Overview

URL420-thailand.com/2022/optimum/optm/ManagePayments.php?sha384-vs3dl3wt0sr1NSmWE/o2E71r7EDd6e3fFXEmu4tyET7uqtZw1URcwd3+DYJQtrMg-Max-lenght
IP 172.67.175.60 (United States)
ASN#13335 CLOUDFLARENET
UserAgentMozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Referer
Report completed2022-11-24 06:54:41 UTC
StatusLoading report..
IDS alerts0
Blocklist alert2
urlquery alerts No alerts detected
Tags None

Domain Summary (9)

Fully Qualifying Domain Name Rank First Seen Last Seen IP Comment
420-thailand.com (13) 0 2019-06-18 15:26:43 UTC 2022-11-24 03:35:51 UTC 172.67.175.60 Unknown ranking
img-getpocket.cdn.mozilla.net (6) 1631 2018-06-21 23:36:00 UTC 2020-02-19 04:43:25 UTC 34.120.237.76
r3.o.lencr.org (5) 344 No data No data 23.36.77.32
contile.services.mozilla.com (1) 1114 2021-05-27 18:32:35 UTC 2022-11-23 05:36:46 UTC 34.117.237.239
content-signature-2.cdn.mozilla.net (1) 1152 No data No data 34.160.144.191
push.services.mozilla.com (1) 2140 2014-10-24 08:27:06 UTC 2020-05-03 10:09:39 UTC 35.162.125.72
www.optimum.net (9) 101237 2012-05-25 19:26:25 UTC 2022-11-22 07:15:51 UTC 167.206.237.230
ocsp.digicert.com (7) 86 2012-05-21 07:02:23 UTC 2020-05-02 20:58:10 UTC 93.184.220.29
firefox.settings.services.mozilla.com (2) 867 2020-06-04 20:08:41 UTC 2022-11-23 05:36:31 UTC 34.102.187.140

Network Intrusion Detection Systemsinfo

Suricata /w Emerging Threats Pro
 No alerts detected

Blocklists

OpenPhish
 No alerts detected

PhishTank
 No alerts detected

Fortinet's Web Filter
Scan Date Severity Indicator Comment
2022-11-24 2 420-thailand.com/2022/optimum/optm/manage/tag.js.download Phishing
2022-11-24 2 420-thailand.com/2022/optimum/optm/sell.js Phishing

mnemonic secure dns
 No alerts detected

Quad9 DNS
 No alerts detected


Files

No files detected

Recent reports on same IP/ASN/Domain/Screenshot

Last 5 reports on IP: 172.67.175.60
Date UQ / IDS / BL URL IP
2022-11-24 06:54:41 +0000 0 - 0 - 2 420-thailand.com/2022/optimum/optm/ManagePaym (...) 172.67.175.60
2022-11-24 06:54:20 +0000 0 - 0 - 2 420-thailand.com/2022/optimum/optm/index1.php (...) 172.67.175.60
2022-11-24 06:53:59 +0000 0 - 0 - 2 420-thailand.com/2022/optimum/optm/index.php 172.67.175.60
2022-09-21 15:41:03 +0000 0 - 0 - 1 www.cambriacr.com/ 172.67.175.60
2022-09-21 05:24:57 +0000 0 - 0 - 1 www.cambriacr.com/ 172.67.175.60


Last 5 reports on ASN: CLOUDFLARENET
Date UQ / IDS / BL URL IP
2023-02-08 13:08:29 +0000 0 - 2 - 0 download.cdn-televzr.com/win/televzr_light_se (...) 104.21.1.194
2023-02-08 13:06:27 +0000 11 - 3 - 3 rivers-mostar.com/public/SwdeIJs6qcShJYATLCAV (...) 104.21.80.34
2023-02-08 13:05:09 +0000 13 - 3 - 3 rivers-mostar.com/public/2CraPUezff9PFIC9nbcj (...) 172.67.173.171
2023-02-08 13:05:03 +0000 11 - 3 - 3 rivers-mostar.com/public/ggh1pTPbjGjBvCOgvneQ (...) 104.21.80.34
2023-02-08 13:02:33 +0000 0 - 0 - 8 www.worldwidehealth.com/login.php?fail=ok 104.21.58.130


Last 5 reports on domain: 420-thailand.com
Date UQ / IDS / BL URL IP
2023-02-05 07:56:53 +0000 0 - 0 - 1 420-thailand.com/2022/optimum/optm/index.php 104.21.31.66
2023-01-11 08:19:30 +0000 0 - 0 - 2 420-thailand.com/2022/optimum/optm/index.php 104.21.31.66
2022-11-24 06:54:41 +0000 0 - 0 - 2 420-thailand.com/2022/optimum/optm/ManagePaym (...) 172.67.175.60
2022-11-24 06:54:20 +0000 0 - 0 - 2 420-thailand.com/2022/optimum/optm/index1.php (...) 172.67.175.60
2022-11-24 06:53:59 +0000 0 - 0 - 2 420-thailand.com/2022/optimum/optm/index.php 172.67.175.60


Last 5 reports with similar screenshot
Date UQ / IDS / BL URL IP
2023-01-29 07:11:34 +0000 0 - 0 - 4 www.gamcogroup.com/2022/optimum/optm/ManagePa (...) 192.185.77.96
2023-01-28 23:43:49 +0000 0 - 0 - 5 classactionlawsuitcenter.com/wp-admin/2022/op (...) 69.16.215.169
2023-01-28 20:54:53 +0000 0 - 0 - 4 www.gamcogroup.com/2022/optimum/optm/ManagePa (...) 192.185.77.96
2023-01-28 19:59:20 +0000 0 - 0 - 2 encorewaters.com/wp-includes/2022/optimum/opt (...) 50.87.151.230
2023-01-11 08:19:53 +0000 0 - 0 - 4 galias.com.co/spiks/optimum/optm/ManagePaymen (...) 207.180.235.43

JavaScript

Executed Scripts (3)

Executed Evals (0)

Executed Writes (0)


HTTP Transactions (45)


