29=046123862290262841666404955068&rr=0.6686732769550521
Content-Length: 0
X-NWS-LOG-UUID: 7313114472594576455
Connection: keep-alive
Server: OverSea_E0
Date: Sat, 04 Feb 2023 12:51:53 GMT
X-Cache-Lookup: Return Directly
report1.midasbuy.com/cgi-bin/log_data.fcg?num=1&record0=21=midasbuy.req.getFingerPrint.start|8=test_id%3D%26bucket_id%3D%26order_refer%3D|4=uv_046123862290262841666404955068|51=mds_hkweb_pc-v2-android-midasweb-midasbuy|31=oversea_web_v2_ot|43=|24=1450015065|23=v2|25=http%3A%2F%2Fkanok.alphagg7.cyou%2F|26=pc|3=|36=|50=Mozilla%252F5.0%2520(Windows%2520NT%252010.0%253B%2520Win64%253B%2520x64%253B%2520rv%253A105.0)%2520Gecko%252F20100101%2520Firefox%252F105.0|38=0348384880898043871649691398854|6=1675515145749|29=046123862290262841666404955068&rr=0.2405954213673953
211.152.137.25200 OK 29 B URL HTTP/2 report1.midasbuy.com/cgi-bin/log_data.fcg?num=1&record0=21=midasbuy.req.getFingerPrint.start|8=test_id%3D%26bucket_id%3D%26order_refer%3D|4=uv_046123862290262841666404955068|51=mds_hkweb_pc-v2-android-midasweb-midasbuy|31=oversea_web_v2_ot|43=|24=1450015065|23=v2|25=http%3A%2F%2Fkanok.alphagg7.cyou%2F|26=pc|3=|36=|50=Mozilla%252F5.0%2520(Windows%2520NT%252010.0%253B%2520Win64%253B%2520x64%253B%2520rv%253A105.0)%2520Gecko%252F20100101%2520Firefox%252F105.0|38=0348384880898043871649691398854|6=1675515145749|29=046123862290262841666404955068&rr=0.2405954213673953
IP 211.152.137.25:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 2935fb252651c11a0686fa86463b502b
61d2f0bb210e47ae4e1828536a5a8ab18db01017
37bb2788d2a768dc291105ef695562033e91d7b6d0283600d27d482b985d27ae
GET /cgi-bin/log_data.fcg?num=1&record0=21=midasbuy.req.getFingerPrint.start|8=test_id%3D%26bucket_id%3D%26order_refer%3D|4=uv_046123862290262841666404955068|51=mds_hkweb_pc-v2-android-midasweb-midasbuy|31=oversea_web_v2_ot|43=|24=1450015065|23=v2|25=http%3A%2F%2Fkanok.alphagg7.cyou%2F|26=pc|3=|36=|50=Mozilla%252F5.0%2520(Windows%2520NT%252010.0%253B%2520Win64%253B%2520x64%253B%2520rv%253A105.0)%2520Gecko%252F20100101%2520Firefox%252F105.0|38=0348384880898043871649691398854|6=1675515145749|29=046123862290262841666404955068&rr=0.2405954213673953 HTTP/1.1
Host: report1.midasbuy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://kanok.alphagg7.cyou/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 12:51:52 GMT
content-type: text/html;charset=utf-8
server: nginx
content-encoding: gzip
content-length: 29
x-nws-log-uuid: 2187231030926281466
x-cache-lookup: Cache Miss, Cache Miss
X-Firefox-Spdy: h2
report1.midasbuy.com/cgi-bin/log_data.fcg?num=1&record0=21=midasbuy.custom.xmidas.init.result|8=test_id%3D%26bucket_id%3D%26order_refer%3D%26result%3Dv0.1.12%252C211|4=uv_046123862290262841666404955068|51=mds_hkweb_pc-v2-android-midasweb-midasbuy|31=oversea_web_v2_ot|43=|24=1450015065|23=v2|25=http%3A%2F%2Fkanok.alphagg7.cyou%2F|26=pc|3=|36=|50=Mozilla%252F5.0%2520(Windows%2520NT%252010.0%253B%2520Win64%253B%2520x64%253B%2520rv%253A105.0)%2520Gecko%252F20100101%2520Firefox%252F105.0|38=0348384880898043871649691398854|6=1675515145749|29=046123862290262841666404955068&rr=0.35402740289099566
211.152.137.25302 Found 0 B URL HTTP/1.1 report1.midasbuy.com/cgi-bin/log_data.fcg?num=1&record0=21=midasbuy.custom.xmidas.init.result|8=test_id%3D%26bucket_id%3D%26order_refer%3D%26result%3Dv0.1.12%252C211|4=uv_046123862290262841666404955068|51=mds_hkweb_pc-v2-android-midasweb-midasbuy|31=oversea_web_v2_ot|43=|24=1450015065|23=v2|25=http%3A%2F%2Fkanok.alphagg7.cyou%2F|26=pc|3=|36=|50=Mozilla%252F5.0%2520(Windows%2520NT%252010.0%253B%2520Win64%253B%2520x64%253B%2520rv%253A105.0)%2520Gecko%252F20100101%2520Firefox%252F105.0|38=0348384880898043871649691398854|6=1675515145749|29=046123862290262841666404955068&rr=0.35402740289099566
IP 211.152.137.25:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cgi-bin/log_data.fcg?num=1&record0=21=midasbuy.custom.xmidas.init.result|8=test_id%3D%26bucket_id%3D%26order_refer%3D%26result%3Dv0.1.12%252C211|4=uv_046123862290262841666404955068|51=mds_hkweb_pc-v2-android-midasweb-midasbuy|31=oversea_web_v2_ot|43=|24=1450015065|23=v2|25=http%3A%2F%2Fkanok.alphagg7.cyou%2F|26=pc|3=|36=|50=Mozilla%252F5.0%2520(Windows%2520NT%252010.0%253B%2520Win64%253B%2520x64%253B%2520rv%253A105.0)%2520Gecko%252F20100101%2520Firefox%252F105.0|38=0348384880898043871649691398854|6=1675515145749|29=046123862290262841666404955068&rr=0.35402740289099566 HTTP/1.1
Host: report1.midasbuy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kanok.alphagg7.cyou/
HTTP/1.1 302 Found
