r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 7e05c8461bd2dc5a149f71e2c465ea29
705983959c887e243cb55a8a1796757b579ee977
4d9ea085d5dda9dabed11af9847c2b0aa6182358673b356a4e2bd631e22a9922
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4D9EA085D5DDA9DABED11AF9847C2B0AA6182358673B356A4E2BD631E22A9922"
Last-Modified: Tue, 31 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11815
Expires: Wed, 01 Feb 2023 02:41:18 GMT
Date: Tue, 31 Jan 2023 23:24:23 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 0c35c3ec659d3a26ea97e68d787bb043
d97e3672244efec5b7814f2d8a734cd1a9387854
4c946a026114ff05316d92277750facf3d5f5d162839149da0b7fb1a4cff6b5e
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4C946A026114FF05316D92277750FACF3D5F5D162839149DA0B7FB1A4CFF6B5E"
Last-Modified: Mon, 30 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3060
Expires: Wed, 01 Feb 2023 00:15:23 GMT
Date: Tue, 31 Jan 2023 23:24:23 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 30db107dcf4380cef05efea409c2e6a3
96e6a306fbc07299aba64e5c14e2bfca35872fa9
b64051a4a8e346e3c72b2aef77f360a5736ab5e16711d8e0bae3876feaa15b6e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Backoff, Retry-After, Content-Length, Alert, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Tue, 31 Jan 2023 22:43:20 GMT
content-type: application/json
age: 2463
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 09ee4b0fe6cf4ca5ed31b24452338d00
7e62b6e20f0d4737f4a8d94f9818a0883027839e
56da08e18a408d7313de4e598984a251a0ecf85bbba98b421be9aebeb98835af
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "56DA08E18A408D7313DE4E598984A251A0ECF85BBBA98B421BE9AEBEB98835AF"
Last-Modified: Mon, 30 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14784
Expires: Wed, 01 Feb 2023 03:30:47 GMT
Date: Tue, 31 Jan 2023 23:24:23 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: //2qm/1Hz23K3vEj/lMgk/t99/6Bghb0kZz5bqahwSGSjwx/oSZl9qJWK7/J8pJ8Ns9JHVbNSNI=
x-amz-request-id: 48SQQC1DB52T00JJ
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Tue, 31 Jan 2023 22:51:20 GMT
age: 1983
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
123.242.166.4/webosm/index.php
123.242.166.4200 OK 6.9 kB URL HTTP/1.1 123.242.166.4/webosm/index.php
IP 123.242.166.4:0
ASN #38450 Ministry of Infomation Communication Technology
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1539), with CRLF, LF line terminators
Hash ef223891a80693e3e213cdbcb4a60396
bcb75c4bf8b8c6387cee91a2e7e9d26ece23ea52
2f0e8d98af39151388cd79faa9ad8ad93178d19e4ec3819d4b06ed03af500a96
Analyzer Verdict Alert quad9 Sinkholed
GET /webosm/index.php HTTP/1.1
Host: 123.242.166.4
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Date: Tue, 31 Jan 2023 23:24:23 GMT
Server: Apache/2.4.18 (Ubuntu)
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
Set-Cookie: PHPSESSID=12a6jj8aksihq90b2mporsoge7; path=/
my_lang=th; expires=Thu, 02-Mar-2023 23:24:23 GMT; Max-Age=2592000; path=/
counter_date=1; expires=Thu, 02-Mar-2023 23:24:23 GMT; Max-Age=2592000; path=/; domain=123.242.166.4; HttpOnly
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 6883
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=utf-8
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 31 Jan 2023 23:24:23 GMT
content-type: application/json
content-length: 12
access-control-expose-headers: content-type
access-control-allow-credentials: true
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Retry-After, Last-Modified, Cache-Control, Pragma, ETag, Backoff, Content-Type, Alert, Expires
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Tue, 31 Jan 2023 22:49:04 GMT
age: 2119
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
123.242.166.4/webosm/index.php/css/view/index
123.242.166.4200 OK 36 kB URL HTTP/1.1 123.242.166.4/webosm/index.php/css/view/index
IP 123.242.166.4:0
ASN #38450 Ministry of Infomation Communication Technology
File type ASCII text, with very long lines (65536), with no line terminators
Hash 093d42050470b6e2380b13ced63f2ad8
b8349702e622e4e441e27d374f2a57a63fb68e13
2044f996972b0566c723ea9107ba972f3748f229097581a2c6ad790a4eabb7b5
Analyzer Verdict Alert quad9 Sinkholed
GET /webosm/index.php/css/view/index HTTP/1.1
Host: 123.242.166.4
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://123.242.166.4/webosm/index.php
Cookie: PHPSESSID=12a6jj8aksihq90b2mporsoge7; my_lang=th; counter_date=1
HTTP/1.1 200 OK
Date: Tue, 31 Jan 2023 23:24:23 GMT
Server: Apache/2.4.18 (Ubuntu)
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: max-age=31557600
Pragma: no-cache
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 35639
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css; charset=utf-8
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 22b9916fc1fafc9bdc9bb37f9eac8a9a
86f640e134a741a0f906a8e3a0f5c6659dd0e394
a29ee843c8a39551a1507cc6ad949ad509e33aaae8b72c58ac4884bad8b0b38e
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A29EE843C8A39551A1507CC6AD949AD509E33AAAE8B72C58AC4884BAD8B0B38E"
Last-Modified: Sun, 29 Jan 2023 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9827
Expires: Wed, 01 Feb 2023 02:08:11 GMT
Date: Tue, 31 Jan 2023 23:24:24 GMT
Connection: keep-alive
123.242.166.4/webosm/index.php/js/view/index
123.242.166.4200 OK 58 kB URL HTTP/1.1 123.242.166.4/webosm/index.php/js/view/index
IP 123.242.166.4:0
ASN #38450 Ministry of Infomation Communication Technology
File type ASCII text, with very long lines (65536), with no line terminators
Hash ea84a4eb5565334225b7a5e0207b38c3
bb7cdd150c0bde458c2124670bd8aac1104587fc
4524cff87c9e092f390c0c1d7817ac46f96f1ef33607ce2ddab685f5fd55f3aa
Analyzer Verdict Alert quad9 Sinkholed
GET /webosm/index.php/js/view/index HTTP/1.1
Host: 123.242.166.4
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://123.242.166.4/webosm/index.php
Cookie: PHPSESSID=12a6jj8aksihq90b2mporsoge7; my_lang=th; counter_date=1
HTTP/1.1 200 OK
Date: Tue, 31 Jan 2023 23:24:23 GMT
Server: Apache/2.4.18 (Ubuntu)
Set-Cookie: my_lang=th; expires=Thu, 02-Mar-2023 23:24:23 GMT; Max-Age=2592000; path=/
Cache-Control: max-age=31557600
Vary: Accept-Encoding
Content-Encoding: gzip
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: application/javascript; charset=utf-8
www.ocsc.go.th/sites/default/files/field/image/forking-create-02-tn.jpg
104.18.25.40200 OK 38 kB URL HTTP/2 www.ocsc.go.th/sites/default/files/field/image/forking-create-02-tn.jpg
IP 104.18.25.40:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 495x179, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 09d0784e61fd3716d31f70b871a27afe
da692fe46cb2e0a58e8f5fffe4c70d83420b8cc9
d4c9ed9238d21fc24569d61e9c73481543a99b39fa38e57736e2135dc4b46350
GET /sites/default/files/field/image/forking-create-02-tn.jpg HTTP/1.1
Host: www.ocsc.go.th
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://123.242.166.4/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 31 Jan 2023 23:24:24 GMT
content-type: image/webp
content-length: 37578
cache-control: public, max-age=315360000
cf-bgj: imgq:100,h2pri
cf-polished: origFmt=jpeg, origSize=115877
content-disposition: inline; filename="forking-create-02-tn.webp"
etag: "5642e1bf-1c4a5"
expires: Fri, 28 Jan 2033 23:24:24 GMT
last-modified: Wed, 11 Nov 2015 06:35:43 GMT
vary: Accept
cf-cache-status: HIT
accept-ranges: bytes
set-cookie: __cfruid=4e9eb1f883a962a1fe96ab39a1f07ebeff6b25a3-1675207464; path=/; domain=.ocsc.go.th; HttpOnly; Secure; SameSite=None
server: cloudflare
cf-ray: 7926335ac9030b55-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
push.services.mozilla.com/
54.70.68.230101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 54.70.68.230:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: yf+z27F+SiX1vajIH/y10g==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: pjjtloY8gurgdQPZxkq3QZQ0UfQ=
123.242.166.4/webosm/images/stories/banner2_osm.png
123.242.166.4200 OK 18 kB URL HTTP/1.1 123.242.166.4/webosm/images/stories/banner2_osm.png
IP 123.242.166.4:0
ASN #38450 Ministry of Infomation Communication Technology
File type PNG image data, 190 x 60, 8-bit/color RGB, non-interlaced\012- data
Hash 6afb7330a9336822befa49242d078120
27ba03839273e0cb9d5588a292a3f04413cd9471
fff7aaafde44e63235dd04a539fc983a2a4a563b0189bfbcb1a2d8e0553249c4
Analyzer Verdict Alert quad9 Sinkholed
GET /webosm/images/stories/banner2_osm.png HTTP/1.1
Host: 123.242.166.4
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://123.242.166.4/webosm/index.php
Cookie: PHPSESSID=12a6jj8aksihq90b2mporsoge7; my_lang=th; counter_date=1
HTTP/1.1 200 OK
Date: Tue, 31 Jan 2023 23:24:24 GMT
Server: Apache/2.4.18 (Ubuntu)
Last-Modified: Mon, 21 Mar 2011 04:56:06 GMT
ETag: "47b0-49ef6f1fee580"
Accept-Ranges: bytes
Content-Length: 18352
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: image/png
123.242.166.4/webosm/datas/image/text/text-head.png
123.242.166.4200 OK 31 kB URL HTTP/1.1 123.242.166.4/webosm/datas/image/text/text-head.png
IP 123.242.166.4:0
ASN #38450 Ministry of Infomation Communication Technology
File type PNG image data, 450 x 50, 8-bit/color RGBA, non-interlaced\012- data
Hash 5226a844a21346ee9635090619fd68eb
4147d4da3a391301eabd4ee9b07a2400eacc03e3
283dd86f9462c8d7bed586e03e25584ba75f86846590fa46e49ea1d858114b81
Analyzer Verdict Alert quad9 Sinkholed
GET /webosm/datas/image/text/text-head.png HTTP/1.1
Host: 123.242.166.4
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://123.242.166.4/webosm/index.php
Cookie: PHPSESSID=12a6jj8aksihq90b2mporsoge7; my_lang=th; counter_date=1
HTTP/1.1 200 OK
Date: Tue, 31 Jan 2023 23:24:24 GMT
Server: Apache/2.4.18 (Ubuntu)
Last-Modified: Sat, 24 Sep 2022 03:28:01 GMT
ETag: "77d5-5e963e1b94670"
Accept-Ranges: bytes
Content-Length: 30677
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: image/png
123.242.166.4/webosm/xhr.php?1675207483107
123.242.166.4200 OK 0 B URL HTTP/1.1 123.242.166.4/webosm/xhr.php?1675207483107
IP 123.242.166.4:0
ASN #38450 Ministry of Infomation Communication Technology
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
POST /webosm/xhr.php?1675207483107 HTTP/1.1
Host: 123.242.166.4
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,text/plain,application/xml,text/xml,application/json,text/javascript
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
X-Requested-With: XMLHttpRequest
Content-Type: application/x-www-form-urlencoded;charset=UTF-8
Content-Length: 91
Origin: http://123.242.166.4
Connection: keep-alive
Referer: http://123.242.166.4/webosm/index.php
Cookie: PHPSESSID=12a6jj8aksihq90b2mporsoge7; my_lang=th; counter_date=1
HTTP/1.1 200 OK
Date: Tue, 31 Jan 2023 23:24:24 GMT
Server: Apache/2.4.18 (Ubuntu)
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
Set-Cookie: my_lang=th; expires=Thu, 02-Mar-2023 23:24:24 GMT; Max-Age=2592000; path=/
Content-Length: 0
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/html; charset=utf-8
123.242.166.4/webosm/images/stories/banner2_sapathai.png
123.242.166.4200 OK 16 kB URL HTTP/1.1 123.242.166.4/webosm/images/stories/banner2_sapathai.png
IP 123.242.166.4:0
ASN #38450 Ministry of Infomation Communication Technology
File type PNG image data, 190 x 60, 8-bit/color RGB, non-interlaced\012- data
Hash 0cf42648d0a9c5d2cc838593ee9ea300
a459674105e9cebf4128fbe875354eb2a4a633e6
2ce7fe9f36484a89f6cf88ad09c454f7eda79148392f376e2639cb32a59fa0ac
Analyzer Verdict Alert quad9 Sinkholed
GET /webosm/images/stories/banner2_sapathai.png HTTP/1.1
Host: 123.242.166.4
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://123.242.166.4/webosm/index.php
Cookie: PHPSESSID=12a6jj8aksihq90b2mporsoge7; my_lang=th; counter_date=1
HTTP/1.1 200 OK
Date: Tue, 31 Jan 2023 23:24:24 GMT
Server: Apache/2.4.18 (Ubuntu)
Last-Modified: Mon, 21 Mar 2011 04:56:20 GMT
ETag: "3eb0-49ef6f2d48500"
Accept-Ranges: bytes
Content-Length: 16048
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: image/png
123.242.166.4/webosm/xhr.php?1675207483117
123.242.166.4200 OK 2 B URL HTTP/1.1 123.242.166.4/webosm/xhr.php?1675207483117
IP 123.242.166.4:0
ASN #38450 Ministry of Infomation Communication Technology
File type JSON data\012- , ASCII text, with no line terminators
Hash d751713988987e9331980363e24189ce
97d170e1550eee4afc0af065b78cda302a97674c
4f53cda18c2baa0c0354bb5f9a3ecbe5ed12ab4d8e11ba873c2f11161202b945
Analyzer Verdict Alert quad9 Sinkholed
POST /webosm/xhr.php?1675207483117 HTTP/1.1
Host: 123.242.166.4
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,text/plain,application/xml,text/xml,application/json,text/javascript
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
X-Requested-With: XMLHttpRequest
Content-Type: application/x-www-form-urlencoded;charset=UTF-8
Content-Length: 80
Origin: http://123.242.166.4
Connection: keep-alive
Referer: http://123.242.166.4/webosm/index.php
Cookie: PHPSESSID=12a6jj8aksihq90b2mporsoge7; my_lang=th; counter_date=1
HTTP/1.1 200 OK
Date: Tue, 31 Jan 2023 23:24:24 GMT
Server: Apache/2.4.18 (Ubuntu)
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
Content-Length: 2
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: text/html; charset=utf-8
123.242.166.4/webosm/images/pc.png
123.242.166.4200 OK 17 kB URL HTTP/1.1 123.242.166.4/webosm/images/pc.png
IP 123.242.166.4:0
ASN #38450 Ministry of Infomation Communication Technology
File type PNG image data, 220 x 60, 8-bit/color RGB, non-interlaced\012- data
Hash 9cfa812ad19b1f995e931d72df9e572a
71929e58e4bad2f6e6e83ba108c950aa4343c566
cdd2a5e2a68831f63b7e012649c625c6bbdfd41e61818d3e0a84d5b74046739a
Analyzer Verdict Alert quad9 Sinkholed
GET /webosm/images/pc.png HTTP/1.1
Host: 123.242.166.4
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://123.242.166.4/webosm/index.php
Cookie: PHPSESSID=12a6jj8aksihq90b2mporsoge7; my_lang=th; counter_date=1
HTTP/1.1 200 OK
Date: Tue, 31 Jan 2023 23:24:24 GMT
Server: Apache/2.4.18 (Ubuntu)
Last-Modified: Wed, 23 Jul 2014 04:10:24 GMT
ETag: "421e-4fed484f4cc00"
Accept-Ranges: bytes
Content-Length: 16926
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: image/png
123.242.166.4/webosm/images/ut.png
123.242.166.4200 OK 18 kB URL HTTP/1.1 123.242.166.4/webosm/images/ut.png
IP 123.242.166.4:0
ASN #38450 Ministry of Infomation Communication Technology
File type PNG image data, 220 x 60, 8-bit/color RGB, non-interlaced\012- data
Hash 927c3c59bee12d4487a5b2d960d4ef06
8b1a0b342c16b8daccad50bdb9b66b72c20dc988
2b86e1fdca562e88f091d6ddff8f6cf566c64d6c74800008e5888b1f2e2a4e00
Analyzer Verdict Alert quad9 Sinkholed
GET /webosm/images/ut.png HTTP/1.1
Host: 123.242.166.4
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://123.242.166.4/webosm/index.php
Cookie: PHPSESSID=12a6jj8aksihq90b2mporsoge7; my_lang=th; counter_date=1
HTTP/1.1 200 OK
Date: Tue, 31 Jan 2023 23:24:24 GMT
Server: Apache/2.4.18 (Ubuntu)
Last-Modified: Wed, 23 Jul 2014 04:25:30 GMT
ETag: "45e6-4fed4baf54280"
Accept-Ranges: bytes
Content-Length: 17894
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: image/png
123.242.166.4/webosm/images/kp.png
