r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 405f8f149ccdf0005ca0d890c96a9cb4
64de3200cef76133dfad901d6709697d6842405e
3a10790c397a419450ac2c90b941fd20bc49af1dbaeb34678836306de8febfce
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "3A10790C397A419450AC2C90B941FD20BC49AF1DBAEB34678836306DE8FEBFCE"
Last-Modified: Mon, 16 Jan 2023 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13196
Expires: Tue, 17 Jan 2023 05:45:55 GMT
Date: Tue, 17 Jan 2023 02:05:59 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 2258cd6b877a3aca8f4c84074e65ac4b
4e46c70941f8e497e8afc8d078644e7f81761a1c
faac4e0d123f2112b58953c104ea746cd53047fc1ada0ef5d669feecf78ddfff
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "FAAC4E0D123F2112B58953C104EA746CD53047FC1ADA0EF5D669FEECF78DDFFF"
Last-Modified: Sat, 14 Jan 2023 19:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14164
Expires: Tue, 17 Jan 2023 06:02:03 GMT
Date: Tue, 17 Jan 2023 02:05:59 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 30db107dcf4380cef05efea409c2e6a3
96e6a306fbc07299aba64e5c14e2bfca35872fa9
b64051a4a8e346e3c72b2aef77f360a5736ab5e16711d8e0bae3876feaa15b6e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Content-Length, Alert, Backoff, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Tue, 17 Jan 2023 01:42:14 GMT
content-type: application/json
age: 1425
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash d38f4bb41e1264b8a1e11ff0b1499d20
21c3e36bd908df43e0d49b747e270ec75cb882b0
3ff822eb56d2218ad6244fd013a82e0d27450ae21d47e08f1e3fdf4c82a8aad7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "3FF822EB56D2218AD6244FD013A82E0D27450AE21D47E08F1E3FDF4C82A8AAD7"
Last-Modified: Mon, 16 Jan 2023 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14080
Expires: Tue, 17 Jan 2023 06:00:39 GMT
Date: Tue, 17 Jan 2023 02:05:59 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: MOGLwwf87AfgKamhSad2clTZz9L51/GIl8i4X+Ep7wHCgOy6VTNoRv3hdGwxAUfMLFQIQn27uaI=
x-amz-request-id: EGM3HBWNRRZEYDFP
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Tue, 17 Jan 2023 01:56:03 GMT
age: 596
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 17 Jan 2023 02:05:59 GMT
content-type: application/json
content-length: 12
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-expose-headers: content-type
access-control-allow-credentials: true
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Expires, Last-Modified, Alert, Content-Type, Content-Length, ETag, Pragma, Cache-Control, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Tue, 17 Jan 2023 01:17:25 GMT
age: 2914
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash d03545e1fc5a8876441094039811aac5
99fcc840f3516298625c528e9b408132f7fcbb9c
166fa7c7bb716b2cd02a47884ee00df31030dfb4b2a6fdae7b59b19f87739123
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 687
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 17 Jan 2023 02:06:00 GMT
Last-Modified: Tue, 17 Jan 2023 01:54:33 GMT
Server: ECS (ska/F718)
X-Cache: HIT
Content-Length: 471
push.services.mozilla.com/
52.39.110.92101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 52.39.110.92:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 1XQ3sYDVWJrVJAlCAtluQg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: qmLJfgL2vKFoyTPot4zp9XwqFns=
elantex.com.tw/FILE/En/Invoice-Corrections-for-51/99
103.118.24.39301 Moved Permanently 0 B URL HTTP/1.1 elantex.com.tw/FILE/En/Invoice-Corrections-for-51/99
IP 103.118.24.39:0
ASN #131626 NSS INTL CO., LTD.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Malware
GET /FILE/En/Invoice-Corrections-for-51/99 HTTP/1.1
Host: elantex.com.tw
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Tue, 17 Jan 2023 01:59:41 GMT
Server: Apache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Location: http://elantex.com.tw
X-Powered-By: PHP/7.0.33, PleskLin
Content-Length: 0
Connection: close
Content-Type: text/html; charset=UTF-8
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 871ced6cfe919499937981d7534580e9
2e8c0fb97592bd7868be241ade707d1b38e49c34
35a05f202611c548fd0768c5f1b3d749a0dd50ade93e6df29940547480c5ec91
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "35A05F202611C548FD0768C5F1B3D749A0DD50ADE93E6DF29940547480C5EC91"
Last-Modified: Sun, 15 Jan 2023 01:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17226
Expires: Tue, 17 Jan 2023 06:53:07 GMT
Date: Tue, 17 Jan 2023 02:06:01 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 871ced6cfe919499937981d7534580e9
2e8c0fb97592bd7868be241ade707d1b38e49c34
35a05f202611c548fd0768c5f1b3d749a0dd50ade93e6df29940547480c5ec91
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "35A05F202611C548FD0768C5F1B3D749A0DD50ADE93E6DF29940547480C5EC91"
Last-Modified: Sun, 15 Jan 2023 01:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17226
Expires: Tue, 17 Jan 2023 06:53:07 GMT
Date: Tue, 17 Jan 2023 02:06:01 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4645b901-7a6a-474e-a0e9-8661e378c83d.jpeg
34.120.237.76200 OK 4.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4645b901-7a6a-474e-a0e9-8661e378c83d.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 304bb1b20c55a224a8aa28c2af0a0d0e
590f9978d35d8bff19b665505b9761f87c66b915
74a5930f8ccc54b5618892ace303d163066656b02c942273e8d6debcf2ab3614
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4645b901-7a6a-474e-a0e9-8661e378c83d.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4272
x-amzn-requestid: e53617f5-3c7b-4a81-a9bb-79667a1ef7c3
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ej0BwETpIAMFdcw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63be33a4-328c82663ce8bb024b0181d9;Sampled=0
x-amzn-remapped-date: Wed, 11 Jan 2023 03:57:24 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: IrGvuEbwzYF0PIcAiXFsYSOc30EQlSkpX1Fi0WW_S1SYaXP-I67HQw==
via: 1.1 0005a84c2971ff4f5bbb79e7ebc622a8.cloudfront.net (CloudFront), 1.1 4f3feb5c4393987d42d1971d404d7cea.cloudfront.net (CloudFront), 1.1 google
date: Mon, 16 Jan 2023 21:52:19 GMT
age: 15222
etag: "590f9978d35d8bff19b665505b9761f87c66b915"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F04b94725-ff4a-4bda-82a9-4efa8d9c4276.jpeg
34.120.237.76200 OK 15 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F04b94725-ff4a-4bda-82a9-4efa8d9c4276.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash fefb1f12a78ad92ed309da2c54984a3c
caf58bf6276e226a20a0d0cf6fc3d422f922eb28
baf6596c635254885f32e423cbc5667694754243f01109cbdbeb54c337b16bc2
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F04b94725-ff4a-4bda-82a9-4efa8d9c4276.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 14703
x-amzn-requestid: bdc14ffc-297a-4046-9a4f-26d454f6f9be
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: e2trpGZkoAMFhZA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c5c317-58908dd71980be98200e8f6c;Sampled=0
x-amzn-remapped-date: Mon, 16 Jan 2023 21:35:19 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: oqw0_4rVitBtqGh0oigqr5VmH0oVghH9SQiW1bRvMGsIX6fb8iRR0Q==
via: 1.1 e5af640ced3aa8764b82c4bc3f7af38e.cloudfront.net (CloudFront), 1.1 82ea95080f526df99896343fb7269b06.cloudfront.net (CloudFront), 1.1 google
date: Mon, 16 Jan 2023 21:46:15 GMT
etag: "caf58bf6276e226a20a0d0cf6fc3d422f922eb28"
content-type: image/jpeg
age: 15586
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 871ced6cfe919499937981d7534580e9
2e8c0fb97592bd7868be241ade707d1b38e49c34
35a05f202611c548fd0768c5f1b3d749a0dd50ade93e6df29940547480c5ec91
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "35A05F202611C548FD0768C5F1B3D749A0DD50ADE93E6DF29940547480C5EC91"
Last-Modified: Sun, 15 Jan 2023 01:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17226
Expires: Tue, 17 Jan 2023 06:53:07 GMT
Date: Tue, 17 Jan 2023 02:06:01 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fddb60f9d-860b-4c2b-aa69-d185482f022c.jpeg
34.120.237.76200 OK 8.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fddb60f9d-860b-4c2b-aa69-d185482f022c.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 3aa134e9259a4f258a832e223bcd5825
3648297257e246e7ec4541fef1ee549523c04f02
3abcd9f270d477b813f145b6c6ccc6c881c705a05976627762db58c4a1f4b76a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fddb60f9d-860b-4c2b-aa69-d185482f022c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8128
x-amzn-requestid: 029defe2-e597-44d5-9bf2-6c3343701baa
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: enjFcEt6IAMFUEA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63bfb222-049108b226dd013b05b6fe61;Sampled=0
x-amzn-remapped-date: Thu, 12 Jan 2023 07:09:22 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: o14qfg-v65wiM61tB3wnr4YF1sGrvgVbpKn9ido2su1nmi2wgfr9Zg==
via: 1.1 9b311162717b41c968f6f00426d88aaa.cloudfront.net (CloudFront), 1.1 556b99c6be8d7078b9f067347c62df6a.cloudfront.net (CloudFront), 1.1 google
date: Mon, 16 Jan 2023 21:55:46 GMT
age: 15015
etag: "3648297257e246e7ec4541fef1ee549523c04f02"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 871ced6cfe919499937981d7534580e9
2e8c0fb97592bd7868be241ade707d1b38e49c34
35a05f202611c548fd0768c5f1b3d749a0dd50ade93e6df29940547480c5ec91
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "35A05F202611C548FD0768C5F1B3D749A0DD50ADE93E6DF29940547480C5EC91"
Last-Modified: Sun, 15 Jan 2023 01:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17226
Expires: Tue, 17 Jan 2023 06:53:07 GMT
Date: Tue, 17 Jan 2023 02:06:01 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4757d4fe-f057-41bb-b2e2-4ed4877c7af4.jpeg
34.120.237.76200 OK 7.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4757d4fe-f057-41bb-b2e2-4ed4877c7af4.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash a5d0a29e6fe3ce0fb4a9237dd5917778
6919dcbbcdcc241672358cc5733ef064180c928a
6d0d71c35e1ca331ee5f4794bc74747f7c38f2d46863d983377bef526f7ca356
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4757d4fe-f057-41bb-b2e2-4ed4877c7af4.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7873
x-amzn-requestid: 8a2a267d-8062-4755-8b1d-1e715ee9c413
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: exco-GL0oAMF-uQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c3a7d2-567e30c7063b71217f8175fc;Sampled=0
x-amzn-remapped-date: Sun, 15 Jan 2023 07:14:26 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: pmqzTZ1Nuqtw5aryFNr3vcfUpQGBs0PxAW2Eu2NE82Q37Die5cgpbw==
via: 1.1 41e349e25dc4bc856d0e5d2c162428a0.cloudfront.net (CloudFront), 1.1 82ea95080f526df99896343fb7269b06.cloudfront.net (CloudFront), 1.1 google
date: Mon, 16 Jan 2023 07:23:06 GMT
age: 67375
etag: "6919dcbbcdcc241672358cc5733ef064180c928a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2a588566-7d22-4b47-96ce-ee6bb56e4898.jpeg
34.120.237.76200 OK 7.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2a588566-7d22-4b47-96ce-ee6bb56e4898.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 57828b7affae7633b38d0fb6057b894d
db4cd956ba7e1e6b43174c250b7d4f1193277be9
26d83d511af9583a8f0a9ef1bd2ce3deab3ca42fa2c2ae141b61cd123afa9625
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2a588566-7d22-4b47-96ce-ee6bb56e4898.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7800
x-amzn-requestid: eac845c9-b10c-4fce-b2ff-01b4111b506e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: e2OjhHp_IAMFeyA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c59149-0058376c385a7bf91e07a395;Sampled=0
x-amzn-remapped-date: Mon, 16 Jan 2023 18:02:49 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: FtmoLO8c5S2uN0aj1HxWjVMg31vndNF2iKRJoJXmow1Hbb0NIHm9Cw==
via: 1.1 f13aef0c4b52f6f681401f232d03eb68.cloudfront.net (CloudFront), 1.1 7e87179efaa9e3c316bd3d3a74cfded8.cloudfront.net (CloudFront), 1.1 google
date: Mon, 16 Jan 2023 18:16:36 GMT
age: 28165
etag: "db4cd956ba7e1e6b43174c250b7d4f1193277be9"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9f84f3a0-4f01-4cfe-bde0-a7d64664f3d7.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9f84f3a0-4f01-4cfe-bde0-a7d64664f3d7.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash ec0e283376914297c3fb2464ed15a31b
acd84e057b6c618fd3b31915983998c00fe21dc4
3d02b82d8f6a00703de7594f5b34baf0010294c1a7023818344ca341e4ac203c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9f84f3a0-4f01-4cfe-bde0-a7d64664f3d7.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10660
x-amzn-requestid: ac5d6edc-5228-4318-a99f-c08d3265aa87
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: e3HXpH4PoAMF78Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c5ec30-044bf7c40e44de637c0c2dba;Sampled=0
x-amzn-remapped-date: Tue, 17 Jan 2023 00:30:40 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 6wALvrvX2EOL6xe6U3Vf2Xmcx_Nmh0mHXveaX1mZL1yUzOLdKg8f_A==
via: 1.1 01c28b52813cd0e82f810c492808b142.cloudfront.net (CloudFront), 1.1 6a9b42e38e76b7d4a4044ebe0e0eca08.cloudfront.net (CloudFront), 1.1 google
date: Tue, 17 Jan 2023 00:45:05 GMT
age: 4856
etag: "acd84e057b6c618fd3b31915983998c00fe21dc4"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
elantex.com.tw/
103.118.24.39200 OK 74 kB IP 103.118.24.39:0
ASN #131626 NSS INTL CO., LTD.
