Report - 123.242.166.4/webosm/index.php

Report Overview

Submitted URL
123.242.166.4/webosm/index.php
IP
123.242.166.4
ASN
#38450 Ministry of Infomation Communication Technology
Submitted
2023-01-31 23:24:35
Access
Website Title
Final URL
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
86

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
img-getpocket.cdn.mozilla.net	1631	2018-06-22T01:36:00Z	2023-03-13T05:09:16Z	3.2 kB	80 kB	34.120.237.76
thahinc.psru.ac.th	unknown	2017-03-01T11:56:18Z	2022-09-26T12:19:21Z	650 B	59 kB	202.29.80.144
cdnjs.cloudflare.com	235	2015-04-17T22:46:33Z	2023-03-13T05:09:21Z	1.2 kB	37 kB	104.17.24.14
code.jquery.com	634	2012-05-21T19:28:02Z	2023-03-13T05:09:57Z	364 B	85 kB	69.16.175.42
cdn.jsdelivr.net	439	2012-09-30T02:15:09Z	2023-03-13T06:17:54Z	2.4 kB	11 kB	151.101.1.229
www.ocsc.go.th	511598	2012-09-28T11:10:40Z	2023-01-31T17:42:04Z	438 B	38 kB	104.18.25.40
fonts.gstatic.com	unknown	2014-09-09T02:40:21Z	2023-03-13T08:44:36Z	3.5 kB	80 kB	216.58.207.227
bn-sme-production.s3.amazonaws.com	unknown	2022-10-21T10:04:53Z	2023-02-01T00:24:37Z	458 B	27 kB	52.217.205.73
console.botnoi.ai	unknown	2022-07-07T04:08:53Z	2023-02-10T21:34:33Z	372 B	391 B	34.117.105.18
firefox.settings.services.mozilla.com	867	2020-06-04T22:08:41Z	2023-03-13T05:09:10Z	782 B	2.4 kB	35.241.9.150
123.242.166.4	unknown			18 kB	1.6 MB	123.242.166.4
contile.services.mozilla.com	1114	2021-05-27T20:32:35Z	2023-03-13T05:09:13Z	333 B	391 B	34.117.237.239
push.services.mozilla.com	2140	2014-10-24T10:27:06Z	2023-03-13T05:09:14Z	606 B	127 B	54.70.68.230
cdn.datatables.net	5456	2015-10-07T01:00:51Z	2023-03-13T08:39:45Z	792 B	33 kB	172.67.14.139
www.tmd.go.th	327473	2017-01-30T17:13:28Z	2023-01-27T20:38:35Z	15 kB	1.7 MB	119.46.126.1
ocsp.sca1b.amazontrust.com	1015	2017-03-03T16:20:51Z	2019-03-27T05:05:54Z	350 B	1.0 kB	54.230.245.100
apis.google.com	105	2013-05-06T22:20:21Z	2023-03-13T05:09:32Z	362 B	10 kB	172.217.21.174
r3.o.lencr.org	344	2020-12-02T09:52:13Z	2023-03-13T05:09:07Z	2.4 kB	6.2 kB	23.36.77.32
content-signature-2.cdn.mozilla.net	1152	2020-11-03T13:26:46Z	2023-03-13T05:09:35Z	413 B	5.8 kB	34.160.144.191
ocsp.sectigo.com	487	2019-11-29T12:50:24Z	2023-03-13T08:22:43Z	1.0 kB	2.9 kB	104.18.32.68
ocsp.digicert.com	86	2012-05-21T09:02:23Z	2023-03-13T06:00:13Z	1.0 kB	1.6 kB	93.184.220.29
ocsp.globalsign.com	2075	2012-07-20T19:46:16Z	2023-03-13T05:09:19Z	368 B	1.9 kB	104.18.20.226
ocsp.pki.goog	175	2018-07-01T08:43:07Z	2023-03-13T05:09:47Z	2.1 kB	4.2 kB	216.58.211.3
www.googletagmanager.com	75	2013-05-22T04:07:37Z	2023-03-13T08:28:24Z	381 B	78 kB	172.217.21.168
api-gateway.botnoi.ai	unknown	2022-07-07T04:08:58Z	2023-02-10T21:34:37Z	430 B	311 B	34.117.105.18

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2023-01-31	medium	123.242.166.4	Sinkholed
2023-01-31	medium	123.242.166.4	Sinkholed
2023-01-31	medium	123.242.166.4	Sinkholed
2023-01-31	medium	123.242.166.4	Sinkholed
2023-01-31	medium	123.242.166.4	Sinkholed
2023-01-31	medium	123.242.166.4	Sinkholed
2023-01-31	medium	123.242.166.4	Sinkholed
2023-01-31	medium	123.242.166.4	Sinkholed
2023-01-31	medium	123.242.166.4	Sinkholed
2023-01-31	medium	123.242.166.4	Sinkholed
2023-01-31	medium	123.242.166.4	Sinkholed
2023-01-31	medium	123.242.166.4	Sinkholed
2023-01-31	medium	123.242.166.4	Sinkholed
2023-01-31	medium	123.242.166.4	Sinkholed
2023-01-31	medium	123.242.166.4	Sinkholed
2023-01-31	medium	123.242.166.4	Sinkholed
2023-01-31	medium	123.242.166.4	Sinkholed
2023-01-31	medium	123.242.166.4	Sinkholed
2023-01-31	medium	123.242.166.4	Sinkholed
2023-01-31	medium	123.242.166.4	Sinkholed
2023-01-31	medium	123.242.166.4	Sinkholed
2023-01-31	medium	123.242.166.4	Sinkholed
2023-01-31	medium	123.242.166.4	Sinkholed
2023-01-31	medium	123.242.166.4	Sinkholed
2023-01-31	medium	123.242.166.4	Sinkholed
2023-01-31	medium	123.242.166.4	Sinkholed
2023-01-31	medium	123.242.166.4	Sinkholed
2023-01-31	medium	123.242.166.4	Sinkholed
2023-01-31	medium	123.242.166.4	Sinkholed
2023-01-31	medium	123.242.166.4	Sinkholed
2023-01-31	medium	123.242.166.4	Sinkholed
2023-01-31	medium	123.242.166.4	Sinkholed
2023-01-31	medium	123.242.166.4	Sinkholed
2023-01-31	medium	123.242.166.4	Sinkholed
2023-01-31	medium	123.242.166.4	Sinkholed
2023-01-31	medium	123.242.166.4	Sinkholed
2023-01-31	medium	123.242.166.4	Sinkholed
2023-01-31	medium	123.242.166.4	Sinkholed
2023-01-31	medium	123.242.166.4	Sinkholed
2023-01-31	medium	123.242.166.4	Sinkholed
2023-01-31	medium	123.242.166.4	Sinkholed
2023-01-31	medium	123.242.166.4	Sinkholed
2023-01-31	medium	123.242.166.4	Sinkholed

ThreatFox

No alerts detected

JavaScript (50)

	URL	Size	First Seen	Last Seen
	123.242.166.4/webosm/index.php	54 B	2023-03-13	2023-03-13
Pretty URL 123.242.166.4/webosm/index.php IP 123.242.166.4 ASN #38450 Ministry of Infomation Communication Technology Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 13:40:40 Last Seen2023-03-13 13:40:40 Times Seen1 Hash f3c56ad38e0ab554955b44b111251109 4be09d8aa35b068132320119d8e7db36293c94e9 db61e1c6135f19c5808abed452a5349853a11a484538f82b33b652d569831c2f Loading...

	123.242.166.4/webosm/index.php	64 B	2023-03-13	2023-03-13
Pretty URL 123.242.166.4/webosm/index.php IP 123.242.166.4 ASN #38450 Ministry of Infomation Communication Technology Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 13:40:40 Last Seen2023-03-13 13:40:40 Times Seen1 Hash 711820b27ae227e876ffaa87304a22f4 6f652bb5a6481135a1a4f2e3611891eed3ae5f6b efecd17d5f98a44e5b56eead30325e861f3e0b9ad08674b6e7e84fb306a705fe Loading...

	cdn.jsdelivr.net/jquery.jssocials/1.4.0/jssocials.min.js	8.8 kB	2023-03-07	2024-04-18
Pretty URL cdn.jsdelivr.net/jquery.jssocials/1.4.0/jssocials.min.js IP 151.101.1.229 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:02:13 Last Seen2024-04-18 08:50:53 Times Seen875 Hash 35ef958fc20381f35ef5f09cc2e7916f f4a6d0b17a151292568c921d8ee7e66d9e104c35 e8d46dfb4ca0d270a4789461c199b3a7c7ce9ba6a733d6a4abc59ccdafa71170 Loading...

	www.tmd.go.th/daily_forecast_forweb.php?strProvinceID=8-9-36-48	6.5 kB	2023-03-09	2023-03-13
Pretty URL www.tmd.go.th/daily_forecast_forweb.php?strProvinceID=8-9-36-48 IP 119.46.126.1 ASN #58692 DOTS Solutions Co., Ltd. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 13:10:13 Last Seen2023-03-13 13:40:40 Times Seen1 Hash fd6a3cfb133a0f89409c8590283ebc08 31bb7ffbe48dc6390b19a519973e4cf863520f37 a48fb1c42ca58bd2841cca9dda9c67cd82f84a91cafbf8a180f40a9a0a05ddcc Loading...

	www.tmd.go.th/daily_forecast_forweb.php?strProvinceID=8-9-36-48	472 B	2023-03-09	2024-01-31
Pretty URL www.tmd.go.th/daily_forecast_forweb.php?strProvinceID=8-9-36-48 IP 119.46.126.1 ASN #58692 DOTS Solutions Co., Ltd. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 13:10:13 Last Seen2024-01-31 06:19:28 Times Seen5 Hash 7bb3cf49dcb3c1aab0f785a794a36928 a068caf0735e031decd566d435204938bb29fa68 900c7d99d3e326a96ffedf7ba79fb93a5e376501a61136d8302dd4d4eadd082f Loading...

	www.tmd.go.th/CustomTheme3/js/subpage/backToTop.js?v=zplkGH0gtzt-vrU8tD1WWZwoMPPM9PNDdgipJEV8jRU	492 B	2023-03-09	2024-01-31
Pretty URL www.tmd.go.th/CustomTheme3/js/subpage/backToTop.js?v=zplkGH0gtzt-vrU8tD1WWZwoMPPM9PNDdgipJEV8jRU IP 119.46.126.1 ASN #58692 DOTS Solutions Co., Ltd. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 13:10:13 Last Seen2024-01-31 06:19:27 Times Seen8 Hash 76387c5b3f340a3e2b6f6e662a4d8b07 f54e0ac16234ece5743c953a0e1f9c78106c0e67 ce9964187d20b73b7ebeb53cb43d56599c2830f3ccf4f3437608a924457c8d15 Loading...

	123.242.166.4/webosm/index.php	16 B	2023-03-13	2023-08-29
Pretty URL 123.242.166.4/webosm/index.php IP 123.242.166.4 ASN #38450 Ministry of Infomation Communication Technology Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 13:40:40 Last Seen2023-08-29 11:42:36 Times Seen2 Hash a9da36e3aa234a5567e992ca0e65ddc3 aeb4771b5dffccad4596582f68d5579ec87662f8 1433327905dfda8cf37a509270e1cb9ce19c18d88c92fea78058dfbb653e9c19 Loading...

	123.242.166.4/webosm/index.php	174 B	2023-03-09	2023-03-13
Pretty URL 123.242.166.4/webosm/index.php IP 123.242.166.4 ASN #38450 Ministry of Infomation Communication Technology Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 13:10:13 Last Seen2023-03-13 13:40:40 Times Seen1 Hash 64fe9838f08643361df9766aa4c31512 453867c22ae599e23feaaef03217d3162c522674 07805b39bf3d1236a2c2e581e3b76da86edc56de11ecca9d3cbc7b74ff1c8063 Loading...

	cdn.datatables.net/1.11.3/js/jquery.dataTables.min.js	88 kB	2023-03-07	2024-02-28
Pretty URL cdn.datatables.net/1.11.3/js/jquery.dataTables.min.js IP 172.67.14.139 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:25:04 Last Seen2024-02-28 21:47:34 Times Seen47 Hash bdeb087dcd7bbf01ddd89d6a86d461a0 11770eeece87e90c9447857487dde3d93d62855c 80e27f4f754c43406bc33ed562b2e854043e344d1ae6f1e88f5bd72351d42336 Loading...

	www.tmd.go.th/daily_forecast_forweb.php?strProvinceID=8-9-36-48	294 B	2023-03-09	2024-01-31
Pretty URL www.tmd.go.th/daily_forecast_forweb.php?strProvinceID=8-9-36-48 IP 119.46.126.1 ASN #58692 DOTS Solutions Co., Ltd. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 13:10:13 Last Seen2024-01-31 06:19:28 Times Seen5 Hash e43c4ed3db7e65a2170cfc92cff6b616 3c47cdbf2cf4ad8c73b1d78feb216e619a6960b2 e5364391d5129586336e14a8c324ba245940046d61487134560a62ebd02cd754 Loading...

	cdnjs.cloudflare.com/ajax/libs/jspdf/2.5.1/jspdf.umd.min.js	364 kB	2023-03-09	2024-01-31
Pretty URL cdnjs.cloudflare.com/ajax/libs/jspdf/2.5.1/jspdf.umd.min.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 13:10:13 Last Seen2024-01-31 06:19:37 Times Seen18 Hash 4b16d1b6023fa7271c62b3dee913c3ca e53ce4fac9ff70556a53e1a01c8636a33bb48f5d 98ccf17aa10c20bb1301762618fcc9b6ab3a4e7f26b6071d64d0b41154df3875 Loading...

	console.botnoi.ai/scripts.53c4d3e1222295af.js	600 kB	2023-03-09	2023-07-09
Pretty URL console.botnoi.ai/scripts.53c4d3e1222295af.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 13:10:13 Last Seen2023-07-09 09:49:30 Times Seen5 Hash b01b71030c13e8ba783680582c096317 12ae34840be80fe50871846a53d208b6280ec0a4 878ec329357d527747da70e3b3ac6a135d18658718b39377a3cfd64f48272013 Loading...

	console.botnoi.ai/main.8c2f8c029c6e6cd1.js	460 kB	2023-03-13	2023-03-13
Pretty URL console.botnoi.ai/main.8c2f8c029c6e6cd1.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 13:40:40 Last Seen2023-03-13 13:40:40 Times Seen1 Hash d09d7788c11c94d8f5b1d6ff88ac1f3d a985f5e4a8d5c0151d8278a8efa86837b2d3a1ab 296cc7d883c778d352aa593f94797f53dae9460f70c5094b05e771677dd84d3e Loading...

	console.botnoi.ai/vendor.c7f7cd08e5f53071.js	1.8 MB	2023-03-09	2023-03-13
Pretty URL console.botnoi.ai/vendor.c7f7cd08e5f53071.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 13:10:12 Last Seen2023-03-13 13:40:40 Times Seen1 Hash 298de4bb541239314db3db8e6e43bb6d dda60537cf3608d7539e1ab7df9a349bb0cd5b2b b51ea035ba50a14e19d03787614cbe721801607f5d4243bc873f4ab44258ef77 Loading...

	www.tmd.go.th/OrchardCore.Resources/Scripts/bootstrap.min.js?v=s5_ripUeygE2SiaehCRwJaeYxBBXUiZK9XJUC6SQxPM	74 kB	2023-03-09	2024-01-31
Pretty URL www.tmd.go.th/OrchardCore.Resources/Scripts/bootstrap.min.js?v=s5_ripUeygE2SiaehCRwJaeYxBBXUiZK9XJUC6SQxPM IP 119.46.126.1 ASN #58692 DOTS Solutions Co., Ltd. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 13:10:12 Last Seen2024-01-31 06:19:27 Times Seen8 Hash bd5d5e637b7f69f9546239ff100e525e 0977dfdfe1205f96cd62f5d6659ffcbff9d177d3 b39feb8a951eca01364a269e84247025a798c4105752264af572540ba490c4f3 Loading...

	cdn.datatables.net/1.11.3/js/dataTables.bootstrap5.min.js	4.5 kB	2023-03-09	2024-02-28
Pretty URL cdn.datatables.net/1.11.3/js/dataTables.bootstrap5.min.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 13:10:12 Last Seen2024-02-28 00:59:45 Times Seen81 Hash cadc5f7463b65c2493f3af9a8d987db2 4c4883c4b45f57f848109e26e14b6953a64c8355 da26250989894c70aa1082d48ce8eb18558f1c8cb89faf82bc7cce6194f64ada Loading...

	console.botnoi.ai/src_app_modules_customer-chat_customer-chat_module_ts.8004299f7a4cc921.js	55 kB	2023-03-09	2023-03-13
Pretty URL console.botnoi.ai/src_app_modules_customer-chat_customer-chat_module_ts.8004299f7a4cc921.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 13:10:13 Last Seen2023-03-13 13:40:40 Times Seen1 Hash 7f6154f02bd362d4d15f6b0e668b0b17 ba0732f705fe8fe02267f4a6e8a49da45c1f278a f69eba320795e6a90ddb51766c71754a367849af399a0ff618b9be132382097a Loading...

	www.tmd.go.th/CustomTheme3/js/global.js?v=Y43r3KOxXD_eYjHER9Cxd1Hu-gJ--s45Jw_tSJrugWM	7.4 kB	2023-03-12	2024-01-31
Pretty URL www.tmd.go.th/CustomTheme3/js/global.js?v=Y43r3KOxXD_eYjHER9Cxd1Hu-gJ--s45Jw_tSJrugWM IP 119.46.126.1 ASN #58692 DOTS Solutions Co., Ltd. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-12 18:02:03 Last Seen2024-01-31 06:19:28 Times Seen7 Hash ff26e8422632c43e6910d6d73a911900 3c97a87edbf63bba0c9ac70d97e44a3ef3719d6c 638debdca3b15c3fde6231c447d0b17751eefa027eface39270fed489aee8163 Loading...

	www.tmd.go.th/CustomTheme3/js/headerTool/script.js?v=p9fcRrqPfMAE6ymY-Is_PZUkuoPpFQgcmZUlsKTFYaM	7.1 kB	2023-03-09	2024-01-31
Pretty URL www.tmd.go.th/CustomTheme3/js/headerTool/script.js?v=p9fcRrqPfMAE6ymY-Is_PZUkuoPpFQgcmZUlsKTFYaM IP 119.46.126.1 ASN #58692 DOTS Solutions Co., Ltd. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 13:10:13 Last Seen2024-01-31 06:19:37 Times Seen11 Hash 840a4e1ff641c7193f16cc8d0a757650 7d1a7b97ec0d100ffa48cd6b6c834c250a78154c a7d7dc46ba8f7cc004eb2998f88b3f3d9524ba83e915081c999525b0a4c561a3 Loading...

	www.tmd.go.th/CookieConsent.OrchardCore/Scripts/cookieconsent.js	208 kB	2023-03-09	2024-01-31
Pretty URL www.tmd.go.th/CookieConsent.OrchardCore/Scripts/cookieconsent.js IP 119.46.126.1 ASN #58692 DOTS Solutions Co., Ltd. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 13:10:13 Last Seen2024-01-31 06:19:28 Times Seen8 Hash d243daefe710e76d39ccce0d3466a650 89f1fc8161cc9ebe33d0738a91f712848f985738 26932bcd6a70bd1dfe4d220ca74404f94d8e75af67b287eb39dae0672c189365 Loading...

	www.tmd.go.th/daily_forecast_forweb.php?strProvinceID=8-9-36-48	150 B	2023-03-09	2024-01-31
Pretty URL www.tmd.go.th/daily_forecast_forweb.php?strProvinceID=8-9-36-48 IP 119.46.126.1 ASN #58692 DOTS Solutions Co., Ltd. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 13:10:13 Last Seen2024-01-31 06:19:27 Times Seen5 Hash ed734fecc94e00f7dc85eabc9303fd46 d4e5cffa04f225eae2e4277f1199881b18651128 42e376f50dabc57364e8474e9c4427f4bbee074494868c943fd1a35c10e835bc Loading...

	apis.google.com/js/api.js	18 kB	2023-03-13	2024-03-27
Pretty URL apis.google.com/js/api.js IP 172.217.21.174 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 07:20:38 Last Seen2024-03-27 17:56:19 Times Seen143 Hash 4fd69436d550a9ed02c610a85aede8b1 2048bd4433aa5a8fa9583df01c2b82055480a535 1fe505460b64dc2fb0eaff5c3cbb50bcd65257e4faada4a98134f0f0610cc786 Loading...

	console.botnoi.ai/polyfills.e49107e525baf31c.js	38 kB	2023-03-09	2023-07-09
Pretty URL console.botnoi.ai/polyfills.e49107e525baf31c.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 13:10:13 Last Seen2023-07-09 09:49:27 Times Seen4 Hash 0dbc6736aca0a3dabd2c5ce24e76fbe8 a367cf2b7e48c8198c0494e81569dd1d28096bc9 a25cc7ff2361ae94e0b92652a79dd8c3ef5bc731d8a1492c1f4e2f9aec09510d Loading...

	123.242.166.4/webosm/index.php	232 B	2023-03-13	2023-03-13
Pretty URL 123.242.166.4/webosm/index.php IP 123.242.166.4 ASN #38450 Ministry of Infomation Communication Technology Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 13:40:40 Last Seen2023-03-13 13:40:40 Times Seen1 Hash d8abd14c790c69edf8106f93d1f9d57f 1bac10dbdb7dc5907e91a1f8837936aa21c1b152 1c871f591bc2145d6b9fb4d4afcfa0af4a8df5969cf7c95f0c521b1e57971aaf Loading...

	cdnjs.cloudflare.com/ajax/libs/select2/4.0.3/js/select2.min.js	67 kB	2023-03-07	2024-04-24
Pretty URL cdnjs.cloudflare.com/ajax/libs/select2/4.0.3/js/select2.min.js IP 104.17.24.14 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:06:24 Last Seen2024-04-24 09:36:58 Times Seen1519 Hash e87ca4c3554f7b9e693605ce12d3a234 fffd0bf48918d33bc612be1fefc120ee23b1a1ee fa659dfc6ebd4b8aad80fa304842c879502fefe16e2fcef55976a89605e7af04 Loading...

	console.botnoi.ai/runtime.79cbf82c3e7e2514.js	5.6 kB	2023-03-09	2023-03-13
Pretty URL console.botnoi.ai/runtime.79cbf82c3e7e2514.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 13:10:13 Last Seen2023-03-13 13:40:40 Times Seen1 Hash bc22bd97d8f0595c8a907d9649de13df 1875bf19611278a80467a60d04d6e126864f4629 0fc953b010e85ecb90ec1e1702947a99500fc7f7f193f11146cb571c38a445e8 Loading...

	123.242.166.4/webosm/index.php	28 B	2023-03-13	2023-08-29
Pretty URL 123.242.166.4/webosm/index.php IP 123.242.166.4 ASN #38450 Ministry of Infomation Communication Technology Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 13:40:40 Last Seen2023-08-29 11:42:36 Times Seen2 Hash ac12bed762e722ac1fc6e98f52590b65 34ff6a2bdd230a8ada4df0f21eb95efa3bf8432c 0279f02e0ae787764f336696b4e543a8076a754ef9a1e592f5b96fe75f6b8861 Loading...