123.242.166.4200 OK 14 kB URL HTTP/1.1 123.242.166.4/webosm/images/kp.png
IP 123.242.166.4:0
ASN #38450 Ministry of Infomation Communication Technology
File type PNG image data, 220 x 60, 8-bit/color RGB, non-interlaced\012- data
Hash 2bbf421cc2ff5d30dd50863509a6c7d2
8223e292cc0c58329d8ce67926b364665f319484
7d8b782539d35a2604e9a4330767ea6f82a3158f5ddeec14414123bd0ede5721
Analyzer Verdict Alert quad9 Sinkholed
GET /webosm/images/kp.png HTTP/1.1
Host: 123.242.166.4
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://123.242.166.4/webosm/index.php
Cookie: PHPSESSID=12a6jj8aksihq90b2mporsoge7; my_lang=th; counter_date=1
HTTP/1.1 200 OK
Date: Tue, 31 Jan 2023 23:24:24 GMT
Server: Apache/2.4.18 (Ubuntu)
Last-Modified: Thu, 24 Jul 2014 07:03:40 GMT
ETag: "35f0-4feeb0e728b00"
Accept-Ranges: bytes
Content-Length: 13808
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: image/png
123.242.166.4/webosm/images/nw.png
123.242.166.4200 OK 16 kB URL HTTP/1.1 123.242.166.4/webosm/images/nw.png
IP 123.242.166.4:0
ASN #38450 Ministry of Infomation Communication Technology
File type PNG image data, 220 x 60, 8-bit/color RGB, non-interlaced\012- data
Hash c3020ceb1c63382da3890cf0a552cf95
b81a3dd1893829d2db455a5dc127da004e4f4f9a
1507fc8d5f76ceae4991acd151fd8b2f5983781cb89b7bab702edc3c2cf95ccf
Analyzer Verdict Alert quad9 Sinkholed
GET /webosm/images/nw.png HTTP/1.1
Host: 123.242.166.4
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://123.242.166.4/webosm/index.php
Cookie: PHPSESSID=12a6jj8aksihq90b2mporsoge7; my_lang=th; counter_date=1
HTTP/1.1 200 OK
Date: Tue, 31 Jan 2023 23:24:24 GMT
Server: Apache/2.4.18 (Ubuntu)
Last-Modified: Wed, 23 Jul 2014 04:04:10 GMT
ETag: "4082-4fed46eaa0280"
Accept-Ranges: bytes
Content-Length: 16514
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: image/png
123.242.166.4/webosm/skin/m-green/img/bg.gif
123.242.166.4200 OK 1.1 kB URL HTTP/1.1 123.242.166.4/webosm/skin/m-green/img/bg.gif
IP 123.242.166.4:0
ASN #38450 Ministry of Infomation Communication Technology
File type GIF image data, version 89a, 5 x 5\012- data
Hash 1e742b7317e1ac2a48a8110365cdb1d1
6b7f8c8bb2a89052ab7a4cd4b1a415f96afc4156
182cc782f92ad7f9470a6f3976ad6ed0361c65a8f77461c3a81b5b754f7e0af4
Analyzer Verdict Alert quad9 Sinkholed
GET /webosm/skin/m-green/img/bg.gif HTTP/1.1
Host: 123.242.166.4
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://123.242.166.4/webosm/index.php/css/view/index
Cookie: PHPSESSID=12a6jj8aksihq90b2mporsoge7; my_lang=th; counter_date=1
HTTP/1.1 200 OK
Date: Tue, 31 Jan 2023 23:24:24 GMT
Server: Apache/2.4.18 (Ubuntu)
Last-Modified: Fri, 21 Oct 2016 14:49:20 GMT
ETag: "460-53f6125ac9c00"
Accept-Ranges: bytes
Content-Length: 1120
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: image/gif
123.242.166.4/webosm/skin/m-green/img/menu_bg.png
123.242.166.4200 OK 3.3 kB URL HTTP/1.1 123.242.166.4/webosm/skin/m-green/img/menu_bg.png
IP 123.242.166.4:0
ASN #38450 Ministry of Infomation Communication Technology
File type PNG image data, 917 x 35, 8-bit/color RGB, non-interlaced\012- data
Hash a0a1feab3aebb023c63e42a2d65bf9f7
f5ed0ab0836939f228a2078d903950fea920c74b
b3d1478d02117056d5a015670f6e7b5301cb507e7a4ff40e1044b0d4aea9947b
Analyzer Verdict Alert quad9 Sinkholed
GET /webosm/skin/m-green/img/menu_bg.png HTTP/1.1
Host: 123.242.166.4
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://123.242.166.4/webosm/index.php/css/view/index
Cookie: PHPSESSID=12a6jj8aksihq90b2mporsoge7; my_lang=th; counter_date=1
HTTP/1.1 200 OK
Date: Tue, 31 Jan 2023 23:24:24 GMT
Server: Apache/2.4.18 (Ubuntu)
Last-Modified: Fri, 21 Oct 2016 14:49:20 GMT
ETag: "ce5-53f6125ac9c00"
Accept-Ranges: bytes
Content-Length: 3301
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: image/png
123.242.166.4/webosm/language/th.gif
123.242.166.4200 OK 360 B URL HTTP/1.1 123.242.166.4/webosm/language/th.gif
IP 123.242.166.4:0
ASN #38450 Ministry of Infomation Communication Technology
File type GIF image data, version 89a, 16 x 11\012- data
Hash 0340d7837dc7c1986cc6224523d5cd35
0bea1914eb170760f8b9e4e7e42ee3a33f9fabd5
3c99a77aab3aafe1e4f706109c0e6651fd1214744614d2e3a91eb7c0b6ed24cc
Analyzer Verdict Alert quad9 Sinkholed
GET /webosm/language/th.gif HTTP/1.1
Host: 123.242.166.4
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://123.242.166.4/webosm/index.php
Cookie: PHPSESSID=12a6jj8aksihq90b2mporsoge7; my_lang=th; counter_date=1
HTTP/1.1 200 OK
Date: Tue, 31 Jan 2023 23:24:24 GMT
Server: Apache/2.4.18 (Ubuntu)
Last-Modified: Sat, 24 Sep 2022 01:01:44 GMT
ETag: "168-5e961d689ae00"
Accept-Ranges: bytes
Content-Length: 360
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: image/gif
123.242.166.4/webosm/skin/fonts/icomoon.ttf
123.242.166.4200 OK 53 kB URL HTTP/1.1 123.242.166.4/webosm/skin/fonts/icomoon.ttf
IP 123.242.166.4:0
ASN #38450 Ministry of Infomation Communication Technology
File type TrueType Font data, 11 tables, 1st "OS/2", 14 names, Macintosh, type 1 string, icomoon \012- data
Hash 43868a041622232d89f20220c5415dd8
bef086a938b8d0f73014cedd898775b08b4b4ff9
475d2681cff2fd0b60ec7e5a9ae2802723456f05a46df626945b8ef5c4d70fb3
Analyzer Verdict Alert quad9 Sinkholed
GET /webosm/skin/fonts/icomoon.ttf HTTP/1.1
Host: 123.242.166.4
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://123.242.166.4/webosm/index.php/css/view/index
Cookie: PHPSESSID=12a6jj8aksihq90b2mporsoge7; my_lang=th; counter_date=1
HTTP/1.1 200 OK
Date: Tue, 31 Jan 2023 23:24:24 GMT
Server: Apache/2.4.18 (Ubuntu)
Last-Modified: Sat, 24 Sep 2022 01:01:44 GMT
ETag: "cdac-5e961d689ae00"
Accept-Ranges: bytes
Content-Length: 52652
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/font-sfnt
123.242.166.4/webosm/images/thailowernorth.jpg
123.242.166.4200 OK 31 kB URL HTTP/1.1 123.242.166.4/webosm/images/thailowernorth.jpg
IP 123.242.166.4:0
ASN #38450 Ministry of Infomation Communication Technology
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 80", baseline, precision 8, 600x171, components 3\012- data
Hash d3879693fa9f0f40bcf5340e2bcb72b4
4ff1324b8fa94f965df34973dd4641e688763ade
68f1b16ad5aa79f95fe79879db1219e6b935e66d833c8ec0f45e03a48b200db0
Analyzer Verdict Alert quad9 Sinkholed
GET /webosm/images/thailowernorth.jpg HTTP/1.1
Host: 123.242.166.4
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://123.242.166.4/webosm/index.php
Cookie: PHPSESSID=12a6jj8aksihq90b2mporsoge7; my_lang=th; counter_date=1
HTTP/1.1 200 OK
Date: Tue, 31 Jan 2023 23:24:25 GMT
Server: Apache/2.4.18 (Ubuntu)
Last-Modified: Fri, 29 May 2015 06:29:25 GMT
ETag: "7ab1-5173298ec9b40"
Accept-Ranges: bytes
Content-Length: 31409
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: image/jpeg
123.242.166.4/webosm/datas/image/logo.jpg
123.242.166.4200 OK 160 kB URL HTTP/1.1 123.242.166.4/webosm/datas/image/logo.jpg
IP 123.242.166.4:0
ASN #38450 Ministry of Infomation Communication Technology
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CC (Windows), datetime=2018:10:24 10:22:06], baseline, precision 8, 1000x200, components 3\012- data
Size 160 kB (159880 bytes)
Hash 86e6db8ce1279ee9930def1f3f79666e
9ddc766e6c0ae7b2de4d56012b1211ef217fc724
5cf5533107d50f412478e57694e4341602a86e0b529e9acc530bfbd90cf5ac52
Analyzer Verdict Alert quad9 Sinkholed
GET /webosm/datas/image/logo.jpg HTTP/1.1
Host: 123.242.166.4
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://123.242.166.4/webosm/index.php
Cookie: PHPSESSID=12a6jj8aksihq90b2mporsoge7; my_lang=th; counter_date=1
HTTP/1.1 200 OK
Date: Tue, 31 Jan 2023 23:24:24 GMT
Server: Apache/2.4.18 (Ubuntu)
Last-Modified: Sat, 24 Sep 2022 03:28:01 GMT
ETag: "27088-5e963e1b965b0"
Accept-Ranges: bytes
Content-Length: 159880
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: image/jpeg
123.242.166.4/webosm/images/stories/aec-knowledge.jpg
123.242.166.4200 OK 23 kB URL HTTP/1.1 123.242.166.4/webosm/images/stories/aec-knowledge.jpg
IP 123.242.166.4:0
ASN #38450 Ministry of Infomation Communication Technology
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=8, orientation=upper-left, xresolution=110, yresolution=118, resolutionunit=2, software=ACDSee 16, datetime=2014:07:24 08:47:26], comment: "Image Resized at http://www.shrinkpictures.com", baseline, precision 8, 450x70, components 3\012- data
Hash 2a767c235f6c42eff237abb70ef01022
53792b1012eff98085ef4048de220b98d7dc7c01
ced656c781c8e49088e9f241c38f5aa967a6fbd9ea214e53a699ac92c05e4f4a
Analyzer Verdict Alert quad9 Sinkholed
GET /webosm/images/stories/aec-knowledge.jpg HTTP/1.1
Host: 123.242.166.4
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://123.242.166.4/webosm/index.php
Cookie: PHPSESSID=12a6jj8aksihq90b2mporsoge7; my_lang=th; counter_date=1
HTTP/1.1 200 OK
Date: Tue, 31 Jan 2023 23:24:25 GMT
Server: Apache/2.4.18 (Ubuntu)
Last-Modified: Thu, 24 Jul 2014 01:47:26 GMT
ETag: "5ac3-4fee6a3824780"
Accept-Ranges: bytes
Content-Length: 23235
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: image/jpeg
123.242.166.4/webosm/datas/image/1633062261.jpg
123.242.166.4200 OK 144 kB URL HTTP/1.1 123.242.166.4/webosm/datas/image/1633062261.jpg
IP 123.242.166.4:0
ASN #38450 Ministry of Infomation Communication Technology
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 621x1014, components 3\012- data
Size 144 kB (144513 bytes)
Hash 94232a07f70e0b6cc5c451da1de2065a
4ee43dba40519464210821403c2078477b2bcd70
9be9c6fc060c352f7de3ba9c5fbfd68a2d47162c25d32ffa0fdeee64b4f2e7b6
Analyzer Verdict Alert quad9 Sinkholed
GET /webosm/datas/image/1633062261.jpg HTTP/1.1
Host: 123.242.166.4
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://123.242.166.4/webosm/index.php
Cookie: PHPSESSID=12a6jj8aksihq90b2mporsoge7; my_lang=th; counter_date=1
HTTP/1.1 200 OK
Date: Tue, 31 Jan 2023 23:24:24 GMT
Server: Apache/2.4.18 (Ubuntu)
Last-Modified: Sat, 24 Sep 2022 03:28:01 GMT
ETag: "23481-5e963e1b936d0"
Accept-Ranges: bytes
Content-Length: 144513
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: image/jpeg
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 43bc5afe1d7330aa521e0efc78185a92
f53e9daa0a32e0acf7a10d9494fb383c1d039305
429d5a3a918137cae61e9dee0f05b0d5b4c799517aa6ae30e041a2a3e7f05cac
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "429D5A3A918137CAE61E9DEE0F05B0D5B4C799517AA6AE30E041A2A3E7F05CAC"
Last-Modified: Mon, 30 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3090
Expires: Wed, 01 Feb 2023 00:15:55 GMT
Date: Tue, 31 Jan 2023 23:24:25 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 43bc5afe1d7330aa521e0efc78185a92
f53e9daa0a32e0acf7a10d9494fb383c1d039305
429d5a3a918137cae61e9dee0f05b0d5b4c799517aa6ae30e041a2a3e7f05cac
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "429D5A3A918137CAE61E9DEE0F05B0D5B4C799517AA6AE30E041A2A3E7F05CAC"
Last-Modified: Mon, 30 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3090
Expires: Wed, 01 Feb 2023 00:15:55 GMT
Date: Tue, 31 Jan 2023 23:24:25 GMT
Connection: keep-alive
123.242.166.4/webosm/datas/image/1633314445.jpg
123.242.166.4200 OK 151 kB URL HTTP/1.1 123.242.166.4/webosm/datas/image/1633314445.jpg
IP 123.242.166.4:0
ASN #38450 Ministry of Infomation Communication Technology
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=2, orientation=upper-left], baseline, precision 8, 621x1014, components 3\012- data
Size 151 kB (151071 bytes)
Hash 752e79061fa724eae8b11ded9c41c7ff
d1ac25fa6a121abf1785b11403ab32150301de5b
069295f25e1a1045a7dcb773b0b51e872f42774c5e5e848e2635390a6599f8b6
Analyzer Verdict Alert quad9 Sinkholed
GET /webosm/datas/image/1633314445.jpg HTTP/1.1
Host: 123.242.166.4
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://123.242.166.4/webosm/index.php
Cookie: PHPSESSID=12a6jj8aksihq90b2mporsoge7; my_lang=th; counter_date=1
HTTP/1.1 200 OK
Date: Tue, 31 Jan 2023 23:24:24 GMT
Server: Apache/2.4.18 (Ubuntu)
Last-Modified: Sat, 24 Sep 2022 03:28:01 GMT
ETag: "24e1f-5e963e1b95610"
Accept-Ranges: bytes
Content-Length: 151071
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: image/jpeg
ocsp.sectigo.com/
104.18.32.68200 OK 472 B IP 104.18.32.68:0
Hash e3b84fef06c3d73e3dbe964007cb0c63
488993a4ba4be8567fba21480f5df479ba7fa9a9
c72650a4a20dfc7928b8960fef08b23c84ae2ec9138f326b3349fff522422499
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 31 Jan 2023 23:24:25 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Sat, 28 Jan 2023 23:30:17 GMT
Expires: Sat, 04 Feb 2023 23:30:16 GMT
Etag: "488993a4ba4be8567fba21480f5df479ba7fa9a9"
Cache-Control: max-age=345350,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb2
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 792633633b660b65-OSL
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 43bc5afe1d7330aa521e0efc78185a92
f53e9daa0a32e0acf7a10d9494fb383c1d039305
429d5a3a918137cae61e9dee0f05b0d5b4c799517aa6ae30e041a2a3e7f05cac
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "429D5A3A918137CAE61E9DEE0F05B0D5B4C799517AA6AE30E041A2A3E7F05CAC"
Last-Modified: Mon, 30 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3090
Expires: Wed, 01 Feb 2023 00:15:55 GMT
Date: Tue, 31 Jan 2023 23:24:25 GMT
Connection: keep-alive
123.242.166.4/webosm/datas/image/text/text01.png
123.242.166.4200 OK 26 kB URL HTTP/1.1 123.242.166.4/webosm/datas/image/text/text01.png
IP 123.242.166.4:0
ASN #38450 Ministry of Infomation Communication Technology
File type PNG image data, 450 x 50, 8-bit/color RGBA, non-interlaced\012- data
Hash c87d9e929c0beb1be525a9a375cc3320
d205c1dac1fae8321a0d5436c0859f21cbf433a3
7a8cf29689866d35e2dc864cfcaf250b69d7cdef9dc41730882afd6249a5451f
Analyzer Verdict Alert quad9 Sinkholed
GET /webosm/datas/image/text/text01.png HTTP/1.1
Host: 123.242.166.4
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://123.242.166.4/webosm/index.php
Cookie: PHPSESSID=12a6jj8aksihq90b2mporsoge7; my_lang=th; counter_date=1
HTTP/1.1 200 OK
Date: Tue, 31 Jan 2023 23:24:25 GMT
Server: Apache/2.4.18 (Ubuntu)
Last-Modified: Sat, 24 Sep 2022 03:28:01 GMT
ETag: "6659-5e963e1b94670"
Accept-Ranges: bytes
Content-Length: 26201
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: image/png
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbaa9536b-a4e6-42f5-99dd-75298eecbbb1.jpeg
34.120.237.76200 OK 16 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbaa9536b-a4e6-42f5-99dd-75298eecbbb1.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash a4392f298c9e98515493f1235810838f
b89eebf2b8adac69487262100b07da8bc171ecf7
b368d87d3a0fe4e1a8ddc82bed704b3056ad2874b8d325111b399b18807c1e5e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbaa9536b-a4e6-42f5-99dd-75298eecbbb1.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 15656
x-amzn-requestid: 6723d22f-8b16-4fb2-af92-9b3257fc2a1d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fi3bIHpRoAMFRYQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d76c47-03b1c6646f63ba716a6298e1;Sampled=0
x-amzn-remapped-date: Mon, 30 Jan 2023 07:05:43 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: fLrUWOhE6x_v3sqe6kr1hacSgt9H53ld51XXKvh7dL04gc-NDJKmOg==