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (3028), with CRLF, LF line terminators
Hash 9dce06b75049462bffa866b250b0bb94
f66a9c407c7d4f38346d254b1ce119b04fc39d8b
4ef14fb00c7d737648b490dc2a80007809729c68be9c3c0f245ecf9a73fec2e8
Analyzer Verdict Alert fortinet Malware
GET / HTTP/1.1
Host: elantex.com.tw
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Date: Tue, 17 Jan 2023 01:59:43 GMT
Server: Apache
X-Pingback: http://elantex.com.tw/xmlrpc.php
Link: <http://elantex.com.tw/wp-json/>; rel="https://api.w.org/", <http://elantex.com.tw/>; rel=shortlink
X-Powered-By: PHP/7.0.33, PleskLin
Connection: close
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
elantex.com.tw/wp-content/plugins/sitepress-multilingual-cms/templates/language-switchers/menu-item/style.css?ver=1
103.118.24.39200 OK 226 B URL HTTP/1.1 elantex.com.tw/wp-content/plugins/sitepress-multilingual-cms/templates/language-switchers/menu-item/style.css?ver=1
IP 103.118.24.39:0
ASN #131626 NSS INTL CO., LTD.
Hash 622aff7c3e7445f19bbbeb6374341688
934cf547521071444838dbd60cc03d1f2ad30156
6d82524320851cd20cae529e3b2e8f44041aac4cff1d5352d115fb2f3819d742
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/sitepress-multilingual-cms/templates/language-switchers/menu-item/style.css?ver=1 HTTP/1.1
Host: elantex.com.tw
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://elantex.com.tw/
HTTP/1.1 200 OK
Date: Tue, 17 Jan 2023 01:59:44 GMT
Server: Apache
Last-Modified: Wed, 14 Mar 2018 08:13:40 GMT
ETag: "178dc1a-e2-5675af3e2d500"
Accept-Ranges: bytes
Content-Length: 226
X-Powered-By: PleskLin
Connection: close
Content-Type: text/css
elantex.com.tw/wp-content/plugins/menu-icons/css/extra.min.css?ver=0.11.2
103.118.24.39200 OK 815 B URL HTTP/1.1 elantex.com.tw/wp-content/plugins/menu-icons/css/extra.min.css?ver=0.11.2
IP 103.118.24.39:0
ASN #131626 NSS INTL CO., LTD.
File type ASCII text, with very long lines (815), with no line terminators
Hash 27fa14302689f7f32e20359095766e4d
1f3db901d6f8746008838a7e5f2be30feeaeef83
968ab8ae6f33119ee267a11ce60920934e0d5e9d4714a3eb6b47cb9f05e42a0f
GET /wp-content/plugins/menu-icons/css/extra.min.css?ver=0.11.2 HTTP/1.1
Host: elantex.com.tw
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://elantex.com.tw/
HTTP/1.1 200 OK
Date: Tue, 17 Jan 2023 01:59:44 GMT
Server: Apache
Last-Modified: Wed, 14 Mar 2018 08:13:39 GMT
ETag: "178cee3-32f-5675af3d392c0"
Accept-Ranges: bytes
Content-Length: 815
X-Powered-By: PleskLin
Connection: close
Content-Type: text/css
elantex.com.tw/wp-content/themes/Avada/includes/lib/assets/min/js/general/fusion-equal-heights.js?ver=1
103.118.24.39200 OK 1.3 kB URL HTTP/1.1 elantex.com.tw/wp-content/themes/Avada/includes/lib/assets/min/js/general/fusion-equal-heights.js?ver=1
IP 103.118.24.39:0
ASN #131626 NSS INTL CO., LTD.
File type ASCII text, with very long lines (1281), with no line terminators
Hash 3aa3fbdedb74765b6feee792131b22e9
4de67dfbd288ae38272d686f75012d8041d55950
9a5d80d18efd3249c9c66d9f90b3f8b347addab4cbfc39226a41240c61d25615
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/Avada/includes/lib/assets/min/js/general/fusion-equal-heights.js?ver=1 HTTP/1.1
Host: elantex.com.tw
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://elantex.com.tw/
HTTP/1.1 200 OK
Date: Tue, 17 Jan 2023 01:59:44 GMT
Server: Apache
Last-Modified: Wed, 14 Mar 2018 08:14:10 GMT
ETag: "180c239-501-5675af5ac9880"
Accept-Ranges: bytes
Content-Length: 1281
X-Powered-By: PleskLin
Connection: close
Content-Type: text/javascript
elantex.com.tw/wp-content/plugins/fusion-builder/assets/js/min/general/fusion-column-bg-image.js?ver=1
103.118.24.39200 OK 1.3 kB URL HTTP/1.1 elantex.com.tw/wp-content/plugins/fusion-builder/assets/js/min/general/fusion-column-bg-image.js?ver=1
IP 103.118.24.39:0
ASN #131626 NSS INTL CO., LTD.
File type ASCII text, with very long lines (1348), with no line terminators
Hash d1d0367c6d089107e33b6df424e008fa
7f3583351fd681bcd62b6b900c0b4d78bf7fab08
496094405a9cc49a8f2042ab331cf09c77c8948e82d8b2d562ba39fce549a912
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/fusion-builder/assets/js/min/general/fusion-column-bg-image.js?ver=1 HTTP/1.1
Host: elantex.com.tw
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://elantex.com.tw/
HTTP/1.1 200 OK
Date: Tue, 17 Jan 2023 01:59:44 GMT
Server: Apache
Last-Modified: Wed, 14 Mar 2018 08:13:58 GMT
ETag: "178af0c-544-5675af4f57d80"
Accept-Ranges: bytes
Content-Length: 1348
X-Powered-By: PleskLin
Connection: close
Content-Type: text/javascript
elantex.com.tw/wp-content/plugins/revslider/public/assets/css/settings.css?ver=5.4.7
103.118.24.39200 OK 40 kB URL HTTP/1.1 elantex.com.tw/wp-content/plugins/revslider/public/assets/css/settings.css?ver=5.4.7
IP 103.118.24.39:0
ASN #131626 NSS INTL CO., LTD.
File type Unicode text, UTF-8 text, with very long lines (5178), with CRLF line terminators
Hash bbdc05bd89914457a2e2fd5c82d2169f
470d938b552c6742ab6d09073fd00ad2e5a06b41
13f6990c7c68b797db2c4f00f402e2e78858314e909c702b2ced5ff48510a9c3
GET /wp-content/plugins/revslider/public/assets/css/settings.css?ver=5.4.7 HTTP/1.1
Host: elantex.com.tw
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://elantex.com.tw/
HTTP/1.1 200 OK
Date: Tue, 17 Jan 2023 01:59:44 GMT
Server: Apache
Last-Modified: Wed, 14 Mar 2018 08:13:59 GMT
ETag: "178d769-9b4b-5675af504bfc0"
Accept-Ranges: bytes
Content-Length: 39755
X-Powered-By: PleskLin
Connection: close
Content-Type: text/css
elantex.com.tw/wp-content/themes/Avada/includes/lib/assets/min/js/library/modernizr.js?ver=3.3.1
103.118.24.39200 OK 13 kB URL HTTP/1.1 elantex.com.tw/wp-content/themes/Avada/includes/lib/assets/min/js/library/modernizr.js?ver=3.3.1
IP 103.118.24.39:0
ASN #131626 NSS INTL CO., LTD.
File type ASCII text, with very long lines (13090), with no line terminators
Hash dcda710a338458d187ee58301bb8021e
c040f794ffdf61f0f4779f067c261cb08dd46858
dd1fad41f2891919876ec7b3fc3057b7b89fad8e8ff8b5d03815838bb8e7e497
GET /wp-content/themes/Avada/includes/lib/assets/min/js/library/modernizr.js?ver=3.3.1 HTTP/1.1
Host: elantex.com.tw
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://elantex.com.tw/
HTTP/1.1 200 OK
Date: Tue, 17 Jan 2023 01:59:44 GMT
Server: Apache
Last-Modified: Wed, 14 Mar 2018 08:14:10 GMT
ETag: "180c4c9-3322-5675af5ac9880"
Accept-Ranges: bytes
Content-Length: 13090
X-Powered-By: PleskLin
Connection: close
Content-Type: text/javascript
elantex.com.tw/wp-content/themes/Avada/includes/lib/assets/min/js/library/jquery.easyPieChart.js?ver=2.1.7
103.118.24.39200 OK 3.7 kB URL HTTP/1.1 elantex.com.tw/wp-content/themes/Avada/includes/lib/assets/min/js/library/jquery.easyPieChart.js?ver=2.1.7
IP 103.118.24.39:0
ASN #131626 NSS INTL CO., LTD.
File type ASCII text, with very long lines (3731), with no line terminators
Hash 53681cacf8845abbaeeb94eb73818426
ca7e46933e71940ca01c47ef26a3c4d6150bb9b7
5338acdbe16862e5d826ff614549d8463ae7e26ef1fc27b5d7fee45193ac05b5
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/Avada/includes/lib/assets/min/js/library/jquery.easyPieChart.js?ver=2.1.7 HTTP/1.1
Host: elantex.com.tw
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://elantex.com.tw/
HTTP/1.1 200 OK
Date: Tue, 17 Jan 2023 01:59:44 GMT
Server: Apache
Last-Modified: Wed, 14 Mar 2018 08:14:10 GMT
ETag: "180c48a-e93-5675af5ac9880"
Accept-Ranges: bytes
Content-Length: 3731
X-Powered-By: PleskLin
Connection: close
Content-Type: text/javascript
elantex.com.tw/wp-content/themes/Avada/includes/lib/assets/min/js/library/jquery.waypoints.js?ver=2.0.3
103.118.24.39200 OK 7.5 kB URL HTTP/1.1 elantex.com.tw/wp-content/themes/Avada/includes/lib/assets/min/js/library/jquery.waypoints.js?ver=2.0.3
IP 103.118.24.39:0
ASN #131626 NSS INTL CO., LTD.
File type ASCII text, with very long lines (7511), with no line terminators
Hash cef05fde1a566e0d27b7a1a01299220e
a4e0c3e1ac4a320cf0ca5b0267fd897640dae954
173a42f3468eebc25191bc4aaa1e86fb422b56337682ce4b38bd2ca4229b8543
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/Avada/includes/lib/assets/min/js/library/jquery.waypoints.js?ver=2.0.3 HTTP/1.1
Host: elantex.com.tw
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://elantex.com.tw/
HTTP/1.1 200 OK
Date: Tue, 17 Jan 2023 01:59:44 GMT
Server: Apache
Last-Modified: Wed, 14 Mar 2018 08:14:10 GMT
ETag: "180c4b4-1d57-5675af5ac9880"
Accept-Ranges: bytes
Content-Length: 7511
X-Powered-By: PleskLin
Connection: close
Content-Type: text/javascript
elantex.com.tw/wp-includes/css/dashicons.min.css?ver=4.9.8
103.118.24.39200 OK 46 kB URL HTTP/1.1 elantex.com.tw/wp-includes/css/dashicons.min.css?ver=4.9.8
IP 103.118.24.39:0
ASN #131626 NSS INTL CO., LTD.
File type ASCII text, with very long lines (46325)
Hash 1c364e777cd2b874ea6cf09100861c6c
58bb8dabdb753287be070ac2840c0fdbbd27f533
d0df2ff25fded9e43a0cfa5159393d4482725bfb390e8ca94f34da85b5304117
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/css/dashicons.min.css?ver=4.9.8 HTTP/1.1
Host: elantex.com.tw
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://elantex.com.tw/
HTTP/1.1 200 OK
Date: Tue, 17 Jan 2023 01:59:44 GMT
Server: Apache
Last-Modified: Thu, 11 Oct 2018 05:41:03 GMT
ETag: "1812075-b518-577ed6a9a39c0"
Accept-Ranges: bytes
Content-Length: 46360
X-Powered-By: PleskLin
Connection: close
Content-Type: text/css
elantex.com.tw/wp-content/themes/Avada/assets/css/style.min.css?ver=5.4.2
103.118.24.39200 OK 199 kB URL HTTP/1.1 elantex.com.tw/wp-content/themes/Avada/assets/css/style.min.css?ver=5.4.2
IP 103.118.24.39:0
ASN #131626 NSS INTL CO., LTD.
File type ASCII text, with very long lines (65536), with no line terminators
Size 199 kB (199437 bytes)
Hash 67206d2057fc33ecb45e6643af6ed11c
5ece21738d50e94c8459d2dfd55309b240c75467
ef6b888ff94788483f742133d8438d488b11d18cdc520b8b64789f960b9135d2
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/Avada/assets/css/style.min.css?ver=5.4.2 HTTP/1.1
Host: elantex.com.tw
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://elantex.com.tw/
HTTP/1.1 200 OK
Date: Tue, 17 Jan 2023 01:59:44 GMT
Server: Apache
Last-Modified: Wed, 14 Mar 2018 08:14:11 GMT
ETag: "180b10a-30b0d-5675af5bbdac0"
Accept-Ranges: bytes
Content-Length: 199437
X-Powered-By: PleskLin
Connection: close
Content-Type: text/css
elantex.com.tw/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.4.1
103.118.24.39200 OK 10 kB URL HTTP/1.1 elantex.com.tw/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.4.1
IP 103.118.24.39:0
ASN #131626 NSS INTL CO., LTD.
File type ASCII text, with very long lines (9959)
Hash 7121994eec5320fbe6586463bf9651c2
90532aff6d4121954254cdf04994d834f7ec169b
48eb8b500ae6a38617b5738d2b3faec481922a7782246e31d2755c034a45cd5d
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=1.4.1 HTTP/1.1
Host: elantex.com.tw
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://elantex.com.tw/
HTTP/1.1 200 OK
Date: Tue, 17 Jan 2023 01:59:44 GMT
Server: Apache
Last-Modified: Thu, 11 Oct 2018 05:41:11 GMT
ETag: "1812353-2748-577ed6b144bc0"
Accept-Ranges: bytes
Content-Length: 10056
X-Powered-By: PleskLin
Connection: close
Content-Type: text/javascript
elantex.com.tw/wp-content/plugins/revslider/public/assets/js/jquery.themepunch.tools.min.js?ver=5.4.7
103.118.24.39200 OK 111 kB URL HTTP/1.1 elantex.com.tw/wp-content/plugins/revslider/public/assets/js/jquery.themepunch.tools.min.js?ver=5.4.7
IP 103.118.24.39:0
ASN #131626 NSS INTL CO., LTD.