Request Response
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "B7F7A4D355ED3B847A5E28F16030D5CBC715D47326AEA20F292CD76DCAF59794"
Last-Modified: Mon, 21 Nov 2022 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17867
Expires: Thu, 24 Nov 2022 11:52:18 GMT
Date: Thu, 24 Nov 2022 06:54:31 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 5170
Cache-Control: max-age=104575
Date: Thu, 24 Nov 2022 06:54:31 GMT
Etag: "637df674-1d7"
Expires: Fri, 25 Nov 2022 11:57:26 GMT
Last-Modified: Wed, 23 Nov 2022 10:31:16 GMT
Server: ECS (ska/F707)
X-Cache: HIT
Content-Length: 471

                                        
                                            GET /v1/ HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.102.187.140
HTTP/2 200 OK
content-type: application/json
                                        
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Retry-After, Content-Length, Alert, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Thu, 24 Nov 2022 06:18:57 GMT
cache-control: public,max-age=3600
age: 2134
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size:   939
Md5:    567df7db606cf5d0871aa5bc9311b6da
Sha1:   4263faac7cbab2fcaf6661911dcad5091c06be17
Sha256: e9650e1fdc46fc8678708ddcc37ab369c7a6d50489a004be896f20c7a3a644b0
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "FCDCEF8306AE31F20C366489E1F88AA40B08F154D25D45F4055C4F8CDEF47634"
Last-Modified: Mon, 21 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2484
Expires: Thu, 24 Nov 2022 07:35:55 GMT
Date: Thu, 24 Nov 2022 06:54:31 GMT
Connection: keep-alive

                                        
                                            GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1 
Host: content-signature-2.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         34.160.144.191
HTTP/2 200 OK
content-type: binary/octet-stream
                                        
x-amz-id-2: FKHRGzFXh3RjpWCoxHRtP+nGEbS+C5A3BXY7uqgQyEuc6BXdothS2GeSFAV0P1On99KfHD2771E=
x-amz-request-id: AR061CNBHZAD787C
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Thu, 24 Nov 2022 06:40:18 GMT
age: 853
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PEM certificate\012- , ASCII text
Size:   5348
Md5:    9ebddc2b260d081ebbefee47c037cb28
Sha1:   492bad62a7ca6a74738921ef5ae6f0be5edebf39
Sha256: 74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5
                                        
                                            GET /v1/tiles HTTP/1.1 
Host: contile.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.117.237.239
HTTP/2 200 OK
content-type: application/json
                                        
server: nginx
date: Thu, 24 Nov 2022 06:54:31 GMT
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   12
Md5:    23e88fb7b99543fb33315b29b1fad9d6
Sha1:   a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
Sha256: 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
                                        
                                            GET /2022/optimum/optm/sell.css HTTP/1.1 
Host: 420-thailand.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://420-thailand.com/2022/optimum/optm/ManagePayments.php?sha384-vs3dl3wt0sr1NSmWE/o2E71r7EDd6e3fFXEmu4tyET7uqtZw1URcwd3+DYJQtrMg-Max-lenght

search
                                         172.67.175.60
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Thu, 24 Nov 2022 06:54:31 GMT
Content-Length: 93
Connection: keep-alive
Last-Modified: Thu, 27 Oct 2022 16:58:10 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=bHaM%2F0cxH9fAXPsZcFn13staIRB8QAZEn3f1ogVICK0No0R2ymSFKsRqnkPxgZCD2UC573qljhvuZo27bbY2MJyegsniaWSwz7x15z2GBvVdreiNLhOiV%2Bf53vG2mdYnihGk"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 76f03bd5cd0ab4ee-OSL
alt-svc: h2=":443"; ma=60


--- Additional Info ---
Magic:  ASCII text, with CRLF line terminators
Size:   93
Md5:    de524ebf4476233a6e20c6e45e022014
Sha1:   3ac31198a08f31e1b11b145f706a41aa95fbcbd8
Sha256: d1c02c09a167adf0d7b02b216dd041a89eac2dd19aad36109646c94a3675db55
                                        
                                            GET /2022/optimum/optm/ManagePayments.php?sha384-vs3dl3wt0sr1NSmWE/o2E71r7EDd6e3fFXEmu4tyET7uqtZw1URcwd3+DYJQtrMg-Max-lenght HTTP/1.1 
Host: 420-thailand.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

search
                                         172.67.175.60
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
                                        
Date: Thu, 24 Nov 2022 06:54:31 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=7St0pi118RjYeRP%2F28kR0FPHjstvJOd%2BQjnvrnUf3VjrXCm%2FMWUp22zIWgaKFKsr9QEAqTG9WV6jCB6cZygcgDBxq%2BCxn%2Bxy9sym2h8mnNBerWAHggMjHVbAQGe%2FktZeY5v2"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 76f03bd2c90c0afa-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (588)
Size:   51547
Md5:    5fa0c36664264d37e63c6fd425faa373
Sha1:   f546b64dccca0891b735191e3eeb401dbae2077e
Sha256: 9cc087f73637848dbde9eacd3399665ab2daf15b290dc7f852581b98e31d97dc
                                        
                                            GET /2022/optimum/optm/manage/page.css HTTP/1.1 
Host: 420-thailand.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://420-thailand.com/2022/optimum/optm/ManagePayments.php?sha384-vs3dl3wt0sr1NSmWE/o2E71r7EDd6e3fFXEmu4tyET7uqtZw1URcwd3+DYJQtrMg-Max-lenght

search
                                         172.67.175.60
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Thu, 24 Nov 2022 06:54:31 GMT
Content-Length: 10295
Connection: keep-alive
Last-Modified: Thu, 27 Oct 2022 16:58:12 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=CFfVe7pU%2FpGBkfcy4EpgM%2BnNFTI6NO9tn3W%2FFUJ0k9dSfdMG6EfO4xCdnExG3LZfUtruA6OicSl%2FcJBUZpZKor0vbUhhnUfJ9XoIZVR2%2BFMsHoKrQ04%2Fvp860wlJ541aYJ83"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 76f03bd5c984b4ed-OSL
alt-svc: h2=":443"; ma=60


--- Additional Info ---
Magic:  ASCII text, with very long lines (45064), with no line terminators
Size:   10295
Md5:    b4d9f51afe3d020cd51f7b1beb772d3f
Sha1:   d1b263ae9041201c40fc1457c24ce32354d8b809
Sha256: 7ad84b2cdec6ce2b3e8078033a04ef710ffdaaa2aa7ba0d218592648238a32bc
                                        