via: 1.1 c34da255183aa208dd1c722ff211f9b2.cloudfront.net (CloudFront), 1.1 324a68a6c25ee50d774953f3e15a611c.cloudfront.net (CloudFront), 1.1 google
date: Tue, 31 Jan 2023 07:25:12 GMT
age: 57553
etag: "b89eebf2b8adac69487262100b07da8bc171ecf7"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb0378a78-c173-4036-ab09-812b1651c606.jpeg
34.120.237.76200 OK 8.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb0378a78-c173-4036-ab09-812b1651c606.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 85cde231b700eec450e0611b97742a43
c2c6279d74efdcceb319d6943cbcb9d1d1b686ca
d52297e17f93932aa7c99ae734d4b68f3b9b09b9938db95ecc96bac9f3bb588c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb0378a78-c173-4036-ab09-812b1651c606.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8542
x-amzn-requestid: ad485963-7e2e-410d-ad1c-6386fb738f18
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: foJaVHXcoAMFuhw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d9890e-12d7e4502d1fc1511b6f2260;Sampled=0
x-amzn-remapped-date: Tue, 31 Jan 2023 21:33:02 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: M1OD8v_jLlitIjUwxyZSke4kBfIFy0C_tbDQAHe5iDBrm_Fha7uwFg==
via: 1.1 4dde8ec6d6c12741888c2d3a059d4a2e.cloudfront.net (CloudFront), 1.1 4f3feb5c4393987d42d1971d404d7cea.cloudfront.net (CloudFront), 1.1 google
date: Tue, 31 Jan 2023 21:51:28 GMT
etag: "c2c6279d74efdcceb319d6943cbcb9d1d1b686ca"
content-type: image/jpeg
age: 5577
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd3e99cd9-0681-47a5-bd03-80ff73a169b8.jpeg
34.120.237.76200 OK 15 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd3e99cd9-0681-47a5-bd03-80ff73a169b8.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 1ad49e3ca0f9935c7ff8f922039e5864
6382ee41cb26e42293e1ba5d9f0d3af64ddb672c
7a838e4e1aff60581fbf939920955ea67dae8fb3fa4e31572787c773404d071e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd3e99cd9-0681-47a5-bd03-80ff73a169b8.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 14809
x-amzn-requestid: fc920367-4bb1-40fd-9f1d-1d50b27cfc77
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: foJaXEQEoAMF3Zw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d9890e-0f70e0252fc3a3e5248bb372;Sampled=0
x-amzn-remapped-date: Tue, 31 Jan 2023 21:33:02 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 8SGqBRt27x1A3p1Z55UzPW8myS3BPu1ows_X76xLB8KY5xNnfs1pUw==
via: 1.1 1cc6ed0d2d3dd9529ce544f9dfe61a52.cloudfront.net (CloudFront), 1.1 e4d3d5aafc7d7d582423c073065ab562.cloudfront.net (CloudFront), 1.1 google
date: Tue, 31 Jan 2023 21:45:15 GMT
age: 5950
etag: "6382ee41cb26e42293e1ba5d9f0d3af64ddb672c"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6a7557cc-bf07-438f-8710-ba1b44e30270.jpeg
34.120.237.76200 OK 5.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6a7557cc-bf07-438f-8710-ba1b44e30270.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash fec00239dceb510f051645ae93dac5f2
6524837e65b070341f9c8f4589492876ae293f17
d00272557742c57d084ab7e46b9b1722b28b869ae9c63e2169e7124e5107c009
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6a7557cc-bf07-438f-8710-ba1b44e30270.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5583
x-amzn-requestid: f37b4455-c9fb-46e4-a287-f40c1138a77a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fflQWGqCIAMFvjA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d61c02-01d34b0d3a9a0101555081f5;Sampled=0
x-amzn-remapped-date: Sun, 29 Jan 2023 07:10:58 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: KTfQ_pc9OU0WnnQlmhjYlFAInn2Cwz6xNGtjL3FtP5XJX8vHTidkoA==
via: 1.1 da5952aa802df39905ceb16592e9698a.cloudfront.net (CloudFront), 1.1 e66162aafd55b64ba1478ff7105150fa.cloudfront.net (CloudFront), 1.1 google
date: Tue, 31 Jan 2023 07:37:27 GMT
age: 56818
etag: "6524837e65b070341f9c8f4589492876ae293f17"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc6718344-fcb4-4366-9239-8921034a7114.jpeg
34.120.237.76200 OK 13 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc6718344-fcb4-4366-9239-8921034a7114.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 8e0be7db14d930d6227443314bcd1747
4e42e2ad289dfe5bd9a55d34fd768f7532bdf71d
baedfbdb08a67f9ff4c698f7e65b08d7e4c5078d0a4233e6bff529b44812735a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc6718344-fcb4-4366-9239-8921034a7114.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12967
x-amzn-requestid: cb487bb4-9de3-42f6-9c1e-482c712cf80f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fcRasEBfoAMFp3g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d4c911-218f03e61f9d25b74dddbc7e;Sampled=0
x-amzn-remapped-date: Sat, 28 Jan 2023 07:04:49 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: AwcqjAd0sV06M3tVkQvR0UNKrSlIhGv5_FbOdPa6Cw7Tjqiw6f6-QA==
via: 1.1 01c28b52813cd0e82f810c492808b142.cloudfront.net (CloudFront), 1.1 6172bb1a5d00a3b06ae3700570ebe116.cloudfront.net (CloudFront), 1.1 google
date: Tue, 31 Jan 2023 21:51:30 GMT
age: 5575
etag: "4e42e2ad289dfe5bd9a55d34fd768f7532bdf71d"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe2d02739-590e-4a37-9ca5-c27003f9e416.jpeg
34.120.237.76200 OK 16 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe2d02739-590e-4a37-9ca5-c27003f9e416.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 4bb3a6fba496d54cdbbccaf2b9600386
8e30002699e9fbf2047f9ac11a36d2175fc9c591
927bf3a04b011b4e3bc8d8772a3d5813507f7f523312d43627767b64615562f3
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe2d02739-590e-4a37-9ca5-c27003f9e416.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 15857
x-amzn-requestid: cfe36b9d-34f6-4f3f-896e-e70ec45c4a04
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fmJ2JGGWoAMFSLA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d8bcf3-0dd68dd778b9aba268a129b0;Sampled=0
x-amzn-remapped-date: Tue, 31 Jan 2023 07:02:11 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: pU_436f27nMZKPxZZWqZekERHFTvcG5NT5p_CYEXHRPtIWjDtSA-uA==
via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 fda3b2797d2719576f6b916583a28e52.cloudfront.net (CloudFront), 1.1 google
date: Tue, 31 Jan 2023 07:18:42 GMT
age: 57943
etag: "8e30002699e9fbf2047f9ac11a36d2175fc9c591"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
123.242.166.4/webosm/datas/image/1549948430.png
123.242.166.4200 OK 4.6 kB URL HTTP/1.1 123.242.166.4/webosm/datas/image/1549948430.png
IP 123.242.166.4:0
ASN #38450 Ministry of Infomation Communication Technology
File type PNG image data, 84 x 22, 8-bit/color RGBA, non-interlaced\012- data
Hash 4e7170dbb96fdaad83f0d1d622ed6adf
d1f0bc78fe6c69723540c5f9baacb3ec93ae0555
89a73f691ba9fc8a08946a47bcf421b45556bf445758137d3c607239fe1bde92
Analyzer Verdict Alert quad9 Sinkholed
GET /webosm/datas/image/1549948430.png HTTP/1.1
Host: 123.242.166.4
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://123.242.166.4/webosm/index.php
Cookie: PHPSESSID=12a6jj8aksihq90b2mporsoge7; my_lang=th; counter_date=1
HTTP/1.1 200 OK
Date: Tue, 31 Jan 2023 23:24:25 GMT
Server: Apache/2.4.18 (Ubuntu)
Last-Modified: Sat, 24 Sep 2022 03:28:01 GMT
ETag: "1226-5e963e1b984f0"
Accept-Ranges: bytes
Content-Length: 4646
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: image/png
thahinc.psru.ac.th/server.php?c=LGhhY2tzZXJ2aWNl&w=220&h=72
202.29.80.144200 OK 564 B URL HTTP/1.1 thahinc.psru.ac.th/server.php?c=LGhhY2tzZXJ2aWNl&w=220&h=72
IP 202.29.80.144:0
ASN #137241 PibulSongkramRajabhat University
File type HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 4aac0dd9add76a8ae4737f6a1393b3e4
d47dc0e6fe8b67535867bdb90f322dd8ddea0253
a5d474b9e5f71958e635aa6124a494242252ffd849811d62d3c8a2de523d8a15
GET /server.php?c=LGhhY2tzZXJ2aWNl&w=220&h=72 HTTP/1.1
Host: thahinc.psru.ac.th
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Origin: http://123.242.166.4
Connection: keep-alive
Referer: http://123.242.166.4/
HTTP/1.1 200 OK
Date: Tue, 31 Jan 2023 23:20:53 GMT
Server: Apache/2.4.18 (FreeBSD) OpenSSL/1.0.1s-freebsd PHP/5.5.32
X-Powered-By: PHP/5.5.32
Access-Control-Allow-Origin: *
Content-Length: 564
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html
123.242.166.4/webosm/datas/image/text/text02.png
123.242.166.4200 OK 26 kB URL HTTP/1.1 123.242.166.4/webosm/datas/image/text/text02.png
IP 123.242.166.4:0
ASN #38450 Ministry of Infomation Communication Technology
File type PNG image data, 450 x 50, 8-bit/color RGBA, non-interlaced\012- data
Hash 1bd9b42680190a8ac7400543b2e8b38e
95133010aa3e734296d0d53d6a3ff90d6cc536e5
0db7d4056b487c8738e8847043f1a6c113f0c73b6ae70693dfc1ca9368f92211
Analyzer Verdict Alert quad9 Sinkholed
GET /webosm/datas/image/text/text02.png HTTP/1.1
Host: 123.242.166.4
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://123.242.166.4/webosm/index.php
Cookie: PHPSESSID=12a6jj8aksihq90b2mporsoge7; my_lang=th; counter_date=1
HTTP/1.1 200 OK
Date: Tue, 31 Jan 2023 23:24:25 GMT
Server: Apache/2.4.18 (Ubuntu)
Last-Modified: Sat, 24 Sep 2022 03:28:01 GMT
ETag: "6416-5e963e1b94670"
Accept-Ranges: bytes
Content-Length: 25622
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: image/png
123.242.166.4/webosm/datas/image/1664867681.jpg
123.242.166.4200 OK 152 kB URL HTTP/1.1 123.242.166.4/webosm/datas/image/1664867681.jpg
IP 123.242.166.4:0
ASN #38450 Ministry of Infomation Communication Technology
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=12, height=1014, bps=0, PhotometricIntepretation=RGB, orientation=upper-left, width=621], baseline, precision 8, 621x1014, components 3\012- data
Size 152 kB (151918 bytes)
Hash 0883d6a729b6ef3fc24af138d8c3ea75
e23fee795a0e64a5ff2ef704b2f5b501a9c2e345
4475cf21ab3254a68cf7fd82860fe759ab757ccd16d640c80907f3eb5792f778
Analyzer Verdict Alert quad9 Sinkholed
GET /webosm/datas/image/1664867681.jpg HTTP/1.1
Host: 123.242.166.4
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://123.242.166.4/webosm/index.php
Cookie: PHPSESSID=12a6jj8aksihq90b2mporsoge7; my_lang=th; counter_date=1
HTTP/1.1 200 OK
Date: Tue, 31 Jan 2023 23:24:24 GMT
Server: Apache/2.4.18 (Ubuntu)
Last-Modified: Tue, 04 Oct 2022 07:14:41 GMT
ETag: "2516e-5ea3036c016a5"
Accept-Ranges: bytes
Content-Length: 151918
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: image/jpeg
123.242.166.4/webosm/datas/image/1670914215.jpg
123.242.166.4200 OK 425 kB URL HTTP/1.1 123.242.166.4/webosm/datas/image/1670914215.jpg
IP 123.242.166.4:0
ASN #38450 Ministry of Infomation Communication Technology
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=12, height=1014, bps=0, PhotometricIntepretation=RGB, orientation=upper-left, width=621], baseline, precision 8, 621x1014, components 3\012- data
Size 425 kB (425050 bytes)
Hash 2c523ec681b71af7cea56e7466d3087f
06d8346e89e181092b30a4bfe3a572a25e561eff
231a809422e0db5fe2c193559c562b7b280667afb31ed68d34699c19f8498edb
Analyzer Verdict Alert quad9 Sinkholed
GET /webosm/datas/image/1670914215.jpg HTTP/1.1
Host: 123.242.166.4
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://123.242.166.4/webosm/index.php
Cookie: PHPSESSID=12a6jj8aksihq90b2mporsoge7; my_lang=th; counter_date=1
HTTP/1.1 200 OK
Date: Tue, 31 Jan 2023 23:24:24 GMT
Server: Apache/2.4.18 (Ubuntu)
Last-Modified: Tue, 13 Dec 2022 06:50:15 GMT
ETag: "67c5a-5efb0083ea156"
Accept-Ranges: bytes
Content-Length: 425050
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: image/jpeg
123.242.166.4/webosm/datas/image/text/text03.png
123.242.166.4200 OK 25 kB URL HTTP/1.1 123.242.166.4/webosm/datas/image/text/text03.png
IP 123.242.166.4:0
ASN #38450 Ministry of Infomation Communication Technology
File type PNG image data, 450 x 50, 8-bit/color RGBA, non-interlaced\012- data
Hash 6f2ad7e32583144ab68fe6af68b64077
643f71eda7df2ba639dd922ea20bc83f7de0bdce
e55049e645e7b2f0e44437f2fd622dd467dba23991597c860241b27b54fd4ccb
Analyzer Verdict Alert quad9 Sinkholed
GET /webosm/datas/image/text/text03.png HTTP/1.1
Host: 123.242.166.4
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://123.242.166.4/webosm/index.php
Cookie: PHPSESSID=12a6jj8aksihq90b2mporsoge7; my_lang=th; counter_date=1
HTTP/1.1 200 OK
Date: Tue, 31 Jan 2023 23:24:25 GMT
Server: Apache/2.4.18 (Ubuntu)
Last-Modified: Sat, 24 Sep 2022 03:28:01 GMT
ETag: "626e-5e963e1b94670"
Accept-Ranges: bytes
Content-Length: 25198
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: image/png
123.242.166.4/webosm/skin/ext/jpg.png
123.242.166.4200 OK 710 B URL HTTP/1.1 123.242.166.4/webosm/skin/ext/jpg.png
IP 123.242.166.4:0
ASN #38450 Ministry of Infomation Communication Technology
File type PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced\012- data
Hash 701ebd0f11fa4a9588e678db200ee80e
d77799c93a7e246e7a36cd33e5a1d40672761c99
c64e1703664e16b3f5e991d9a5338b2e1cf6d0893330dd6fa4d966379bd4e858
Analyzer Verdict Alert quad9 Sinkholed
GET /webosm/skin/ext/jpg.png HTTP/1.1
Host: 123.242.166.4
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://123.242.166.4/webosm/index.php
Cookie: PHPSESSID=12a6jj8aksihq90b2mporsoge7; my_lang=th; counter_date=1
HTTP/1.1 200 OK
Date: Tue, 31 Jan 2023 23:24:25 GMT
Server: Apache/2.4.18 (Ubuntu)
Last-Modified: Sat, 24 Sep 2022 01:01:44 GMT
ETag: "2c6-5e961d689ae00"
Accept-Ranges: bytes
Content-Length: 710
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: image/png
123.242.166.4/webosm/skin/ext/pdf.png
123.242.166.4200 OK 698 B URL HTTP/1.1 123.242.166.4/webosm/skin/ext/pdf.png
IP 123.242.166.4:0
ASN #38450 Ministry of Infomation Communication Technology
File type PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced\012- data
Hash 9e2555e6e5785eff23b95979a33607af
5d39c91348a6c0d7cd7d3ff6f8167e2d0142d91d
e976fa373416eb60a2e36f949356659045ededeae881d41236e0c816e2374c10
Analyzer Verdict Alert quad9 Sinkholed
GET /webosm/skin/ext/pdf.png HTTP/1.1
Host: 123.242.166.4
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://123.242.166.4/webosm/index.php
Cookie: PHPSESSID=12a6jj8aksihq90b2mporsoge7; my_lang=th; counter_date=1
HTTP/1.1 200 OK
Date: Tue, 31 Jan 2023 23:24:25 GMT
Server: Apache/2.4.18 (Ubuntu)
Last-Modified: Sat, 24 Sep 2022 01:01:44 GMT
ETag: "2ba-5e961d689ae00"
Accept-Ranges: bytes
Content-Length: 698
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: image/png
123.242.166.4/webosm/skin/ext/docx.png
123.242.166.4200 OK 659 B URL HTTP/1.1 123.242.166.4/webosm/skin/ext/docx.png
IP 123.242.166.4:0
ASN #38450 Ministry of Infomation Communication Technology
File type PNG image data, 16 x 16, 8-bit colormap, non-interlaced\012- data
Hash 91042366c164aac21830cd05c23f90e9
2c2f5605b3cd38a9e59c577c1b0ad8e2edf20ffc
5a3ee1031de5af25ecba920ef14150c8cc9e83dcd6c79b3e55aa78206f0e6d9d
Analyzer Verdict Alert quad9 Sinkholed
GET /webosm/skin/ext/docx.png HTTP/1.1
Host: 123.242.166.4
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://123.242.166.4/webosm/index.php
Cookie: PHPSESSID=12a6jj8aksihq90b2mporsoge7; my_lang=th; counter_date=1
HTTP/1.1 200 OK
Date: Tue, 31 Jan 2023 23:24:25 GMT
Server: Apache/2.4.18 (Ubuntu)
Last-Modified: Sat, 24 Sep 2022 01:01:44 GMT
ETag: "293-5e961d689ae00"
Accept-Ranges: bytes
Content-Length: 659
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: image/png
