cdnjs.cloudflare.com/ajax/libs/material-design-iconic-font/2.2.0/css/material-design-iconic-font.min.css
104.17.24.14200 OK 5.8 kB URL GET HTTP/2 cdnjs.cloudflare.com/ajax/libs/material-design-iconic-font/2.2.0/css/material-design-iconic-font.min.css
IP 104.17.24.14:443
Requested by https://x3nmt.pubgm.asia/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintA9:11:71:07:07:92:48:7E:A9:3C:E8:32:25:3F:EB:AC:7D:51:7E:8F
ValidityWed, 03 Aug 2022 00:00:00 GMT - Wed, 02 Aug 2023 23:59:59 GMT
File type ASCII text, with very long lines (65536), with no line terminators
Hash a7e25a22602a2b2ed35f90fd5210cff1
148c4f275b60e6cf6253d6b4c7bdc486515b2202
312d94bafa68e11e3a4a8d7c06bc25ee161d1d965afb1fa99db79815a272d0bf
GET /ajax/libs/material-design-iconic-font/2.2.0/css/material-design-iconic-font.min.css HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://x3nmt.pubgm.asia/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 06 May 2023 21:17:24 GMT
content-type: text/css; charset=utf-8
content-length: 5845
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03ed9-1149f"
last-modified: Mon, 04 May 2020 16:12:09 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 1997077
expires: Thu, 25 Apr 2024 21:17:24 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=0%2Bm0IcCJoyWmwAegOFgmYWby6yqhYz5SGpil2f8lv1yyRLd1MD5Jwmf9HrqukqCaYD%2BbK3t1kV%2BgoFiF0CwPbgOC%2BpxfBhCpvpcSEaoLStiAR186SfftVZkymuQqgb994JJcMHEw"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 7c343ff358731c12-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
code.jquery.com/jquery-1.10.2.min.js
69.16.175.42200 OK 33 kB URL GET HTTP/2 code.jquery.com/jquery-1.10.2.min.js
IP 69.16.175.42:443
Requested by https://x3nmt.pubgm.asia/
Certificate IssuerSectigo Limited
Subject*.jquery.com
Fingerprint64:50:4C:BB:DF:F3:1D:70:CC:5D:9E:B7:BE:80:91:84:03:C1:D1:83
ValidityWed, 03 Aug 2022 00:00:00 GMT - Fri, 14 Jul 2023 23:59:59 GMT
File type ASCII text, with very long lines (32072)
Hash 68cc08e82915da8b82fc6be74ab86365
4089530b0c00f6cbd1452d7f873be85454196fd1
6c63276db5e51f227be1c9bdaf73d76fa01040499944a8c8607db0c234f0575c
GET /jquery-1.10.2.min.js HTTP/1.1
Host: code.jquery.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://x3nmt.pubgm.asia/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 06 May 2023 21:17:24 GMT
content-encoding: gzip
content-length: 32788
content-type: application/javascript; charset=utf-8
last-modified: Wed, 16 Feb 2022 10:50:39 GMT
accept-ranges: bytes
server: nginx
etag: W/"620cd6ff-16bb3"
cache-control: max-age=315360000, public
access-control-allow-origin: *
vary: Accept-Encoding
x-hw: 1683407844.dop010.sk1.t,1683407844.cds244.sk1.hn,1683407844.cds243.sk1.c
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131 472 B IP 142.250.74.131:0
Hash 5ee783513f226811bb582d061c5dc6b7
f526d3b264b774b96b53ba9d7d4143275d71f69e
996cd5321a8beec96cf1b446d2af4b91570dfae3e7db343f50e558a7d31923c3
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 06 May 2023 21:17:24 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
stackpath.bootstrapcdn.com/font-awesome/4.7.0/css/font-awesome.min.css
104.18.11.207200 OK 7.4 kB URL GET HTTP/2 stackpath.bootstrapcdn.com/font-awesome/4.7.0/css/font-awesome.min.css
IP 104.18.11.207:443
Requested by https://x3nmt.pubgm.asia/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint5B:F7:8F:50:AD:E5:5B:5E:8C:4A:39:3D:0C:98:E8:8C:18:4B:3D:8A
ValidityFri, 30 Dec 2022 00:00:00 GMT - Sat, 30 Dec 2023 23:59:59 GMT
File type ASCII text, with very long lines (30837)
Hash f9373845288c10a1b56d10db661ba8f8
c306ecc702974bab2091823a57b3f89231953dc6
d83960d47d9ebe8ba11e32101f16939251aab404affd7f167f5d7ea9825d3087
GET /font-awesome/4.7.0/css/font-awesome.min.css HTTP/1.1
Host: stackpath.bootstrapcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://x3nmt.pubgm.asia/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 06 May 2023 21:17:24 GMT
content-type: text/css; charset=utf-8
vary: Accept-Encoding
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: DE
access-control-allow-origin: *
cache-control: public, max-age=31919000
last-modified: Mon, 25 Jan 2021 22:04:55 GMT
cdn-cachedat: 11/15/2021 21:49:00
cdn-proxyver: 1.0
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
cdn-edgestorageid: 723
cdn-status: 200
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
cdn-requestid: 2729ae8f2fc6c761bdc17d91cc795f58
cdn-cache: HIT
cf-cache-status: HIT
age: 28854598
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 7c343ff36abfb4f7-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ajax.googleapis.com/ajax/libs/jquery/2.1.3/jquery.min.js
142.250.74.138200 OK 30 kB URL GET HTTP/2 ajax.googleapis.com/ajax/libs/jquery/2.1.3/jquery.min.js
IP 142.250.74.138:443
Requested by https://x3nmt.pubgm.asia/
Certificate IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint78:3F:7F:CC:E7:90:DA:64:23:AC:13:1E:55:7A:62:1E:2B:E4:30:5C
ValidityMon, 17 Apr 2023 08:25:28 GMT - Mon, 10 Jul 2023 08:25:27 GMT
File type ASCII text, with very long lines (32180)
Hash f16500423cc2867eff8b773df637c48f
1cd32d75b59a89c3a70274e383151a61ce0594f4
6ca5dc8ad67639c69117ace46c93703cf5fff82824cfc0bada0cf0fb3b2d41d7
GET /ajax/libs/jquery/2.1.3/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://x3nmt.pubgm.asia/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 29707
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 03 May 2023 13:42:55 GMT
expires: Thu, 02 May 2024 13:42:55 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
age: 286469
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ajax.googleapis.com/ajax/libs/jquery/2.1.1/jquery.min.js
142.250.74.138200 OK 30 kB URL GET HTTP/2 ajax.googleapis.com/ajax/libs/jquery/2.1.1/jquery.min.js
IP 142.250.74.138:443
Requested by https://x3nmt.pubgm.asia/
Certificate IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint78:3F:7F:CC:E7:90:DA:64:23:AC:13:1E:55:7A:62:1E:2B:E4:30:5C
ValidityMon, 17 Apr 2023 08:25:28 GMT - Mon, 10 Jul 2023 08:25:27 GMT
File type ASCII text, with very long lines (32061)
Hash b90b3d2618cce9d766152cd3092b5c27
496339457cd00caab8118e2e1f30ea18dc05b9f4
b7b155aa8c6b5db28f9a6b41e88c96e9462c196c700add426f8ef32c9ce1ed41
GET /ajax/libs/jquery/2.1.1/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://x3nmt.pubgm.asia/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 29671
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 03 May 2023 15:50:53 GMT
expires: Thu, 02 May 2024 15:50:53 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
age: 278791
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131 472 B IP 142.250.74.131:0
Hash 5ee783513f226811bb582d061c5dc6b7
f526d3b264b774b96b53ba9d7d4143275d71f69e
996cd5321a8beec96cf1b446d2af4b91570dfae3e7db343f50e558a7d31923c3
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 06 May 2023 21:17:24 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
x3nmt.pubgm.asia/img/6.png
172.67.137.239200 OK 38 kB URL GET HTTP/3 x3nmt.pubgm.asia/img/6.png
IP 172.67.137.239:443
Requested by https://x3nmt.pubgm.asia/
Certificate IssuerGoogle Trust Services LLC
Subject*.pubgm.asia
Fingerprint4E:AE:1D:12:E8:52:6D:59:01:52:C0:57:A5:FA:81:6F:CB:99:24:28
ValidityThu, 23 Mar 2023 09:09:02 GMT - Wed, 21 Jun 2023 09:09:01 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 820x820, components 3\012- data
Hash 235cb5d753b9066956c27d69853eb897
e25db52952e78e32043f3589b61dc4bfc3e55e31
7df013fc892ca8053827638a59bb49e3f3589c3d8003c883267bf6fa698a1393
Analyzer Verdict Alert openphish Tencent
GET /img/6.png HTTP/1.1
Host: x3nmt.pubgm.asia
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://x3nmt.pubgm.asia/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sat, 06 May 2023 21:17:25 GMT
content-type: image/png
content-length: 37913
cache-control: public, max-age=604800
expires: Sat, 13 May 2023 21:17:25 GMT
last-modified: Wed, 03 May 2023 17:18:30 GMT
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=0ZzC713Dp3tnQInc%2FwCU5gPaDuKLgFxTWx5tfKyJlIJ5xBMSRIcp9Qk1NBkFmImhnikW%2BUlqtr28H3UIw6jes0Crz7Gbcd2hs98%2BswmQ6T0gvAlCyQVYfEM1%2BWPHf2xzIgcD"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7c343ff35c11b4ee-OSL
x3nmt.pubgm.asia/img/4.png
172.67.137.239200 OK 39 kB URL GET HTTP/3 x3nmt.pubgm.asia/img/4.png
IP 172.67.137.239:443
Requested by https://x3nmt.pubgm.asia/
Certificate IssuerGoogle Trust Services LLC
Subject*.pubgm.asia
Fingerprint4E:AE:1D:12:E8:52:6D:59:01:52:C0:57:A5:FA:81:6F:CB:99:24:28
ValidityThu, 23 Mar 2023 09:09:02 GMT - Wed, 21 Jun 2023 09:09:01 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 820x820, components 3\012- data
Hash caa8e534931453c795249426168c7088
511df466b51ff08d6f8670677cad95532fe82671
5b6d557bf62ea8ab7da338277814b20eca85774f7567aaaeda1610a377d0e86c
Analyzer Verdict Alert openphish Tencent
GET /img/4.png HTTP/1.1
Host: x3nmt.pubgm.asia
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://x3nmt.pubgm.asia/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sat, 06 May 2023 21:17:25 GMT
content-type: image/png
content-length: 38890
cache-control: public, max-age=604800
expires: Sat, 13 May 2023 21:17:25 GMT
last-modified: Wed, 03 May 2023 17:18:30 GMT
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=JzoXnhFY%2Bzy1QOJ9jk7Jhg0JS2n%2BLcJmj71WPwCIblN4Rldxh5bOqR159Eoonx6pNNiaVWiWwC5BnP8aT9nl0A%2BZX7pkcGl38JkEDzwHUF8sMzNGjVxrCpEATu3LRBX1208L"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7c343ff35c0fb4ee-OSL
x3nmt.pubgm.asia/img/10.jpg
172.67.137.239200 OK 54 kB URL GET HTTP/3 x3nmt.pubgm.asia/img/10.jpg
IP 172.67.137.239:443
Requested by https://x3nmt.pubgm.asia/
Certificate IssuerGoogle Trust Services LLC
Subject*.pubgm.asia
Fingerprint4E:AE:1D:12:E8:52:6D:59:01:52:C0:57:A5:FA:81:6F:CB:99:24:28
ValidityThu, 23 Mar 2023 09:09:02 GMT - Wed, 21 Jun 2023 09:09:01 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 820x820, components 3\012- data
Hash f7118768484a9a92665781c586b5e42e
4cc65938621a3a8b785cfacddef91b637af35a5f
de8338d6faf0758aad3c8a42b4fc0e5f35b0302f1e4906137cfb45352177e0e4
Analyzer Verdict Alert openphish Tencent
GET /img/10.jpg HTTP/1.1
Host: x3nmt.pubgm.asia
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://x3nmt.pubgm.asia/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sat, 06 May 2023 21:17:25 GMT
content-type: image/jpeg
content-length: 54039
cache-control: public, max-age=604800
expires: Sat, 13 May 2023 21:17:25 GMT
last-modified: Wed, 03 May 2023 17:19:18 GMT
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=e2wThxRZv%2B8vHaGTCSMASVI6Se79tWOxnaCWGE5zZTUzfLMhY8nnZ344BFGZV4wZboFyt7r9kTHvM%2B3V5%2FboIHMlf5N%2FjeGqCKiwEuqeM1XKRlbF7Qcpv096i9JL4BdgKV3e"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7c343ff35c1fb4ee-OSL
x3nmt.pubgm.asia/img/9.jpg
172.67.137.239200 OK 52 kB URL GET HTTP/3 x3nmt.pubgm.asia/img/9.jpg
IP 172.67.137.239:443
Requested by https://x3nmt.pubgm.asia/
Certificate IssuerGoogle Trust Services LLC
Subject*.pubgm.asia
Fingerprint4E:AE:1D:12:E8:52:6D:59:01:52:C0:57:A5:FA:81:6F:CB:99:24:28
ValidityThu, 23 Mar 2023 09:09:02 GMT - Wed, 21 Jun 2023 09:09:01 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 820x820, components 3\012- data
Hash b563ec4c2a31a7d7ffbb7bd038c471fc
5b035043b6e4d60ae8306d144bd6e6d026db6335
821c7c5027204b52eaef86e4a0c1fff9eefb3ed62cb3eed25b876cafffe5a6d8
Analyzer Verdict Alert openphish Tencent
GET /img/9.jpg HTTP/1.1
Host: x3nmt.pubgm.asia
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://x3nmt.pubgm.asia/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sat, 06 May 2023 21:17:25 GMT
content-type: image/jpeg
content-length: 51668
cache-control: public, max-age=604800
expires: Sat, 13 May 2023 21:17:24 GMT
last-modified: Wed, 03 May 2023 17:19:18 GMT
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=f9a8TDllDRyoV4fbnJwaAUWqTmAEWm2VA8nutDUUJ2hJfAkUg%2BSzRkDm6jbJh1DLT%2B%2F2KlBHipaTGCO5Qlvn5xDxvlLvd9DHn6wTJD%2BJc3r6o08hFabvLTCTZUN%2FxT001cpP"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7c343ff35c1eb4ee-OSL
x3nmt.pubgm.asia/img/3.png
172.67.137.239200 OK 46 kB URL GET HTTP/3 x3nmt.pubgm.asia/img/3.png
IP 172.67.137.239:443
Requested by https://x3nmt.pubgm.asia/
Certificate IssuerGoogle Trust Services LLC
Subject*.pubgm.asia
Fingerprint4E:AE:1D:12:E8:52:6D:59:01:52:C0:57:A5:FA:81:6F:CB:99:24:28
ValidityThu, 23 Mar 2023 09:09:02 GMT - Wed, 21 Jun 2023 09:09:01 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 820x820, components 3\012- data
Hash f09a57e5e94ba72e179552d1b84d8342
e8ee9f058b2cde67b4051d9fed721cc028fa1945
1c83c0df0b741f095b421072a829338e0a4c22bb48f178d480c741a9108ae2f8
Analyzer Verdict Alert openphish Tencent
GET /img/3.png HTTP/1.1
Host: x3nmt.pubgm.asia
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://x3nmt.pubgm.asia/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sat, 06 May 2023 21:17:25 GMT
content-type: image/png
content-length: 45998
cache-control: public, max-age=604800
expires: Sat, 13 May 2023 21:17:25 GMT
last-modified: Wed, 03 May 2023 17:18:30 GMT
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2FHfkWUBxaMgBEK83CwjKUGTzs7%2Bue9I3fHdLmXeDSWuHoAXgc4O4H7bSQBB55mLlWj3b8NQk%2BinUhnz7gZu%2Be8Dj%2FutX%2FqQelPxkcc3d9pY2e8lV%2BUB%2F8qk2WZrFQ76ELNC4"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7c343ff35c16b4ee-OSL
x3nmt.pubgm.asia/img/5.png
172.67.137.239200 OK 44 kB URL GET HTTP/3 x3nmt.pubgm.asia/img/5.png
IP 172.67.137.239:443
Requested by https://x3nmt.pubgm.asia/
Certificate IssuerGoogle Trust Services LLC
Subject*.pubgm.asia
Fingerprint4E:AE:1D:12:E8:52:6D:59:01:52:C0:57:A5:FA:81:6F:CB:99:24:28
ValidityThu, 23 Mar 2023 09:09:02 GMT - Wed, 21 Jun 2023 09:09:01 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 820x820, components 3\012- data
Hash 0834c2f73f2d5b122bd56105be707a1d
1e892cc3eb7b3d6b1053e4d2aa649e5f8203fc91
ce7ac969e4bb3c703aa6e04807f61b2bea18bc45b517df2fb71def7327cda25b
Analyzer Verdict Alert openphish Tencent
GET /img/5.png HTTP/1.1
Host: x3nmt.pubgm.asia
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://x3nmt.pubgm.asia/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sat, 06 May 2023 21:17:25 GMT
content-type: image/png
content-length: 44251
cache-control: public, max-age=604800
expires: Sat, 13 May 2023 21:17:25 GMT
last-modified: Wed, 03 May 2023 17:18:30 GMT
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=goK8x6ilvMAQl%2BLczsrYpvYtn0mxABlJ7loo4OzYBm2RyqO%2FhTe%2FXVWi4iyXrYUdjDE0XOmaQ4w7AO8c5%2Fk49I5LYRJixuHhvfdTivpxSMbrDlQEl6xmh%2BLdS6XgGwrTuaSo"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7c343ff35c14b4ee-OSL
ocsp.digicert.cn/