File type ASCII text, with very long lines (27287), with CRLF line terminators
Size 111 kB (110563 bytes)
Hash a748a9e56b2c639013c770506f1fd529
537edd9b364ac005df2d1c57be873945b2fecdf6
6eabb193731278713f4208ea84b8c7334c3dfc98f01cb074778280e1df536e62
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/revslider/public/assets/js/jquery.themepunch.tools.min.js?ver=5.4.7 HTTP/1.1
Host: elantex.com.tw
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://elantex.com.tw/
HTTP/1.1 200 OK
Date: Tue, 17 Jan 2023 01:59:45 GMT
Server: Apache
Last-Modified: Wed, 14 Mar 2018 08:13:59 GMT
ETag: "178d79b-1afe3-5675af504bfc0"
Accept-Ranges: bytes
Content-Length: 110563
X-Powered-By: PleskLin
Connection: close
Content-Type: text/javascript
elantex.com.tw/wp-content/plugins/revslider/public/assets/js/jquery.themepunch.revolution.min.js?ver=5.4.7
103.118.24.39200 OK 65 kB URL HTTP/1.1 elantex.com.tw/wp-content/plugins/revslider/public/assets/js/jquery.themepunch.revolution.min.js?ver=5.4.7
IP 103.118.24.39:0
ASN #131626 NSS INTL CO., LTD.
File type ASCII text, with very long lines (64567), with CRLF line terminators
Hash 01fc8cb5a3ed7fe7a527714b39ac1381
0f16b498aeacc6bbce52431b5165b959cc81c8bd
7ea819c32bebb49aeb9678b2152d4802a5498ee44d85861b846745a06a1035c1
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/revslider/public/assets/js/jquery.themepunch.revolution.min.js?ver=5.4.7 HTTP/1.1
Host: elantex.com.tw
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://elantex.com.tw/
HTTP/1.1 200 OK
Date: Tue, 17 Jan 2023 01:59:45 GMT
Server: Apache
Last-Modified: Wed, 14 Mar 2018 08:13:59 GMT
ETag: "178d79a-fd88-5675af504bfc0"
Accept-Ranges: bytes
Content-Length: 64904
X-Powered-By: PleskLin
Connection: close
Content-Type: text/javascript
elantex.com.tw/wp-includes/js/wp-emoji-release.min.js?ver=4.9.8
103.118.24.39200 OK 12 kB URL HTTP/1.1 elantex.com.tw/wp-includes/js/wp-emoji-release.min.js?ver=4.9.8
IP 103.118.24.39:0
ASN #131626 NSS INTL CO., LTD.
File type ASCII text, with very long lines (9118)
Hash 15d0c302dc74fd87bd9cfeab513e13e4
d25b738415c1594c4f840904bb876055d96cf256
d2458b9fd9089fdcb9de317093e004ef3a65597dc68b9adfdeb15a7c9968d0d5
GET /wp-includes/js/wp-emoji-release.min.js?ver=4.9.8 HTTP/1.1
Host: elantex.com.tw
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://elantex.com.tw/
HTTP/1.1 200 OK
Date: Tue, 17 Jan 2023 01:59:45 GMT
Server: Apache
Last-Modified: Thu, 11 Oct 2018 05:41:06 GMT
ETag: "18125d9-2efa-577ed6ac80080"
Accept-Ranges: bytes
Content-Length: 12026
X-Powered-By: PleskLin
Connection: close
Content-Type: text/javascript
elantex.com.tw/wp-includes/js/comment-reply.min.js?ver=4.9.8
103.118.24.39200 OK 1.1 kB URL HTTP/1.1 elantex.com.tw/wp-includes/js/comment-reply.min.js?ver=4.9.8
IP 103.118.24.39:0
ASN #131626 NSS INTL CO., LTD.
File type ASCII text, with very long lines (1078), with no line terminators
Hash 56bc2726d829207bfa802f957aac0791
5bf5c0a61359d8784c950b059e013aceea0d42f1
1b1ca0f15010e0124bd4ca481404643c88f7eda1b276e9554d0ed83fb45b7e30
GET /wp-includes/js/comment-reply.min.js?ver=4.9.8 HTTP/1.1
Host: elantex.com.tw
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://elantex.com.tw/
HTTP/1.1 200 OK
Date: Tue, 17 Jan 2023 01:59:46 GMT
Server: Apache
Last-Modified: Thu, 11 Oct 2018 05:41:05 GMT
ETag: "181257c-436-577ed6ab8be40"
Accept-Ranges: bytes
Content-Length: 1078
X-Powered-By: PleskLin
Connection: close
Content-Type: text/javascript
elantex.com.tw/wp-includes/js/jquery/jquery.js?ver=1.12.4
103.118.24.39200 OK 97 kB URL HTTP/1.1 elantex.com.tw/wp-includes/js/jquery/jquery.js?ver=1.12.4
IP 103.118.24.39:0
ASN #131626 NSS INTL CO., LTD.
File type ASCII text, with very long lines (32077)
Hash 8610f03fe77640dee8c4cc924e060f12
076524186dbbdd4c41afbbd6b260d9e46a095811
fc48d1d80ece71a79a7b39877f4104d49d3da6c3665cf6dc203000fb7df4447e
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/jquery/jquery.js?ver=1.12.4 HTTP/1.1
Host: elantex.com.tw
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://elantex.com.tw/
HTTP/1.1 200 OK
Date: Tue, 17 Jan 2023 01:59:46 GMT
Server: Apache
Last-Modified: Thu, 11 Oct 2018 05:41:11 GMT
ETag: "1812367-17ba0-577ed6b144bc0"
Accept-Ranges: bytes
Content-Length: 97184
X-Powered-By: PleskLin
Connection: close
Content-Type: text/javascript
elantex.com.tw/wp-content/themes/Avada/includes/lib/assets/min/js/library/isotope.js?ver=3.0.4
103.118.24.39200 OK 35 kB URL HTTP/1.1 elantex.com.tw/wp-content/themes/Avada/includes/lib/assets/min/js/library/isotope.js?ver=3.0.4
IP 103.118.24.39:0
ASN #131626 NSS INTL CO., LTD.
File type ASCII text, with very long lines (31984)
Hash 316f5ef702767969a6d4ac76a308ede2
9705dffd50b3d751c8cdd9aa9b3d2bdf822ac983
57f3316599c6cb279ffb4fb239393035f0bb68fb16302f9bfb2b122acc282e4a
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/Avada/includes/lib/assets/min/js/library/isotope.js?ver=3.0.4 HTTP/1.1
Host: elantex.com.tw
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://elantex.com.tw/
HTTP/1.1 200 OK
Date: Tue, 17 Jan 2023 01:59:47 GMT
Server: Apache
Last-Modified: Wed, 14 Mar 2018 08:14:10 GMT
ETag: "180c47f-887f-5675af5ac9880"
Accept-Ranges: bytes
Content-Length: 34943
X-Powered-By: PleskLin
Connection: close
Content-Type: text/javascript
elantex.com.tw/wp-content/themes/Avada/includes/lib/assets/min/js/library/fusion-video-general.js?ver=1
103.118.24.39200 OK 5.3 kB URL HTTP/1.1 elantex.com.tw/wp-content/themes/Avada/includes/lib/assets/min/js/library/fusion-video-general.js?ver=1
IP 103.118.24.39:0
ASN #131626 NSS INTL CO., LTD.
File type ASCII text, with very long lines (5252), with no line terminators
Hash e46a9e37cce63c87d728fb081e60fad9
9309c26f59060111c1497a8554769832cb831cd3
1a439058af3672c0831d6ffb0f183bbe2b6308601682499519c18efaed66ddcc
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/Avada/includes/lib/assets/min/js/library/fusion-video-general.js?ver=1 HTTP/1.1
Host: elantex.com.tw
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://elantex.com.tw/
HTTP/1.1 200 OK
Date: Tue, 17 Jan 2023 01:59:47 GMT
Server: Apache
Last-Modified: Wed, 14 Mar 2018 08:14:10 GMT
ETag: "180c45e-1484-5675af5ac9880"
Accept-Ranges: bytes
Content-Length: 5252
X-Powered-By: PleskLin
Connection: close
Content-Type: text/javascript
elantex.com.tw/wp-content/themes/Avada/includes/lib/assets/min/js/library/jquery.fitvids.js?ver=1.1
103.118.24.39200 OK 1.8 kB URL HTTP/1.1 elantex.com.tw/wp-content/themes/Avada/includes/lib/assets/min/js/library/jquery.fitvids.js?ver=1.1
IP 103.118.24.39:0
ASN #131626 NSS INTL CO., LTD.
File type HTML document, ASCII text, with very long lines (1771), with no line terminators
Hash c6513389656ac13c0a7f27ac68c13262
fbe6736b8ac300e6b0569d4b9ceca93bbcddf990
3c0bfb5a3db6967755accf4f7d045f8529e546a3b713281cac8a3088b51f6bda
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/Avada/includes/lib/assets/min/js/library/jquery.fitvids.js?ver=1.1 HTTP/1.1
Host: elantex.com.tw
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://elantex.com.tw/
HTTP/1.1 200 OK
Date: Tue, 17 Jan 2023 01:59:47 GMT
Server: Apache
Last-Modified: Wed, 14 Mar 2018 08:14:10 GMT
ETag: "180c491-6eb-5675af5ac9880"
Accept-Ranges: bytes
Content-Length: 1771
X-Powered-By: PleskLin
Connection: close
Content-Type: text/javascript
elantex.com.tw/wp-content/themes/Avada/includes/lib/assets/min/js/library/imagesLoaded.js?ver=3.1.8
103.118.24.39200 OK 6.8 kB URL HTTP/1.1 elantex.com.tw/wp-content/themes/Avada/includes/lib/assets/min/js/library/imagesLoaded.js?ver=3.1.8
IP 103.118.24.39:0
ASN #131626 NSS INTL CO., LTD.
File type ASCII text, with very long lines (6808), with no line terminators
Hash 4e3957f78b45bc1bc1a3305c35821dc9
50f9d6eed706891ce9d79fb02191206a16adcea3
447f8762021b0e2726cea6977b09f5448684bf078d66cf5718f681bd2e1cec4f
GET /wp-content/themes/Avada/includes/lib/assets/min/js/library/imagesLoaded.js?ver=3.1.8 HTTP/1.1
Host: elantex.com.tw
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://elantex.com.tw/
HTTP/1.1 200 OK
Date: Tue, 17 Jan 2023 01:59:47 GMT
Server: Apache
Last-Modified: Wed, 14 Mar 2018 08:14:10 GMT
ETag: "180c46c-1a98-5675af5ac9880"
Accept-Ranges: bytes
Content-Length: 6808
X-Powered-By: PleskLin
Connection: close
Content-Type: text/javascript
elantex.com.tw/wp-content/themes/Avada/includes/lib/assets/min/js/library/jquery.infinitescroll.js?ver=2.1
103.118.24.39200 OK 21 kB URL HTTP/1.1 elantex.com.tw/wp-content/themes/Avada/includes/lib/assets/min/js/library/jquery.infinitescroll.js?ver=2.1
IP 103.118.24.39:0
ASN #131626 NSS INTL CO., LTD.
File type ASCII text, with very long lines (21039), with no line terminators
Hash 00a6bfcb15ec2ced5eea88cf4ad13974
785ba8f4d73d145d59ee4ca5bb9a86dc30e032eb
906de8a869820a99d34a993a822fbe4db8108465ece4eea2441d39581f27eb20
GET /wp-content/themes/Avada/includes/lib/assets/min/js/library/jquery.infinitescroll.js?ver=2.1 HTTP/1.1
Host: elantex.com.tw
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://elantex.com.tw/
HTTP/1.1 200 OK
Date: Tue, 17 Jan 2023 01:59:47 GMT
Server: Apache
Last-Modified: Wed, 14 Mar 2018 08:14:10 GMT
ETag: "180c4a4-522f-5675af5ac9880"
Accept-Ranges: bytes
Content-Length: 21039
X-Powered-By: PleskLin
Connection: close
Content-Type: text/javascript
elantex.com.tw/wp-content/themes/Avada/includes/lib/assets/min/js/library/packery.js?ver=2.0.0
103.118.24.39200 OK 14 kB URL HTTP/1.1 elantex.com.tw/wp-content/themes/Avada/includes/lib/assets/min/js/library/packery.js?ver=2.0.0
IP 103.118.24.39:0
ASN #131626 NSS INTL CO., LTD.
File type ASCII text, with very long lines (13519), with no line terminators
Hash a970a6f367fa93d70a7ca4c30ef2ad31
4e3cc76fe65164957b24ccc8f9b103cdf585c1b5
a2d024e9b92e08cd19ad6c6e6ada84520433610e242bf8a372f8d833cfcb2694
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/Avada/includes/lib/assets/min/js/library/packery.js?ver=2.0.0 HTTP/1.1
Host: elantex.com.tw
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://elantex.com.tw/
HTTP/1.1 200 OK
Date: Tue, 17 Jan 2023 01:59:48 GMT
Server: Apache
Last-Modified: Wed, 14 Mar 2018 08:14:10 GMT
ETag: "180c4ca-34cf-5675af5ac9880"
Accept-Ranges: bytes
Content-Length: 13519
X-Powered-By: PleskLin
Connection: close
Content-Type: text/javascript
elantex.com.tw/wp-content/themes/Avada/includes/lib/assets/min/js/library/bootstrap.collapse.js?ver=3.1.1
103.118.24.39200 OK 3.4 kB URL HTTP/1.1 elantex.com.tw/wp-content/themes/Avada/includes/lib/assets/min/js/library/bootstrap.collapse.js?ver=3.1.1
IP 103.118.24.39:0
ASN #131626 NSS INTL CO., LTD.