123.242.166.4/webosm/skin/ext/doc.png
123.242.166.4200 OK 659 B URL HTTP/1.1 123.242.166.4/webosm/skin/ext/doc.png
IP 123.242.166.4:0
ASN #38450 Ministry of Infomation Communication Technology
File type PNG image data, 16 x 16, 8-bit colormap, non-interlaced\012- data
Hash 91042366c164aac21830cd05c23f90e9
2c2f5605b3cd38a9e59c577c1b0ad8e2edf20ffc
5a3ee1031de5af25ecba920ef14150c8cc9e83dcd6c79b3e55aa78206f0e6d9d
Analyzer Verdict Alert quad9 Sinkholed
GET /webosm/skin/ext/doc.png HTTP/1.1
Host: 123.242.166.4
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://123.242.166.4/webosm/index.php
Cookie: PHPSESSID=12a6jj8aksihq90b2mporsoge7; my_lang=th; counter_date=1
HTTP/1.1 200 OK
Date: Tue, 31 Jan 2023 23:24:25 GMT
Server: Apache/2.4.18 (Ubuntu)
Last-Modified: Sat, 24 Sep 2022 01:01:44 GMT
ETag: "293-5e961d689ae00"
Accept-Ranges: bytes
Content-Length: 659
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: image/png
123.242.166.4/webosm/index.php/index/model/consent/execute?1675207484582
123.242.166.4200 OK 195 B URL HTTP/1.1 123.242.166.4/webosm/index.php/index/model/consent/execute?1675207484582
IP 123.242.166.4:0
ASN #38450 Ministry of Infomation Communication Technology
File type Unicode text, UTF-8 text, with no line terminators
Hash 5902196782c125cced89613bc2a5262d
95e08895516a35d1d132e4d02bd51d32bc262c18
ebb6d63b563501e7ad0b30057a52a88a594ac3e9b5cf24f76e9acaba5b1a84c5
Analyzer Verdict Alert quad9 Sinkholed
POST /webosm/index.php/index/model/consent/execute?1675207484582 HTTP/1.1
Host: 123.242.166.4
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,text/plain,application/xml,text/xml,application/json,text/javascript
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
X-Requested-With: XMLHttpRequest
Content-Type: application/x-www-form-urlencoded;charset=UTF-8
Content-Length: 0
Origin: http://123.242.166.4
Connection: keep-alive
Referer: http://123.242.166.4/webosm/index.php
Cookie: PHPSESSID=12a6jj8aksihq90b2mporsoge7; my_lang=th; counter_date=1
HTTP/1.1 200 OK
Date: Tue, 31 Jan 2023 23:24:25 GMT
Server: Apache/2.4.18 (Ubuntu)
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
Set-Cookie: my_lang=th; expires=Thu, 02-Mar-2023 23:24:25 GMT; Max-Age=2592000; path=/
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 195
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: text/html; charset=utf-8
123.242.166.4/webosm/datas/image/text/text04.png
123.242.166.4200 OK 24 kB URL HTTP/1.1 123.242.166.4/webosm/datas/image/text/text04.png
IP 123.242.166.4:0
ASN #38450 Ministry of Infomation Communication Technology
File type PNG image data, 450 x 50, 8-bit/color RGBA, non-interlaced\012- data
Hash d670a952df5e158cfcb0160a44b483e7
260becda4fa801b1cd7e5dbc16520b4d6c25ae20
a055931f0c9a7168d126c1d0f306ad637c693bf402beaaf69b43bc039238187b
Analyzer Verdict Alert quad9 Sinkholed
GET /webosm/datas/image/text/text04.png HTTP/1.1
Host: 123.242.166.4
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://123.242.166.4/webosm/index.php
Cookie: PHPSESSID=12a6jj8aksihq90b2mporsoge7; my_lang=th; counter_date=1
HTTP/1.1 200 OK
Date: Tue, 31 Jan 2023 23:24:25 GMT
Server: Apache/2.4.18 (Ubuntu)
Last-Modified: Sat, 24 Sep 2022 03:28:01 GMT
ETag: "5eb4-5e963e1b94670"
Accept-Ranges: bytes
Content-Length: 24244
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: image/png
123.242.166.4/webosm/images/headlinkosm.png
123.242.166.4200 OK 6.9 kB URL HTTP/1.1 123.242.166.4/webosm/images/headlinkosm.png
IP 123.242.166.4:0
ASN #38450 Ministry of Infomation Communication Technology
File type PNG image data, 190 x 35, 8-bit/color RGBA, non-interlaced\012- data
Hash 76dc7349753fea34b481a47300c06ecd
886600aa0ecb879dde4d575fea52b11dc0127ae7
354d5a6951ac4e369cd905aae2210eccf1c5c25482611d173210eeb5caabf279
Analyzer Verdict Alert quad9 Sinkholed
GET /webosm/images/headlinkosm.png HTTP/1.1
Host: 123.242.166.4
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://123.242.166.4/webosm/index.php
Cookie: PHPSESSID=12a6jj8aksihq90b2mporsoge7; my_lang=th; counter_date=1
HTTP/1.1 200 OK
Date: Tue, 31 Jan 2023 23:24:25 GMT
Server: Apache/2.4.18 (Ubuntu)
Last-Modified: Wed, 23 Jul 2014 08:52:52 GMT
ETag: "1ad7-4fed87722c100"
Accept-Ranges: bytes
Content-Length: 6871
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: image/png
123.242.166.4/webosm/images/headlink.png
123.242.166.4200 OK 6.6 kB URL HTTP/1.1 123.242.166.4/webosm/images/headlink.png
IP 123.242.166.4:0
ASN #38450 Ministry of Infomation Communication Technology
File type PNG image data, 190 x 35, 8-bit/color RGBA, non-interlaced\012- data
Hash 1c33341556a893d72d1d7e5a5d83a0a7
886b205bc79420614334743f51d54769046e427d
f50a228e2f974d3d6ba54f182c68e783a93a46324eb3ee3e151f8b2fb9afb436
Analyzer Verdict Alert quad9 Sinkholed
GET /webosm/images/headlink.png HTTP/1.1
Host: 123.242.166.4
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://123.242.166.4/webosm/index.php
Cookie: PHPSESSID=12a6jj8aksihq90b2mporsoge7; my_lang=th; counter_date=1
HTTP/1.1 200 OK
Date: Tue, 31 Jan 2023 23:24:25 GMT
Server: Apache/2.4.18 (Ubuntu)
Last-Modified: Wed, 23 Jul 2014 08:53:06 GMT
ETag: "19a4-4fed877f86080"
Accept-Ranges: bytes
Content-Length: 6564
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: image/png
123.242.166.4/webosm/images/moi.png
123.242.166.4200 OK 18 kB URL HTTP/1.1 123.242.166.4/webosm/images/moi.png
IP 123.242.166.4:0
ASN #38450 Ministry of Infomation Communication Technology
File type PNG image data, 190 x 60, 8-bit/color RGB, non-interlaced\012- data
Hash c67689f5cd05c1717dd3e85b14ed12f0
7a94b8b00f838d685ed705421db5da6ac2bc61b7
5bf695893a6b95b0ae0c8f2138a471da6957608de5e8c5bf05f355e9d2d479ff
Analyzer Verdict Alert quad9 Sinkholed
GET /webosm/images/moi.png HTTP/1.1
Host: 123.242.166.4
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://123.242.166.4/webosm/index.php
Cookie: PHPSESSID=12a6jj8aksihq90b2mporsoge7; my_lang=th; counter_date=1
HTTP/1.1 200 OK
Date: Tue, 31 Jan 2023 23:24:26 GMT
Server: Apache/2.4.18 (Ubuntu)
Last-Modified: Wed, 23 Jul 2014 08:46:12 GMT
ETag: "47db-4fed85f4b3d00"
Accept-Ranges: bytes
Content-Length: 18395
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: image/png
123.242.166.4/webosm/images/stories/banner2_pattana.png
123.242.166.4200 OK 16 kB URL HTTP/1.1 123.242.166.4/webosm/images/stories/banner2_pattana.png
IP 123.242.166.4:0
ASN #38450 Ministry of Infomation Communication Technology
File type PNG image data, 190 x 60, 8-bit/color RGB, non-interlaced\012- data
Hash 60dc76702c99b7681d7b32dacfb36752
42b6d645cb33dff720dcc027d982d8ad790325bf
8861c1c957be5580aa1384fca69f4bcf97dc45ae9c3017ebff25e56933490c0f
Analyzer Verdict Alert quad9 Sinkholed
GET /webosm/images/stories/banner2_pattana.png HTTP/1.1
Host: 123.242.166.4
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://123.242.166.4/webosm/index.php
Cookie: PHPSESSID=12a6jj8aksihq90b2mporsoge7; my_lang=th; counter_date=1
HTTP/1.1 200 OK
Date: Tue, 31 Jan 2023 23:24:26 GMT
Server: Apache/2.4.18 (Ubuntu)
Last-Modified: Mon, 21 Mar 2011 04:56:12 GMT
ETag: "3f22-49ef6f25a7300"
Accept-Ranges: bytes
Content-Length: 16162
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: image/png
123.242.166.4/webosm/images/stories/banner2_damrong.png
123.242.166.4200 OK 18 kB URL HTTP/1.1 123.242.166.4/webosm/images/stories/banner2_damrong.png
IP 123.242.166.4:0
ASN #38450 Ministry of Infomation Communication Technology
File type PNG image data, 190 x 60, 8-bit/color RGB, non-interlaced\012- data
Hash 673ea47001ef31a96d6642c67c078047
4d6dcae607c8e0035849cc7db6d137759fd6249d
1a1c08be43d0cfab7be910adab6bb291052521a5c3d51ab24fc0641abaeb9f6b
Analyzer Verdict Alert quad9 Sinkholed
GET /webosm/images/stories/banner2_damrong.png HTTP/1.1
Host: 123.242.166.4
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://123.242.166.4/webosm/index.php
Cookie: PHPSESSID=12a6jj8aksihq90b2mporsoge7; my_lang=th; counter_date=1
HTTP/1.1 200 OK
Date: Tue, 31 Jan 2023 23:24:26 GMT
Server: Apache/2.4.18 (Ubuntu)
Last-Modified: Mon, 21 Mar 2011 04:55:44 GMT
ETag: "452e-49ef6f0af3400"
Accept-Ranges: bytes
Content-Length: 17710
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: image/png
123.242.166.4/webosm/images/stories/banner2_ngoppaman.png
123.242.166.4200 OK 14 kB URL HTTP/1.1 123.242.166.4/webosm/images/stories/banner2_ngoppaman.png
IP 123.242.166.4:0
ASN #38450 Ministry of Infomation Communication Technology
File type PNG image data, 190 x 60, 8-bit/color RGB, non-interlaced\012- data
Hash 022dc27094b691054ed2e9ed9ac3b83b
36c059d728aa26d4b5791cb2a42625fdbca73783
6a413269af4a0f489c3aab4dd03ad525a11f608b93c134f7348392b58322f4a4
Analyzer Verdict Alert quad9 Sinkholed
GET /webosm/images/stories/banner2_ngoppaman.png HTTP/1.1
Host: 123.242.166.4
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://123.242.166.4/webosm/index.php
Cookie: PHPSESSID=12a6jj8aksihq90b2mporsoge7; my_lang=th; counter_date=1
HTTP/1.1 200 OK
Date: Tue, 31 Jan 2023 23:24:26 GMT
Server: Apache/2.4.18 (Ubuntu)
Last-Modified: Mon, 21 Mar 2011 04:56:00 GMT
ETag: "3536-49ef6f1a35800"
Accept-Ranges: bytes
Content-Length: 13622
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: image/png
123.242.166.4/webosm/images/stories/banner2_kpl.png
123.242.166.4200 OK 14 kB URL HTTP/1.1 123.242.166.4/webosm/images/stories/banner2_kpl.png
IP 123.242.166.4:0
ASN #38450 Ministry of Infomation Communication Technology
File type PNG image data, 190 x 60, 8-bit/color RGB, non-interlaced\012- data
Hash 5c9b60b5242615e50ab19d30334141dd
e53064423a0108a07a8520da141a0258975f5dc6
745a632aca8d5f53b6f9d06c03f6df7c2102f194c71d2674dc4fe2eb4c221e42
Analyzer Verdict Alert quad9 Sinkholed
GET /webosm/images/stories/banner2_kpl.png HTTP/1.1
Host: 123.242.166.4
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://123.242.166.4/webosm/index.php
Cookie: PHPSESSID=12a6jj8aksihq90b2mporsoge7; my_lang=th; counter_date=1
HTTP/1.1 200 OK
Date: Tue, 31 Jan 2023 23:24:26 GMT
Server: Apache/2.4.18 (Ubuntu)
Last-Modified: Mon, 21 Mar 2011 04:55:48 GMT
ETag: "3671-49ef6f0ec3d00"
Accept-Ranges: bytes
Content-Length: 13937
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: image/png
123.242.166.4/webosm/images/stories/banner2_nayok.png
123.242.166.4200 OK 14 kB URL HTTP/1.1 123.242.166.4/webosm/images/stories/banner2_nayok.png
IP 123.242.166.4:0
ASN #38450 Ministry of Infomation Communication Technology
File type PNG image data, 190 x 60, 8-bit/color RGB, non-interlaced\012- data
Hash 98914450889c32a21cf60c2a28b8209b
634933d50d2d4d50b82e99e4137688f83a14b47d
e28ec8fbb9a8df9bbbe88fe1ab797ecfffe3af2536cd8b8ae05c133b22fbd9b4
Analyzer Verdict Alert quad9 Sinkholed
GET /webosm/images/stories/banner2_nayok.png HTTP/1.1
Host: 123.242.166.4
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://123.242.166.4/webosm/index.php
Cookie: PHPSESSID=12a6jj8aksihq90b2mporsoge7; my_lang=th; counter_date=1
HTTP/1.1 200 OK
Date: Tue, 31 Jan 2023 23:24:26 GMT
Server: Apache/2.4.18 (Ubuntu)
Last-Modified: Mon, 21 Mar 2011 04:55:54 GMT
ETag: "3782-49ef6f147ca80"
Accept-Ranges: bytes
Content-Length: 14210
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive
Content-Type: image/png
123.242.166.4/webosm/images/stories/lowerNorth2Tour.png
123.242.166.4200 OK 34 kB URL HTTP/1.1 123.242.166.4/webosm/images/stories/lowerNorth2Tour.png
IP 123.242.166.4:0
ASN #38450 Ministry of Infomation Communication Technology
File type PNG image data, 220 x 95, 8-bit/color RGB, non-interlaced\012- data
Hash 0738c2ceaa4f8b9082965748df76f24e
740120ef43621ec422a019fcf1aaf7a88934ebab
fd09861a0a9fce57b93ac90fdd5b3b8c79d5c607a1b264c7c5ee52eebb739e4a
Analyzer Verdict Alert quad9 Sinkholed
GET /webosm/images/stories/lowerNorth2Tour.png HTTP/1.1
Host: 123.242.166.4
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://123.242.166.4/webosm/index.php
Cookie: PHPSESSID=12a6jj8aksihq90b2mporsoge7; my_lang=th; counter_date=1
HTTP/1.1 200 OK
Date: Tue, 31 Jan 2023 23:24:26 GMT
Server: Apache/2.4.18 (Ubuntu)
Last-Modified: Thu, 11 Oct 2012 06:44:26 GMT
ETag: "86bd-4cbc2e6f8c680"
Accept-Ranges: bytes
Content-Length: 34493
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: image/png
cdnjs.cloudflare.com/ajax/libs/twitter-bootstrap/5.0.1/css/bootstrap.min.css
104.17.24.14200 OK 17 kB URL HTTP/2 cdnjs.cloudflare.com/ajax/libs/twitter-bootstrap/5.0.1/css/bootstrap.min.css
IP 104.17.24.14:0
File type Unicode text, UTF-8 text, with very long lines (65306)
Hash 1118b54e0909b9b27117e990e1eb6b59
86b41cf8f115aa49dc0d480213f8d74da2125976
19474e6c8561ba3441945f41e23809722940c234635291acf0039d7b52191d6c
GET /ajax/libs/twitter-bootstrap/5.0.1/css/bootstrap.min.css HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tmd.go.th/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 31 Jan 2023 23:24:26 GMT
content-type: text/css; charset=utf-8
content-length: 16741
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "60a4fde4-4165"
last-modified: Wed, 19 May 2021 12:00:36 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 6049961
expires: Sun, 21 Jan 2024 23:24:26 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=PvsLNwVPSE3Hn89vIbP2m1wT8DcHeP1grsKZOvF62rYMCOSkZ3GnjOf1GLzhB7HWoCpG%2B%2FygxMLx9c5oEkMVaWUWEtiLeLEczpSJHsdDkJPgMhnJ%2F6Purqk2aARCrFevaOCQ%2FDDr"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 792633689a0fb518-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdnjs.cloudflare.com/ajax/libs/select2/4.0.3/css/select2.min.css
104.17.24.14200 OK 1.6 kB URL HTTP/2 cdnjs.cloudflare.com/ajax/libs/select2/4.0.3/css/select2.min.css
IP 104.17.24.14:0
File type ASCII text, with very long lines (15195)
Hash b882d7e63899a62cfb4fe9563af4245d
726e9f61ac75d59a2f95f15cdda1af77f420a2eb
387d3b1157267d3f4e539fa96c8d03291698037cdeca14ee0b6ac0a309e9f73e
GET /ajax/libs/select2/4.0.3/css/select2.min.css HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tmd.go.th/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 31 Jan 2023 23:24:26 GMT
content-type: text/css; charset=utf-8
content-length: 1624
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03fcb-3b5c"
last-modified: Mon, 04 May 2020 16:16:11 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 7094668
expires: Sun, 21 Jan 2024 23:24:26 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=fbrwmd3gccAR6QtaLOGB%2BbvNjgu7iejdrF8barfEXL05qCUM32KWeU44HgA6WltO7IS518Kgq21ugBOmi6tTvelMypDFSnIK0AK%2F7Ivp%2Bt1AMG1RWxkwU%2Bs2PYdCImTvJrroa1ex"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 79263368aa1fb518-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash be86cc124994d9b171b9c6f534f0d65e
2dcefbc156bb5e1e0c7268537d2f0901f338823b
984efeeb1af689799055abad096b93348a2d4bb189eed70fe84b8fb21f628a1a
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1472
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 23:24:26 GMT
Last-Modified: Tue, 31 Jan 2023 22:59:54 GMT
Server: ECS (ska/F711)
X-Cache: HIT
Content-Length: 279
code.jquery.com/jquery-3.5.1.js
69.16.175.42200 OK 84 kB URL HTTP/2 code.jquery.com/jquery-3.5.1.js
IP 69.16.175.42:0