	123.242.166.4/webosm/index.php	84 B	2023-03-13	2023-03-13
Pretty URL 123.242.166.4/webosm/index.php IP 123.242.166.4 ASN #38450 Ministry of Infomation Communication Technology Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 13:40:40 Last Seen2023-03-13 13:40:40 Times Seen1 Hash 6c9425471ae3ba07eb3a1c2ca1342128 ca15df3cc5a6f29b02b1a438638a5b78e6fde917 6bad0b00a3c12be08710cec1204cf5ae9a841ef5b2ede16ef68cf05a2c049c2b Loading...

	www.tmd.go.th/OrchardCore.Resources/Scripts/popper.min.js?v=JRJVi1YtFpa3ABvi3zr7jwfeQ_qsw7MaNE01wEkhKT4	24 kB	2023-03-09	2024-01-31
Pretty URL www.tmd.go.th/OrchardCore.Resources/Scripts/popper.min.js?v=JRJVi1YtFpa3ABvi3zr7jwfeQ_qsw7MaNE01wEkhKT4 IP 119.46.126.1 ASN #58692 DOTS Solutions Co., Ltd. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 13:10:13 Last Seen2024-01-31 06:19:34 Times Seen9 Hash 015db5c8e2a554585bc43918bf728df4 bd64c53803daf6d9eaeb50c0097a75d9de48623b 2512558b562d1696b7001be2df3afb8f07de43faacc3b31a344d35c04921293e Loading...

	www.tmd.go.th/daily_forecast_forweb.php?strProvinceID=8-9-36-48	141 B	2023-03-09	2024-01-31
Pretty URL www.tmd.go.th/daily_forecast_forweb.php?strProvinceID=8-9-36-48 IP 119.46.126.1 ASN #58692 DOTS Solutions Co., Ltd. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 13:10:13 Last Seen2024-01-31 06:19:27 Times Seen5 Hash 46b1bf09be8f77e16d5acfc24fbca8e8 7b69612af3d7fdac948a92ae35d668990222ae8b 9bdd4c205438d5783b1a689c3a0922a3aaf968a9595c3ec79f1b296ad9716293 Loading...

	console.botnoi.ai/customerchat/index.js	36 kB	2023-03-09	2024-01-31
Pretty URL console.botnoi.ai/customerchat/index.js IP 34.117.105.18 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 13:10:13 Last Seen2024-01-31 06:19:37 Times Seen7 Hash 5506d0b4b1d07b24988ca62240bd9c46 d05cebb9e520159fb38258c03b033d192d9dc17c 3627df16010cbe8b0f6da8fc48ae4cf3ee4cdec834cb6d3703bc7cfc4c5402b3 Loading...

	www.googletagmanager.com/gtag/js?id=G-9P8KE0565R	223 kB	2023-03-13	2023-03-13
Pretty URL www.googletagmanager.com/gtag/js?id=G-9P8KE0565R IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 13:40:40 Last Seen2023-03-13 13:40:40 Times Seen1 Hash 69d5fd99596a3f94b7ed56ec7b5ac321 a15a2c36ce72adc3639188f53de00d4b63dcaf55 391bc1883305458320d42e1edb2dee38ec8ac523c628a637c72df5d99decd24f Loading...

	123.242.166.4/webosm/index.php/js/view/index	230 kB	2023-03-13	2023-03-13
Pretty URL 123.242.166.4/webosm/index.php/js/view/index IP 123.242.166.4 ASN #38450 Ministry of Infomation Communication Technology Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 13:40:40 Last Seen2023-03-13 13:40:40 Times Seen1 Hash c7e03e63fd7017bd5ec9b5efb58d54a3 53e980c16a7d64b9d6e857bf84d810b99a307470 6bd6ed5f7fa8e0db7eaf1ac9a34926678b7ba022de660b6c69d23e4cd859a7ce Loading...

	123.242.166.4/webosm/index.php	34 B	2023-03-13	2023-03-13
Pretty URL 123.242.166.4/webosm/index.php IP 123.242.166.4 ASN #38450 Ministry of Infomation Communication Technology Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 13:40:40 Last Seen2023-03-13 13:40:40 Times Seen1 Hash 8bda6d63e7bb7b3152075de6954dea03 0b227206d51f18e90136c496703d2383193d6463 61d4415bbaaeaf4c15189efc5e923cd51e0edf122456d8bba1038bef4a1f94a7 Loading...

	www.googletagmanager.com/gtag/js?id=G-F9Z27KFG7K	220 kB	2023-03-13	2023-03-13
Pretty URL www.googletagmanager.com/gtag/js?id=G-F9Z27KFG7K IP 172.217.21.168 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 13:40:40 Last Seen2023-03-13 13:40:40 Times Seen1 Hash 0916ec7872b6a514a2a3cd977b9150fb df9bd59467bfb03fa1a847b072600414e3a842ec f89b395dbb83b90fd205dbcf9919cb9206b0a46a7cdf3cccb3311615972e5c66 Loading...

	www.tmd.go.th/daily_forecast_forweb.php?strProvinceID=8-9-36-48	59 B	2023-03-09	2024-01-31
Pretty URL www.tmd.go.th/daily_forecast_forweb.php?strProvinceID=8-9-36-48 IP 119.46.126.1 ASN #58692 DOTS Solutions Co., Ltd. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 13:10:13 Last Seen2024-01-31 06:19:28 Times Seen5 Hash df4f391c8a134b7e2684e1e9ef73eadf 64fc19956ea5c88bf70b77e7866e32b04e5210c6 b6ed5d76443dafcf3e015b11c14f598b43aeaf6422e959a046b761f2519b8cba Loading...

	console.botnoi.ai/default-src_app_shared_components_bn-audio-player_bn-audio-player_component_ts-src_app_shared-74a882.be50b27c7161aef9.js	44 kB	2023-03-09	2023-03-13
Pretty URL console.botnoi.ai/default-src_app_shared_components_bn-audio-player_bn-audio-player_component_ts-src_app_shared-74a882.be50b27c7161aef9.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 13:10:13 Last Seen2023-03-13 13:40:40 Times Seen1 Hash 1bea362e707f9842336cc39ae2977d98 18f94d4a1ff6a67d23f39c01f571ce500dbf0f1b b054e80a73aae5546702aea16a857325c01371afdf3d6e003299d9aa31533269 Loading...

	123.242.166.4/webosm/index.php	58 B	2023-03-13	2023-03-13
Pretty URL 123.242.166.4/webosm/index.php IP 123.242.166.4 ASN #38450 Ministry of Infomation Communication Technology Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 13:40:40 Last Seen2023-03-13 13:40:40 Times Seen1 Hash 6efb1d3b991b429e39ce6325e4e269e7 cfd87eaecd65d97f5644de34716182e00562ed0d 7ed15637b470fdb53be3bcb01427ae8c504ab6c8fd8edf966de66aad0a2d5a3e Loading...

	123.242.166.4/webosm/index.php	34 B	2023-03-13	2023-03-13
Pretty URL 123.242.166.4/webosm/index.php IP 123.242.166.4 ASN #38450 Ministry of Infomation Communication Technology Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 13:40:40 Last Seen2023-03-13 13:40:40 Times Seen1 Hash 07e4770d36c597fd5a366f302df837b0 696e60af17cd56f666e55527826696fc15bd3557 ef136cea8b01b0413219ef37fac91411faec22785fb6308891fb98fde82b5d98 Loading...

	unknown	0 B	2023-03-07	2024-04-25
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:01:59 Last Seen2024-04-25 00:16:30 Times Seen37050930 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	www.tmd.go.th/daily_forecast_forweb.php?strProvinceID=8-9-36-48	1.1 kB	2023-03-09	2024-01-31
Pretty URL www.tmd.go.th/daily_forecast_forweb.php?strProvinceID=8-9-36-48 IP 119.46.126.1 ASN #58692 DOTS Solutions Co., Ltd. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 13:10:13 Last Seen2024-01-31 06:19:28 Times Seen5 Hash fa7ee082fedee8a8baca1e0ab8bd8bd1 926859f7b40b2294f801520b161beb82f9903995 3871e9f8875311485a5bd95e57f41771e98b172fe27a905fcb9e986295a1625e Loading...

	cdnjs.cloudflare.com/ajax/libs/html2canvas/1.4.1/html2canvas.min.js	199 kB	2023-03-08	2024-04-24
Pretty URL cdnjs.cloudflare.com/ajax/libs/html2canvas/1.4.1/html2canvas.min.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 20:20:59 Last Seen2024-04-24 01:25:42 Times Seen585 Hash d7530aa0b7587e627484c49fdf8f13f2 b987dc0cc6cfcdc2e34499375f505470c5adb891 e87e550794322e574a1fda0c1549a3c70dae5a93d9113417a429016838eab8cb Loading...

		Size	First Seen	Last Seen
	#1 Eval - a273624660379570d8df7de18a9b8eb0	10 B	2023-03-13	2023-03-13
Pretty Observations First Seen2023-03-13 13:40:40 Last Seen2023-03-13 13:40:40 Times Seen1 Hash a273624660379570d8df7de18a9b8eb0 f7ad6a869845b937a6a9b3f2ca7a375d6e49ef3c 941599d6db5143e296cacba80b07de65c846bee573ddd21316ae4db176f2dc4b Loading...

	#2 Eval - 402fda2b1234b805c2e9233b9423d970	10 B	2023-03-13	2023-03-13
Pretty Observations First Seen2023-03-13 13:40:40 Last Seen2023-03-13 13:40:40 Times Seen1 Hash 402fda2b1234b805c2e9233b9423d970 79dbedc0e33c805b4dc83ad929e403d33d41f6b0 6350619e3d4b15048f1172e92b0c479838c11ab3092645d769afbbfc7d837747 Loading...

	#3 Eval - 631152daefc8201c641fa7a37c397dce	8 B	2023-03-13	2023-08-29
Pretty Observations First Seen2023-03-13 13:40:40 Last Seen2023-08-29 11:42:36 Times Seen2 Hash 631152daefc8201c641fa7a37c397dce 564af6829fbc28663111b67b7dc01480e3585725 adaa62fa4edcb44745eef54eb937dffcfddaf2d0b142670428a44a8fbdf812aa Loading...

	#4 Eval - 316cb8f6a7089f0a28dcd698e630accb	16 B	2023-03-13	2023-08-29
Pretty Observations First Seen2023-03-13 13:40:40 Last Seen2023-08-29 11:42:36 Times Seen2 Hash 316cb8f6a7089f0a28dcd698e630accb ae4fc593e68ee83aa86d5f51a116e3684b9fcf35 85c8f43f79e4a65c8f72fe182f658a6ed0d74644d143ddfbb2f49c0932844aac Loading...

	#5 Eval - 504ec00b50c414934dae7e13a4b22116	4 B	2023-03-13	2023-08-29
Pretty Observations First Seen2023-03-13 13:40:40 Last Seen2023-08-29 11:42:36 Times Seen3 Hash 504ec00b50c414934dae7e13a4b22116 b231db580e981224c578daf7855547d5333f5006 39a40026763d321d830bb1212b73728f2adc69e929dd69f2ede2f66a4519215a Loading...

	#6 Eval - 47559fb833ff58321570e5e877b467f6	4 B	2023-03-13	2023-08-29
Pretty Observations First Seen2023-03-13 13:40:40 Last Seen2023-08-29 11:42:36 Times Seen3 Hash 47559fb833ff58321570e5e877b467f6 1992d5e8d57e780981c364d844480c004ead1bc2 7a66eabf637f6a4c162d331966b5966e2656f4051ae52acbcb1af0a3ab2eff10 Loading...

	#7 Eval - bbbb784556186bbd58f236c92168ca3f	10 B	2023-03-13	2023-08-29
Pretty Observations First Seen2023-03-13 13:40:40 Last Seen2023-08-29 11:42:36 Times Seen2 Hash bbbb784556186bbd58f236c92168ca3f caa738e173e88876ec8e5c98a4b0144becdab1ad 161058f5682b4f392a9efacd918cba4e909442b2963ad57021df7c707f694fbf Loading...

	#8 Eval - 7286293c9125ac7d7bace94c190bc16d	5 B	2023-03-13	2024-04-19
Pretty Observations First Seen2023-03-13 13:40:40 Last Seen2024-04-19 15:29:45 Times Seen15 Hash 7286293c9125ac7d7bace94c190bc16d dbc87420347a2d9903d256035f6466489d185381 f13a1ed0cf3c4197ec8f4301b169908f52e45cab428eb604f79aab4a4b10dee3 Loading...

HTTP Transactions (132)

URL IP Response Size

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
7e05c8461bd2dc5a149f71e2c465ea29
705983959c887e243cb55a8a1796757b579ee977
4d9ea085d5dda9dabed11af9847c2b0aa6182358673b356a4e2bd631e22a9922

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4D9EA085D5DDA9DABED11AF9847C2B0AA6182358673B356A4E2BD631E22A9922"
Last-Modified: Tue, 31 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11815
Expires: Wed, 01 Feb 2023 02:41:18 GMT
Date: Tue, 31 Jan 2023 23:24:23 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
0c35c3ec659d3a26ea97e68d787bb043
d97e3672244efec5b7814f2d8a734cd1a9387854
4c946a026114ff05316d92277750facf3d5f5d162839149da0b7fb1a4cff6b5e

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4C946A026114FF05316D92277750FACF3D5F5D162839149DA0B7FB1A4CFF6B5E"
Last-Modified: Mon, 30 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3060
Expires: Wed, 01 Feb 2023 00:15:23 GMT
Date: Tue, 31 Jan 2023 23:24:23 GMT
Connection: keep-alive

firefox.settings.services.mozilla.com/v1/

35.241.9.150

200 OK

939 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/
IP
35.241.9.150:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
30db107dcf4380cef05efea409c2e6a3
96e6a306fbc07299aba64e5c14e2bfca35872fa9
b64051a4a8e346e3c72b2aef77f360a5736ab5e16711d8e0bae3876feaa15b6e

HTTP Headers

GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Backoff, Retry-After, Content-Length, Alert, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Tue, 31 Jan 2023 22:43:20 GMT
content-type: application/json
age: 2463
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
09ee4b0fe6cf4ca5ed31b24452338d00
7e62b6e20f0d4737f4a8d94f9818a0883027839e
56da08e18a408d7313de4e598984a251a0ecf85bbba98b421be9aebeb98835af

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "56DA08E18A408D7313DE4E598984A251A0ECF85BBBA98B421BE9AEBEB98835AF"
Last-Modified: Mon, 30 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14784
Expires: Wed, 01 Feb 2023 03:30:47 GMT
Date: Tue, 31 Jan 2023 23:24:23 GMT
Connection: keep-alive

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain

34.160.144.191

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP
34.160.144.191:0
ASN
#15169 GOOGLE

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
x-amz-id-2: //2qm/1Hz23K3vEj/lMgk/t99/6Bghb0kZz5bqahwSGSjwx/oSZl9qJWK7/J8pJ8Ns9JHVbNSNI=
x-amz-request-id: 48SQQC1DB52T00JJ
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Tue, 31 Jan 2023 22:51:20 GMT
age: 1983
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2

123.242.166.4/webosm/index.php

123.242.166.4

200 OK

6.9 kB

URL HTTP/1.1
123.242.166.4/webosm/index.php
IP
123.242.166.4:0
ASN
#38450 Ministry of Infomation Communication Technology

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1539), with CRLF, LF line terminators
Size
6.9 kB (6883 bytes)
Hash
ef223891a80693e3e213cdbcb4a60396
bcb75c4bf8b8c6387cee91a2e7e9d26ece23ea52
2f0e8d98af39151388cd79faa9ad8ad93178d19e4ec3819d4b06ed03af500a96

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /webosm/index.php HTTP/1.1
Host: 123.242.166.4
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 200 OK
Date: Tue, 31 Jan 2023 23:24:23 GMT
Server: Apache/2.4.18 (Ubuntu)
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
Set-Cookie: PHPSESSID=12a6jj8aksihq90b2mporsoge7; path=/
my_lang=th; expires=Thu, 02-Mar-2023 23:24:23 GMT; Max-Age=2592000; path=/
counter_date=1; expires=Thu, 02-Mar-2023 23:24:23 GMT; Max-Age=2592000; path=/; domain=123.242.166.4; HttpOnly
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 6883
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=utf-8

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Tue, 31 Jan 2023 23:24:23 GMT
content-type: application/json
content-length: 12
access-control-expose-headers: content-type
access-control-allow-credentials: true
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US

35.241.9.150

200 OK

329 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
35.241.9.150:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size
329 B (329 bytes)
Hash
0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

HTTP Headers

GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Retry-After, Last-Modified, Cache-Control, Pragma, ETag, Backoff, Content-Type, Alert, Expires
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Tue, 31 Jan 2023 22:49:04 GMT
age: 2119
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2

123.242.166.4/webosm/index.php/css/view/index

123.242.166.4

200 OK

36 kB

URL HTTP/1.1
123.242.166.4/webosm/index.php/css/view/index
IP
123.242.166.4:0
ASN
#38450 Ministry of Infomation Communication Technology

File type
ASCII text, with very long lines (65536), with no line terminators
Size
36 kB (35639 bytes)
Hash
093d42050470b6e2380b13ced63f2ad8
b8349702e622e4e441e27d374f2a57a63fb68e13
2044f996972b0566c723ea9107ba972f3748f229097581a2c6ad790a4eabb7b5

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /webosm/index.php/css/view/index HTTP/1.1
Host: 123.242.166.4
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://123.242.166.4/webosm/index.php
Cookie: PHPSESSID=12a6jj8aksihq90b2mporsoge7; my_lang=th; counter_date=1

HTTP/1.1 200 OK
Date: Tue, 31 Jan 2023 23:24:23 GMT
Server: Apache/2.4.18 (Ubuntu)
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: max-age=31557600
Pragma: no-cache
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 35639
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css; charset=utf-8

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
22b9916fc1fafc9bdc9bb37f9eac8a9a
86f640e134a741a0f906a8e3a0f5c6659dd0e394
a29ee843c8a39551a1507cc6ad949ad509e33aaae8b72c58ac4884bad8b0b38e

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A29EE843C8A39551A1507CC6AD949AD509E33AAAE8B72C58AC4884BAD8B0B38E"
Last-Modified: Sun, 29 Jan 2023 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9827
Expires: Wed, 01 Feb 2023 02:08:11 GMT
Date: Tue, 31 Jan 2023 23:24:24 GMT
Connection: keep-alive

123.242.166.4/webosm/index.php/js/view/index

123.242.166.4

200 OK

58 kB

URL HTTP/1.1
123.242.166.4/webosm/index.php/js/view/index
IP
123.242.166.4:0
ASN
#38450 Ministry of Infomation Communication Technology

File type
ASCII text, with very long lines (65536), with no line terminators
Size
58 kB (57770 bytes)
Hash
ea84a4eb5565334225b7a5e0207b38c3
bb7cdd150c0bde458c2124670bd8aac1104587fc
4524cff87c9e092f390c0c1d7817ac46f96f1ef33607ce2ddab685f5fd55f3aa

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /webosm/index.php/js/view/index HTTP/1.1
Host: 123.242.166.4
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://123.242.166.4/webosm/index.php
Cookie: PHPSESSID=12a6jj8aksihq90b2mporsoge7; my_lang=th; counter_date=1

HTTP/1.1 200 OK
Date: Tue, 31 Jan 2023 23:24:23 GMT
Server: Apache/2.4.18 (Ubuntu)
Set-Cookie: my_lang=th; expires=Thu, 02-Mar-2023 23:24:23 GMT; Max-Age=2592000; path=/
Cache-Control: max-age=31557600
Vary: Accept-Encoding
Content-Encoding: gzip
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: application/javascript; charset=utf-8

www.ocsc.go.th/sites/default/files/field/image/forking-create-02-tn.jpg

104.18.25.40

200 OK

38 kB

URL HTTP/2
www.ocsc.go.th/sites/default/files/field/image/forking-create-02-tn.jpg
IP
104.18.25.40:0
ASN
#13335 CLOUDFLARENET

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 495x179, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size
38 kB (37578 bytes)
Hash
09d0784e61fd3716d31f70b871a27afe
da692fe46cb2e0a58e8f5fffe4c70d83420b8cc9
d4c9ed9238d21fc24569d61e9c73481543a99b39fa38e57736e2135dc4b46350

HTTP Headers

GET /sites/default/files/field/image/forking-create-02-tn.jpg HTTP/1.1
Host: www.ocsc.go.th
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://123.242.166.4/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Tue, 31 Jan 2023 23:24:24 GMT
content-type: image/webp
content-length: 37578
cache-control: public, max-age=315360000
cf-bgj: imgq:100,h2pri
cf-polished: origFmt=jpeg, origSize=115877
content-disposition: inline; filename="forking-create-02-tn.webp"
etag: "5642e1bf-1c4a5"
expires: Fri, 28 Jan 2033 23:24:24 GMT
last-modified: Wed, 11 Nov 2015 06:35:43 GMT
vary: Accept
cf-cache-status: HIT
accept-ranges: bytes
set-cookie: __cfruid=4e9eb1f883a962a1fe96ab39a1f07ebeff6b25a3-1675207464; path=/; domain=.ocsc.go.th; HttpOnly; Secure; SameSite=None
server: cloudflare
cf-ray: 7926335ac9030b55-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

push.services.mozilla.com/

54.70.68.230

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
54.70.68.230:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: yf+z27F+SiX1vajIH/y10g==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: pjjtloY8gurgdQPZxkq3QZQ0UfQ=

123.242.166.4/webosm/images/stories/banner2_osm.png

123.242.166.4

200 OK

18 kB

URL HTTP/1.1
123.242.166.4/webosm/images/stories/banner2_osm.png
IP
123.242.166.4:0
ASN
#38450 Ministry of Infomation Communication Technology

File type
PNG image data, 190 x 60, 8-bit/color RGB, non-interlaced\012- data
Size
18 kB (18352 bytes)
Hash
6afb7330a9336822befa49242d078120
27ba03839273e0cb9d5588a292a3f04413cd9471
fff7aaafde44e63235dd04a539fc983a2a4a563b0189bfbcb1a2d8e0553249c4

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /webosm/images/stories/banner2_osm.png HTTP/1.1
Host: 123.242.166.4
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://123.242.166.4/webosm/index.php
Cookie: PHPSESSID=12a6jj8aksihq90b2mporsoge7; my_lang=th; counter_date=1

HTTP/1.1 200 OK
Date: Tue, 31 Jan 2023 23:24:24 GMT
Server: Apache/2.4.18 (Ubuntu)
Last-Modified: Mon, 21 Mar 2011 04:56:06 GMT
ETag: "47b0-49ef6f1fee580"
Accept-Ranges: bytes
Content-Length: 18352
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: image/png

123.242.166.4/webosm/datas/image/text/text-head.png

123.242.166.4

200 OK

31 kB

URL HTTP/1.1
123.242.166.4/webosm/datas/image/text/text-head.png
IP
123.242.166.4:0
ASN
#38450 Ministry of Infomation Communication Technology