Location: https://report1.midasbuy.com/cgi-bin/log_data.fcg?num=1&record0=21=midasbuy.custom.xmidas.init.result|8=test_id%3D%26bucket_id%3D%26order_refer%3D%26result%3Dv0.1.12%252C211|4=uv_046123862290262841666404955068|51=mds_hkweb_pc-v2-android-midasweb-midasbuy|31=oversea_web_v2_ot|43=|24=1450015065|23=v2|25=http%3A%2F%2Fkanok.alphagg7.cyou%2F|26=pc|3=|36=|50=Mozilla%252F5.0%2520(Windows%2520NT%252010.0%253B%2520Win64%253B%2520x64%253B%2520rv%253A105.0)%2520Gecko%252F20100101%2520Firefox%252F105.0|38=0348384880898043871649691398854|6=1675515145749|29=046123862290262841666404955068&rr=0.35402740289099566
Content-Length: 0
X-NWS-LOG-UUID: 8925967527054838094
Connection: keep-alive
Server: OverSea_E0
Date: Sat, 04 Feb 2023 12:51:53 GMT
X-Cache-Lookup: Return Directly
report1.midasbuy.com/cgi-bin/log_data.fcg?num=1&record0=21=midasbuy.custom.xmidas.init|8=test_id%3D%26bucket_id%3D%26order_refer%3D%26times%3D0|4=uv_046123862290262841666404955068|51=mds_hkweb_pc-v2-android-midasweb-midasbuy|31=oversea_web_v2_ot|43=|24=1450015065|23=v2|25=http%3A%2F%2Fkanok.alphagg7.cyou%2F|26=pc|3=|36=|50=Mozilla%252F5.0%2520(Windows%2520NT%252010.0%253B%2520Win64%253B%2520x64%253B%2520rv%253A105.0)%2520Gecko%252F20100101%2520Firefox%252F105.0|38=0348384880898043871649691398854|6=1675515145749|29=046123862290262841666404955068&rr=0.6686732769550521
211.152.137.25200 OK 29 B URL HTTP/2 report1.midasbuy.com/cgi-bin/log_data.fcg?num=1&record0=21=midasbuy.custom.xmidas.init|8=test_id%3D%26bucket_id%3D%26order_refer%3D%26times%3D0|4=uv_046123862290262841666404955068|51=mds_hkweb_pc-v2-android-midasweb-midasbuy|31=oversea_web_v2_ot|43=|24=1450015065|23=v2|25=http%3A%2F%2Fkanok.alphagg7.cyou%2F|26=pc|3=|36=|50=Mozilla%252F5.0%2520(Windows%2520NT%252010.0%253B%2520Win64%253B%2520x64%253B%2520rv%253A105.0)%2520Gecko%252F20100101%2520Firefox%252F105.0|38=0348384880898043871649691398854|6=1675515145749|29=046123862290262841666404955068&rr=0.6686732769550521
IP 211.152.137.25:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 2935fb252651c11a0686fa86463b502b
61d2f0bb210e47ae4e1828536a5a8ab18db01017
37bb2788d2a768dc291105ef695562033e91d7b6d0283600d27d482b985d27ae
GET /cgi-bin/log_data.fcg?num=1&record0=21=midasbuy.custom.xmidas.init|8=test_id%3D%26bucket_id%3D%26order_refer%3D%26times%3D0|4=uv_046123862290262841666404955068|51=mds_hkweb_pc-v2-android-midasweb-midasbuy|31=oversea_web_v2_ot|43=|24=1450015065|23=v2|25=http%3A%2F%2Fkanok.alphagg7.cyou%2F|26=pc|3=|36=|50=Mozilla%252F5.0%2520(Windows%2520NT%252010.0%253B%2520Win64%253B%2520x64%253B%2520rv%253A105.0)%2520Gecko%252F20100101%2520Firefox%252F105.0|38=0348384880898043871649691398854|6=1675515145749|29=046123862290262841666404955068&rr=0.6686732769550521 HTTP/1.1
Host: report1.midasbuy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://kanok.alphagg7.cyou/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 12:51:53 GMT
content-type: text/html;charset=utf-8
server: nginx
content-encoding: gzip
content-length: 29
x-nws-log-uuid: 15453382522174070502
x-cache-lookup: Cache Miss, Cache Miss
X-Firefox-Spdy: h2
report1.midasbuy.com/cgi-bin/log_data.fcg?num=1&record0=21=midasbuy.pageview.topupv2|13=1|8=test_id%3D%26bucket_id%3D%26order_refer%3D|4=uv_046123862290262841666404955068|51=mds_hkweb_pc-v2-android-midasweb-midasbuy|31=oversea_web_v2_ot|43=|24=1450015065|23=v2|25=http%3A%2F%2Fkanok.alphagg7.cyou%2F|26=pc|3=|36=|50=Mozilla%252F5.0%2520(Windows%2520NT%252010.0%253B%2520Win64%253B%2520x64%253B%2520rv%253A105.0)%2520Gecko%252F20100101%2520Firefox%252F105.0|38=0348384880898043871649691398854|6=1675515146014|29=046123862290262841666404955068&rr=0.6936519830976432
211.152.137.25302 Found 0 B URL HTTP/1.1 report1.midasbuy.com/cgi-bin/log_data.fcg?num=1&record0=21=midasbuy.pageview.topupv2|13=1|8=test_id%3D%26bucket_id%3D%26order_refer%3D|4=uv_046123862290262841666404955068|51=mds_hkweb_pc-v2-android-midasweb-midasbuy|31=oversea_web_v2_ot|43=|24=1450015065|23=v2|25=http%3A%2F%2Fkanok.alphagg7.cyou%2F|26=pc|3=|36=|50=Mozilla%252F5.0%2520(Windows%2520NT%252010.0%253B%2520Win64%253B%2520x64%253B%2520rv%253A105.0)%2520Gecko%252F20100101%2520Firefox%252F105.0|38=0348384880898043871649691398854|6=1675515146014|29=046123862290262841666404955068&rr=0.6936519830976432
IP 211.152.137.25:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cgi-bin/log_data.fcg?num=1&record0=21=midasbuy.pageview.topupv2|13=1|8=test_id%3D%26bucket_id%3D%26order_refer%3D|4=uv_046123862290262841666404955068|51=mds_hkweb_pc-v2-android-midasweb-midasbuy|31=oversea_web_v2_ot|43=|24=1450015065|23=v2|25=http%3A%2F%2Fkanok.alphagg7.cyou%2F|26=pc|3=|36=|50=Mozilla%252F5.0%2520(Windows%2520NT%252010.0%253B%2520Win64%253B%2520x64%253B%2520rv%253A105.0)%2520Gecko%252F20100101%2520Firefox%252F105.0|38=0348384880898043871649691398854|6=1675515146014|29=046123862290262841666404955068&rr=0.6936519830976432 HTTP/1.1
Host: report1.midasbuy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kanok.alphagg7.cyou/
HTTP/1.1 302 Found