47.246.44.205 471 B IP 47.246.44.205:0
ASN #24429 Zhejiang Taobao Network Co.,Ltd
Hash eab5b13cfb36a46b62fa4b7b3a84bba0
42b25f6129c75cbbc19bf0ee98317a6d57124be3
428e43d6d3394d0d0520600db5a472b5dbc8d4c5b5026ec90661f47405adc850
POST / HTTP/1.1
Host: ocsp.digicert.cn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Tengine
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Date: Sat, 06 May 2023 21:17:27 GMT
Last-Modified: Sat, 06 May 2023 10:36:51 GMT
ETag: "64562dc3-1d7"
Expires: Mon, 08 May 2023 10:36:51 GMT
Cache-Control: max-age=134364
Accept-Ranges: bytes
Ali-Swift-Global-Savetime: 1683407847
Via: cache11.l2de2[4,4,200-0,M], cache11.l2de2[5,0], cache1.se1[28,28,200-0,M], cache1.se1[30,0]
X-Cache: MISS TCP_MISS dirn:-2:-2
X-Swift-SaveTime: Sat, 06 May 2023 21:17:27 GMT
X-Swift-CacheTime: 0
Timing-Allow-Origin: *
EagleId: 2ff62c9516834078473494912e
cdn.midasbuy.com/js/x-midas/kEc9hjFh5DQJbz_iPEWrfFxadMVk4PbLDS-5P8jE73pfdUuDwNGKNVZjdEztcHdofAVaHXo6zRGXgLwuvsK_afAEj6w_mKyiUmq-7AesIRU~.js?max_age=31536000
101.33.10.108200 OK 20 kB URL GET HTTP/2 cdn.midasbuy.com/js/x-midas/kEc9hjFh5DQJbz_iPEWrfFxadMVk4PbLDS-5P8jE73pfdUuDwNGKNVZjdEztcHdofAVaHXo6zRGXgLwuvsK_afAEj6w_mKyiUmq-7AesIRU~.js?max_age=31536000
IP 101.33.10.108:443
ASN #132203 Tencent Building, Kejizhongyi Avenue
Requested by https://x3nmt.pubgm.asia/
Certificate IssuerDigiCert Inc
Subject*.midasbuy.com
FingerprintEF:32:D0:91:A1:AC:5B:AE:1D:0B:9D:A5:17:A1:1C:0C:1B:D7:3A:02
ValidityFri, 06 May 2022 00:00:00 GMT - Tue, 06 Jun 2023 23:59:59 GMT
File type ASCII text, with very long lines (55927), with no line terminators
Hash aaa79c21027cbb6e68d4a74d70dcf1a5
f72eb38cd5dea1a189c37796a21fa6a21460d42a
ce0ef795a2e529b7e7e18d3b0916ba4c3cce054edf608b4407469d1ff34b59ab
GET /js/x-midas/kEc9hjFh5DQJbz_iPEWrfFxadMVk4PbLDS-5P8jE73pfdUuDwNGKNVZjdEztcHdofAVaHXo6zRGXgLwuvsK_afAEj6w_mKyiUmq-7AesIRU~.js?max_age=31536000 HTTP/1.1
Host: cdn.midasbuy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://x3nmt.pubgm.asia/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: NWSs
date: Sat, 06 May 2023 21:17:27 GMT
content-type: application/javascript
content-length: 20219
cache-control: max-age=31536000
expires: Sun, 05 May 2024 21:17:26 GMT
last-modified: Wed, 24 Mar 2021 09:43:44 GMT
content-encoding: gzip
x-nws-log-uuid: 4409bd5f-162f-4780-befa-47b9c7b65834
x-cache-lookup: Hit From MemCache Gz
accept-ranges: bytes
X-Firefox-Spdy: h2
cdn.midasbuy.com/oversea_web/static/css/media.7fa8fc46.css?max_age=864000
101.33.10.108200 OK 48 kB URL GET HTTP/2 cdn.midasbuy.com/oversea_web/static/css/media.7fa8fc46.css?max_age=864000
IP 101.33.10.108:443
ASN #132203 Tencent Building, Kejizhongyi Avenue
Requested by https://x3nmt.pubgm.asia/
Certificate IssuerDigiCert Inc
Subject*.midasbuy.com
FingerprintEF:32:D0:91:A1:AC:5B:AE:1D:0B:9D:A5:17:A1:1C:0C:1B:D7:3A:02
ValidityFri, 06 May 2022 00:00:00 GMT - Tue, 06 Jun 2023 23:59:59 GMT
File type ASCII text, with very long lines (65536), with no line terminators
Hash 270a71621fa0b05b528b3a62314d96ce
7cdae08faf10a50676f7ebf9c95dbf63a3966792
e6aa15bbfaa9dfee3e75b4869288c8f13c71d174dc65f41ff19620f0fdbd4579
GET /oversea_web/static/css/media.7fa8fc46.css?max_age=864000 HTTP/1.1
Host: cdn.midasbuy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://x3nmt.pubgm.asia/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: NWSs
date: Sat, 06 May 2023 21:17:27 GMT
content-type: text/css
content-length: 48180
cache-control: max-age=864000
expires: Tue, 16 May 2023 21:17:26 GMT
last-modified: Thu, 08 Sep 2022 08:48:00 GMT
content-encoding: gzip
x-nws-log-uuid: c0c7b5a5-663b-45e2-bbbb-9c814d52fa12
x-cache-lookup: Hit From Disktank3 Gz
accept-ranges: bytes
X-Firefox-Spdy: h2
cdn.midasbuy.com/oversea_web/static/js/auto-report2.0.2.umd.js
101.33.10.108200 OK 1.9 kB URL GET HTTP/2 cdn.midasbuy.com/oversea_web/static/js/auto-report2.0.2.umd.js
IP 101.33.10.108:443
ASN #132203 Tencent Building, Kejizhongyi Avenue
Requested by https://x3nmt.pubgm.asia/
Certificate IssuerDigiCert Inc
Subject*.midasbuy.com
FingerprintEF:32:D0:91:A1:AC:5B:AE:1D:0B:9D:A5:17:A1:1C:0C:1B:D7:3A:02
ValidityFri, 06 May 2022 00:00:00 GMT - Tue, 06 Jun 2023 23:59:59 GMT
File type ASCII text, with very long lines (5710)
Hash ca639e9dd4b3048f93975cf005db7ea8
9924f934bb518a191b0ce9af1762c0c1018c0ae0
be0efbfd0da28bbc3cef33a2d61b17693241e357d94994323113af669cfcdf6b
GET /oversea_web/static/js/auto-report2.0.2.umd.js HTTP/1.1
Host: cdn.midasbuy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://x3nmt.pubgm.asia/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: NWSs
date: Sat, 06 May 2023 21:17:27 GMT
content-type: application/javascript
content-length: 1930
cache-control: max-age=600
expires: Sat, 06 May 2023 21:27:26 GMT
last-modified: Mon, 22 Nov 2021 11:18:46 GMT
content-encoding: gzip
x-nws-log-uuid: 91578efe-4828-4d60-9a8a-c546c2a59963
x-cache-lookup: Hit From MemCache Gz
accept-ranges: bytes
X-Firefox-Spdy: h2
cdn.midasbuy.com/oversea_web/static/js/footer.4a0cf47f.js
101.33.10.108200 OK 60 kB URL GET HTTP/2 cdn.midasbuy.com/oversea_web/static/js/footer.4a0cf47f.js
IP 101.33.10.108:443
ASN #132203 Tencent Building, Kejizhongyi Avenue
Requested by https://x3nmt.pubgm.asia/
Certificate IssuerDigiCert Inc
Subject*.midasbuy.com
FingerprintEF:32:D0:91:A1:AC:5B:AE:1D:0B:9D:A5:17:A1:1C:0C:1B:D7:3A:02
ValidityFri, 06 May 2022 00:00:00 GMT - Tue, 06 Jun 2023 23:59:59 GMT
File type Unicode text, UTF-8 text, with very long lines (65389), with no line terminators
Hash 4f2134fefe01dafe53ea77e41dc24895
2082ba165031a81097dc6b19ab5311764923cd0c
6773d9aa43db2f5688ead52b1d0334ccfc14c92a1811a433e3ef7e5d72aef5dc
GET /oversea_web/static/js/footer.4a0cf47f.js HTTP/1.1
Host: cdn.midasbuy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://x3nmt.pubgm.asia/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: NWSs
date: Sat, 06 May 2023 21:17:27 GMT
content-type: application/javascript
content-length: 59718
cache-control: max-age=600
expires: Sat, 06 May 2023 21:27:26 GMT
last-modified: Thu, 25 Aug 2022 08:35:20 GMT
content-encoding: gzip
x-nws-log-uuid: 081c9651-4d9c-487d-b023-f0e47c6004f9
x-cache-lookup: Hit From Disktank3 Gz
accept-ranges: bytes
X-Firefox-Spdy: h2
cdn.midasbuy.com/oversea_web/static/js/polyfills.343f3206.js
101.33.10.108200 OK 39 kB URL GET HTTP/2 cdn.midasbuy.com/oversea_web/static/js/polyfills.343f3206.js
IP 101.33.10.108:443
ASN #132203 Tencent Building, Kejizhongyi Avenue
Requested by https://x3nmt.pubgm.asia/
Certificate IssuerDigiCert Inc
Subject*.midasbuy.com
FingerprintEF:32:D0:91:A1:AC:5B:AE:1D:0B:9D:A5:17:A1:1C:0C:1B:D7:3A:02
ValidityFri, 06 May 2022 00:00:00 GMT - Tue, 06 Jun 2023 23:59:59 GMT
File type Unicode text, UTF-8 text, with very long lines (41984), with NEL line terminators
Hash 4cbfadc4ce9b7eecd6b57eb66d21f9ad
dcb5dd0d2a1b6837012e2ea803b4fc85d6bfcb40
0885f7f59f94c325089413dbba63a876978af62cf231dff8d1ce63d7c05b48f8
GET /oversea_web/static/js/polyfills.343f3206.js HTTP/1.1
Host: cdn.midasbuy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://x3nmt.pubgm.asia/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: NWSs
date: Sat, 06 May 2023 21:17:27 GMT
content-type: application/javascript
content-length: 38697
cache-control: max-age=600
expires: Sat, 06 May 2023 21:27:26 GMT
last-modified: Tue, 07 Mar 2023 19:08:52 GMT
content-encoding: gzip
x-nws-log-uuid: 85ce17ec-ddc0-4647-9343-a33b1ac199a6
x-cache-lookup: Hit From MemCache Gz
accept-ranges: bytes
X-Firefox-Spdy: h2
cdn.midasbuy.com/oversea_web/static/js/loginSdk2.0.1.42f19978.js
101.33.10.108200 OK 9.3 kB URL GET HTTP/2 cdn.midasbuy.com/oversea_web/static/js/loginSdk2.0.1.42f19978.js
IP 101.33.10.108:443
ASN #132203 Tencent Building, Kejizhongyi Avenue
Requested by https://x3nmt.pubgm.asia/
Certificate IssuerDigiCert Inc
Subject*.midasbuy.com
FingerprintEF:32:D0:91:A1:AC:5B:AE:1D:0B:9D:A5:17:A1:1C:0C:1B:D7:3A:02
ValidityFri, 06 May 2022 00:00:00 GMT - Tue, 06 Jun 2023 23:59:59 GMT
File type ASCII text, with very long lines (20491)
Hash 89ae08dd745c430583731d07035ac01a
e55d211504197727a15452b8690eff5bfbeda8b6
ac41a6d0c1790f52a79cd6b3ae29a9aec8043dfb039a6dacc9bcc2e0fc63e9ea
GET /oversea_web/static/js/loginSdk2.0.1.42f19978.js HTTP/1.1
Host: cdn.midasbuy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://x3nmt.pubgm.asia/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: NWSs
date: Sat, 06 May 2023 21:17:27 GMT
content-type: application/javascript
content-length: 9329
cache-control: max-age=600
expires: Sat, 06 May 2023 21:27:26 GMT
last-modified: Wed, 27 Jul 2022 09:04:48 GMT
content-encoding: gzip
x-nws-log-uuid: 51d2c615-f4d3-4368-8a7b-0f834417aac0
x-cache-lookup: Hit From Disktank3 Gz
accept-ranges: bytes
X-Firefox-Spdy: h2
cdn.midasbuy.com/oversea_web/static/js/default.ab8baf08.js
101.33.10.108200 OK 31 kB URL GET HTTP/2 cdn.midasbuy.com/oversea_web/static/js/default.ab8baf08.js
IP 101.33.10.108:443
ASN #132203 Tencent Building, Kejizhongyi Avenue
Requested by https://x3nmt.pubgm.asia/
Certificate IssuerDigiCert Inc
Subject*.midasbuy.com
FingerprintEF:32:D0:91:A1:AC:5B:AE:1D:0B:9D:A5:17:A1:1C:0C:1B:D7:3A:02
ValidityFri, 06 May 2022 00:00:00 GMT - Tue, 06 Jun 2023 23:59:59 GMT
File type Unicode text, UTF-8 text, with very long lines (65389), with no line terminators
Hash b8c68f4e4cdb1d81d82e2f13168bc662
f40bb128569149fc60a8aeacb29cb23189d3c80c
1ab64ed3280b03a079b7f23f1c83e68a3b5af5d1193a2f27cb0f3e46675284a1
GET /oversea_web/static/js/default.ab8baf08.js HTTP/1.1
Host: cdn.midasbuy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://x3nmt.pubgm.asia/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: NWSs
date: Sat, 06 May 2023 21:17:27 GMT
content-type: application/javascript
content-length: 31200
cache-control: max-age=600
expires: Sat, 06 May 2023 21:27:26 GMT
last-modified: Tue, 30 Aug 2022 03:00:18 GMT
content-encoding: gzip
x-nws-log-uuid: b03319af-56a9-4c91-b4e0-3348c27f58b8
x-cache-lookup: Hit From Disktank3 Gz
accept-ranges: bytes
X-Firefox-Spdy: h2
cdn.midasbuy.com/oversea_web/static/js/mallpage.73be3c0f.js
101.33.10.108200 OK 36 kB URL GET HTTP/2 cdn.midasbuy.com/oversea_web/static/js/mallpage.73be3c0f.js
IP 101.33.10.108:443
ASN #132203 Tencent Building, Kejizhongyi Avenue
Requested by https://x3nmt.pubgm.asia/
Certificate IssuerDigiCert Inc
Subject*.midasbuy.com
FingerprintEF:32:D0:91:A1:AC:5B:AE:1D:0B:9D:A5:17:A1:1C:0C:1B:D7:3A:02
ValidityFri, 06 May 2022 00:00:00 GMT - Tue, 06 Jun 2023 23:59:59 GMT
File type Unicode text, UTF-8 text, with very long lines (65530), with no line terminators
Hash 0f5dd34e165844aa50710dcc5c68cfae
a2082e71fda7a4556ac0be91aa0be3bd4094acb6
f1104cf92df08e46918d89c50f20bde4d196d4e8da780aaffa53f2f81d6c9593
GET /oversea_web/static/js/mallpage.73be3c0f.js HTTP/1.1
Host: cdn.midasbuy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://x3nmt.pubgm.asia/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: NWSs
date: Sat, 06 May 2023 21:17:27 GMT
content-type: application/javascript
content-length: 35591
cache-control: max-age=600
expires: Sat, 06 May 2023 21:27:26 GMT
last-modified: Thu, 25 Aug 2022 08:35:23 GMT
content-encoding: gzip
x-nws-log-uuid: 252f18f8-919e-4937-8cd7-95f984036e77
x-cache-lookup: Hit From Disktank3 Gz
accept-ranges: bytes
X-Firefox-Spdy: h2
cdn.midasbuy.com/images/midas_oversea/f345fa0b163e2e6fc7c3f54a1539989f.png
101.33.10.108200 OK 883 kB URL GET HTTP/2 cdn.midasbuy.com/images/midas_oversea/f345fa0b163e2e6fc7c3f54a1539989f.png
IP 101.33.10.108:443
ASN #132203 Tencent Building, Kejizhongyi Avenue
Requested by https://x3nmt.pubgm.asia/
Certificate IssuerDigiCert Inc
Subject*.midasbuy.com
FingerprintEF:32:D0:91:A1:AC:5B:AE:1D:0B:9D:A5:17:A1:1C:0C:1B:D7:3A:02
ValidityFri, 06 May 2022 00:00:00 GMT - Tue, 06 Jun 2023 23:59:59 GMT
File type PNG image data, 820 x 820, 8-bit/color RGBA, non-interlaced\012- data
Size 883 kB (883039 bytes)
Hash 127a5f995cabb15774d59efa039f73c0
a7c14b3f5a56fab1089af32ceb81d61f1b45e9de
b9ba2d40eaa3d3fb2cb702e7acdf86260945fc8b7e15526fd7a161e521fbf3e3
GET /images/midas_oversea/f345fa0b163e2e6fc7c3f54a1539989f.png HTTP/1.1
Host: cdn.midasbuy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://x3nmt.pubgm.asia/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: NWSs
date: Sat, 06 May 2023 21:17:27 GMT
content-type: image/png
content-length: 883039
cache-control: max-age=600
expires: Sat, 06 May 2023 21:27:26 GMT
last-modified: Tue, 14 Mar 2023 11:57:10 GMT
x-nws-log-uuid: 093b9073-9cef-4fd7-9916-b6bce1e7fe62
x-cache-lookup: Hit From Disktank3
access-control-allow-origin: https://www.midasbuy.com
timing-allow-origin: https://www.midasbuy.com
accept-ranges: bytes
X-Firefox-Spdy: h2
cdn.midasbuy.com/images/50uc_128x128075f6be2.png
101.33.10.108200 OK 7.8 kB URL GET HTTP/2 cdn.midasbuy.com/images/50uc_128x128075f6be2.png
IP 101.33.10.108:443
ASN #132203 Tencent Building, Kejizhongyi Avenue
Requested by https://x3nmt.pubgm.asia/
Certificate IssuerDigiCert Inc
Subject*.midasbuy.com
FingerprintEF:32:D0:91:A1:AC:5B:AE:1D:0B:9D:A5:17:A1:1C:0C:1B:D7:3A:02
ValidityFri, 06 May 2022 00:00:00 GMT - Tue, 06 Jun 2023 23:59:59 GMT
File type PNG image data, 128 x 128, 8-bit colormap, non-interlaced\012- data
Hash 075f6be2076327365b7be33f431a5edf
925848309c77b14c17aba8abe7b48b254cb3c61a
9bf64c820c7a969f6989dbf13e762acea47de29c2aca51c51472b0efd92ab924
GET /images/50uc_128x128075f6be2.png HTTP/1.1
Host: cdn.midasbuy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://x3nmt.pubgm.asia/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: NWSs
date: Sat, 06 May 2023 21:17:27 GMT
content-type: image/png
content-length: 7818
cache-control: max-age=600
expires: Sat, 06 May 2023 21:27:26 GMT
last-modified: Fri, 10 Sep 2021 07:54:29 GMT
x-nws-log-uuid: 64ba5cbf-9685-47a3-8fa4-5ddec8896d3c
x-cache-lookup: Hit From MemCache
access-control-allow-origin: https://www.midasbuy.com
timing-allow-origin: https://www.midasbuy.com
accept-ranges: bytes
X-Firefox-Spdy: h2
cdn.midasbuy.com/oversea_web/static/images/channels/1591583418114fLuXpvL7.png
101.33.10.108200 OK 8.3 kB URL GET HTTP/2 cdn.midasbuy.com/oversea_web/static/images/channels/1591583418114fLuXpvL7.png
IP 101.33.10.108:443
ASN #132203 Tencent Building, Kejizhongyi Avenue
Requested by https://x3nmt.pubgm.asia/
Certificate IssuerDigiCert Inc
Subject*.midasbuy.com
FingerprintEF:32:D0:91:A1:AC:5B:AE:1D:0B:9D:A5:17:A1:1C:0C:1B:D7:3A:02
ValidityFri, 06 May 2022 00:00:00 GMT - Tue, 06 Jun 2023 23:59:59 GMT
File type PNG image data, 96 x 64, 8-bit/color RGBA, non-interlaced\012- data
Hash 525e2453f58f8f8a52d4d226557f7947