File type
PNG image data, 450 x 50, 8-bit/color RGBA, non-interlaced\012- data
Size
31 kB (30677 bytes)
Hash
5226a844a21346ee9635090619fd68eb
4147d4da3a391301eabd4ee9b07a2400eacc03e3
283dd86f9462c8d7bed586e03e25584ba75f86846590fa46e49ea1d858114b81

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /webosm/datas/image/text/text-head.png HTTP/1.1
Host: 123.242.166.4
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://123.242.166.4/webosm/index.php
Cookie: PHPSESSID=12a6jj8aksihq90b2mporsoge7; my_lang=th; counter_date=1

HTTP/1.1 200 OK
Date: Tue, 31 Jan 2023 23:24:24 GMT
Server: Apache/2.4.18 (Ubuntu)
Last-Modified: Sat, 24 Sep 2022 03:28:01 GMT
ETag: "77d5-5e963e1b94670"
Accept-Ranges: bytes
Content-Length: 30677
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: image/png

123.242.166.4/webosm/xhr.php?1675207483107

123.242.166.4

200 OK

0 B

URL HTTP/1.1
123.242.166.4/webosm/xhr.php?1675207483107
IP
123.242.166.4:0
ASN
#38450 Ministry of Infomation Communication Technology

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

POST /webosm/xhr.php?1675207483107 HTTP/1.1
Host: 123.242.166.4
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,text/plain,application/xml,text/xml,application/json,text/javascript
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
X-Requested-With: XMLHttpRequest
Content-Type: application/x-www-form-urlencoded;charset=UTF-8
Content-Length: 91
Origin: http://123.242.166.4
Connection: keep-alive
Referer: http://123.242.166.4/webosm/index.php
Cookie: PHPSESSID=12a6jj8aksihq90b2mporsoge7; my_lang=th; counter_date=1

HTTP/1.1 200 OK
Date: Tue, 31 Jan 2023 23:24:24 GMT
Server: Apache/2.4.18 (Ubuntu)
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
Set-Cookie: my_lang=th; expires=Thu, 02-Mar-2023 23:24:24 GMT; Max-Age=2592000; path=/
Content-Length: 0
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/html; charset=utf-8

123.242.166.4/webosm/images/stories/banner2_sapathai.png

123.242.166.4

200 OK

16 kB

URL HTTP/1.1
123.242.166.4/webosm/images/stories/banner2_sapathai.png
IP
123.242.166.4:0
ASN
#38450 Ministry of Infomation Communication Technology

File type
PNG image data, 190 x 60, 8-bit/color RGB, non-interlaced\012- data
Size
16 kB (16048 bytes)
Hash
0cf42648d0a9c5d2cc838593ee9ea300
a459674105e9cebf4128fbe875354eb2a4a633e6
2ce7fe9f36484a89f6cf88ad09c454f7eda79148392f376e2639cb32a59fa0ac

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /webosm/images/stories/banner2_sapathai.png HTTP/1.1
Host: 123.242.166.4
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://123.242.166.4/webosm/index.php
Cookie: PHPSESSID=12a6jj8aksihq90b2mporsoge7; my_lang=th; counter_date=1

HTTP/1.1 200 OK
Date: Tue, 31 Jan 2023 23:24:24 GMT
Server: Apache/2.4.18 (Ubuntu)
Last-Modified: Mon, 21 Mar 2011 04:56:20 GMT
ETag: "3eb0-49ef6f2d48500"
Accept-Ranges: bytes
Content-Length: 16048
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: image/png

123.242.166.4/webosm/xhr.php?1675207483117

123.242.166.4

200 OK

2 B

URL HTTP/1.1
123.242.166.4/webosm/xhr.php?1675207483117
IP
123.242.166.4:0
ASN
#38450 Ministry of Infomation Communication Technology

File type
JSON data\012- , ASCII text, with no line terminators
Size
2 B (2 bytes)
Hash
d751713988987e9331980363e24189ce
97d170e1550eee4afc0af065b78cda302a97674c
4f53cda18c2baa0c0354bb5f9a3ecbe5ed12ab4d8e11ba873c2f11161202b945

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

POST /webosm/xhr.php?1675207483117 HTTP/1.1
Host: 123.242.166.4
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,text/plain,application/xml,text/xml,application/json,text/javascript
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
X-Requested-With: XMLHttpRequest
Content-Type: application/x-www-form-urlencoded;charset=UTF-8
Content-Length: 80
Origin: http://123.242.166.4
Connection: keep-alive
Referer: http://123.242.166.4/webosm/index.php
Cookie: PHPSESSID=12a6jj8aksihq90b2mporsoge7; my_lang=th; counter_date=1

HTTP/1.1 200 OK
Date: Tue, 31 Jan 2023 23:24:24 GMT
Server: Apache/2.4.18 (Ubuntu)
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
Content-Length: 2
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: text/html; charset=utf-8

123.242.166.4/webosm/images/pc.png

123.242.166.4

200 OK

17 kB

URL HTTP/1.1
123.242.166.4/webosm/images/pc.png
IP
123.242.166.4:0
ASN
#38450 Ministry of Infomation Communication Technology

File type
PNG image data, 220 x 60, 8-bit/color RGB, non-interlaced\012- data
Size
17 kB (16926 bytes)
Hash
9cfa812ad19b1f995e931d72df9e572a
71929e58e4bad2f6e6e83ba108c950aa4343c566
cdd2a5e2a68831f63b7e012649c625c6bbdfd41e61818d3e0a84d5b74046739a

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /webosm/images/pc.png HTTP/1.1
Host: 123.242.166.4
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://123.242.166.4/webosm/index.php
Cookie: PHPSESSID=12a6jj8aksihq90b2mporsoge7; my_lang=th; counter_date=1

HTTP/1.1 200 OK
Date: Tue, 31 Jan 2023 23:24:24 GMT
Server: Apache/2.4.18 (Ubuntu)
Last-Modified: Wed, 23 Jul 2014 04:10:24 GMT
ETag: "421e-4fed484f4cc00"
Accept-Ranges: bytes
Content-Length: 16926
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: image/png

123.242.166.4/webosm/images/ut.png

123.242.166.4

200 OK

18 kB

URL HTTP/1.1
123.242.166.4/webosm/images/ut.png
IP
123.242.166.4:0
ASN
#38450 Ministry of Infomation Communication Technology

File type
PNG image data, 220 x 60, 8-bit/color RGB, non-interlaced\012- data
Size
18 kB (17894 bytes)
Hash
927c3c59bee12d4487a5b2d960d4ef06
8b1a0b342c16b8daccad50bdb9b66b72c20dc988
2b86e1fdca562e88f091d6ddff8f6cf566c64d6c74800008e5888b1f2e2a4e00

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /webosm/images/ut.png HTTP/1.1
Host: 123.242.166.4
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://123.242.166.4/webosm/index.php
Cookie: PHPSESSID=12a6jj8aksihq90b2mporsoge7; my_lang=th; counter_date=1

HTTP/1.1 200 OK
Date: Tue, 31 Jan 2023 23:24:24 GMT
Server: Apache/2.4.18 (Ubuntu)
Last-Modified: Wed, 23 Jul 2014 04:25:30 GMT
ETag: "45e6-4fed4baf54280"
Accept-Ranges: bytes
Content-Length: 17894
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: image/png

123.242.166.4/webosm/images/kp.png

123.242.166.4

200 OK

14 kB

URL HTTP/1.1
123.242.166.4/webosm/images/kp.png
IP
123.242.166.4:0
ASN
#38450 Ministry of Infomation Communication Technology

File type
PNG image data, 220 x 60, 8-bit/color RGB, non-interlaced\012- data
Size
14 kB (13808 bytes)
Hash
2bbf421cc2ff5d30dd50863509a6c7d2
8223e292cc0c58329d8ce67926b364665f319484
7d8b782539d35a2604e9a4330767ea6f82a3158f5ddeec14414123bd0ede5721

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /webosm/images/kp.png HTTP/1.1
Host: 123.242.166.4
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://123.242.166.4/webosm/index.php
Cookie: PHPSESSID=12a6jj8aksihq90b2mporsoge7; my_lang=th; counter_date=1

HTTP/1.1 200 OK
Date: Tue, 31 Jan 2023 23:24:24 GMT
Server: Apache/2.4.18 (Ubuntu)
Last-Modified: Thu, 24 Jul 2014 07:03:40 GMT
ETag: "35f0-4feeb0e728b00"
Accept-Ranges: bytes
Content-Length: 13808
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: image/png

123.242.166.4/webosm/images/nw.png

123.242.166.4

200 OK

16 kB

URL HTTP/1.1
123.242.166.4/webosm/images/nw.png
IP
123.242.166.4:0
ASN
#38450 Ministry of Infomation Communication Technology

File type
PNG image data, 220 x 60, 8-bit/color RGB, non-interlaced\012- data
Size
16 kB (16514 bytes)
Hash
c3020ceb1c63382da3890cf0a552cf95
b81a3dd1893829d2db455a5dc127da004e4f4f9a
1507fc8d5f76ceae4991acd151fd8b2f5983781cb89b7bab702edc3c2cf95ccf

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /webosm/images/nw.png HTTP/1.1
Host: 123.242.166.4
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://123.242.166.4/webosm/index.php
Cookie: PHPSESSID=12a6jj8aksihq90b2mporsoge7; my_lang=th; counter_date=1

HTTP/1.1 200 OK
Date: Tue, 31 Jan 2023 23:24:24 GMT
Server: Apache/2.4.18 (Ubuntu)
Last-Modified: Wed, 23 Jul 2014 04:04:10 GMT
ETag: "4082-4fed46eaa0280"
Accept-Ranges: bytes
Content-Length: 16514
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: image/png

123.242.166.4/webosm/skin/m-green/img/bg.gif

123.242.166.4

200 OK

1.1 kB

URL HTTP/1.1
123.242.166.4/webosm/skin/m-green/img/bg.gif
IP
123.242.166.4:0
ASN
#38450 Ministry of Infomation Communication Technology

File type
GIF image data, version 89a, 5 x 5\012- data
Size
1.1 kB (1120 bytes)
Hash
1e742b7317e1ac2a48a8110365cdb1d1
6b7f8c8bb2a89052ab7a4cd4b1a415f96afc4156
182cc782f92ad7f9470a6f3976ad6ed0361c65a8f77461c3a81b5b754f7e0af4

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /webosm/skin/m-green/img/bg.gif HTTP/1.1
Host: 123.242.166.4
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://123.242.166.4/webosm/index.php/css/view/index
Cookie: PHPSESSID=12a6jj8aksihq90b2mporsoge7; my_lang=th; counter_date=1

HTTP/1.1 200 OK
Date: Tue, 31 Jan 2023 23:24:24 GMT
Server: Apache/2.4.18 (Ubuntu)
Last-Modified: Fri, 21 Oct 2016 14:49:20 GMT
ETag: "460-53f6125ac9c00"
Accept-Ranges: bytes
Content-Length: 1120
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: image/gif

123.242.166.4/webosm/skin/m-green/img/menu_bg.png

123.242.166.4

200 OK

3.3 kB

URL HTTP/1.1
123.242.166.4/webosm/skin/m-green/img/menu_bg.png
IP
123.242.166.4:0
ASN
#38450 Ministry of Infomation Communication Technology

File type
PNG image data, 917 x 35, 8-bit/color RGB, non-interlaced\012- data
Size
3.3 kB (3301 bytes)
Hash
a0a1feab3aebb023c63e42a2d65bf9f7
f5ed0ab0836939f228a2078d903950fea920c74b
b3d1478d02117056d5a015670f6e7b5301cb507e7a4ff40e1044b0d4aea9947b

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /webosm/skin/m-green/img/menu_bg.png HTTP/1.1
Host: 123.242.166.4
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://123.242.166.4/webosm/index.php/css/view/index
Cookie: PHPSESSID=12a6jj8aksihq90b2mporsoge7; my_lang=th; counter_date=1

HTTP/1.1 200 OK
Date: Tue, 31 Jan 2023 23:24:24 GMT
Server: Apache/2.4.18 (Ubuntu)
Last-Modified: Fri, 21 Oct 2016 14:49:20 GMT
ETag: "ce5-53f6125ac9c00"
Accept-Ranges: bytes
Content-Length: 3301
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: image/png

123.242.166.4/webosm/language/th.gif

123.242.166.4

200 OK

360 B

URL HTTP/1.1
123.242.166.4/webosm/language/th.gif
IP
123.242.166.4:0
ASN
#38450 Ministry of Infomation Communication Technology

File type
GIF image data, version 89a, 16 x 11\012- data
Size
360 B (360 bytes)
Hash
0340d7837dc7c1986cc6224523d5cd35
0bea1914eb170760f8b9e4e7e42ee3a33f9fabd5
3c99a77aab3aafe1e4f706109c0e6651fd1214744614d2e3a91eb7c0b6ed24cc

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /webosm/language/th.gif HTTP/1.1
Host: 123.242.166.4
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://123.242.166.4/webosm/index.php
Cookie: PHPSESSID=12a6jj8aksihq90b2mporsoge7; my_lang=th; counter_date=1

HTTP/1.1 200 OK
Date: Tue, 31 Jan 2023 23:24:24 GMT
Server: Apache/2.4.18 (Ubuntu)
Last-Modified: Sat, 24 Sep 2022 01:01:44 GMT
ETag: "168-5e961d689ae00"
Accept-Ranges: bytes
Content-Length: 360
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: image/gif

123.242.166.4/webosm/skin/fonts/icomoon.ttf

123.242.166.4

200 OK

53 kB

URL HTTP/1.1
123.242.166.4/webosm/skin/fonts/icomoon.ttf
IP
123.242.166.4:0
ASN
#38450 Ministry of Infomation Communication Technology

File type
TrueType Font data, 11 tables, 1st "OS/2", 14 names, Macintosh, type 1 string, icomoon \012- data
Size
53 kB (52652 bytes)
Hash
43868a041622232d89f20220c5415dd8
bef086a938b8d0f73014cedd898775b08b4b4ff9
475d2681cff2fd0b60ec7e5a9ae2802723456f05a46df626945b8ef5c4d70fb3

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /webosm/skin/fonts/icomoon.ttf HTTP/1.1
Host: 123.242.166.4
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://123.242.166.4/webosm/index.php/css/view/index
Cookie: PHPSESSID=12a6jj8aksihq90b2mporsoge7; my_lang=th; counter_date=1

HTTP/1.1 200 OK
Date: Tue, 31 Jan 2023 23:24:24 GMT
Server: Apache/2.4.18 (Ubuntu)
Last-Modified: Sat, 24 Sep 2022 01:01:44 GMT
ETag: "cdac-5e961d689ae00"
Accept-Ranges: bytes
Content-Length: 52652
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/font-sfnt

123.242.166.4/webosm/images/thailowernorth.jpg

123.242.166.4

200 OK

31 kB

URL HTTP/1.1
123.242.166.4/webosm/images/thailowernorth.jpg
IP
123.242.166.4:0
ASN
#38450 Ministry of Infomation Communication Technology

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 80", baseline, precision 8, 600x171, components 3\012- data
Size
31 kB (31409 bytes)
Hash
d3879693fa9f0f40bcf5340e2bcb72b4
4ff1324b8fa94f965df34973dd4641e688763ade
68f1b16ad5aa79f95fe79879db1219e6b935e66d833c8ec0f45e03a48b200db0

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /webosm/images/thailowernorth.jpg HTTP/1.1
Host: 123.242.166.4
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://123.242.166.4/webosm/index.php
Cookie: PHPSESSID=12a6jj8aksihq90b2mporsoge7; my_lang=th; counter_date=1

HTTP/1.1 200 OK
Date: Tue, 31 Jan 2023 23:24:25 GMT
Server: Apache/2.4.18 (Ubuntu)
Last-Modified: Fri, 29 May 2015 06:29:25 GMT
ETag: "7ab1-5173298ec9b40"
Accept-Ranges: bytes
Content-Length: 31409
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: image/jpeg

123.242.166.4/webosm/datas/image/logo.jpg

123.242.166.4

200 OK

160 kB

URL HTTP/1.1
123.242.166.4/webosm/datas/image/logo.jpg
IP
123.242.166.4:0
ASN
#38450 Ministry of Infomation Communication Technology

File type
JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CC (Windows), datetime=2018:10:24 10:22:06], baseline, precision 8, 1000x200, components 3\012- data
Size
160 kB (159880 bytes)
Hash
86e6db8ce1279ee9930def1f3f79666e
9ddc766e6c0ae7b2de4d56012b1211ef217fc724
5cf5533107d50f412478e57694e4341602a86e0b529e9acc530bfbd90cf5ac52

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /webosm/datas/image/logo.jpg HTTP/1.1
Host: 123.242.166.4
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://123.242.166.4/webosm/index.php
Cookie: PHPSESSID=12a6jj8aksihq90b2mporsoge7; my_lang=th; counter_date=1

HTTP/1.1 200 OK
Date: Tue, 31 Jan 2023 23:24:24 GMT
Server: Apache/2.4.18 (Ubuntu)
Last-Modified: Sat, 24 Sep 2022 03:28:01 GMT
ETag: "27088-5e963e1b965b0"
Accept-Ranges: bytes
Content-Length: 159880
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: image/jpeg

123.242.166.4/webosm/images/stories/aec-knowledge.jpg

123.242.166.4

200 OK

23 kB

URL HTTP/1.1
123.242.166.4/webosm/images/stories/aec-knowledge.jpg
IP
123.242.166.4:0
ASN
#38450 Ministry of Infomation Communication Technology

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=8, orientation=upper-left, xresolution=110, yresolution=118, resolutionunit=2, software=ACDSee 16, datetime=2014:07:24 08:47:26], comment: "Image Resized at http://www.shrinkpictures.com", baseline, precision 8, 450x70, components 3\012- data
Size
23 kB (23235 bytes)
Hash
2a767c235f6c42eff237abb70ef01022
53792b1012eff98085ef4048de220b98d7dc7c01
ced656c781c8e49088e9f241c38f5aa967a6fbd9ea214e53a699ac92c05e4f4a

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /webosm/images/stories/aec-knowledge.jpg HTTP/1.1
Host: 123.242.166.4
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://123.242.166.4/webosm/index.php
Cookie: PHPSESSID=12a6jj8aksihq90b2mporsoge7; my_lang=th; counter_date=1

HTTP/1.1 200 OK
Date: Tue, 31 Jan 2023 23:24:25 GMT
Server: Apache/2.4.18 (Ubuntu)
Last-Modified: Thu, 24 Jul 2014 01:47:26 GMT
ETag: "5ac3-4fee6a3824780"
Accept-Ranges: bytes
Content-Length: 23235
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: image/jpeg

123.242.166.4/webosm/datas/image/1633062261.jpg

123.242.166.4

200 OK

144 kB

URL HTTP/1.1
123.242.166.4/webosm/datas/image/1633062261.jpg
IP
123.242.166.4:0
ASN
#38450 Ministry of Infomation Communication Technology

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 621x1014, components 3\012- data
Size
144 kB (144513 bytes)
Hash
94232a07f70e0b6cc5c451da1de2065a
4ee43dba40519464210821403c2078477b2bcd70
9be9c6fc060c352f7de3ba9c5fbfd68a2d47162c25d32ffa0fdeee64b4f2e7b6

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /webosm/datas/image/1633062261.jpg HTTP/1.1
Host: 123.242.166.4
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://123.242.166.4/webosm/index.php
Cookie: PHPSESSID=12a6jj8aksihq90b2mporsoge7; my_lang=th; counter_date=1

HTTP/1.1 200 OK
Date: Tue, 31 Jan 2023 23:24:24 GMT
Server: Apache/2.4.18 (Ubuntu)
Last-Modified: Sat, 24 Sep 2022 03:28:01 GMT
ETag: "23481-5e963e1b936d0"
Accept-Ranges: bytes
Content-Length: 144513
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: image/jpeg

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
43bc5afe1d7330aa521e0efc78185a92
f53e9daa0a32e0acf7a10d9494fb383c1d039305
429d5a3a918137cae61e9dee0f05b0d5b4c799517aa6ae30e041a2a3e7f05cac

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "429D5A3A918137CAE61E9DEE0F05B0D5B4C799517AA6AE30E041A2A3E7F05CAC"
Last-Modified: Mon, 30 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3090
Expires: Wed, 01 Feb 2023 00:15:55 GMT
Date: Tue, 31 Jan 2023 23:24:25 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
43bc5afe1d7330aa521e0efc78185a92
f53e9daa0a32e0acf7a10d9494fb383c1d039305
429d5a3a918137cae61e9dee0f05b0d5b4c799517aa6ae30e041a2a3e7f05cac

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "429D5A3A918137CAE61E9DEE0F05B0D5B4C799517AA6AE30E041A2A3E7F05CAC"
Last-Modified: Mon, 30 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3090
Expires: Wed, 01 Feb 2023 00:15:55 GMT
Date: Tue, 31 Jan 2023 23:24:25 GMT
Connection: keep-alive

123.242.166.4/webosm/datas/image/1633314445.jpg

123.242.166.4

200 OK

151 kB

URL HTTP/1.1
123.242.166.4/webosm/datas/image/1633314445.jpg
IP
123.242.166.4:0
ASN
#38450 Ministry of Infomation Communication Technology

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=2, orientation=upper-left], baseline, precision 8, 621x1014, components 3\012- data
Size
151 kB (151071 bytes)
Hash
752e79061fa724eae8b11ded9c41c7ff
d1ac25fa6a121abf1785b11403ab32150301de5b
069295f25e1a1045a7dcb773b0b51e872f42774c5e5e848e2635390a6599f8b6

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /webosm/datas/image/1633314445.jpg HTTP/1.1
Host: 123.242.166.4
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://123.242.166.4/webosm/index.php
Cookie: PHPSESSID=12a6jj8aksihq90b2mporsoge7; my_lang=th; counter_date=1

HTTP/1.1 200 OK
Date: Tue, 31 Jan 2023 23:24:24 GMT
Server: Apache/2.4.18 (Ubuntu)
Last-Modified: Sat, 24 Sep 2022 03:28:01 GMT
ETag: "24e1f-5e963e1b95610"
Accept-Ranges: bytes
Content-Length: 151071
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: image/jpeg

ocsp.sectigo.com/

104.18.32.68

200 OK

472 B

URL HTTP/1.1
ocsp.sectigo.com/
IP
104.18.32.68:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
472 B (472 bytes)
Hash
e3b84fef06c3d73e3dbe964007cb0c63
488993a4ba4be8567fba21480f5df479ba7fa9a9
c72650a4a20dfc7928b8960fef08b23c84ae2ec9138f326b3349fff522422499

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Tue, 31 Jan 2023 23:24:25 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Sat, 28 Jan 2023 23:30:17 GMT
Expires: Sat, 04 Feb 2023 23:30:16 GMT
Etag: "488993a4ba4be8567fba21480f5df479ba7fa9a9"
Cache-Control: max-age=345350,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb2
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 792633633b660b65-OSL

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
43bc5afe1d7330aa521e0efc78185a92
f53e9daa0a32e0acf7a10d9494fb383c1d039305
429d5a3a918137cae61e9dee0f05b0d5b4c799517aa6ae30e041a2a3e7f05cac