File type ASCII text, with very long lines (3394), with no line terminators
Hash 13a7402e5db90912c578e1bf3af9275a
8343bf69d1b2cb3b591fd21339dd8ade6dc12364
831b15eff680729ab2b4f6b849f09d7dd2e1846d2a37a011b89e03f13cc572dd
GET /wp-content/themes/Avada/includes/lib/assets/min/js/library/bootstrap.collapse.js?ver=3.1.1 HTTP/1.1
Host: elantex.com.tw
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://elantex.com.tw/
HTTP/1.1 200 OK
Date: Tue, 17 Jan 2023 01:59:48 GMT
Server: Apache
Last-Modified: Wed, 14 Mar 2018 08:14:10 GMT
ETag: "180c335-d42-5675af5ac9880"
Accept-Ranges: bytes
Content-Length: 3394
X-Powered-By: PleskLin
Connection: close
Content-Type: text/javascript
elantex.com.tw/wp-content/plugins/fusion-core/js/min/avada-portfolio.js?ver=1
103.118.24.39200 OK 12 kB URL HTTP/1.1 elantex.com.tw/wp-content/plugins/fusion-core/js/min/avada-portfolio.js?ver=1
IP 103.118.24.39:0
ASN #131626 NSS INTL CO., LTD.
File type ASCII text, with very long lines (12381), with no line terminators
Hash 2eeb9dee149db0d7082cd045656a3173
a4db88dbd8d0a84f481984f48c6927021e85e888
a67c53195278c6ff4362981bd1d24af9d2606e4dd06b033afffe016e07238b2b
GET /wp-content/plugins/fusion-core/js/min/avada-portfolio.js?ver=1 HTTP/1.1
Host: elantex.com.tw
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://elantex.com.tw/
HTTP/1.1 200 OK
Date: Tue, 17 Jan 2023 01:59:48 GMT
Server: Apache
Last-Modified: Wed, 14 Mar 2018 08:13:54 GMT
ETag: "178cec8-305d-5675af4b87480"
Accept-Ranges: bytes
Content-Length: 12381
X-Powered-By: PleskLin
Connection: close
Content-Type: text/javascript
elantex.com.tw/wp-content/uploads/fusion-styles/fusion-8.css?timestamp=1673482631&ver=4.9.8
103.118.24.39200 OK 538 kB URL HTTP/1.1 elantex.com.tw/wp-content/uploads/fusion-styles/fusion-8.css?timestamp=1673482631&ver=4.9.8
IP 103.118.24.39:0
ASN #131626 NSS INTL CO., LTD.
File type ASCII text, with very long lines (65536), with no line terminators
Size 538 kB (537659 bytes)
Hash f76b8cf734906381faad8856e8037df8
a303626e92324376f24e03f9efad70b6501f80ff
e8a8a603d9769ec16ce943f6664866b9717e6fb36a7f06c9b8689f829999c945
GET /wp-content/uploads/fusion-styles/fusion-8.css?timestamp=1673482631&ver=4.9.8 HTTP/1.1
Host: elantex.com.tw
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://elantex.com.tw/
HTTP/1.1 200 OK
Date: Tue, 17 Jan 2023 01:59:45 GMT
Server: Apache
Last-Modified: Thu, 12 Jan 2023 00:17:11 GMT
ETag: "1821033-8343b-5f20609c964ed"
Accept-Ranges: bytes
Content-Length: 537659
X-Powered-By: PleskLin
Connection: close
Content-Type: text/css
elantex.com.tw/wp-content/themes/Avada/includes/lib/assets/min/js/library/jquery.ilightbox.js?ver=2.2.3
103.118.24.39200 OK 82 kB URL HTTP/1.1 elantex.com.tw/wp-content/themes/Avada/includes/lib/assets/min/js/library/jquery.ilightbox.js?ver=2.2.3
IP 103.118.24.39:0
ASN #131626 NSS INTL CO., LTD.
File type ASCII text, with very long lines (31989)
Hash 2dc120c9fb9ea3571d51ed90445f4831
f365255cf526a693e13ae1d0d271e50a672baefd
68de1bbe56f20069920947bd73bc4619bfe6d20991d9748750662597a12b9ff9
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/Avada/includes/lib/assets/min/js/library/jquery.ilightbox.js?ver=2.2.3 HTTP/1.1
Host: elantex.com.tw
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://elantex.com.tw/
HTTP/1.1 200 OK
Date: Tue, 17 Jan 2023 01:59:47 GMT
Server: Apache
Last-Modified: Wed, 14 Mar 2018 08:14:10 GMT
ETag: "180c4a2-1405b-5675af5ac9880"
Accept-Ranges: bytes
Content-Length: 82011
X-Powered-By: PleskLin
Connection: close
Content-Type: text/javascript
elantex.com.tw/wp-content/plugins/fusion-builder/assets/js/min/general/fusion-toggles.js?ver=1
103.118.24.39200 OK 2.5 kB URL HTTP/1.1 elantex.com.tw/wp-content/plugins/fusion-builder/assets/js/min/general/fusion-toggles.js?ver=1
IP 103.118.24.39:0
ASN #131626 NSS INTL CO., LTD.
File type ASCII text, with very long lines (2472), with no line terminators
Hash 37c023d0508f8d52fe86eb8a6f9a087c
22c53994a77f4594ede33cd7a241167e16f935bb
bf7f65bf84e832431b544ac65dcff4f0ecc599c476dd653c22aee87bdffc7010
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/fusion-builder/assets/js/min/general/fusion-toggles.js?ver=1 HTTP/1.1
Host: elantex.com.tw
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://elantex.com.tw/
HTTP/1.1 200 OK
Date: Tue, 17 Jan 2023 01:59:48 GMT
Server: Apache
Last-Modified: Wed, 14 Mar 2018 08:13:58 GMT
ETag: "178b43f-9a8-5675af4f57d80"
Accept-Ranges: bytes
Content-Length: 2472
X-Powered-By: PleskLin
Connection: close
Content-Type: text/javascript
elantex.com.tw/wp-content/themes/Avada/includes/lib/assets/min/js/library/cssua.js?ver=2.1.28
103.118.24.39200 OK 3.3 kB URL HTTP/1.1 elantex.com.tw/wp-content/themes/Avada/includes/lib/assets/min/js/library/cssua.js?ver=2.1.28
IP 103.118.24.39:0
ASN #131626 NSS INTL CO., LTD.
File type ASCII text, with very long lines (3341), with no line terminators
Hash c27081c72b322a62728ebd6910ecb945
046e185ce1b2e6fe6970b3a76edc01500fd7f137
4025727c5cdf69ebebb78196e38a76144968ff27b9dfe789968f23f69d51e2cd
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/Avada/includes/lib/assets/min/js/library/cssua.js?ver=2.1.28 HTTP/1.1
Host: elantex.com.tw
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://elantex.com.tw/
HTTP/1.1 200 OK
Date: Tue, 17 Jan 2023 01:59:48 GMT
Server: Apache
Last-Modified: Wed, 14 Mar 2018 08:14:10 GMT
ETag: "180c3ec-d0d-5675af5ac9880"
Accept-Ranges: bytes
Content-Length: 3341
X-Powered-By: PleskLin
Connection: close
Content-Type: text/javascript
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 0988e06d2698db0b1a5bcadbadba234a
515ca060583e340fec230fcf8e758352f4bc10a8
1a0dc461032c28c3e0e71daec9b2296e5b5c089e22785e7d7bee505d71e40127
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5109
Cache-Control: max-age=114945
Content-Type: application/ocsp-response
Date: Tue, 17 Jan 2023 02:06:06 GMT
Etag: "63c50c9a-1d7"
Expires: Wed, 18 Jan 2023 10:01:51 GMT
Last-Modified: Mon, 16 Jan 2023 08:36:42 GMT
Server: ECS (ska/F718)
X-Cache: HIT
Content-Length: 471
elantex.com.tw/wp-content/themes/Avada/includes/lib/assets/min/js/general/fusion-waypoints.js?ver=1
103.118.24.39200 OK 447 B URL HTTP/1.1 elantex.com.tw/wp-content/themes/Avada/includes/lib/assets/min/js/general/fusion-waypoints.js?ver=1
IP 103.118.24.39:0
ASN #131626 NSS INTL CO., LTD.
File type ASCII text, with very long lines (447), with no line terminators
Hash ff3d90a68488554723853469a9d7571e
c6764d617be77a4a870c84c4eabb9ac619e9c41e
051295687c256d4bf401a70a2fd455ee85f8b7272e2cd133c00a40ba282dab4c
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/Avada/includes/lib/assets/min/js/general/fusion-waypoints.js?ver=1 HTTP/1.1
Host: elantex.com.tw
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://elantex.com.tw/
HTTP/1.1 200 OK
Date: Tue, 17 Jan 2023 01:59:48 GMT
Server: Apache
Last-Modified: Wed, 14 Mar 2018 08:14:10 GMT
ETag: "180c323-1bf-5675af5ac9880"
Accept-Ranges: bytes
Content-Length: 447
X-Powered-By: PleskLin
Connection: close
Content-Type: text/javascript
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 6b70b334388cc7c3c2afbf53572e9dca
c4c5b6f3cf3dc8b3cbadcb45fd578ecfcb406eb1
d231560628e5028fb74b132e6de1562cecbc1fc4ab4fc96c8fce638beb8ddbc0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 17 Jan 2023 02:06:06 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 6b70b334388cc7c3c2afbf53572e9dca
c4c5b6f3cf3dc8b3cbadcb45fd578ecfcb406eb1
d231560628e5028fb74b132e6de1562cecbc1fc4ab4fc96c8fce638beb8ddbc0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 17 Jan 2023 02:06:06 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
elantex.com.tw/wp-content/plugins/fusion-builder/assets/js/min/general/fusion-animations.js?ver=1
103.118.24.39200 OK 1.1 kB URL HTTP/1.1 elantex.com.tw/wp-content/plugins/fusion-builder/assets/js/min/general/fusion-animations.js?ver=1
IP 103.118.24.39:0
ASN #131626 NSS INTL CO., LTD.
File type ASCII text, with very long lines (1082), with no line terminators
Hash 9d9c62d9b2f4459415dba60610a314d7
53a36b2fbd436615be6facd55b908749951adb15
ff5940baddf3197b85a248db652827417b91559f98359b58a9839e03f50df026
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/fusion-builder/assets/js/min/general/fusion-animations.js?ver=1 HTTP/1.1
Host: elantex.com.tw
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://elantex.com.tw/
HTTP/1.1 200 OK
Date: Tue, 17 Jan 2023 01:59:48 GMT
Server: Apache
Last-Modified: Wed, 14 Mar 2018 08:13:58 GMT
ETag: "178ae85-43a-5675af4f57d80"
Accept-Ranges: bytes
Content-Length: 1082
X-Powered-By: PleskLin
Connection: close
Content-Type: text/javascript
elantex.com.tw/wp-content/themes/Avada/includes/lib/assets/min/js/library/jquery.requestAnimationFrame.js?ver=1
103.118.24.39200 OK 695 B URL HTTP/1.1 elantex.com.tw/wp-content/themes/Avada/includes/lib/assets/min/js/library/jquery.requestAnimationFrame.js?ver=1
IP 103.118.24.39:0
ASN #131626 NSS INTL CO., LTD.
File type ASCII text, with very long lines (695), with no line terminators
Hash 4ec6e0ceea453a2782da741d96ebd6c3
751f79aca0f4438f4c3f280efdebb5711ba359af
346467f0ba1b9a43b33c78f0663942aa96d5cc8c8064e470665d9308c45a3d91
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/Avada/includes/lib/assets/min/js/library/jquery.requestAnimationFrame.js?ver=1 HTTP/1.1
Host: elantex.com.tw
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://elantex.com.tw/
HTTP/1.1 200 OK
Date: Tue, 17 Jan 2023 01:59:49 GMT
Server: Apache
Last-Modified: Wed, 14 Mar 2018 08:14:10 GMT
ETag: "180c4af-2b7-5675af5ac9880"
Accept-Ranges: bytes
Content-Length: 695
X-Powered-By: PleskLin
Connection: close
Content-Type: text/javascript
elantex.com.tw/wp-content/themes/Avada/includes/lib/assets/min/js/library/fusion-video-bg.js?ver=1
103.118.24.39200 OK 4.9 kB URL HTTP/1.1 elantex.com.tw/wp-content/themes/Avada/includes/lib/assets/min/js/library/fusion-video-bg.js?ver=1
IP 103.118.24.39:0
ASN #131626 NSS INTL CO., LTD.
File type ASCII text, with very long lines (4943), with no line terminators
Hash db288b612a985b432d364f5196d42e5c
5dd2e7dacd5cf10d43c86b45a520501a51bbd6fe
f68419c6e01d4305285adf2c5e21a38502f5b0ef5915ec976ac7d616fc5186de
GET /wp-content/themes/Avada/includes/lib/assets/min/js/library/fusion-video-bg.js?ver=1 HTTP/1.1
Host: elantex.com.tw
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://elantex.com.tw/
HTTP/1.1 200 OK
Date: Tue, 17 Jan 2023 01:59:49 GMT
Server: Apache
Last-Modified: Wed, 14 Mar 2018 08:14:10 GMT
ETag: "180c447-134f-5675af5ac9880"
Accept-Ranges: bytes
Content-Length: 4943
X-Powered-By: PleskLin
Connection: close
Content-Type: text/javascript
www.google.com/maps/embed?pb=!1m18!1m12!1m3!1d3614.7558886612137!2d121.2970741153806!3d25.042357083968476!2m3!1f0!2f0!3f0!3m2!1i1024!2i768!4f13.1!3m3!1m2!1s0x34681fd71a79e8e1%3A0x969c0e46514be45c!2zMzMz5qGD5ZyS5biC6b6c5bGx5Y2A5rCR55Sf5YyX6Lev5LiA5q61NDY46Jmf!5e0!3m2!1szh-TW!2stw!4v1520226761880
142.250.74.164200 OK 1.0 kB URL HTTP/2 www.google.com/maps/embed?pb=!1m18!1m12!1m3!1d3614.7558886612137!2d121.2970741153806!3d25.042357083968476!2m3!1f0!2f0!3f0!3m2!1i1024!2i768!4f13.1!3m3!1m2!1s0x34681fd71a79e8e1%3A0x969c0e46514be45c!2zMzMz5qGD5ZyS5biC6b6c5bGx5Y2A5rCR55Sf5YyX6Lev5LiA5q61NDY46Jmf!5e0!3m2!1szh-TW!2stw!4v1520226761880
IP 142.250.74.164:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1739)
Hash 228ea83f62bea438ce09d455f1c87424
d5d6b962ab831c7a840ed61a4618294427fb4a3b
82e7afb436d558ef3b910d9dd606209ddb1eb711e04d053aecb5bd76112e015e
GET /maps/embed?pb=!1m18!1m12!1m3!1d3614.7558886612137!2d121.2970741153806!3d25.042357083968476!2m3!1f0!2f0!3f0!3m2!1i1024!2i768!4f13.1!3m3!1m2!1s0x34681fd71a79e8e1%3A0x969c0e46514be45c!2zMzMz5qGD5ZyS5biC6b6c5bGx5Y2A5rCR55Sf5YyX6Lev5LiA5q61NDY46Jmf!5e0!3m2!1szh-TW!2stw!4v1520226761880 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://elantex.com.tw/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
date: Tue, 17 Jan 2023 02:06:06 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
vary: Accept-Language
content-security-policy: object-src 'none';base-uri 'self';script-src 'nonce-mvinyEBkC_BZmkKjBLjb_Q' 'strict-dynamic' 'report-sample' 'unsafe-eval' 'unsafe-inline' https: http:;report-uri https://csp.withgoogle.com/csp/geo-maps-api/1
content-encoding: gzip
server: mafe
content-length: 1044
x-xss-protection: 0
server-timing: gfet4t7; dur=161
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 0988e06d2698db0b1a5bcadbadba234a
515ca060583e340fec230fcf8e758352f4bc10a8
1a0dc461032c28c3e0e71daec9b2296e5b5c089e22785e7d7bee505d71e40127
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5109
Cache-Control: max-age=114945
Content-Type: application/ocsp-response
Date: Tue, 17 Jan 2023 02:06:06 GMT
Etag: "63c50c9a-1d7"
Expires: Wed, 18 Jan 2023 10:01:51 GMT
Last-Modified: Mon, 16 Jan 2023 08:36:42 GMT
Server: ECS (ska/F718)
X-Cache: HIT
Content-Length: 471
www.google.com/maps/embed?pb=!1m18!1m12!1m3!1d3614.4634427209517!2d121.52750851500645!3d25.052276783963745!2m3!1f0!2f0!3f0!3m2!1i1024!2i768!4f13.1!3m3!1m2!1s0x3442a966e7b9948d%3A0x8135870d3c261154!2zMTA0OTHlj7DljJfluILkuK3lsbHljYDljZfkuqzmnbHot6_kuozmrrU1M-iZnw!5e0!3m2!1szh-TW!2stw!4v1520222561229
142.250.74.164200 OK 1.0 kB URL HTTP/2 www.google.com/maps/embed?pb=!1m18!1m12!1m3!1d3614.4634427209517!2d121.52750851500645!3d25.052276783963745!2m3!1f0!2f0!3f0!3m2!1i1024!2i768!4f13.1!3m3!1m2!1s0x3442a966e7b9948d%3A0x8135870d3c261154!2zMTA0OTHlj7DljJfluILkuK3lsbHljYDljZfkuqzmnbHot6_kuozmrrU1M-iZnw!5e0!3m2!1szh-TW!2stw!4v1520222561229
IP 142.250.74.164:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1758)
Hash 89cfe91476605bb620076e145adc2a31
53cdf942adcc938025b3ec15f53575c5d8aee459
2cda83f694df04200215f5ed88c73ca8aa55e2412a49a75c6965feb56d8b61ee
GET /maps/embed?pb=!1m18!1m12!1m3!1d3614.4634427209517!2d121.52750851500645!3d25.052276783963745!2m3!1f0!2f0!3f0!3m2!1i1024!2i768!4f13.1!3m3!1m2!1s0x3442a966e7b9948d%3A0x8135870d3c261154!2zMTA0OTHlj7DljJfluILkuK3lsbHljYDljZfkuqzmnbHot6_kuozmrrU1M-iZnw!5e0!3m2!1szh-TW!2stw!4v1520222561229 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://elantex.com.tw/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
date: Tue, 17 Jan 2023 02:06:06 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
vary: Accept-Language
content-security-policy: object-src 'none';base-uri 'self';script-src 'nonce-me9qzR_5gWy6XVvAOnvm_A' 'strict-dynamic' 'report-sample' 'unsafe-eval' 'unsafe-inline' https: http:;report-uri https://csp.withgoogle.com/csp/geo-maps-api/1
content-encoding: gzip
server: mafe
content-length: 1048
x-xss-protection: 0
server-timing: gfet4t7; dur=187
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/yF/r/p55HfXW__mM.js?_nc_x=Ij3Wp8lg5Kz
31.13.72.12200 OK 293 B URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/yF/r/p55HfXW__mM.js?_nc_x=Ij3Wp8lg5Kz
IP 31.13.72.12:0
File type ASCII text, with very long lines (327)
Hash 2f913d812811ef7e6fca30334c5972e2
d17caaa167443dc08696c672380f237e0db3fb02
ee8918a2f5d163099104b70f79065abc8fd309e69add57170546f2706956eef8
GET /rsrc.php/v3/yF/r/p55HfXW__mM.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Fri, 05 Jan 2024 15:06:02 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: L5E9gSgR735vyjAzTFly4g==
x-fb-debug: yPDrxn09erk5xCcoQdbbw4A7E/geBRMkT7EN9R/pGcDCWGskqBvcsDHuVSO15iDQE9HLhZZ75ZNnjbS8O4i0dQ==
priority: u=3,i
content-length: 293
x-fb-trip-id: 1904183273
date: Tue, 17 Jan 2023 02:06:06 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/yR/r/bPhRbIw5d4Y.js?_nc_x=Ij3Wp8lg5Kz
31.13.72.12200 OK 16 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/yR/r/bPhRbIw5d4Y.js?_nc_x=Ij3Wp8lg5Kz
IP 31.13.72.12:0
File type C source, ASCII text, with very long lines (8741)
Hash c92ef94e30a2dd9473fd9fe533472b73
97049e47de026939c75a885df9e8bb0fb56515ba
f2981c7109e60cf9f5a9e846a25800dbec20a923db028f310b6feb79415650bb
GET /rsrc.php/v3/yR/r/bPhRbIw5d4Y.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Fri, 12 Jan 2024 16:05:42 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: yS75TjCi3ZRz/Z/lM0crcw==
x-fb-debug: HkTyuOFUn8iR2cjgNDyglI5ekdD/ZMsOTH01oROj2ag8OclYeCtmVhKq+U/CPUu9sO+hKOjw/FZRZnnuT57PJw==
content-length: 16232
x-fb-trip-id: 1904183273
date: Tue, 17 Jan 2023 02:06:06 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/y4/r/9hV1NnY6YcK.js?_nc_x=Ij3Wp8lg5Kz
31.13.72.12200 OK 19 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/y4/r/9hV1NnY6YcK.js?_nc_x=Ij3Wp8lg5Kz
IP 31.13.72.12:0
File type C source, ASCII text, with very long lines (10595)
Hash 6eb826fa128838f0f5c9a2bd48e8e59d
ed48abadaf687a2c0899cbe1f580eb5d5ca3275e
68d98d91a08148b1fd42a8278407ace4033c0f548c4fe5bb481da6b180e3df18
GET /rsrc.php/v3/y4/r/9hV1NnY6YcK.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Tue, 16 Jan 2024 20:08:39 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: brgm+hKIOPD1yaK9SOjlnQ==
x-fb-debug: sFQb4n+MRCygI64cVc1J064HOVvIY0ZgNv2t8EConYnmeUC8uskC+Sn644Qv3svcafdvezq+Po6OOU9ebyrPIQ==
priority: u=3,i
content-length: 18615
x-fb-trip-id: 1904183273
date: Tue, 17 Jan 2023 02:06:06 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/y2/l/0,cross/X2gn94d641N.css?_nc_x=Ij3Wp8lg5Kz
31.13.72.12200 OK 3.8 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/y2/l/0,cross/X2gn94d641N.css?_nc_x=Ij3Wp8lg5Kz
IP 31.13.72.12:0
File type ASCII text, with very long lines (3040)
Hash d20b0aa875bdbbc542f6378ddcf5bf79
2668d4cb84507fe37cecb1197aa0c0721614c906
3935f85ea78a5fc3fcab75152ca129949936f024956914d95b48e25f94023c99
GET /rsrc.php/v3/y2/l/0,cross/X2gn94d641N.css?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-encoding: br
content-type: text/css; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Tue, 16 Jan 2024 20:10:12 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: 0gsKqHW9u8VC9jeN3PW/eQ==
x-fb-debug: w3qaICCLRakx6xixu3fMuteVP27IBHZc5NRRRd2uGsnonmRD5I7+kT36HcX1wyXoYeBQvA5Q4vjAxpv3gACsvg==
content-length: 3843
x-fb-trip-id: 1904183273
date: Tue, 17 Jan 2023 02:06:06 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3iLl54/yI/l/en_US/cDcOw13Y5VI.js?_nc_x=Ij3Wp8lg5Kz
31.13.72.12200 OK 5.5 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3iLl54/yI/l/en_US/cDcOw13Y5VI.js?_nc_x=Ij3Wp8lg5Kz
IP 31.13.72.12:0
File type ASCII text, with very long lines (2905)
Hash 617835339086c700332bf0f645f6b4ce
db3872418f68874647f963f044661a292653d6b4
0149022198676c9cdd99ce6a2966be38c8e2125e44925f7bcd8181dc7a6d6cdd
GET /rsrc.php/v3iLl54/yI/l/en_US/cDcOw13Y5VI.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Thu, 11 Jan 2024 16:29:42 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: YXg1M5CGxwAzK/D2Rfa0zg==
x-fb-debug: AaZ18QDFbAUhTinTQsTK0gy6am4bazxMlUJ50OgUPWBzyBtCxmlsybABnrJJ1hTri9VqLSJY9HArSgMTsFQx8w==
priority: u=3,i
content-length: 5459
x-fb-trip-id: 1904183273
date: Tue, 17 Jan 2023 02:06:06 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/yf/r/b-I-aK9MNQH.js?_nc_x=Ij3Wp8lg5Kz
31.13.72.12200 OK 56 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/yf/r/b-I-aK9MNQH.js?_nc_x=Ij3Wp8lg5Kz
IP 31.13.72.12:0
File type ASCII text, with very long lines (48918)
Hash a35ea2c816a7c919b26fb9213189e262
b23b313d5d1c82f72874acbf48d880570e37e1af
dd5c2ad1d1218355e0c7c772cd9fae89a3b628d4c9b6c1588f7a904e57c02f2c
GET /rsrc.php/v3/yf/r/b-I-aK9MNQH.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Sat, 13 Jan 2024 22:47:11 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
origin-agent-cluster: ?0
content-md5: o16iyBanyRmyb7khMYniYg==
x-fb-debug: Ntun3PNGHAlCDug+VOcwkvllfX3hN2xI/Ef8YYnZoRjLW+yU00BmiEmJZQM8TcUsXDkC7SECCyNlVMWvSLP9GA==
content-length: 56414
x-fb-trip-id: 1904183273
date: Tue, 17 Jan 2023 02:06:06 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/yN/r/elvGmxOyMJZ.js?_nc_x=Ij3Wp8lg5Kz
31.13.72.12200 OK 1.7 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/yN/r/elvGmxOyMJZ.js?_nc_x=Ij3Wp8lg5Kz
IP 31.13.72.12:0
File type ASCII text, with very long lines (3744)
Hash 1d528b587346b24d7e36f3881c2d6a77
9e92e6b415c50f4882ba7e0dd65ff6ee31091bb6
89c5f78d73cde32bff1a97a0e9ff383400e282d0d3473d267132a5000abd28c3
GET /rsrc.php/v3/yN/r/elvGmxOyMJZ.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Thu, 11 Jan 2024 16:28:03 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: HVKLWHNGsk1+NvOIHC1qdw==
x-fb-debug: JkYANgf6gtTPOpXLfWvHrVuqHrAo9h1+7F4Ryj0+ZUuacEoAMLL23v8khOPcKk5wU0jfoR9hJe3DTUEjj3x++Q==
priority: u=3,i
content-length: 1728
x-fb-trip-id: 1904183273
date: Tue, 17 Jan 2023 02:06:06 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/yY/r/7Nmln25n6YE.js?_nc_x=Ij3Wp8lg5Kz
31.13.72.12200 OK 7.2 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/yY/r/7Nmln25n6YE.js?_nc_x=Ij3Wp8lg5Kz
IP 31.13.72.12:0
File type ASCII text, with very long lines (4057)
Hash 7cb89797cea2a84b948dfae53d0c90d4
312bdda4ae1efe3ab71fb0aec473ddc725627f5b
9093dc3e084b6a216b34c7a603eae5a93f793dc5b0a606ccb0da051d5aa12cd4
GET /rsrc.php/v3/yY/r/7Nmln25n6YE.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Fri, 05 Jan 2024 15:15:31 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: fLiXl86iqEuUjfrlPQyQ1A==
x-fb-debug: cl40gEC1ZtAKyoVpnGc0zn50W0PD9hiifpb4uBDjdg1rXUi5u5kP1HrZndGp48rS37CNF1AERI6d1IvjupD8fQ==
priority: u=3,i
content-length: 7199
x-fb-trip-id: 1904183273
date: Tue, 17 Jan 2023 02:06:06 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
www.facebook.com/plugins/page.php?href=https%3A%2F%2Fwww.facebook.com%2Felantex.com.tw&tabs=timeline&width=500&height=400&small_header=true&adapt_container_width=true&hide_cover=false&show_facepile=true&appId
31.13.72.36200 OK 18 kB URL HTTP/2 www.facebook.com/plugins/page.php?href=https%3A%2F%2Fwww.facebook.com%2Felantex.com.tw&tabs=timeline&width=500&height=400&small_header=true&adapt_container_width=true&hide_cover=false&show_facepile=true&appId
IP 31.13.72.36:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (18396)
Hash 1df543c33b5e1a3716fb903931a8ce7c
37012f995a245b07edb4c0963e9434fcc261c6b2
7ef2b360899e307d84d7de564550f66c77a59c4fbb6bccefb52f6057db35bab4
GET /plugins/page.php?href=https%3A%2F%2Fwww.facebook.com%2Felantex.com.tw&tabs=timeline&width=500&height=400&small_header=true&adapt_container_width=true&hide_cover=false&show_facepile=true&appId HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://elantex.com.tw/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: br
report-to: {"max_age":259200,"endpoints":[{"url":"https:\/\/www.facebook.com\/ajax\/browser_error_reports\/?device_level=unknown"}]}
content-security-policy-report-only: default-src data: blob: 'self' https://*.fbsbx.com 'unsafe-inline' *.facebook.com 'unsafe-eval' *.fbcdn.net;script-src *.facebook.com *.fbcdn.net *.facebook.net *.google-analytics.com *.google.com 127.0.0.1:* 'unsafe-inline' 'unsafe-eval' blob: data: 'self' connect.facebook.net;style-src fonts.googleapis.com *.fbcdn.net data: *.facebook.com 'unsafe-inline';connect-src *.facebook.com facebook.com *.fbcdn.net *.facebook.net wss://*.facebook.com:* wss://*.whatsapp.com:* wss://*.fbcdn.net attachment.fbsbx.com ws://localhost:* blob: *.cdninstagram.com 'self' http://localhost:3103 wss://gateway.facebook.com wss://edge-chat.facebook.com wss://snaptu-d.facebook.com wss://kaios-d.facebook.com/ v.whatsapp.net *.fbsbx.com *.fb.com;font-src data: *.gstatic.com *.facebook.com *.fbcdn.net *.fbsbx.com;img-src *.fbcdn.net *.facebook.com data: https://*.fbsbx.com *.tenor.co media.tenor.com facebook.com *.cdninstagram.com fbsbx.com fbcdn.net *.giphy.com connect.facebook.net *.carriersignal.info blob: android-webview-video-poster: googleads.g.doubleclick.net www.googleadservices.com *.whatsapp.net *.fb.com *.oculuscdn.com;media-src *.cdninstagram.com blob: *.fbcdn.net *.fbsbx.com www.facebook.com *.facebook.com https://*.giphy.com data:;frame-src *.doubleclick.net *.google.com *.facebook.com www.googleadservices.com *.fbsbx.com fbsbx.com data: www.instagram.com *.fbcdn.net https://paywithmybank.com https://sandbox.paywithmybank.com;worker-src blob: *.facebook.com data:;report-uri https://www.facebook.com/csp/reporting/?minimize=0;
content-security-policy: default-src data: blob: 'self' https://*.fbsbx.com 'unsafe-inline' *.facebook.com 'unsafe-eval' *.fbcdn.net;script-src *.facebook.com *.fbcdn.net *.facebook.net *.google-analytics.com *.google.com 127.0.0.1:* 'unsafe-inline' 'unsafe-eval' blob: data: 'self' connect.facebook.net;style-src fonts.googleapis.com *.fbcdn.net data: *.facebook.com 'unsafe-inline';connect-src *.facebook.com facebook.com *.fbcdn.net *.facebook.net wss://*.facebook.com:* wss://*.whatsapp.com:* wss://*.fbcdn.net attachment.fbsbx.com ws://localhost:* blob: *.cdninstagram.com 'self' http://localhost:3103 wss://gateway.facebook.com wss://edge-chat.facebook.com wss://snaptu-d.facebook.com wss://kaios-d.facebook.com/ v.whatsapp.net *.fbsbx.com *.fb.com;font-src data: *.gstatic.com *.facebook.com *.fbcdn.net *.fbsbx.com;img-src *.fbcdn.net *.facebook.com data: https://*.fbsbx.com *.tenor.co media.tenor.com facebook.com *.cdninstagram.com fbsbx.com fbcdn.net *.giphy.com connect.facebook.net *.carriersignal.info blob: android-webview-video-poster: googleads.g.doubleclick.net www.googleadservices.com *.whatsapp.net *.fb.com *.oculuscdn.com;media-src *.cdninstagram.com blob: *.fbcdn.net *.fbsbx.com www.facebook.com *.facebook.com https://*.giphy.com data:;frame-src *.doubleclick.net *.google.com *.facebook.com www.googleadservices.com *.fbsbx.com fbsbx.com data: www.instagram.com *.fbcdn.net https://paywithmybank.com https://sandbox.paywithmybank.com;worker-src blob: *.facebook.com data:;block-all-mixed-content;upgrade-insecure-requests;
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-opener-policy: unsafe-none
pragma: no-cache
cache-control: private, no-cache, no-store, must-revalidate
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
strict-transport-security: max-age=15552000; preload
content-type: text/html; charset="utf-8"
x-fb-debug: OL9Bltfgk0EIkFvCnb63Fi23YkooaPmbsjFTxevbUasCzrPbQzeTK7n8Jo3qsPDG603Y2M1eGAmqaImR7b99QQ==
date: Tue, 17 Jan 2023 02:06:06 GMT
priority: u=3,i
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 6a0c99efce2ba7294ef4b88e9810c411
90e325963c1355d4c2ab6500689850a2df4c419f
957f138460650b9cecf197fb62ec2b92fae42eb5d9d431a348f8f518470612c8
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 17 Jan 2023 02:06:06 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
static.xx.fbcdn.net/rsrc.php/v3/yP/l/0,cross/xsN6JIYgazd.css?_nc_x=Ij3Wp8lg5Kz
31.13.72.12200 OK 958 B URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/yP/l/0,cross/xsN6JIYgazd.css?_nc_x=Ij3Wp8lg5Kz
IP 31.13.72.12:0
File type ASCII text, with very long lines (724)
Hash 81752febb4670fe39e924651c5ebbff4
069417df8a8766e33387e04bd1b9deada6c15d3c
e1aa8f181095d12034cba9c6729b3961ffacae8a22ab372044fb6f5fca57adc3
GET /rsrc.php/v3/yP/l/0,cross/xsN6JIYgazd.css?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-encoding: br
content-type: text/css; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Tue, 16 Jan 2024 20:10:12 GMT
cache-control: public,max-age=31536000,immutable
timing-allow-origin: *
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
x-fb-rlafr: 0
content-md5: gXUv67RnD+OekkZRxeu/9A==
x-fb-debug: Pq8NUuf/D3s0SXCeAA4KWvqvTC8+DPLzmeq2D65VwaPhiFOQAIwEeVjv/NRUHk/t40F9dRPxp6NpnqjlYJBJ9w==
content-length: 958
x-fb-trip-id: 1904183273
date: Tue, 17 Jan 2023 02:06:06 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/yU/r/M2ZZRWt52Bh.js?_nc_x=Ij3Wp8lg5Kz
31.13.72.12200 OK 1.7 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/yU/r/M2ZZRWt52Bh.js?_nc_x=Ij3Wp8lg5Kz
IP 31.13.72.12:0
File type ASCII text, with very long lines (1984)
Hash 16149e26844b91800f7553c3fdbefd8f
5f5f2151c0c843cde313ff064e542c9ae6f5e775
e2435dd2741f217ea7d1394c443b9b521682cf9857daed8eebc7ceecc9fb4075
GET /rsrc.php/v3/yU/r/M2ZZRWt52Bh.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Sun, 14 Jan 2024 16:52:29 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
origin-agent-cluster: ?0
content-md5: FhSeJoRLkYAPdVPD/b79jw==
x-fb-debug: Zi8s4/W4l261PiaPucxMVetvLpcIGQUZKrHpieCKzRAvBW6HOxJ9ln76dLvHN+WDEThIWIGNCkH6ktI4HaLrNg==
priority: u=3,i
content-length: 1739
x-fb-trip-id: 1904183273
date: Tue, 17 Jan 2023 02:06:06 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/y6/r/8LoDHCcRMmF.js?_nc_x=Ij3Wp8lg5Kz
31.13.72.12200 OK 12 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/y6/r/8LoDHCcRMmF.js?_nc_x=Ij3Wp8lg5Kz
IP 31.13.72.12:0
File type ASCII text, with very long lines (5542)
Hash 1ad15afc034f310427c81b0759603a2b
e5efd1d029dccf5fa8128c84aadb6544a4ab60e0
fedf63f655f9eef24c517c3d6762fb07b142213ba623d4a0b06614fb5d9754bd
GET /rsrc.php/v3/y6/r/8LoDHCcRMmF.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Fri, 05 Jan 2024 02:24:37 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: GtFa/ANPMQQnyBsHWWA6Kw==
x-fb-debug: 91kRfmXwcjQQ4mUmZi/yW2sGHxr/S/1TTokeEC5U4n0HmjT/BpSx/x9XKjTyKr5rXv67hfpO72Orl/eZl8CHcg==
priority: u=3,i
content-length: 12334
x-fb-trip-id: 1904183273
date: Tue, 17 Jan 2023 02:06:06 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 1b2e51abfd12507b00ebd8b7afda6308
4d3d5fa49e007714dd37da7da25d9d490d05bd0a
85a04d4cf987fcc2d087ab815a8d373e164a2adf2bf478e7a5c1fae3e109ba26
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 17 Jan 2023 02:06:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
elantex.com.tw/wp-content/themes/Avada/includes/lib/assets/min/js/library/fusion-parallax.js?ver=1
103.118.24.39200 OK 10 kB URL HTTP/1.1 elantex.com.tw/wp-content/themes/Avada/includes/lib/assets/min/js/library/fusion-parallax.js?ver=1
IP 103.118.24.39:0
ASN #131626 NSS INTL CO., LTD.
File type ASCII text, with very long lines (10224), with no line terminators
Hash 7d04494908ea88eb88a4b7d466ceb013
e32fcfa29ec2915dae44ce01c3dd26532edee184
51c78ebbe9072329cbcc31395c418944dc37176a09b946c46f95361cc840b6e8
GET /wp-content/themes/Avada/includes/lib/assets/min/js/library/fusion-parallax.js?ver=1 HTTP/1.1
Host: elantex.com.tw
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://elantex.com.tw/
HTTP/1.1 200 OK
Date: Tue, 17 Jan 2023 01:59:49 GMT
Server: Apache
Last-Modified: Wed, 14 Mar 2018 08:14:10 GMT
ETag: "180c444-27f0-5675af5ac9880"
Accept-Ranges: bytes
Content-Length: 10224
X-Powered-By: PleskLin
Connection: close
Content-Type: text/javascript
elantex.com.tw/wp-content/plugins/fusion-builder/assets/js/min/general/fusion-container.js?ver=1
103.118.24.39200 OK 8.9 kB URL HTTP/1.1 elantex.com.tw/wp-content/plugins/fusion-builder/assets/js/min/general/fusion-container.js?ver=1
IP 103.118.24.39:0
ASN #131626 NSS INTL CO., LTD.
File type ASCII text, with very long lines (8901), with no line terminators
Hash fde93708c7a4110c815971c3206b2e78
6b5f069df73742772a7f46a9c686669ce02843b2
fe0d31ef8735b531e95781fd703a6fa0cb449fdc85e8f059791a421112e8cbd9
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/fusion-builder/assets/js/min/general/fusion-container.js?ver=1 HTTP/1.1
Host: elantex.com.tw
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://elantex.com.tw/
HTTP/1.1 200 OK
Date: Tue, 17 Jan 2023 01:59:49 GMT
Server: Apache
Last-Modified: Wed, 14 Mar 2018 08:13:58 GMT
ETag: "178afdd-22c5-5675af4f57d80"
Accept-Ranges: bytes
Content-Length: 8901
X-Powered-By: PleskLin
Connection: close
Content-Type: text/javascript
maps.googleapis.com/maps/api/js?client=google-maps-embed&paint_origin=&libraries=geometry,search&v=3.exp&language=en_US®ion=tw&callback=onApiLoad
142.250.74.74200 OK 56 kB URL HTTP/2 maps.googleapis.com/maps/api/js?client=google-maps-embed&paint_origin=&libraries=geometry,search&v=3.exp&language=en_US®ion=tw&callback=onApiLoad
IP 142.250.74.74:0
File type ASCII text, with very long lines (2579)
Hash ba1c3d32b5eba87ca5337ad611ae118f
cb7a0bdd73caf8a0a7cb683b2e85441ca90c04c8
3407b47b958dbbec875d8b7e108e6d29aaf35e8bada36cd54d84c9f4d805d36f
GET /maps/api/js?client=google-maps-embed&paint_origin=&libraries=geometry,search&v=3.exp&language=en_US®ion=tw&callback=onApiLoad HTTP/1.1
Host: maps.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/javascript; charset=UTF-8
date: Tue, 17 Jan 2023 02:06:07 GMT
expires: Tue, 17 Jan 2023 02:36:07 GMT
cache-control: public, max-age=1800
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
content-encoding: gzip
server: mafe
content-length: 56537
x-xss-protection: 0
x-frame-options: SAMEORIGIN
server-timing: gfet4t7; dur=32
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 1b2e51abfd12507b00ebd8b7afda6308
4d3d5fa49e007714dd37da7da25d9d490d05bd0a
85a04d4cf987fcc2d087ab815a8d373e164a2adf2bf478e7a5c1fae3e109ba26
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 17 Jan 2023 02:06:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
elantex.com.tw/wp-content/plugins/fusion-builder/assets/js/min/library/jquery.countTo.js?ver=1
103.118.24.39200 OK 953 B URL HTTP/1.1 elantex.com.tw/wp-content/plugins/fusion-builder/assets/js/min/library/jquery.countTo.js?ver=1
IP 103.118.24.39:0
ASN #131626 NSS INTL CO., LTD.
File type ASCII text, with very long lines (953), with no line terminators
Hash 0843a482dafd4d1201ee5c115f032d76
86b3a63052fd2e686e737c1fecf2deb2338171d1
bca73eb7e5286c6b97bfc76d4a6ca97ce722843a1ec6d3cbacf9a19833394eeb
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/fusion-builder/assets/js/min/library/jquery.countTo.js?ver=1 HTTP/1.1
Host: elantex.com.tw
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://elantex.com.tw/
HTTP/1.1 200 OK
Date: Tue, 17 Jan 2023 01:59:49 GMT
Server: Apache
Last-Modified: Wed, 14 Mar 2018 08:13:58 GMT
ETag: "178c4de-3b9-5675af4f57d80"
Accept-Ranges: bytes
Content-Length: 953
X-Powered-By: PleskLin
Connection: close
Content-Type: text/javascript
elantex.com.tw/wp-content/themes/Avada/includes/lib/assets/min/js/library/jquery.appear.js?ver=1
103.118.24.39200 OK 3.0 kB URL HTTP/1.1 elantex.com.tw/wp-content/themes/Avada/includes/lib/assets/min/js/library/jquery.appear.js?ver=1
IP 103.118.24.39:0
ASN #131626 NSS INTL CO., LTD.
File type ASCII text, with very long lines (3004), with no line terminators
Hash e0891d49fdec1124a170ff6595e670fa
ff38c2392f4aede4f76466213823f75d36a9a208
08370201daee47824e2271d06f0300abe6dffa78df2a5913eae613bc9f375bcd
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/Avada/includes/lib/assets/min/js/library/jquery.appear.js?ver=1 HTTP/1.1
Host: elantex.com.tw
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://elantex.com.tw/
HTTP/1.1 200 OK
Date: Tue, 17 Jan 2023 01:59:49 GMT
Server: Apache
Last-Modified: Wed, 14 Mar 2018 08:14:10 GMT
ETag: "180c482-bbc-5675af5ac9880"
Accept-Ranges: bytes
Content-Length: 3004
X-Powered-By: PleskLin
Connection: close
Content-Type: text/javascript
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 8b4c80fca9a7bc1b84369cdb60024668
91427b4fd16fa613fb83f053b271f00396b36e90
07bb6c4b267a5f46a15cca9ad9644ca38af67daa1448ad67f583f58e3c8dfcc1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 17 Jan 2023 02:06:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 8b4c80fca9a7bc1b84369cdb60024668
91427b4fd16fa613fb83f053b271f00396b36e90
07bb6c4b267a5f46a15cca9ad9644ca38af67daa1448ad67f583f58e3c8dfcc1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 17 Jan 2023 02:06:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
maps.gstatic.com/maps-api-v3/embed/js/51/5/init_embed.js
142.250.74.3200 OK 70 kB URL HTTP/2 maps.gstatic.com/maps-api-v3/embed/js/51/5/init_embed.js
IP 142.250.74.3:0
File type ASCII text, with very long lines (2599)
Hash 3b38dae0a22ba85304bbd1ccc52f824f
7e7fc5d0a6497b36fb61f41c27d6c45809a78a96
45c770bc2fad26fe42afed3baabed5fe1e2557e2942fdd2a97d0f5c675137cea
GET /maps-api-v3/embed/js/51/5/init_embed.js HTTP/1.1
Host: maps.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding, Origin
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/maps-api-js
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="maps-api-js"
report-to: {"group":"maps-api-js","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/maps-api-js"}]}
content-length: 70281
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 11 Jan 2023 18:55:06 GMT
expires: Thu, 11 Jan 2024 18:55:06 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 11 Jan 2023 03:06:00 GMT
content-type: text/javascript
age: 457861
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 8b4c80fca9a7bc1b84369cdb60024668
91427b4fd16fa613fb83f053b271f00396b36e90
07bb6c4b267a5f46a15cca9ad9644ca38af67daa1448ad67f583f58e3c8dfcc1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 17 Jan 2023 02:06:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
elantex.com.tw/wp-content/plugins/fusion-builder/assets/js/min/general/fusion-counters-circle.js?ver=1
103.118.24.39200 OK 3.4 kB URL HTTP/1.1 elantex.com.tw/wp-content/plugins/fusion-builder/assets/js/min/general/fusion-counters-circle.js?ver=1
IP 103.118.24.39:0
ASN #131626 NSS INTL CO., LTD.
File type ASCII text, with very long lines (3370), with no line terminators
Hash c4f88dc81376e3e6ccfca826d4cf4398
de1ef496fc44babdc8be7f14ce92226f674fdc5d
ccd7364c80e1098828df20eb4d4958754b238a3919140e690fdbd8eeae746e14
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/fusion-builder/assets/js/min/general/fusion-counters-circle.js?ver=1 HTTP/1.1
Host: elantex.com.tw
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://elantex.com.tw/
HTTP/1.1 200 OK
Date: Tue, 17 Jan 2023 01:59:49 GMT
Server: Apache
Last-Modified: Wed, 14 Mar 2018 08:13:58 GMT
ETag: "178b068-d2a-5675af4f57d80"
Accept-Ranges: bytes
Content-Length: 3370
X-Powered-By: PleskLin
Connection: close
Content-Type: text/javascript
elantex.com.tw/wp-content/plugins/fusion-builder/assets/js/min/general/fusion-content-boxes.js?ver=1
103.118.24.39200 OK 4.2 kB URL HTTP/1.1 elantex.com.tw/wp-content/plugins/fusion-builder/assets/js/min/general/fusion-content-boxes.js?ver=1
IP 103.118.24.39:0
ASN #131626 NSS INTL CO., LTD.
File type ASCII text, with very long lines (4165), with no line terminators
Hash 9c8d1efe55973d0cfcb167116719fd46
359eeffae4cf2e09338dc900c3b3f0a7c6824853
a292e5daa9afd80451de80dad9079f8ead08a28ec03967b98a7e5dea02fa3cb7
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/fusion-builder/assets/js/min/general/fusion-content-boxes.js?ver=1 HTTP/1.1
Host: elantex.com.tw
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://elantex.com.tw/
HTTP/1.1 200 OK
Date: Tue, 17 Jan 2023 01:59:49 GMT
Server: Apache
Last-Modified: Wed, 14 Mar 2018 08:13:58 GMT
ETag: "178b000-1045-5675af4f57d80"
Accept-Ranges: bytes
Content-Length: 4165
X-Powered-By: PleskLin
Connection: close
Content-Type: text/javascript
elantex.com.tw/wp-content/plugins/fusion-builder/assets/js/min/general/fusion-gallery.js?ver=1
103.118.24.39200 OK 516 B URL HTTP/1.1 elantex.com.tw/wp-content/plugins/fusion-builder/assets/js/min/general/fusion-gallery.js?ver=1
IP 103.118.24.39:0
ASN #131626 NSS INTL CO., LTD.
File type ASCII text, with very long lines (516), with no line terminators
Hash a603a85fa1f135722e7acb4e77375ed8
6d28f7fd332eb5a7279dd4ae45b43f65ac86b27e
cfba19f5c1e6f2ac19ef4bf6875f6a8d64123675754f940514bd16bcf9bc79b9
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/fusion-builder/assets/js/min/general/fusion-gallery.js?ver=1 HTTP/1.1
Host: elantex.com.tw
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://elantex.com.tw/
HTTP/1.1 200 OK
Date: Tue, 17 Jan 2023 01:59:49 GMT
Server: Apache
Last-Modified: Wed, 14 Mar 2018 08:13:58 GMT
ETag: "178b0f7-204-5675af4f57d80"
Accept-Ranges: bytes
Content-Length: 516
X-Powered-By: PleskLin
Connection: close
Content-Type: text/javascript
elantex.com.tw/wp-content/plugins/fusion-builder/assets/js/min/general/fusion-flip-boxes.js?ver=1
103.118.24.39200 OK 1.4 kB URL HTTP/1.1 elantex.com.tw/wp-content/plugins/fusion-builder/assets/js/min/general/fusion-flip-boxes.js?ver=1
IP 103.118.24.39:0
ASN #131626 NSS INTL CO., LTD.
File type ASCII text, with very long lines (1387), with no line terminators
Hash 235be87421e9ae508b25e836b58ff275
946ccd17a141c12399e9a5557082e7a5cec6c231
f314fd879fdc92a178262bbc45d3efa8f58a9d721441469f6a2523a91e50ad17
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/fusion-builder/assets/js/min/general/fusion-flip-boxes.js?ver=1 HTTP/1.1
Host: elantex.com.tw
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://elantex.com.tw/
HTTP/1.1 200 OK
Date: Tue, 17 Jan 2023 01:59:49 GMT
Server: Apache
Last-Modified: Wed, 14 Mar 2018 08:13:58 GMT
ETag: "178b0cc-56b-5675af4f57d80"
Accept-Ranges: bytes
Content-Length: 1387
X-Powered-By: PleskLin
Connection: close
Content-Type: text/javascript
elantex.com.tw/wp-content/plugins/fusion-builder/assets/js/min/general/fusion-counters-box.js?ver=1
103.118.24.39200 OK 927 B URL HTTP/1.1 elantex.com.tw/wp-content/plugins/fusion-builder/assets/js/min/general/fusion-counters-box.js?ver=1
IP 103.118.24.39:0
ASN #131626 NSS INTL CO., LTD.
File type ASCII text, with very long lines (927), with no line terminators
Hash 0267e1eb930e591058fc562ba1707e7a
b06dc74570adc02f612624cbeea21261ad5ce272
d46f5d3929dcd0bb2f4d4730c4a70bd083a51f50137318be486606c215161acb
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/fusion-builder/assets/js/min/general/fusion-counters-box.js?ver=1 HTTP/1.1
Host: elantex.com.tw
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://elantex.com.tw/
HTTP/1.1 200 OK
Date: Tue, 17 Jan 2023 01:59:49 GMT
Server: Apache
Last-Modified: Wed, 14 Mar 2018 08:13:58 GMT
ETag: "178b065-39f-5675af4f57d80"
Accept-Ranges: bytes
Content-Length: 927
X-Powered-By: PleskLin
Connection: close
Content-Type: text/javascript
elantex.com.tw/wp-content/themes/Avada/includes/lib/assets/min/js/library/jquery.fusion_maps.js?ver=2.2.2
103.118.24.39200 OK 5.7 kB URL HTTP/1.1 elantex.com.tw/wp-content/themes/Avada/includes/lib/assets/min/js/library/jquery.fusion_maps.js?ver=2.2.2
IP 103.118.24.39:0
ASN #131626 NSS INTL CO., LTD.
File type ASCII text, with very long lines (5702), with no line terminators
Hash a061c94d99ae48d64ac8b69e44c45fca
7f4944a321dadb88ad5ac5f97fe3515833671557
c1902ce8673021d96450d794b85e1805480417d2bc588282c8fe84698038e210
GET /wp-content/themes/Avada/includes/lib/assets/min/js/library/jquery.fusion_maps.js?ver=2.2.2 HTTP/1.1
Host: elantex.com.tw
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://elantex.com.tw/
HTTP/1.1 200 OK
Date: Tue, 17 Jan 2023 01:59:49 GMT
Server: Apache
Last-Modified: Wed, 14 Mar 2018 08:14:10 GMT
ETag: "180c497-1646-5675af5ac9880"
Accept-Ranges: bytes
Content-Length: 5702
X-Powered-By: PleskLin
Connection: close
Content-Type: text/javascript
elantex.com.tw/wp-content/themes/Avada/includes/lib/assets/min/js/general/fusion-google-map.js?ver=1
103.118.24.39200 OK 325 B URL HTTP/1.1 elantex.com.tw/wp-content/themes/Avada/includes/lib/assets/min/js/general/fusion-google-map.js?ver=1
IP 103.118.24.39:0
ASN #131626 NSS INTL CO., LTD.
File type ASCII text, with very long lines (325), with no line terminators
Hash 532e8cb133c6a914587cbe969c6b96a6
4b4a48e764af0dd78725a61aa8f0d00c7800966d
4a768695e2001c056e6f8f20f4904e49bbd0471d060b47bbd3cf026ac74e8d5d
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/Avada/includes/lib/assets/min/js/general/fusion-google-map.js?ver=1 HTTP/1.1
Host: elantex.com.tw
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://elantex.com.tw/
HTTP/1.1 200 OK
Date: Tue, 17 Jan 2023 01:59:49 GMT
Server: Apache
Last-Modified: Wed, 14 Mar 2018 08:14:10 GMT
ETag: "180c2ae-145-5675af5ac9880"
Accept-Ranges: bytes
Content-Length: 325
X-Powered-By: PleskLin
Connection: close
Content-Type: text/javascript
elantex.com.tw/wp-content/plugins/fusion-builder/assets/js/min/general/fusion-testimonials.js?ver=1
103.118.24.39200 OK 966 B URL HTTP/1.1 elantex.com.tw/wp-content/plugins/fusion-builder/assets/js/min/general/fusion-testimonials.js?ver=1
IP 103.118.24.39:0
ASN #131626 NSS INTL CO., LTD.
File type ASCII text, with very long lines (966), with no line terminators
Hash 02c5bffad3622b3a404b8ec54cfdef71
af2680050198465604596c2658623bbc34272303
6b68a817d16e9c13300b7f9a72fb168c6ee08f770b0edb851d370276020772c1
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/fusion-builder/assets/js/min/general/fusion-testimonials.js?ver=1 HTTP/1.1
Host: elantex.com.tw
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://elantex.com.tw/
HTTP/1.1 200 OK
Date: Tue, 17 Jan 2023 01:59:49 GMT
Server: Apache
Last-Modified: Wed, 14 Mar 2018 08:13:58 GMT
ETag: "178b208-3c6-5675af4f57d80"
Accept-Ranges: bytes
Content-Length: 966
X-Powered-By: PleskLin
Connection: close
Content-Type: text/javascript
elantex.com.tw/wp-content/plugins/fusion-builder/assets/js/min/general/fusion-countdown.js?ver=1
103.118.24.39200 OK 459 B URL HTTP/1.1 elantex.com.tw/wp-content/plugins/fusion-builder/assets/js/min/general/fusion-countdown.js?ver=1
IP 103.118.24.39:0
ASN #131626 NSS INTL CO., LTD.
File type ASCII text, with very long lines (459), with no line terminators
Hash a8def58ce18e6f0f1bc3ec53362509bb
2e3367b106a96d5bcd8711ca05be5395c1f5c6c1
9716416ad2cca20454558d1c5491279517b232bb05557c939190ee6e8ce6a3ab
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/fusion-builder/assets/js/min/general/fusion-countdown.js?ver=1 HTTP/1.1
Host: elantex.com.tw
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://elantex.com.tw/
HTTP/1.1 200 OK
Date: Tue, 17 Jan 2023 01:59:50 GMT
Server: Apache
Last-Modified: Wed, 14 Mar 2018 08:13:58 GMT
ETag: "178b051-1cb-5675af4f57d80"
Accept-Ranges: bytes
Content-Length: 459
X-Powered-By: PleskLin
Connection: close
Content-Type: text/javascript
elantex.com.tw/wp-content/themes/Avada/includes/lib/assets/min/js/library/bootstrap.transition.js?ver=3.3.6
103.118.24.39200 OK 752 B URL HTTP/1.1 elantex.com.tw/wp-content/themes/Avada/includes/lib/assets/min/js/library/bootstrap.transition.js?ver=3.3.6
IP 103.118.24.39:0
ASN #131626 NSS INTL CO., LTD.
File type ASCII text, with very long lines (752), with no line terminators
Hash bcdddd9d03f5b2856f216dc44c7095a3
c8dd25b73d61cc6c90149cdfca0665e775590e42
f6524d3bc9f7ad5378a1957b540a60fe820e502ce1474bbb053d6b56e89a9102
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/Avada/includes/lib/assets/min/js/library/bootstrap.transition.js?ver=3.3.6 HTTP/1.1
Host: elantex.com.tw
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://elantex.com.tw/
HTTP/1.1 200 OK
Date: Tue, 17 Jan 2023 01:59:50 GMT
Server: Apache
Last-Modified: Wed, 14 Mar 2018 08:14:10 GMT
ETag: "180c3e5-2f0-5675af5ac9880"
Accept-Ranges: bytes
Content-Length: 752
X-Powered-By: PleskLin
Connection: close
Content-Type: text/javascript
elantex.com.tw/wp-content/themes/Avada/includes/lib/assets/min/js/library/bootstrap.tab.js?ver=3.1.1
103.118.24.39200 OK 1.5 kB URL HTTP/1.1 elantex.com.tw/wp-content/themes/Avada/includes/lib/assets/min/js/library/bootstrap.tab.js?ver=3.1.1
IP 103.118.24.39:0
ASN #131626 NSS INTL CO., LTD.
File type ASCII text, with very long lines (1495), with no line terminators
Hash 29a670d8d9f6d9945f24b00140d74887
ae0ab4cf76202735eb116eb0708de353cda2aeb8
38422528775302f2f6c4950b00d3209665aa13bd8a64727267b8b1ce50712fc9
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/Avada/includes/lib/assets/min/js/library/bootstrap.tab.js?ver=3.1.1 HTTP/1.1
Host: elantex.com.tw
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://elantex.com.tw/
HTTP/1.1 200 OK
Date: Tue, 17 Jan 2023 01:59:50 GMT
Server: Apache
Last-Modified: Wed, 14 Mar 2018 08:14:10 GMT
ETag: "180c379-5d7-5675af5ac9880"
Accept-Ranges: bytes
Content-Length: 1495
X-Powered-By: PleskLin
Connection: close
Content-Type: text/javascript
elantex.com.tw/wp-content/themes/Avada/includes/lib/assets/min/js/library/jquery.hoverintent.js?ver=1
103.118.24.39200 OK 1.1 kB URL HTTP/1.1 elantex.com.tw/wp-content/themes/Avada/includes/lib/assets/min/js/library/jquery.hoverintent.js?ver=1
IP 103.118.24.39:0
ASN #131626 NSS INTL CO., LTD.
File type ASCII text, with very long lines (1108), with no line terminators
Hash 4b495812c92e7de600e44004a18c68c8
db865fbe5638b44a3d8ff482b3eec04d41f8ed19
59d3b42550f13ce9588c415cd29d0d0624ff82f0069d4bb8e673b2dafcc987d9
GET /wp-content/themes/Avada/includes/lib/assets/min/js/library/jquery.hoverintent.js?ver=1 HTTP/1.1
Host: elantex.com.tw
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://elantex.com.tw/
HTTP/1.1 200 OK
Date: Tue, 17 Jan 2023 01:59:50 GMT
Server: Apache
Last-Modified: Wed, 14 Mar 2018 08:14:10 GMT
ETag: "180c4a0-454-5675af5ac9880"
Accept-Ranges: bytes
Content-Length: 1108
X-Powered-By: PleskLin
Connection: close
Content-Type: text/javascript
elantex.com.tw/wp-content/themes/Avada/includes/lib/assets/min/js/library/jquery.cycle.js?ver=3.0.3
103.118.24.39200 OK 26 kB URL HTTP/1.1 elantex.com.tw/wp-content/themes/Avada/includes/lib/assets/min/js/library/jquery.cycle.js?ver=3.0.3
IP 103.118.24.39:0
ASN #131626 NSS INTL CO., LTD.
File type ASCII text, with very long lines (26209), with no line terminators
Hash 8780e1353fd3f43e78d542ab90fe940d
a61985362b427fc97f12d8e43af0303ec2933809
ef01f6c9d515df0151de5d55bf3a60ea0f5b0b5387af0f602f1310851828f114
GET /wp-content/themes/Avada/includes/lib/assets/min/js/library/jquery.cycle.js?ver=3.0.3 HTTP/1.1
Host: elantex.com.tw
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://elantex.com.tw/
HTTP/1.1 200 OK
Date: Tue, 17 Jan 2023 01:59:50 GMT
Server: Apache
Last-Modified: Wed, 14 Mar 2018 08:14:10 GMT
ETag: "180c485-6661-5675af5ac9880"
Accept-Ranges: bytes
Content-Length: 26209
X-Powered-By: PleskLin
Connection: close
Content-Type: text/javascript
elantex.com.tw/wp-content/plugins/fusion-builder/assets/js/min/general/fusion-tabs.js?ver=1
103.118.24.39200 OK 4.6 kB URL HTTP/1.1 elantex.com.tw/wp-content/plugins/fusion-builder/assets/js/min/general/fusion-tabs.js?ver=1
IP 103.118.24.39:0
ASN #131626 NSS INTL CO., LTD.
File type ASCII text, with very long lines (4553), with no line terminators
Hash a3935ea33b9cb56f72db054d40616bca
75d439f42ace6ef3b5cc0833fd6f1e48a5ec3520
30fef68815f6fbd7bffaea9e3aa2a24278433e8297a36a9da39d8104b0fe8f99
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/fusion-builder/assets/js/min/general/fusion-tabs.js?ver=1 HTTP/1.1
Host: elantex.com.tw
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://elantex.com.tw/
HTTP/1.1 200 OK
Date: Tue, 17 Jan 2023 01:59:50 GMT
Server: Apache
Last-Modified: Wed, 14 Mar 2018 08:13:58 GMT
ETag: "178b1b5-11c9-5675af4f57d80"
Accept-Ranges: bytes
Content-Length: 4553
X-Powered-By: PleskLin
Connection: close
Content-Type: text/javascript
elantex.com.tw/wp-content/themes/Avada/assets/min/js/general/avada-vertical-menu-widget.js?ver=1
103.118.24.39200 OK 1.9 kB URL HTTP/1.1 elantex.com.tw/wp-content/themes/Avada/assets/min/js/general/avada-vertical-menu-widget.js?ver=1
IP 103.118.24.39:0
ASN #131626 NSS INTL CO., LTD.
File type ASCII text, with very long lines (1882), with no line terminators
Hash af78eab6b18d1d32feb36aba5eb558df
1e251edccbbea946640742444f8b8be4c5927e84
4a7b353345f28b2f6473cf4b09bd8630b109184e31e8d999ccea5d7e741e4351
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/Avada/assets/min/js/general/avada-vertical-menu-widget.js?ver=1 HTTP/1.1
Host: elantex.com.tw
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://elantex.com.tw/
HTTP/1.1 200 OK
Date: Tue, 17 Jan 2023 01:59:50 GMT
Server: Apache
Last-Modified: Wed, 14 Mar 2018 08:14:10 GMT
ETag: "180bee9-75a-5675af5ac9880"
Accept-Ranges: bytes
Content-Length: 1882
X-Powered-By: PleskLin
Connection: close
Content-Type: text/javascript
elantex.com.tw/wp-content/themes/Avada/includes/lib/assets/min/js/library/bootstrap.tooltip.js?ver=3.3.5
103.118.24.39200 OK 8.9 kB URL HTTP/1.1 elantex.com.tw/wp-content/themes/Avada/includes/lib/assets/min/js/library/bootstrap.tooltip.js?ver=3.3.5
IP 103.118.24.39:0
ASN #131626 NSS INTL CO., LTD.
File type ASCII text, with very long lines (8891), with no line terminators
Hash 80baec3cbfb43e6d67143453945cb868
7a22fbe722413a401286ab5c94330b24f32cf9e7
8fcc6c6049bb9cd7f2dd2764ace4e50eb467066e05dd5c3c3a4fd7d0bde0c154
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/Avada/includes/lib/assets/min/js/library/bootstrap.tooltip.js?ver=3.3.5 HTTP/1.1
Host: elantex.com.tw
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://elantex.com.tw/
HTTP/1.1 200 OK
Date: Tue, 17 Jan 2023 01:59:50 GMT
Server: Apache
Last-Modified: Wed, 14 Mar 2018 08:14:10 GMT
ETag: "180c381-22bb-5675af5ac9880"
Accept-Ranges: bytes
Content-Length: 8891
X-Powered-By: PleskLin
Connection: close
Content-Type: text/javascript
elantex.com.tw/wp-content/themes/Avada/includes/lib/assets/min/js/library/bootstrap.popover.js?ver=3.3.5
103.118.24.39200 OK 1.6 kB URL HTTP/1.1 elantex.com.tw/wp-content/themes/Avada/includes/lib/assets/min/js/library/bootstrap.popover.js?ver=3.3.5
IP 103.118.24.39:0
ASN #131626 NSS INTL CO., LTD.
File type ASCII text, with very long lines (1587), with no line terminators
Hash 9f93c0f9686a94726344cc92a3adbf6b
a7bbfa52e1e2ba251b992822503d6fb277c2eec7
20ab7bdc092a81b8ddc76f31895a985835df01667588c354f831a036f55e5075
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/Avada/includes/lib/assets/min/js/library/bootstrap.popover.js?ver=3.3.5 HTTP/1.1
Host: elantex.com.tw
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://elantex.com.tw/
HTTP/1.1 200 OK
Date: Tue, 17 Jan 2023 01:59:50 GMT
Server: Apache
Last-Modified: Wed, 14 Mar 2018 08:14:10 GMT
ETag: "180c36e-633-5675af5ac9880"
Accept-Ranges: bytes
Content-Length: 1587
X-Powered-By: PleskLin
Connection: close
Content-Type: text/javascript
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa4bea3a8-a37c-4400-a7fe-c935f3758bbc.jpeg
34.120.237.76200 OK 7.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa4bea3a8-a37c-4400-a7fe-c935f3758bbc.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 21f47639234f79c560d44fc1d42d6aca
56cbcaed180dd893cde9dcf3721f6b86158aca9b
a2fa6d73aee8fc0c2ef001de097b1f0e262fcfcda31f97a05912c41eea1c946b
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa4bea3a8-a37c-4400-a7fe-c935f3758bbc.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 7209
x-amzn-requestid: c3b968c0-5b08-45bf-9f58-03a1fb574e8f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: e2tm5FNqIAMFo6g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c5c2f8-28d7f6dc7fea377b3c33282b;Sampled=0
x-amzn-remapped-date: Mon, 16 Jan 2023 21:34:48 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: pQ54ou2q6Dt1SH_7zOCVwNnlKdYxbdRnAO5qICIRJ6SzjHJAPmt5GA==
via: 1.1 c34da255183aa208dd1c722ff211f9b2.cloudfront.net (CloudFront), 1.1 7eb3b782ab09047ce0d11ee03763894c.cloudfront.net (CloudFront), 1.1 google
date: Mon, 16 Jan 2023 21:56:51 GMT
age: 14957
etag: "56cbcaed180dd893cde9dcf3721f6b86158aca9b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/yT/r/Q0u73vkJqvu.js?_nc_x=Ij3Wp8lg5Kz
31.13.72.12200 OK 0 B URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/yT/r/Q0u73vkJqvu.js?_nc_x=Ij3Wp8lg5Kz
IP 31.13.72.12:0
GET /rsrc.php/v3/yT/r/Q0u73vkJqvu.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Sat, 13 Jan 2024 00:59:44 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: Pt2MW/wn6QU9jPtmBiwTsw==
x-fb-debug: 0x3NsM2ZhhiKYabOV8XNreU5GwDUrQ0QabSzdg/gl1DCMKMrpqrX2hY6yjQvmYrGyWsu4OtwDTfRop61qGTH3Q==
priority: u=2
content-length: 85027
x-fb-trip-id: 1904183273
date: Tue, 17 Jan 2023 02:06:06 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3iEpO4/yN/l/en_US/jF56mpSoBYl.js?_nc_x=Ij3Wp8lg5Kz
31.13.72.12200 OK 0 B URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3iEpO4/yN/l/en_US/jF56mpSoBYl.js?_nc_x=Ij3Wp8lg5Kz
IP 31.13.72.12:0
GET /rsrc.php/v3iEpO4/yN/l/en_US/jF56mpSoBYl.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Thu, 11 Jan 2024 17:49:16 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: +Mo6uDla+PvSU5G0RbtmcA==
x-fb-debug: bGQXl8iNte29+a+CoHLP6rYMCp4jXpAhxaCF9+gacXNruqdtAxtEEC1JIsQwFtr8H24rd/6DiEMqIgu17T+e1w==
content-length: 23510
x-fb-trip-id: 1904183273
date: Tue, 17 Jan 2023 02:06:06 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2