Location: https://report1.midasbuy.com/cgi-bin/log_data.fcg?num=1&record0=21=midasbuy.pageview.topupv2|13=1|8=test_id%3D%26bucket_id%3D%26order_refer%3D|4=uv_046123862290262841666404955068|51=mds_hkweb_pc-v2-android-midasweb-midasbuy|31=oversea_web_v2_ot|43=|24=1450015065|23=v2|25=http%3A%2F%2Fkanok.alphagg7.cyou%2F|26=pc|3=|36=|50=Mozilla%252F5.0%2520(Windows%2520NT%252010.0%253B%2520Win64%253B%2520x64%253B%2520rv%253A105.0)%2520Gecko%252F20100101%2520Firefox%252F105.0|38=0348384880898043871649691398854|6=1675515146014|29=046123862290262841666404955068&rr=0.6936519830976432
Content-Length: 0
X-NWS-LOG-UUID: 17680171531677029077
Connection: keep-alive
Server: OverSea_E0
Date: Sat, 04 Feb 2023 12:51:53 GMT
X-Cache-Lookup: Return Directly
report1.midasbuy.com/cgi-bin/log_data.fcg?num=1&record0=21=midasbuy.custom.xmidas.init.result|8=test_id%3D%26bucket_id%3D%26order_refer%3D%26result%3Dv0.1.12%252C211|4=uv_046123862290262841666404955068|51=mds_hkweb_pc-v2-android-midasweb-midasbuy|31=oversea_web_v2_ot|43=|24=1450015065|23=v2|25=http%3A%2F%2Fkanok.alphagg7.cyou%2F|26=pc|3=|36=|50=Mozilla%252F5.0%2520(Windows%2520NT%252010.0%253B%2520Win64%253B%2520x64%253B%2520rv%253A105.0)%2520Gecko%252F20100101%2520Firefox%252F105.0|38=0348384880898043871649691398854|6=1675515145749|29=046123862290262841666404955068&rr=0.35402740289099566
211.152.137.25200 OK 29 B URL HTTP/2 report1.midasbuy.com/cgi-bin/log_data.fcg?num=1&record0=21=midasbuy.custom.xmidas.init.result|8=test_id%3D%26bucket_id%3D%26order_refer%3D%26result%3Dv0.1.12%252C211|4=uv_046123862290262841666404955068|51=mds_hkweb_pc-v2-android-midasweb-midasbuy|31=oversea_web_v2_ot|43=|24=1450015065|23=v2|25=http%3A%2F%2Fkanok.alphagg7.cyou%2F|26=pc|3=|36=|50=Mozilla%252F5.0%2520(Windows%2520NT%252010.0%253B%2520Win64%253B%2520x64%253B%2520rv%253A105.0)%2520Gecko%252F20100101%2520Firefox%252F105.0|38=0348384880898043871649691398854|6=1675515145749|29=046123862290262841666404955068&rr=0.35402740289099566
IP 211.152.137.25:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 2935fb252651c11a0686fa86463b502b
61d2f0bb210e47ae4e1828536a5a8ab18db01017
37bb2788d2a768dc291105ef695562033e91d7b6d0283600d27d482b985d27ae
GET /cgi-bin/log_data.fcg?num=1&record0=21=midasbuy.custom.xmidas.init.result|8=test_id%3D%26bucket_id%3D%26order_refer%3D%26result%3Dv0.1.12%252C211|4=uv_046123862290262841666404955068|51=mds_hkweb_pc-v2-android-midasweb-midasbuy|31=oversea_web_v2_ot|43=|24=1450015065|23=v2|25=http%3A%2F%2Fkanok.alphagg7.cyou%2F|26=pc|3=|36=|50=Mozilla%252F5.0%2520(Windows%2520NT%252010.0%253B%2520Win64%253B%2520x64%253B%2520rv%253A105.0)%2520Gecko%252F20100101%2520Firefox%252F105.0|38=0348384880898043871649691398854|6=1675515145749|29=046123862290262841666404955068&rr=0.35402740289099566 HTTP/1.1
Host: report1.midasbuy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://kanok.alphagg7.cyou/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 12:51:53 GMT
content-type: text/html;charset=utf-8
server: nginx
content-encoding: gzip
content-length: 29
x-nws-log-uuid: 4064068825964921592
x-cache-lookup: Cache Miss, Cache Miss
X-Firefox-Spdy: h2
report1.midasbuy.com/cgi-bin/log_data.fcg?num=1&record0=21=midasbuy.custom.xmidas.init|8=test_id%3D%26bucket_id%3D%26order_refer%3D%26times%3D0|4=uv_046123862290262841666404955068|51=mds_hkweb_pc-v2-android-midasweb-midasbuy|31=oversea_web_v2_ot|43=|24=1450015065|23=v2|25=http%3A%2F%2Fkanok.alphagg7.cyou%2F|26=pc|3=|36=|50=Mozilla%252F5.0%2520(Windows%2520NT%252010.0%253B%2520Win64%253B%2520x64%253B%2520rv%253A105.0)%2520Gecko%252F20100101%2520Firefox%252F105.0|38=0348384880898043871649691398854|6=1675515146189|29=046123862290262841666404955068&rr=0.3177856427217436
211.152.137.25302 Found 0 B URL HTTP/1.1 report1.midasbuy.com/cgi-bin/log_data.fcg?num=1&record0=21=midasbuy.custom.xmidas.init|8=test_id%3D%26bucket_id%3D%26order_refer%3D%26times%3D0|4=uv_046123862290262841666404955068|51=mds_hkweb_pc-v2-android-midasweb-midasbuy|31=oversea_web_v2_ot|43=|24=1450015065|23=v2|25=http%3A%2F%2Fkanok.alphagg7.cyou%2F|26=pc|3=|36=|50=Mozilla%252F5.0%2520(Windows%2520NT%252010.0%253B%2520Win64%253B%2520x64%253B%2520rv%253A105.0)%2520Gecko%252F20100101%2520Firefox%252F105.0|38=0348384880898043871649691398854|6=1675515146189|29=046123862290262841666404955068&rr=0.3177856427217436
IP 211.152.137.25:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cgi-bin/log_data.fcg?num=1&record0=21=midasbuy.custom.xmidas.init|8=test_id%3D%26bucket_id%3D%26order_refer%3D%26times%3D0|4=uv_046123862290262841666404955068|51=mds_hkweb_pc-v2-android-midasweb-midasbuy|31=oversea_web_v2_ot|43=|24=1450015065|23=v2|25=http%3A%2F%2Fkanok.alphagg7.cyou%2F|26=pc|3=|36=|50=Mozilla%252F5.0%2520(Windows%2520NT%252010.0%253B%2520Win64%253B%2520x64%253B%2520rv%253A105.0)%2520Gecko%252F20100101%2520Firefox%252F105.0|38=0348384880898043871649691398854|6=1675515146189|29=046123862290262841666404955068&rr=0.3177856427217436 HTTP/1.1