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "429D5A3A918137CAE61E9DEE0F05B0D5B4C799517AA6AE30E041A2A3E7F05CAC"
Last-Modified: Mon, 30 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3090
Expires: Wed, 01 Feb 2023 00:15:55 GMT
Date: Tue, 31 Jan 2023 23:24:25 GMT
Connection: keep-alive

123.242.166.4/webosm/datas/image/text/text01.png

123.242.166.4

200 OK

26 kB

URL HTTP/1.1
123.242.166.4/webosm/datas/image/text/text01.png
IP
123.242.166.4:0
ASN
#38450 Ministry of Infomation Communication Technology

File type
PNG image data, 450 x 50, 8-bit/color RGBA, non-interlaced\012- data
Size
26 kB (26201 bytes)
Hash
c87d9e929c0beb1be525a9a375cc3320
d205c1dac1fae8321a0d5436c0859f21cbf433a3
7a8cf29689866d35e2dc864cfcaf250b69d7cdef9dc41730882afd6249a5451f

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /webosm/datas/image/text/text01.png HTTP/1.1
Host: 123.242.166.4
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://123.242.166.4/webosm/index.php
Cookie: PHPSESSID=12a6jj8aksihq90b2mporsoge7; my_lang=th; counter_date=1

HTTP/1.1 200 OK
Date: Tue, 31 Jan 2023 23:24:25 GMT
Server: Apache/2.4.18 (Ubuntu)
Last-Modified: Sat, 24 Sep 2022 03:28:01 GMT
ETag: "6659-5e963e1b94670"
Accept-Ranges: bytes
Content-Length: 26201
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: image/png

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbaa9536b-a4e6-42f5-99dd-75298eecbbb1.jpeg

34.120.237.76

200 OK

16 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbaa9536b-a4e6-42f5-99dd-75298eecbbb1.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
16 kB (15656 bytes)
Hash
a4392f298c9e98515493f1235810838f
b89eebf2b8adac69487262100b07da8bc171ecf7
b368d87d3a0fe4e1a8ddc82bed704b3056ad2874b8d325111b399b18807c1e5e

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbaa9536b-a4e6-42f5-99dd-75298eecbbb1.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 15656
x-amzn-requestid: 6723d22f-8b16-4fb2-af92-9b3257fc2a1d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fi3bIHpRoAMFRYQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d76c47-03b1c6646f63ba716a6298e1;Sampled=0
x-amzn-remapped-date: Mon, 30 Jan 2023 07:05:43 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: fLrUWOhE6x_v3sqe6kr1hacSgt9H53ld51XXKvh7dL04gc-NDJKmOg==
via: 1.1 c34da255183aa208dd1c722ff211f9b2.cloudfront.net (CloudFront), 1.1 324a68a6c25ee50d774953f3e15a611c.cloudfront.net (CloudFront), 1.1 google
date: Tue, 31 Jan 2023 07:25:12 GMT
age: 57553
etag: "b89eebf2b8adac69487262100b07da8bc171ecf7"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

8.5 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb0378a78-c173-4036-ab09-812b1651c606.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
8.5 kB (8542 bytes)
Hash
85cde231b700eec450e0611b97742a43
c2c6279d74efdcceb319d6943cbcb9d1d1b686ca
d52297e17f93932aa7c99ae734d4b68f3b9b09b9938db95ecc96bac9f3bb588c

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb0378a78-c173-4036-ab09-812b1651c606.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 8542
x-amzn-requestid: ad485963-7e2e-410d-ad1c-6386fb738f18
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: foJaVHXcoAMFuhw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d9890e-12d7e4502d1fc1511b6f2260;Sampled=0
x-amzn-remapped-date: Tue, 31 Jan 2023 21:33:02 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: M1OD8v_jLlitIjUwxyZSke4kBfIFy0C_tbDQAHe5iDBrm_Fha7uwFg==
via: 1.1 4dde8ec6d6c12741888c2d3a059d4a2e.cloudfront.net (CloudFront), 1.1 4f3feb5c4393987d42d1971d404d7cea.cloudfront.net (CloudFront), 1.1 google
date: Tue, 31 Jan 2023 21:51:28 GMT
etag: "c2c6279d74efdcceb319d6943cbcb9d1d1b686ca"
content-type: image/jpeg
age: 5577
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

15 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd3e99cd9-0681-47a5-bd03-80ff73a169b8.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
15 kB (14809 bytes)
Hash
1ad49e3ca0f9935c7ff8f922039e5864
6382ee41cb26e42293e1ba5d9f0d3af64ddb672c
7a838e4e1aff60581fbf939920955ea67dae8fb3fa4e31572787c773404d071e

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd3e99cd9-0681-47a5-bd03-80ff73a169b8.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 14809
x-amzn-requestid: fc920367-4bb1-40fd-9f1d-1d50b27cfc77
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: foJaXEQEoAMF3Zw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d9890e-0f70e0252fc3a3e5248bb372;Sampled=0
x-amzn-remapped-date: Tue, 31 Jan 2023 21:33:02 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 8SGqBRt27x1A3p1Z55UzPW8myS3BPu1ows_X76xLB8KY5xNnfs1pUw==
via: 1.1 1cc6ed0d2d3dd9529ce544f9dfe61a52.cloudfront.net (CloudFront), 1.1 e4d3d5aafc7d7d582423c073065ab562.cloudfront.net (CloudFront), 1.1 google
date: Tue, 31 Jan 2023 21:45:15 GMT
age: 5950
etag: "6382ee41cb26e42293e1ba5d9f0d3af64ddb672c"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

5.6 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6a7557cc-bf07-438f-8710-ba1b44e30270.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
5.6 kB (5583 bytes)
Hash
fec00239dceb510f051645ae93dac5f2
6524837e65b070341f9c8f4589492876ae293f17
d00272557742c57d084ab7e46b9b1722b28b869ae9c63e2169e7124e5107c009

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6a7557cc-bf07-438f-8710-ba1b44e30270.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 5583
x-amzn-requestid: f37b4455-c9fb-46e4-a287-f40c1138a77a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fflQWGqCIAMFvjA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d61c02-01d34b0d3a9a0101555081f5;Sampled=0
x-amzn-remapped-date: Sun, 29 Jan 2023 07:10:58 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: KTfQ_pc9OU0WnnQlmhjYlFAInn2Cwz6xNGtjL3FtP5XJX8vHTidkoA==
via: 1.1 da5952aa802df39905ceb16592e9698a.cloudfront.net (CloudFront), 1.1 e66162aafd55b64ba1478ff7105150fa.cloudfront.net (CloudFront), 1.1 google
date: Tue, 31 Jan 2023 07:37:27 GMT
age: 56818
etag: "6524837e65b070341f9c8f4589492876ae293f17"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

13 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc6718344-fcb4-4366-9239-8921034a7114.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
13 kB (12967 bytes)
Hash
8e0be7db14d930d6227443314bcd1747
4e42e2ad289dfe5bd9a55d34fd768f7532bdf71d
baedfbdb08a67f9ff4c698f7e65b08d7e4c5078d0a4233e6bff529b44812735a

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc6718344-fcb4-4366-9239-8921034a7114.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 12967
x-amzn-requestid: cb487bb4-9de3-42f6-9c1e-482c712cf80f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fcRasEBfoAMFp3g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d4c911-218f03e61f9d25b74dddbc7e;Sampled=0
x-amzn-remapped-date: Sat, 28 Jan 2023 07:04:49 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: AwcqjAd0sV06M3tVkQvR0UNKrSlIhGv5_FbOdPa6Cw7Tjqiw6f6-QA==
via: 1.1 01c28b52813cd0e82f810c492808b142.cloudfront.net (CloudFront), 1.1 6172bb1a5d00a3b06ae3700570ebe116.cloudfront.net (CloudFront), 1.1 google
date: Tue, 31 Jan 2023 21:51:30 GMT
age: 5575
etag: "4e42e2ad289dfe5bd9a55d34fd768f7532bdf71d"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

16 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe2d02739-590e-4a37-9ca5-c27003f9e416.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
16 kB (15857 bytes)
Hash
4bb3a6fba496d54cdbbccaf2b9600386
8e30002699e9fbf2047f9ac11a36d2175fc9c591
927bf3a04b011b4e3bc8d8772a3d5813507f7f523312d43627767b64615562f3

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe2d02739-590e-4a37-9ca5-c27003f9e416.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 15857
x-amzn-requestid: cfe36b9d-34f6-4f3f-896e-e70ec45c4a04
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fmJ2JGGWoAMFSLA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d8bcf3-0dd68dd778b9aba268a129b0;Sampled=0
x-amzn-remapped-date: Tue, 31 Jan 2023 07:02:11 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: pU_436f27nMZKPxZZWqZekERHFTvcG5NT5p_CYEXHRPtIWjDtSA-uA==
via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 fda3b2797d2719576f6b916583a28e52.cloudfront.net (CloudFront), 1.1 google
date: Tue, 31 Jan 2023 07:18:42 GMT
age: 57943
etag: "8e30002699e9fbf2047f9ac11a36d2175fc9c591"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

123.242.166.4/webosm/datas/image/1549948430.png

123.242.166.4

200 OK

4.6 kB

URL HTTP/1.1
123.242.166.4/webosm/datas/image/1549948430.png
IP
123.242.166.4:0
ASN
#38450 Ministry of Infomation Communication Technology

File type
PNG image data, 84 x 22, 8-bit/color RGBA, non-interlaced\012- data
Size
4.6 kB (4646 bytes)
Hash
4e7170dbb96fdaad83f0d1d622ed6adf
d1f0bc78fe6c69723540c5f9baacb3ec93ae0555
89a73f691ba9fc8a08946a47bcf421b45556bf445758137d3c607239fe1bde92

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /webosm/datas/image/1549948430.png HTTP/1.1
Host: 123.242.166.4
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://123.242.166.4/webosm/index.php
Cookie: PHPSESSID=12a6jj8aksihq90b2mporsoge7; my_lang=th; counter_date=1

HTTP/1.1 200 OK
Date: Tue, 31 Jan 2023 23:24:25 GMT
Server: Apache/2.4.18 (Ubuntu)
Last-Modified: Sat, 24 Sep 2022 03:28:01 GMT
ETag: "1226-5e963e1b984f0"
Accept-Ranges: bytes
Content-Length: 4646
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: image/png

thahinc.psru.ac.th/server.php?c=LGhhY2tzZXJ2aWNl&w=220&h=72

202.29.80.144

200 OK

564 B

URL HTTP/1.1
thahinc.psru.ac.th/server.php?c=LGhhY2tzZXJ2aWNl&w=220&h=72
IP
202.29.80.144:0
ASN
#137241 PibulSongkramRajabhat University

File type
HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size
564 B (564 bytes)
Hash
4aac0dd9add76a8ae4737f6a1393b3e4
d47dc0e6fe8b67535867bdb90f322dd8ddea0253
a5d474b9e5f71958e635aa6124a494242252ffd849811d62d3c8a2de523d8a15

HTTP Headers

GET /server.php?c=LGhhY2tzZXJ2aWNl&w=220&h=72 HTTP/1.1
Host: thahinc.psru.ac.th
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Origin: http://123.242.166.4
Connection: keep-alive
Referer: http://123.242.166.4/

HTTP/1.1 200 OK
Date: Tue, 31 Jan 2023 23:20:53 GMT
Server: Apache/2.4.18 (FreeBSD) OpenSSL/1.0.1s-freebsd PHP/5.5.32
X-Powered-By: PHP/5.5.32
Access-Control-Allow-Origin: *
Content-Length: 564
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html

123.242.166.4/webosm/datas/image/text/text02.png

123.242.166.4

200 OK

26 kB

URL HTTP/1.1
123.242.166.4/webosm/datas/image/text/text02.png
IP
123.242.166.4:0
ASN
#38450 Ministry of Infomation Communication Technology

File type
PNG image data, 450 x 50, 8-bit/color RGBA, non-interlaced\012- data
Size
26 kB (25622 bytes)
Hash
1bd9b42680190a8ac7400543b2e8b38e
95133010aa3e734296d0d53d6a3ff90d6cc536e5
0db7d4056b487c8738e8847043f1a6c113f0c73b6ae70693dfc1ca9368f92211

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /webosm/datas/image/text/text02.png HTTP/1.1
Host: 123.242.166.4
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://123.242.166.4/webosm/index.php
Cookie: PHPSESSID=12a6jj8aksihq90b2mporsoge7; my_lang=th; counter_date=1

HTTP/1.1 200 OK
Date: Tue, 31 Jan 2023 23:24:25 GMT
Server: Apache/2.4.18 (Ubuntu)
Last-Modified: Sat, 24 Sep 2022 03:28:01 GMT
ETag: "6416-5e963e1b94670"
Accept-Ranges: bytes
Content-Length: 25622
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: image/png

123.242.166.4/webosm/datas/image/1664867681.jpg

123.242.166.4

200 OK

152 kB

URL HTTP/1.1
123.242.166.4/webosm/datas/image/1664867681.jpg
IP
123.242.166.4:0
ASN
#38450 Ministry of Infomation Communication Technology

File type
JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=12, height=1014, bps=0, PhotometricIntepretation=RGB, orientation=upper-left, width=621], baseline, precision 8, 621x1014, components 3\012- data
Size
152 kB (151918 bytes)
Hash
0883d6a729b6ef3fc24af138d8c3ea75
e23fee795a0e64a5ff2ef704b2f5b501a9c2e345
4475cf21ab3254a68cf7fd82860fe759ab757ccd16d640c80907f3eb5792f778

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /webosm/datas/image/1664867681.jpg HTTP/1.1
Host: 123.242.166.4
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://123.242.166.4/webosm/index.php
Cookie: PHPSESSID=12a6jj8aksihq90b2mporsoge7; my_lang=th; counter_date=1

HTTP/1.1 200 OK
Date: Tue, 31 Jan 2023 23:24:24 GMT
Server: Apache/2.4.18 (Ubuntu)
Last-Modified: Tue, 04 Oct 2022 07:14:41 GMT
ETag: "2516e-5ea3036c016a5"
Accept-Ranges: bytes
Content-Length: 151918
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: image/jpeg

123.242.166.4/webosm/datas/image/1670914215.jpg

123.242.166.4

200 OK

425 kB

URL HTTP/1.1
123.242.166.4/webosm/datas/image/1670914215.jpg
IP
123.242.166.4:0
ASN
#38450 Ministry of Infomation Communication Technology

File type
JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=12, height=1014, bps=0, PhotometricIntepretation=RGB, orientation=upper-left, width=621], baseline, precision 8, 621x1014, components 3\012- data
Size
425 kB (425050 bytes)
Hash
2c523ec681b71af7cea56e7466d3087f
06d8346e89e181092b30a4bfe3a572a25e561eff
231a809422e0db5fe2c193559c562b7b280667afb31ed68d34699c19f8498edb

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /webosm/datas/image/1670914215.jpg HTTP/1.1
Host: 123.242.166.4
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://123.242.166.4/webosm/index.php
Cookie: PHPSESSID=12a6jj8aksihq90b2mporsoge7; my_lang=th; counter_date=1

HTTP/1.1 200 OK
Date: Tue, 31 Jan 2023 23:24:24 GMT
Server: Apache/2.4.18 (Ubuntu)
Last-Modified: Tue, 13 Dec 2022 06:50:15 GMT
ETag: "67c5a-5efb0083ea156"
Accept-Ranges: bytes
Content-Length: 425050
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: image/jpeg

123.242.166.4/webosm/datas/image/text/text03.png

123.242.166.4

200 OK

25 kB

URL HTTP/1.1
123.242.166.4/webosm/datas/image/text/text03.png
IP
123.242.166.4:0
ASN
#38450 Ministry of Infomation Communication Technology

File type
PNG image data, 450 x 50, 8-bit/color RGBA, non-interlaced\012- data
Size
25 kB (25198 bytes)
Hash
6f2ad7e32583144ab68fe6af68b64077
643f71eda7df2ba639dd922ea20bc83f7de0bdce
e55049e645e7b2f0e44437f2fd622dd467dba23991597c860241b27b54fd4ccb

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /webosm/datas/image/text/text03.png HTTP/1.1
Host: 123.242.166.4
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://123.242.166.4/webosm/index.php
Cookie: PHPSESSID=12a6jj8aksihq90b2mporsoge7; my_lang=th; counter_date=1

HTTP/1.1 200 OK
Date: Tue, 31 Jan 2023 23:24:25 GMT
Server: Apache/2.4.18 (Ubuntu)
Last-Modified: Sat, 24 Sep 2022 03:28:01 GMT
ETag: "626e-5e963e1b94670"
Accept-Ranges: bytes
Content-Length: 25198
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: image/png

123.242.166.4/webosm/skin/ext/jpg.png

123.242.166.4

200 OK

710 B

URL HTTP/1.1
123.242.166.4/webosm/skin/ext/jpg.png
IP
123.242.166.4:0
ASN
#38450 Ministry of Infomation Communication Technology

File type
PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced\012- data
Size
710 B (710 bytes)
Hash
701ebd0f11fa4a9588e678db200ee80e
d77799c93a7e246e7a36cd33e5a1d40672761c99
c64e1703664e16b3f5e991d9a5338b2e1cf6d0893330dd6fa4d966379bd4e858

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /webosm/skin/ext/jpg.png HTTP/1.1
Host: 123.242.166.4
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://123.242.166.4/webosm/index.php
Cookie: PHPSESSID=12a6jj8aksihq90b2mporsoge7; my_lang=th; counter_date=1

HTTP/1.1 200 OK
Date: Tue, 31 Jan 2023 23:24:25 GMT
Server: Apache/2.4.18 (Ubuntu)
Last-Modified: Sat, 24 Sep 2022 01:01:44 GMT
ETag: "2c6-5e961d689ae00"
Accept-Ranges: bytes
Content-Length: 710
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: image/png

123.242.166.4/webosm/skin/ext/pdf.png

123.242.166.4

200 OK

698 B

URL HTTP/1.1
123.242.166.4/webosm/skin/ext/pdf.png
IP
123.242.166.4:0
ASN
#38450 Ministry of Infomation Communication Technology

File type
PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced\012- data
Size
698 B (698 bytes)
Hash
9e2555e6e5785eff23b95979a33607af
5d39c91348a6c0d7cd7d3ff6f8167e2d0142d91d
e976fa373416eb60a2e36f949356659045ededeae881d41236e0c816e2374c10

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /webosm/skin/ext/pdf.png HTTP/1.1
Host: 123.242.166.4
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://123.242.166.4/webosm/index.php
Cookie: PHPSESSID=12a6jj8aksihq90b2mporsoge7; my_lang=th; counter_date=1

HTTP/1.1 200 OK
Date: Tue, 31 Jan 2023 23:24:25 GMT
Server: Apache/2.4.18 (Ubuntu)
Last-Modified: Sat, 24 Sep 2022 01:01:44 GMT
ETag: "2ba-5e961d689ae00"
Accept-Ranges: bytes
Content-Length: 698
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: image/png

123.242.166.4/webosm/skin/ext/docx.png

123.242.166.4

200 OK

659 B

URL HTTP/1.1
123.242.166.4/webosm/skin/ext/docx.png
IP
123.242.166.4:0
ASN
#38450 Ministry of Infomation Communication Technology

File type
PNG image data, 16 x 16, 8-bit colormap, non-interlaced\012- data
Size
659 B (659 bytes)
Hash
91042366c164aac21830cd05c23f90e9
2c2f5605b3cd38a9e59c577c1b0ad8e2edf20ffc
5a3ee1031de5af25ecba920ef14150c8cc9e83dcd6c79b3e55aa78206f0e6d9d

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /webosm/skin/ext/docx.png HTTP/1.1
Host: 123.242.166.4
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://123.242.166.4/webosm/index.php
Cookie: PHPSESSID=12a6jj8aksihq90b2mporsoge7; my_lang=th; counter_date=1

HTTP/1.1 200 OK
Date: Tue, 31 Jan 2023 23:24:25 GMT
Server: Apache/2.4.18 (Ubuntu)
Last-Modified: Sat, 24 Sep 2022 01:01:44 GMT
ETag: "293-5e961d689ae00"
Accept-Ranges: bytes
Content-Length: 659
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: image/png

123.242.166.4/webosm/skin/ext/doc.png

123.242.166.4

200 OK

659 B

URL HTTP/1.1
123.242.166.4/webosm/skin/ext/doc.png
IP
123.242.166.4:0
ASN
#38450 Ministry of Infomation Communication Technology

File type
PNG image data, 16 x 16, 8-bit colormap, non-interlaced\012- data
Size
659 B (659 bytes)
Hash
91042366c164aac21830cd05c23f90e9
2c2f5605b3cd38a9e59c577c1b0ad8e2edf20ffc
5a3ee1031de5af25ecba920ef14150c8cc9e83dcd6c79b3e55aa78206f0e6d9d

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /webosm/skin/ext/doc.png HTTP/1.1
Host: 123.242.166.4
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://123.242.166.4/webosm/index.php
Cookie: PHPSESSID=12a6jj8aksihq90b2mporsoge7; my_lang=th; counter_date=1

HTTP/1.1 200 OK
Date: Tue, 31 Jan 2023 23:24:25 GMT
Server: Apache/2.4.18 (Ubuntu)
Last-Modified: Sat, 24 Sep 2022 01:01:44 GMT
ETag: "293-5e961d689ae00"
Accept-Ranges: bytes
Content-Length: 659
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: image/png

123.242.166.4/webosm/index.php/index/model/consent/execute?1675207484582

123.242.166.4

200 OK

195 B

URL HTTP/1.1
123.242.166.4/webosm/index.php/index/model/consent/execute?1675207484582
IP
123.242.166.4:0
ASN
#38450 Ministry of Infomation Communication Technology

File type
Unicode text, UTF-8 text, with no line terminators
Size
195 B (195 bytes)
Hash
5902196782c125cced89613bc2a5262d
95e08895516a35d1d132e4d02bd51d32bc262c18
ebb6d63b563501e7ad0b30057a52a88a594ac3e9b5cf24f76e9acaba5b1a84c5

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

POST /webosm/index.php/index/model/consent/execute?1675207484582 HTTP/1.1
Host: 123.242.166.4
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,text/plain,application/xml,text/xml,application/json,text/javascript
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
X-Requested-With: XMLHttpRequest
Content-Type: application/x-www-form-urlencoded;charset=UTF-8
Content-Length: 0
Origin: http://123.242.166.4
Connection: keep-alive
Referer: http://123.242.166.4/webosm/index.php
Cookie: PHPSESSID=12a6jj8aksihq90b2mporsoge7; my_lang=th; counter_date=1

HTTP/1.1 200 OK
Date: Tue, 31 Jan 2023 23:24:25 GMT
Server: Apache/2.4.18 (Ubuntu)
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
Set-Cookie: my_lang=th; expires=Thu, 02-Mar-2023 23:24:25 GMT; Max-Age=2592000; path=/
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 195
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: text/html; charset=utf-8

123.242.166.4/webosm/datas/image/text/text04.png

123.242.166.4

200 OK

24 kB

URL HTTP/1.1
123.242.166.4/webosm/datas/image/text/text04.png
IP
123.242.166.4:0
ASN
#38450 Ministry of Infomation Communication Technology