                                            GET /2022/optimum/optm/manage/answers.css HTTP/1.1 
Host: 420-thailand.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://420-thailand.com/2022/optimum/optm/ManagePayments.php?sha384-vs3dl3wt0sr1NSmWE/o2E71r7EDd6e3fFXEmu4tyET7uqtZw1URcwd3+DYJQtrMg-Max-lenght

search
                                         172.67.175.60
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Thu, 24 Nov 2022 06:54:31 GMT
Content-Length: 3548
Connection: keep-alive
Last-Modified: Thu, 27 Oct 2022 16:58:10 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=H%2B3Xlrn5Dp03v%2Bncmw3z5o3PEDQerA2Ix8rRWpfsZ5iGYDtDAh3ClO6T22lbMI2lQtVJBYf0QPrAR0n4xaQJMZA0NRlmX6r7kGg3lbKyOViZJ2Sl3C5PEXS6YWziKDq6qnID"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 76f03bd5c8110b51-OSL
alt-svc: h2=":443"; ma=60


--- Additional Info ---
Magic:  ASCII text, with very long lines (16589), with no line terminators
Size:   3548
Md5:    f8463dd8feecf3bbd7785b8b0abb1e8a
Sha1:   18b571c375952aed71d877ca744e229e5ee0246b
Sha256: 47a9459da590eb70c9d2935c285f2687c9ba92fcf96e17225e4d3521ccf68489
                                        
                                            GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.102.187.140
HTTP/2 200 OK
content-type: application/json
                                        
access-control-allow-origin: *
access-control-expose-headers: ETag, Content-Type, Content-Length, Last-Modified, Alert, Backoff, Pragma, Expires, Retry-After, Cache-Control
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Thu, 24 Nov 2022 06:08:53 GMT
cache-control: public,max-age=3600
age: 2738
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size:   329
Md5:    0333b0655111aa68de771adfcc4db243
Sha1:   63f295a144ac87a7c8e23417626724eeca68a7eb
Sha256: 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
                                        
                                            GET /2022/optimum/optm/manage/core-and-parts_page_2.css HTTP/1.1 
Host: 420-thailand.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://420-thailand.com/2022/optimum/optm/ManagePayments.php?sha384-vs3dl3wt0sr1NSmWE/o2E71r7EDd6e3fFXEmu4tyET7uqtZw1URcwd3+DYJQtrMg-Max-lenght

search
                                         172.67.175.60
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Thu, 24 Nov 2022 06:54:31 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 27 Oct 2022 16:58:12 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=EzN3vHqKd7bOwWyKAxqjbOdSUHYBPx9dga1seIVebMwPE8F5VdBMRxXiJ804xD9H1epaNh9uKWLNHr2zc5ius9LJMuVYUB9bLc1hEnH9DJrylj%2By69Fxtja%2BtiRERC7elPF6"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 76f03bd5ce9cb50c-OSL
alt-svc: h2=":443"; ma=60


--- Additional Info ---
Magic:  ASCII text
Size:   37248
Md5:    5f3cc272db2380f40e3c5c3f39d0758e
Sha1:   754c834fc682fdb088c2a08b2ffcd52574460297
Sha256: fac29ee632ad4b318355fbf46501656581abfcf105e335dbad95adc2aeb2bfbe
                                        
                                            GET /2022/optimum/optm/manage/tag.js.download HTTP/1.1 
Host: 420-thailand.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://420-thailand.com/2022/optimum/optm/ManagePayments.php?sha384-vs3dl3wt0sr1NSmWE/o2E71r7EDd6e3fFXEmu4tyET7uqtZw1URcwd3+DYJQtrMg-Max-lenght

search
                                         172.67.175.60
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
                                        
Date: Thu, 24 Nov 2022 06:54:31 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=7RMF0k615fuzD2fp13JCV9BJ07HEG0to5%2BTXeqrfu8zdfvVb25t%2Bs9UPGPxJUswV3XTpRok3Q48OWMwZ5WkPASZeZcvc0NSXf%2BUfzc%2Fcpab0tiyuuPQOGcNu%2BHCyvo3cam7K"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 76f03bd7fc3f0afa-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60


--- Additional Info ---
Magic:  HTML document, ASCII text, with very long lines (10815), with no line terminators
Size:   1429
Md5:    6eecd67fc428e785a238c706c1f76026
Sha1:   9aa52cbd3ed517a077009dffdd3171617c1ab89e
Sha256: f7c1d4ee4fed2d68dc923f5022ae048cdcfca28ecb06ddd7863e3940198a713a

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 4258
Cache-Control: max-age=98600
Date: Thu, 24 Nov 2022 06:54:31 GMT
Etag: "637de2ad-1d7"
Expires: Fri, 25 Nov 2022 10:17:51 GMT
Last-Modified: Wed, 23 Nov 2022 09:06:53 GMT
Server: ECS (ska/F707)
X-Cache: HIT
Content-Length: 471

                                        
                                            GET /2022/optimum/optm/manage/core-and-parts_page_1.css HTTP/1.1 
Host: 420-thailand.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://420-thailand.com/2022/optimum/optm/ManagePayments.php?sha384-vs3dl3wt0sr1NSmWE/o2E71r7EDd6e3fFXEmu4tyET7uqtZw1URcwd3+DYJQtrMg-Max-lenght

search
                                         172.67.175.60
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Thu, 24 Nov 2022 06:54:31 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 27 Oct 2022 16:58:12 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=jQbD%2F20PUPVw%2Fj6Qvj5HOrwUsyGwy%2Bc0j6YPHb3%2FZpY6%2BFttiQj4ZBU5d3IjxrXqLttnIcIRU8SVwkk8sWkf4ebX%2FzW%2FB4c4pr60EECQrdlW9UrLoUASWPGPByeWe0TN3gpc"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 76f03bd5ca2eb505-OSL
alt-svc: h2=":443"; ma=60


--- Additional Info ---
Magic:  ASCII text, with very long lines (371)
Size:   73709
Md5:    31ea7f0b1ebfbadd125198b9cc4c96d5
Sha1:   2ad96ab10292ff2fbb33ad169b773bb306ea7ba1
Sha256: 492c7b5395e8891f9798816ddaa45e3f14015972bd05289cf2f4bb990431abac
                                        