Hash ad571ea184084783080d0391add24d9f
5a94acbbe3c7dfeadbb5af44b4baf7920243c4b1
5bfb1df44242cef31542b5b193050538e90183b515ffe0b99037b97d1fc42e0f
GET /jquery-3.5.1.js HTTP/1.1
Host: code.jquery.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tmd.go.th/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 31 Jan 2023 23:24:26 GMT
content-encoding: gzip
content-length: 84374
content-type: application/javascript; charset=utf-8
last-modified: Wed, 16 Feb 2022 10:50:39 GMT
accept-ranges: bytes
server: nginx
etag: W/"620cd6ff-4638e"
cache-control: max-age=315360000, public
access-control-allow-origin: *
vary: Accept-Encoding
x-hw: 1675207466.dop227.sk1.t,1675207466.cds252.sk1.hn,1675207466.cds204.sk1.c
X-Firefox-Spdy: h2
cdnjs.cloudflare.com/ajax/libs/select2/4.0.3/js/select2.min.js
104.17.24.14200 OK 16 kB URL HTTP/2 cdnjs.cloudflare.com/ajax/libs/select2/4.0.3/js/select2.min.js
IP 104.17.24.14:0
File type Unicode text, UTF-8 text, with very long lines (32091)
Hash e32b2fa21728a1135e8467cc515f0552
4304c529c663a87c6d0f0a245c9c18ed2def78a8
576651f8ad26d3034a711d3cd667efb8a761f96a82defff63f750f39fdeb6799
GET /ajax/libs/select2/4.0.3/js/select2.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tmd.go.th/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 31 Jan 2023 23:24:26 GMT
content-type: application/javascript; charset=utf-8
content-length: 15671
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03fcb-10468"
last-modified: Mon, 04 May 2020 16:16:11 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
expect-ct: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
vary: Accept-Encoding
cf-cache-status: HIT
age: 20486325
expires: Sun, 21 Jan 2024 23:24:26 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=HO7UHCXYaMD%2B0lvlolzqf0JJ%2FRZ8hayYkke79GurMyjxF9KdrhCaVyLB7otKwgKkUa9HghGT2oFmLdMvJFNBg76siK2Rl%2BgOYSY7Cj5gUhXjJHyLVYPBSSbtGl0GHOzPJACcJUBW"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 79263368ca4eb518-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash be86cc124994d9b171b9c6f534f0d65e
2dcefbc156bb5e1e0c7268537d2f0901f338823b
984efeeb1af689799055abad096b93348a2d4bb189eed70fe84b8fb21f628a1a
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1472
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 23:24:26 GMT
Last-Modified: Tue, 31 Jan 2023 22:59:54 GMT
Server: ECS (ska/F711)
X-Cache: HIT
Content-Length: 279
cdn.jsdelivr.net/jquery.jssocials/1.4.0/jssocials-theme-minima.css
151.101.1.229200 OK 995 B URL HTTP/2 cdn.jsdelivr.net/jquery.jssocials/1.4.0/jssocials-theme-minima.css
IP 151.101.1.229:0
Hash 9476450b2cb65f19670e1ba2d486f0e8
f4228a987edd49184832cf59bc5a878d413b4964
c49b857162be8fac58a31f3761036f98b433899d375047d560d670652925c58d
GET /jquery.jssocials/1.4.0/jssocials-theme-minima.css HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tmd.go.th/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: text/css; charset=utf-8
etag: W/"2444-tWAM5G9B2s+EHVC3v4GGynH4zIg"
content-encoding: gzip
accept-ranges: bytes
date: Tue, 31 Jan 2023 23:24:26 GMT
age: 1171095
x-served-by: cache-fra-eddf8230134-FRA, cache-bma1670-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 995
X-Firefox-Spdy: h2
cdn.jsdelivr.net/jquery.jssocials/1.4.0/jssocials-theme-plain.css
151.101.1.229200 OK 444 B URL HTTP/2 cdn.jsdelivr.net/jquery.jssocials/1.4.0/jssocials-theme-plain.css
IP 151.101.1.229:0
Hash 8cfeeb3e5abbbf16e273c58e27e60842
889f0c597d6bc73bac060d163dae9503a1dfcc56
d9c5775d500c90711280708f74eef971faa6b1c4402fa1374172680ec743d118
GET /jquery.jssocials/1.4.0/jssocials-theme-plain.css HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tmd.go.th/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: text/css; charset=utf-8
etag: W/"6e4-ypFsH45l4mNgbL4/OlcENg9jnns"
content-encoding: gzip
accept-ranges: bytes
date: Tue, 31 Jan 2023 23:24:26 GMT
age: 573236
x-served-by: cache-fra-eddf8230024-FRA, cache-bma1670-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 444
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash be86cc124994d9b171b9c6f534f0d65e
2dcefbc156bb5e1e0c7268537d2f0901f338823b
984efeeb1af689799055abad096b93348a2d4bb189eed70fe84b8fb21f628a1a
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1472
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 23:24:26 GMT
Last-Modified: Tue, 31 Jan 2023 22:59:54 GMT
Server: ECS (ska/F711)
X-Cache: HIT
Content-Length: 279
cdn.datatables.net/1.11.3/js/jquery.dataTables.min.js
172.67.14.139200 OK 30 kB URL HTTP/2 cdn.datatables.net/1.11.3/js/jquery.dataTables.min.js
IP 172.67.14.139:0
File type Unicode text, UTF-8 text, with very long lines (538)
Hash aaffb1b4ff9ab279376364e91a263a50
79d47a703dcdff55fbd476481500dcfe28005aba
192d9e0305e9e5e4b077fd5e885ff516f8cb3d0779209f17b34475e9a6a86870
GET /1.11.3/js/jquery.dataTables.min.js HTTP/1.1
Host: cdn.datatables.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tmd.go.th/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 31 Jan 2023 23:24:26 GMT
content-type: application/javascript; charset=utf-8
content-length: 30328
x-frame-options: SAMEORIGIN
last-modified: Mon, 06 Jun 2022 14:37:30 GMT
etag: "1301169-15759-5e0c8696fe856-gzip"
cache-control: max-age=31536000
expires: Tue, 06 Jun 2023 22:14:30 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
access-control-allow-origin: *
access-control-allow-headers: origin, x-requested-with, content-type
access-control-allow-methods: GET
cf-cache-status: HIT
age: 20653795
accept-ranges: bytes
server: cloudflare
cf-ray: 792633690bb1b4f4-OSL
X-Firefox-Spdy: h2
cdn.jsdelivr.net/jquery.jssocials/1.4.0/jssocials-theme-classic.css
151.101.1.229200 OK 889 B URL HTTP/2 cdn.jsdelivr.net/jquery.jssocials/1.4.0/jssocials-theme-classic.css
IP 151.101.1.229:0
Hash 4727fac2a33de50e080a4f602fe3e0e4
d826f6afffe23b555cb4a7b425dba257d36655f9
7064fa9582270bbdd4b0f4219f95c663871defa595afc28c8e403145f9d7f961
GET /jquery.jssocials/1.4.0/jssocials-theme-classic.css HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tmd.go.th/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: text/css; charset=utf-8
etag: W/"1000-QV+rOLAR8LlpVHkeaskDbQvSzMc"
content-encoding: gzip
accept-ranges: bytes
date: Tue, 31 Jan 2023 23:24:26 GMT
age: 8872697
x-served-by: cache-fra-eddf8230103-FRA, cache-bma1670-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 889
X-Firefox-Spdy: h2
cdn.jsdelivr.net/jquery.jssocials/1.4.0/jssocials-theme-flat.css
151.101.1.229200 OK 752 B URL HTTP/2 cdn.jsdelivr.net/jquery.jssocials/1.4.0/jssocials-theme-flat.css
IP 151.101.1.229:0
Hash 3877615f9280c982d414498b1e625cc3
c2cbcbe14a92c990ffc229e0a18ab6d93bb70be3
cc7df0bfd2d8ff4f2ba1e381bd1dc570a89f135370b2e2b61ed1dea5f254bc1c
GET /jquery.jssocials/1.4.0/jssocials-theme-flat.css HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tmd.go.th/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: text/css; charset=utf-8
etag: W/"ea1-ctp+1BVGLJNw5mnQ7wNve8GsY7o"
content-encoding: gzip
accept-ranges: bytes
date: Tue, 31 Jan 2023 23:24:26 GMT
age: 2324523
x-served-by: cache-fra-eddf8230125-FRA, cache-bma1670-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 752
X-Firefox-Spdy: h2
cdn.jsdelivr.net/jquery.jssocials/1.4.0/jssocials.css
151.101.1.229200 OK 384 B URL HTTP/2 cdn.jsdelivr.net/jquery.jssocials/1.4.0/jssocials.css
IP 151.101.1.229:0
Hash 3e63721af4200ab8e61415bb86196617
de36b2408497e8069fe22867d8125ecb2b5b77e1
f90119df1fd3a33c3305cb4685a767ed07ddde53a630c4bcecd0079157240dd3
GET /jquery.jssocials/1.4.0/jssocials.css HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tmd.go.th/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: text/css; charset=utf-8
etag: W/"51b-yj9O6q8jhNkh2l6UUvEAM75M8Tk"
content-encoding: gzip
accept-ranges: bytes
date: Tue, 31 Jan 2023 23:24:26 GMT
age: 6723148
x-served-by: cache-fra-eddf8230031-FRA, cache-bma1670-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 384
X-Firefox-Spdy: h2
cdn.datatables.net/1.11.3/css/dataTables.bootstrap5.min.css
172.67.14.139200 OK 1.5 kB URL HTTP/2 cdn.datatables.net/1.11.3/css/dataTables.bootstrap5.min.css
IP 172.67.14.139:0
File type Unicode text, UTF-8 text, with very long lines (5737)
Hash 026ea804f8b7c9be5c0aaef71bd04452
c527a1c1034005454186988cd650c014a176b115
11b028e12b51c77811e2c860f66333ade3424d2885b965dd968361b5bf111a2c
GET /1.11.3/css/dataTables.bootstrap5.min.css HTTP/1.1
Host: cdn.datatables.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tmd.go.th/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 31 Jan 2023 23:24:26 GMT
content-type: text/css; charset=utf-8
content-length: 1502
x-frame-options: SAMEORIGIN
last-modified: Wed, 22 Jun 2022 13:36:14 GMT
etag: "1301ebb-1ef3-5e2096bc9e5a9-gzip"
cache-control: max-age=31536000
expires: Tue, 04 Jul 2023 19:38:20 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
access-control-allow-origin: *
access-control-allow-headers: origin, x-requested-with, content-type
access-control-allow-methods: GET
cf-cache-status: HIT
age: 18243965
accept-ranges: bytes
server: cloudflare
cf-ray: 792633691bc7b4f4-OSL
X-Firefox-Spdy: h2
cdn.jsdelivr.net/jquery.jssocials/1.4.0/jssocials.min.js
151.101.1.229200 OK 3.0 kB URL HTTP/2 cdn.jsdelivr.net/jquery.jssocials/1.4.0/jssocials.min.js
IP 151.101.1.229:0
File type ASCII text, with very long lines (8692)
Hash dc816e4686f3d4f11f711bdabc28cf4f
dac8c643d2f87a408db365b3bfa4b35c5e3b5d99
3c052b8c43483ee7ba613b8e7506d3d3a0c90213477c47d3d4e428141571fbd2
GET /jquery.jssocials/1.4.0/jssocials.min.js HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tmd.go.th/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: application/javascript; charset=utf-8
etag: W/"2264-9KbQsXoVEpJWjJIdjufmbZ4QTDU"
content-encoding: gzip
accept-ranges: bytes
date: Tue, 31 Jan 2023 23:24:26 GMT
age: 1189694
x-served-by: cache-fra-eddf8230070-FRA, cache-bma1670-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 3013
X-Firefox-Spdy: h2
www.tmd.go.th/daily_forecast_forweb.php?strProvinceID=8-9-36-48
119.46.126.1500 Internal Server Error 17 kB URL HTTP/1.1 www.tmd.go.th/daily_forecast_forweb.php?strProvinceID=8-9-36-48
IP 119.46.126.1:0
ASN #58692 DOTS Solutions Co., Ltd.
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (623), with CRLF, LF line terminators
Hash a3201712c9e5b90fe88980efa4b25da7
80a9fd67c8fe16004637f441ba0884aa00af038a
16cca458783e01f296061a6defb9d45e5112b1158335628b2ad346b32c5f601a
GET /daily_forecast_forweb.php?strProvinceID=8-9-36-48 HTTP/1.1
Host: www.tmd.go.th
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://123.242.166.4/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 500 Internal Server Error
Cache-Control: no-cache,no-store
Pragma: no-cache
Transfer-Encoding: chunked
Content-Type: text/html; charset=utf-8
Content-Encoding: br
Content-Language: th-TH
Expires: -1
Vary: Accept-Encoding
X-Content-Type-Options: nosniff
Date: Tue, 31 Jan 2023 23:24:25 GMT
ocsp.globalsign.com/ca/gsatlasr3dvtlsca2022q4
104.18.20.226200 OK 1.5 kB URL HTTP/1.1 ocsp.globalsign.com/ca/gsatlasr3dvtlsca2022q4
IP 104.18.20.226:0
Hash ddda1b75769190d92ec48528129fd10f
3c2deb540654929a14fd7576a7d761404045f46a
6e50617966592a352ea49a5f0b8084a94b39d36b4a8e11a865de28108f32da29
POST /ca/gsatlasr3dvtlsca2022q4 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 31 Jan 2023 23:24:26 GMT
Content-Type: application/ocsp-response
Transfer-Encoding: chunked
Connection: keep-alive
Etag: "3DDA217AA5B732C7A19F9795ACD3094D5F7DAFF5"
Expires: Wed, 01 Feb 2023 10:00:00 GMT
Last-Modified: Tue, 31 Jan 2023 22:00:00 UTC
Cache-Control: s-maxage=3600, public, no-transform, must-revalidate
CF-Cache-Status: HIT
Age: 1869
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7926336959ca1c06-OSL
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash c004ef398fc2138876eac9e202e6e7c9
9b695108fe043113ee8dc3369be58234f1a73323
ab71d4c6d64f3c7a0114070414615b26843c22de34b0f04c9ad932ca112031c7
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 23:24:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.googletagmanager.com/gtag/js?id=G-F9Z27KFG7K
172.217.21.168200 OK 77 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=G-F9Z27KFG7K
IP 172.217.21.168:0
File type ASCII text, with very long lines (19467)
Hash 6529593f14249268bf934fd24667af98
c0f31e375ba8413027a77f7a8c62d7dd767cc3cb
be22047302084007bd4b2ee8efd6e209f4466f01ef18d47c66a0b9e5828dbc71
GET /gtag/js?id=G-F9Z27KFG7K HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tmd.go.th/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Tue, 31 Jan 2023 23:24:26 GMT
expires: Tue, 31 Jan 2023 23:24:26 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 77116
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
thahinc.psru.ac.th/images/no_hack.png
202.29.80.144200 OK 58 kB URL HTTP/1.1 thahinc.psru.ac.th/images/no_hack.png
IP 202.29.80.144:0
ASN #137241 PibulSongkramRajabhat University
File type PNG image data, 722 x 235, 8-bit/color RGBA, non-interlaced\012- data
Hash dc3190e21021e038ae3c519a0bf79af8
f8c6ead68e2434abb682c097ec019204e9e9350a
0adb7757d8fb65e9726cf28061b922bbb900a3a3787986596c69abe7844eb2df
GET /images/no_hack.png HTTP/1.1
Host: thahinc.psru.ac.th
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://123.242.166.4/
HTTP/1.1 200 OK
Date: Tue, 31 Jan 2023 23:20:54 GMT
Server: Apache/2.4.18 (FreeBSD) OpenSSL/1.0.1s-freebsd PHP/5.5.32
Last-Modified: Mon, 24 Oct 2016 22:54:33 GMT
ETag: "e19b-53fa446814753"
Accept-Ranges: bytes
Content-Length: 57755
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: image/png
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash c004ef398fc2138876eac9e202e6e7c9
9b695108fe043113ee8dc3369be58234f1a73323
ab71d4c6d64f3c7a0114070414615b26843c22de34b0f04c9ad932ca112031c7
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 23:24:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
123.242.166.4/webosm/favicon.ico
123.242.166.4200 OK 4.3 kB URL HTTP/1.1 123.242.166.4/webosm/favicon.ico
IP 123.242.166.4:0
ASN #38450 Ministry of Infomation Communication Technology
File type MS Windows icon resource - 1 icon, 32x32, 32 bits/pixel\012- data
Hash 007e1a6812242d3dcd6483516c0d83e3
fd2b2079ec4cbe58cdda200b06c1c68daba5c3d4
85f0242efc6f67904311c8959b193bccc418210830ebe108101d20cc7ed8d181
Analyzer Verdict Alert quad9 Sinkholed
GET /webosm/favicon.ico HTTP/1.1
Host: 123.242.166.4
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://123.242.166.4/webosm/index.php
Cookie: PHPSESSID=12a6jj8aksihq90b2mporsoge7; my_lang=th; counter_date=1
HTTP/1.1 200 OK
Date: Tue, 31 Jan 2023 23:24:26 GMT
Server: Apache/2.4.18 (Ubuntu)
Last-Modified: Sun, 24 Sep 2017 14:52:46 GMT
ETag: "10be-559f09850ab80"
Accept-Ranges: bytes
Content-Length: 4286
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: image/vnd.microsoft.icon
www.tmd.go.th/CustomTheme3/css/custom.css?v=LmX0MBP4i8o_KxsEAOeaBgOeSgdIRIRP0_L0SRHOV_k
119.46.126.1200 OK 14 kB URL HTTP/1.1 www.tmd.go.th/CustomTheme3/css/custom.css?v=LmX0MBP4i8o_KxsEAOeaBgOeSgdIRIRP0_L0SRHOV_k
IP 119.46.126.1:0
ASN #58692 DOTS Solutions Co., Ltd.
File type ASCII text, with very long lines (1056), with CRLF line terminators
Hash 8af69c2667e7f9c1facc1fb386790c06
621d347ceb6879a8b4b27bf450586692d12e2050
d1d14c50de833b0a4998eb52abeda958a33b6fd37b38d641c6efe656621eb9f9
GET /CustomTheme3/css/custom.css?v=LmX0MBP4i8o_KxsEAOeaBgOeSgdIRIRP0_L0SRHOV_k HTTP/1.1
Host: www.tmd.go.th
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tmd.go.th/daily_forecast_forweb.php?strProvinceID=8-9-36-48
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Cache-Control: public, max-age=2592000, s-maxage=31557600
Transfer-Encoding: chunked
Content-Type: text/css
Content-Encoding: br
Content-Language: th-TH
Last-Modified: Wed, 25 Jan 2023 17:59:16 GMT
Accept-Ranges: bytes
ETag: "1d930e6bd43742f"
Vary: Accept-Encoding
X-Content-Type-Options: nosniff
Date: Tue, 31 Jan 2023 23:24:26 GMT
www.tmd.go.th/CustomTheme3/font/font-icon-general/style.css?v=swsyD-NaKI5l9Uf5SuL826n9-KI3Mk2ZmCUJYgVayH8
119.46.126.1200 OK 986 B URL HTTP/1.1 www.tmd.go.th/CustomTheme3/font/font-icon-general/style.css?v=swsyD-NaKI5l9Uf5SuL826n9-KI3Mk2ZmCUJYgVayH8
IP 119.46.126.1:0
ASN #58692 DOTS Solutions Co., Ltd.
File type ASCII text, with CRLF line terminators
Hash 1ab6e43a8968344874e084662a4c0a2a
d901172b7de43deba18cbd0b4ff9d189940179f3
696d96068d540733ab3ebc48be39c859950c2ae2a340f0c0d723f835b42935bf
GET /CustomTheme3/font/font-icon-general/style.css?v=swsyD-NaKI5l9Uf5SuL826n9-KI3Mk2ZmCUJYgVayH8 HTTP/1.1
Host: www.tmd.go.th
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tmd.go.th/daily_forecast_forweb.php?strProvinceID=8-9-36-48
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Cache-Control: public, max-age=2592000, s-maxage=31557600
Transfer-Encoding: chunked
Content-Type: text/css
Content-Encoding: br
Content-Language: th-TH
Last-Modified: Wed, 25 Jan 2023 17:59:16 GMT
Accept-Ranges: bytes
ETag: "1d930e6bd4260b0"
Vary: Accept-Encoding
X-Content-Type-Options: nosniff
Date: Tue, 31 Jan 2023 23:24:26 GMT
www.tmd.go.th/CustomTheme3/css/responsive_small.css?v=SEbR769_xuCdt8mK4238UPrXvMfhPkMLDZnhYA0ANpk
119.46.126.1200 OK 2.1 kB URL HTTP/1.1 www.tmd.go.th/CustomTheme3/css/responsive_small.css?v=SEbR769_xuCdt8mK4238UPrXvMfhPkMLDZnhYA0ANpk
IP 119.46.126.1:0
ASN #58692 DOTS Solutions Co., Ltd.
File type assembler source, ASCII text, with CRLF line terminators
Hash e83f58d975c7583457f83312c94fa304
ff2766c562fde1b33e898b1169c54585958094c4
7b2df1e5b2ba9bdc93e967dc3e745ba88b0d5cd911d94b3ca3d33f10c3a1092a
GET /CustomTheme3/css/responsive_small.css?v=SEbR769_xuCdt8mK4238UPrXvMfhPkMLDZnhYA0ANpk HTTP/1.1
Host: www.tmd.go.th
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tmd.go.th/daily_forecast_forweb.php?strProvinceID=8-9-36-48
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Cache-Control: public, max-age=2592000, s-maxage=31557600
Transfer-Encoding: chunked
Content-Type: text/css
Content-Encoding: br
Content-Language: th-TH
Last-Modified: Wed, 25 Jan 2023 17:59:16 GMT
Accept-Ranges: bytes
ETag: "1d930e6bd426c43"
Vary: Accept-Encoding
X-Content-Type-Options: nosniff
Date: Tue, 31 Jan 2023 23:24:26 GMT
www.tmd.go.th/CustomTheme3/webfont/tmd-icon-style.css?v=urnCMaH96Yq1twsUBEVhCHzU-iESsVXF7uxaQ9AbFgI
119.46.126.1200 OK 1.0 kB URL HTTP/1.1 www.tmd.go.th/CustomTheme3/webfont/tmd-icon-style.css?v=urnCMaH96Yq1twsUBEVhCHzU-iESsVXF7uxaQ9AbFgI
IP 119.46.126.1:0
ASN #58692 DOTS Solutions Co., Ltd.
File type ASCII text, with CRLF line terminators
Hash 4f33d668b1be3c2e5032e3f1ac35dbaf
22d5c75244d8000dffc4e4a2b16ebc988d49e2d4
6c02338425633ee0d241ac261588322b5276917a4ac4c36f89adb2a1de012ba2
GET /CustomTheme3/webfont/tmd-icon-style.css?v=urnCMaH96Yq1twsUBEVhCHzU-iESsVXF7uxaQ9AbFgI HTTP/1.1
Host: www.tmd.go.th
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tmd.go.th/daily_forecast_forweb.php?strProvinceID=8-9-36-48
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Cache-Control: public, max-age=2592000, s-maxage=31557600
Transfer-Encoding: chunked
Content-Type: text/css
Content-Encoding: br
Content-Language: th-TH
Last-Modified: Wed, 25 Jan 2023 17:59:16 GMT
Accept-Ranges: bytes
ETag: "1d930e6bd427d41"
Vary: Accept-Encoding
X-Content-Type-Options: nosniff
Date: Tue, 31 Jan 2023 23:24:26 GMT
www.tmd.go.th/CustomTheme3/css/responsive_medium.css?v=PB8RkjPHc4VXBi4wMr-D0hN5p2KwJCb7M1T7QFohgc4
119.46.126.1200 OK 1.6 kB URL HTTP/1.1 www.tmd.go.th/CustomTheme3/css/responsive_medium.css?v=PB8RkjPHc4VXBi4wMr-D0hN5p2KwJCb7M1T7QFohgc4
IP 119.46.126.1:0
ASN #58692 DOTS Solutions Co., Ltd.
File type ASCII text, with CRLF line terminators
Hash c9402ccd89e51eef1854a96a7b13fdab
22374cce2ad599c878d16e7638d65c5514966118
29cd2b63df2bd8dc3228499879ba1118188b992447a87334af258b2ad53d0a97
GET /CustomTheme3/css/responsive_medium.css?v=PB8RkjPHc4VXBi4wMr-D0hN5p2KwJCb7M1T7QFohgc4 HTTP/1.1
Host: www.tmd.go.th
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tmd.go.th/daily_forecast_forweb.php?strProvinceID=8-9-36-48
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Cache-Control: public, max-age=2592000, s-maxage=31557600
Transfer-Encoding: chunked
Content-Type: text/css
Content-Encoding: br
Content-Language: th-TH
Last-Modified: Wed, 25 Jan 2023 17:59:16 GMT
Accept-Ranges: bytes
ETag: "1d930e6bd426115"
Vary: Accept-Encoding
X-Content-Type-Options: nosniff
Date: Tue, 31 Jan 2023 23:24:26 GMT
www.tmd.go.th/CustomTheme3/font/icons-quicklink/quicklink-style.css?v=sFZBOelFYbvVWPrPsGqg5DWAyX22ulrt7sItAGChQTU
119.46.126.1200 OK 861 B URL HTTP/1.1 www.tmd.go.th/CustomTheme3/font/icons-quicklink/quicklink-style.css?v=sFZBOelFYbvVWPrPsGqg5DWAyX22ulrt7sItAGChQTU
IP 119.46.126.1:0
ASN #58692 DOTS Solutions Co., Ltd.
File type ASCII text, with CRLF line terminators
Hash 416261b5af07462de85e91cdb4c01bb5
91cffe6fd1934e1d8349f0020e3c3c87ef638576
a9ee57f5850e295c0cad881b74cb1ee6b7bf6539881bb79f2100d9280c99aae5
GET /CustomTheme3/font/icons-quicklink/quicklink-style.css?v=sFZBOelFYbvVWPrPsGqg5DWAyX22ulrt7sItAGChQTU HTTP/1.1
Host: www.tmd.go.th
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tmd.go.th/daily_forecast_forweb.php?strProvinceID=8-9-36-48
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Cache-Control: public, max-age=2592000, s-maxage=31557600
Transfer-Encoding: chunked
Content-Type: text/css
Content-Encoding: br
Content-Language: th-TH
Last-Modified: Wed, 25 Jan 2023 17:59:16 GMT
Accept-Ranges: bytes
ETag: "1d930e6bd427cd4"
Vary: Accept-Encoding
X-Content-Type-Options: nosniff
Date: Tue, 31 Jan 2023 23:24:26 GMT
www.tmd.go.th/CustomTheme3/js/global.js?v=Y43r3KOxXD_eYjHER9Cxd1Hu-gJ--s45Jw_tSJrugWM
119.46.126.1200 OK 2.2 kB URL HTTP/1.1 www.tmd.go.th/CustomTheme3/js/global.js?v=Y43r3KOxXD_eYjHER9Cxd1Hu-gJ--s45Jw_tSJrugWM
IP 119.46.126.1:0
ASN #58692 DOTS Solutions Co., Ltd.
File type Unicode text, UTF-8 text, with CRLF line terminators
Hash d1a1a47f66c822f44a169fd3076bd43a
7361fb013a09eb8e5f06f7cde6433504f88d20c4
518ef92ef9dbb349b30472dd94b082cacefef41cb5613755948aad901a65dfb7
GET /CustomTheme3/js/global.js?v=Y43r3KOxXD_eYjHER9Cxd1Hu-gJ--s45Jw_tSJrugWM HTTP/1.1
Host: www.tmd.go.th
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tmd.go.th/daily_forecast_forweb.php?strProvinceID=8-9-36-48
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Cache-Control: public, max-age=2592000, s-maxage=31557600
Content-Type: application/javascript
Content-Encoding: br
Content-Language: th-TH
Last-Modified: Wed, 25 Jan 2023 17:59:16 GMT
Accept-Ranges: bytes
ETag: "1d930e6bd426f09"
Vary: Accept-Encoding
X-Content-Type-Options: nosniff
Date: Tue, 31 Jan 2023 23:24:26 GMT
Transfer-Encoding: chunked
www.tmd.go.th/CustomTheme3/js/headerTool/script.js?v=p9fcRrqPfMAE6ymY-Is_PZUkuoPpFQgcmZUlsKTFYaM
119.46.126.1200 OK 2.1 kB URL HTTP/1.1 www.tmd.go.th/CustomTheme3/js/headerTool/script.js?v=p9fcRrqPfMAE6ymY-Is_PZUkuoPpFQgcmZUlsKTFYaM
IP 119.46.126.1:0
ASN #58692 DOTS Solutions Co., Ltd.
File type ASCII text, with CRLF line terminators
Hash 95e7bb44c5d1d5864929f1f32d7a0270
78af78dc0ed971034466b93c4ee1338777841906
7a32b45af742ff3a87e44996ff494ec9e1694e0a4b3d1d700df39740a3d5a7e4
GET /CustomTheme3/js/headerTool/script.js?v=p9fcRrqPfMAE6ymY-Is_PZUkuoPpFQgcmZUlsKTFYaM HTTP/1.1
Host: www.tmd.go.th
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tmd.go.th/daily_forecast_forweb.php?strProvinceID=8-9-36-48
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Cache-Control: public, max-age=2592000, s-maxage=31557600
Transfer-Encoding: chunked
Content-Type: application/javascript
Content-Encoding: br
Content-Language: th-TH
Last-Modified: Wed, 25 Jan 2023 17:59:16 GMT
Accept-Ranges: bytes
ETag: "1d930e6bd42699a"
Vary: Accept-Encoding
X-Content-Type-Options: nosniff
Date: Tue, 31 Jan 2023 23:24:26 GMT
www.tmd.go.th/CustomTheme3/css/subPage/footer.css
119.46.126.1200 OK 157 B URL HTTP/1.1 www.tmd.go.th/CustomTheme3/css/subPage/footer.css
IP 119.46.126.1:0
ASN #58692 DOTS Solutions Co., Ltd.
File type ASCII text, with CRLF line terminators
Hash 2fd35f78e4c0854913e39003d3353658
65950936b0a4e8f9a932fe245d55f0a99fe1c01e
5cd61e25e1e0fed30e79692e9901ca8a8189e6e97ab195fa0394e919e22e7ad0
GET /CustomTheme3/css/subPage/footer.css HTTP/1.1
Host: www.tmd.go.th
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tmd.go.th/daily_forecast_forweb.php?strProvinceID=8-9-36-48
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Cache-Control: public, max-age=2592000, s-maxage=31557600
Content-Type: text/css
Content-Encoding: br
Content-Language: th-TH
Last-Modified: Wed, 25 Jan 2023 17:59:16 GMT
Accept-Ranges: bytes
ETag: "1d930e6bd4272bb"
Vary: Accept-Encoding
X-Content-Type-Options: nosniff
Date: Tue, 31 Jan 2023 23:24:26 GMT
Transfer-Encoding: chunked
www.tmd.go.th/OrchardCore.Resources/Vendor/fontawesome-free/css/all.min.css?v=teON4y0UnyJj2Gol8NtuY0GOKW9cQvAE8a0Ve1Bi25Y
119.46.126.1200 OK 14 kB URL HTTP/1.1 www.tmd.go.th/OrchardCore.Resources/Vendor/fontawesome-free/css/all.min.css?v=teON4y0UnyJj2Gol8NtuY0GOKW9cQvAE8a0Ve1Bi25Y
IP 119.46.126.1:0
ASN #58692 DOTS Solutions Co., Ltd.
File type ASCII text, with very long lines (59119), with CRLF line terminators
Hash 160d7b81d7ebe5c1756ed5096d31395a
a91cd560e9adf3be3f161147739037704027aa33
57b1f3bf3031d0fdf8f955bf3dc75ec47d400149720dfbfb62e27ceff55befb7
GET /OrchardCore.Resources/Vendor/fontawesome-free/css/all.min.css?v=teON4y0UnyJj2Gol8NtuY0GOKW9cQvAE8a0Ve1Bi25Y HTTP/1.1
Host: www.tmd.go.th
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tmd.go.th/daily_forecast_forweb.php?strProvinceID=8-9-36-48
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Cache-Control: public, max-age=2592000, s-maxage=31557600
Content-Type: text/css
Content-Encoding: br
Content-Language: en-US
Last-Modified: Wed, 25 Jan 2023 17:59:58 GMT
Accept-Ranges: bytes
ETag: "1d930e6d64bc4ad"
Vary: Accept-Encoding
X-Content-Type-Options: nosniff
Date: Tue, 31 Jan 2023 23:24:26 GMT
Transfer-Encoding: chunked
www.tmd.go.th/OrchardCore.Resources/Scripts/popper.min.js?v=JRJVi1YtFpa3ABvi3zr7jwfeQ_qsw7MaNE01wEkhKT4
119.46.126.1200 OK 9.6 kB URL HTTP/1.1 www.tmd.go.th/OrchardCore.Resources/Scripts/popper.min.js?v=JRJVi1YtFpa3ABvi3zr7jwfeQ_qsw7MaNE01wEkhKT4
IP 119.46.126.1:0
ASN #58692 DOTS Solutions Co., Ltd.
File type ASCII text, with very long lines (23618), with CRLF line terminators
Hash 8b644e52e67466d3873a3ff25af46620
b0d49d86071fe2f47720058a38bebf4128bf05ae
15c71161949d173501cfd81fdeb3ad9f75902657c605072f819cfca592ab81ff
GET /OrchardCore.Resources/Scripts/popper.min.js?v=JRJVi1YtFpa3ABvi3zr7jwfeQ_qsw7MaNE01wEkhKT4 HTTP/1.1
Host: www.tmd.go.th
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tmd.go.th/daily_forecast_forweb.php?strProvinceID=8-9-36-48
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Cache-Control: public, max-age=2592000, s-maxage=31557600
Content-Type: application/javascript
Content-Encoding: br
Content-Language: en-US
Last-Modified: Wed, 25 Jan 2023 17:59:58 GMT
Accept-Ranges: bytes
ETag: "1d930e6d64b7f44"
Vary: Accept-Encoding
X-Content-Type-Options: nosniff
Date: Tue, 31 Jan 2023 23:24:26 GMT
Transfer-Encoding: chunked
www.tmd.go.th/OrchardCore.Resources/Scripts/bootstrap.min.js?v=s5_ripUeygE2SiaehCRwJaeYxBBXUiZK9XJUC6SQxPM
119.46.126.1200 OK 24 kB URL HTTP/1.1 www.tmd.go.th/OrchardCore.Resources/Scripts/bootstrap.min.js?v=s5_ripUeygE2SiaehCRwJaeYxBBXUiZK9XJUC6SQxPM
IP 119.46.126.1:0
ASN #58692 DOTS Solutions Co., Ltd.
File type ASCII text, with very long lines (60381), with CRLF line terminators
Hash a205b203bb3b6a8052105f5e2d6b3711
b887fb1bf32de295b8003ac731b4414dacc16d50
efd01129cc7a876640f36768d658aab3bfe8688730229e93d19b2c31155b7c12
GET /OrchardCore.Resources/Scripts/bootstrap.min.js?v=s5_ripUeygE2SiaehCRwJaeYxBBXUiZK9XJUC6SQxPM HTTP/1.1
Host: www.tmd.go.th
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tmd.go.th/daily_forecast_forweb.php?strProvinceID=8-9-36-48
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Cache-Control: public, max-age=2592000, s-maxage=31557600
Content-Type: application/javascript
Content-Encoding: br
Content-Language: en-US
Last-Modified: Wed, 25 Jan 2023 17:59:58 GMT
Accept-Ranges: bytes
ETag: "1d930e6d64a02f8"
Vary: Accept-Encoding
X-Content-Type-Options: nosniff
Date: Tue, 31 Jan 2023 23:24:26 GMT
Transfer-Encoding: chunked
www.tmd.go.th/CustomTheme3/js/subpage/backToTop.js?v=zplkGH0gtzt-vrU8tD1WWZwoMPPM9PNDdgipJEV8jRU
119.46.126.1200 OK 273 B URL HTTP/1.1 www.tmd.go.th/CustomTheme3/js/subpage/backToTop.js?v=zplkGH0gtzt-vrU8tD1WWZwoMPPM9PNDdgipJEV8jRU
IP 119.46.126.1:0
ASN #58692 DOTS Solutions Co., Ltd.