File type
PNG image data, 450 x 50, 8-bit/color RGBA, non-interlaced\012- data
Size
24 kB (24244 bytes)
Hash
d670a952df5e158cfcb0160a44b483e7
260becda4fa801b1cd7e5dbc16520b4d6c25ae20
a055931f0c9a7168d126c1d0f306ad637c693bf402beaaf69b43bc039238187b

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /webosm/datas/image/text/text04.png HTTP/1.1
Host: 123.242.166.4
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://123.242.166.4/webosm/index.php
Cookie: PHPSESSID=12a6jj8aksihq90b2mporsoge7; my_lang=th; counter_date=1

HTTP/1.1 200 OK
Date: Tue, 31 Jan 2023 23:24:25 GMT
Server: Apache/2.4.18 (Ubuntu)
Last-Modified: Sat, 24 Sep 2022 03:28:01 GMT
ETag: "5eb4-5e963e1b94670"
Accept-Ranges: bytes
Content-Length: 24244
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: image/png

123.242.166.4/webosm/images/headlinkosm.png

123.242.166.4

200 OK

6.9 kB

URL HTTP/1.1
123.242.166.4/webosm/images/headlinkosm.png
IP
123.242.166.4:0
ASN
#38450 Ministry of Infomation Communication Technology

File type
PNG image data, 190 x 35, 8-bit/color RGBA, non-interlaced\012- data
Size
6.9 kB (6871 bytes)
Hash
76dc7349753fea34b481a47300c06ecd
886600aa0ecb879dde4d575fea52b11dc0127ae7
354d5a6951ac4e369cd905aae2210eccf1c5c25482611d173210eeb5caabf279

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /webosm/images/headlinkosm.png HTTP/1.1
Host: 123.242.166.4
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://123.242.166.4/webosm/index.php
Cookie: PHPSESSID=12a6jj8aksihq90b2mporsoge7; my_lang=th; counter_date=1

HTTP/1.1 200 OK
Date: Tue, 31 Jan 2023 23:24:25 GMT
Server: Apache/2.4.18 (Ubuntu)
Last-Modified: Wed, 23 Jul 2014 08:52:52 GMT
ETag: "1ad7-4fed87722c100"
Accept-Ranges: bytes
Content-Length: 6871
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: image/png

123.242.166.4/webosm/images/headlink.png

123.242.166.4

200 OK

6.6 kB

URL HTTP/1.1
123.242.166.4/webosm/images/headlink.png
IP
123.242.166.4:0
ASN
#38450 Ministry of Infomation Communication Technology

File type
PNG image data, 190 x 35, 8-bit/color RGBA, non-interlaced\012- data
Size
6.6 kB (6564 bytes)
Hash
1c33341556a893d72d1d7e5a5d83a0a7
886b205bc79420614334743f51d54769046e427d
f50a228e2f974d3d6ba54f182c68e783a93a46324eb3ee3e151f8b2fb9afb436

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /webosm/images/headlink.png HTTP/1.1
Host: 123.242.166.4
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://123.242.166.4/webosm/index.php
Cookie: PHPSESSID=12a6jj8aksihq90b2mporsoge7; my_lang=th; counter_date=1

HTTP/1.1 200 OK
Date: Tue, 31 Jan 2023 23:24:25 GMT
Server: Apache/2.4.18 (Ubuntu)
Last-Modified: Wed, 23 Jul 2014 08:53:06 GMT
ETag: "19a4-4fed877f86080"
Accept-Ranges: bytes
Content-Length: 6564
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: image/png

123.242.166.4/webosm/images/moi.png

123.242.166.4

200 OK

18 kB

URL HTTP/1.1
123.242.166.4/webosm/images/moi.png
IP
123.242.166.4:0
ASN
#38450 Ministry of Infomation Communication Technology

File type
PNG image data, 190 x 60, 8-bit/color RGB, non-interlaced\012- data
Size
18 kB (18395 bytes)
Hash
c67689f5cd05c1717dd3e85b14ed12f0
7a94b8b00f838d685ed705421db5da6ac2bc61b7
5bf695893a6b95b0ae0c8f2138a471da6957608de5e8c5bf05f355e9d2d479ff

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /webosm/images/moi.png HTTP/1.1
Host: 123.242.166.4
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://123.242.166.4/webosm/index.php
Cookie: PHPSESSID=12a6jj8aksihq90b2mporsoge7; my_lang=th; counter_date=1

HTTP/1.1 200 OK
Date: Tue, 31 Jan 2023 23:24:26 GMT
Server: Apache/2.4.18 (Ubuntu)
Last-Modified: Wed, 23 Jul 2014 08:46:12 GMT
ETag: "47db-4fed85f4b3d00"
Accept-Ranges: bytes
Content-Length: 18395
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: image/png

123.242.166.4/webosm/images/stories/banner2_pattana.png

123.242.166.4

200 OK

16 kB

URL HTTP/1.1
123.242.166.4/webosm/images/stories/banner2_pattana.png
IP
123.242.166.4:0
ASN
#38450 Ministry of Infomation Communication Technology

File type
PNG image data, 190 x 60, 8-bit/color RGB, non-interlaced\012- data
Size
16 kB (16162 bytes)
Hash
60dc76702c99b7681d7b32dacfb36752
42b6d645cb33dff720dcc027d982d8ad790325bf
8861c1c957be5580aa1384fca69f4bcf97dc45ae9c3017ebff25e56933490c0f

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /webosm/images/stories/banner2_pattana.png HTTP/1.1
Host: 123.242.166.4
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://123.242.166.4/webosm/index.php
Cookie: PHPSESSID=12a6jj8aksihq90b2mporsoge7; my_lang=th; counter_date=1

HTTP/1.1 200 OK
Date: Tue, 31 Jan 2023 23:24:26 GMT
Server: Apache/2.4.18 (Ubuntu)
Last-Modified: Mon, 21 Mar 2011 04:56:12 GMT
ETag: "3f22-49ef6f25a7300"
Accept-Ranges: bytes
Content-Length: 16162
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: image/png

123.242.166.4/webosm/images/stories/banner2_damrong.png

123.242.166.4

200 OK

18 kB

URL HTTP/1.1
123.242.166.4/webosm/images/stories/banner2_damrong.png
IP
123.242.166.4:0
ASN
#38450 Ministry of Infomation Communication Technology

File type
PNG image data, 190 x 60, 8-bit/color RGB, non-interlaced\012- data
Size
18 kB (17710 bytes)
Hash
673ea47001ef31a96d6642c67c078047
4d6dcae607c8e0035849cc7db6d137759fd6249d
1a1c08be43d0cfab7be910adab6bb291052521a5c3d51ab24fc0641abaeb9f6b

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /webosm/images/stories/banner2_damrong.png HTTP/1.1
Host: 123.242.166.4
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://123.242.166.4/webosm/index.php
Cookie: PHPSESSID=12a6jj8aksihq90b2mporsoge7; my_lang=th; counter_date=1

HTTP/1.1 200 OK
Date: Tue, 31 Jan 2023 23:24:26 GMT
Server: Apache/2.4.18 (Ubuntu)
Last-Modified: Mon, 21 Mar 2011 04:55:44 GMT
ETag: "452e-49ef6f0af3400"
Accept-Ranges: bytes
Content-Length: 17710
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: image/png

123.242.166.4/webosm/images/stories/banner2_ngoppaman.png

123.242.166.4

200 OK

14 kB

URL HTTP/1.1
123.242.166.4/webosm/images/stories/banner2_ngoppaman.png
IP
123.242.166.4:0
ASN
#38450 Ministry of Infomation Communication Technology

File type
PNG image data, 190 x 60, 8-bit/color RGB, non-interlaced\012- data
Size
14 kB (13622 bytes)
Hash
022dc27094b691054ed2e9ed9ac3b83b
36c059d728aa26d4b5791cb2a42625fdbca73783
6a413269af4a0f489c3aab4dd03ad525a11f608b93c134f7348392b58322f4a4

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /webosm/images/stories/banner2_ngoppaman.png HTTP/1.1
Host: 123.242.166.4
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://123.242.166.4/webosm/index.php
Cookie: PHPSESSID=12a6jj8aksihq90b2mporsoge7; my_lang=th; counter_date=1

HTTP/1.1 200 OK
Date: Tue, 31 Jan 2023 23:24:26 GMT
Server: Apache/2.4.18 (Ubuntu)
Last-Modified: Mon, 21 Mar 2011 04:56:00 GMT
ETag: "3536-49ef6f1a35800"
Accept-Ranges: bytes
Content-Length: 13622
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: image/png

123.242.166.4/webosm/images/stories/banner2_kpl.png

123.242.166.4

200 OK

14 kB

URL HTTP/1.1
123.242.166.4/webosm/images/stories/banner2_kpl.png
IP
123.242.166.4:0
ASN
#38450 Ministry of Infomation Communication Technology

File type
PNG image data, 190 x 60, 8-bit/color RGB, non-interlaced\012- data
Size
14 kB (13937 bytes)
Hash
5c9b60b5242615e50ab19d30334141dd
e53064423a0108a07a8520da141a0258975f5dc6
745a632aca8d5f53b6f9d06c03f6df7c2102f194c71d2674dc4fe2eb4c221e42

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /webosm/images/stories/banner2_kpl.png HTTP/1.1
Host: 123.242.166.4
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://123.242.166.4/webosm/index.php
Cookie: PHPSESSID=12a6jj8aksihq90b2mporsoge7; my_lang=th; counter_date=1

HTTP/1.1 200 OK
Date: Tue, 31 Jan 2023 23:24:26 GMT
Server: Apache/2.4.18 (Ubuntu)
Last-Modified: Mon, 21 Mar 2011 04:55:48 GMT
ETag: "3671-49ef6f0ec3d00"
Accept-Ranges: bytes
Content-Length: 13937
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: image/png

123.242.166.4/webosm/images/stories/banner2_nayok.png

123.242.166.4

200 OK

14 kB

URL HTTP/1.1
123.242.166.4/webosm/images/stories/banner2_nayok.png
IP
123.242.166.4:0
ASN
#38450 Ministry of Infomation Communication Technology

File type
PNG image data, 190 x 60, 8-bit/color RGB, non-interlaced\012- data
Size
14 kB (14210 bytes)
Hash
98914450889c32a21cf60c2a28b8209b
634933d50d2d4d50b82e99e4137688f83a14b47d
e28ec8fbb9a8df9bbbe88fe1ab797ecfffe3af2536cd8b8ae05c133b22fbd9b4

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /webosm/images/stories/banner2_nayok.png HTTP/1.1
Host: 123.242.166.4
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://123.242.166.4/webosm/index.php
Cookie: PHPSESSID=12a6jj8aksihq90b2mporsoge7; my_lang=th; counter_date=1

HTTP/1.1 200 OK
Date: Tue, 31 Jan 2023 23:24:26 GMT
Server: Apache/2.4.18 (Ubuntu)
Last-Modified: Mon, 21 Mar 2011 04:55:54 GMT
ETag: "3782-49ef6f147ca80"
Accept-Ranges: bytes
Content-Length: 14210
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive
Content-Type: image/png

123.242.166.4/webosm/images/stories/lowerNorth2Tour.png

123.242.166.4

200 OK

34 kB

URL HTTP/1.1
123.242.166.4/webosm/images/stories/lowerNorth2Tour.png
IP
123.242.166.4:0
ASN
#38450 Ministry of Infomation Communication Technology

File type
PNG image data, 220 x 95, 8-bit/color RGB, non-interlaced\012- data
Size
34 kB (34493 bytes)
Hash
0738c2ceaa4f8b9082965748df76f24e
740120ef43621ec422a019fcf1aaf7a88934ebab
fd09861a0a9fce57b93ac90fdd5b3b8c79d5c607a1b264c7c5ee52eebb739e4a

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /webosm/images/stories/lowerNorth2Tour.png HTTP/1.1
Host: 123.242.166.4
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://123.242.166.4/webosm/index.php
Cookie: PHPSESSID=12a6jj8aksihq90b2mporsoge7; my_lang=th; counter_date=1

HTTP/1.1 200 OK
Date: Tue, 31 Jan 2023 23:24:26 GMT
Server: Apache/2.4.18 (Ubuntu)
Last-Modified: Thu, 11 Oct 2012 06:44:26 GMT
ETag: "86bd-4cbc2e6f8c680"
Accept-Ranges: bytes
Content-Length: 34493
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: image/png

cdnjs.cloudflare.com/ajax/libs/twitter-bootstrap/5.0.1/css/bootstrap.min.css

104.17.24.14

200 OK

17 kB

URL HTTP/2
cdnjs.cloudflare.com/ajax/libs/twitter-bootstrap/5.0.1/css/bootstrap.min.css
IP
104.17.24.14:0
ASN
#13335 CLOUDFLARENET

File type
Unicode text, UTF-8 text, with very long lines (65306)
Size
17 kB (16741 bytes)
Hash
1118b54e0909b9b27117e990e1eb6b59
86b41cf8f115aa49dc0d480213f8d74da2125976
19474e6c8561ba3441945f41e23809722940c234635291acf0039d7b52191d6c

HTTP Headers

GET /ajax/libs/twitter-bootstrap/5.0.1/css/bootstrap.min.css HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tmd.go.th/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Tue, 31 Jan 2023 23:24:26 GMT
content-type: text/css; charset=utf-8
content-length: 16741
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "60a4fde4-4165"
last-modified: Wed, 19 May 2021 12:00:36 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 6049961
expires: Sun, 21 Jan 2024 23:24:26 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=PvsLNwVPSE3Hn89vIbP2m1wT8DcHeP1grsKZOvF62rYMCOSkZ3GnjOf1GLzhB7HWoCpG%2B%2FygxMLx9c5oEkMVaWUWEtiLeLEczpSJHsdDkJPgMhnJ%2F6Purqk2aARCrFevaOCQ%2FDDr"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 792633689a0fb518-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

cdnjs.cloudflare.com/ajax/libs/select2/4.0.3/css/select2.min.css

104.17.24.14

200 OK

1.6 kB

URL HTTP/2
cdnjs.cloudflare.com/ajax/libs/select2/4.0.3/css/select2.min.css
IP
104.17.24.14:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with very long lines (15195)
Size
1.6 kB (1624 bytes)
Hash
b882d7e63899a62cfb4fe9563af4245d
726e9f61ac75d59a2f95f15cdda1af77f420a2eb
387d3b1157267d3f4e539fa96c8d03291698037cdeca14ee0b6ac0a309e9f73e

HTTP Headers

GET /ajax/libs/select2/4.0.3/css/select2.min.css HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tmd.go.th/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Tue, 31 Jan 2023 23:24:26 GMT
content-type: text/css; charset=utf-8
content-length: 1624
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03fcb-3b5c"
last-modified: Mon, 04 May 2020 16:16:11 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 7094668
expires: Sun, 21 Jan 2024 23:24:26 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=fbrwmd3gccAR6QtaLOGB%2BbvNjgu7iejdrF8barfEXL05qCUM32KWeU44HgA6WltO7IS518Kgq21ugBOmi6tTvelMypDFSnIK0AK%2F7Ivp%2Bt1AMG1RWxkwU%2Bs2PYdCImTvJrroa1ex"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 79263368aa1fb518-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

279 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
279 B (279 bytes)
Hash
be86cc124994d9b171b9c6f534f0d65e
2dcefbc156bb5e1e0c7268537d2f0901f338823b
984efeeb1af689799055abad096b93348a2d4bb189eed70fe84b8fb21f628a1a

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1472
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 23:24:26 GMT
Last-Modified: Tue, 31 Jan 2023 22:59:54 GMT
Server: ECS (ska/F711)
X-Cache: HIT
Content-Length: 279

code.jquery.com/jquery-3.5.1.js

69.16.175.42

200 OK

84 kB

URL HTTP/2
code.jquery.com/jquery-3.5.1.js
IP
69.16.175.42:0
ASN
#20446 STACKPATH-CDN

File type
ASCII text
Size
84 kB (84374 bytes)
Hash
ad571ea184084783080d0391add24d9f
5a94acbbe3c7dfeadbb5af44b4baf7920243c4b1
5bfb1df44242cef31542b5b193050538e90183b515ffe0b99037b97d1fc42e0f

HTTP Headers

GET /jquery-3.5.1.js HTTP/1.1
Host: code.jquery.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tmd.go.th/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Tue, 31 Jan 2023 23:24:26 GMT
content-encoding: gzip
content-length: 84374
content-type: application/javascript; charset=utf-8
last-modified: Wed, 16 Feb 2022 10:50:39 GMT
accept-ranges: bytes
server: nginx
etag: W/"620cd6ff-4638e"
cache-control: max-age=315360000, public
access-control-allow-origin: *
vary: Accept-Encoding
x-hw: 1675207466.dop227.sk1.t,1675207466.cds252.sk1.hn,1675207466.cds204.sk1.c
X-Firefox-Spdy: h2

cdnjs.cloudflare.com/ajax/libs/select2/4.0.3/js/select2.min.js

104.17.24.14

200 OK

16 kB

URL HTTP/2
cdnjs.cloudflare.com/ajax/libs/select2/4.0.3/js/select2.min.js
IP
104.17.24.14:0
ASN
#13335 CLOUDFLARENET

File type
Unicode text, UTF-8 text, with very long lines (32091)
Size
16 kB (15671 bytes)
Hash
e32b2fa21728a1135e8467cc515f0552
4304c529c663a87c6d0f0a245c9c18ed2def78a8
576651f8ad26d3034a711d3cd667efb8a761f96a82defff63f750f39fdeb6799

HTTP Headers

GET /ajax/libs/select2/4.0.3/js/select2.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tmd.go.th/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Tue, 31 Jan 2023 23:24:26 GMT
content-type: application/javascript; charset=utf-8
content-length: 15671
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03fcb-10468"
last-modified: Mon, 04 May 2020 16:16:11 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
expect-ct: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
vary: Accept-Encoding
cf-cache-status: HIT
age: 20486325
expires: Sun, 21 Jan 2024 23:24:26 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=HO7UHCXYaMD%2B0lvlolzqf0JJ%2FRZ8hayYkke79GurMyjxF9KdrhCaVyLB7otKwgKkUa9HghGT2oFmLdMvJFNBg76siK2Rl%2BgOYSY7Cj5gUhXjJHyLVYPBSSbtGl0GHOzPJACcJUBW"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 79263368ca4eb518-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

279 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
279 B (279 bytes)
Hash
be86cc124994d9b171b9c6f534f0d65e
2dcefbc156bb5e1e0c7268537d2f0901f338823b
984efeeb1af689799055abad096b93348a2d4bb189eed70fe84b8fb21f628a1a

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1472
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 23:24:26 GMT
Last-Modified: Tue, 31 Jan 2023 22:59:54 GMT
Server: ECS (ska/F711)
X-Cache: HIT
Content-Length: 279

cdn.jsdelivr.net/jquery.jssocials/1.4.0/jssocials-theme-minima.css

151.101.1.229

200 OK

995 B

URL HTTP/2
cdn.jsdelivr.net/jquery.jssocials/1.4.0/jssocials-theme-minima.css
IP
151.101.1.229:0
ASN
#54113 FASTLY

File type
ASCII text
Size
995 B (995 bytes)
Hash
9476450b2cb65f19670e1ba2d486f0e8
f4228a987edd49184832cf59bc5a878d413b4964
c49b857162be8fac58a31f3761036f98b433899d375047d560d670652925c58d

HTTP Headers

GET /jquery.jssocials/1.4.0/jssocials-theme-minima.css HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tmd.go.th/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: text/css; charset=utf-8
etag: W/"2444-tWAM5G9B2s+EHVC3v4GGynH4zIg"
content-encoding: gzip
accept-ranges: bytes
date: Tue, 31 Jan 2023 23:24:26 GMT
age: 1171095
x-served-by: cache-fra-eddf8230134-FRA, cache-bma1670-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 995
X-Firefox-Spdy: h2

cdn.jsdelivr.net/jquery.jssocials/1.4.0/jssocials-theme-plain.css

151.101.1.229

200 OK

444 B

URL HTTP/2
cdn.jsdelivr.net/jquery.jssocials/1.4.0/jssocials-theme-plain.css
IP
151.101.1.229:0
ASN
#54113 FASTLY

File type
ASCII text
Size
444 B (444 bytes)
Hash
8cfeeb3e5abbbf16e273c58e27e60842
889f0c597d6bc73bac060d163dae9503a1dfcc56
d9c5775d500c90711280708f74eef971faa6b1c4402fa1374172680ec743d118

HTTP Headers

GET /jquery.jssocials/1.4.0/jssocials-theme-plain.css HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tmd.go.th/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: text/css; charset=utf-8
etag: W/"6e4-ypFsH45l4mNgbL4/OlcENg9jnns"
content-encoding: gzip
accept-ranges: bytes
date: Tue, 31 Jan 2023 23:24:26 GMT
age: 573236
x-served-by: cache-fra-eddf8230024-FRA, cache-bma1670-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 444
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

279 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
279 B (279 bytes)
Hash
be86cc124994d9b171b9c6f534f0d65e
2dcefbc156bb5e1e0c7268537d2f0901f338823b
984efeeb1af689799055abad096b93348a2d4bb189eed70fe84b8fb21f628a1a

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1472
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 23:24:26 GMT
Last-Modified: Tue, 31 Jan 2023 22:59:54 GMT
Server: ECS (ska/F711)
X-Cache: HIT
Content-Length: 279

cdn.datatables.net/1.11.3/js/jquery.dataTables.min.js

172.67.14.139

200 OK

30 kB

URL HTTP/2
cdn.datatables.net/1.11.3/js/jquery.dataTables.min.js
IP
172.67.14.139:0
ASN
#13335 CLOUDFLARENET

File type
Unicode text, UTF-8 text, with very long lines (538)
Size
30 kB (30328 bytes)
Hash
aaffb1b4ff9ab279376364e91a263a50
79d47a703dcdff55fbd476481500dcfe28005aba
192d9e0305e9e5e4b077fd5e885ff516f8cb3d0779209f17b34475e9a6a86870

HTTP Headers

GET /1.11.3/js/jquery.dataTables.min.js HTTP/1.1
Host: cdn.datatables.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tmd.go.th/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Tue, 31 Jan 2023 23:24:26 GMT
content-type: application/javascript; charset=utf-8
content-length: 30328
x-frame-options: SAMEORIGIN
last-modified: Mon, 06 Jun 2022 14:37:30 GMT
etag: "1301169-15759-5e0c8696fe856-gzip"
cache-control: max-age=31536000
expires: Tue, 06 Jun 2023 22:14:30 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
access-control-allow-origin: *
access-control-allow-headers: origin, x-requested-with, content-type
access-control-allow-methods: GET
cf-cache-status: HIT
age: 20653795
accept-ranges: bytes
server: cloudflare
cf-ray: 792633690bb1b4f4-OSL
X-Firefox-Spdy: h2

cdn.jsdelivr.net/jquery.jssocials/1.4.0/jssocials-theme-classic.css

151.101.1.229

200 OK

889 B

URL HTTP/2
cdn.jsdelivr.net/jquery.jssocials/1.4.0/jssocials-theme-classic.css
IP
151.101.1.229:0
ASN
#54113 FASTLY

File type
ASCII text
Size
889 B (889 bytes)
Hash
4727fac2a33de50e080a4f602fe3e0e4
d826f6afffe23b555cb4a7b425dba257d36655f9
7064fa9582270bbdd4b0f4219f95c663871defa595afc28c8e403145f9d7f961