                                            GET /2022/optimum/optm/sell.js HTTP/1.1 
Host: 420-thailand.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://420-thailand.com/2022/optimum/optm/ManagePayments.php?sha384-vs3dl3wt0sr1NSmWE/o2E71r7EDd6e3fFXEmu4tyET7uqtZw1URcwd3+DYJQtrMg-Max-lenght

search
                                         172.67.175.60
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Thu, 24 Nov 2022 06:54:32 GMT
Content-Length: 147
Connection: keep-alive
Last-Modified: Thu, 27 Oct 2022 16:58:10 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2F8MDxKEoYlRlgZQNYFgYOgNgHCJgw%2BzM5gJl4Z615gSbKGAlBMkoUZVD0Eefo%2Fw9gXoicj3HftXLnXgVnF5UXZt8MQPU0in%2FPF%2BX8b5OurEug2FD6dZs%2B5khBwPbXCy2KeUI"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 76f03bd7ff11b4ee-OSL
alt-svc: h2=":443"; ma=60


--- Additional Info ---
Magic:  ASCII text, with CRLF line terminators
Size:   147
Md5:    fedfbe61d74e6a594e92c4abf3362d84
Sha1:   4546b3f7eda47fce417e49893955b10ad558e1cf
Sha256: ba6aabb2fb116910177d821ecdf46f83d56b778eee0ffb6efdec275fb177ba38

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET / HTTP/1.1 
Host: push.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: sfjKatMolXhDyQjtWvQTCg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

search
                                         35.162.125.72
HTTP/1.1 101 Switching Protocols
                                        
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: /6PolrA+gVdDPTqR5XVWte5Kofg=

                                        
                                            GET /2022/optimum/optm/manage/logo_firefox.png HTTP/1.1 
Host: 420-thailand.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://420-thailand.com/2022/optimum/optm/ManagePayments.php?sha384-vs3dl3wt0sr1NSmWE/o2E71r7EDd6e3fFXEmu4tyET7uqtZw1URcwd3+DYJQtrMg-Max-lenght

search
                                         172.67.175.60
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Thu, 24 Nov 2022 06:54:32 GMT
Content-Length: 7790
Connection: keep-alive
Last-Modified: Thu, 27 Oct 2022 16:58:12 GMT
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=x4XHTFDdSMYkgxJ5RJ0YFudGUkpVu5vV%2FMq3ewceiXMEShbOX2hJvpkI7iNmotn3fapytuezNDh4e9xj4NDuPSOrkt9%2FthKNQRLSbCvb8uSdfPkI2rxx%2BGka8IBamxZgLcp1"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 76f03bda0b810b51-OSL
alt-svc: h2=":443"; ma=60


--- Additional Info ---
Magic:  PNG image data, 63 x 63, 8-bit/color RGBA, interlaced\012- data
Size:   7790
Md5:    13223f5076319bfc0a92924e5f8eb0e7
Sha1:   bee0f19a5e2ee3d2d6c36642691eff60d457b87b
Sha256: a7fa2b89aac2f571438d78277db46b14f4d96b4c79631fc60469ef192ee99f5e
                                        
                                            GET /2022/optimum/optm/manage/Icon_ALTICE_BUBBLE.png HTTP/1.1 
Host: 420-thailand.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://420-thailand.com/2022/optimum/optm/ManagePayments.php?sha384-vs3dl3wt0sr1NSmWE/o2E71r7EDd6e3fFXEmu4tyET7uqtZw1URcwd3+DYJQtrMg-Max-lenght

search
                                         172.67.175.60
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Thu, 24 Nov 2022 06:54:32 GMT
Content-Length: 283
Connection: keep-alive
Last-Modified: Thu, 27 Oct 2022 16:58:12 GMT
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=do2IW26N3VtNDcA4U7wFZHyycd1RaZwpOcRNXFzjW19fKjW%2BZ5wi3L0MwxVjUZiLtMzK6y%2F0345UyUNhKGq7AnWUMzjejOqf1zJi6Ln4C1ymzZcmxiBmf1t%2FmrzajGRyfc24"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 76f03bda09fbb50c-OSL
alt-svc: h2=":443"; ma=60


--- Additional Info ---
Magic:  PNG image data, 18 x 19, 8-bit/color RGBA, non-interlaced\012- data
Size:   283
Md5:    a513821eaa59b31ca2aee212f510e883
Sha1:   07326e12345fc27a2c77cc722e83f6f15d7d9ee0
Sha256: 63ba80eedc83770541926fc5abf3599f8077c519ed31e8c3189a64bb46cf46a6
                                        
                                            GET /2022/optimum/optm/manage/logo_chrome.png HTTP/1.1 
Host: 420-thailand.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://420-thailand.com/2022/optimum/optm/ManagePayments.php?sha384-vs3dl3wt0sr1NSmWE/o2E71r7EDd6e3fFXEmu4tyET7uqtZw1URcwd3+DYJQtrMg-Max-lenght

search
                                         172.67.175.60
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Thu, 24 Nov 2022 06:54:32 GMT
Content-Length: 7128
Connection: keep-alive
Last-Modified: Thu, 27 Oct 2022 16:58:12 GMT
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2FcOLCLGtqeCFcYpaWWIrBKMI8aEWivqbiHsSXS7HPvFFZvPTwI2QyR7t%2FG42mjQDtDKsXnrR0wUgV0Nf0JEsnjZxY0nD7e1V4TUe8EqyR2gwn2fEz6FPk6BtTXJnDD4Wm2dR"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 76f03bda0ebeb4ed-OSL
alt-svc: h2=":443"; ma=60


--- Additional Info ---
Magic:  PNG image data, 63 x 63, 8-bit/color RGBA, interlaced\012- data
Size:   7128
Md5:    acdb752c6bdb525fe85752c67317f09a
Sha1:   a30e5023a81fe99ca186d802ebea5dd4173e13c9
Sha256: 9e6311406957895a4576102520a5807b2d2883261b4d3d15e45e1f67a4e60ecb
                                        