File type ASCII text, with CRLF line terminators
Hash adfe4f50caafb31ae063c31f1bf55750
6b295f936a62cbb56efa719e483efd27fd91ef1e
9b83c54d5abbd393ac1d775a21e88fd8907d3331026aa064e01ff8bd2293e466
GET /CustomTheme3/js/subpage/backToTop.js?v=zplkGH0gtzt-vrU8tD1WWZwoMPPM9PNDdgipJEV8jRU HTTP/1.1
Host: www.tmd.go.th
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tmd.go.th/daily_forecast_forweb.php?strProvinceID=8-9-36-48
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Cache-Control: public, max-age=2592000, s-maxage=31557600
Transfer-Encoding: chunked
Content-Type: application/javascript
Content-Encoding: br
Content-Language: th-TH
Last-Modified: Wed, 25 Jan 2023 17:59:16 GMT
Accept-Ranges: bytes
ETag: "1d930e6bd4273ec"
Vary: Accept-Encoding
X-Content-Type-Options: nosniff
Date: Tue, 31 Jan 2023 23:24:26 GMT
www.tmd.go.th/CookieConsent.OrchardCore/Scripts/cookieconsent.js
119.46.126.1200 OK 54 kB URL HTTP/1.1 www.tmd.go.th/CookieConsent.OrchardCore/Scripts/cookieconsent.js
IP 119.46.126.1:0
ASN #58692 DOTS Solutions Co., Ltd.
File type HTML document, Unicode text, UTF-8 text, with very long lines (698), with CRLF line terminators
Hash cbe3ee27c9a8c5b27271ce0079622f18
127e18d0e3d6dc4a868d635136e1c44033c95021
1206eaba725435d34f0ac0a36a775b3b327c8e2c3f9de1f10b0a23b661e1a875
GET /CookieConsent.OrchardCore/Scripts/cookieconsent.js HTTP/1.1
Host: www.tmd.go.th
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tmd.go.th/daily_forecast_forweb.php?strProvinceID=8-9-36-48
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Cache-Control: public, max-age=2592000, s-maxage=31557600
Transfer-Encoding: chunked
Content-Type: application/javascript
Content-Encoding: br
Content-Language: en-US
Last-Modified: Thu, 22 Jul 2021 05:27:12 GMT
Accept-Ranges: bytes
ETag: "1d77eba393f531f"
Vary: Accept-Encoding
X-Content-Type-Options: nosniff
Date: Tue, 31 Jan 2023 23:24:26 GMT
www.tmd.go.th/CustomTheme3/logoes/Nav/logo_navbar.png
119.46.126.1200 OK 12 kB URL HTTP/1.1 www.tmd.go.th/CustomTheme3/logoes/Nav/logo_navbar.png
IP 119.46.126.1:0
ASN #58692 DOTS Solutions Co., Ltd.
File type PNG image data, 230 x 56, 8-bit/color RGBA, non-interlaced\012- data
Hash 2187338676ea52eb2a9bf08bdd6bd202
d590de7ccecc40d1a052a4ebb9e596ae2d09debe
dfdea575be0cec765a73a6955c8d673036a284bd802d868b773b45ed5dc7a1ab
GET /CustomTheme3/logoes/Nav/logo_navbar.png HTTP/1.1
Host: www.tmd.go.th
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tmd.go.th/daily_forecast_forweb.php?strProvinceID=8-9-36-48
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Cache-Control: public, max-age=2592000, s-maxage=31557600
Content-Length: 12427
Content-Type: image/png
Content-Language: th-TH
Last-Modified: Wed, 25 Jan 2023 17:59:16 GMT
Accept-Ranges: bytes
ETag: "1d930e6bd42428b"
X-Content-Type-Options: nosniff
Date: Tue, 31 Jan 2023 23:24:27 GMT
www.tmd.go.th/CustomTheme3/logoes/Nav/logo_navbar_white.png
119.46.126.1200 OK 12 kB URL HTTP/1.1 www.tmd.go.th/CustomTheme3/logoes/Nav/logo_navbar_white.png
IP 119.46.126.1:0
ASN #58692 DOTS Solutions Co., Ltd.
File type PNG image data, 230 x 56, 8-bit/color RGBA, non-interlaced\012- data
Hash e7a3d7fd7e6977ca33301d34ee7cc4bc
741747c61c2cc2932b8b777550d205d4be956d3c
c546dd3b36846001053f245ec8168b75ab7b76f3ea63cbc558e97ba26e25f57a
GET /CustomTheme3/logoes/Nav/logo_navbar_white.png HTTP/1.1
Host: www.tmd.go.th
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tmd.go.th/daily_forecast_forweb.php?strProvinceID=8-9-36-48
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Cache-Control: public, max-age=2592000, s-maxage=31557600
Content-Type: image/png
Content-Language: th-TH
Last-Modified: Wed, 25 Jan 2023 17:59:16 GMT
Accept-Ranges: bytes
ETag: "1d930e6bd425f78"
X-Content-Type-Options: nosniff
Date: Tue, 31 Jan 2023 23:24:27 GMT
Content-Length: 11640
www.tmd.go.th/CustomTheme3/logoes/Union.svg
119.46.126.1200 OK 754 B URL HTTP/1.1 www.tmd.go.th/CustomTheme3/logoes/Union.svg
IP 119.46.126.1:0
ASN #58692 DOTS Solutions Co., Ltd.
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (651), with CRLF line terminators
Hash 43cc946d1c6c3689a69fd864936defd1
23a4581e1365632b97b470ceca74a9433580355a
db3c04f8b77209cc0359f733620127437a90f04e4da2d18bde4fde803275de5d
GET /CustomTheme3/logoes/Union.svg HTTP/1.1
Host: www.tmd.go.th
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tmd.go.th/daily_forecast_forweb.php?strProvinceID=8-9-36-48
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Cache-Control: public, max-age=2592000, s-maxage=31557600
Content-Type: image/svg+xml
Content-Language: th-TH
Last-Modified: Wed, 25 Jan 2023 17:59:16 GMT
Accept-Ranges: bytes
ETag: "1d930e6bd4270f2"
X-Content-Type-Options: nosniff
Date: Tue, 31 Jan 2023 23:24:27 GMT
Content-Length: 754
www.tmd.go.th/media/logoes/logo_footer.png
119.46.126.1200 OK 8.6 kB URL HTTP/1.1 www.tmd.go.th/media/logoes/logo_footer.png
IP 119.46.126.1:0
ASN #58692 DOTS Solutions Co., Ltd.
File type PNG image data, 180 x 44, 8-bit/color RGBA, non-interlaced\012- data
Hash 76a69b9667c5d831ffeb1b70bab1e8dc
9173f95d666488d22154d49b1fa70de3e13e7752
20fe82bedd7275c305b80eb866b3c523fd75d9ce553954b262e1d58339fbaffb
GET /media/logoes/logo_footer.png HTTP/1.1
Host: www.tmd.go.th
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tmd.go.th/daily_forecast_forweb.php?strProvinceID=8-9-36-48
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Cache-Control: public, must-revalidate, max-age=2592000
Content-Type: image/png
Content-Language: th-TH
Last-Modified: Fri, 09 Dec 2022 12:40:58 GMT
Accept-Ranges: bytes
ETag: "1d90bcb7c8c8882"
Content-Security-Policy: default-src 'self'; style-src 'unsafe-inline'
X-Content-Type-Options: nosniff
Date: Tue, 31 Jan 2023 23:24:27 GMT
Content-Length: 8578
www.tmd.go.th/media/logoes/logo_footer_white.png
119.46.126.1200 OK 7.7 kB URL HTTP/1.1 www.tmd.go.th/media/logoes/logo_footer_white.png
IP 119.46.126.1:0
ASN #58692 DOTS Solutions Co., Ltd.
File type PNG image data, 180 x 44, 8-bit/color RGBA, non-interlaced\012- data
Hash a0277bf4fb1b396bda633ac9d30df92b
4e8c1249fc1f185e66e7f990d9ebdd7cc17f524e
ec0e3430cbe23b0532bc0bd93e5f6cb1eec5aa6fdffb0e23b8eadf4ce34458e8
GET /media/logoes/logo_footer_white.png HTTP/1.1
Host: www.tmd.go.th
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tmd.go.th/daily_forecast_forweb.php?strProvinceID=8-9-36-48
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Cache-Control: public, must-revalidate, max-age=2592000
Content-Type: image/png
Content-Language: th-TH
Last-Modified: Fri, 09 Dec 2022 12:40:58 GMT
Accept-Ranges: bytes
ETag: "1d90bcb7c8cb70c"
Content-Security-Policy: default-src 'self'; style-src 'unsafe-inline'
X-Content-Type-Options: nosniff
Date: Tue, 31 Jan 2023 23:24:27 GMT
Content-Length: 7692
www.tmd.go.th/CustomTheme3/css/print.css
119.46.126.1200 OK 356 B URL HTTP/1.1 www.tmd.go.th/CustomTheme3/css/print.css
IP 119.46.126.1:0
ASN #58692 DOTS Solutions Co., Ltd.
File type ASCII text, with CRLF line terminators
Hash 665b440e0f652bafb7d3e492e67a379a
b78be62734665a75ba915d4e5e04247c7fe4d264
673f153db230cdd9b4c810e30fb2395dd89de17ab13ce7c18af0b17c86ece25d
GET /CustomTheme3/css/print.css HTTP/1.1
Host: www.tmd.go.th
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tmd.go.th/daily_forecast_forweb.php?strProvinceID=8-9-36-48
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Cache-Control: public, max-age=2592000, s-maxage=31557600
Content-Type: text/css
Content-Encoding: br
Content-Language: th-TH
Last-Modified: Wed, 25 Jan 2023 17:59:16 GMT
Accept-Ranges: bytes
ETag: "1d930e6bd42777e"
Vary: Accept-Encoding
X-Content-Type-Options: nosniff
Date: Tue, 31 Jan 2023 23:24:27 GMT
Transfer-Encoding: chunked
www.tmd.go.th/OrchardCore.Resources/Vendor/fontawesome-free/webfonts/fa-brands-400.woff2
119.46.126.1200 OK 77 kB URL HTTP/1.1 www.tmd.go.th/OrchardCore.Resources/Vendor/fontawesome-free/webfonts/fa-brands-400.woff2
IP 119.46.126.1:0
ASN #58692 DOTS Solutions Co., Ltd.
File type Web Open Font Format (Version 2), TrueType, length 76736, version 331.-31196\012- data
Hash ed311c7a0ade9a75bb3ebf5a7670f31d
0613c7ebba55ee47ef302c0f7766324692f899a7
8ea8791754915a898a3100e63e32978a6d1763be6df8e73a39d3a90d691cdeef
GET /OrchardCore.Resources/Vendor/fontawesome-free/webfonts/fa-brands-400.woff2 HTTP/1.1
Host: www.tmd.go.th
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://www.tmd.go.th/OrchardCore.Resources/Vendor/fontawesome-free/css/all.min.css?v=teON4y0UnyJj2Gol8NtuY0GOKW9cQvAE8a0Ve1Bi25Y
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Cache-Control: public, max-age=2592000, s-maxage=31557600
Content-Length: 76736
Content-Type: font/woff2
Content-Language: en-US
Last-Modified: Wed, 25 Jan 2023 17:59:58 GMT
Accept-Ranges: bytes
ETag: "1d930e6d64a08c0"
X-Content-Type-Options: nosniff
Date: Tue, 31 Jan 2023 23:24:27 GMT
ocsp.sectigo.com/
104.18.32.68200 OK 472 B IP 104.18.32.68:0
Hash f395dea295593dbca0201c5356862c32
6eb2a2a1c5f0e4405bac4d6e2c1715ec09c44686
ebe266f9fabdafe07132a8e13bc984616cd7a8aee60360b8ff458738de64f2ca
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 31 Jan 2023 23:24:28 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Sun, 29 Jan 2023 08:18:01 GMT
Expires: Sun, 05 Feb 2023 08:18:00 GMT
Etag: "6eb2a2a1c5f0e4405bac4d6e2c1715ec09c44686"
Cache-Control: max-age=377012,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb3
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 79263370dc740b65-OSL
ocsp.sectigo.com/
104.18.32.68200 OK 472 B IP 104.18.32.68:0
Hash f395dea295593dbca0201c5356862c32
6eb2a2a1c5f0e4405bac4d6e2c1715ec09c44686
ebe266f9fabdafe07132a8e13bc984616cd7a8aee60360b8ff458738de64f2ca
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 31 Jan 2023 23:24:28 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Sun, 29 Jan 2023 08:18:01 GMT
Expires: Sun, 05 Feb 2023 08:18:00 GMT
Etag: "6eb2a2a1c5f0e4405bac4d6e2c1715ec09c44686"
Cache-Control: max-age=377011,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb2
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 79263374ee7e0b65-OSL
www.tmd.go.th/OrchardCore.Resources/Vendor/fontawesome-free/webfonts/fa-solid-900.woff2
119.46.126.1200 OK 78 kB URL HTTP/1.1 www.tmd.go.th/OrchardCore.Resources/Vendor/fontawesome-free/webfonts/fa-solid-900.woff2
IP 119.46.126.1:0
ASN #58692 DOTS Solutions Co., Ltd.
File type Web Open Font Format (Version 2), TrueType, length 78268, version 331.-31196\012- data
Hash d824df7eb2e268626a2dd9a6a741ac4e
0ccb2c814a7e4ca12c4778821633809cb0361eaa
9834b82ad26e2a37583d22676a12dd2eb0fe7c80356a2114d0db1aa8b3899537
GET /OrchardCore.Resources/Vendor/fontawesome-free/webfonts/fa-solid-900.woff2 HTTP/1.1
Host: www.tmd.go.th
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://www.tmd.go.th/OrchardCore.Resources/Vendor/fontawesome-free/css/all.min.css?v=teON4y0UnyJj2Gol8NtuY0GOKW9cQvAE8a0Ve1Bi25Y
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Cache-Control: public, max-age=2592000, s-maxage=31557600
Content-Length: 78268
Content-Type: font/woff2
Content-Language: en-US
Last-Modified: Wed, 25 Jan 2023 17:59:58 GMT
Accept-Ranges: bytes
ETag: "1d930e6d64a12bc"
X-Content-Type-Options: nosniff
Date: Tue, 31 Jan 2023 23:24:27 GMT
www.tmd.go.th/CustomTheme3/webfont/fonts/TMD-Icon.ttf?bexwhr
119.46.126.1200 OK 14 kB URL HTTP/1.1 www.tmd.go.th/CustomTheme3/webfont/fonts/TMD-Icon.ttf?bexwhr
IP 119.46.126.1:0
ASN #58692 DOTS Solutions Co., Ltd.
File type TrueType Font data, 11 tables, 1st "OS/2", 14 names, Macintosh, type 1 string, TMD-Icon \012- data
Hash 1b190e469058ec4e80730efe9e7f7ebe
fd6f06d2e9d95163e61338f1fc02a07711646828
c2521f17dabfaef09436350d16e4099f3dd1896bfb87e1f0832b9abbe851f576
GET /CustomTheme3/webfont/fonts/TMD-Icon.ttf?bexwhr HTTP/1.1
Host: www.tmd.go.th
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tmd.go.th/CustomTheme3/webfont/tmd-icon-style.css?v=urnCMaH96Yq1twsUBEVhCHzU-iESsVXF7uxaQ9AbFgI
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Cache-Control: public, max-age=2592000, s-maxage=31557600
Content-Type: application/x-font-ttf
Content-Language: th-TH
Last-Modified: Wed, 25 Jan 2023 17:59:16 GMT
Accept-Ranges: bytes
ETag: "1d930e6bd424518"
X-Content-Type-Options: nosniff
Date: Tue, 31 Jan 2023 23:24:27 GMT
Content-Length: 14104
www.tmd.go.th/CustomTheme3/font/NotoSansThai-Regular.otf
119.46.126.1200 OK 287 kB URL HTTP/1.1 www.tmd.go.th/CustomTheme3/font/NotoSansThai-Regular.otf
IP 119.46.126.1:0
ASN #58692 DOTS Solutions Co., Ltd.
File type OpenType font data\012- data
Size 287 kB (287188 bytes)
Hash d693d4b5986a925902ef7af9ffd96c91
b94ae64c7595130663ad44c54ccbf782f0726f40
9e3db053f93ddba9a6a3cb43ea23bad715549ecc5371f8555d606259b1091f6b
GET /CustomTheme3/font/NotoSansThai-Regular.otf HTTP/1.1
Host: www.tmd.go.th
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tmd.go.th/CustomTheme3/css/custom.css?v=LmX0MBP4i8o_KxsEAOeaBgOeSgdIRIRP0_L0SRHOV_k
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Cache-Control: public, max-age=2592000, s-maxage=31557600
Content-Length: 287188
Content-Type: font/otf
Content-Language: th-TH
Last-Modified: Wed, 25 Jan 2023 17:59:16 GMT
Accept-Ranges: bytes
ETag: "1d930e6bd4613d4"
X-Content-Type-Options: nosniff
Date: Tue, 31 Jan 2023 23:24:27 GMT
www.tmd.go.th/CustomTheme3/font/NotoSerifThai-Medium.otf
119.46.126.1200 OK 378 kB URL HTTP/1.1 www.tmd.go.th/CustomTheme3/font/NotoSerifThai-Medium.otf
IP 119.46.126.1:0
ASN #58692 DOTS Solutions Co., Ltd.
File type OpenType font data\012- data
Size 378 kB (378020 bytes)
Hash d39bb861ae7289850c52cc4cfaa629de
59b9bdc08a063e8b3398b45b68e5da3630fc6bbb
42e7f4965fb44269c11245be21ad260e7afb1f7bfa91b06ab6b03a4ef7e8a66b
GET /CustomTheme3/font/NotoSerifThai-Medium.otf HTTP/1.1
Host: www.tmd.go.th
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tmd.go.th/CustomTheme3/css/custom.css?v=LmX0MBP4i8o_KxsEAOeaBgOeSgdIRIRP0_L0SRHOV_k
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Cache-Control: public, max-age=2592000, s-maxage=31557600
Content-Length: 378020
Content-Type: font/otf
Content-Language: th-TH
Last-Modified: Wed, 25 Jan 2023 17:59:16 GMT
Accept-Ranges: bytes
ETag: "1d930e6bd47b6a4"
X-Content-Type-Options: nosniff
Date: Tue, 31 Jan 2023 23:24:27 GMT
www.tmd.go.th/CustomTheme3/font/NotoSerifThai-Regular.otf
119.46.126.1200 OK 367 kB URL HTTP/1.1 www.tmd.go.th/CustomTheme3/font/NotoSerifThai-Regular.otf
IP 119.46.126.1:0
ASN #58692 DOTS Solutions Co., Ltd.
File type OpenType font data\012- data
Size 367 kB (366888 bytes)
Hash 12a9694107663e6184a236ab6c239e55
f911c141d26397c247b48d6426194307359bb2bb
cbf993534abb71cf9a4a217c67786fa9ed55649bf32cc87cdb13a9c55fdfef86
GET /CustomTheme3/font/NotoSerifThai-Regular.otf HTTP/1.1
Host: www.tmd.go.th
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tmd.go.th/CustomTheme3/css/custom.css?v=LmX0MBP4i8o_KxsEAOeaBgOeSgdIRIRP0_L0SRHOV_k
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Cache-Control: public, max-age=2592000, s-maxage=31557600
Content-Length: 366888
Content-Type: font/otf
Content-Language: th-TH
Last-Modified: Wed, 25 Jan 2023 17:59:16 GMT
Accept-Ranges: bytes
ETag: "1d930e6bd47eb28"
X-Content-Type-Options: nosniff
Date: Tue, 31 Jan 2023 23:24:27 GMT
www.tmd.go.th/CustomTheme3/font/NotoSansThai-Medium.otf
119.46.126.1200 OK 295 kB URL HTTP/1.1 www.tmd.go.th/CustomTheme3/font/NotoSansThai-Medium.otf
IP 119.46.126.1:0
ASN #58692 DOTS Solutions Co., Ltd.
File type OpenType font data\012- data
Size 295 kB (295360 bytes)
Hash 2cb5a03760f3df7721007b1ec91ce9d7
026cc4d597350f5502536e74ffe4a543bbfbd36a
0986b41549959efbfe051db8cf33554c16d2d4b2bc76bff45e194f02ca9b3d5b
GET /CustomTheme3/font/NotoSansThai-Medium.otf HTTP/1.1
Host: www.tmd.go.th
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tmd.go.th/CustomTheme3/css/custom.css?v=LmX0MBP4i8o_KxsEAOeaBgOeSgdIRIRP0_L0SRHOV_k
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Cache-Control: public, max-age=2592000, s-maxage=31557600
Content-Length: 295360
Content-Type: font/otf
Content-Language: th-TH
Last-Modified: Wed, 25 Jan 2023 17:59:16 GMT
Accept-Ranges: bytes
ETag: "1d930e6bd46f3c0"
X-Content-Type-Options: nosniff
Date: Tue, 31 Jan 2023 23:24:27 GMT
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash fdbf000f99c93d77c5169461da113540
a04cfd05dbda17eba5660db0fcdeeef482af339a
152308cc51f2263be54334999586abda3f7c0652abe171ecbc8839b1cc578a29
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 23:24:29 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
apis.google.com/js/api.js
172.217.21.174200 OK 9.4 kB URL HTTP/2 apis.google.com/js/api.js
IP 172.217.21.174:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (21571)
Hash d95a782dd62af6b5ea45c0c5a10325b5
752a9fa57b8cdb36af93902444ae9bd3d13219e0
7c038ec104ce3e1c3cf02522bb7d22d232a1accd277bb9b7c2054cf3966fd59d
GET /js/api.js HTTP/1.1
Host: apis.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://console.botnoi.ai/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
access-control-allow-origin: *
content-security-policy: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/gapi-team
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="gapi-team"
report-to: {"group":"gapi-team","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gapi-team"}]}
timing-allow-origin: *
content-length: 6892
date: Tue, 31 Jan 2023 23:24:29 GMT
expires: Tue, 31 Jan 2023 23:24:29 GMT
cache-control: private, max-age=1800, stale-while-revalidate=1800
etag: "3a54ae5e7b38cd35"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.tmd.go.th/CustomTheme3/img/chatbot-saifa.png
119.46.126.1200 OK 5.7 kB URL HTTP/1.1 www.tmd.go.th/CustomTheme3/img/chatbot-saifa.png
IP 119.46.126.1:0
ASN #58692 DOTS Solutions Co., Ltd.
File type PNG image data, 60 x 60, 8-bit/color RGBA, non-interlaced\012- data
Hash 5fceb4668ebf46876fa5a2efb4a460ee
bdece345c3eb57f86548ba1eaa464c11b62d4985
2fcb66f71b90caa9c6aa0d7700a29315725c9701ffba6b050e2b9e851da47cdd
GET /CustomTheme3/img/chatbot-saifa.png HTTP/1.1
Host: www.tmd.go.th
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tmd.go.th/CustomTheme3/css/custom.css?v=LmX0MBP4i8o_KxsEAOeaBgOeSgdIRIRP0_L0SRHOV_k
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Cache-Control: public, max-age=2592000, s-maxage=31557600
Content-Type: image/png
Content-Language: th-TH
Last-Modified: Wed, 25 Jan 2023 17:59:16 GMT
Accept-Ranges: bytes
ETag: "1d930e6bd42645c"
X-Content-Type-Options: nosniff
Date: Tue, 31 Jan 2023 23:24:28 GMT
Content-Length: 5724
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash e0bc98d03057dabba1334b62bea0975b
b358a8123908fe4b1c94a1273cac45c4e23b212e
10ef320ba825ca0e17d039b66fd2f321f4d2c687a8734d226fa25e9b45e109d9
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 23:24:29 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 471 B IP 216.58.211.3:0
Hash 789b41f1f8027d4275a66ac9cb2f124d
c5eff6750f9a50fc52a7a6ec6e30a7afaf28fc79
e053b0b29fc44721473ed39ddfe41064f09b56b3531c765228fa322d599e770f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 23:24:29 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/prompt/v10/-W__XJnvUD7dzB2KYNodREEjew.woff2
216.58.207.227200 OK 11 kB URL HTTP/2 fonts.gstatic.com/s/prompt/v10/-W__XJnvUD7dzB2KYNodREEjew.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 10700, version 1.0\012- data
Hash ec7c9c846ce4d8cb54cad024db37238b
1ed87c3c36233c1f6aad80bdd9e4896cca311d4f
a0c6d06e538b599bbd847490e80da5b8957f191cb66f9a187f458e8f292a4d5b
GET /s/prompt/v10/-W__XJnvUD7dzB2KYNodREEjew.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://console.botnoi.ai
Connection: keep-alive
Referer: https://console.botnoi.ai/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 10700
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 30 Jan 2023 02:08:10 GMT
expires: Tue, 30 Jan 2024 02:08:10 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 27 Apr 2022 15:47:06 GMT
content-type: font/woff2
age: 162979
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 471 B IP 216.58.211.3:0
Hash 789b41f1f8027d4275a66ac9cb2f124d
c5eff6750f9a50fc52a7a6ec6e30a7afaf28fc79
e053b0b29fc44721473ed39ddfe41064f09b56b3531c765228fa322d599e770f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 23:24:29 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
api-gateway.botnoi.ai/message-bar
34.117.105.18204 No Content 0 B URL HTTP/2 api-gateway.botnoi.ai/message-bar
IP 34.117.105.18:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /message-bar HTTP/1.1
Host: api-gateway.botnoi.ai
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://console.botnoi.ai
Connection: keep-alive
Referer: https://console.botnoi.ai/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/2 204 No Content
access-control-allow-credentials: true
access-control-allow-origin: https://console.botnoi.ai
content-type: application/json; charset=UTF-8
vary: Origin
date: Tue, 31 Jan 2023 23:24:30 GMT
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/prompt/v10/-W_8XJnvUD7dzB2C4_0IaWMuUZctdg.woff2
216.58.207.227200 OK 23 kB URL HTTP/2 fonts.gstatic.com/s/prompt/v10/-W_8XJnvUD7dzB2C4_0IaWMuUZctdg.woff2
IP 216.58.207.227:0
File type gzip compressed data, max compression, from Unix\012- data
Hash 280d0aa20518ce72c87e1dc15d374373
10f2717d55e23e0204d4ba01f89d3f08d183b312
c6944bf0404c9c65456bb580feea121f9375579c6f52293c56a5c0003de7142b
GET /s/prompt/v10/-W_8XJnvUD7dzB2C4_0IaWMuUZctdg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://console.botnoi.ai
Connection: keep-alive
Referer: https://console.botnoi.ai/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 9980
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 31 Jan 2023 06:48:56 GMT
expires: Wed, 31 Jan 2024 06:48:56 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 27 Apr 2022 15:42:00 GMT
content-type: font/woff2
age: 59734
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/prompt/v10/-W_8XJnvUD7dzB2C4_0IfWMuUZctdhow.woff2
216.58.207.227200 OK 6.4 kB URL HTTP/2 fonts.gstatic.com/s/prompt/v10/-W_8XJnvUD7dzB2C4_0IfWMuUZctdhow.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 6388, version 1.0\012- data
Hash d11cdc55945caf12361c59938c65edf5
d57f732c1487bdd241abab5be199891d2f865a72
f349fb5fe9a17aaf13f84adfe441f7d0388bf94c4a7eaed8414dfcbebd09742c
GET /s/prompt/v10/-W_8XJnvUD7dzB2C4_0IfWMuUZctdhow.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://console.botnoi.ai
Connection: keep-alive
Referer: https://console.botnoi.ai/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 6388
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 25 Jan 2023 12:57:02 GMT
expires: Thu, 25 Jan 2024 12:57:02 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 27 Apr 2022 15:41:25 GMT
content-type: font/woff2
age: 556048
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/prompt/v10/-W__XJnvUD7dzB2KdNodREEje60k.woff2
216.58.207.227200 OK 6.5 kB URL HTTP/2 fonts.gstatic.com/s/prompt/v10/-W__XJnvUD7dzB2KdNodREEje60k.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 6504, version 1.0\012- data
Hash 06e3c7fe8cb7a4e11e8ce37ce61f13e4
98de213d22c7b9ca7458706f867f1605adea1c32
748c626f79917caf0e0fca551f2bf6047cc2bf0a992b42619eddbee91831188e
GET /s/prompt/v10/-W__XJnvUD7dzB2KdNodREEje60k.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://console.botnoi.ai
Connection: keep-alive
Referer: https://console.botnoi.ai/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 6504
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 27 Jan 2023 02:06:42 GMT
expires: Sat, 27 Jan 2024 02:06:42 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 27 Apr 2022 15:46:19 GMT
content-type: font/woff2
age: 422268
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/prompt/v10/-W_8XJnvUD7dzB2Cv_4IaWMuUZctdg.woff2
216.58.207.227200 OK 10 kB URL HTTP/2 fonts.gstatic.com/s/prompt/v10/-W_8XJnvUD7dzB2Cv_4IaWMuUZctdg.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 10180, version 1.0\012- data
Hash 95779256faaf9aab1cff543545158ce3
cee14909301e6627642a690c559a6b74d88e833f
cc882ec985b286cc06424ec065e0de8e4a672bbf40547c594d960acc8bdcda16
GET /s/prompt/v10/-W_8XJnvUD7dzB2Cv_4IaWMuUZctdg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://console.botnoi.ai
Connection: keep-alive
Referer: https://console.botnoi.ai/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 10180
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 25 Jan 2023 10:58:27 GMT
expires: Thu, 25 Jan 2024 10:58:27 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 27 Apr 2022 15:46:19 GMT
content-type: font/woff2
age: 563163
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/prompt/v10/-W_8XJnvUD7dzB2Cv_4IfWMuUZctdhow.woff2
216.58.207.227200 OK 6.4 kB URL HTTP/2 fonts.gstatic.com/s/prompt/v10/-W_8XJnvUD7dzB2Cv_4IfWMuUZctdhow.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 6440, version 1.0\012- data
Hash b8e9e0fd34c72ccd68834048b0d4f2a8
09d0f6d8126906284684c9708c75acd49e9be5e1
e02d2327119ba54b63009e59c3c35078964fc019e177dd192c796b5d6e455342
GET /s/prompt/v10/-W_8XJnvUD7dzB2Cv_4IfWMuUZctdhow.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://console.botnoi.ai
Connection: keep-alive
Referer: https://console.botnoi.ai/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 6440
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 29 Jan 2023 04:41:55 GMT
expires: Mon, 29 Jan 2024 04:41:55 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 27 Apr 2022 16:16:42 GMT
content-type: font/woff2
age: 240155
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/prompt/v10/-W_8XJnvUD7dzB2C2_8IaWMuUZctdg.woff2
216.58.207.227200 OK 10 kB URL HTTP/2 fonts.gstatic.com/s/prompt/v10/-W_8XJnvUD7dzB2C2_8IaWMuUZctdg.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 10404, version 1.0\012- data
Hash 20c54cbb4969bbb137383f55854fb322
ad122bfbbc321ba336cea1581f9c8ce256f5e475
b0f7fa0609e25f9d4fb38c703bf1db8ba8dc7c9037d3ab02f4749cb2ee835156
GET /s/prompt/v10/-W_8XJnvUD7dzB2C2_8IaWMuUZctdg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://console.botnoi.ai
Connection: keep-alive
Referer: https://console.botnoi.ai/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 10404
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 28 Jan 2023 12:52:14 GMT
expires: Sun, 28 Jan 2024 12:52:14 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 27 Apr 2022 15:41:50 GMT
content-type: font/woff2
age: 297136
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
54.230.245.100200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.100:0
Hash bfabaed42977089538e4f8a04e2b058a
35f1c862d8d9d97d1cd997021f21ba4a71f59999
8ba3f436fa2c797171704b8c1443d5d399bdfeb0c6dda2ad040499a2074dd776
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=144859
Date: Tue, 31 Jan 2023 23:24:30 GMT
Etag: "63d91c4f-1d7"
Expires: Thu, 02 Feb 2023 15:38:49 GMT
Last-Modified: Tue, 31 Jan 2023 13:49:03 GMT
Server: ECS (nyb/1D1B)
X-Cache: Miss from cloudfront
Via: 1.1 a343e36742f64defd0a2caf1f96ff772.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: yGjQrqIa8CwfPyyZQCtJtjNwda1DmTjSGHPweU4yEnEmdZMOOG2nXg==
Age: 6586
bn-sme-production.s3.amazonaws.com/61b1c83ebe3ad228b01bd3a0/36726bd9-75b1-4ed6-95a1-c5c46a6ddaf7.png
52.217.205.73200 OK 26 kB URL HTTP/1.1 bn-sme-production.s3.amazonaws.com/61b1c83ebe3ad228b01bd3a0/36726bd9-75b1-4ed6-95a1-c5c46a6ddaf7.png
IP 52.217.205.73:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 513x512, components 3\012- data
Hash 3799fcf3742a245713162d2d5d243596
808a4b561a4044a61d68895f98b85d3cc5ca0181
a34d0a3b4e8cfc3c4407284037b6642a13435a70a3b17ecdd0596be9d227cef6
GET /61b1c83ebe3ad228b01bd3a0/36726bd9-75b1-4ed6-95a1-c5c46a6ddaf7.png HTTP/1.1
Host: bn-sme-production.s3.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://console.botnoi.ai/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: uFiXhocps6pAEqRUCmikUZ8TN0KOwSqjofAef1LUpZzsTEROgkQda/1Xst1idW0FvUaHqeDrA4g=
x-amz-request-id: 116FA5JG7JKDE531
Date: Tue, 31 Jan 2023 23:24:31 GMT
Last-Modified: Thu, 09 Dec 2021 09:20:17 GMT
ETag: "3799fcf3742a245713162d2d5d243596"
Accept-Ranges: bytes
Content-Type: image/jpeg
Server: AmazonS3
Content-Length: 26425
www.tmd.go.th/daily_forecast_forweb.php?strProvinceID=8-9-36-48
119.46.126.1302 Redirect 0 B URL HTTP/1.0 www.tmd.go.th/daily_forecast_forweb.php?strProvinceID=8-9-36-48
IP 119.46.126.1:0
ASN #58692 DOTS Solutions Co., Ltd.
GET /daily_forecast_forweb.php?strProvinceID=8-9-36-48 HTTP/1.1
Host: www.tmd.go.th
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://123.242.166.4/
Upgrade-Insecure-Requests: 1
HTTP/1.0 302 Redirect
Connection: Close
Location: https://www.tmd.go.th:443/daily_forecast_forweb.php?strProvinceID=8-9-36-48
console.botnoi.ai/customerchat/index.js
34.117.105.18200 OK 0 B URL HTTP/2 console.botnoi.ai/customerchat/index.js
IP 34.117.105.18:0
GET /customerchat/index.js HTTP/1.1
Host: console.botnoi.ai
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tmd.go.th/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx/1.19.5
date: Tue, 31 Jan 2023 23:24:28 GMT
content-type: application/javascript
last-modified: Thu, 22 Dec 2022 07:01:00 GMT
vary: Accept-Encoding
etag: W/"63a400ac-8cf1"
cache-control: private, max-age=1800, stale-while-revalidate=1800
content-encoding: gzip
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2