fb295832a2d81edd5c7cc16e946d3728eb1795ce
4b6e1dc3fe4ab6e3017023bcfc253977a3c1924c84ac1cf0dfc125d8c3c2d2be
GET /oversea_web/static/images/channels/1591583418114fLuXpvL7.png HTTP/1.1
Host: cdn.midasbuy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://x3nmt.pubgm.asia/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: NWSs
date: Sat, 06 May 2023 21:17:27 GMT
content-type: image/png
content-length: 8273
cache-control: max-age=600
expires: Sat, 06 May 2023 21:27:26 GMT
last-modified: Wed, 19 Jan 2022 06:27:06 GMT
x-nws-log-uuid: d8c3d439-05b6-4d01-b0b6-e89f61755501
x-cache-lookup: Hit From MemCache
access-control-allow-origin: https://www.midasbuy.com
timing-allow-origin: https://www.midasbuy.com
accept-ranges: bytes
X-Firefox-Spdy: h2
cdn.midasbuy.com/oversea_web/static/images/codmicon/coupon-2.png
101.33.10.108200 OK 23 kB URL GET HTTP/2 cdn.midasbuy.com/oversea_web/static/images/codmicon/coupon-2.png
IP 101.33.10.108:443
ASN #132203 Tencent Building, Kejizhongyi Avenue
Requested by https://x3nmt.pubgm.asia/
Certificate IssuerDigiCert Inc
Subject*.midasbuy.com
FingerprintEF:32:D0:91:A1:AC:5B:AE:1D:0B:9D:A5:17:A1:1C:0C:1B:D7:3A:02
ValidityFri, 06 May 2022 00:00:00 GMT - Tue, 06 Jun 2023 23:59:59 GMT
File type PNG image data, 130 x 142, 8-bit/color RGBA, non-interlaced\012- data
Hash 6d2cbefa39f80dc247a47dcc5e1cf60f
0366fd534037bf98865fdff785c2388395953e7f
80d05cb631346099294f64a38604848dd88a987547061afe5a4f3d882a69e71e
GET /oversea_web/static/images/codmicon/coupon-2.png HTTP/1.1
Host: cdn.midasbuy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://x3nmt.pubgm.asia/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: NWSs
date: Sat, 06 May 2023 21:17:27 GMT
content-type: image/png
content-length: 22967
cache-control: max-age=600
expires: Sat, 06 May 2023 21:27:26 GMT
last-modified: Sat, 06 May 2023 09:57:24 GMT
x-nws-log-uuid: 599f5f13-d279-4685-b1c2-345f75e4b766
x-cache-lookup: Hit From Disktank3
access-control-allow-origin: https://www.midasbuy.com
timing-allow-origin: https://www.midasbuy.com
accept-ranges: bytes
X-Firefox-Spdy: h2
cdn.midasbuy.com/images/midas_oversea/8ccfae155004207835b108ea0abda916.png
101.33.10.108200 OK 27 kB URL GET HTTP/2 cdn.midasbuy.com/images/midas_oversea/8ccfae155004207835b108ea0abda916.png
IP 101.33.10.108:443
ASN #132203 Tencent Building, Kejizhongyi Avenue
Requested by https://x3nmt.pubgm.asia/
Certificate IssuerDigiCert Inc
Subject*.midasbuy.com
FingerprintEF:32:D0:91:A1:AC:5B:AE:1D:0B:9D:A5:17:A1:1C:0C:1B:D7:3A:02
ValidityFri, 06 May 2022 00:00:00 GMT - Tue, 06 Jun 2023 23:59:59 GMT
File type PNG image data, 128 x 128, 8-bit/color RGBA, non-interlaced\012- data
Hash 911399487e9e4128d50713b5e524fe3e
afb6bb973f802eaa0bb9768072d04d5d7dfe04fd
2bb8afc7f4ec30ca9b04013ae387f8cc300a82874a03da626871c50ca36530b9
GET /images/midas_oversea/8ccfae155004207835b108ea0abda916.png HTTP/1.1
Host: cdn.midasbuy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://x3nmt.pubgm.asia/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: NWSs
date: Sat, 06 May 2023 21:17:27 GMT
content-type: image/png
content-length: 26730
cache-control: max-age=600
expires: Sat, 06 May 2023 21:27:26 GMT
last-modified: Tue, 12 Jul 2022 09:26:16 GMT
x-nws-log-uuid: fdc8b781-77e1-451f-8b66-926ec1d62683
x-cache-lookup: Hit From Disktank3
accept-ranges: bytes
X-Firefox-Spdy: h2
cdn.midasbuy.com/h5/overseah5/images/card_icon_v2_master.png
101.33.10.108200 OK 1.3 kB URL GET HTTP/2 cdn.midasbuy.com/h5/overseah5/images/card_icon_v2_master.png
IP 101.33.10.108:443
ASN #132203 Tencent Building, Kejizhongyi Avenue
Requested by https://x3nmt.pubgm.asia/
Certificate IssuerDigiCert Inc
Subject*.midasbuy.com
FingerprintEF:32:D0:91:A1:AC:5B:AE:1D:0B:9D:A5:17:A1:1C:0C:1B:D7:3A:02
ValidityFri, 06 May 2022 00:00:00 GMT - Tue, 06 Jun 2023 23:59:59 GMT
File type PNG image data, 138 x 90, 8-bit colormap, non-interlaced\012- data
Hash add0df65ef7db93f547698ec1efd7aef
2536645efc64efcb8fcfba52ffd6f8dd409c6408
5577e9faf5308b750ac0d2a080fc60e6181f3d569874967e5183f6dfaf622b16
GET /h5/overseah5/images/card_icon_v2_master.png HTTP/1.1
Host: cdn.midasbuy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://x3nmt.pubgm.asia/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: NWSs
date: Sat, 06 May 2023 21:17:27 GMT
content-type: image/png
content-length: 1302
cache-control: max-age=600
expires: Sat, 06 May 2023 21:27:26 GMT
last-modified: Mon, 29 Mar 2021 07:01:48 GMT
x-nws-log-uuid: d7bebf57-3cc5-4571-a950-f1b992e1504e
x-cache-lookup: Hit From MemCache
access-control-allow-origin: https://www.midasbuy.com
timing-allow-origin: https://www.midasbuy.com
accept-ranges: bytes
X-Firefox-Spdy: h2
cdn.midasbuy.com/h5/overseah5/images/card_icon_v2_visa.png
101.33.10.108200 OK 2.1 kB URL GET HTTP/2 cdn.midasbuy.com/h5/overseah5/images/card_icon_v2_visa.png
IP 101.33.10.108:443
ASN #132203 Tencent Building, Kejizhongyi Avenue
Requested by https://x3nmt.pubgm.asia/
Certificate IssuerDigiCert Inc
Subject*.midasbuy.com
FingerprintEF:32:D0:91:A1:AC:5B:AE:1D:0B:9D:A5:17:A1:1C:0C:1B:D7:3A:02
ValidityFri, 06 May 2022 00:00:00 GMT - Tue, 06 Jun 2023 23:59:59 GMT
File type PNG image data, 138 x 90, 8-bit colormap, non-interlaced\012- data
Hash 734fdcd2826582ec81522a41dbbe5086
0f6cd90027e881d45fd53484b9e759a06045d905
679c8783ed5a51dfaa8cb38704976a4d398ed220aeab240461cfb54006ca176a
GET /h5/overseah5/images/card_icon_v2_visa.png HTTP/1.1
Host: cdn.midasbuy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://x3nmt.pubgm.asia/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: NWSs
date: Sat, 06 May 2023 21:17:27 GMT
content-type: image/png
content-length: 2060
cache-control: max-age=600
expires: Sat, 06 May 2023 21:27:26 GMT
last-modified: Mon, 29 Mar 2021 07:01:49 GMT
x-nws-log-uuid: 5abe8112-f715-4daa-8fcd-9aab2d0d9819
x-cache-lookup: Hit From MemCache
access-control-allow-origin: https://www.midasbuy.com
timing-allow-origin: https://www.midasbuy.com
accept-ranges: bytes
X-Firefox-Spdy: h2
cdn.midasbuy.com/h5/overseah5/images/card_icon_v2_amex.png
101.33.10.108200 OK 1.8 kB URL GET HTTP/2 cdn.midasbuy.com/h5/overseah5/images/card_icon_v2_amex.png
IP 101.33.10.108:443
ASN #132203 Tencent Building, Kejizhongyi Avenue
Requested by https://x3nmt.pubgm.asia/
Certificate IssuerDigiCert Inc
Subject*.midasbuy.com
FingerprintEF:32:D0:91:A1:AC:5B:AE:1D:0B:9D:A5:17:A1:1C:0C:1B:D7:3A:02
ValidityFri, 06 May 2022 00:00:00 GMT - Tue, 06 Jun 2023 23:59:59 GMT
File type PNG image data, 138 x 90, 8-bit colormap, non-interlaced\012- data
Hash db166941bc26d7b02e84434de4d4f9e4
e57c63681610aade1e892a11f38655bf236f1c98
cedcd845b9172645389a4e1511535bc9ce6c987d0b09165bd94f7555c62a77c0
GET /h5/overseah5/images/card_icon_v2_amex.png HTTP/1.1
Host: cdn.midasbuy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://x3nmt.pubgm.asia/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: NWSs
date: Sat, 06 May 2023 21:17:27 GMT
content-type: image/png
content-length: 1818
cache-control: max-age=600
expires: Sat, 06 May 2023 21:27:26 GMT
last-modified: Mon, 29 Mar 2021 07:01:48 GMT
x-nws-log-uuid: 425226c3-b7d7-4ac5-aea0-f6e72ba8ea6c
x-cache-lookup: Hit From MemCache
access-control-allow-origin: https://www.midasbuy.com
timing-allow-origin: https://www.midasbuy.com
accept-ranges: bytes
X-Firefox-Spdy: h2
cdn.midasbuy.com/h5/overseah5/images/card_icon_v2_diners.png
101.33.10.108200 OK 3.3 kB URL GET HTTP/2 cdn.midasbuy.com/h5/overseah5/images/card_icon_v2_diners.png
IP 101.33.10.108:443
ASN #132203 Tencent Building, Kejizhongyi Avenue
Requested by https://x3nmt.pubgm.asia/
Certificate IssuerDigiCert Inc
Subject*.midasbuy.com
FingerprintEF:32:D0:91:A1:AC:5B:AE:1D:0B:9D:A5:17:A1:1C:0C:1B:D7:3A:02
ValidityFri, 06 May 2022 00:00:00 GMT - Tue, 06 Jun 2023 23:59:59 GMT
File type PNG image data, 138 x 90, 8-bit colormap, non-interlaced\012- data
Hash 8c72e07d96ee0f6c45f40128b163f368
dd9c67559fd994d01b315e2f9755814ffbe12cac
c05c5e5b31a1967b6ba831f7b8911482709e103ef1602477caf153d7d17f4d46
GET /h5/overseah5/images/card_icon_v2_diners.png HTTP/1.1
Host: cdn.midasbuy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://x3nmt.pubgm.asia/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: NWSs
date: Sat, 06 May 2023 21:17:27 GMT
content-type: image/png
content-length: 3344
cache-control: max-age=600
expires: Sat, 06 May 2023 21:27:26 GMT
last-modified: Mon, 29 Mar 2021 07:01:48 GMT
x-nws-log-uuid: 19ea698a-37c4-444a-aae2-059031a685c1
x-cache-lookup: Hit From MemCache
access-control-allow-origin: https://www.midasbuy.com
timing-allow-origin: https://www.midasbuy.com
accept-ranges: bytes
X-Firefox-Spdy: h2
cdn.midasbuy.com/h5/overseah5/images/card_icon_v2_unionpay.png
101.33.10.108200 OK 4.5 kB URL GET HTTP/2 cdn.midasbuy.com/h5/overseah5/images/card_icon_v2_unionpay.png
IP 101.33.10.108:443
ASN #132203 Tencent Building, Kejizhongyi Avenue
Requested by https://x3nmt.pubgm.asia/
Certificate IssuerDigiCert Inc
Subject*.midasbuy.com
FingerprintEF:32:D0:91:A1:AC:5B:AE:1D:0B:9D:A5:17:A1:1C:0C:1B:D7:3A:02
ValidityFri, 06 May 2022 00:00:00 GMT - Tue, 06 Jun 2023 23:59:59 GMT
File type PNG image data, 138 x 90, 8-bit colormap, non-interlaced\012- data
Hash b34a9ac74729ab07da39af425ec821a8
6b697eefc43d04d3e9fbb20e3870e081243745c7
d7be11f3a0339f8853aa2336d8d4fb4a18948e9e957cc3008c483e56af62c59f
GET /h5/overseah5/images/card_icon_v2_unionpay.png HTTP/1.1
Host: cdn.midasbuy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://x3nmt.pubgm.asia/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: NWSs
date: Sat, 06 May 2023 21:17:27 GMT
content-type: image/png
content-length: 4474
cache-control: max-age=600
expires: Sat, 06 May 2023 21:27:26 GMT
last-modified: Mon, 29 Mar 2021 07:01:49 GMT
x-nws-log-uuid: a93a9bb5-4dbc-4eae-8e06-a5fcbdf6df80
x-cache-lookup: Hit From MemCache
access-control-allow-origin: https://www.midasbuy.com
timing-allow-origin: https://www.midasbuy.com
accept-ranges: bytes
X-Firefox-Spdy: h2
cdn.midasbuy.com/h5/overseah5/images/card_icon_v2_discover.png
101.33.10.108200 OK 2.0 kB URL GET HTTP/2 cdn.midasbuy.com/h5/overseah5/images/card_icon_v2_discover.png
IP 101.33.10.108:443
ASN #132203 Tencent Building, Kejizhongyi Avenue
Requested by https://x3nmt.pubgm.asia/
Certificate IssuerDigiCert Inc
Subject*.midasbuy.com
FingerprintEF:32:D0:91:A1:AC:5B:AE:1D:0B:9D:A5:17:A1:1C:0C:1B:D7:3A:02
ValidityFri, 06 May 2022 00:00:00 GMT - Tue, 06 Jun 2023 23:59:59 GMT
File type PNG image data, 138 x 90, 8-bit colormap, non-interlaced\012- data
Hash c655acdbdfdc7ccbb23baf99ef09d2ea
cd4a7dbaa918b97f68b0a07054661944066f6d21
ac8a74e80015611aedc91dcd1b1fd5282ceff952fa343d1dada5d9b6eec68679
GET /h5/overseah5/images/card_icon_v2_discover.png HTTP/1.1
Host: cdn.midasbuy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://x3nmt.pubgm.asia/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: NWSs
date: Sat, 06 May 2023 21:17:27 GMT
content-type: image/png
content-length: 2010
cache-control: max-age=600
expires: Sat, 06 May 2023 21:27:26 GMT
last-modified: Mon, 29 Mar 2021 07:01:48 GMT
x-nws-log-uuid: a35a590b-92d4-43b4-ac62-a15960c835cd
x-cache-lookup: Hit From MemCache
access-control-allow-origin: https://www.midasbuy.com
timing-allow-origin: https://www.midasbuy.com
accept-ranges: bytes
X-Firefox-Spdy: h2
cdn.midasbuy.com/oversea_web/static/images/channels/razergold_logo.png
101.33.10.108200 OK 4.5 kB URL GET HTTP/2 cdn.midasbuy.com/oversea_web/static/images/channels/razergold_logo.png
IP 101.33.10.108:443
ASN #132203 Tencent Building, Kejizhongyi Avenue
Requested by https://x3nmt.pubgm.asia/
Certificate IssuerDigiCert Inc
Subject*.midasbuy.com
FingerprintEF:32:D0:91:A1:AC:5B:AE:1D:0B:9D:A5:17:A1:1C:0C:1B:D7:3A:02
ValidityFri, 06 May 2022 00:00:00 GMT - Tue, 06 Jun 2023 23:59:59 GMT
File type PNG image data, 96 x 64, 8-bit/color RGBA, non-interlaced\012- data
Hash 0c025b1ff707aa2a65d1a3c6e14e4ee6
729f94cb4351bc9354cf28cb0aa163ff2434afb5
ec228eea566dbbed4635757a0a914fe12bee0ac3908598a682bf1bfe93c37aa0
GET /oversea_web/static/images/channels/razergold_logo.png HTTP/1.1
Host: cdn.midasbuy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://x3nmt.pubgm.asia/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: NWSs
date: Sat, 06 May 2023 21:17:27 GMT
content-type: image/png
content-length: 4489
cache-control: max-age=600
expires: Sat, 06 May 2023 21:27:26 GMT
last-modified: Wed, 19 Jan 2022 06:27:10 GMT
x-nws-log-uuid: 3113a3f0-a3f5-48e4-96d7-0fdab7c48818
x-cache-lookup: Hit From MemCache
access-control-allow-origin: https://www.midasbuy.com
timing-allow-origin: https://www.midasbuy.com
accept-ranges: bytes
X-Firefox-Spdy: h2
cdn.midasbuy.com/images/growthpoint.2bffc4ce.png
101.33.10.108200 OK 1.8 kB URL GET HTTP/2 cdn.midasbuy.com/images/growthpoint.2bffc4ce.png
IP 101.33.10.108:443
ASN #132203 Tencent Building, Kejizhongyi Avenue
Requested by https://x3nmt.pubgm.asia/
Certificate IssuerDigiCert Inc
Subject*.midasbuy.com
FingerprintEF:32:D0:91:A1:AC:5B:AE:1D:0B:9D:A5:17:A1:1C:0C:1B:D7:3A:02
ValidityFri, 06 May 2022 00:00:00 GMT - Tue, 06 Jun 2023 23:59:59 GMT
File type PNG image data, 48 x 48, 8-bit/color RGBA, non-interlaced\012- data
Hash 2bffc4ceb3d9867440830ef9bddd8b76
c8ebec204f1228c63342d7719f5393667e7bcc45
b0849566c1e882e0b320a5ff8b10f3fc9a89fe11351259072a563efad479e71e
GET /images/growthpoint.2bffc4ce.png HTTP/1.1
Host: cdn.midasbuy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://x3nmt.pubgm.asia/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: NWSs
date: Sat, 06 May 2023 21:17:27 GMT
content-type: image/png
content-length: 1849
cache-control: max-age=600
expires: Sat, 06 May 2023 21:27:26 GMT
last-modified: Mon, 27 Jun 2022 07:17:46 GMT
x-nws-log-uuid: 783e9fda-4610-405e-933d-e39dfb29c8df
x-cache-lookup: Hit From MemCache
access-control-allow-origin: https://www.midasbuy.com
timing-allow-origin: https://www.midasbuy.com
accept-ranges: bytes
X-Firefox-Spdy: h2
cdn.midasbuy.com/images/credit-close-icon7a8cb38d.png
101.33.10.108200 OK 323 B URL GET HTTP/2 cdn.midasbuy.com/images/credit-close-icon7a8cb38d.png
IP 101.33.10.108:443
ASN #132203 Tencent Building, Kejizhongyi Avenue
Requested by https://x3nmt.pubgm.asia/
Certificate IssuerDigiCert Inc
Subject*.midasbuy.com
FingerprintEF:32:D0:91:A1:AC:5B:AE:1D:0B:9D:A5:17:A1:1C:0C:1B:D7:3A:02
ValidityFri, 06 May 2022 00:00:00 GMT - Tue, 06 Jun 2023 23:59:59 GMT
File type PNG image data, 24 x 24, 8-bit/color RGBA, non-interlaced\012- data
Hash 7a8cb38d761ab8929bf7300e618b9845
6249810def3cbb30031ce2b49d82055447b0d26b