Host: report1.midasbuy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kanok.alphagg7.cyou/
HTTP/1.1 302 Found
Location: https://report1.midasbuy.com/cgi-bin/log_data.fcg?num=1&record0=21=midasbuy.custom.xmidas.init|8=test_id%3D%26bucket_id%3D%26order_refer%3D%26times%3D0|4=uv_046123862290262841666404955068|51=mds_hkweb_pc-v2-android-midasweb-midasbuy|31=oversea_web_v2_ot|43=|24=1450015065|23=v2|25=http%3A%2F%2Fkanok.alphagg7.cyou%2F|26=pc|3=|36=|50=Mozilla%252F5.0%2520(Windows%2520NT%252010.0%253B%2520Win64%253B%2520x64%253B%2520rv%253A105.0)%2520Gecko%252F20100101%2520Firefox%252F105.0|38=0348384880898043871649691398854|6=1675515146189|29=046123862290262841666404955068&rr=0.3177856427217436
Content-Length: 0
X-NWS-LOG-UUID: 7287573984905187249
Connection: keep-alive
Server: OverSea_E0
Date: Sat, 04 Feb 2023 12:51:53 GMT
X-Cache-Lookup: Return Directly
report1.midasbuy.com/cgi-bin/log_data.fcg?num=1&record0=21=midasbuy.pageview.topupv2|13=1|8=test_id%3D%26bucket_id%3D%26order_refer%3D|4=uv_046123862290262841666404955068|51=mds_hkweb_pc-v2-android-midasweb-midasbuy|31=oversea_web_v2_ot|43=|24=1450015065|23=v2|25=http%3A%2F%2Fkanok.alphagg7.cyou%2F|26=pc|3=|36=|50=Mozilla%252F5.0%2520(Windows%2520NT%252010.0%253B%2520Win64%253B%2520x64%253B%2520rv%253A105.0)%2520Gecko%252F20100101%2520Firefox%252F105.0|38=0348384880898043871649691398854|6=1675515146014|29=046123862290262841666404955068&rr=0.6936519830976432
211.152.137.25200 OK 29 B URL HTTP/2 report1.midasbuy.com/cgi-bin/log_data.fcg?num=1&record0=21=midasbuy.pageview.topupv2|13=1|8=test_id%3D%26bucket_id%3D%26order_refer%3D|4=uv_046123862290262841666404955068|51=mds_hkweb_pc-v2-android-midasweb-midasbuy|31=oversea_web_v2_ot|43=|24=1450015065|23=v2|25=http%3A%2F%2Fkanok.alphagg7.cyou%2F|26=pc|3=|36=|50=Mozilla%252F5.0%2520(Windows%2520NT%252010.0%253B%2520Win64%253B%2520x64%253B%2520rv%253A105.0)%2520Gecko%252F20100101%2520Firefox%252F105.0|38=0348384880898043871649691398854|6=1675515146014|29=046123862290262841666404955068&rr=0.6936519830976432
IP 211.152.137.25:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 2935fb252651c11a0686fa86463b502b
61d2f0bb210e47ae4e1828536a5a8ab18db01017
37bb2788d2a768dc291105ef695562033e91d7b6d0283600d27d482b985d27ae
GET /cgi-bin/log_data.fcg?num=1&record0=21=midasbuy.pageview.topupv2|13=1|8=test_id%3D%26bucket_id%3D%26order_refer%3D|4=uv_046123862290262841666404955068|51=mds_hkweb_pc-v2-android-midasweb-midasbuy|31=oversea_web_v2_ot|43=|24=1450015065|23=v2|25=http%3A%2F%2Fkanok.alphagg7.cyou%2F|26=pc|3=|36=|50=Mozilla%252F5.0%2520(Windows%2520NT%252010.0%253B%2520Win64%253B%2520x64%253B%2520rv%253A105.0)%2520Gecko%252F20100101%2520Firefox%252F105.0|38=0348384880898043871649691398854|6=1675515146014|29=046123862290262841666404955068&rr=0.6936519830976432 HTTP/1.1
Host: report1.midasbuy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://kanok.alphagg7.cyou/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 12:51:53 GMT
content-type: text/html;charset=utf-8
server: nginx
content-encoding: gzip
content-length: 29
x-nws-log-uuid: 10722926666659540698
x-cache-lookup: Cache Miss, Cache Miss
X-Firefox-Spdy: h2
report1.midasbuy.com/cgi-bin/log_data.fcg?num=1&record0=21=midasbuy.custom.xmidas.init.result|8=test_id%3D%26bucket_id%3D%26order_refer%3D%26result%3Dv0.1.12%252C211|4=uv_046123862290262841666404955068|51=mds_hkweb_pc-v2-android-midasweb-midasbuy|31=oversea_web_v2_ot|43=|24=1450015065|23=v2|25=http%3A%2F%2Fkanok.alphagg7.cyou%2F|26=pc|3=|36=|50=Mozilla%252F5.0%2520(Windows%2520NT%252010.0%253B%2520Win64%253B%2520x64%253B%2520rv%253A105.0)%2520Gecko%252F20100101%2520Firefox%252F105.0|38=0348384880898043871649691398854|6=1675515146190|29=046123862290262841666404955068&rr=0.30188031146512007
211.152.137.25302 Found 0 B URL HTTP/1.1 report1.midasbuy.com/cgi-bin/log_data.fcg?num=1&record0=21=midasbuy.custom.xmidas.init.result|8=test_id%3D%26bucket_id%3D%26order_refer%3D%26result%3Dv0.1.12%252C211|4=uv_046123862290262841666404955068|51=mds_hkweb_pc-v2-android-midasweb-midasbuy|31=oversea_web_v2_ot|43=|24=1450015065|23=v2|25=http%3A%2F%2Fkanok.alphagg7.cyou%2F|26=pc|3=|36=|50=Mozilla%252F5.0%2520(Windows%2520NT%252010.0%253B%2520Win64%253B%2520x64%253B%2520rv%253A105.0)%2520Gecko%252F20100101%2520Firefox%252F105.0|38=0348384880898043871649691398854|6=1675515146190|29=046123862290262841666404955068&rr=0.30188031146512007