HTTP Headers

GET /jquery.jssocials/1.4.0/jssocials-theme-classic.css HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tmd.go.th/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: text/css; charset=utf-8
etag: W/"1000-QV+rOLAR8LlpVHkeaskDbQvSzMc"
content-encoding: gzip
accept-ranges: bytes
date: Tue, 31 Jan 2023 23:24:26 GMT
age: 8872697
x-served-by: cache-fra-eddf8230103-FRA, cache-bma1670-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 889
X-Firefox-Spdy: h2

cdn.jsdelivr.net/jquery.jssocials/1.4.0/jssocials-theme-flat.css

151.101.1.229

200 OK

752 B

URL HTTP/2
cdn.jsdelivr.net/jquery.jssocials/1.4.0/jssocials-theme-flat.css
IP
151.101.1.229:0
ASN
#54113 FASTLY

File type
ASCII text
Size
752 B (752 bytes)
Hash
3877615f9280c982d414498b1e625cc3
c2cbcbe14a92c990ffc229e0a18ab6d93bb70be3
cc7df0bfd2d8ff4f2ba1e381bd1dc570a89f135370b2e2b61ed1dea5f254bc1c

HTTP Headers

GET /jquery.jssocials/1.4.0/jssocials-theme-flat.css HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tmd.go.th/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: text/css; charset=utf-8
etag: W/"ea1-ctp+1BVGLJNw5mnQ7wNve8GsY7o"
content-encoding: gzip
accept-ranges: bytes
date: Tue, 31 Jan 2023 23:24:26 GMT
age: 2324523
x-served-by: cache-fra-eddf8230125-FRA, cache-bma1670-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 752
X-Firefox-Spdy: h2

cdn.jsdelivr.net/jquery.jssocials/1.4.0/jssocials.css

151.101.1.229

200 OK

384 B

URL HTTP/2
cdn.jsdelivr.net/jquery.jssocials/1.4.0/jssocials.css
IP
151.101.1.229:0
ASN
#54113 FASTLY

File type
ASCII text
Size
384 B (384 bytes)
Hash
3e63721af4200ab8e61415bb86196617
de36b2408497e8069fe22867d8125ecb2b5b77e1
f90119df1fd3a33c3305cb4685a767ed07ddde53a630c4bcecd0079157240dd3

HTTP Headers

GET /jquery.jssocials/1.4.0/jssocials.css HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tmd.go.th/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: text/css; charset=utf-8
etag: W/"51b-yj9O6q8jhNkh2l6UUvEAM75M8Tk"
content-encoding: gzip
accept-ranges: bytes
date: Tue, 31 Jan 2023 23:24:26 GMT
age: 6723148
x-served-by: cache-fra-eddf8230031-FRA, cache-bma1670-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 384
X-Firefox-Spdy: h2

cdn.datatables.net/1.11.3/css/dataTables.bootstrap5.min.css

172.67.14.139

200 OK

1.5 kB

URL HTTP/2
cdn.datatables.net/1.11.3/css/dataTables.bootstrap5.min.css
IP
172.67.14.139:0
ASN
#13335 CLOUDFLARENET

File type
Unicode text, UTF-8 text, with very long lines (5737)
Size
1.5 kB (1502 bytes)
Hash
026ea804f8b7c9be5c0aaef71bd04452
c527a1c1034005454186988cd650c014a176b115
11b028e12b51c77811e2c860f66333ade3424d2885b965dd968361b5bf111a2c

HTTP Headers

GET /1.11.3/css/dataTables.bootstrap5.min.css HTTP/1.1
Host: cdn.datatables.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tmd.go.th/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Tue, 31 Jan 2023 23:24:26 GMT
content-type: text/css; charset=utf-8
content-length: 1502
x-frame-options: SAMEORIGIN
last-modified: Wed, 22 Jun 2022 13:36:14 GMT
etag: "1301ebb-1ef3-5e2096bc9e5a9-gzip"
cache-control: max-age=31536000
expires: Tue, 04 Jul 2023 19:38:20 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
access-control-allow-origin: *
access-control-allow-headers: origin, x-requested-with, content-type
access-control-allow-methods: GET
cf-cache-status: HIT
age: 18243965
accept-ranges: bytes
server: cloudflare
cf-ray: 792633691bc7b4f4-OSL
X-Firefox-Spdy: h2

cdn.jsdelivr.net/jquery.jssocials/1.4.0/jssocials.min.js

151.101.1.229

200 OK

3.0 kB

URL HTTP/2
cdn.jsdelivr.net/jquery.jssocials/1.4.0/jssocials.min.js
IP
151.101.1.229:0
ASN
#54113 FASTLY

File type
ASCII text, with very long lines (8692)
Size
3.0 kB (3013 bytes)
Hash
dc816e4686f3d4f11f711bdabc28cf4f
dac8c643d2f87a408db365b3bfa4b35c5e3b5d99
3c052b8c43483ee7ba613b8e7506d3d3a0c90213477c47d3d4e428141571fbd2

HTTP Headers

GET /jquery.jssocials/1.4.0/jssocials.min.js HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tmd.go.th/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: application/javascript; charset=utf-8
etag: W/"2264-9KbQsXoVEpJWjJIdjufmbZ4QTDU"
content-encoding: gzip
accept-ranges: bytes
date: Tue, 31 Jan 2023 23:24:26 GMT
age: 1189694
x-served-by: cache-fra-eddf8230070-FRA, cache-bma1670-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 3013
X-Firefox-Spdy: h2

www.tmd.go.th/daily_forecast_forweb.php?strProvinceID=8-9-36-48

119.46.126.1

500 Internal Server Error

17 kB

URL HTTP/1.1
www.tmd.go.th/daily_forecast_forweb.php?strProvinceID=8-9-36-48
IP
119.46.126.1:0
ASN
#58692 DOTS Solutions Co., Ltd.

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (623), with CRLF, LF line terminators
Size
17 kB (17282 bytes)
Hash
a3201712c9e5b90fe88980efa4b25da7
80a9fd67c8fe16004637f441ba0884aa00af038a
16cca458783e01f296061a6defb9d45e5112b1158335628b2ad346b32c5f601a

HTTP Headers

GET /daily_forecast_forweb.php?strProvinceID=8-9-36-48 HTTP/1.1
Host: www.tmd.go.th
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://123.242.166.4/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

HTTP/1.1 500 Internal Server Error
Cache-Control: no-cache,no-store
Pragma: no-cache
Transfer-Encoding: chunked
Content-Type: text/html; charset=utf-8
Content-Encoding: br
Content-Language: th-TH
Expires: -1
Vary: Accept-Encoding
X-Content-Type-Options: nosniff
Date: Tue, 31 Jan 2023 23:24:25 GMT

ocsp.globalsign.com/ca/gsatlasr3dvtlsca2022q4

104.18.20.226

200 OK

1.5 kB

URL HTTP/1.1
ocsp.globalsign.com/ca/gsatlasr3dvtlsca2022q4
IP
104.18.20.226:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
1.5 kB (1462 bytes)
Hash
ddda1b75769190d92ec48528129fd10f
3c2deb540654929a14fd7576a7d761404045f46a
6e50617966592a352ea49a5f0b8084a94b39d36b4a8e11a865de28108f32da29

HTTP Headers

POST /ca/gsatlasr3dvtlsca2022q4 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Tue, 31 Jan 2023 23:24:26 GMT
Content-Type: application/ocsp-response
Transfer-Encoding: chunked
Connection: keep-alive
Etag: "3DDA217AA5B732C7A19F9795ACD3094D5F7DAFF5"
Expires: Wed, 01 Feb 2023 10:00:00 GMT
Last-Modified: Tue, 31 Jan 2023 22:00:00 UTC
Cache-Control: s-maxage=3600, public, no-transform, must-revalidate
CF-Cache-Status: HIT
Age: 1869
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7926336959ca1c06-OSL

ocsp.pki.goog/gts1c3

216.58.211.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
216.58.211.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
c004ef398fc2138876eac9e202e6e7c9
9b695108fe043113ee8dc3369be58234f1a73323
ab71d4c6d64f3c7a0114070414615b26843c22de34b0f04c9ad932ca112031c7

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 23:24:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.googletagmanager.com/gtag/js?id=G-F9Z27KFG7K

172.217.21.168

200 OK

77 kB

URL HTTP/2
www.googletagmanager.com/gtag/js?id=G-F9Z27KFG7K
IP
172.217.21.168:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (19467)
Size
77 kB (77116 bytes)
Hash
6529593f14249268bf934fd24667af98
c0f31e375ba8413027a77f7a8c62d7dd767cc3cb
be22047302084007bd4b2ee8efd6e209f4466f01ef18d47c66a0b9e5828dbc71

HTTP Headers

GET /gtag/js?id=G-F9Z27KFG7K HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tmd.go.th/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Tue, 31 Jan 2023 23:24:26 GMT
expires: Tue, 31 Jan 2023 23:24:26 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 77116
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

thahinc.psru.ac.th/images/no_hack.png

202.29.80.144

200 OK

58 kB

URL HTTP/1.1
thahinc.psru.ac.th/images/no_hack.png
IP
202.29.80.144:0
ASN
#137241 PibulSongkramRajabhat University

File type
PNG image data, 722 x 235, 8-bit/color RGBA, non-interlaced\012- data
Size
58 kB (57755 bytes)
Hash
dc3190e21021e038ae3c519a0bf79af8
f8c6ead68e2434abb682c097ec019204e9e9350a
0adb7757d8fb65e9726cf28061b922bbb900a3a3787986596c69abe7844eb2df

HTTP Headers

GET /images/no_hack.png HTTP/1.1
Host: thahinc.psru.ac.th
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://123.242.166.4/

HTTP/1.1 200 OK
Date: Tue, 31 Jan 2023 23:20:54 GMT
Server: Apache/2.4.18 (FreeBSD) OpenSSL/1.0.1s-freebsd PHP/5.5.32
Last-Modified: Mon, 24 Oct 2016 22:54:33 GMT
ETag: "e19b-53fa446814753"
Accept-Ranges: bytes
Content-Length: 57755
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: image/png

ocsp.pki.goog/gts1c3

216.58.211.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
216.58.211.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
c004ef398fc2138876eac9e202e6e7c9
9b695108fe043113ee8dc3369be58234f1a73323
ab71d4c6d64f3c7a0114070414615b26843c22de34b0f04c9ad932ca112031c7

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 23:24:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

123.242.166.4/webosm/favicon.ico

123.242.166.4

200 OK

4.3 kB

URL HTTP/1.1
123.242.166.4/webosm/favicon.ico
IP
123.242.166.4:0
ASN
#38450 Ministry of Infomation Communication Technology

File type
MS Windows icon resource - 1 icon, 32x32, 32 bits/pixel\012- data
Size
4.3 kB (4286 bytes)
Hash
007e1a6812242d3dcd6483516c0d83e3
fd2b2079ec4cbe58cdda200b06c1c68daba5c3d4
85f0242efc6f67904311c8959b193bccc418210830ebe108101d20cc7ed8d181

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /webosm/favicon.ico HTTP/1.1
Host: 123.242.166.4
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://123.242.166.4/webosm/index.php
Cookie: PHPSESSID=12a6jj8aksihq90b2mporsoge7; my_lang=th; counter_date=1

HTTP/1.1 200 OK
Date: Tue, 31 Jan 2023 23:24:26 GMT
Server: Apache/2.4.18 (Ubuntu)
Last-Modified: Sun, 24 Sep 2017 14:52:46 GMT
ETag: "10be-559f09850ab80"
Accept-Ranges: bytes
Content-Length: 4286
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: image/vnd.microsoft.icon

www.tmd.go.th/CustomTheme3/css/custom.css?v=LmX0MBP4i8o_KxsEAOeaBgOeSgdIRIRP0_L0SRHOV_k

119.46.126.1

200 OK

14 kB

URL HTTP/1.1
www.tmd.go.th/CustomTheme3/css/custom.css?v=LmX0MBP4i8o_KxsEAOeaBgOeSgdIRIRP0_L0SRHOV_k
IP
119.46.126.1:0
ASN
#58692 DOTS Solutions Co., Ltd.

File type
ASCII text, with very long lines (1056), with CRLF line terminators
Size
14 kB (13794 bytes)
Hash
8af69c2667e7f9c1facc1fb386790c06
621d347ceb6879a8b4b27bf450586692d12e2050
d1d14c50de833b0a4998eb52abeda958a33b6fd37b38d641c6efe656621eb9f9

HTTP Headers

GET /CustomTheme3/css/custom.css?v=LmX0MBP4i8o_KxsEAOeaBgOeSgdIRIRP0_L0SRHOV_k HTTP/1.1
Host: www.tmd.go.th
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tmd.go.th/daily_forecast_forweb.php?strProvinceID=8-9-36-48
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Cache-Control: public, max-age=2592000, s-maxage=31557600
Transfer-Encoding: chunked
Content-Type: text/css
Content-Encoding: br
Content-Language: th-TH
Last-Modified: Wed, 25 Jan 2023 17:59:16 GMT
Accept-Ranges: bytes
ETag: "1d930e6bd43742f"
Vary: Accept-Encoding
X-Content-Type-Options: nosniff
Date: Tue, 31 Jan 2023 23:24:26 GMT

www.tmd.go.th/CustomTheme3/font/font-icon-general/style.css?v=swsyD-NaKI5l9Uf5SuL826n9-KI3Mk2ZmCUJYgVayH8

119.46.126.1

200 OK

986 B

URL HTTP/1.1
www.tmd.go.th/CustomTheme3/font/font-icon-general/style.css?v=swsyD-NaKI5l9Uf5SuL826n9-KI3Mk2ZmCUJYgVayH8
IP
119.46.126.1:0
ASN
#58692 DOTS Solutions Co., Ltd.

File type
ASCII text, with CRLF line terminators
Size
986 B (986 bytes)
Hash
1ab6e43a8968344874e084662a4c0a2a
d901172b7de43deba18cbd0b4ff9d189940179f3
696d96068d540733ab3ebc48be39c859950c2ae2a340f0c0d723f835b42935bf

HTTP Headers

GET /CustomTheme3/font/font-icon-general/style.css?v=swsyD-NaKI5l9Uf5SuL826n9-KI3Mk2ZmCUJYgVayH8 HTTP/1.1
Host: www.tmd.go.th
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tmd.go.th/daily_forecast_forweb.php?strProvinceID=8-9-36-48
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Cache-Control: public, max-age=2592000, s-maxage=31557600
Transfer-Encoding: chunked
Content-Type: text/css
Content-Encoding: br
Content-Language: th-TH
Last-Modified: Wed, 25 Jan 2023 17:59:16 GMT
Accept-Ranges: bytes
ETag: "1d930e6bd4260b0"
Vary: Accept-Encoding
X-Content-Type-Options: nosniff
Date: Tue, 31 Jan 2023 23:24:26 GMT

www.tmd.go.th/CustomTheme3/css/responsive_small.css?v=SEbR769_xuCdt8mK4238UPrXvMfhPkMLDZnhYA0ANpk

119.46.126.1

200 OK

2.1 kB

URL HTTP/1.1
www.tmd.go.th/CustomTheme3/css/responsive_small.css?v=SEbR769_xuCdt8mK4238UPrXvMfhPkMLDZnhYA0ANpk
IP
119.46.126.1:0
ASN
#58692 DOTS Solutions Co., Ltd.

File type
assembler source, ASCII text, with CRLF line terminators
Size
2.1 kB (2095 bytes)
Hash
e83f58d975c7583457f83312c94fa304
ff2766c562fde1b33e898b1169c54585958094c4
7b2df1e5b2ba9bdc93e967dc3e745ba88b0d5cd911d94b3ca3d33f10c3a1092a

HTTP Headers

GET /CustomTheme3/css/responsive_small.css?v=SEbR769_xuCdt8mK4238UPrXvMfhPkMLDZnhYA0ANpk HTTP/1.1
Host: www.tmd.go.th
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tmd.go.th/daily_forecast_forweb.php?strProvinceID=8-9-36-48
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Cache-Control: public, max-age=2592000, s-maxage=31557600
Transfer-Encoding: chunked
Content-Type: text/css
Content-Encoding: br
Content-Language: th-TH
Last-Modified: Wed, 25 Jan 2023 17:59:16 GMT
Accept-Ranges: bytes
ETag: "1d930e6bd426c43"
Vary: Accept-Encoding
X-Content-Type-Options: nosniff
Date: Tue, 31 Jan 2023 23:24:26 GMT

www.tmd.go.th/CustomTheme3/webfont/tmd-icon-style.css?v=urnCMaH96Yq1twsUBEVhCHzU-iESsVXF7uxaQ9AbFgI

119.46.126.1

200 OK

1.0 kB

URL HTTP/1.1
www.tmd.go.th/CustomTheme3/webfont/tmd-icon-style.css?v=urnCMaH96Yq1twsUBEVhCHzU-iESsVXF7uxaQ9AbFgI
IP
119.46.126.1:0
ASN
#58692 DOTS Solutions Co., Ltd.

File type
ASCII text, with CRLF line terminators
Size
1.0 kB (1039 bytes)
Hash
4f33d668b1be3c2e5032e3f1ac35dbaf
22d5c75244d8000dffc4e4a2b16ebc988d49e2d4
6c02338425633ee0d241ac261588322b5276917a4ac4c36f89adb2a1de012ba2

HTTP Headers

GET /CustomTheme3/webfont/tmd-icon-style.css?v=urnCMaH96Yq1twsUBEVhCHzU-iESsVXF7uxaQ9AbFgI HTTP/1.1
Host: www.tmd.go.th
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tmd.go.th/daily_forecast_forweb.php?strProvinceID=8-9-36-48
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Cache-Control: public, max-age=2592000, s-maxage=31557600
Transfer-Encoding: chunked
Content-Type: text/css
Content-Encoding: br
Content-Language: th-TH
Last-Modified: Wed, 25 Jan 2023 17:59:16 GMT
Accept-Ranges: bytes
ETag: "1d930e6bd427d41"
Vary: Accept-Encoding
X-Content-Type-Options: nosniff
Date: Tue, 31 Jan 2023 23:24:26 GMT

www.tmd.go.th/CustomTheme3/css/responsive_medium.css?v=PB8RkjPHc4VXBi4wMr-D0hN5p2KwJCb7M1T7QFohgc4

119.46.126.1

200 OK

1.6 kB

URL HTTP/1.1
www.tmd.go.th/CustomTheme3/css/responsive_medium.css?v=PB8RkjPHc4VXBi4wMr-D0hN5p2KwJCb7M1T7QFohgc4
IP
119.46.126.1:0
ASN
#58692 DOTS Solutions Co., Ltd.

File type
ASCII text, with CRLF line terminators
Size
1.6 kB (1626 bytes)
Hash
c9402ccd89e51eef1854a96a7b13fdab
22374cce2ad599c878d16e7638d65c5514966118
29cd2b63df2bd8dc3228499879ba1118188b992447a87334af258b2ad53d0a97

HTTP Headers

GET /CustomTheme3/css/responsive_medium.css?v=PB8RkjPHc4VXBi4wMr-D0hN5p2KwJCb7M1T7QFohgc4 HTTP/1.1
Host: www.tmd.go.th
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tmd.go.th/daily_forecast_forweb.php?strProvinceID=8-9-36-48
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Cache-Control: public, max-age=2592000, s-maxage=31557600
Transfer-Encoding: chunked
Content-Type: text/css
Content-Encoding: br
Content-Language: th-TH
Last-Modified: Wed, 25 Jan 2023 17:59:16 GMT
Accept-Ranges: bytes
ETag: "1d930e6bd426115"
Vary: Accept-Encoding
X-Content-Type-Options: nosniff
Date: Tue, 31 Jan 2023 23:24:26 GMT

www.tmd.go.th/CustomTheme3/font/icons-quicklink/quicklink-style.css?v=sFZBOelFYbvVWPrPsGqg5DWAyX22ulrt7sItAGChQTU

119.46.126.1

200 OK

861 B

URL HTTP/1.1
www.tmd.go.th/CustomTheme3/font/icons-quicklink/quicklink-style.css?v=sFZBOelFYbvVWPrPsGqg5DWAyX22ulrt7sItAGChQTU
IP
119.46.126.1:0
ASN
#58692 DOTS Solutions Co., Ltd.

File type
ASCII text, with CRLF line terminators
Size
861 B (861 bytes)
Hash
416261b5af07462de85e91cdb4c01bb5
91cffe6fd1934e1d8349f0020e3c3c87ef638576
a9ee57f5850e295c0cad881b74cb1ee6b7bf6539881bb79f2100d9280c99aae5

HTTP Headers

GET /CustomTheme3/font/icons-quicklink/quicklink-style.css?v=sFZBOelFYbvVWPrPsGqg5DWAyX22ulrt7sItAGChQTU HTTP/1.1
Host: www.tmd.go.th
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tmd.go.th/daily_forecast_forweb.php?strProvinceID=8-9-36-48
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Cache-Control: public, max-age=2592000, s-maxage=31557600
Transfer-Encoding: chunked
Content-Type: text/css
Content-Encoding: br
Content-Language: th-TH
Last-Modified: Wed, 25 Jan 2023 17:59:16 GMT
Accept-Ranges: bytes
ETag: "1d930e6bd427cd4"
Vary: Accept-Encoding
X-Content-Type-Options: nosniff
Date: Tue, 31 Jan 2023 23:24:26 GMT

www.tmd.go.th/CustomTheme3/js/global.js?v=Y43r3KOxXD_eYjHER9Cxd1Hu-gJ--s45Jw_tSJrugWM

119.46.126.1

200 OK

2.2 kB

URL HTTP/1.1
www.tmd.go.th/CustomTheme3/js/global.js?v=Y43r3KOxXD_eYjHER9Cxd1Hu-gJ--s45Jw_tSJrugWM
IP
119.46.126.1:0
ASN
#58692 DOTS Solutions Co., Ltd.

File type
Unicode text, UTF-8 text, with CRLF line terminators
Size
2.2 kB (2243 bytes)
Hash
d1a1a47f66c822f44a169fd3076bd43a
7361fb013a09eb8e5f06f7cde6433504f88d20c4
518ef92ef9dbb349b30472dd94b082cacefef41cb5613755948aad901a65dfb7

HTTP Headers

GET /CustomTheme3/js/global.js?v=Y43r3KOxXD_eYjHER9Cxd1Hu-gJ--s45Jw_tSJrugWM HTTP/1.1
Host: www.tmd.go.th
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tmd.go.th/daily_forecast_forweb.php?strProvinceID=8-9-36-48
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Cache-Control: public, max-age=2592000, s-maxage=31557600
Content-Type: application/javascript
Content-Encoding: br
Content-Language: th-TH
Last-Modified: Wed, 25 Jan 2023 17:59:16 GMT
Accept-Ranges: bytes
ETag: "1d930e6bd426f09"
Vary: Accept-Encoding
X-Content-Type-Options: nosniff
Date: Tue, 31 Jan 2023 23:24:26 GMT
Transfer-Encoding: chunked

www.tmd.go.th/CustomTheme3/js/headerTool/script.js?v=p9fcRrqPfMAE6ymY-Is_PZUkuoPpFQgcmZUlsKTFYaM

119.46.126.1

200 OK

2.1 kB

URL HTTP/1.1
www.tmd.go.th/CustomTheme3/js/headerTool/script.js?v=p9fcRrqPfMAE6ymY-Is_PZUkuoPpFQgcmZUlsKTFYaM
IP
119.46.126.1:0
ASN
#58692 DOTS Solutions Co., Ltd.