6d7092472d9ef7f7f7c14fc133ea677583d8b53177fbd0cb144ddf1d00aa4172
GET /images/credit-close-icon7a8cb38d.png HTTP/1.1
Host: cdn.midasbuy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://x3nmt.pubgm.asia/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: NWSs
date: Sat, 06 May 2023 21:17:27 GMT
content-type: image/png
content-length: 323
cache-control: max-age=600
expires: Sat, 06 May 2023 21:27:26 GMT
last-modified: Thu, 13 Jan 2022 11:31:23 GMT
x-nws-log-uuid: 35c4f8be-2543-477f-becd-985bce44824b
x-cache-lookup: Hit From MemCache
access-control-allow-origin: https://www.midasbuy.com
timing-allow-origin: https://www.midasbuy.com
accept-ranges: bytes
X-Firefox-Spdy: h2
cdn.midasbuy.com/h5/overseah5/images/card_icon_v2_jcb.png
101.33.10.108200 OK 2.2 kB URL GET HTTP/2 cdn.midasbuy.com/h5/overseah5/images/card_icon_v2_jcb.png
IP 101.33.10.108:443
ASN #132203 Tencent Building, Kejizhongyi Avenue
Requested by https://x3nmt.pubgm.asia/
Certificate IssuerDigiCert Inc
Subject*.midasbuy.com
FingerprintEF:32:D0:91:A1:AC:5B:AE:1D:0B:9D:A5:17:A1:1C:0C:1B:D7:3A:02
ValidityFri, 06 May 2022 00:00:00 GMT - Tue, 06 Jun 2023 23:59:59 GMT
File type PNG image data, 138 x 90, 8-bit colormap, non-interlaced\012- data
Hash 8e439492abeb5ac33d6222b6881d4e41
333100d1ec40796b3ac6c169ce4ebecc1871e04d
622617cf307bfd5248514eed606f825c4b0b84529811e798f2d52d3e6278b930
GET /h5/overseah5/images/card_icon_v2_jcb.png HTTP/1.1
Host: cdn.midasbuy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://x3nmt.pubgm.asia/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: NWSs
date: Sat, 06 May 2023 21:17:27 GMT
content-type: image/png
content-length: 2168
cache-control: max-age=600
expires: Sat, 06 May 2023 21:27:26 GMT
last-modified: Mon, 29 Mar 2021 07:01:48 GMT
x-nws-log-uuid: c08f4241-3039-458a-becf-4c771ba54619
x-cache-lookup: Hit From MemCache
access-control-allow-origin: https://www.midasbuy.com
timing-allow-origin: https://www.midasbuy.com
accept-ranges: bytes
X-Firefox-Spdy: h2
cdn.midasbuy.com/images/midas_oversea/f3b5dc15ace504dbeddc2c91b1fda034.png
101.33.10.108200 OK 824 kB URL GET HTTP/2 cdn.midasbuy.com/images/midas_oversea/f3b5dc15ace504dbeddc2c91b1fda034.png
IP 101.33.10.108:443
ASN #132203 Tencent Building, Kejizhongyi Avenue
Requested by https://x3nmt.pubgm.asia/
Certificate IssuerDigiCert Inc
Subject*.midasbuy.com
FingerprintEF:32:D0:91:A1:AC:5B:AE:1D:0B:9D:A5:17:A1:1C:0C:1B:D7:3A:02
ValidityFri, 06 May 2022 00:00:00 GMT - Tue, 06 Jun 2023 23:59:59 GMT
File type PNG image data, 820 x 820, 8-bit/color RGBA, non-interlaced\012- data
Size 824 kB (824402 bytes)
Hash 4d905026ab9137455123b902909a7db8
1791b1e9e7150ab80039a1a3bacd48074654eb29
dd3dd39c666e26f9c86f0ecaf916b62e7c59ec5eb6fddbc833bacb3c3749dbe2
GET /images/midas_oversea/f3b5dc15ace504dbeddc2c91b1fda034.png HTTP/1.1
Host: cdn.midasbuy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://x3nmt.pubgm.asia/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: NWSs
date: Sat, 06 May 2023 21:17:27 GMT
content-type: image/png
content-length: 824402
cache-control: max-age=600
expires: Sat, 06 May 2023 21:27:26 GMT
last-modified: Tue, 14 Mar 2023 12:07:26 GMT
x-nws-log-uuid: 18fba36b-53f4-4de9-9e05-638603c4f396
x-cache-lookup: Hit From Disktank3
access-control-allow-origin: https://www.midasbuy.com
timing-allow-origin: https://www.midasbuy.com
accept-ranges: bytes
X-Firefox-Spdy: h2
cdn.midasbuy.com/oversea_web/static/js/midas.runtimev1.js
101.33.10.108200 OK 109 kB URL GET HTTP/2 cdn.midasbuy.com/oversea_web/static/js/midas.runtimev1.js
IP 101.33.10.108:443
ASN #132203 Tencent Building, Kejizhongyi Avenue
Requested by https://x3nmt.pubgm.asia/
Certificate IssuerDigiCert Inc
Subject*.midasbuy.com
FingerprintEF:32:D0:91:A1:AC:5B:AE:1D:0B:9D:A5:17:A1:1C:0C:1B:D7:3A:02
ValidityFri, 06 May 2022 00:00:00 GMT - Tue, 06 Jun 2023 23:59:59 GMT
File type Unicode text, UTF-8 text, with very long lines (65535), with no line terminators
Size 109 kB (109236 bytes)
Hash 8f25f80100331102339bd30f0fa5cbd6
5b61fbcd7973e2176213f5cc6c850976405be317
a34fe73d2aa582155eced10e43b5fe2929911f33ee033276d77277618dad0a14
GET /oversea_web/static/js/midas.runtimev1.js HTTP/1.1
Host: cdn.midasbuy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://x3nmt.pubgm.asia/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: NWSs
date: Sat, 06 May 2023 21:17:27 GMT
content-type: application/javascript
content-length: 109236
cache-control: max-age=600
expires: Sat, 06 May 2023 21:27:26 GMT
last-modified: Tue, 22 Nov 2022 14:30:27 GMT
content-encoding: gzip
x-nws-log-uuid: 455a952b-a033-47a6-9282-908d61f94443
x-cache-lookup: Hit From Disktank3 Gz
accept-ranges: bytes
X-Firefox-Spdy: h2
cdn.midasbuy.com/oversea_web/static/css/vendor.f775167e.css?max_age=864000
101.33.10.108200 OK 217 kB URL GET HTTP/2 cdn.midasbuy.com/oversea_web/static/css/vendor.f775167e.css?max_age=864000
IP 101.33.10.108:443
ASN #132203 Tencent Building, Kejizhongyi Avenue
Requested by https://x3nmt.pubgm.asia/
Certificate IssuerDigiCert Inc
Subject*.midasbuy.com
FingerprintEF:32:D0:91:A1:AC:5B:AE:1D:0B:9D:A5:17:A1:1C:0C:1B:D7:3A:02
ValidityFri, 06 May 2022 00:00:00 GMT - Tue, 06 Jun 2023 23:59:59 GMT
File type ASCII text, with very long lines (65536), with no line terminators
Size 217 kB (217225 bytes)
Hash 2f597066be374ffb0278ed304857a43e
9d7640a5f4aaca9e365c9b0336ce4107bf1bcb6a
0cdbc96525701629604974eae340b1d3c5da8e5f5bfd30b26c4f1d636b20bc49
GET /oversea_web/static/css/vendor.f775167e.css?max_age=864000 HTTP/1.1
Host: cdn.midasbuy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://x3nmt.pubgm.asia/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: NWSs
date: Sat, 06 May 2023 21:17:27 GMT
content-type: text/css
content-length: 217225
cache-control: max-age=864000
expires: Tue, 16 May 2023 21:17:26 GMT
last-modified: Thu, 08 Sep 2022 08:48:03 GMT
content-encoding: gzip
x-nws-log-uuid: 67860c4f-033b-4183-90be-e7cc41f03a70
x-cache-lookup: Hit From Disktank3 Gz
accept-ranges: bytes
X-Firefox-Spdy: h2
ocsp.digicert.cn/
47.246.44.205 471 B IP 47.246.44.205:0
ASN #24429 Zhejiang Taobao Network Co.,Ltd
Hash eab5b13cfb36a46b62fa4b7b3a84bba0
42b25f6129c75cbbc19bf0ee98317a6d57124be3
428e43d6d3394d0d0520600db5a472b5dbc8d4c5b5026ec90661f47405adc850
POST / HTTP/1.1
Host: ocsp.digicert.cn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Tengine
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Cache-Control: 'max-age=158059'
Date: Sat, 06 May 2023 21:17:27 GMT
Ali-Swift-Global-Savetime: 1683407847
Via: cache12.l2de2[335,335,200-0,M], cache12.l2de2[336,0], cache8.se1[357,357,200-0,M], cache8.se1[358,0]
X-Cache: MISS TCP_MISS dirn:-2:-2
X-Swift-SaveTime: Sat, 06 May 2023 21:17:27 GMT
X-Swift-CacheTime: 0
Timing-Allow-Origin: *
EagleId: 2ff62c9c16834078473474117e
cdn.midasbuy.com/oversea_web/static/css/mallpage.5b68c404.css?max_age=864000
101.33.10.108200 OK 8.2 kB URL GET HTTP/2 cdn.midasbuy.com/oversea_web/static/css/mallpage.5b68c404.css?max_age=864000
IP 101.33.10.108:443
ASN #132203 Tencent Building, Kejizhongyi Avenue
Requested by https://x3nmt.pubgm.asia/
Certificate IssuerDigiCert Inc
Subject*.midasbuy.com
FingerprintEF:32:D0:91:A1:AC:5B:AE:1D:0B:9D:A5:17:A1:1C:0C:1B:D7:3A:02
ValidityFri, 06 May 2022 00:00:00 GMT - Tue, 06 Jun 2023 23:59:59 GMT
File type ASCII text, with very long lines (24558), with no line terminators
Hash dd5d7097a2ab5f959a58cee97ba1f678
e9d6df05e34585a09eb758544471db0cd71f0da9
4e005c15375279cdb3181f356c70b56dae4647475a49a6db555dc1e75cf03a51
GET /oversea_web/static/css/mallpage.5b68c404.css?max_age=864000 HTTP/1.1
Host: cdn.midasbuy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://x3nmt.pubgm.asia/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: NWSs
date: Sat, 06 May 2023 21:17:27 GMT
content-type: text/css
content-length: 8246
cache-control: max-age=864000
expires: Tue, 16 May 2023 21:17:27 GMT
last-modified: Thu, 25 Aug 2022 08:29:45 GMT
content-encoding: gzip
x-nws-log-uuid: c1e8fca3-8469-40bb-8b5e-8132393ca7e2
x-cache-lookup: Hit From Disktank3 Gz
accept-ranges: bytes
X-Firefox-Spdy: h2
cdn-go.cn/aegis/aegis-sdk/latest/aegis.min.js?_bid=3977
101.33.10.29200 OK 21 kB URL GET HTTP/2 cdn-go.cn/aegis/aegis-sdk/latest/aegis.min.js?_bid=3977
IP 101.33.10.29:443
ASN #132203 Tencent Building, Kejizhongyi Avenue
Requested by https://x3nmt.pubgm.asia/
Certificate IssuerDigiCert Inc
Subjectweixin.qq.com
Fingerprint5A:EF:6A:08:E8:C3:51:33:16:0A:78:67:22:21:44:C1:11:51:71:19
ValidityThu, 12 May 2022 00:00:00 GMT - Wed, 24 May 2023 23:59:59 GMT
File type Unicode text, UTF-8 text, with very long lines (64141)
Hash 2fea6e7a7d9ee393085568b0bcbc9694
bbfbd797eaa4d195b7fcbfb77c69ff5c31ed1324
0a9f1ec5e17915800d0e6b502c76af31445ce8a18d85465305d8224f3379b10c
GET /aegis/aegis-sdk/latest/aegis.min.js?_bid=3977 HTTP/1.1
Host: cdn-go.cn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://x3nmt.pubgm.asia/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: NWSs
date: Sat, 06 May 2023 21:17:27 GMT
content-type: application/javascript
content-length: 20654
cache-control: max-age=666
expires: Sat, 06 May 2023 21:28:33 GMT
last-modified: Tue, 11 Apr 2023 08:06:42 GMT
content-encoding: gzip
x-nws-log-uuid: 618c445d-1935-4e7a-9e77-26f923599763
vary: Origin
is-immutable-in-the-future: false
access-control-allow-origin: *
timing-allow-origin: *
x-cache-lookup: Hit From MemCache Gz
X-Firefox-Spdy: h2
ocsp.digicert.cn/
47.246.44.205 471 B IP 47.246.44.205:0
ASN #24429 Zhejiang Taobao Network Co.,Ltd
Hash f0bbb35f581060871756780e8c582899
384da757e3e4b274fb96bcae8fd68b2b82bf3a30
c72cc2ecf8f724bf479540b3368b9c46d1888bb8e078792788146a0a8e072c10
POST / HTTP/1.1
Host: ocsp.digicert.cn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Tengine
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Cache-Control: 'max-age=158059'
Date: Sat, 06 May 2023 21:17:27 GMT
Ali-Swift-Global-Savetime: 1683407847
Via: cache17.l2de2[492,493,200-0,M], cache17.l2de2[494,0], cache2.se1[516,516,200-0,M], cache2.se1[517,0]
X-Cache: MISS TCP_MISS dirn:-2:-2
X-Swift-SaveTime: Sat, 06 May 2023 21:17:27 GMT
X-Swift-CacheTime: 0
Timing-Allow-Origin: *
EagleId: 2ff62c9616834078473484493e
ocsp.digicert.cn/
47.246.44.205 471 B IP 47.246.44.205:0
ASN #24429 Zhejiang Taobao Network Co.,Ltd
Hash eab5b13cfb36a46b62fa4b7b3a84bba0
42b25f6129c75cbbc19bf0ee98317a6d57124be3
428e43d6d3394d0d0520600db5a472b5dbc8d4c5b5026ec90661f47405adc850
POST / HTTP/1.1
Host: ocsp.digicert.cn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Tengine
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Cache-Control: 'max-age=158059'
Date: Sat, 06 May 2023 21:17:27 GMT
Ali-Swift-Global-Savetime: 1683407847
Via: cache8.l2de2[493,493,200-0,M], cache8.l2de2[495,0], cache2.se1[518,518,200-0,M], cache2.se1[519,0]
X-Cache: MISS TCP_MISS dirn:-2:-2
X-Swift-SaveTime: Sat, 06 May 2023 21:17:27 GMT
X-Swift-CacheTime: 0
Timing-Allow-Origin: *
EagleId: 2ff62c9616834078473484494e
ocsp.digicert.cn/
47.246.44.205 471 B IP 47.246.44.205:0
ASN #24429 Zhejiang Taobao Network Co.,Ltd
Hash eab5b13cfb36a46b62fa4b7b3a84bba0
42b25f6129c75cbbc19bf0ee98317a6d57124be3
428e43d6d3394d0d0520600db5a472b5dbc8d4c5b5026ec90661f47405adc850
POST / HTTP/1.1
Host: ocsp.digicert.cn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Tengine
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Date: Sat, 06 May 2023 21:17:27 GMT
Last-Modified: Sat, 06 May 2023 10:36:51 GMT
ETag: "64562dc3-1d7"
Expires: Mon, 08 May 2023 10:36:51 GMT
Cache-Control: max-age=134364
Accept-Ranges: bytes
Ali-Swift-Global-Savetime: 1683407847
Via: cache15.l2de2[493,493,200-0,M], cache15.l2de2[494,0], cache1.se1[527,527,200-0,M], cache1.se1[528,0]
X-Cache: MISS TCP_MISS dirn:-2:-2
X-Swift-SaveTime: Sat, 06 May 2023 21:17:27 GMT
X-Swift-CacheTime: 0
Timing-Allow-Origin: *
EagleId: 2ff62c9516834078473504915e
cdn.midasbuy.com/oversea_web/static/css/propsOrder.eb87aa20.css?max_age=864000
101.33.10.108200 OK 12 kB URL GET HTTP/2 cdn.midasbuy.com/oversea_web/static/css/propsOrder.eb87aa20.css?max_age=864000
IP 101.33.10.108:443
ASN #132203 Tencent Building, Kejizhongyi Avenue
Requested by https://x3nmt.pubgm.asia/
Certificate IssuerDigiCert Inc
Subject*.midasbuy.com
FingerprintEF:32:D0:91:A1:AC:5B:AE:1D:0B:9D:A5:17:A1:1C:0C:1B:D7:3A:02
ValidityFri, 06 May 2022 00:00:00 GMT - Tue, 06 Jun 2023 23:59:59 GMT
File type ASCII text, with very long lines (43418), with no line terminators
Hash 3409e70bfd58c121bce83dfb22b28505
8965aa16005b432ec7e150d09494d70f80e84d5f
ba62e5d28dd985738e2c9612f833da92c8503c9196c12c0d2271f7a3b6ddf12b
GET /oversea_web/static/css/propsOrder.eb87aa20.css?max_age=864000 HTTP/1.1
Host: cdn.midasbuy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://x3nmt.pubgm.asia/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: NWSs
date: Sat, 06 May 2023 21:17:27 GMT
content-type: text/css
content-length: 11952
cache-control: max-age=864000
expires: Tue, 16 May 2023 21:17:27 GMT
last-modified: Thu, 25 Aug 2022 08:29:48 GMT
content-encoding: gzip
x-nws-log-uuid: 8dade0bb-2899-4e20-a6f8-73c21c8ec3f1
x-cache-lookup: Hit From Disktank3 Gz
accept-ranges: bytes
X-Firefox-Spdy: h2
cdn.midasbuy.com/h5/overseah5/js/midas-oversea-h5page.js
101.33.10.108200 OK 12 kB URL GET HTTP/2 cdn.midasbuy.com/h5/overseah5/js/midas-oversea-h5page.js
IP 101.33.10.108:443
ASN #132203 Tencent Building, Kejizhongyi Avenue
Requested by https://x3nmt.pubgm.asia/
Certificate IssuerDigiCert Inc
Subject*.midasbuy.com
FingerprintEF:32:D0:91:A1:AC:5B:AE:1D:0B:9D:A5:17:A1:1C:0C:1B:D7:3A:02
ValidityFri, 06 May 2022 00:00:00 GMT - Tue, 06 Jun 2023 23:59:59 GMT
File type Unicode text, UTF-8 text, with very long lines (36887)
Hash 6312e2a083aaa0357db398351a7f2002
83229042c2408cf5ad671fd9340b3ad451ef4e5b
c2026ff96cc6c503c9343bac70076d53fc78e9e10c9dbdfd68b09446d48d2264
GET /h5/overseah5/js/midas-oversea-h5page.js HTTP/1.1
Host: cdn.midasbuy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://x3nmt.pubgm.asia/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: NWSs
date: Sat, 06 May 2023 21:17:27 GMT
content-type: application/javascript
content-length: 11963
cache-control: max-age=600
expires: Sat, 06 May 2023 21:27:27 GMT
last-modified: Thu, 05 Jan 2023 09:24:23 GMT
content-encoding: gzip
x-nws-log-uuid: 5bc5842a-b317-4c09-adb0-554350d171db
x-cache-lookup: Hit From MemCache Gz
accept-ranges: bytes
X-Firefox-Spdy: h2
www.pubgmobile.com/id/event/royalepass10/images/icon_logo.jpg
95.101.10.64200 OK 75 kB URL GET HTTP/2 www.pubgmobile.com/id/event/royalepass10/images/icon_logo.jpg
IP 95.101.10.64:443
ASN #20940 Akamai International B.V.
Requested by https://x3nmt.pubgm.asia/
Certificate IssuerDigiCert Inc
Subjectwetv.acc.qq.com
Fingerprint50:05:83:7A:D7:1C:3C:CA:53:85:80:2E:04:C3:47:C2:45:54:EC:6A
ValiditySat, 19 Nov 2022 00:00:00 GMT - Wed, 22 Nov 2023 23:59:59 GMT
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 500x500, components 3\012- data
Hash 92c19dc5bd77186e5bb8ed35ce668979
646bf70d1c669c7d7388f95a0a33755e4721289c
0d9cf7eb8fb12be77685134e63f7dae9a95fbf9306ae0529bd0347582d18a8ef
GET /id/event/royalepass10/images/icon_logo.jpg HTTP/1.1
Host: www.pubgmobile.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://x3nmt.pubgm.asia/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
content-type: image/jpeg
content-length: 75149
last-modified: Wed, 15 Sep 2021 06:46:59 GMT
etag: "614196e3-1258d"
accept-ranges: bytes
cache-control: max-age=82
expires: Sat, 06 May 2023 21:18:49 GMT
date: Sat, 06 May 2023 21:17:27 GMT
X-Firefox-Spdy: h2
i.postimg.cc/28sztvcd/season-Token.png
162.19.61.80200 OK 30 kB URL GET HTTP/2 i.postimg.cc/28sztvcd/season-Token.png
IP 162.19.61.80:443
Requested by https://x3nmt.pubgm.asia/
Certificate IssuerLet's Encrypt
Subjectpostimg.cc
FingerprintF7:9A:EC:C0:0E:AB:80:A9:55:8F:DF:97:AD:BB:4B:70:07:08:F0:F0
ValidityWed, 19 Apr 2023 13:39:30 GMT - Tue, 18 Jul 2023 13:39:29 GMT
File type PNG image data, 135 x 130, 8-bit/color RGBA, non-interlaced\012- data
Hash d02c9d4d558a113e2aebd45c7d8237dc
edd72f80a319adf3fec2f3f061c1b82d6bf59aa7
7fb8131422bba9cda088005359870721b090dcd043d3cea030367be68c6328a6
GET /28sztvcd/season-Token.png HTTP/1.1
Host: i.postimg.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://x3nmt.pubgm.asia/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Sat, 06 May 2023 21:17:28 GMT
content-type: image/png
content-length: 29942
last-modified: Sun, 03 Jul 2022 09:35:24 GMT
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
access-control-allow-origin: *
access-control-allow-methods: GET, OPTIONS
accept-ranges: bytes
X-Firefox-Spdy: h2
i.ibb.co/Wg8qQxh/facebook-text.png
162.19.58.159200 OK 29 kB URL GET HTTP/2 i.ibb.co/Wg8qQxh/facebook-text.png
IP 162.19.58.159:443
Requested by https://x3nmt.pubgm.asia/
Certificate IssuerLet's Encrypt
Subjecti.ibb.co
FingerprintAF:A9:9B:0C:BD:57:09:69:DA:43:43:94:E3:3C:4C:1E:EB:1E:95:63
ValidityTue, 11 Apr 2023 07:00:13 GMT - Mon, 10 Jul 2023 07:00:12 GMT
File type PNG image data, 604 x 158, 8-bit/color RGBA, non-interlaced\012- data
Hash 74190b93fc4f5d88f0c8e6411ba20bd8
89ce2ecb660a90b8e6ed1b335443d7767c59f28a
092a3cd5f86b3f039feefdeb86694cd16ae545af214cfda614bdbbe2d1bde401
GET /Wg8qQxh/facebook-text.png HTTP/1.1
Host: i.ibb.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://x3nmt.pubgm.asia/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Sat, 06 May 2023 21:17:28 GMT
content-type: image/png
content-length: 28789
last-modified: Mon, 18 Oct 2021 19:35:50 GMT
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
access-control-allow-origin: *
access-control-allow-methods: GET, OPTIONS
accept-ranges: bytes
X-Firefox-Spdy: h2
i.ibb.co/V9rgBqw/twitter-text.png
162.19.58.159200 OK 4.3 kB URL GET HTTP/2 i.ibb.co/V9rgBqw/twitter-text.png
IP 162.19.58.159:443
Requested by https://x3nmt.pubgm.asia/
Certificate IssuerLet's Encrypt
Subjecti.ibb.co
FingerprintAF:A9:9B:0C:BD:57:09:69:DA:43:43:94:E3:3C:4C:1E:EB:1E:95:63
ValidityTue, 11 Apr 2023 07:00:13 GMT - Mon, 10 Jul 2023 07:00:12 GMT
File type PNG image data, 400 x 400, 8-bit/color RGBA, non-interlaced\012- data
Hash fef946b8bba756359e2a1e87ccd915ea
acc364946077b0e32b2343474ce4066ad3ee524c
1be5d05ce6faad469f7f9c5a5879f2d9f8d267b60eb394e92c19217268bcea8f
GET /V9rgBqw/twitter-text.png HTTP/1.1
Host: i.ibb.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://x3nmt.pubgm.asia/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Sat, 06 May 2023 21:17:28 GMT
content-type: image/png
content-length: 4298
last-modified: Mon, 18 Oct 2021 19:35:41 GMT
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
access-control-allow-origin: *
access-control-allow-methods: GET, OPTIONS
accept-ranges: bytes
X-Firefox-Spdy: h2
i.ibb.co/6Xgb080/7.jpg
162.19.58.159200 OK 56 kB IP 162.19.58.159:443
Requested by https://x3nmt.pubgm.asia/
Certificate IssuerLet's Encrypt
Subjecti.ibb.co
FingerprintAF:A9:9B:0C:BD:57:09:69:DA:43:43:94:E3:3C:4C:1E:EB:1E:95:63
ValidityTue, 11 Apr 2023 07:00:13 GMT - Mon, 10 Jul 2023 07:00:12 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1080x1080, components 3\012- data
Hash 6ec0307d76659773f1929347429b5ccb
54a1b97304ac6d2f905ab0d428c1bbe0189ab572
ac4d9d324ac8ffc1d7e2b300f0322247f202b5041153457ccafa93f583da7903
GET /6Xgb080/7.jpg HTTP/1.1
Host: i.ibb.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://x3nmt.pubgm.asia/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Sat, 06 May 2023 21:17:28 GMT
content-type: image/jpeg
content-length: 55628
last-modified: Tue, 18 Apr 2023 00:26:31 GMT
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
access-control-allow-origin: *
access-control-allow-methods: GET, OPTIONS
accept-ranges: bytes
X-Firefox-Spdy: h2
i.ibb.co/C01NCDT/8.jpg
162.19.58.159200 OK 53 kB IP 162.19.58.159:443
Requested by https://x3nmt.pubgm.asia/
Certificate IssuerLet's Encrypt
Subjecti.ibb.co
FingerprintAF:A9:9B:0C:BD:57:09:69:DA:43:43:94:E3:3C:4C:1E:EB:1E:95:63
ValidityTue, 11 Apr 2023 07:00:13 GMT - Mon, 10 Jul 2023 07:00:12 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1080x1080, components 3\012- data
Hash 5e4c5aa419dd3a65fe0ebcdf17256cbe
2a319004d37d38a7f2cee74053489fd3d9abe3de
12672e7c2792345e38ea3bc3c65455698d60a6ac64cd88e1f41fc9d30bb5713e
GET /C01NCDT/8.jpg HTTP/1.1
Host: i.ibb.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://x3nmt.pubgm.asia/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Sat, 06 May 2023 21:17:28 GMT
content-type: image/jpeg
content-length: 53079
last-modified: Tue, 18 Apr 2023 00:26:31 GMT
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
access-control-allow-origin: *
access-control-allow-methods: GET, OPTIONS
accept-ranges: bytes
X-Firefox-Spdy: h2
i.ibb.co/4NHvLth/0001-0.png
162.19.58.159200 OK 315 kB URL GET HTTP/2 i.ibb.co/4NHvLth/0001-0.png
IP 162.19.58.159:443
Requested by https://x3nmt.pubgm.asia/
Certificate IssuerLet's Encrypt
Subjecti.ibb.co
FingerprintAF:A9:9B:0C:BD:57:09:69:DA:43:43:94:E3:3C:4C:1E:EB:1E:95:63
ValidityTue, 11 Apr 2023 07:00:13 GMT - Mon, 10 Jul 2023 07:00:12 GMT
File type PNG image data, 600 x 600, 8-bit/color RGBA, non-interlaced\012- data
Size 315 kB (315311 bytes)
Hash 17ab529a405321696b35c4552450cb5e
03dd5f7e53ff33444ced88de5adb8e6867ab0f55
95ab04c221a784ff2ec9ac1ea488b952a5046c009b41652b68dbdd80a02119af
GET /4NHvLth/0001-0.png HTTP/1.1
Host: i.ibb.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://x3nmt.pubgm.asia/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Sat, 06 May 2023 21:17:28 GMT
content-type: image/png
content-length: 315311
last-modified: Wed, 26 Apr 2023 20:44:52 GMT
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
access-control-allow-origin: *
access-control-allow-methods: GET, OPTIONS
accept-ranges: bytes
X-Firefox-Spdy: h2
i.ibb.co/ftdTbJq/BAPE.png
162.19.58.159200 OK 742 kB URL GET HTTP/2 i.ibb.co/ftdTbJq/BAPE.png
IP 162.19.58.159:443
Requested by https://x3nmt.pubgm.asia/
Certificate IssuerLet's Encrypt
Subjecti.ibb.co
FingerprintAF:A9:9B:0C:BD:57:09:69:DA:43:43:94:E3:3C:4C:1E:EB:1E:95:63
ValidityTue, 11 Apr 2023 07:00:13 GMT - Mon, 10 Jul 2023 07:00:12 GMT
File type PNG image data, 1080 x 1080, 8-bit/color RGBA, non-interlaced\012- data
Size 742 kB (742274 bytes)
Hash 61dbb78ecc7c382dfeb46a62bc1a9324
cb361cd669514139132c1a7af725e0469c4d9c6e
c26fc40d2813e356d623e2761e7819de111d7726b1f3f7b4973bf47ff816753c
GET /ftdTbJq/BAPE.png HTTP/1.1
Host: i.ibb.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://x3nmt.pubgm.asia/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Sat, 06 May 2023 21:17:28 GMT
content-type: image/png
content-length: 742274
last-modified: Thu, 27 Apr 2023 12:20:03 GMT
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
access-control-allow-origin: *
access-control-allow-methods: GET, OPTIONS
accept-ranges: bytes
X-Firefox-Spdy: h2
cdn.midasbuy.com/images/new-user-icon723b1902.png
101.33.10.108200 OK 1.9 kB URL GET HTTP/2 cdn.midasbuy.com/images/new-user-icon723b1902.png
IP 101.33.10.108:443
ASN #132203 Tencent Building, Kejizhongyi Avenue
Requested by https://x3nmt.pubgm.asia/
Certificate IssuerDigiCert Inc
Subject*.midasbuy.com
FingerprintEF:32:D0:91:A1:AC:5B:AE:1D:0B:9D:A5:17:A1:1C:0C:1B:D7:3A:02
ValidityFri, 06 May 2022 00:00:00 GMT - Tue, 06 Jun 2023 23:59:59 GMT
File type PNG image data, 54 x 54, 8-bit/color RGBA, non-interlaced\012- data
Hash 723b190253572be857ace6f62bfe9a4c
fff04a6f473db94364a4625a0dec6bdf22db128a
dfd2e7c94a93c8549c8a5e670d9cd5b4c7f3251c3a1e9ac32f119df54edd4fd0
GET /images/new-user-icon723b1902.png HTTP/1.1
Host: cdn.midasbuy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://x3nmt.pubgm.asia/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: NWSs
date: Sat, 06 May 2023 21:17:28 GMT
content-type: image/png
content-length: 1871
cache-control: max-age=600
expires: Sat, 06 May 2023 21:27:27 GMT
last-modified: Tue, 19 Jan 2021 03:11:03 GMT
x-nws-log-uuid: 5be17a70-a4d6-4b27-9b4c-c96a3dc49413
x-cache-lookup: Hit From MemCache
access-control-allow-origin: https://www.midasbuy.com
timing-allow-origin: https://www.midasbuy.com
accept-ranges: bytes
X-Firefox-Spdy: h2
cdn.midasbuy.com/images/30ee99398.png
101.33.10.108200 OK 3.2 kB URL GET HTTP/2 cdn.midasbuy.com/images/30ee99398.png
IP 101.33.10.108:443
ASN #132203 Tencent Building, Kejizhongyi Avenue
Requested by https://x3nmt.pubgm.asia/
Certificate IssuerDigiCert Inc
Subject*.midasbuy.com
FingerprintEF:32:D0:91:A1:AC:5B:AE:1D:0B:9D:A5:17:A1:1C:0C:1B:D7:3A:02
ValidityFri, 06 May 2022 00:00:00 GMT - Tue, 06 Jun 2023 23:59:59 GMT
File type PNG image data, 72 x 48, 8-bit/color RGBA, non-interlaced\012- data
Hash 0ee99398065f2d000412b89818bcde71
4fc6a30f8071825d30b1264d98ba255b9f2a4973
3ae92fbc0ab23564539add612992ce7382d1c8aaa2a802dcb65fd834f00e7962
GET /images/30ee99398.png HTTP/1.1
Host: cdn.midasbuy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://x3nmt.pubgm.asia/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: NWSs
date: Sat, 06 May 2023 21:17:28 GMT
content-type: image/png
content-length: 3234
cache-control: max-age=600
expires: Sat, 06 May 2023 21:27:27 GMT
last-modified: Sat, 08 May 2021 10:10:20 GMT
x-nws-log-uuid: 638bf7a0-2bef-414b-9fa5-a8f4c972c474
x-cache-lookup: Hit From MemCache
access-control-allow-origin: https://www.midasbuy.com
timing-allow-origin: https://www.midasbuy.com
accept-ranges: bytes
X-Firefox-Spdy: h2
cdn.midasbuy.com/oversea_web/static/images/pc-logo.png
101.33.10.108200 OK 5.4 kB URL GET HTTP/2 cdn.midasbuy.com/oversea_web/static/images/pc-logo.png
IP 101.33.10.108:443
ASN #132203 Tencent Building, Kejizhongyi Avenue
Requested by https://x3nmt.pubgm.asia/
Certificate IssuerDigiCert Inc
Subject*.midasbuy.com
FingerprintEF:32:D0:91:A1:AC:5B:AE:1D:0B:9D:A5:17:A1:1C:0C:1B:D7:3A:02
ValidityFri, 06 May 2022 00:00:00 GMT - Tue, 06 Jun 2023 23:59:59 GMT
File type PNG image data, 442 x 88, 8-bit/color RGBA, non-interlaced\012- data
Hash 5f404ea4792424375fa4b16a520555ed
8a3e448779780a80af9adc5081e4fa793e51f436
607b00f0fd839eb7f8250d7c4d0c0b4a31a08b32b2b8b5cbdd9fe3125b2eb985
GET /oversea_web/static/images/pc-logo.png HTTP/1.1
Host: cdn.midasbuy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://x3nmt.pubgm.asia/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: NWSs
date: Sat, 06 May 2023 21:17:28 GMT
content-type: image/png
content-length: 5403
cache-control: max-age=600
expires: Sat, 06 May 2023 21:27:27 GMT
last-modified: Sat, 06 May 2023 09:58:14 GMT
x-nws-log-uuid: 58b9e275-5aa7-434f-916e-0f451c8ae9ef
x-cache-lookup: Hit From MemCache
access-control-allow-origin: https://www.midasbuy.com
timing-allow-origin: https://www.midasbuy.com
accept-ranges: bytes
X-Firefox-Spdy: h2
cdn.midasbuy.com/oversea_web/static/images/big-new-close-icon.png
101.33.10.108200 OK 373 B URL GET HTTP/2 cdn.midasbuy.com/oversea_web/static/images/big-new-close-icon.png
IP 101.33.10.108:443
ASN #132203 Tencent Building, Kejizhongyi Avenue
Requested by https://x3nmt.pubgm.asia/
Certificate IssuerDigiCert Inc
Subject*.midasbuy.com
FingerprintEF:32:D0:91:A1:AC:5B:AE:1D:0B:9D:A5:17:A1:1C:0C:1B:D7:3A:02
ValidityFri, 06 May 2022 00:00:00 GMT - Tue, 06 Jun 2023 23:59:59 GMT
File type PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced\012- data
Hash ac6d8315af721860a75fff92418d6526
5c42e591ee0612a12d15c42e3bee0a8bd2f981b0
fea99403dd834e7b61ee51fd481e0d4fcbca047aadd57c15d405513e0b7e8a99
GET /oversea_web/static/images/big-new-close-icon.png HTTP/1.1
Host: cdn.midasbuy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://x3nmt.pubgm.asia/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: NWSs
date: Sat, 06 May 2023 21:17:28 GMT
content-type: image/png
content-length: 373
cache-control: max-age=600
expires: Sat, 06 May 2023 21:27:27 GMT
last-modified: Sat, 06 May 2023 09:57:16 GMT
x-nws-log-uuid: 4e528718-962f-4f63-a2f8-00b56ce5b8a4
x-cache-lookup: Hit From MemCache
access-control-allow-origin: https://www.midasbuy.com
timing-allow-origin: https://www.midasbuy.com
accept-ranges: bytes
X-Firefox-Spdy: h2
cdn.midasbuy.com/oversea_web/static/images/footer/footer-fb-new.png
101.33.10.108200 OK 2.9 kB URL GET HTTP/2 cdn.midasbuy.com/oversea_web/static/images/footer/footer-fb-new.png
IP 101.33.10.108:443
ASN #132203 Tencent Building, Kejizhongyi Avenue
Requested by https://x3nmt.pubgm.asia/
Certificate IssuerDigiCert Inc
Subject*.midasbuy.com
FingerprintEF:32:D0:91:A1:AC:5B:AE:1D:0B:9D:A5:17:A1:1C:0C:1B:D7:3A:02
ValidityFri, 06 May 2022 00:00:00 GMT - Tue, 06 Jun 2023 23:59:59 GMT
File type PNG image data, 72 x 72, 8-bit/color RGBA, non-interlaced\012- data
Hash 9be2c56c1a42fab7e2f5b764573dea4d
16f58f9b1f5fd465d3a8bc765b972eadb5166f24
cc8830f258c471b9cb15d69cda554d5181bd680996dd0041e3b9986b3b0769bf
GET /oversea_web/static/images/footer/footer-fb-new.png HTTP/1.1
Host: cdn.midasbuy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://x3nmt.pubgm.asia/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: NWSs
date: Sat, 06 May 2023 21:17:28 GMT
content-type: image/png
content-length: 2899
cache-control: max-age=600
expires: Sat, 06 May 2023 21:27:27 GMT
last-modified: Tue, 13 Jul 2021 11:45:46 GMT
x-nws-log-uuid: 34aa4b80-047a-475d-8050-b59b2a44b796
x-cache-lookup: Hit From MemCache
access-control-allow-origin: https://www.midasbuy.com
timing-allow-origin: https://www.midasbuy.com
accept-ranges: bytes
X-Firefox-Spdy: h2
cdn.midasbuy.com/oversea_web/static/images/footer/footer-ins-new.png
101.33.10.108200 OK 7.6 kB URL GET HTTP/2 cdn.midasbuy.com/oversea_web/static/images/footer/footer-ins-new.png
IP 101.33.10.108:443
ASN #132203 Tencent Building, Kejizhongyi Avenue
Requested by https://x3nmt.pubgm.asia/
Certificate IssuerDigiCert Inc
Subject*.midasbuy.com
FingerprintEF:32:D0:91:A1:AC:5B:AE:1D:0B:9D:A5:17:A1:1C:0C:1B:D7:3A:02
ValidityFri, 06 May 2022 00:00:00 GMT - Tue, 06 Jun 2023 23:59:59 GMT
File type PNG image data, 72 x 72, 8-bit/color RGBA, non-interlaced\012- data
Hash cc70b37c298ba08069f3c91b1df297fe
d7c87f6337f5a48f94190eca6a1b74eef9323f38
f2ad27dbb5397878470e88c31ca3c398f490f9e720ba0ca649ec6bf137f4d6bc
GET /oversea_web/static/images/footer/footer-ins-new.png HTTP/1.1
Host: cdn.midasbuy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://x3nmt.pubgm.asia/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: NWSs
date: Sat, 06 May 2023 21:17:28 GMT
content-type: image/png
content-length: 7625
cache-control: max-age=600
expires: Sat, 06 May 2023 21:27:27 GMT
last-modified: Tue, 13 Jul 2021 11:45:46 GMT
x-nws-log-uuid: 46d3d492-ae5b-4cea-be43-2a86f4663d5d
x-cache-lookup: Hit From MemCache
access-control-allow-origin: https://www.midasbuy.com
timing-allow-origin: https://www.midasbuy.com
accept-ranges: bytes
X-Firefox-Spdy: h2
cdn.midasbuy.com/oversea_web/static/images/footer/footer-twitter-new.png
101.33.10.108200 OK 5.2 kB URL GET HTTP/2 cdn.midasbuy.com/oversea_web/static/images/footer/footer-twitter-new.png
IP 101.33.10.108:443
ASN #132203 Tencent Building, Kejizhongyi Avenue
Requested by https://x3nmt.pubgm.asia/
Certificate IssuerDigiCert Inc
Subject*.midasbuy.com
FingerprintEF:32:D0:91:A1:AC:5B:AE:1D:0B:9D:A5:17:A1:1C:0C:1B:D7:3A:02
ValidityFri, 06 May 2022 00:00:00 GMT - Tue, 06 Jun 2023 23:59:59 GMT
File type PNG image data, 72 x 72, 8-bit/color RGBA, non-interlaced\012- data
Hash e13a1bb9c094e0f585719ee363feaa31
09cc870cb5cb04adde778ea6c5f1184840844689
d6a605020cfb1091630b300b918363d2b61333c9f68c498eb6a73f323b35e1a7
GET /oversea_web/static/images/footer/footer-twitter-new.png HTTP/1.1
Host: cdn.midasbuy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://x3nmt.pubgm.asia/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: NWSs
date: Sat, 06 May 2023 21:17:28 GMT
content-type: image/png
content-length: 5151
cache-control: max-age=600
expires: Sat, 06 May 2023 21:27:27 GMT
last-modified: Tue, 13 Jul 2021 11:45:46 GMT
x-nws-log-uuid: f1450078-f768-4b8c-8cd4-2acc30f437f0
x-cache-lookup: Hit From MemCache
access-control-allow-origin: https://www.midasbuy.com
timing-allow-origin: https://www.midasbuy.com
accept-ranges: bytes
X-Firefox-Spdy: h2
cdn.midasbuy.com/oversea_web/static/images/footer/footer-youtube-new.png
101.33.10.108200 OK 4.0 kB URL GET HTTP/2 cdn.midasbuy.com/oversea_web/static/images/footer/footer-youtube-new.png
IP 101.33.10.108:443
ASN #132203 Tencent Building, Kejizhongyi Avenue
Requested by https://x3nmt.pubgm.asia/
Certificate IssuerDigiCert Inc
Subject*.midasbuy.com
FingerprintEF:32:D0:91:A1:AC:5B:AE:1D:0B:9D:A5:17:A1:1C:0C:1B:D7:3A:02
ValidityFri, 06 May 2022 00:00:00 GMT - Tue, 06 Jun 2023 23:59:59 GMT
File type PNG image data, 72 x 72, 8-bit/color RGBA, non-interlaced\012- data
Hash b6f18fca57bb1657d719961d350bda7c
1e99ce9e9852ea8615b1c8c6f361058019d92dab
0e888a266c4ad5136be1cf650faf222ed0d644c54d83068f0dfabc0fae53e90c
GET /oversea_web/static/images/footer/footer-youtube-new.png HTTP/1.1
Host: cdn.midasbuy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://x3nmt.pubgm.asia/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: NWSs
date: Sat, 06 May 2023 21:17:28 GMT
content-type: image/png
content-length: 3955
cache-control: max-age=600
expires: Sat, 06 May 2023 21:27:27 GMT
last-modified: Tue, 13 Jul 2021 11:45:46 GMT
x-nws-log-uuid: f5ed8368-8cee-41ea-985a-a2ea2f5169d6
x-cache-lookup: Hit From MemCache
access-control-allow-origin: https://www.midasbuy.com
timing-allow-origin: https://www.midasbuy.com
accept-ranges: bytes
X-Firefox-Spdy: h2
cdn.midasbuy.com/images/Discord.8277bca0.png
101.33.10.108200 OK 5.2 kB URL GET HTTP/2 cdn.midasbuy.com/images/Discord.8277bca0.png
IP 101.33.10.108:443
ASN #132203 Tencent Building, Kejizhongyi Avenue
Requested by https://x3nmt.pubgm.asia/
Certificate IssuerDigiCert Inc
Subject*.midasbuy.com
FingerprintEF:32:D0:91:A1:AC:5B:AE:1D:0B:9D:A5:17:A1:1C:0C:1B:D7:3A:02
ValidityFri, 06 May 2022 00:00:00 GMT - Tue, 06 Jun 2023 23:59:59 GMT
File type PNG image data, 72 x 72, 8-bit/color RGBA, non-interlaced\012- data
Hash 8277bca0aac01af0b679d71f4de55459
e06892977682cd5f57c31245ff7cc8efb14c92f0
25157739816315d396c664fd1f45336d8ab8bf9d768aa911e93cbebc95614a58
GET /images/Discord.8277bca0.png HTTP/1.1
Host: cdn.midasbuy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://x3nmt.pubgm.asia/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: NWSs
date: Sat, 06 May 2023 21:17:28 GMT
content-type: image/png
content-length: 5224
cache-control: max-age=600
expires: Sat, 06 May 2023 21:27:27 GMT
last-modified: Fri, 22 Apr 2022 08:25:18 GMT
x-nws-log-uuid: 28e36208-97eb-4e01-8b4b-ff664e83bdd4
x-cache-lookup: Hit From MemCache
access-control-allow-origin: https://www.midasbuy.com
timing-allow-origin: https://www.midasbuy.com
accept-ranges: bytes
X-Firefox-Spdy: h2
cdn.midasbuy.com/oversea_web/static/images/footer/footer-email-subscribe.png
101.33.10.108200 OK 3.3 kB URL GET HTTP/2 cdn.midasbuy.com/oversea_web/static/images/footer/footer-email-subscribe.png
IP 101.33.10.108:443
ASN #132203 Tencent Building, Kejizhongyi Avenue
Requested by https://x3nmt.pubgm.asia/
Certificate IssuerDigiCert Inc
Subject*.midasbuy.com
FingerprintEF:32:D0:91:A1:AC:5B:AE:1D:0B:9D:A5:17:A1:1C:0C:1B:D7:3A:02
ValidityFri, 06 May 2022 00:00:00 GMT - Tue, 06 Jun 2023 23:59:59 GMT
File type PNG image data, 72 x 72, 8-bit/color RGBA, non-interlaced\012- data
Hash 150e097b432034e3fedf6443b4551a16
a4299dadb4feda18e484362ce6892c52b507d5e6
b9ca6c3a516ec9dfbe4f33e318d560f265836d51627cb9fa3d881062a2fd98e2
GET /oversea_web/static/images/footer/footer-email-subscribe.png HTTP/1.1
Host: cdn.midasbuy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://x3nmt.pubgm.asia/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: NWSs
date: Sat, 06 May 2023 21:17:28 GMT
content-type: image/png
content-length: 3349
cache-control: max-age=600
expires: Sat, 06 May 2023 21:27:27 GMT
last-modified: Sat, 06 May 2023 09:57:48 GMT
x-nws-log-uuid: e0fa4451-ab18-4605-9c4b-98f555f809f4
x-cache-lookup: Hit From MemCache
access-control-allow-origin: https://www.midasbuy.com
timing-allow-origin: https://www.midasbuy.com
accept-ranges: bytes
X-Firefox-Spdy: h2
cdn.midasbuy.com/images/1920x240.ec8df69a.jpg
101.33.10.108200 OK 87 kB URL GET HTTP/2 cdn.midasbuy.com/images/1920x240.ec8df69a.jpg
IP 101.33.10.108:443
ASN #132203 Tencent Building, Kejizhongyi Avenue
Requested by https://x3nmt.pubgm.asia/
Certificate IssuerDigiCert Inc
Subject*.midasbuy.com
FingerprintEF:32:D0:91:A1:AC:5B:AE:1D:0B:9D:A5:17:A1:1C:0C:1B:D7:3A:02
ValidityFri, 06 May 2022 00:00:00 GMT - Tue, 06 Jun 2023 23:59:59 GMT
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1920x240, components 3\012- data
Hash ec8df69af0185a690163b29d89ac1520
9b71069a93a8e8d8d41d31eddd5b645ef97af627
8a81eb88c5c962b9424e977d026815e3ee4723e8f914f393f2586296e7176c2d
GET /images/1920x240.ec8df69a.jpg HTTP/1.1
Host: cdn.midasbuy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://x3nmt.pubgm.asia/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: NWSs
date: Sat, 06 May 2023 21:17:28 GMT
content-type: image/jpeg
content-length: 87204
cache-control: max-age=600
expires: Sat, 06 May 2023 21:27:27 GMT
last-modified: Wed, 19 Apr 2023 11:06:21 GMT
x-nws-log-uuid: f521a904-66b9-4f4d-a345-0813be3d7593
x-cache-lookup: Hit From MemCache
access-control-allow-origin: https://www.midasbuy.com
timing-allow-origin: https://www.midasbuy.com
accept-ranges: bytes
X-Firefox-Spdy: h2
cdn.midasbuy.com/images/1920x240.dbf12c4a.jpg
101.33.10.108200 OK 218 kB URL GET HTTP/2 cdn.midasbuy.com/images/1920x240.dbf12c4a.jpg
IP 101.33.10.108:443
ASN #132203 Tencent Building, Kejizhongyi Avenue
Requested by https://x3nmt.pubgm.asia/
Certificate IssuerDigiCert Inc
Subject*.midasbuy.com
FingerprintEF:32:D0:91:A1:AC:5B:AE:1D:0B:9D:A5:17:A1:1C:0C:1B:D7:3A:02
ValidityFri, 06 May 2022 00:00:00 GMT - Tue, 06 Jun 2023 23:59:59 GMT
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1920x240, components 3\012- data
Size 218 kB (218481 bytes)
Hash dbf12c4a95c3020e6ed2ec7257288b38
556e7b6a6a9ebe72fc7df64a3c9608c31ba30631
b962b25d728f30dc950f67560e8a26a57ebfaf2e6da255b75398c1d197ba3711
GET /images/1920x240.dbf12c4a.jpg HTTP/1.1
Host: cdn.midasbuy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://x3nmt.pubgm.asia/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: NWSs
date: Sat, 06 May 2023 21:17:28 GMT
content-type: image/jpeg
content-length: 218481
cache-control: max-age=600
expires: Sat, 06 May 2023 21:27:27 GMT
last-modified: Fri, 10 Jun 2022 08:07:52 GMT
x-nws-log-uuid: b1fe76d8-f707-41ef-aa4b-cc6d3986f8be
x-cache-lookup: Hit From MemCache
access-control-allow-origin: https://www.midasbuy.com
timing-allow-origin: https://www.midasbuy.com
accept-ranges: bytes
X-Firefox-Spdy: h2
cdn.midasbuy.com/images/1920x240.7c808b6c.jpg
101.33.10.108200 OK 194 kB URL GET HTTP/2 cdn.midasbuy.com/images/1920x240.7c808b6c.jpg
IP 101.33.10.108:443
ASN #132203 Tencent Building, Kejizhongyi Avenue
Requested by https://x3nmt.pubgm.asia/
Certificate IssuerDigiCert Inc
Subject*.midasbuy.com
FingerprintEF:32:D0:91:A1:AC:5B:AE:1D:0B:9D:A5:17:A1:1C:0C:1B:D7:3A:02
ValidityFri, 06 May 2022 00:00:00 GMT - Tue, 06 Jun 2023 23:59:59 GMT
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1920x240, components 3\012- data
Size 194 kB (193591 bytes)
Hash 7c808b6c30ccf225fb52ee69bee87857
3792ceb060596224bb8efad8d76a73b9d142e6ff
43ba6fe926cd68300dcdc8829c6bf73aeb24768ad2d5f46177041d9a3b08f3d6
GET /images/1920x240.7c808b6c.jpg HTTP/1.1
Host: cdn.midasbuy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://x3nmt.pubgm.asia/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: NWSs
date: Sat, 06 May 2023 21:17:28 GMT
content-type: image/jpeg
content-length: 193591
cache-control: max-age=600
expires: Sat, 06 May 2023 21:27:27 GMT
last-modified: Fri, 10 Jun 2022 08:11:25 GMT
x-nws-log-uuid: b7703da5-e92a-40a4-a9b4-256aff66841a
x-cache-lookup: Hit From MemCache
access-control-allow-origin: https://www.midasbuy.com
timing-allow-origin: https://www.midasbuy.com
accept-ranges: bytes
X-Firefox-Spdy: h2
cdn.midasbuy.com/images/1920x240.c14b9297.jpg
101.33.10.108200 OK 201 kB URL GET HTTP/2 cdn.midasbuy.com/images/1920x240.c14b9297.jpg
IP 101.33.10.108:443
ASN #132203 Tencent Building, Kejizhongyi Avenue
Requested by https://x3nmt.pubgm.asia/
Certificate IssuerDigiCert Inc
Subject*.midasbuy.com
FingerprintEF:32:D0:91:A1:AC:5B:AE:1D:0B:9D:A5:17:A1:1C:0C:1B:D7:3A:02
ValidityFri, 06 May 2022 00:00:00 GMT - Tue, 06 Jun 2023 23:59:59 GMT
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1920x240, components 3\012- data
Size 201 kB (201387 bytes)
Hash c14b9297f780dbcb040c1ca5ccf5887a
aa46f073f5698456d91b0bf07eb334034adabad2
a1f612eccc1972fe3716595659a228ebc8578b36ebb2aa92d4b092bf4a862f0a
GET /images/1920x240.c14b9297.jpg HTTP/1.1
Host: cdn.midasbuy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://x3nmt.pubgm.asia/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: NWSs
date: Sat, 06 May 2023 21:17:28 GMT
content-type: image/jpeg
content-length: 201387
cache-control: max-age=600
expires: Sat, 06 May 2023 21:27:27 GMT
last-modified: Fri, 10 Jun 2022 08:06:02 GMT
x-nws-log-uuid: adb51f63-dff9-4155-a5ad-654981c96d01
x-cache-lookup: Hit From MemCache
access-control-allow-origin: https://www.midasbuy.com
timing-allow-origin: https://www.midasbuy.com
accept-ranges: bytes
X-Firefox-Spdy: h2
cdn.midasbuy.com/images/EN-1920_240.5f1ba3cc.jpg
101.33.10.108200 OK 276 kB URL GET HTTP/2 cdn.midasbuy.com/images/EN-1920_240.5f1ba3cc.jpg
IP 101.33.10.108:443
ASN #132203 Tencent Building, Kejizhongyi Avenue
Requested by https://x3nmt.pubgm.asia/
Certificate IssuerDigiCert Inc
Subject*.midasbuy.com
FingerprintEF:32:D0:91:A1:AC:5B:AE:1D:0B:9D:A5:17:A1:1C:0C:1B:D7:3A:02
ValidityFri, 06 May 2022 00:00:00 GMT - Tue, 06 Jun 2023 23:59:59 GMT
File type JPEG image data, baseline, precision 8, 1920x240, components 3\012- data
Size 276 kB (276367 bytes)
Hash 5f1ba3cccdfcc1ff9d377fbed7fa8387
7ba0a1f4a9e26332b06361e5dfbe5e330cacc331
8041d0c444ed152da7ce6ad33cb3a6a38084fb0ad1c3bfaaac377b31a92c490d
GET /images/EN-1920_240.5f1ba3cc.jpg HTTP/1.1
Host: cdn.midasbuy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://x3nmt.pubgm.asia/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: NWSs
date: Sat, 06 May 2023 21:17:28 GMT
content-type: image/jpeg
content-length: 276367
cache-control: max-age=600
expires: Sat, 06 May 2023 21:27:27 GMT
last-modified: Thu, 16 Feb 2023 12:20:04 GMT
x-nws-log-uuid: b97468c8-02aa-4d3b-95f0-d155d38faa6e
x-cache-lookup: Hit From MemCache
access-control-allow-origin: https://www.midasbuy.com
timing-allow-origin: https://www.midasbuy.com
accept-ranges: bytes
X-Firefox-Spdy: h2
cdn.midasbuy.com/images/1920-240.321b317e.png
101.33.10.108200 OK 720 kB URL GET HTTP/2 cdn.midasbuy.com/images/1920-240.321b317e.png
IP 101.33.10.108:443
ASN #132203 Tencent Building, Kejizhongyi Avenue
Requested by https://x3nmt.pubgm.asia/
Certificate IssuerDigiCert Inc
Subject*.midasbuy.com
FingerprintEF:32:D0:91:A1:AC:5B:AE:1D:0B:9D:A5:17:A1:1C:0C:1B:D7:3A:02
ValidityFri, 06 May 2022 00:00:00 GMT - Tue, 06 Jun 2023 23:59:59 GMT
File type PNG image data, 1920 x 240, 8-bit/color RGBA, non-interlaced\012- data
Size 720 kB (720107 bytes)
Hash 321b317ea44cd5b773ef917b2eeba155
617f3648bb41105545b0db5ac9f34c9a17a05208
6e5c589a1159ea679bcb283e5214cf99b128a6647f8f8bae5b04b58c57a87bc7
GET /images/1920-240.321b317e.png HTTP/1.1
Host: cdn.midasbuy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://x3nmt.pubgm.asia/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: NWSs
date: Sat, 06 May 2023 21:17:28 GMT
content-type: image/png
content-length: 720107
cache-control: max-age=600
expires: Sat, 06 May 2023 21:27:27 GMT
last-modified: Thu, 03 Nov 2022 03:13:24 GMT
x-nws-log-uuid: c0691614-2e45-471c-a797-cf6f2440abff
x-cache-lookup: Hit From Disktank3
access-control-allow-origin: https://www.midasbuy.com
timing-allow-origin: https://www.midasbuy.com
accept-ranges: bytes
X-Firefox-Spdy: h2
cdn.midasbuy.com/images/1920_240.ed4ed184.png
101.33.10.108200 OK 318 kB URL GET HTTP/2 cdn.midasbuy.com/images/1920_240.ed4ed184.png
IP 101.33.10.108:443
ASN #132203 Tencent Building, Kejizhongyi Avenue
Requested by https://x3nmt.pubgm.asia/
Certificate IssuerDigiCert Inc
Subject*.midasbuy.com
FingerprintEF:32:D0:91:A1:AC:5B:AE:1D:0B:9D:A5:17:A1:1C:0C:1B:D7:3A:02
ValidityFri, 06 May 2022 00:00:00 GMT - Tue, 06 Jun 2023 23:59:59 GMT
File type PNG image data, 1920 x 240, 8-bit/color RGBA, non-interlaced\012- data
Size 318 kB (318328 bytes)
Hash ed4ed1843bfe1b364ab82ab321901104
0ad436b9d758f6a1c94a47de98650488396b7aea
3655a0c9340bbb7452e048db3b4953fba2be53df65dbdabd7504b858b49ca2ac
GET /images/1920_240.ed4ed184.png HTTP/1.1
Host: cdn.midasbuy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://x3nmt.pubgm.asia/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: NWSs
date: Sat, 06 May 2023 21:17:28 GMT
content-type: image/png
content-length: 318328
cache-control: max-age=600
expires: Sat, 06 May 2023 21:27:27 GMT
last-modified: Thu, 27 Oct 2022 09:34:38 GMT
x-nws-log-uuid: 2c8c177a-3cfc-43aa-a507-7d738b0deb5d
x-cache-lookup: Hit From MemCache
access-control-allow-origin: https://www.midasbuy.com
timing-allow-origin: https://www.midasbuy.com
accept-ranges: bytes
X-Firefox-Spdy: h2
cdn.midasbuy.com/oversea_web/static/images/coupon-1.8b1c293d.png
101.33.10.108200 OK 6.1 kB URL GET HTTP/2 cdn.midasbuy.com/oversea_web/static/images/coupon-1.8b1c293d.png
IP 101.33.10.108:443
ASN #132203 Tencent Building, Kejizhongyi Avenue
Requested by https://x3nmt.pubgm.asia/
Certificate IssuerDigiCert Inc
Subject*.midasbuy.com
FingerprintEF:32:D0:91:A1:AC:5B:AE:1D:0B:9D:A5:17:A1:1C:0C:1B:D7:3A:02
ValidityFri, 06 May 2022 00:00:00 GMT - Tue, 06 Jun 2023 23:59:59 GMT
File type PNG image data, 120 x 90, 8-bit colormap, non-interlaced\012- data
Hash feb53f916ef5d918971e4dd1684cf219
b89cab95ac25bbe574cc3fc644dc2c9cea190663
c267650422551425486e1621a6bcdec1138c302dbfc4f0e814a8b215a7eaf1f8
GET /oversea_web/static/images/coupon-1.8b1c293d.png HTTP/1.1
Host: cdn.midasbuy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cdn.midasbuy.com/oversea_web/static/css/mallpage.5b68c404.css?max_age=864000
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: NWSs
date: Sat, 06 May 2023 21:17:28 GMT
content-type: image/png
content-length: 6137
cache-control: max-age=600
expires: Sat, 06 May 2023 21:27:27 GMT
last-modified: Sat, 06 May 2023 09:57:31 GMT
x-nws-log-uuid: 7b2ae743-0346-48fa-9c98-8d06ab57f0fd
timing-allow-origin: https://cdn.midasbuy.com
access-control-allow-origin: https://cdn.midasbuy.com
x-cache-lookup: Hit From MemCache
accept-ranges: bytes
X-Firefox-Spdy: h2
ocsp.digicert.cn/
47.246.44.205 471 B IP 47.246.44.205:0
ASN #24429 Zhejiang Taobao Network Co.,Ltd
Hash 77988da0eb19816047aed77b8356a8ad
1d7a0a374fcc3aa97c322b2bd2a4782ab59e46ea
5772792d384b3345bf537ba393951601decc37f8ec2989ce27efd7d917e28562
POST / HTTP/1.1
Host: ocsp.digicert.cn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Tengine
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Cache-Control: 'max-age=158059'
Date: Sat, 06 May 2023 21:17:29 GMT
Ali-Swift-Global-Savetime: 1683407849
Via: cache21.l2de2[5,5,200-0,M], cache21.l2de2[7,0], cache2.se1[28,29,200-0,M], cache2.se1[30,0]
X-Cache: MISS TCP_MISS dirn:-2:-2
X-Swift-SaveTime: Sat, 06 May 2023 21:17:29 GMT
X-Swift-CacheTime: 0
Timing-Allow-Origin: *
EagleId: 2ff62c9616834078491896715e
ocsp.digicert.cn/
47.246.44.205 471 B IP 47.246.44.205:0
ASN #24429 Zhejiang Taobao Network Co.,Ltd
Hash f202d96f47cba4b61164f0ab4d89ced3
5df5d7fb296840ad659175a16a894549f5ba03c0
4927239c0c79c8628b3b379bd863b68133fbc02f873e31706e6048f068f6fce0
POST / HTTP/1.1
Host: ocsp.digicert.cn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Tengine
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Cache-Control: 'max-age=158059'
Date: Sat, 06 May 2023 21:17:29 GMT
Ali-Swift-Global-Savetime: 1683407849
Via: cache12.l2de2[466,465,200-0,M], cache12.l2de2[467,0], cache1.se1[487,487,200-0,M], cache1.se1[489,0]
X-Cache: MISS TCP_MISS dirn:-2:-2
X-Swift-SaveTime: Sat, 06 May 2023 21:17:29 GMT
X-Swift-CacheTime: 0
Timing-Allow-Origin: *
EagleId: 2ff62c9516834078489837068e
x3nmt.pubgm.asia/font/DINMITTELSCHRIFTSTD.woff
172.67.137.239200 OK 25 kB URL GET HTTP/3 x3nmt.pubgm.asia/font/DINMITTELSCHRIFTSTD.woff
IP 172.67.137.239:443
Requested by https://x3nmt.pubgm.asia/
Certificate IssuerGoogle Trust Services LLC
Subject*.pubgm.asia
Fingerprint4E:AE:1D:12:E8:52:6D:59:01:52:C0:57:A5:FA:81:6F:CB:99:24:28
ValidityThu, 23 Mar 2023 09:09:02 GMT - Wed, 21 Jun 2023 09:09:01 GMT
File type Web Open Font Format, TrueType, length 24996, version 1.40\012- data
Hash 2018d35e708e07985693c6bc12a59861
12faf69d54217b30d4458fffad689e758b8a91c6
c2293fa86d99d0f1f06b2ac7f85ae0517e4a3bacfd9946de7b012f04aa2d831c
Analyzer Verdict Alert openphish Tencent
fortinet Phishing
GET /font/DINMITTELSCHRIFTSTD.woff HTTP/1.1
Host: x3nmt.pubgm.asia
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://x3nmt.pubgm.asia/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sat, 06 May 2023 21:17:29 GMT
content-type: font/woff
content-length: 24996
cache-control: public, max-age=604800
expires: Sat, 13 May 2023 21:17:29 GMT
last-modified: Wed, 03 May 2023 17:16:54 GMT
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=2pOH6h2xg2Z7l3EafePGcBsvbLdLg4XFVOG2uQ3eRDjWDtntOhV4ySf9J%2B%2FsWoEngG0WT3WU1TlTjnpqEFrI765q07Q8bmxONB59C356b%2FwEBfY1VeTti2%2BTQ5QFwwdustk6"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7c34400dea1bb4ee-OSL
ocsp.digicert.cn/
47.246.44.205 471 B IP 47.246.44.205:0
ASN #24429 Zhejiang Taobao Network Co.,Ltd
Hash 77988da0eb19816047aed77b8356a8ad
1d7a0a374fcc3aa97c322b2bd2a4782ab59e46ea
5772792d384b3345bf537ba393951601decc37f8ec2989ce27efd7d917e28562
POST / HTTP/1.1
Host: ocsp.digicert.cn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Tengine
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Date: Sat, 06 May 2023 21:17:29 GMT
Last-Modified: Sat, 06 May 2023 17:24:46 GMT
ETag: "64568d5e-1d7"
Expires: Mon, 08 May 2023 17:24:46 GMT
Cache-Control: max-age=158837
Accept-Ranges: bytes
Ali-Swift-Global-Savetime: 1683407849
Via: cache10.l2de2[507,507,200-0,M], cache10.l2de2[508,0], cache8.se1[530,530,200-0,M], cache8.se1[531,0]
X-Cache: MISS TCP_MISS dirn:-2:-2
X-Swift-SaveTime: Sat, 06 May 2023 21:17:29 GMT
X-Swift-CacheTime: 0
Timing-Allow-Origin: *
EagleId: 2ff62c9c16834078491876245e
ocsp.digicert.cn/
47.246.44.205 471 B IP 47.246.44.205:0
ASN #24429 Zhejiang Taobao Network Co.,Ltd
Hash f202d96f47cba4b61164f0ab4d89ced3
5df5d7fb296840ad659175a16a894549f5ba03c0
4927239c0c79c8628b3b379bd863b68133fbc02f873e31706e6048f068f6fce0
POST / HTTP/1.1
Host: ocsp.digicert.cn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Tengine
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Date: Sat, 06 May 2023 21:17:29 GMT
Last-Modified: Fri, 05 May 2023 21:25:19 GMT
ETag: "6455743f-1d7"
Expires: Sun, 07 May 2023 21:25:19 GMT
Cache-Control: max-age=86870
Accept-Ranges: bytes
Ali-Swift-Global-Savetime: 1683407849
Via: cache26.l2de2[476,476,200-0,M], cache26.l2de2[477,0], cache2.se1[499,499,200-0,M], cache2.se1[500,0]
X-Cache: MISS TCP_MISS dirn:-2:-2
X-Swift-SaveTime: Sat, 06 May 2023 21:17:29 GMT
X-Swift-CacheTime: 0
Timing-Allow-Origin: *
EagleId: 2ff62c9616834078492346763e
aegis.qq.com/collect/pv?id=xEyy0TQ9LxaDmGDWQg&uin=uv_072020017368668031661621817238&version=1.39.13&aid=b4b191ff-a3c2-444b-b653-d3256a4ffcbf&env=production&platform=5&netType=100&vp=1280%20*%201024&sr=1280%20*%201024&sessionId=session-1683407848652&from=https%3A%2F%2Fx3nmt.pubgm.asia%2F&referer=
43.137.221.145204 No Content 0 B URL GET HTTP/2 aegis.qq.com/collect/pv?id=xEyy0TQ9LxaDmGDWQg&uin=uv_072020017368668031661621817238&version=1.39.13&aid=b4b191ff-a3c2-444b-b653-d3256a4ffcbf&env=production&platform=5&netType=100&vp=1280%20*%201024&sr=1280%20*%201024&sessionId=session-1683407848652&from=https%3A%2F%2Fx3nmt.pubgm.asia%2F&referer=
IP 43.137.221.145:443
ASN #45090 Shenzhen Tencent Computer Systems Company Limited
Requested by https://x3nmt.pubgm.asia/
Certificate IssuerDigiCert Inc
Subjectaegis.qq.com
Fingerprint6E:DF:69:16:AB:63:66:34:A8:93:C8:23:10:9E:BD:C5:28:AC:AF:46
ValidityWed, 08 Mar 2023 00:00:00 GMT - Sun, 07 Apr 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /collect/pv?id=xEyy0TQ9LxaDmGDWQg&uin=uv_072020017368668031661621817238&version=1.39.13&aid=b4b191ff-a3c2-444b-b653-d3256a4ffcbf&env=production&platform=5&netType=100&vp=1280%20*%201024&sr=1280%20*%201024&sessionId=session-1683407848652&from=https%3A%2F%2Fx3nmt.pubgm.asia%2F&referer= HTTP/1.1
Host: aegis.qq.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://x3nmt.pubgm.asia
DNT: 1
Connection: keep-alive
Referer: https://x3nmt.pubgm.asia/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 204 No Content
date: Sat, 06 May 2023 21:17:29 GMT
server: openresty
access-control-allow-origin: *
access-control-allow-methods: GET,POST,OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization
access-control-max-age: 86400
cross-origin-resource-policy: cross-origin
X-Firefox-Spdy: h2
report1.midasbuy.com/cgi-bin/log_data.fcg?num=1&record0=21=midasbuy.req.getFingerPrint.start|8=test_id%3D%26bucket_id%3D%26order_refer%3D|4=uv_072020017368668031661621817238|51=mds_hkweb_pc-v2-android-midasweb-midasbuy|31=oversea_web_v2_ot|43=|24=1450015065|23=v2|25=https%3A%2F%2Fx3nmt.pubgm.asia%2F|26=pc|3=|36=|50=Mozilla%252F5.0%2520(X11%253B%2520Linux%2520x86_64%253B%2520rv%253A109.0)%2520Gecko%252F20100101%2520Firefox%252F111.0|38=0348384880898043871649691398854|6=1683407849147|29=072020017368668031661621817238&rr=0.7997906745719673
211.152.137.25200 OK 29 B URL GET HTTP/2 report1.midasbuy.com/cgi-bin/log_data.fcg?num=1&record0=21=midasbuy.req.getFingerPrint.start|8=test_id%3D%26bucket_id%3D%26order_refer%3D|4=uv_072020017368668031661621817238|51=mds_hkweb_pc-v2-android-midasweb-midasbuy|31=oversea_web_v2_ot|43=|24=1450015065|23=v2|25=https%3A%2F%2Fx3nmt.pubgm.asia%2F|26=pc|3=|36=|50=Mozilla%252F5.0%2520(X11%253B%2520Linux%2520x86_64%253B%2520rv%253A109.0)%2520Gecko%252F20100101%2520Firefox%252F111.0|38=0348384880898043871649691398854|6=1683407849147|29=072020017368668031661621817238&rr=0.7997906745719673
IP 211.152.137.25:443
Requested by https://x3nmt.pubgm.asia/
Certificate IssuerDigiCert Inc
Subject*.midasbuy.com
FingerprintD4:89:34:AA:C5:6C:89:48:80:03:B1:43:1C:5A:BF:98:5E:5E:4E:78
ValidityTue, 11 Apr 2023 00:00:00 GMT - Sat, 11 May 2024 23:59:59 GMT
File type JSON data\012- , ASCII text, with no line terminators
Hash 2935fb252651c11a0686fa86463b502b
61d2f0bb210e47ae4e1828536a5a8ab18db01017
37bb2788d2a768dc291105ef695562033e91d7b6d0283600d27d482b985d27ae
GET /cgi-bin/log_data.fcg?num=1&record0=21=midasbuy.req.getFingerPrint.start|8=test_id%3D%26bucket_id%3D%26order_refer%3D|4=uv_072020017368668031661621817238|51=mds_hkweb_pc-v2-android-midasweb-midasbuy|31=oversea_web_v2_ot|43=|24=1450015065|23=v2|25=https%3A%2F%2Fx3nmt.pubgm.asia%2F|26=pc|3=|36=|50=Mozilla%252F5.0%2520(X11%253B%2520Linux%2520x86_64%253B%2520rv%253A109.0)%2520Gecko%252F20100101%2520Firefox%252F111.0|38=0348384880898043871649691398854|6=1683407849147|29=072020017368668031661621817238&rr=0.7997906745719673 HTTP/1.1
Host: report1.midasbuy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://x3nmt.pubgm.asia/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 06 May 2023 21:17:29 GMT
content-type: text/html;charset=utf-8
server: nginx
content-encoding: gzip
content-length: 29
x-nws-log-uuid: 16600260963347208268
x-cache-lookup: Cache Miss, Cache Miss
X-Firefox-Spdy: h2
ocsp.digicert.cn/
47.246.44.205 471 B IP 47.246.44.205:0
ASN #24429 Zhejiang Taobao Network Co.,Ltd
Hash f202d96f47cba4b61164f0ab4d89ced3
5df5d7fb296840ad659175a16a894549f5ba03c0
4927239c0c79c8628b3b379bd863b68133fbc02f873e31706e6048f068f6fce0
POST / HTTP/1.1
Host: ocsp.digicert.cn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Tengine
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Cache-Control: 'max-age=158059'
Date: Sat, 06 May 2023 21:17:29 GMT
Ali-Swift-Global-Savetime: 1683407849
Via: cache20.l2de2[489,488,200-0,M], cache20.l2de2[491,0], cache1.se1[511,510,200-0,M], cache1.se1[512,0]
X-Cache: MISS TCP_MISS dirn:-2:-2
X-Swift-SaveTime: Sat, 06 May 2023 21:17:29 GMT
X-Swift-CacheTime: 0
Timing-Allow-Origin: *
EagleId: 2ff62c9516834078492537387e
x3nmt.pubgm.asia/css/facebook.css
172.67.137.239404 Not Found 370 B URL GET HTTP/3 x3nmt.pubgm.asia/css/facebook.css
IP 172.67.137.239:443
Requested by https://x3nmt.pubgm.asia/
Certificate IssuerGoogle Trust Services LLC
Subject*.pubgm.asia
Fingerprint4E:AE:1D:12:E8:52:6D:59:01:52:C0:57:A5:FA:81:6F:CB:99:24:28
ValidityThu, 23 Mar 2023 09:09:02 GMT - Wed, 21 Jun 2023 09:09:01 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF, LF line terminators
Hash ffa8c3657fdd6348413dfd9a72249f8e
0386e89e50d776109814516e9b9f7d9862c8eb08
3d9db73cdedcbb29b216e8bbe535500df1bd3ca5effd21b81cd5f6ec7d42d5d5
Analyzer Verdict Alert openphish Tencent
GET /css/facebook.css HTTP/1.1
Host: x3nmt.pubgm.asia
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://x3nmt.pubgm.asia/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 404 Not Found
date: Sat, 06 May 2023 21:17:28 GMT
content-type: text/html
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
pragma: no-cache
cf-cache-status: BYPASS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=bYMGtcitgTjarCSYRNFLm9EYpmg2Ink3OD0qpNkGtuKbt5oQdmFGcO%2F8OpYAg%2BINqaBAt9Nfm6u5pMNbKvx6da8Jxisu0BZQWFj5Uinc2jyYbe8WG0vW0dprmtbxt7BnV8%2F1"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7c344009dc75b4ee-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
ocsp.digicert.cn/
47.246.44.205 471 B IP 47.246.44.205:0
ASN #24429 Zhejiang Taobao Network Co.,Ltd
Hash 33e56c010b7004f4985df0a1d9ff8251
966126cc0e2dc5afea6af99630b77928af283d95
9fc7958d17508202a28c8067914aa4967f625b6cfda24dbd3f50b7926118349a
POST / HTTP/1.1
Host: ocsp.digicert.cn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Tengine
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Date: Sat, 06 May 2023 21:17:30 GMT
Last-Modified: Sat, 06 May 2023 05:25:08 GMT
ETag: "6455e4b4-1d7"
Expires: Mon, 08 May 2023 05:25:08 GMT
Cache-Control: max-age=115658
Accept-Ranges: bytes
Ali-Swift-Global-Savetime: 1683407850
Via: cache26.l2de2[238,239,200-0,M], cache26.l2de2[240,0], cache1.se1[262,261,200-0,M], cache1.se1[263,0]
X-Cache: MISS TCP_MISS dirn:-2:-2
X-Swift-SaveTime: Sat, 06 May 2023 21:17:30 GMT
X-Swift-CacheTime: 0
Timing-Allow-Origin: *
EagleId: 2ff62c9516834078500978299e
ocsp.digicert.cn/
47.246.44.205 471 B IP 47.246.44.205:0
ASN #24429 Zhejiang Taobao Network Co.,Ltd
Hash 33e56c010b7004f4985df0a1d9ff8251
966126cc0e2dc5afea6af99630b77928af283d95
9fc7958d17508202a28c8067914aa4967f625b6cfda24dbd3f50b7926118349a
POST / HTTP/1.1
Host: ocsp.digicert.cn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Tengine
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Date: Sat, 06 May 2023 21:17:30 GMT
Last-Modified: Sat, 06 May 2023 05:25:08 GMT
ETag: "6455e4b4-1d7"
Expires: Mon, 08 May 2023 05:25:08 GMT
Cache-Control: max-age=115658
Accept-Ranges: bytes
Ali-Swift-Global-Savetime: 1683407850
Via: cache5.l2de2[500,500,200-0,M], cache5.l2de2[501,0], cache2.se1[523,523,200-0,M], cache2.se1[524,0]
X-Cache: MISS TCP_MISS dirn:-2:-2
X-Swift-SaveTime: Sat, 06 May 2023 21:17:30 GMT
X-Swift-CacheTime: 0
Timing-Allow-Origin: *
EagleId: 2ff62c9616834078498397466e
aegis.qq.com/collect/whitelist?id=xEyy0TQ9LxaDmGDWQg&uin=uv_072020017368668031661621817238&version=1.39.13&aid=b4b191ff-a3c2-444b-b653-d3256a4ffcbf&env=production&platform=5&netType=100&vp=1280%20*%201024&sr=1280%20*%201024&sessionId=session-1683407848652&from=https%3A%2F%2Fx3nmt.pubgm.asia%2F&referer=
43.137.221.145403 Forbidden 13 B URL GET HTTP/2 aegis.qq.com/collect/whitelist?id=xEyy0TQ9LxaDmGDWQg&uin=uv_072020017368668031661621817238&version=1.39.13&aid=b4b191ff-a3c2-444b-b653-d3256a4ffcbf&env=production&platform=5&netType=100&vp=1280%20*%201024&sr=1280%20*%201024&sessionId=session-1683407848652&from=https%3A%2F%2Fx3nmt.pubgm.asia%2F&referer=
IP 43.137.221.145:443
ASN #45090 Shenzhen Tencent Computer Systems Company Limited
Requested by https://x3nmt.pubgm.asia/
Certificate IssuerDigiCert Inc
Subjectaegis.qq.com
Fingerprint6E:DF:69:16:AB:63:66:34:A8:93:C8:23:10:9E:BD:C5:28:AC:AF:46
ValidityWed, 08 Mar 2023 00:00:00 GMT - Sun, 07 Apr 2024 23:59:59 GMT
File type ASCII text, with no line terminators
Hash 1093e1a6ff610f824edd80b8f7c2e5d9
7af98552e2a774f65e166cec5a781b1a9b05c555
0f9acc04dbac5096b11f6f3b16188ffd8e9ec18a1f6408015285454581080cf9
GET /collect/whitelist?id=xEyy0TQ9LxaDmGDWQg&uin=uv_072020017368668031661621817238&version=1.39.13&aid=b4b191ff-a3c2-444b-b653-d3256a4ffcbf&env=production&platform=5&netType=100&vp=1280%20*%201024&sr=1280%20*%201024&sessionId=session-1683407848652&from=https%3A%2F%2Fx3nmt.pubgm.asia%2F&referer= HTTP/1.1
Host: aegis.qq.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://x3nmt.pubgm.asia
DNT: 1
Connection: keep-alive
Referer: https://x3nmt.pubgm.asia/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 403 Forbidden
date: Sat, 06 May 2023 21:17:30 GMT
content-type: text/plain
content-length: 13
server: openresty
x-powered-by: Express
access-control-allow-origin: *
X-Firefox-Spdy: h2
kepler.captcha.qcloud.com/tencent-kepler.js?appId=9865970
129.226.107.210200 OK 57 kB URL GET HTTP/1.1 kepler.captcha.qcloud.com/tencent-kepler.js?appId=9865970
IP 129.226.107.210:443
ASN #132203 Tencent Building, Kejizhongyi Avenue
Requested by https://x3nmt.pubgm.asia/
Certificate IssuerDigiCert Inc
Subjectapr02-2023-1.ias.qcloud.com
Fingerprint69:EC:64:F0:FC:97:7D:F3:2A:AE:4B:99:04:81:E3:72:37:5C:6D:10
ValiditySat, 01 Apr 2023 00:00:00 GMT - Tue, 02 Apr 2024 23:59:59 GMT
File type Unicode text, UTF-8 text, with very long lines (65489), with no line terminators
Hash 1b75d80aec6b42ea2bd3dd7a614285e2
f08ca6b401628706324caf14a3997995d332cb64
b118a19c3320176bb54941329d784beda5b814667ac5fc2b2ba363a70e8aa765
GET /tencent-kepler.js?appId=9865970 HTTP/1.1
Host: kepler.captcha.qcloud.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://x3nmt.pubgm.asia/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 06 May 2023 21:17:30 GMT
Content-Type: text/javascript
Content-Length: 56621
Connection: keep-alive
Content-Encoding: gzip
Server: tencent http server
Accept-Ranges: bytes
P3P: CP=CAO PSA OUR
Cache-Control: max-age=600
x3nmt.pubgm.asia/cdn-cgi/challenge-platform/scripts/invisible.js
172.67.137.239302 Found 25 kB URL GET HTTP/3 x3nmt.pubgm.asia/cdn-cgi/challenge-platform/scripts/invisible.js
IP 172.67.137.239:443
Requested by https://x3nmt.pubgm.asia/
Certificate IssuerGoogle Trust Services LLC
Subject*.pubgm.asia
Fingerprint4E:AE:1D:12:E8:52:6D:59:01:52:C0:57:A5:FA:81:6F:CB:99:24:28
ValidityThu, 23 Mar 2023 09:09:02 GMT - Wed, 21 Jun 2023 09:09:01 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert openphish Tencent
fortinet Phishing
GET /cdn-cgi/challenge-platform/scripts/invisible.js HTTP/1.1
Host: x3nmt.pubgm.asia
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 302 Found
date: Sat, 06 May 2023 21:17:28 GMT
access-control-allow-origin: *
cache-control: max-age=300, public
location: /cdn-cgi/challenge-platform/h/g/scripts/jsd/b5e45436/invisible.js
vary: accept-encoding
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=0DQDkInjknLQV9hYpPGhY83GH3DyAgjvEeoH0E77woSnL%2BjhJ9aH0EdTEMJBtXgkvkP4jVQdWUj3strvXY6annEqYazYxedKfhUu9Kc1unxuHdJ4XwMpbbmk1Ar8yMuXwv4H"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7c34400ecb9ab4ee-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
x3nmt.pubgm.asia/img/1.png
172.67.137.239404 Not Found 695 B URL GET HTTP/3 x3nmt.pubgm.asia/img/1.png
IP 172.67.137.239:443
Requested by https://x3nmt.pubgm.asia/
Certificate IssuerGoogle Trust Services LLC
Subject*.pubgm.asia
Fingerprint4E:AE:1D:12:E8:52:6D:59:01:52:C0:57:A5:FA:81:6F:CB:99:24:28
ValidityThu, 23 Mar 2023 09:09:02 GMT - Wed, 21 Jun 2023 09:09:01 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (725), with no line terminators
Hash 4e8f2251a46a64c7688a49a3e999898d
d1a26051b6ac058244584c8eec9830c78bae8af3
648415d8ead4e5a50c915ab2c7057d198671bd1e412d98ac4f8d5b069d7b54c7
Analyzer Verdict Alert openphish Tencent
GET /img/1.png HTTP/1.1
Host: x3nmt.pubgm.asia
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://x3nmt.pubgm.asia/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 404 Not Found
date: Sat, 06 May 2023 21:17:25 GMT
content-type: text/html
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
pragma: no-cache
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
cf-cache-status: BYPASS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=w2CYxjKIXfUQ2C7krOZVvmwvSRS70hQ9mu3WLQSIn0AJbO6Ws0KSkNDVQFudaiRPiQByqhnVlGdiXRf8iajfxNdnw3aV2QPn%2Fc6UhYLKDp8UQjHvln9kIZYuzHqAW8BOwDEi"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7c343ff35c1cb4ee-OSL
content-encoding: br
x3nmt.pubgm.asia/css/twitter.css
172.67.137.239404 Not Found 695 B URL GET HTTP/3 x3nmt.pubgm.asia/css/twitter.css
IP 172.67.137.239:443
Requested by https://x3nmt.pubgm.asia/
Certificate IssuerGoogle Trust Services LLC
Subject*.pubgm.asia
Fingerprint4E:AE:1D:12:E8:52:6D:59:01:52:C0:57:A5:FA:81:6F:CB:99:24:28
ValidityThu, 23 Mar 2023 09:09:02 GMT - Wed, 21 Jun 2023 09:09:01 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (725), with no line terminators
Hash 4e8f2251a46a64c7688a49a3e999898d
d1a26051b6ac058244584c8eec9830c78bae8af3
648415d8ead4e5a50c915ab2c7057d198671bd1e412d98ac4f8d5b069d7b54c7
Analyzer Verdict Alert openphish Tencent
GET /css/twitter.css HTTP/1.1
Host: x3nmt.pubgm.asia
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://x3nmt.pubgm.asia/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 404 Not Found
date: Sat, 06 May 2023 21:17:28 GMT
content-type: text/html
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
pragma: no-cache
cf-cache-status: BYPASS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=RWN%2B1%2FIPkeY89FQ8%2B9%2BdB2VlHIuS%2FX3Dv44jc6Ea23Nlel%2FZ2NRX5dlHTygpFV22AMQ0%2FvlVO5q8xHqVxTpCk0zxZPpUEOqEgtGJr2%2FNbQIaQSZ6k2OLptph73zwCugPs5IW"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7c344009dc71b4ee-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
report1.midasbuy.com/cgi-bin/log_data.fcg?num=1&record0=21=midas.api.call.init.ok|25=https%3A%2F%2Fx3nmt.pubgm.asia%2F|36=|50=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A109.0)%20Gecko%2F20100101%20Firefox%2F111.0|51=&r=0.45214154930865824
211.152.137.25200 OK 0 B URL GET HTTP/2 report1.midasbuy.com/cgi-bin/log_data.fcg?num=1&record0=21=midas.api.call.init.ok|25=https%3A%2F%2Fx3nmt.pubgm.asia%2F|36=|50=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A109.0)%20Gecko%2F20100101%20Firefox%2F111.0|51=&r=0.45214154930865824
IP 211.152.137.25:443
Requested by https://x3nmt.pubgm.asia/
Certificate IssuerDigiCert Inc
Subject*.midasbuy.com
FingerprintD4:89:34:AA:C5:6C:89:48:80:03:B1:43:1C:5A:BF:98:5E:5E:4E:78
ValidityTue, 11 Apr 2023 00:00:00 GMT - Sat, 11 May 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cgi-bin/log_data.fcg?num=1&record0=21=midas.api.call.init.ok|25=https%3A%2F%2Fx3nmt.pubgm.asia%2F|36=|50=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A109.0)%20Gecko%2F20100101%20Firefox%2F111.0|51=&r=0.45214154930865824 HTTP/1.1
Host: report1.midasbuy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://x3nmt.pubgm.asia/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 06 May 2023 21:17:29 GMT
content-type: text/html;charset=utf-8
server: nginx
content-encoding: gzip
content-length: 29
x-nws-log-uuid: 8788492761858968210
x-cache-lookup: Cache Miss, Cache Miss
X-Firefox-Spdy: h2
x3nmt.pubgm.asia/favicon.ico
172.67.137.239404 Not Found 695 B URL GET HTTP/3 x3nmt.pubgm.asia/favicon.ico
IP 172.67.137.239:443
Requested by https://x3nmt.pubgm.asia/
Certificate IssuerGoogle Trust Services LLC
Subject*.pubgm.asia
Fingerprint4E:AE:1D:12:E8:52:6D:59:01:52:C0:57:A5:FA:81:6F:CB:99:24:28
ValidityThu, 23 Mar 2023 09:09:02 GMT - Wed, 21 Jun 2023 09:09:01 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (725), with no line terminators
Hash 4e8f2251a46a64c7688a49a3e999898d
d1a26051b6ac058244584c8eec9830c78bae8af3
648415d8ead4e5a50c915ab2c7057d198671bd1e412d98ac4f8d5b069d7b54c7
Analyzer Verdict Alert openphish Tencent
GET /favicon.ico HTTP/1.1
Host: x3nmt.pubgm.asia
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://x3nmt.pubgm.asia/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 404 Not Found
date: Sat, 06 May 2023 21:17:30 GMT
content-type: text/html
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
pragma: no-cache
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
cf-cache-status: BYPASS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=qdxYdK3ngBiW1nXDCGCoCkvsNd9znJRqhQUEBllIxHENbQSBEJbT4Ph1P%2FRKf0mms%2BstZyMTOxGI80x%2FOkMpkxnqybWm9syMgA%2BOC7oOI%2Bog3FpqeQujldvv%2BhZ8C4NBasJw"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7c344012b917b4ee-OSL
content-encoding: br
172.67.137.239200 OK 142 kB URL User Request GET HTTP/2 IP 172.67.137.239:443
Certificate IssuerGoogle Trust Services LLC
Subject*.pubgm.asia
Fingerprint4E:AE:1D:12:E8:52:6D:59:01:52:C0:57:A5:FA:81:6F:CB:99:24:28
ValidityThu, 23 Mar 2023 09:09:02 GMT - Wed, 21 Jun 2023 09:09:01 GMT
Size 142 kB (141906 bytes)
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert urlquery suspicious Suspicious - Suspicious Javascript code
openphish Tencent
fortinet Phishing
GET / HTTP/1.1
Host: x3nmt.pubgm.asia
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 06 May 2023 21:17:24 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=VM1x0oBr1lREkC00TR89hszrk%2BVmxU1PKrFtXAeLovJQNPGjOAzzIoRbZnzgXaLHoWz8cAVayJfCemuR8Kxc%2BMks29GTrR47S1PXJVM%2B7ALXt1KhBxFkc3OZJwCoH1J8EeG3"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7c343feb3eadb529-OSL
content-encoding: br
X-Firefox-Spdy: h2
x3nmt.pubgm.asia/img/1.png
172.67.137.239404 Not Found 695 B URL GET HTTP/3 x3nmt.pubgm.asia/img/1.png
IP 172.67.137.239:443
Requested by https://x3nmt.pubgm.asia/
Certificate IssuerGoogle Trust Services LLC
Subject*.pubgm.asia
Fingerprint4E:AE:1D:12:E8:52:6D:59:01:52:C0:57:A5:FA:81:6F:CB:99:24:28
ValidityThu, 23 Mar 2023 09:09:02 GMT - Wed, 21 Jun 2023 09:09:01 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (725), with no line terminators
Hash 4e8f2251a46a64c7688a49a3e999898d
d1a26051b6ac058244584c8eec9830c78bae8af3
648415d8ead4e5a50c915ab2c7057d198671bd1e412d98ac4f8d5b069d7b54c7
Analyzer Verdict Alert openphish Tencent
GET /img/1.png HTTP/1.1
Host: x3nmt.pubgm.asia
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://x3nmt.pubgm.asia/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 404 Not Found
date: Sat, 06 May 2023 21:17:28 GMT
content-type: text/html
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
pragma: no-cache
cf-cache-status: BYPASS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=uDrj5hTa3nvaPKWGMQU%2BxkbjiQFRiI4wS%2FndD12w126U1ntnGacF7vVM8eEPtCb9NH9Snug1rn6c%2FLZg9H5f51oK6bSsQivxmHh1WknCHOvhhq83hy7%2B%2F91pDnQwdzq1fEX5"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7c34400c3ff7b4ee-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
x3nmt.pubgm.asia/apps/login/home/ot?hidePop=1
172.67.137.239404 Not Found 1.9 kB URL GET HTTP/3 x3nmt.pubgm.asia/apps/login/home/ot?hidePop=1
IP 172.67.137.239:443
Requested by https://x3nmt.pubgm.asia/
Certificate IssuerGoogle Trust Services LLC
Subject*.pubgm.asia
Fingerprint4E:AE:1D:12:E8:52:6D:59:01:52:C0:57:A5:FA:81:6F:CB:99:24:28
ValidityThu, 23 Mar 2023 09:09:02 GMT - Wed, 21 Jun 2023 09:09:01 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (1948), with no line terminators
Hash 3ac8fcdc7c7489714722236972301f85
1620916cde4238a7f0efe7475b393e49b18b4f5f
0f3b6d58fe8c7f4b7e74b42cdfae917fd42468cc2ba06e8652edcc6daae76bb6
GET /apps/login/home/ot?hidePop=1 HTTP/1.1
Host: x3nmt.pubgm.asia
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://x3nmt.pubgm.asia/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 404 Not Found
date: Sat, 06 May 2023 21:17:29 GMT
content-type: text/html
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
pragma: no-cache
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=fCKkj69%2BKyL0iz7q31e5iUIvOtWIdcuWaSKpq%2BU6XdbenN71i%2Bxr4HXzmFzAlUu4EQtyzv6bkf%2FZqRGFNjC6CQSDGCkhEn%2BOrYLETGPlUg0uzl%2BSYHVtJVQHNFkBOsxKHSXc"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7c34400d4950b4ee-OSL
content-encoding: br
x3nmt.pubgm.asia/cdn-cgi/challenge-platform/h/g/scripts/jsd/b5e45436/invisible.js
172.67.137.239200 OK 25 kB URL GET HTTP/3 x3nmt.pubgm.asia/cdn-cgi/challenge-platform/h/g/scripts/jsd/b5e45436/invisible.js
IP 172.67.137.239:443
Requested by https://x3nmt.pubgm.asia/
Certificate IssuerGoogle Trust Services LLC
Subject*.pubgm.asia
Fingerprint4E:AE:1D:12:E8:52:6D:59:01:52:C0:57:A5:FA:81:6F:CB:99:24:28
ValidityThu, 23 Mar 2023 09:09:02 GMT - Wed, 21 Jun 2023 09:09:01 GMT
File type ASCII text, with very long lines (25367), with no line terminators
Hash fcb69ae87a8706993b71bbef7d632254
50a32564374644079bdb124b1cc4e002b73cb397
80f7f9f416fc2cc362ff600bd41f4716e1c520dba8c2bd8187bb9b46235682e8
Analyzer Verdict Alert openphish Tencent
fortinet Phishing
GET /cdn-cgi/challenge-platform/h/g/scripts/jsd/b5e45436/invisible.js HTTP/1.1
Host: x3nmt.pubgm.asia
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sat, 06 May 2023 21:17:28 GMT
content-type: application/javascript; charset=UTF-8
cache-control: max-age=14400, public
x-content-type-options: nosniff
vary: accept-encoding
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=dxbNqfPx3mc3rzCLkeINLTWd%2FV8gbnxGDkupZIZB%2BtscS7grlrWBDm3Jk8u%2BaC0ZAJioiOq3A86wLthiVDgWHrjAZOIdAT%2Fee4ezCOJJDTSLkvn6l2IdY5TvwTPFSroqMkAs"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7c34400eebbab4ee-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
x3nmt.pubgm.asia/css/style.css
172.67.137.239200 OK 1.3 kB URL GET HTTP/3 x3nmt.pubgm.asia/css/style.css
IP 172.67.137.239:443
Requested by https://x3nmt.pubgm.asia/
Certificate IssuerGoogle Trust Services LLC
Subject*.pubgm.asia
Fingerprint4E:AE:1D:12:E8:52:6D:59:01:52:C0:57:A5:FA:81:6F:CB:99:24:28
ValidityThu, 23 Mar 2023 09:09:02 GMT - Wed, 21 Jun 2023 09:09:01 GMT
File type ASCII text, with very long lines (1555), with no line terminators
Hash 81eb0c3966d2e0dfced8330528ce86b5
a330b8e72834fecfc27a323b6a5f1c195afcb867
ccb451134a2a7b9ede27a6730efd3c64ab65c6496aae1fd3aada16ef94171ce2
Analyzer Verdict Alert openphish Tencent
GET /css/style.css HTTP/1.1
Host: x3nmt.pubgm.asia
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://x3nmt.pubgm.asia/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sat, 06 May 2023 21:17:25 GMT
content-type: text/css
cache-control: public, max-age=604800
expires: Sat, 13 May 2023 21:17:25 GMT
last-modified: Wed, 03 May 2023 17:16:54 GMT
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=5uZj2%2Fv6vekevaR2i72DjGtE3fCTayW5dKesoQEwSIvNFpRW3B%2BfsMvqlJEq6EMbmIfU0FRau4xZs7QjmnGcobl%2BsrjsRloBIM7ylBJwTVbA4yk4TcpeS0zOpph3hZqowsWz"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7c343ff33be4b4ee-OSL
content-encoding: br
x3nmt.pubgm.asia/css/twitter.css
172.67.137.239404 Not Found 695 B URL GET HTTP/3 x3nmt.pubgm.asia/css/twitter.css
IP 172.67.137.239:443
Requested by https://x3nmt.pubgm.asia/
Certificate IssuerGoogle Trust Services LLC
Subject*.pubgm.asia
Fingerprint4E:AE:1D:12:E8:52:6D:59:01:52:C0:57:A5:FA:81:6F:CB:99:24:28
ValidityThu, 23 Mar 2023 09:09:02 GMT - Wed, 21 Jun 2023 09:09:01 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (725), with no line terminators
Hash 4e8f2251a46a64c7688a49a3e999898d
d1a26051b6ac058244584c8eec9830c78bae8af3
648415d8ead4e5a50c915ab2c7057d198671bd1e412d98ac4f8d5b069d7b54c7
Analyzer Verdict Alert openphish Tencent
GET /css/twitter.css HTTP/1.1
Host: x3nmt.pubgm.asia
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://x3nmt.pubgm.asia/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 404 Not Found
date: Sat, 06 May 2023 21:17:25 GMT
content-type: text/html
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
pragma: no-cache
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
cf-cache-status: BYPASS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=TCnpjoat14qAjePaov8WH0nsHhR51GJrgVr72yAd33IXbtJ4%2FmDzCAe7AHyodxlOUrFEj24%2F4QtCkYPsHNYhWWhPA%2F491HwrugKjpxptEpi64ItuELp0TXdY6tzMX%2FDQcIZ1"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7c343ff33bf1b4ee-OSL
content-encoding: br