                                            GET /2022/optimum/optm/manage/logo_ie.png HTTP/1.1 
Host: 420-thailand.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://420-thailand.com/2022/optimum/optm/ManagePayments.php?sha384-vs3dl3wt0sr1NSmWE/o2E71r7EDd6e3fFXEmu4tyET7uqtZw1URcwd3+DYJQtrMg-Max-lenght

search
                                         172.67.175.60
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Thu, 24 Nov 2022 06:54:32 GMT
Content-Length: 6881
Connection: keep-alive
Last-Modified: Thu, 27 Oct 2022 16:58:12 GMT
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=MhqQ%2FU0p9MSXLM2veeXrtCFiVW3cCZqZ12Q%2BSrIFSW9JjzlxHwStwG7XB40zPj3JNuALXPcXantYsRvT3We4wtD83yvNdrPkfBuwrB9upCrMLNeVYDNvDfzz5jo5jB1p2MJT"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 76f03bda0e08b505-OSL
alt-svc: h2=":443"; ma=60


--- Additional Info ---
Magic:  PNG image data, 63 x 63, 8-bit/color RGBA, interlaced\012- data
Size:   6881
Md5:    82674945b98085403bae25d361f85d88
Sha1:   fe5411d43f5208240c58bd03143749254b1eca31
Sha256: 198dae8bc15a201782c3e056fda6dc6f9b52d5cdcbc41d4348cfeec0a66b8efa
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 21
Cache-Control: max-age=146232
Date: Thu, 24 Nov 2022 06:54:32 GMT
Etag: "637ead4b-1d7"
Expires: Fri, 25 Nov 2022 23:31:44 GMT
Last-Modified: Wed, 23 Nov 2022 23:31:23 GMT
Server: ECS (ska/F718)
X-Cache: HIT
Content-Length: 471

                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 1021
Cache-Control: max-age=147231
Date: Thu, 24 Nov 2022 06:54:32 GMT
Etag: "637ead4b-1d7"
Expires: Fri, 25 Nov 2022 23:48:23 GMT
Last-Modified: Wed, 23 Nov 2022 23:31:23 GMT
Server: ECS (amb/6BBC)
X-Cache: HIT
Content-Length: 471

                                        
                                            GET /cdn/static.tvlistings.optimum.net/ool/static/prod/images/icon_message2.png HTTP/1.1 
Host: www.optimum.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://420-thailand.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         167.206.237.230
HTTP/1.1 200 OK
Content-Type: image/png
                                        
ETag: "f9-5a496aae93caa"
Last-Modified: Fri, 01 May 2020 14:05:03 GMT
Vx-Int-Req-Id: V1-g-1-6v40e62-1/0
Vx-Int-Res-Id: V1-g-1-6v3d24u-1/0
Cache-Control: max-age=21600, s-maxage=21600, public, max-age=21600
Content-Length: 249
Accept-Ranges: bytes
Date: Thu, 24 Nov 2022 06:54:32 GMT
Connection: keep-alive
Set-Cookie: cachekeys=ZIP=11714| CORP=07801| REGION=; expires=Tue, 01-Jan-2038 00:00:00 GMT; path=/; domain=optimum.net
Strict-Transport-Security: max-age=31536000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff


--- Additional Info ---
Magic:  PNG image data, 24 x 23, 8-bit/color RGBA, non-interlaced\012- data
Size:   249
Md5:    2993d57285ac910153feb52cdd3eb696
Sha1:   40c8cc576d30118cada5e3998c4fd692a32fc691
Sha256: dda50837373135f2515c7ed1216d1cb8c79aa12786d8512e3400a9cd665e1d88
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Cache-Control: max-age=146211
Date: Thu, 24 Nov 2022 06:54:32 GMT
Etag: "637ead4b-1d7"
Expires: Fri, 25 Nov 2022 23:31:23 GMT
Last-Modified: Wed, 23 Nov 2022 23:31:23 GMT
Server: nginx
Content-Length: 471

                                        
                                            GET /cdn/static.tvlistings.optimum.net/ool/static/prod/images/icon_optstore.png HTTP/1.1 
Host: www.optimum.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://420-thailand.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         167.206.237.230
HTTP/1.1 200 OK
Content-Type: image/png
                                        
ETag: "195-5a4e26debee1f"
Last-Modified: Tue, 05 May 2020 08:28:17 GMT
Vx-Int-Req-Id: V1-e-1-6pgm7g8-1/0
Vx-Int-Res-Id: V1-e-1-6p5yn85-1/0
Cache-Control: max-age=21600, s-maxage=21600, public, max-age=21600
Content-Length: 405
Accept-Ranges: bytes
Date: Thu, 24 Nov 2022 06:54:32 GMT
Connection: keep-alive
Set-Cookie: cachekeys=ZIP=11714| CORP=07801| REGION=; expires=Tue, 01-Jan-2038 00:00:00 GMT; path=/; domain=optimum.net
Strict-Transport-Security: max-age=31536000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff


--- Additional Info ---
Magic:  PNG image data, 24 x 24, 8-bit/color RGBA, non-interlaced\012- data
Size:   405
Md5:    25f4c42f34ff3adab8284e15e04831c2
Sha1:   9e9a57b03c6b52b8ce40477dfbd97e0ec509f6fc
Sha256: 24b1b0fc642753fc6e693eae5cde6fd56366fad297e2915b3e9f63774f3aa1fb
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Cache-Control: max-age=146211
Date: Thu, 24 Nov 2022 06:54:32 GMT
Etag: "637ead4b-1d7"
Expires: Fri, 25 Nov 2022 23:31:23 GMT
Last-Modified: Wed, 23 Nov 2022 23:31:23 GMT
Server: nginx
Content-Length: 471

                                        
                                            GET /cdn/static.tvlistings.optimum.net/ool/static/prod/images/logo_desktop.png HTTP/1.1 
Host: www.optimum.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://420-thailand.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         167.206.237.230
HTTP/1.1 200 OK
Content-Type: image/png
                                        
ETag: "c1b-5e528efd42739"
Last-Modified: Mon, 01 Aug 2022 07:27:48 GMT
Vx-Int-Req-Id: V1-g-1-6v4dbv3-1/0
Vx-Int-Res-Id: V1-g-1-6v1izzq-1/0
Cache-Control: max-age=21600, s-maxage=21600, public, max-age=21600
Content-Length: 3099
Accept-Ranges: bytes
Date: Thu, 24 Nov 2022 06:54:32 GMT
Connection: keep-alive
Set-Cookie: cachekeys=ZIP=11714| CORP=07801| REGION=; expires=Tue, 01-Jan-2038 00:00:00 GMT; path=/; domain=optimum.net
Strict-Transport-Security: max-age=31536000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff


--- Additional Info ---
Magic:  PNG image data, 225 x 59, 8-bit/color RGBA, non-interlaced\012- data
Size:   3099
Md5:    7c09f5acc1381d036b09b4c95dcf6179
Sha1:   848f3588b2ab4f2f69a0c7110425f192b81ae07c
Sha256: a80363e3aaefdfbf02c3ab9906d83f9bbf80821b0c1a04df69c8a0f97fbc7453
                                        
                                            GET /assets/fonts/fontawesome/fontawesome-webfont.woff?v=3.0.1 HTTP/1.1 
Host: www.optimum.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://420-thailand.com
Connection: keep-alive
Referer: http://420-thailand.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         167.206.237.230
HTTP/1.1 200 OK
Content-Type: font/woff
                                        
ETag: "021f212f94a9db6a0e3847c921842aa19"
Last-Modified: Thu, 10 Nov 2022 21:12:36 GMT
Access-Control-Allow-Origin: *
Content-Length: 29380
Accept-Ranges: bytes
Date: Thu, 24 Nov 2022 06:54:32 GMT
Connection: keep-alive
Set-Cookie: cachekeys=ZIP=11714| CORP=07801| REGION=; expires=Tue, 01-Jan-2038 00:00:00 GMT; path=/; domain=optimum.net
Strict-Transport-Security: max-age=31536000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff


--- Additional Info ---
Magic:  Web Open Font Format, TrueType, length 29380, version 1.0\012- data
Size:   29380
Md5:    21f212f94a9db6a0e3847c921842aa19
Sha1:   1f0bdc58aa59ab954ce78a94e4d0ea94ab436554
Sha256: a6fb906942932de53852ee244ee3fec27bca0bf63a96421672aa4784851b8d4b
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Cache-Control: 'max-age=158059'
Date: Thu, 24 Nov 2022 06:54:32 GMT
Etag: "637d5bcf-1d7"
Server: ECS (amb/6BAD)
Content-Length: 471

                                        
                                            GET /assets/fonts/regular/Regular-Bold.woff HTTP/1.1 
Host: www.optimum.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://420-thailand.com
Connection: keep-alive
Referer: http://420-thailand.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         167.206.237.230
HTTP/1.1 200 OK
Content-Type: font/woff
                                        
ETag: "0467d177910ed28d5c8fc03d88b6020b3"
Last-Modified: Thu, 10 Nov 2022 21:12:36 GMT
Access-Control-Allow-Origin: *
Content-Length: 62661
Accept-Ranges: bytes
Date: Thu, 24 Nov 2022 06:54:32 GMT
Connection: keep-alive
Set-Cookie: cachekeys=ZIP=11714| CORP=07801| REGION=; expires=Tue, 01-Jan-2038 00:00:00 GMT; path=/; domain=optimum.net
Strict-Transport-Security: max-age=31536000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff


--- Additional Info ---
Magic:  Web Open Font Format, TrueType, length 62661, version 1.0\012- data
Size:   62661
Md5:    467d177910ed28d5c8fc03d88b6020b3
Sha1:   0c6183403f8fada1ea64ea856513d7e37ba864f5
Sha256: 6956ea2e1d93df622505b666c2987433a0f5546e4037f0a185c133b20a9a783b
                                        
                                            GET /assets/fonts/regular/Regular-Medium.woff HTTP/1.1 
Host: www.optimum.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://420-thailand.com
Connection: keep-alive
Referer: http://420-thailand.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         167.206.237.230
HTTP/1.1 200 OK
Content-Type: font/woff
                                        
ETag: "04af555f6d24ac7c63f9b26a52373d6d1"
Last-Modified: Thu, 10 Nov 2022 21:12:36 GMT
Access-Control-Allow-Origin: *
Content-Length: 61533
Accept-Ranges: bytes
Date: Thu, 24 Nov 2022 06:54:32 GMT
Connection: keep-alive
Set-Cookie: cachekeys=ZIP=11714| CORP=07801| REGION=; expires=Tue, 01-Jan-2038 00:00:00 GMT; path=/; domain=optimum.net
Strict-Transport-Security: max-age=31536000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff


--- Additional Info ---
Magic:  Web Open Font Format, TrueType, length 61533, version 1.0\012- data
Size:   61533
Md5:    4af555f6d24ac7c63f9b26a52373d6d1
Sha1:   b1505074914b54df213e392aa06b79fe253a071d
Sha256: 878a83f4ffa56c09d18f71c29755fdd6f93c2e9702845ec7c83c1da4754d2650
                                        
                                            GET /cdn/static.tvlistings.optimum.net/ool/static/prod/images/icon_opthelp.png HTTP/1.1 
Host: www.optimum.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://420-thailand.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         167.206.237.230
HTTP/1.1 200 OK
Content-Type: image/png
                                        
ETag: "1b9-5a496ab516400"
Last-Modified: Fri, 01 May 2020 14:05:09 GMT
Vx-Int-Req-Id: V1-g-1-6v40dux-1/0
Vx-Int-Res-Id: V1-g-1-6v40dux-1/0
Cache-Control: max-age=21600, s-maxage=21600, public, max-age=21600
Content-Length: 441
Accept-Ranges: bytes
Date: Thu, 24 Nov 2022 06:54:32 GMT
Connection: keep-alive
Set-Cookie: cachekeys=ZIP=11714| CORP=07801| REGION=; expires=Tue, 01-Jan-2038 00:00:00 GMT; path=/; domain=optimum.net
Strict-Transport-Security: max-age=31536000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff


--- Additional Info ---
Magic:  PNG image data, 24 x 20, 8-bit/color RGBA, non-interlaced\012- data
Size:   441
Md5:    aa2c9ba87a37151fb95d2e5b8ab84b46
Sha1:   271397d721b4728103265dfad040ef21413344a4
Sha256: 6d57340d92cb2e9557a1cc3ac96c86ca86b0c8323c851a55573a3a2488ef84ff
                                        
                                            GET /assets/fonts/regular/Regular-Regular.woff HTTP/1.1 
Host: www.optimum.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://420-thailand.com
Connection: keep-alive
Referer: http://420-thailand.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         167.206.237.230
HTTP/1.1 200 OK
Content-Type: font/woff
                                        
ETag: "0b93ac8c84ffd39feff0f73e031ea7263"
Last-Modified: Thu, 10 Nov 2022 21:12:36 GMT
Access-Control-Allow-Origin: *
Content-Length: 62649
Accept-Ranges: bytes
Date: Thu, 24 Nov 2022 06:54:32 GMT
Connection: keep-alive
Set-Cookie: cachekeys=ZIP=11714| CORP=07801| REGION=; expires=Tue, 01-Jan-2038 00:00:00 GMT; path=/; domain=optimum.net
Strict-Transport-Security: max-age=31536000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff


--- Additional Info ---
Magic:  Web Open Font Format, TrueType, length 62649, version 1.0\012- data
Size:   62649
Md5:    b93ac8c84ffd39feff0f73e031ea7263
Sha1:   a7795477ce3aafefb4855cddc8d0b8bbaa84ed6a
Sha256: 5b85f5f5732534318102cd1b76600be50148a28b8ddf10bc845c43702f2a5fa5
                                        
                                            GET /2022/optimum/optm/favicon.ico HTTP/1.1 
Host: 420-thailand.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://420-thailand.com/2022/optimum/optm/ManagePayments.php?sha384-vs3dl3wt0sr1NSmWE/o2E71r7EDd6e3fFXEmu4tyET7uqtZw1URcwd3+DYJQtrMg-Max-lenght

search
                                         172.67.175.60
HTTP/1.1 200 OK
Content-Type: image/x-icon
                                        
Date: Thu, 24 Nov 2022 06:54:33 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 27 Oct 2022 16:58:08 GMT
Cache-Control: max-age=604800
Expires: Thu, 01 Dec 2022 06:53:51 GMT
CF-Cache-Status: HIT
Age: 42
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2Fh7WDY7twEr17cU%2F4TOisPCjMpshmnFYUaqIL44fQZ%2FTRyNOzW4Ggi%2Fbiaieqg3JaltyoY%2FzCCaCF23iiys%2FkzPF7M7a9qv94FN%2F9ZVl%2F38CivSgOv8ZlZJF5OpcUeQ2XNoF"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 76f03be06ca7b505-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60


--- Additional Info ---
Magic:  PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced\012- data
Size:   347
Md5:    3d24b7a573c89c16d0217ec7fdf76d21
Sha1:   7a55ee38ab68fb0456c03ae72ad8e90797914d46
Sha256: 271ede0240fbc9a16901b546afc128ac77af20bf2d4c04903f7f5d5e8c7414dc
                                        
                                            GET /cdn/static.tvlistings.optimum.net/ool/static/prod/images/sprite_icons_altice.png HTTP/1.1 
Host: www.optimum.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://420-thailand.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         167.206.237.230
HTTP/1.1 200 OK
Content-Type: image/png
                                        
ETag: "248f1-58dece066cbc2"
Last-Modified: Thu, 18 Jul 2019 04:16:40 GMT
Vx-Int-Req-Id: V1-g-1-6v45tht-1/0
Vx-Int-Res-Id: V1-g-1-6v40dxh-1/0
Cache-Control: max-age=21600, s-maxage=21600, public, max-age=21600
Content-Length: 149745
Accept-Ranges: bytes
Date: Thu, 24 Nov 2022 06:54:32 GMT
Connection: keep-alive
Set-Cookie: cachekeys=ZIP=11714| CORP=07801| REGION=; expires=Tue, 01-Jan-2038 00:00:00 GMT; path=/; domain=optimum.net
Strict-Transport-Security: max-age=31536000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff


--- Additional Info ---
Magic:  PNG image data, 408 x 714, 8-bit/color RGBA, non-interlaced\012- data
Size:   149745
Md5:    1a502e40f53567ad4e6ba3c85e324e1c
Sha1:   72419a7c7f573f5041152c0031fb25ba4ea3d41f
Sha256: 0fde4c9c87c9e7b45f2edee970396be68320f3762a1a7998aff4b7f7517fcfe4
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "A8E7585E49B01A64520051F8D38F499C8CB82645E3D146E6CA34378EAC684E69"
Last-Modified: Wed, 23 Nov 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4449
Expires: Thu, 24 Nov 2022 08:08:42 GMT
Date: Thu, 24 Nov 2022 06:54:33 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "A8E7585E49B01A64520051F8D38F499C8CB82645E3D146E6CA34378EAC684E69"
Last-Modified: Wed, 23 Nov 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4449
Expires: Thu, 24 Nov 2022 08:08:42 GMT
Date: Thu, 24 Nov 2022 06:54:33 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "A8E7585E49B01A64520051F8D38F499C8CB82645E3D146E6CA34378EAC684E69"
Last-Modified: Wed, 23 Nov 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4449
Expires: Thu, 24 Nov 2022 08:08:42 GMT
Date: Thu, 24 Nov 2022 06:54:33 GMT
Connection: keep-alive

                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3a9a0208-d5ae-4e15-bd4d-c5c19edf354e.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 5545
x-amzn-requestid: 215b9f9b-4941-4c13-a1d4-6fdc5b453fad
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cEvCtEkIIAMF3gg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637e9211-27081b9e0dc1de6522299e4e;Sampled=0
x-amzn-remapped-date: Wed, 23 Nov 2022 21:35:13 GMT
x-amz-cf-pop: SFO53-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: Xr183esurgfu-4jjQtCS5s_np_CtltrPx48zpq-NMwZbcGnAwTxtkg==
via: 1.1 68914922a694954838e87fc9b0aa10fe.cloudfront.net (CloudFront), 1.1 e4d3d5aafc7d7d582423c073065ab562.cloudfront.net (CloudFront), 1.1 google
date: Wed, 23 Nov 2022 21:52:56 GMT
age: 32497
etag: "c66fd3a955cd81ab93474fb1aabc4c19d5775bcc"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   5545
Md5:    1404c6b865808ea73ca5b2062fefecc0
Sha1:   c66fd3a955cd81ab93474fb1aabc4c19d5775bcc
Sha256: 0a92ca52eff8baa4ba43bdb29008c59bcd37c55e78ac657de25819e980ea8e96
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3d85d03d-8fcf-42f4-bada-e7f488f04307.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 7462
x-amzn-requestid: 1f6fb14d-83e0-43d3-9dab-5bc83af1a7c4
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cEwV3HV9oAMFs9w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637e9425-634d43db6308e0be596aa5a0;Sampled=0
x-amzn-remapped-date: Wed, 23 Nov 2022 21:44:05 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: GW5UTfY7-TwPWTno9z1e21a2cA9fmU7GfHFYWdL-zQvMLxeq-S9Trg==
via: 1.1 e291f351a18746d40754b367095a2872.cloudfront.net (CloudFront), 1.1 e66162aafd55b64ba1478ff7105150fa.cloudfront.net (CloudFront), 1.1 google
date: Wed, 23 Nov 2022 22:03:54 GMT
age: 31839
etag: "a7d9135f9d01ba13c3cdaf8b038c70212f159297"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   7462
Md5:    b4157f2c5c3c77ce699324ecb08f47c7
Sha1:   a7d9135f9d01ba13c3cdaf8b038c70212f159297
Sha256: 2305f7afee95bb34d9e8dbff571c6b146ba7b694be96e9e925c32d1f41785916
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2a16068e-5377-48a5-aaf5-19e46c86681d.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 11447
x-amzn-requestid: fb600f6e-d936-4255-b79f-528d9cb8e729
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cCvYTEqyIAMFalg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637dc5ce-2bc3102e268ccdff7f960289;Sampled=0
x-amzn-remapped-date: Wed, 23 Nov 2022 07:03:42 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: flF0yRgk5BMItKbudaEq7iQgLJcCHd6WNsvqFr1uDAvI_EKyVkc4_w==
via: 1.1 446313511980eb02f28ff5a9a4147c0a.cloudfront.net (CloudFront), 1.1 82ea95080f526df99896343fb7269b06.cloudfront.net (CloudFront), 1.1 google
date: Wed, 23 Nov 2022 07:15:20 GMT
etag: "a67bdea6358146f7de38d6be37e9f69a8edd5f22"
age: 85153
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   11447
Md5:    e091109c8f54cf23b221d8d0a35d6914
Sha1:   a67bdea6358146f7de38d6be37e9f69a8edd5f22
Sha256: 362dc1665e27a4307a7ce832019a6e5e3d8edb0d18db084e4dc9dd026ea68df4
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fca5cb469-21a0-420a-875c-a81635b33f53.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 7993
x-amzn-requestid: 9f0ff853-4819-47cd-959d-658401ea5748
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cEvCsG5mIAMFqAQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637e9211-1c48b9223684f2942f8dd42d;Sampled=0
x-amzn-remapped-date: Wed, 23 Nov 2022 21:35:13 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 7YSXUV-LZpsI7vciFhuqt1EVr6YRkhxcOgMg8z8bxLcOE01_baf6Gg==
via: 1.1 d1151317ba32afe0e6370fd69fed222e.cloudfront.net (CloudFront), 1.1 1b74ccf4cb51eacf97a0e6d60ae46a3e.cloudfront.net (CloudFront), 1.1 google
date: Wed, 23 Nov 2022 21:47:06 GMT
etag: "43d1dec7fc06879988c9c3cadd800cc8145df988"
age: 32847
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   7993
Md5:    92c78302bcce1568eb6a5563100b932c
Sha1:   43d1dec7fc06879988c9c3cadd800cc8145df988
Sha256: 0dda9914306c8e3a7ea75eade8e762652d93907dd6c5a8cc81707d6d8098b60a
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fac98a873-8b46-43f5-9ac0-fc1cc1a0cd81.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 11249
x-amzn-requestid: 65a3db77-b2e6-40b9-a776-021c2e9b56d0
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bubSsHbZoAMFZNg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6375a5aa-1286b97968cc2e4c7fe8ab29;Sampled=0
x-amzn-remapped-date: Thu, 17 Nov 2022 03:08:26 GMT
x-amz-cf-pop: SEA19-C3
x-cache: Hit from cloudfront
x-amz-cf-id: _j5ykGwKHIQEFLyuJK_OMvs-CsCvkUQhZc_YD8gAtbyOECQ894zvjw==
via: 1.1 38eecd3ca21bf068d69a2f9cfe668d14.cloudfront.net (CloudFront), 1.1 abbf2df97f9d83839470842dc2e68cb6.cloudfront.net (CloudFront), 1.1 google
date: Thu, 24 Nov 2022 05:46:02 GMT
age: 4111
etag: "85d3baad9217af2b5d75c019d2ef95dbb919a788"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   11249
Md5:    481c033b9ffd030ff0de6e35cf788b47
Sha1:   85d3baad9217af2b5d75c019d2ef95dbb919a788
Sha256: 02443c7869914c2b29892deb0c645395bcf4e8379da3cf20974614ff9c92893b
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F707b8d34-3bd2-4793-9e17-c60d0b285f84.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 9828
x-amzn-requestid: bf2f8429-416d-40d4-a237-7593ee26c27a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cEv0KHywIAMFvtA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637e934d-349e1dcc595b1be906a83577;Sampled=0
x-amzn-remapped-date: Wed, 23 Nov 2022 21:40:29 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: bQcpPUgu6eN6PQeLMGWwBlf01iHj77_aXHjKmh8SH7HsWlUX6kipDg==
via: 1.1 7f5e0d3b9ea85d0d75063a66c0ebc840.cloudfront.net (CloudFront), 1.1 64f86ae1c24221f3a2e4d653d6dbc416.cloudfront.net (CloudFront), 1.1 google
date: Wed, 23 Nov 2022 21:57:23 GMT
age: 32230
etag: "9355a16a81b11e024dd2c5c0024aba1121fff925"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   9828
Md5:    dc118bae963b381ce5450890130ecf15
Sha1:   9355a16a81b11e024dd2c5c0024aba1121fff925
Sha256: cb5bc2cc49e05c133434eeb725690b3e32a0d3c6b75074582f941eee3bf7e1c1