File type
ASCII text, with CRLF line terminators
Size
2.1 kB (2061 bytes)
Hash
95e7bb44c5d1d5864929f1f32d7a0270
78af78dc0ed971034466b93c4ee1338777841906
7a32b45af742ff3a87e44996ff494ec9e1694e0a4b3d1d700df39740a3d5a7e4

HTTP Headers

GET /CustomTheme3/js/headerTool/script.js?v=p9fcRrqPfMAE6ymY-Is_PZUkuoPpFQgcmZUlsKTFYaM HTTP/1.1
Host: www.tmd.go.th
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tmd.go.th/daily_forecast_forweb.php?strProvinceID=8-9-36-48
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Cache-Control: public, max-age=2592000, s-maxage=31557600
Transfer-Encoding: chunked
Content-Type: application/javascript
Content-Encoding: br
Content-Language: th-TH
Last-Modified: Wed, 25 Jan 2023 17:59:16 GMT
Accept-Ranges: bytes
ETag: "1d930e6bd42699a"
Vary: Accept-Encoding
X-Content-Type-Options: nosniff
Date: Tue, 31 Jan 2023 23:24:26 GMT

www.tmd.go.th/CustomTheme3/css/subPage/footer.css

119.46.126.1

200 OK

157 B

URL HTTP/1.1
www.tmd.go.th/CustomTheme3/css/subPage/footer.css
IP
119.46.126.1:0
ASN
#58692 DOTS Solutions Co., Ltd.

File type
ASCII text, with CRLF line terminators
Size
157 B (157 bytes)
Hash
2fd35f78e4c0854913e39003d3353658
65950936b0a4e8f9a932fe245d55f0a99fe1c01e
5cd61e25e1e0fed30e79692e9901ca8a8189e6e97ab195fa0394e919e22e7ad0

HTTP Headers

GET /CustomTheme3/css/subPage/footer.css HTTP/1.1
Host: www.tmd.go.th
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tmd.go.th/daily_forecast_forweb.php?strProvinceID=8-9-36-48
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Cache-Control: public, max-age=2592000, s-maxage=31557600
Content-Type: text/css
Content-Encoding: br
Content-Language: th-TH
Last-Modified: Wed, 25 Jan 2023 17:59:16 GMT
Accept-Ranges: bytes
ETag: "1d930e6bd4272bb"
Vary: Accept-Encoding
X-Content-Type-Options: nosniff
Date: Tue, 31 Jan 2023 23:24:26 GMT
Transfer-Encoding: chunked

www.tmd.go.th/OrchardCore.Resources/Vendor/fontawesome-free/css/all.min.css?v=teON4y0UnyJj2Gol8NtuY0GOKW9cQvAE8a0Ve1Bi25Y

119.46.126.1

200 OK

14 kB

URL HTTP/1.1
www.tmd.go.th/OrchardCore.Resources/Vendor/fontawesome-free/css/all.min.css?v=teON4y0UnyJj2Gol8NtuY0GOKW9cQvAE8a0Ve1Bi25Y
IP
119.46.126.1:0
ASN
#58692 DOTS Solutions Co., Ltd.

File type
ASCII text, with very long lines (59119), with CRLF line terminators
Size
14 kB (14464 bytes)
Hash
160d7b81d7ebe5c1756ed5096d31395a
a91cd560e9adf3be3f161147739037704027aa33
57b1f3bf3031d0fdf8f955bf3dc75ec47d400149720dfbfb62e27ceff55befb7

HTTP Headers

GET /OrchardCore.Resources/Vendor/fontawesome-free/css/all.min.css?v=teON4y0UnyJj2Gol8NtuY0GOKW9cQvAE8a0Ve1Bi25Y HTTP/1.1
Host: www.tmd.go.th
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tmd.go.th/daily_forecast_forweb.php?strProvinceID=8-9-36-48
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Cache-Control: public, max-age=2592000, s-maxage=31557600
Content-Type: text/css
Content-Encoding: br
Content-Language: en-US
Last-Modified: Wed, 25 Jan 2023 17:59:58 GMT
Accept-Ranges: bytes
ETag: "1d930e6d64bc4ad"
Vary: Accept-Encoding
X-Content-Type-Options: nosniff
Date: Tue, 31 Jan 2023 23:24:26 GMT
Transfer-Encoding: chunked

www.tmd.go.th/OrchardCore.Resources/Scripts/popper.min.js?v=JRJVi1YtFpa3ABvi3zr7jwfeQ_qsw7MaNE01wEkhKT4

119.46.126.1

200 OK

9.6 kB

URL HTTP/1.1
www.tmd.go.th/OrchardCore.Resources/Scripts/popper.min.js?v=JRJVi1YtFpa3ABvi3zr7jwfeQ_qsw7MaNE01wEkhKT4
IP
119.46.126.1:0
ASN
#58692 DOTS Solutions Co., Ltd.

File type
ASCII text, with very long lines (23618), with CRLF line terminators
Size
9.6 kB (9621 bytes)
Hash
8b644e52e67466d3873a3ff25af46620
b0d49d86071fe2f47720058a38bebf4128bf05ae
15c71161949d173501cfd81fdeb3ad9f75902657c605072f819cfca592ab81ff

HTTP Headers

GET /OrchardCore.Resources/Scripts/popper.min.js?v=JRJVi1YtFpa3ABvi3zr7jwfeQ_qsw7MaNE01wEkhKT4 HTTP/1.1
Host: www.tmd.go.th
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tmd.go.th/daily_forecast_forweb.php?strProvinceID=8-9-36-48
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Cache-Control: public, max-age=2592000, s-maxage=31557600
Content-Type: application/javascript
Content-Encoding: br
Content-Language: en-US
Last-Modified: Wed, 25 Jan 2023 17:59:58 GMT
Accept-Ranges: bytes
ETag: "1d930e6d64b7f44"
Vary: Accept-Encoding
X-Content-Type-Options: nosniff
Date: Tue, 31 Jan 2023 23:24:26 GMT
Transfer-Encoding: chunked

www.tmd.go.th/OrchardCore.Resources/Scripts/bootstrap.min.js?v=s5_ripUeygE2SiaehCRwJaeYxBBXUiZK9XJUC6SQxPM

119.46.126.1

200 OK

24 kB

URL HTTP/1.1
www.tmd.go.th/OrchardCore.Resources/Scripts/bootstrap.min.js?v=s5_ripUeygE2SiaehCRwJaeYxBBXUiZK9XJUC6SQxPM
IP
119.46.126.1:0
ASN
#58692 DOTS Solutions Co., Ltd.

File type
ASCII text, with very long lines (60381), with CRLF line terminators
Size
24 kB (23582 bytes)
Hash
a205b203bb3b6a8052105f5e2d6b3711
b887fb1bf32de295b8003ac731b4414dacc16d50
efd01129cc7a876640f36768d658aab3bfe8688730229e93d19b2c31155b7c12

HTTP Headers

GET /OrchardCore.Resources/Scripts/bootstrap.min.js?v=s5_ripUeygE2SiaehCRwJaeYxBBXUiZK9XJUC6SQxPM HTTP/1.1
Host: www.tmd.go.th
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tmd.go.th/daily_forecast_forweb.php?strProvinceID=8-9-36-48
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Cache-Control: public, max-age=2592000, s-maxage=31557600
Content-Type: application/javascript
Content-Encoding: br
Content-Language: en-US
Last-Modified: Wed, 25 Jan 2023 17:59:58 GMT
Accept-Ranges: bytes
ETag: "1d930e6d64a02f8"
Vary: Accept-Encoding
X-Content-Type-Options: nosniff
Date: Tue, 31 Jan 2023 23:24:26 GMT
Transfer-Encoding: chunked

www.tmd.go.th/CustomTheme3/js/subpage/backToTop.js?v=zplkGH0gtzt-vrU8tD1WWZwoMPPM9PNDdgipJEV8jRU

119.46.126.1

200 OK

273 B

URL HTTP/1.1
www.tmd.go.th/CustomTheme3/js/subpage/backToTop.js?v=zplkGH0gtzt-vrU8tD1WWZwoMPPM9PNDdgipJEV8jRU
IP
119.46.126.1:0
ASN
#58692 DOTS Solutions Co., Ltd.

File type
ASCII text, with CRLF line terminators
Size
273 B (273 bytes)
Hash
adfe4f50caafb31ae063c31f1bf55750
6b295f936a62cbb56efa719e483efd27fd91ef1e
9b83c54d5abbd393ac1d775a21e88fd8907d3331026aa064e01ff8bd2293e466

HTTP Headers

GET /CustomTheme3/js/subpage/backToTop.js?v=zplkGH0gtzt-vrU8tD1WWZwoMPPM9PNDdgipJEV8jRU HTTP/1.1
Host: www.tmd.go.th
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tmd.go.th/daily_forecast_forweb.php?strProvinceID=8-9-36-48
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Cache-Control: public, max-age=2592000, s-maxage=31557600
Transfer-Encoding: chunked
Content-Type: application/javascript
Content-Encoding: br
Content-Language: th-TH
Last-Modified: Wed, 25 Jan 2023 17:59:16 GMT
Accept-Ranges: bytes
ETag: "1d930e6bd4273ec"
Vary: Accept-Encoding
X-Content-Type-Options: nosniff
Date: Tue, 31 Jan 2023 23:24:26 GMT

www.tmd.go.th/CookieConsent.OrchardCore/Scripts/cookieconsent.js

119.46.126.1

200 OK

54 kB

URL HTTP/1.1
www.tmd.go.th/CookieConsent.OrchardCore/Scripts/cookieconsent.js
IP
119.46.126.1:0
ASN
#58692 DOTS Solutions Co., Ltd.

File type
HTML document, Unicode text, UTF-8 text, with very long lines (698), with CRLF line terminators
Size
54 kB (54324 bytes)
Hash
cbe3ee27c9a8c5b27271ce0079622f18
127e18d0e3d6dc4a868d635136e1c44033c95021
1206eaba725435d34f0ac0a36a775b3b327c8e2c3f9de1f10b0a23b661e1a875

HTTP Headers

GET /CookieConsent.OrchardCore/Scripts/cookieconsent.js HTTP/1.1
Host: www.tmd.go.th
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tmd.go.th/daily_forecast_forweb.php?strProvinceID=8-9-36-48
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Cache-Control: public, max-age=2592000, s-maxage=31557600
Transfer-Encoding: chunked
Content-Type: application/javascript
Content-Encoding: br
Content-Language: en-US
Last-Modified: Thu, 22 Jul 2021 05:27:12 GMT
Accept-Ranges: bytes
ETag: "1d77eba393f531f"
Vary: Accept-Encoding
X-Content-Type-Options: nosniff
Date: Tue, 31 Jan 2023 23:24:26 GMT

www.tmd.go.th/CustomTheme3/logoes/Nav/logo_navbar.png

119.46.126.1

200 OK

12 kB

URL HTTP/1.1
www.tmd.go.th/CustomTheme3/logoes/Nav/logo_navbar.png
IP
119.46.126.1:0
ASN
#58692 DOTS Solutions Co., Ltd.

File type
PNG image data, 230 x 56, 8-bit/color RGBA, non-interlaced\012- data
Size
12 kB (12427 bytes)
Hash
2187338676ea52eb2a9bf08bdd6bd202
d590de7ccecc40d1a052a4ebb9e596ae2d09debe
dfdea575be0cec765a73a6955c8d673036a284bd802d868b773b45ed5dc7a1ab

HTTP Headers

GET /CustomTheme3/logoes/Nav/logo_navbar.png HTTP/1.1
Host: www.tmd.go.th
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tmd.go.th/daily_forecast_forweb.php?strProvinceID=8-9-36-48
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Cache-Control: public, max-age=2592000, s-maxage=31557600
Content-Length: 12427
Content-Type: image/png
Content-Language: th-TH
Last-Modified: Wed, 25 Jan 2023 17:59:16 GMT
Accept-Ranges: bytes
ETag: "1d930e6bd42428b"
X-Content-Type-Options: nosniff
Date: Tue, 31 Jan 2023 23:24:27 GMT

www.tmd.go.th/CustomTheme3/logoes/Nav/logo_navbar_white.png

119.46.126.1

200 OK

12 kB

URL HTTP/1.1
www.tmd.go.th/CustomTheme3/logoes/Nav/logo_navbar_white.png
IP
119.46.126.1:0
ASN
#58692 DOTS Solutions Co., Ltd.

File type
PNG image data, 230 x 56, 8-bit/color RGBA, non-interlaced\012- data
Size
12 kB (11640 bytes)
Hash
e7a3d7fd7e6977ca33301d34ee7cc4bc
741747c61c2cc2932b8b777550d205d4be956d3c
c546dd3b36846001053f245ec8168b75ab7b76f3ea63cbc558e97ba26e25f57a

HTTP Headers

GET /CustomTheme3/logoes/Nav/logo_navbar_white.png HTTP/1.1
Host: www.tmd.go.th
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tmd.go.th/daily_forecast_forweb.php?strProvinceID=8-9-36-48
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Cache-Control: public, max-age=2592000, s-maxage=31557600
Content-Type: image/png
Content-Language: th-TH
Last-Modified: Wed, 25 Jan 2023 17:59:16 GMT
Accept-Ranges: bytes
ETag: "1d930e6bd425f78"
X-Content-Type-Options: nosniff
Date: Tue, 31 Jan 2023 23:24:27 GMT
Content-Length: 11640

www.tmd.go.th/CustomTheme3/logoes/Union.svg

119.46.126.1

200 OK

754 B

URL HTTP/1.1
www.tmd.go.th/CustomTheme3/logoes/Union.svg
IP
119.46.126.1:0
ASN
#58692 DOTS Solutions Co., Ltd.

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (651), with CRLF line terminators
Size
754 B (754 bytes)
Hash
43cc946d1c6c3689a69fd864936defd1
23a4581e1365632b97b470ceca74a9433580355a
db3c04f8b77209cc0359f733620127437a90f04e4da2d18bde4fde803275de5d

HTTP Headers

GET /CustomTheme3/logoes/Union.svg HTTP/1.1
Host: www.tmd.go.th
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tmd.go.th/daily_forecast_forweb.php?strProvinceID=8-9-36-48
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Cache-Control: public, max-age=2592000, s-maxage=31557600
Content-Type: image/svg+xml
Content-Language: th-TH
Last-Modified: Wed, 25 Jan 2023 17:59:16 GMT
Accept-Ranges: bytes
ETag: "1d930e6bd4270f2"
X-Content-Type-Options: nosniff
Date: Tue, 31 Jan 2023 23:24:27 GMT
Content-Length: 754

www.tmd.go.th/media/logoes/logo_footer.png

119.46.126.1

200 OK

8.6 kB

URL HTTP/1.1
www.tmd.go.th/media/logoes/logo_footer.png
IP
119.46.126.1:0
ASN
#58692 DOTS Solutions Co., Ltd.

File type
PNG image data, 180 x 44, 8-bit/color RGBA, non-interlaced\012- data
Size
8.6 kB (8578 bytes)
Hash
76a69b9667c5d831ffeb1b70bab1e8dc
9173f95d666488d22154d49b1fa70de3e13e7752
20fe82bedd7275c305b80eb866b3c523fd75d9ce553954b262e1d58339fbaffb

HTTP Headers

GET /media/logoes/logo_footer.png HTTP/1.1
Host: www.tmd.go.th
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tmd.go.th/daily_forecast_forweb.php?strProvinceID=8-9-36-48
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Cache-Control: public, must-revalidate, max-age=2592000
Content-Type: image/png
Content-Language: th-TH
Last-Modified: Fri, 09 Dec 2022 12:40:58 GMT
Accept-Ranges: bytes
ETag: "1d90bcb7c8c8882"
Content-Security-Policy: default-src 'self'; style-src 'unsafe-inline'
X-Content-Type-Options: nosniff
Date: Tue, 31 Jan 2023 23:24:27 GMT
Content-Length: 8578

www.tmd.go.th/media/logoes/logo_footer_white.png

119.46.126.1

200 OK

7.7 kB

URL HTTP/1.1
www.tmd.go.th/media/logoes/logo_footer_white.png
IP
119.46.126.1:0
ASN
#58692 DOTS Solutions Co., Ltd.

File type
PNG image data, 180 x 44, 8-bit/color RGBA, non-interlaced\012- data
Size
7.7 kB (7692 bytes)
Hash
a0277bf4fb1b396bda633ac9d30df92b
4e8c1249fc1f185e66e7f990d9ebdd7cc17f524e
ec0e3430cbe23b0532bc0bd93e5f6cb1eec5aa6fdffb0e23b8eadf4ce34458e8

HTTP Headers

GET /media/logoes/logo_footer_white.png HTTP/1.1
Host: www.tmd.go.th
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tmd.go.th/daily_forecast_forweb.php?strProvinceID=8-9-36-48
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Cache-Control: public, must-revalidate, max-age=2592000
Content-Type: image/png
Content-Language: th-TH
Last-Modified: Fri, 09 Dec 2022 12:40:58 GMT
Accept-Ranges: bytes
ETag: "1d90bcb7c8cb70c"
Content-Security-Policy: default-src 'self'; style-src 'unsafe-inline'
X-Content-Type-Options: nosniff
Date: Tue, 31 Jan 2023 23:24:27 GMT
Content-Length: 7692

www.tmd.go.th/CustomTheme3/css/print.css

119.46.126.1

200 OK

356 B

URL HTTP/1.1
www.tmd.go.th/CustomTheme3/css/print.css
IP
119.46.126.1:0
ASN
#58692 DOTS Solutions Co., Ltd.

File type
ASCII text, with CRLF line terminators
Size
356 B (356 bytes)
Hash
665b440e0f652bafb7d3e492e67a379a
b78be62734665a75ba915d4e5e04247c7fe4d264
673f153db230cdd9b4c810e30fb2395dd89de17ab13ce7c18af0b17c86ece25d

HTTP Headers

GET /CustomTheme3/css/print.css HTTP/1.1
Host: www.tmd.go.th
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tmd.go.th/daily_forecast_forweb.php?strProvinceID=8-9-36-48
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Cache-Control: public, max-age=2592000, s-maxage=31557600
Content-Type: text/css
Content-Encoding: br
Content-Language: th-TH
Last-Modified: Wed, 25 Jan 2023 17:59:16 GMT
Accept-Ranges: bytes
ETag: "1d930e6bd42777e"
Vary: Accept-Encoding
X-Content-Type-Options: nosniff
Date: Tue, 31 Jan 2023 23:24:27 GMT
Transfer-Encoding: chunked

www.tmd.go.th/OrchardCore.Resources/Vendor/fontawesome-free/webfonts/fa-brands-400.woff2

119.46.126.1

200 OK

77 kB

URL HTTP/1.1
www.tmd.go.th/OrchardCore.Resources/Vendor/fontawesome-free/webfonts/fa-brands-400.woff2
IP
119.46.126.1:0
ASN
#58692 DOTS Solutions Co., Ltd.

File type
Web Open Font Format (Version 2), TrueType, length 76736, version 331.-31196\012- data
Size
77 kB (76736 bytes)
Hash
ed311c7a0ade9a75bb3ebf5a7670f31d
0613c7ebba55ee47ef302c0f7766324692f899a7
8ea8791754915a898a3100e63e32978a6d1763be6df8e73a39d3a90d691cdeef

HTTP Headers

GET /OrchardCore.Resources/Vendor/fontawesome-free/webfonts/fa-brands-400.woff2 HTTP/1.1
Host: www.tmd.go.th
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://www.tmd.go.th/OrchardCore.Resources/Vendor/fontawesome-free/css/all.min.css?v=teON4y0UnyJj2Gol8NtuY0GOKW9cQvAE8a0Ve1Bi25Y
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Cache-Control: public, max-age=2592000, s-maxage=31557600
Content-Length: 76736
Content-Type: font/woff2
Content-Language: en-US
Last-Modified: Wed, 25 Jan 2023 17:59:58 GMT
Accept-Ranges: bytes
ETag: "1d930e6d64a08c0"
X-Content-Type-Options: nosniff
Date: Tue, 31 Jan 2023 23:24:27 GMT

ocsp.sectigo.com/

104.18.32.68

200 OK

472 B

URL HTTP/1.1
ocsp.sectigo.com/
IP
104.18.32.68:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
472 B (472 bytes)
Hash
f395dea295593dbca0201c5356862c32
6eb2a2a1c5f0e4405bac4d6e2c1715ec09c44686
ebe266f9fabdafe07132a8e13bc984616cd7a8aee60360b8ff458738de64f2ca

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Tue, 31 Jan 2023 23:24:28 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Sun, 29 Jan 2023 08:18:01 GMT
Expires: Sun, 05 Feb 2023 08:18:00 GMT
Etag: "6eb2a2a1c5f0e4405bac4d6e2c1715ec09c44686"
Cache-Control: max-age=377012,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb3
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 79263370dc740b65-OSL

ocsp.sectigo.com/

104.18.32.68

200 OK

472 B

URL HTTP/1.1
ocsp.sectigo.com/
IP
104.18.32.68:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
472 B (472 bytes)
Hash
f395dea295593dbca0201c5356862c32
6eb2a2a1c5f0e4405bac4d6e2c1715ec09c44686
ebe266f9fabdafe07132a8e13bc984616cd7a8aee60360b8ff458738de64f2ca

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Tue, 31 Jan 2023 23:24:28 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Sun, 29 Jan 2023 08:18:01 GMT
Expires: Sun, 05 Feb 2023 08:18:00 GMT
Etag: "6eb2a2a1c5f0e4405bac4d6e2c1715ec09c44686"
Cache-Control: max-age=377011,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb2
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 79263374ee7e0b65-OSL

www.tmd.go.th/OrchardCore.Resources/Vendor/fontawesome-free/webfonts/fa-solid-900.woff2

119.46.126.1

200 OK

78 kB

URL HTTP/1.1
www.tmd.go.th/OrchardCore.Resources/Vendor/fontawesome-free/webfonts/fa-solid-900.woff2
IP
119.46.126.1:0
ASN
#58692 DOTS Solutions Co., Ltd.