IP 211.152.137.25:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cgi-bin/log_data.fcg?num=1&record0=21=midasbuy.custom.xmidas.init.result|8=test_id%3D%26bucket_id%3D%26order_refer%3D%26result%3Dv0.1.12%252C211|4=uv_046123862290262841666404955068|51=mds_hkweb_pc-v2-android-midasweb-midasbuy|31=oversea_web_v2_ot|43=|24=1450015065|23=v2|25=http%3A%2F%2Fkanok.alphagg7.cyou%2F|26=pc|3=|36=|50=Mozilla%252F5.0%2520(Windows%2520NT%252010.0%253B%2520Win64%253B%2520x64%253B%2520rv%253A105.0)%2520Gecko%252F20100101%2520Firefox%252F105.0|38=0348384880898043871649691398854|6=1675515146190|29=046123862290262841666404955068&rr=0.30188031146512007 HTTP/1.1
Host: report1.midasbuy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kanok.alphagg7.cyou/
HTTP/1.1 302 Found
Location: https://report1.midasbuy.com/cgi-bin/log_data.fcg?num=1&record0=21=midasbuy.custom.xmidas.init.result|8=test_id%3D%26bucket_id%3D%26order_refer%3D%26result%3Dv0.1.12%252C211|4=uv_046123862290262841666404955068|51=mds_hkweb_pc-v2-android-midasweb-midasbuy|31=oversea_web_v2_ot|43=|24=1450015065|23=v2|25=http%3A%2F%2Fkanok.alphagg7.cyou%2F|26=pc|3=|36=|50=Mozilla%252F5.0%2520(Windows%2520NT%252010.0%253B%2520Win64%253B%2520x64%253B%2520rv%253A105.0)%2520Gecko%252F20100101%2520Firefox%252F105.0|38=0348384880898043871649691398854|6=1675515146190|29=046123862290262841666404955068&rr=0.30188031146512007
Content-Length: 0
X-NWS-LOG-UUID: 10386831412118068495
Connection: keep-alive
Server: OverSea_E0
Date: Sat, 04 Feb 2023 12:51:53 GMT
X-Cache-Lookup: Return Directly
report1.midasbuy.com/cgi-bin/log_data.fcg?num=1&record0=21=midasbuy.custom.xmidas.init|8=test_id%3D%26bucket_id%3D%26order_refer%3D%26times%3D0|4=uv_046123862290262841666404955068|51=mds_hkweb_pc-v2-android-midasweb-midasbuy|31=oversea_web_v2_ot|43=|24=1450015065|23=v2|25=http%3A%2F%2Fkanok.alphagg7.cyou%2F|26=pc|3=|36=|50=Mozilla%252F5.0%2520(Windows%2520NT%252010.0%253B%2520Win64%253B%2520x64%253B%2520rv%253A105.0)%2520Gecko%252F20100101%2520Firefox%252F105.0|38=0348384880898043871649691398854|6=1675515146189|29=046123862290262841666404955068&rr=0.3177856427217436
211.152.137.25200 OK 29 B URL HTTP/2 report1.midasbuy.com/cgi-bin/log_data.fcg?num=1&record0=21=midasbuy.custom.xmidas.init|8=test_id%3D%26bucket_id%3D%26order_refer%3D%26times%3D0|4=uv_046123862290262841666404955068|51=mds_hkweb_pc-v2-android-midasweb-midasbuy|31=oversea_web_v2_ot|43=|24=1450015065|23=v2|25=http%3A%2F%2Fkanok.alphagg7.cyou%2F|26=pc|3=|36=|50=Mozilla%252F5.0%2520(Windows%2520NT%252010.0%253B%2520Win64%253B%2520x64%253B%2520rv%253A105.0)%2520Gecko%252F20100101%2520Firefox%252F105.0|38=0348384880898043871649691398854|6=1675515146189|29=046123862290262841666404955068&rr=0.3177856427217436
IP 211.152.137.25:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 2935fb252651c11a0686fa86463b502b
61d2f0bb210e47ae4e1828536a5a8ab18db01017
37bb2788d2a768dc291105ef695562033e91d7b6d0283600d27d482b985d27ae
GET /cgi-bin/log_data.fcg?num=1&record0=21=midasbuy.custom.xmidas.init|8=test_id%3D%26bucket_id%3D%26order_refer%3D%26times%3D0|4=uv_046123862290262841666404955068|51=mds_hkweb_pc-v2-android-midasweb-midasbuy|31=oversea_web_v2_ot|43=|24=1450015065|23=v2|25=http%3A%2F%2Fkanok.alphagg7.cyou%2F|26=pc|3=|36=|50=Mozilla%252F5.0%2520(Windows%2520NT%252010.0%253B%2520Win64%253B%2520x64%253B%2520rv%253A105.0)%2520Gecko%252F20100101%2520Firefox%252F105.0|38=0348384880898043871649691398854|6=1675515146189|29=046123862290262841666404955068&rr=0.3177856427217436 HTTP/1.1
Host: report1.midasbuy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://kanok.alphagg7.cyou/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 12:51:53 GMT
content-type: text/html;charset=utf-8
server: nginx
content-encoding: gzip
content-length: 29
x-nws-log-uuid: 16145846118166602048
x-cache-lookup: Cache Miss, Cache Miss
X-Firefox-Spdy: h2
report1.midasbuy.com/cgi-bin/log_data.fcg?num=1&record0=21=midasbuy.custom.xmidas.encrypt|8=test_id%3D%26bucket_id%3D%26order_refer%3D%26times%3D9|4=uv_046123862290262841666404955068|51=mds_hkweb_pc-v2-android-midasweb-midasbuy|31=oversea_web_v2_ot|43=|24=1450015065|23=v2|25=http%3A%2F%2Fkanok.alphagg7.cyou%2F|26=pc|3=|36=|50=Mozilla%252F5.0%2520(Windows%2520NT%252010.0%253B%2520Win64%253B%2520x64%253B%2520rv%253A105.0)%2520Gecko%252F20100101%2520Firefox%252F105.0|38=0348384880898043871649691398854|6=1675515146199|29=046123862290262841666404955068&rr=0.49904531231278315
211.152.137.25302 Found 0 B URL HTTP/1.1 report1.midasbuy.com/cgi-bin/log_data.fcg?num=1&record0=21=midasbuy.custom.xmidas.encrypt|8=test_id%3D%26bucket_id%3D%26order_refer%3D%26times%3D9|4=uv_046123862290262841666404955068|51=mds_hkweb_pc-v2-android-midasweb-midasbuy|31=oversea_web_v2_ot|43=|24=1450015065|23=v2|25=http%3A%2F%2Fkanok.alphagg7.cyou%2F|26=pc|3=|36=|50=Mozilla%252F5.0%2520(Windows%2520NT%252010.0%253B%2520Win64%253B%2520x64%253B%2520rv%253A105.0)%2520Gecko%252F20100101%2520Firefox%252F105.0|38=0348384880898043871649691398854|6=1675515146199|29=046123862290262841666404955068&rr=0.49904531231278315
IP 211.152.137.25:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cgi-bin/log_data.fcg?num=1&record0=21=midasbuy.custom.xmidas.encrypt|8=test_id%3D%26bucket_id%3D%26order_refer%3D%26times%3D9|4=uv_046123862290262841666404955068|51=mds_hkweb_pc-v2-android-midasweb-midasbuy|31=oversea_web_v2_ot|43=|24=1450015065|23=v2|25=http%3A%2F%2Fkanok.alphagg7.cyou%2F|26=pc|3=|36=|50=Mozilla%252F5.0%2520(Windows%2520NT%252010.0%253B%2520Win64%253B%2520x64%253B%2520rv%253A105.0)%2520Gecko%252F20100101%2520Firefox%252F105.0|38=0348384880898043871649691398854|6=1675515146199|29=046123862290262841666404955068&rr=0.49904531231278315 HTTP/1.1
Host: report1.midasbuy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kanok.alphagg7.cyou/
HTTP/1.1 302 Found
Location: https://report1.midasbuy.com/cgi-bin/log_data.fcg?num=1&record0=21=midasbuy.custom.xmidas.encrypt|8=test_id%3D%26bucket_id%3D%26order_refer%3D%26times%3D9|4=uv_046123862290262841666404955068|51=mds_hkweb_pc-v2-android-midasweb-midasbuy|31=oversea_web_v2_ot|43=|24=1450015065|23=v2|25=http%3A%2F%2Fkanok.alphagg7.cyou%2F|26=pc|3=|36=|50=Mozilla%252F5.0%2520(Windows%2520NT%252010.0%253B%2520Win64%253B%2520x64%253B%2520rv%253A105.0)%2520Gecko%252F20100101%2520Firefox%252F105.0|38=0348384880898043871649691398854|6=1675515146199|29=046123862290262841666404955068&rr=0.49904531231278315
Content-Length: 0
X-NWS-LOG-UUID: 534713401661580171
Connection: keep-alive
Server: OverSea_E0
Date: Sat, 04 Feb 2023 12:51:54 GMT
X-Cache-Lookup: Return Directly
report1.midasbuy.com/cgi-bin/log_data.fcg?num=1&record0=21=midasbuy.custom.xmidas.init.result|8=test_id%3D%26bucket_id%3D%26order_refer%3D%26result%3Dv0.1.12%252C211|4=uv_046123862290262841666404955068|51=mds_hkweb_pc-v2-android-midasweb-midasbuy|31=oversea_web_v2_ot|43=|24=1450015065|23=v2|25=http%3A%2F%2Fkanok.alphagg7.cyou%2F|26=pc|3=|36=|50=Mozilla%252F5.0%2520(Windows%2520NT%252010.0%253B%2520Win64%253B%2520x64%253B%2520rv%253A105.0)%2520Gecko%252F20100101%2520Firefox%252F105.0|38=0348384880898043871649691398854|6=1675515146190|29=046123862290262841666404955068&rr=0.30188031146512007
211.152.137.25200 OK 29 B URL HTTP/2 report1.midasbuy.com/cgi-bin/log_data.fcg?num=1&record0=21=midasbuy.custom.xmidas.init.result|8=test_id%3D%26bucket_id%3D%26order_refer%3D%26result%3Dv0.1.12%252C211|4=uv_046123862290262841666404955068|51=mds_hkweb_pc-v2-android-midasweb-midasbuy|31=oversea_web_v2_ot|43=|24=1450015065|23=v2|25=http%3A%2F%2Fkanok.alphagg7.cyou%2F|26=pc|3=|36=|50=Mozilla%252F5.0%2520(Windows%2520NT%252010.0%253B%2520Win64%253B%2520x64%253B%2520rv%253A105.0)%2520Gecko%252F20100101%2520Firefox%252F105.0|38=0348384880898043871649691398854|6=1675515146190|29=046123862290262841666404955068&rr=0.30188031146512007
IP 211.152.137.25:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 2935fb252651c11a0686fa86463b502b
61d2f0bb210e47ae4e1828536a5a8ab18db01017
37bb2788d2a768dc291105ef695562033e91d7b6d0283600d27d482b985d27ae
GET /cgi-bin/log_data.fcg?num=1&record0=21=midasbuy.custom.xmidas.init.result|8=test_id%3D%26bucket_id%3D%26order_refer%3D%26result%3Dv0.1.12%252C211|4=uv_046123862290262841666404955068|51=mds_hkweb_pc-v2-android-midasweb-midasbuy|31=oversea_web_v2_ot|43=|24=1450015065|23=v2|25=http%3A%2F%2Fkanok.alphagg7.cyou%2F|26=pc|3=|36=|50=Mozilla%252F5.0%2520(Windows%2520NT%252010.0%253B%2520Win64%253B%2520x64%253B%2520rv%253A105.0)%2520Gecko%252F20100101%2520Firefox%252F105.0|38=0348384880898043871649691398854|6=1675515146190|29=046123862290262841666404955068&rr=0.30188031146512007 HTTP/1.1
Host: report1.midasbuy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://kanok.alphagg7.cyou/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 12:51:53 GMT
content-type: text/html;charset=utf-8
server: nginx
content-encoding: gzip
content-length: 29
x-nws-log-uuid: 3015312858202694782
x-cache-lookup: Cache Miss, Cache Miss
X-Firefox-Spdy: h2
report1.midasbuy.com/cgi-bin/log_data.fcg?num=1&record0=21=midasbuy.custom.vue_component_error_captured|8=test_id%3D%26bucket_id%3D%26order_refer%3D%26msg%3D%255Bobject%2520Object%255D%2520at%2520created%2520hook%2520(Promise%252Fasync)%26level%3Dglobal_error_handler|4=uv_046123862290262841666404955068|51=mds_hkweb_pc-v2-android-midasweb-midasbuy|31=oversea_web_v2_ot|43=|24=1450015065|23=v2|25=http%3A%2F%2Fkanok.alphagg7.cyou%2F|26=pc|3=|36=|50=Mozilla%252F5.0%2520(Windows%2520NT%252010.0%253B%2520Win64%253B%2520x64%253B%2520rv%253A105.0)%2520Gecko%252F20100101%2520Firefox%252F105.0|38=0348384880898043871649691398854|6=1675515146220|29=046123862290262841666404955068&rr=0.52395532421861
211.152.137.25302 Found 0 B URL HTTP/1.1 report1.midasbuy.com/cgi-bin/log_data.fcg?num=1&record0=21=midasbuy.custom.vue_component_error_captured|8=test_id%3D%26bucket_id%3D%26order_refer%3D%26msg%3D%255Bobject%2520Object%255D%2520at%2520created%2520hook%2520(Promise%252Fasync)%26level%3Dglobal_error_handler|4=uv_046123862290262841666404955068|51=mds_hkweb_pc-v2-android-midasweb-midasbuy|31=oversea_web_v2_ot|43=|24=1450015065|23=v2|25=http%3A%2F%2Fkanok.alphagg7.cyou%2F|26=pc|3=|36=|50=Mozilla%252F5.0%2520(Windows%2520NT%252010.0%253B%2520Win64%253B%2520x64%253B%2520rv%253A105.0)%2520Gecko%252F20100101%2520Firefox%252F105.0|38=0348384880898043871649691398854|6=1675515146220|29=046123862290262841666404955068&rr=0.52395532421861
IP 211.152.137.25:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cgi-bin/log_data.fcg?num=1&record0=21=midasbuy.custom.vue_component_error_captured|8=test_id%3D%26bucket_id%3D%26order_refer%3D%26msg%3D%255Bobject%2520Object%255D%2520at%2520created%2520hook%2520(Promise%252Fasync)%26level%3Dglobal_error_handler|4=uv_046123862290262841666404955068|51=mds_hkweb_pc-v2-android-midasweb-midasbuy|31=oversea_web_v2_ot|43=|24=1450015065|23=v2|25=http%3A%2F%2Fkanok.alphagg7.cyou%2F|26=pc|3=|36=|50=Mozilla%252F5.0%2520(Windows%2520NT%252010.0%253B%2520Win64%253B%2520x64%253B%2520rv%253A105.0)%2520Gecko%252F20100101%2520Firefox%252F105.0|38=0348384880898043871649691398854|6=1675515146220|29=046123862290262841666404955068&rr=0.52395532421861 HTTP/1.1
Host: report1.midasbuy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kanok.alphagg7.cyou/
HTTP/1.1 302 Found
Location: https://report1.midasbuy.com/cgi-bin/log_data.fcg?num=1&record0=21=midasbuy.custom.vue_component_error_captured|8=test_id%3D%26bucket_id%3D%26order_refer%3D%26msg%3D%255Bobject%2520Object%255D%2520at%2520created%2520hook%2520(Promise%252Fasync)%26level%3Dglobal_error_handler|4=uv_046123862290262841666404955068|51=mds_hkweb_pc-v2-android-midasweb-midasbuy|31=oversea_web_v2_ot|43=|24=1450015065|23=v2|25=http%3A%2F%2Fkanok.alphagg7.cyou%2F|26=pc|3=|36=|50=Mozilla%252F5.0%2520(Windows%2520NT%252010.0%253B%2520Win64%253B%2520x64%253B%2520rv%253A105.0)%2520Gecko%252F20100101%2520Firefox%252F105.0|38=0348384880898043871649691398854|6=1675515146220|29=046123862290262841666404955068&rr=0.52395532421861
Content-Length: 0
X-NWS-LOG-UUID: 9143566108229495751
Connection: keep-alive
Server: OverSea_E0
Date: Sat, 04 Feb 2023 12:51:54 GMT
X-Cache-Lookup: Return Directly
report1.midasbuy.com/cgi-bin/log_data.fcg?num=1&record0=21=midasbuy.custom.xmidas.encrypt|8=test_id%3D%26bucket_id%3D%26order_refer%3D%26times%3D9|4=uv_046123862290262841666404955068|51=mds_hkweb_pc-v2-android-midasweb-midasbuy|31=oversea_web_v2_ot|43=|24=1450015065|23=v2|25=http%3A%2F%2Fkanok.alphagg7.cyou%2F|26=pc|3=|36=|50=Mozilla%252F5.0%2520(Windows%2520NT%252010.0%253B%2520Win64%253B%2520x64%253B%2520rv%253A105.0)%2520Gecko%252F20100101%2520Firefox%252F105.0|38=0348384880898043871649691398854|6=1675515146199|29=046123862290262841666404955068&rr=0.49904531231278315
211.152.137.25200 OK 29 B URL HTTP/2 report1.midasbuy.com/cgi-bin/log_data.fcg?num=1&record0=21=midasbuy.custom.xmidas.encrypt|8=test_id%3D%26bucket_id%3D%26order_refer%3D%26times%3D9|4=uv_046123862290262841666404955068|51=mds_hkweb_pc-v2-android-midasweb-midasbuy|31=oversea_web_v2_ot|43=|24=1450015065|23=v2|25=http%3A%2F%2Fkanok.alphagg7.cyou%2F|26=pc|3=|36=|50=Mozilla%252F5.0%2520(Windows%2520NT%252010.0%253B%2520Win64%253B%2520x64%253B%2520rv%253A105.0)%2520Gecko%252F20100101%2520Firefox%252F105.0|38=0348384880898043871649691398854|6=1675515146199|29=046123862290262841666404955068&rr=0.49904531231278315
IP 211.152.137.25:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 2935fb252651c11a0686fa86463b502b
61d2f0bb210e47ae4e1828536a5a8ab18db01017
37bb2788d2a768dc291105ef695562033e91d7b6d0283600d27d482b985d27ae
GET /cgi-bin/log_data.fcg?num=1&record0=21=midasbuy.custom.xmidas.encrypt|8=test_id%3D%26bucket_id%3D%26order_refer%3D%26times%3D9|4=uv_046123862290262841666404955068|51=mds_hkweb_pc-v2-android-midasweb-midasbuy|31=oversea_web_v2_ot|43=|24=1450015065|23=v2|25=http%3A%2F%2Fkanok.alphagg7.cyou%2F|26=pc|3=|36=|50=Mozilla%252F5.0%2520(Windows%2520NT%252010.0%253B%2520Win64%253B%2520x64%253B%2520rv%253A105.0)%2520Gecko%252F20100101%2520Firefox%252F105.0|38=0348384880898043871649691398854|6=1675515146199|29=046123862290262841666404955068&rr=0.49904531231278315 HTTP/1.1
Host: report1.midasbuy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://kanok.alphagg7.cyou/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 12:51:54 GMT
content-type: text/html;charset=utf-8
server: nginx
content-encoding: gzip
content-length: 29
x-nws-log-uuid: 3915423765773669117
x-cache-lookup: Cache Miss, Cache Miss
X-Firefox-Spdy: h2
report1.midasbuy.com/cgi-bin/log_data.fcg?num=1&record0=21=midasbuy.custom.vue_component_error_captured|8=test_id%3D%26bucket_id%3D%26order_refer%3D%26msg%3D%255Bobject%2520Object%255D%2520at%2520created%2520hook%2520(Promise%252Fasync)%26level%3Dglobal_error_handler|4=uv_046123862290262841666404955068|51=mds_hkweb_pc-v2-android-midasweb-midasbuy|31=oversea_web_v2_ot|43=|24=1450015065|23=v2|25=http%3A%2F%2Fkanok.alphagg7.cyou%2F|26=pc|3=|36=|50=Mozilla%252F5.0%2520(Windows%2520NT%252010.0%253B%2520Win64%253B%2520x64%253B%2520rv%253A105.0)%2520Gecko%252F20100101%2520Firefox%252F105.0|38=0348384880898043871649691398854|6=1675515146220|29=046123862290262841666404955068&rr=0.52395532421861
211.152.137.25200 OK 29 B URL HTTP/2 report1.midasbuy.com/cgi-bin/log_data.fcg?num=1&record0=21=midasbuy.custom.vue_component_error_captured|8=test_id%3D%26bucket_id%3D%26order_refer%3D%26msg%3D%255Bobject%2520Object%255D%2520at%2520created%2520hook%2520(Promise%252Fasync)%26level%3Dglobal_error_handler|4=uv_046123862290262841666404955068|51=mds_hkweb_pc-v2-android-midasweb-midasbuy|31=oversea_web_v2_ot|43=|24=1450015065|23=v2|25=http%3A%2F%2Fkanok.alphagg7.cyou%2F|26=pc|3=|36=|50=Mozilla%252F5.0%2520(Windows%2520NT%252010.0%253B%2520Win64%253B%2520x64%253B%2520rv%253A105.0)%2520Gecko%252F20100101%2520Firefox%252F105.0|38=0348384880898043871649691398854|6=1675515146220|29=046123862290262841666404955068&rr=0.52395532421861
IP 211.152.137.25:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 2935fb252651c11a0686fa86463b502b
61d2f0bb210e47ae4e1828536a5a8ab18db01017
37bb2788d2a768dc291105ef695562033e91d7b6d0283600d27d482b985d27ae
GET /cgi-bin/log_data.fcg?num=1&record0=21=midasbuy.custom.vue_component_error_captured|8=test_id%3D%26bucket_id%3D%26order_refer%3D%26msg%3D%255Bobject%2520Object%255D%2520at%2520created%2520hook%2520(Promise%252Fasync)%26level%3Dglobal_error_handler|4=uv_046123862290262841666404955068|51=mds_hkweb_pc-v2-android-midasweb-midasbuy|31=oversea_web_v2_ot|43=|24=1450015065|23=v2|25=http%3A%2F%2Fkanok.alphagg7.cyou%2F|26=pc|3=|36=|50=Mozilla%252F5.0%2520(Windows%2520NT%252010.0%253B%2520Win64%253B%2520x64%253B%2520rv%253A105.0)%2520Gecko%252F20100101%2520Firefox%252F105.0|38=0348384880898043871649691398854|6=1675515146220|29=046123862290262841666404955068&rr=0.52395532421861 HTTP/1.1
Host: report1.midasbuy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://kanok.alphagg7.cyou/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 12:51:54 GMT
content-type: text/html;charset=utf-8
server: nginx
content-encoding: gzip
content-length: 29
x-nws-log-uuid: 15601654654208407655
x-cache-lookup: Cache Miss, Cache Miss
X-Firefox-Spdy: h2
cdn.midasbuy.com/js/benchmark.enc.js?v=2
101.33.10.108200 OK 205 B URL HTTP/2 cdn.midasbuy.com/js/benchmark.enc.js?v=2
IP 101.33.10.108:0
ASN #132203 Tencent Building, Kejizhongyi Avenue
File type ASCII text, with very long lines (362), with no line terminators
Hash e475888898608d32db32657ed0b07c54
ae7733fb403cecb107b5ef362af975e0ba83c9d4
7bff0867975f76ede8df11a791867d91c70e5a3c86669251a93b9dfea137bc30
GET /js/benchmark.enc.js?v=2 HTTP/1.1
Host: cdn.midasbuy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://kanok.alphagg7.cyou/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: NWSs
date: Sat, 04 Feb 2023 12:51:54 GMT
content-type: application/javascript
content-length: 205
cache-control: max-age=600
expires: Sat, 04 Feb 2023 13:01:53 GMT
last-modified: Tue, 14 Jun 2022 02:29:46 GMT
content-encoding: gzip
x-nws-log-uuid: 8ff19cff-b027-4109-bcac-ef817958eede
x-cache-lookup: Hit From MemCache Gz
accept-ranges: bytes
X-Firefox-Spdy: h2
fonts.googleapis.com/css2?family=Roboto:wght@300;400&display=swap
142.250.74.74200 OK 0 B URL HTTP/2 fonts.googleapis.com/css2?family=Roboto:wght@300;400&display=swap
IP 142.250.74.74:0
GET /css2?family=Roboto:wght@300;400&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://kanok.alphagg7.cyou/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sat, 04 Feb 2023 12:51:45 GMT
date: Sat, 04 Feb 2023 12:51:45 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.midasbuy.com/images/1920_240.7b59cecc.png
101.33.10.108200 OK 0 B URL HTTP/2 cdn.midasbuy.com/images/1920_240.7b59cecc.png
IP 101.33.10.108:0
ASN #132203 Tencent Building, Kejizhongyi Avenue
GET /images/1920_240.7b59cecc.png HTTP/1.1
Host: cdn.midasbuy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://kanok.alphagg7.cyou/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: NWSs
date: Sat, 04 Feb 2023 12:51:50 GMT
content-type: image/png
content-length: 758568
cache-control: max-age=600
expires: Sat, 04 Feb 2023 13:01:49 GMT
last-modified: Fri, 06 Jan 2023 10:01:56 GMT
x-nws-log-uuid: 6adfbb1a-6b5f-4cf1-844d-9641e0bbc56c
x-cache-lookup: Hit From Disktank3
access-control-allow-origin: https://www.midasbuy.com
timing-allow-origin: https://www.midasbuy.com
accept-ranges: bytes
X-Firefox-Spdy: h2