File type
Web Open Font Format (Version 2), TrueType, length 78268, version 331.-31196\012- data
Size
78 kB (78268 bytes)
Hash
d824df7eb2e268626a2dd9a6a741ac4e
0ccb2c814a7e4ca12c4778821633809cb0361eaa
9834b82ad26e2a37583d22676a12dd2eb0fe7c80356a2114d0db1aa8b3899537

HTTP Headers

GET /OrchardCore.Resources/Vendor/fontawesome-free/webfonts/fa-solid-900.woff2 HTTP/1.1
Host: www.tmd.go.th
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://www.tmd.go.th/OrchardCore.Resources/Vendor/fontawesome-free/css/all.min.css?v=teON4y0UnyJj2Gol8NtuY0GOKW9cQvAE8a0Ve1Bi25Y
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Cache-Control: public, max-age=2592000, s-maxage=31557600
Content-Length: 78268
Content-Type: font/woff2
Content-Language: en-US
Last-Modified: Wed, 25 Jan 2023 17:59:58 GMT
Accept-Ranges: bytes
ETag: "1d930e6d64a12bc"
X-Content-Type-Options: nosniff
Date: Tue, 31 Jan 2023 23:24:27 GMT

www.tmd.go.th/CustomTheme3/webfont/fonts/TMD-Icon.ttf?bexwhr

119.46.126.1

200 OK

14 kB

URL HTTP/1.1
www.tmd.go.th/CustomTheme3/webfont/fonts/TMD-Icon.ttf?bexwhr
IP
119.46.126.1:0
ASN
#58692 DOTS Solutions Co., Ltd.

File type
TrueType Font data, 11 tables, 1st "OS/2", 14 names, Macintosh, type 1 string, TMD-Icon \012- data
Size
14 kB (14104 bytes)
Hash
1b190e469058ec4e80730efe9e7f7ebe
fd6f06d2e9d95163e61338f1fc02a07711646828
c2521f17dabfaef09436350d16e4099f3dd1896bfb87e1f0832b9abbe851f576

HTTP Headers

GET /CustomTheme3/webfont/fonts/TMD-Icon.ttf?bexwhr HTTP/1.1
Host: www.tmd.go.th
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tmd.go.th/CustomTheme3/webfont/tmd-icon-style.css?v=urnCMaH96Yq1twsUBEVhCHzU-iESsVXF7uxaQ9AbFgI
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Cache-Control: public, max-age=2592000, s-maxage=31557600
Content-Type: application/x-font-ttf
Content-Language: th-TH
Last-Modified: Wed, 25 Jan 2023 17:59:16 GMT
Accept-Ranges: bytes
ETag: "1d930e6bd424518"
X-Content-Type-Options: nosniff
Date: Tue, 31 Jan 2023 23:24:27 GMT
Content-Length: 14104

www.tmd.go.th/CustomTheme3/font/NotoSansThai-Regular.otf

119.46.126.1

200 OK

287 kB

URL HTTP/1.1
www.tmd.go.th/CustomTheme3/font/NotoSansThai-Regular.otf
IP
119.46.126.1:0
ASN
#58692 DOTS Solutions Co., Ltd.

File type
OpenType font data\012- data
Size
287 kB (287188 bytes)
Hash
d693d4b5986a925902ef7af9ffd96c91
b94ae64c7595130663ad44c54ccbf782f0726f40
9e3db053f93ddba9a6a3cb43ea23bad715549ecc5371f8555d606259b1091f6b

HTTP Headers

GET /CustomTheme3/font/NotoSansThai-Regular.otf HTTP/1.1
Host: www.tmd.go.th
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tmd.go.th/CustomTheme3/css/custom.css?v=LmX0MBP4i8o_KxsEAOeaBgOeSgdIRIRP0_L0SRHOV_k
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Cache-Control: public, max-age=2592000, s-maxage=31557600
Content-Length: 287188
Content-Type: font/otf
Content-Language: th-TH
Last-Modified: Wed, 25 Jan 2023 17:59:16 GMT
Accept-Ranges: bytes
ETag: "1d930e6bd4613d4"
X-Content-Type-Options: nosniff
Date: Tue, 31 Jan 2023 23:24:27 GMT

www.tmd.go.th/CustomTheme3/font/NotoSerifThai-Medium.otf

119.46.126.1

200 OK

378 kB

URL HTTP/1.1
www.tmd.go.th/CustomTheme3/font/NotoSerifThai-Medium.otf
IP
119.46.126.1:0
ASN
#58692 DOTS Solutions Co., Ltd.

File type
OpenType font data\012- data
Size
378 kB (378020 bytes)
Hash
d39bb861ae7289850c52cc4cfaa629de
59b9bdc08a063e8b3398b45b68e5da3630fc6bbb
42e7f4965fb44269c11245be21ad260e7afb1f7bfa91b06ab6b03a4ef7e8a66b

HTTP Headers

GET /CustomTheme3/font/NotoSerifThai-Medium.otf HTTP/1.1
Host: www.tmd.go.th
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tmd.go.th/CustomTheme3/css/custom.css?v=LmX0MBP4i8o_KxsEAOeaBgOeSgdIRIRP0_L0SRHOV_k
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Cache-Control: public, max-age=2592000, s-maxage=31557600
Content-Length: 378020
Content-Type: font/otf
Content-Language: th-TH
Last-Modified: Wed, 25 Jan 2023 17:59:16 GMT
Accept-Ranges: bytes
ETag: "1d930e6bd47b6a4"
X-Content-Type-Options: nosniff
Date: Tue, 31 Jan 2023 23:24:27 GMT

www.tmd.go.th/CustomTheme3/font/NotoSerifThai-Regular.otf

119.46.126.1

200 OK

367 kB

URL HTTP/1.1
www.tmd.go.th/CustomTheme3/font/NotoSerifThai-Regular.otf
IP
119.46.126.1:0
ASN
#58692 DOTS Solutions Co., Ltd.

File type
OpenType font data\012- data
Size
367 kB (366888 bytes)
Hash
12a9694107663e6184a236ab6c239e55
f911c141d26397c247b48d6426194307359bb2bb
cbf993534abb71cf9a4a217c67786fa9ed55649bf32cc87cdb13a9c55fdfef86

HTTP Headers

GET /CustomTheme3/font/NotoSerifThai-Regular.otf HTTP/1.1
Host: www.tmd.go.th
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tmd.go.th/CustomTheme3/css/custom.css?v=LmX0MBP4i8o_KxsEAOeaBgOeSgdIRIRP0_L0SRHOV_k
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Cache-Control: public, max-age=2592000, s-maxage=31557600
Content-Length: 366888
Content-Type: font/otf
Content-Language: th-TH
Last-Modified: Wed, 25 Jan 2023 17:59:16 GMT
Accept-Ranges: bytes
ETag: "1d930e6bd47eb28"
X-Content-Type-Options: nosniff
Date: Tue, 31 Jan 2023 23:24:27 GMT

www.tmd.go.th/CustomTheme3/font/NotoSansThai-Medium.otf

119.46.126.1

200 OK

295 kB

URL HTTP/1.1
www.tmd.go.th/CustomTheme3/font/NotoSansThai-Medium.otf
IP
119.46.126.1:0
ASN
#58692 DOTS Solutions Co., Ltd.

File type
OpenType font data\012- data
Size
295 kB (295360 bytes)
Hash
2cb5a03760f3df7721007b1ec91ce9d7
026cc4d597350f5502536e74ffe4a543bbfbd36a
0986b41549959efbfe051db8cf33554c16d2d4b2bc76bff45e194f02ca9b3d5b

HTTP Headers

GET /CustomTheme3/font/NotoSansThai-Medium.otf HTTP/1.1
Host: www.tmd.go.th
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tmd.go.th/CustomTheme3/css/custom.css?v=LmX0MBP4i8o_KxsEAOeaBgOeSgdIRIRP0_L0SRHOV_k
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Cache-Control: public, max-age=2592000, s-maxage=31557600
Content-Length: 295360
Content-Type: font/otf
Content-Language: th-TH
Last-Modified: Wed, 25 Jan 2023 17:59:16 GMT
Accept-Ranges: bytes
ETag: "1d930e6bd46f3c0"
X-Content-Type-Options: nosniff
Date: Tue, 31 Jan 2023 23:24:27 GMT

ocsp.pki.goog/gts1c3

216.58.211.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
216.58.211.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
fdbf000f99c93d77c5169461da113540
a04cfd05dbda17eba5660db0fcdeeef482af339a
152308cc51f2263be54334999586abda3f7c0652abe171ecbc8839b1cc578a29

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 23:24:29 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

apis.google.com/js/api.js

172.217.21.174

200 OK

9.4 kB

URL HTTP/2
apis.google.com/js/api.js
IP
172.217.21.174:0
ASN
#15169 GOOGLE

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (21571)
Size
9.4 kB (9374 bytes)
Hash
d95a782dd62af6b5ea45c0c5a10325b5
752a9fa57b8cdb36af93902444ae9bd3d13219e0
7c038ec104ce3e1c3cf02522bb7d22d232a1accd277bb9b7c2054cf3966fd59d

HTTP Headers

GET /js/api.js HTTP/1.1
Host: apis.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://console.botnoi.ai/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
access-control-allow-origin: *
content-security-policy: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/gapi-team
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="gapi-team"
report-to: {"group":"gapi-team","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gapi-team"}]}
timing-allow-origin: *
content-length: 6892
date: Tue, 31 Jan 2023 23:24:29 GMT
expires: Tue, 31 Jan 2023 23:24:29 GMT
cache-control: private, max-age=1800, stale-while-revalidate=1800
etag: "3a54ae5e7b38cd35"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.tmd.go.th/CustomTheme3/img/chatbot-saifa.png

119.46.126.1

200 OK

5.7 kB

URL HTTP/1.1
www.tmd.go.th/CustomTheme3/img/chatbot-saifa.png
IP
119.46.126.1:0
ASN
#58692 DOTS Solutions Co., Ltd.

File type
PNG image data, 60 x 60, 8-bit/color RGBA, non-interlaced\012- data
Size
5.7 kB (5724 bytes)
Hash
5fceb4668ebf46876fa5a2efb4a460ee
bdece345c3eb57f86548ba1eaa464c11b62d4985
2fcb66f71b90caa9c6aa0d7700a29315725c9701ffba6b050e2b9e851da47cdd

HTTP Headers

GET /CustomTheme3/img/chatbot-saifa.png HTTP/1.1
Host: www.tmd.go.th
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tmd.go.th/CustomTheme3/css/custom.css?v=LmX0MBP4i8o_KxsEAOeaBgOeSgdIRIRP0_L0SRHOV_k
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Cache-Control: public, max-age=2592000, s-maxage=31557600
Content-Type: image/png
Content-Language: th-TH
Last-Modified: Wed, 25 Jan 2023 17:59:16 GMT
Accept-Ranges: bytes
ETag: "1d930e6bd42645c"
X-Content-Type-Options: nosniff
Date: Tue, 31 Jan 2023 23:24:28 GMT
Content-Length: 5724

ocsp.pki.goog/gts1c3

216.58.211.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
216.58.211.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
e0bc98d03057dabba1334b62bea0975b
b358a8123908fe4b1c94a1273cac45c4e23b212e
10ef320ba825ca0e17d039b66fd2f321f4d2c687a8734d226fa25e9b45e109d9

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 23:24:29 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

216.58.211.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
216.58.211.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
789b41f1f8027d4275a66ac9cb2f124d
c5eff6750f9a50fc52a7a6ec6e30a7afaf28fc79
e053b0b29fc44721473ed39ddfe41064f09b56b3531c765228fa322d599e770f

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 23:24:29 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

fonts.gstatic.com/s/prompt/v10/-W__XJnvUD7dzB2KYNodREEjew.woff2

216.58.207.227

200 OK

11 kB

URL HTTP/2
fonts.gstatic.com/s/prompt/v10/-W__XJnvUD7dzB2KYNodREEjew.woff2
IP
216.58.207.227:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 10700, version 1.0\012- data
Size
11 kB (10700 bytes)
Hash
ec7c9c846ce4d8cb54cad024db37238b
1ed87c3c36233c1f6aad80bdd9e4896cca311d4f
a0c6d06e538b599bbd847490e80da5b8957f191cb66f9a187f458e8f292a4d5b

HTTP Headers

GET /s/prompt/v10/-W__XJnvUD7dzB2KYNodREEjew.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://console.botnoi.ai
Connection: keep-alive
Referer: https://console.botnoi.ai/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 10700
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 30 Jan 2023 02:08:10 GMT
expires: Tue, 30 Jan 2024 02:08:10 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 27 Apr 2022 15:47:06 GMT
content-type: font/woff2
age: 162979
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

216.58.211.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
216.58.211.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
789b41f1f8027d4275a66ac9cb2f124d
c5eff6750f9a50fc52a7a6ec6e30a7afaf28fc79
e053b0b29fc44721473ed39ddfe41064f09b56b3531c765228fa322d599e770f

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 23:24:29 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

api-gateway.botnoi.ai/message-bar

34.117.105.18

204 No Content

0 B

URL HTTP/2
api-gateway.botnoi.ai/message-bar
IP
34.117.105.18:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /message-bar HTTP/1.1
Host: api-gateway.botnoi.ai
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://console.botnoi.ai
Connection: keep-alive
Referer: https://console.botnoi.ai/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site

HTTP/2 204 No Content
access-control-allow-credentials: true
access-control-allow-origin: https://console.botnoi.ai
content-type: application/json; charset=UTF-8
vary: Origin
date: Tue, 31 Jan 2023 23:24:30 GMT
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/prompt/v10/-W_8XJnvUD7dzB2C4_0IaWMuUZctdg.woff2

216.58.207.227

200 OK

23 kB

URL HTTP/2
fonts.gstatic.com/s/prompt/v10/-W_8XJnvUD7dzB2C4_0IaWMuUZctdg.woff2
IP
216.58.207.227:0
ASN
#15169 GOOGLE

File type
gzip compressed data, max compression, from Unix\012- data
Size
23 kB (23402 bytes)
Hash
280d0aa20518ce72c87e1dc15d374373
10f2717d55e23e0204d4ba01f89d3f08d183b312
c6944bf0404c9c65456bb580feea121f9375579c6f52293c56a5c0003de7142b

HTTP Headers

GET /s/prompt/v10/-W_8XJnvUD7dzB2C4_0IaWMuUZctdg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://console.botnoi.ai
Connection: keep-alive
Referer: https://console.botnoi.ai/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 9980
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 31 Jan 2023 06:48:56 GMT
expires: Wed, 31 Jan 2024 06:48:56 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 27 Apr 2022 15:42:00 GMT
content-type: font/woff2
age: 59734
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/prompt/v10/-W_8XJnvUD7dzB2C4_0IfWMuUZctdhow.woff2

216.58.207.227

200 OK

6.4 kB

URL HTTP/2
fonts.gstatic.com/s/prompt/v10/-W_8XJnvUD7dzB2C4_0IfWMuUZctdhow.woff2
IP
216.58.207.227:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 6388, version 1.0\012- data
Size
6.4 kB (6388 bytes)
Hash
d11cdc55945caf12361c59938c65edf5
d57f732c1487bdd241abab5be199891d2f865a72
f349fb5fe9a17aaf13f84adfe441f7d0388bf94c4a7eaed8414dfcbebd09742c

HTTP Headers

GET /s/prompt/v10/-W_8XJnvUD7dzB2C4_0IfWMuUZctdhow.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://console.botnoi.ai
Connection: keep-alive
Referer: https://console.botnoi.ai/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 6388
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 25 Jan 2023 12:57:02 GMT
expires: Thu, 25 Jan 2024 12:57:02 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 27 Apr 2022 15:41:25 GMT
content-type: font/woff2
age: 556048
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/prompt/v10/-W__XJnvUD7dzB2KdNodREEje60k.woff2

216.58.207.227

200 OK

6.5 kB

URL HTTP/2
fonts.gstatic.com/s/prompt/v10/-W__XJnvUD7dzB2KdNodREEje60k.woff2
IP
216.58.207.227:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 6504, version 1.0\012- data
Size
6.5 kB (6504 bytes)
Hash
06e3c7fe8cb7a4e11e8ce37ce61f13e4
98de213d22c7b9ca7458706f867f1605adea1c32
748c626f79917caf0e0fca551f2bf6047cc2bf0a992b42619eddbee91831188e

HTTP Headers

GET /s/prompt/v10/-W__XJnvUD7dzB2KdNodREEje60k.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://console.botnoi.ai
Connection: keep-alive
Referer: https://console.botnoi.ai/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 6504
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 27 Jan 2023 02:06:42 GMT
expires: Sat, 27 Jan 2024 02:06:42 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 27 Apr 2022 15:46:19 GMT
content-type: font/woff2
age: 422268
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/prompt/v10/-W_8XJnvUD7dzB2Cv_4IaWMuUZctdg.woff2

216.58.207.227

200 OK

10 kB

URL HTTP/2
fonts.gstatic.com/s/prompt/v10/-W_8XJnvUD7dzB2Cv_4IaWMuUZctdg.woff2
IP
216.58.207.227:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 10180, version 1.0\012- data
Size
10 kB (10180 bytes)
Hash
95779256faaf9aab1cff543545158ce3
cee14909301e6627642a690c559a6b74d88e833f
cc882ec985b286cc06424ec065e0de8e4a672bbf40547c594d960acc8bdcda16

HTTP Headers

GET /s/prompt/v10/-W_8XJnvUD7dzB2Cv_4IaWMuUZctdg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://console.botnoi.ai
Connection: keep-alive
Referer: https://console.botnoi.ai/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 10180
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 25 Jan 2023 10:58:27 GMT
expires: Thu, 25 Jan 2024 10:58:27 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 27 Apr 2022 15:46:19 GMT
content-type: font/woff2
age: 563163
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/prompt/v10/-W_8XJnvUD7dzB2Cv_4IfWMuUZctdhow.woff2

216.58.207.227

200 OK

6.4 kB

URL HTTP/2
fonts.gstatic.com/s/prompt/v10/-W_8XJnvUD7dzB2Cv_4IfWMuUZctdhow.woff2
IP
216.58.207.227:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 6440, version 1.0\012- data
Size
6.4 kB (6440 bytes)
Hash
b8e9e0fd34c72ccd68834048b0d4f2a8
09d0f6d8126906284684c9708c75acd49e9be5e1
e02d2327119ba54b63009e59c3c35078964fc019e177dd192c796b5d6e455342

HTTP Headers

GET /s/prompt/v10/-W_8XJnvUD7dzB2Cv_4IfWMuUZctdhow.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://console.botnoi.ai
Connection: keep-alive
Referer: https://console.botnoi.ai/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 6440
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 29 Jan 2023 04:41:55 GMT
expires: Mon, 29 Jan 2024 04:41:55 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 27 Apr 2022 16:16:42 GMT
content-type: font/woff2
age: 240155
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/prompt/v10/-W_8XJnvUD7dzB2C2_8IaWMuUZctdg.woff2

216.58.207.227

200 OK

10 kB

URL HTTP/2
fonts.gstatic.com/s/prompt/v10/-W_8XJnvUD7dzB2C2_8IaWMuUZctdg.woff2
IP
216.58.207.227:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 10404, version 1.0\012- data
Size
10 kB (10404 bytes)
Hash
20c54cbb4969bbb137383f55854fb322
ad122bfbbc321ba336cea1581f9c8ce256f5e475
b0f7fa0609e25f9d4fb38c703bf1db8ba8dc7c9037d3ab02f4749cb2ee835156

HTTP Headers

GET /s/prompt/v10/-W_8XJnvUD7dzB2C2_8IaWMuUZctdg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://console.botnoi.ai
Connection: keep-alive
Referer: https://console.botnoi.ai/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 10404
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 28 Jan 2023 12:52:14 GMT
expires: Sun, 28 Jan 2024 12:52:14 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 27 Apr 2022 15:41:50 GMT
content-type: font/woff2
age: 297136
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

ocsp.sca1b.amazontrust.com/

54.230.245.100

200 OK

471 B

URL HTTP/1.1
ocsp.sca1b.amazontrust.com/
IP
54.230.245.100:0
ASN
#16509 AMAZON-02

File type
data
Size
471 B (471 bytes)
Hash
bfabaed42977089538e4f8a04e2b058a
35f1c862d8d9d97d1cd997021f21ba4a71f59999
8ba3f436fa2c797171704b8c1443d5d399bdfeb0c6dda2ad040499a2074dd776

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=144859
Date: Tue, 31 Jan 2023 23:24:30 GMT
Etag: "63d91c4f-1d7"
Expires: Thu, 02 Feb 2023 15:38:49 GMT
Last-Modified: Tue, 31 Jan 2023 13:49:03 GMT
Server: ECS (nyb/1D1B)
X-Cache: Miss from cloudfront
Via: 1.1 a343e36742f64defd0a2caf1f96ff772.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: yGjQrqIa8CwfPyyZQCtJtjNwda1DmTjSGHPweU4yEnEmdZMOOG2nXg==
Age: 6586

bn-sme-production.s3.amazonaws.com/61b1c83ebe3ad228b01bd3a0/36726bd9-75b1-4ed6-95a1-c5c46a6ddaf7.png

52.217.205.73

200 OK

26 kB

URL HTTP/1.1
bn-sme-production.s3.amazonaws.com/61b1c83ebe3ad228b01bd3a0/36726bd9-75b1-4ed6-95a1-c5c46a6ddaf7.png
IP
52.217.205.73:0
ASN
#16509 AMAZON-02

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 513x512, components 3\012- data
Size
26 kB (26425 bytes)
Hash
3799fcf3742a245713162d2d5d243596
808a4b561a4044a61d68895f98b85d3cc5ca0181
a34d0a3b4e8cfc3c4407284037b6642a13435a70a3b17ecdd0596be9d227cef6

HTTP Headers

GET /61b1c83ebe3ad228b01bd3a0/36726bd9-75b1-4ed6-95a1-c5c46a6ddaf7.png HTTP/1.1
Host: bn-sme-production.s3.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://console.botnoi.ai/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
x-amz-id-2: uFiXhocps6pAEqRUCmikUZ8TN0KOwSqjofAef1LUpZzsTEROgkQda/1Xst1idW0FvUaHqeDrA4g=
x-amz-request-id: 116FA5JG7JKDE531
Date: Tue, 31 Jan 2023 23:24:31 GMT
Last-Modified: Thu, 09 Dec 2021 09:20:17 GMT
ETag: "3799fcf3742a245713162d2d5d243596"
Accept-Ranges: bytes
Content-Type: image/jpeg
Server: AmazonS3
Content-Length: 26425

www.tmd.go.th/daily_forecast_forweb.php?strProvinceID=8-9-36-48

119.46.126.1

302 Redirect

0 B

URL HTTP/1.0
www.tmd.go.th/daily_forecast_forweb.php?strProvinceID=8-9-36-48
IP
119.46.126.1:0
ASN
#58692 DOTS Solutions Co., Ltd.

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /daily_forecast_forweb.php?strProvinceID=8-9-36-48 HTTP/1.1
Host: www.tmd.go.th
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://123.242.166.4/
Upgrade-Insecure-Requests: 1

HTTP/1.0 302 Redirect
Connection: Close
Location: https://www.tmd.go.th:443/daily_forecast_forweb.php?strProvinceID=8-9-36-48

console.botnoi.ai/customerchat/index.js

34.117.105.18

200 OK

0 B

URL HTTP/2
console.botnoi.ai/customerchat/index.js
IP
34.117.105.18:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /customerchat/index.js HTTP/1.1
Host: console.botnoi.ai
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tmd.go.th/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx/1.19.5
date: Tue, 31 Jan 2023 23:24:28 GMT
content-type: application/javascript
last-modified: Thu, 22 Dec 2022 07:01:00 GMT
vary: Accept-Encoding
etag: W/"63a400ac-8cf1"
cache-control: private, max-age=1800, stale-while-revalidate=1800
content-encoding: gzip
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (50)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML