Report - njf.com.tw/njf/zvrffcmi/rzb/imed/public/index/imed/index.html

Report Overview

Submitted URL
njf.com.tw/njf/zvrffcmi/rzb/imed/public/index/imed/index.html
IP
125.227.104.139
ASN
#3462 Data Communication Business Group
Submitted
2022-09-10 01:49:40
Access
public
Website Title
Final URL
Tags
None
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
42

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
firefox.settings.services.mozilla.com	867	2020-06-04T22:08:41Z	2023-03-17T05:09:04Z	758 B	2.7 kB	143.204.55.36
r3.o.lencr.org	344	2020-12-02T09:52:13Z	2023-03-17T05:09:02Z	2.0 kB	5.3 kB	23.36.77.32
contile.services.mozilla.com	1114	2021-05-27T20:32:35Z	2023-03-17T05:10:35Z	321 B	229 B	34.117.237.239
status.thawte.com	5123	2017-11-27T13:33:51Z	2023-03-17T05:10:41Z	329 B	644 B	93.184.220.29
img-getpocket.cdn.mozilla.net	1631	2018-06-22T01:36:00Z	2023-03-17T05:09:15Z	3.7 kB	63 kB	34.120.237.76
ocsp.globalsign.com	2075	2012-07-20T19:46:16Z	2023-03-17T05:09:51Z	347 B	1.9 kB	104.18.20.226
www.google-analytics.com	40	2012-10-03T03:04:21Z	2023-03-17T09:19:11Z	1.2 kB	21 kB	142.250.74.174
stats.g.doubleclick.net	96	2013-06-10T22:21:11Z	2023-03-17T09:41:21Z	579 B	702 B	142.251.1.155
njf.com.tw	unknown	2017-03-04T07:33:29Z	2023-03-14T09:00:24Z	47 kB	7.1 MB	125.227.104.139
ocsp.pki.goog	175	2018-07-01T08:43:07Z	2023-03-17T05:09:22Z	3.3 kB	7.0 kB	142.250.74.3
www.gstatic.com	unknown	2016-07-26T11:37:06Z	2023-03-17T09:07:14Z	419 B	159 kB	142.250.74.163
qr-official.line.me	255822	2017-02-02T04:49:35Z	2023-03-17T08:49:01Z	389 B	157 B	147.92.146.123
fonts.googleapis.com	8877	2013-06-10T22:14:26Z	2023-03-17T09:12:35Z	379 B	746 B	142.250.74.10
content-signature-2.cdn.mozilla.net	1152	2020-11-03T13:26:46Z	2023-03-17T05:10:36Z	401 B	5.8 kB	143.204.55.35
ocsp.digicert.com	86	2012-05-21T09:02:23Z	2023-03-17T08:37:51Z	329 B	737 B	93.184.220.29
push.services.mozilla.com	2140	2014-10-24T10:27:06Z	2023-03-17T05:10:36Z	594 B	127 B	34.218.164.174
www.google.com	7	2015-05-10T13:11:19Z	2023-03-17T08:02:13Z	349 B	1.2 kB	142.250.74.164

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

Scan Date	Severity	Indicator	Alert
2022-09-10	medium	njf.com.tw/njf/zvrffcmi/rzb/imed/public/index/imed/index.html	Phishing
2022-09-10	medium	njf.com.tw/njf/zvrffcmi/rzb/imed/public/index/imed/index.html?	Phishing
2022-09-10	medium	njf.com.tw/njf	Phishing
2022-09-10	medium	njf.com.tw/njf/	Phishing
2022-09-10	medium	njf.com.tw/njf/public/wow/wow.min.js	Phishing
2022-09-10	medium	njf.com.tw/njf/public/js/widget_right_side.js	Phishing
2022-09-10	medium	njf.com.tw/njf/public/js/jquery-1.12.4.min.js	Phishing
2022-09-10	medium	njf.com.tw/njf/public/aos-master/dist/aos.js	Phishing
2022-09-10	medium	njf.com.tw/njf/public/js/bootstrap.min.js	Phishing
2022-09-10	medium	njf.com.tw/njf/public/jquery-ui-1.12.1.custom/jquery-ui.min.js	Phishing
2022-09-10	medium	njf.com.tw/njf/public/timeline-slider/js/jquery.timelinr-0.9.4.js	Phishing
2022-09-10	medium	njf.com.tw/njf/public/js/timeline-slider-custom.js	Phishing
2022-09-10	medium	njf.com.tw/njf/public/fontawesome/js/all.js	Phishing
2022-09-10	medium	njf.com.tw/njf/public/swiper-3.4.2/js/swiper.min.js	Phishing
2022-09-10	medium	njf.com.tw/njf/public//fontawesome/webfonts/fa-solid-900.woff2	Phishing
2022-09-10	medium	njf.com.tw/njf/public//fontawesome/webfonts/fa-regular-400.woff2	Phishing
2022-09-10	medium	njf.com.tw/njf/public/fonts/glyphicons-halflings-regular.woff2	Phishing
2022-09-10	medium	njf.com.tw/njf/public/css/%7B%7Basset('public/images/index/home_banner.png')%7D%7D	Phishing
2022-09-10	medium	njf.com.tw/njf/get_current_news?currentYear=2022	Phishing
2022-09-10	medium	njf.com.tw/njf/	Phishing
2022-09-10	medium	njf.com.tw/njf/public/images/NJF.ico	Phishing

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

JavaScript (18)

	URL	Size	First Seen	Last Seen
	njf.com.tw/njf/public/js/widget_right_side.js	458 B	2023-03-07	2023-03-17
Pretty URL njf.com.tw/njf/public/js/widget_right_side.js IP 125.227.104.139 ASN #3462 Data Communication Business Group Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:40:30 Last Seen2023-03-17 11:36:17 Times Seen1 Hash f44c3721e6729e097efa0a6bdcc33ec6 b529ffa4ee7314161eaa12372a0266a7645dd3f9 7cf6ba41518d1cc8775c2eb6d35c9db30019bc7d62e92ea81b72f9b06be8e8a6 Loading...

	njf.com.tw/njf/	457 B	2023-03-07	2023-03-17
Pretty URL njf.com.tw/njf/ IP 125.227.104.139 ASN #3462 Data Communication Business Group Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:40:30 Last Seen2023-03-17 11:36:17 Times Seen1 Hash 59487d9fd4803c160073b651cb5f9a11 0e1bf6572c922b3018ef99e45b271e005f669522 98a3f93ee991562b0ddf9f7adacc5cf7118fd658271d7407f159e732ae8672f0 Loading...

	njf.com.tw/njf/	147 B	2023-03-07	2023-03-17
Pretty URL njf.com.tw/njf/ IP 125.227.104.139 ASN #3462 Data Communication Business Group Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:40:30 Last Seen2023-03-17 11:36:17 Times Seen1 Hash 5f5a4b823bc19b78ffe453534b2a97de 50175df7116a90f7ae5ed1557c6e1a3e06d978d7 b80ec51b29474635c557717c4cc1daf7969c95b5d681c85a8a75b1bcca6dafa8 Loading...

	njf.com.tw/njf/	18 B	2023-03-07	2023-07-19
Pretty URL njf.com.tw/njf/ IP 125.227.104.139 ASN #3462 Data Communication Business Group Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:40:30 Last Seen2023-07-19 05:03:55 Times Seen3 Hash 95de2bed4b5d7693c050b2028bc8a8e1 47d7cbcbdebf8fb12339c2b1d73f969e878d51e0 64169e1b05b6a28aaa163830eef593a9714833a208ced8b94b69872695b139c2 Loading...

	www.google-analytics.com/analytics.js	50 kB	2023-03-07	2024-04-25
Pretty URL www.google-analytics.com/analytics.js IP 142.250.74.174 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:01 Last Seen2024-04-25 19:24:16 Times Seen842 Hash d40531c5e99a6f84e42535859476fe35 a901817d77b2fe5259c298c91bc65c54d7f8a1a9 a1925038db769477ab74b4df34350c35688a795bb718727b0f4292a4a78a6210 Loading...

	njf.com.tw/njf/public/js/jquery-1.12.4.min.js	290 kB	2023-03-07	2023-07-06
Pretty URL njf.com.tw/njf/public/js/jquery-1.12.4.min.js IP 125.227.104.139 ASN #3462 Data Communication Business Group Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:40:30 Last Seen2023-07-06 13:01:10 Times Seen4 Hash eac275563332b65bae1a3452532ebe38 f861f9abe81db5009022a6680cc41dc9cef2d8c0 c96b8b5e3be412f0091cbd1f37aeb7c6c23a0ee9a559be4b083db5f16693fed5 Loading...

	njf.com.tw/njf/public/aos-master/dist/aos.js	14 kB	2023-03-07	2024-04-26
Pretty URL njf.com.tw/njf/public/aos-master/dist/aos.js IP 125.227.104.139 ASN #3462 Data Communication Business Group Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:35:54 Last Seen2024-04-26 04:27:46 Times Seen2486 Hash a01f9089e8301e9eacfb9d029dc0ca5c 165152546121aaaf96c19418908cffe3630a2336 4460f1596174d06cca957fdaca2c71e1a377cf1d6f07ee4c75ffb3bf3fc97a03 Loading...

	njf.com.tw/njf/public/js/bootstrap.min.js	37 kB	2023-03-07	2024-04-26
Pretty URL njf.com.tw/njf/public/js/bootstrap.min.js IP 125.227.104.139 ASN #3462 Data Communication Business Group Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:54 Last Seen2024-04-26 09:58:04 Times Seen54674 Hash 5869c96cc8f19086aee625d670d741f9 430a443d74830fe9be26efca431f448c1b3740f9 53964478a7c634e8dad34ecc303dd8048d00dce4993906de1bacf67f663486ef Loading...

	njf.com.tw/njf/public/js/timeline-slider-custom.js	2.2 kB	2023-03-07	2023-03-17
Pretty URL njf.com.tw/njf/public/js/timeline-slider-custom.js IP 125.227.104.139 ASN #3462 Data Communication Business Group Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:40:30 Last Seen2023-03-17 11:36:17 Times Seen1 Hash 41ae8f78131e72c01ca9db6f3bd4d84d 30ecef063a54eacce5cf4f492c036ce5305887f7 5d1de282ba56e60f4cb4298e32bd32da11359b31bf1ab3b36b939aab8f8ac9d9 Loading...

	www.gstatic.com/recaptcha/releases/duyHVVR9Brf6N2GewjkPRfsA/recaptcha__en.js	398 kB	2023-03-07	2023-03-17
Pretty URL www.gstatic.com/recaptcha/releases/duyHVVR9Brf6N2GewjkPRfsA/recaptcha__en.js IP 142.250.74.163 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:20:45 Last Seen2023-03-17 11:40:02 Times Seen1 Hash 4ba43a63c7e907af7ec62d08348f3b9b 5cf61ea391f9788c24e9e6eb8b715bcea22ecdf6 51d9c9160f4c0e20b5a69fa1b09a8947bf74235330d522fae8217ad19c17b93b Loading...

	njf.com.tw/njf/public/wow/wow.min.js	8.4 kB	2023-03-07	2024-04-25
Pretty URL njf.com.tw/njf/public/wow/wow.min.js IP 125.227.104.139 ASN #3462 Data Communication Business Group Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:45 Last Seen2024-04-25 23:50:17 Times Seen3934 Hash 36050285bfeeb7395752f0f9bbc08273 5924f7bbbf1dfa3f0926851d01f782f23a59e805 0ec632e6ab02d4fdd514da7f5edc74aa28c9d4c71af76f1c8b93a1fba85bcc69 Loading...

	unknown	0 B	2023-03-07	2024-04-26
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:01:59 Last Seen2024-04-26 11:27:00 Times Seen37090598 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	njf.com.tw/njf/	437 B	2023-03-07	2023-03-17
Pretty URL njf.com.tw/njf/ IP 125.227.104.139 ASN #3462 Data Communication Business Group Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:40:30 Last Seen2023-03-17 11:36:17 Times Seen1 Hash a6a8e51ef849fb488798b01bda9bc259 9f98140d2bcdc3fafc8b15957b38fd8d4b855671 a7dbfc7536e4d1c3775939afe39c66976c609106801a15e773efcbef34ae3aad Loading...

	njf.com.tw/njf/	341 B	2023-03-07	2023-03-17
Pretty URL njf.com.tw/njf/ IP 125.227.104.139 ASN #3462 Data Communication Business Group Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:40:30 Last Seen2023-03-17 11:36:17 Times Seen1 Hash ae0118614d41686854ea18a162726eab 418e611baa88a75d57f7a59e75fa36d8412e1bb1 882c3ad13e7a539fe7d5e46197a945e4ac23d103c8db294cabd5a63248203aca Loading...

	njf.com.tw/njf/public/swiper-3.4.2/js/swiper.min.js	96 kB	2023-03-07	2024-04-26
Pretty URL njf.com.tw/njf/public/swiper-3.4.2/js/swiper.min.js IP 125.227.104.139 ASN #3462 Data Communication Business Group Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:17:19 Last Seen2024-04-26 10:14:50 Times Seen1571 Hash fb13ef3e875ca3497ede35d3774be9d3 ab0743a89d522438c17ae7eaf5943fd4590ee3d0 4a10219bee747aadeeda78f166d787adf32583f361f88d44b472f6f3da798083 Loading...

	njf.com.tw/njf/public/timeline-slider/js/jquery.timelinr-0.9.4.js	12 kB	2023-03-07	2023-03-17
Pretty URL njf.com.tw/njf/public/timeline-slider/js/jquery.timelinr-0.9.4.js IP 125.227.104.139 ASN #3462 Data Communication Business Group Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:40:30 Last Seen2023-03-17 11:36:17 Times Seen1 Hash 4119aa2cae3560b9f0c029406d0e173d 36ab613b2578d2918a6bfe1172c10714de37de00 47a2f2e371852ba4172c71993a1dbc1d3ec6a6a2f5d1808b2d9b684e35370e51 Loading...

	www.google.com/recaptcha/api.js	850 B	2023-03-07	2023-03-17
Pretty URL www.google.com/recaptcha/api.js IP 142.250.74.164 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:20:45 Last Seen2023-03-17 11:39:51 Times Seen1 Hash bfb9b2c928e811bf310d2b20b20a6159 270a0193cc0e9baa06e2b91fbb328ef6600eed89 80eb30ba06e2b70a0f19511af3629fd97fca51890266914fb7d3a7f743249eda Loading...

	njf.com.tw/njf/	547 B	2023-03-07	2023-03-17
Pretty URL njf.com.tw/njf/ IP 125.227.104.139 ASN #3462 Data Communication Business Group Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:40:30 Last Seen2023-03-17 11:36:17 Times Seen1 Hash b836a4e57a89902e51c938bebacf10da 98835bcd620570a9bb8b84f9ccc381f7272a2e15 3bc2ce60e6051440c34985b4f02d2c7fa5df3241ca76a4ee95e31eaacdab537d Loading...

HTTP Transactions (91)

URL IP Response Size

firefox.settings.services.mozilla.com/v1/

143.204.55.36

200 OK

939 B

URL HTTP/1.1
firefox.settings.services.mozilla.com/v1/
IP
143.204.55.36:0
ASN
#16509 AMAZON-02

File type
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
91dd975a7b17b2922dd23c0e49314e40
57a2ece1e3cee7c4ebf927f2ba92f52cac395fe2
09966873bbf317f8910c59544cfde2a6d46e8acd2905797cc7c85c6b4d18ea8a

HTTP Headers

GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Length, Content-Type, Alert, Backoff, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Sat, 10 Sep 2022 01:06:09 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 96c778ce6156d12f24b8b6cdaa0cbf66.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: LYBJmT8zykJ5KNPNr6kIW8jYZCU-by2vllzlRXYBw2RzrGmArpGcsw==
Age: 2600

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
f55e483f32b3fd50b1a2414aaada9b61
9d6b22edb98866e002e3b1ace44dfb0f8d00935f
4b09e1d2b887ded061e4ec5f82ec70ce699eeed428acc6b4fd3ef10ed9233c89

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4B09E1D2B887DED061E4EC5F82EC70CE699EEED428ACC6B4FD3EF10ED9233C89"
Last-Modified: Thu, 08 Sep 2022 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6618
Expires: Sat, 10 Sep 2022 03:39:47 GMT
Date: Sat, 10 Sep 2022 01:49:29 GMT
Connection: keep-alive

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain

143.204.55.35

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain
IP
143.204.55.35:0
ASN
#16509 AMAZON-02

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
742edb4038f38bc533514982f3d2e861
cc3a20c8dc2a8c632ef9387a2744253f1e3fdef1
b6bfa49d3d135035701231db2fffc0c0643444394009a94c6a1b4d829d6b8345

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Sat, 20 Aug 2022 23:18:05 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Fri, 09 Sep 2022 03:46:35 GMT
etag: "742edb4038f38bc533514982f3d2e861"
x-cache: Hit from cloudfront
via: 1.1 a034aae43a19aef875fa395182990970.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: uFp1IKyFwB5foX8e5A9CtaGcgGNLINMZ32yGh4_jHQTWnjkppRfCkA==
age: 79375
X-Firefox-Spdy: h2

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Sat, 10 Sep 2022 01:49:29 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

njf.com.tw/njf/zvrffcmi/rzb/imed/public/index/imed/index.html

125.227.104.139

302 Moved Temporarily

154 B

URL HTTP/1.1
njf.com.tw/njf/zvrffcmi/rzb/imed/public/index/imed/index.html
IP
125.227.104.139:0
ASN
#3462 Data Communication Business Group

File type
HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size
154 B (154 bytes)
Hash
cfbeaf604823f038b8b46f0ac862b98c
7b9eb1dac48e74fa5f418bc456cb410f88b81d98
20c1ab602462b7fc0d5b4cbd555cacf127b69a07a737579598ebcbc0f5b21319

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /njf/zvrffcmi/rzb/imed/public/index/imed/index.html HTTP/1.1
Host: njf.com.tw
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 302 Moved Temporarily
Date: Sat, 10 Sep 2022 01:49:29 GMT
Content-Type: text/html
Content-Length: 154
Connection: close
Location: https://njf.com.tw/njf/zvrffcmi/rzb/imed/public/index/imed/index.html?
Strict-Transport-Security: max-age=31536000

firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US

143.204.55.36

200 OK

329 B

URL HTTP/1.1
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
143.204.55.36:0
ASN
#16509 AMAZON-02

File type
JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size
329 B (329 bytes)
Hash
0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

HTTP Headers

GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Cache-Control: max-age=3600
Date: Sat, 10 Sep 2022 00:56:07 GMT
Expires: Sat, 10 Sep 2022 01:55:20 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 5de23153ac267c206221751e1cccb6e8.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: iyuUxlvBhQ7Tzf44FRAn54Rgy3mxOhjSKJCgO7kmBF2IQYpDSIPjxQ==
Age: 3203

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
d0c56e0b2955a5dd7f37ba4bbf5727b4
f435bd1f6fb8ec931f1817fe4b91e6b86a7cb14b
99f7da9dca677db8e9cec5491c0d6d8a86b9c5e907907c2fdd30973c747f4282

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4977
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 10 Sep 2022 01:49:30 GMT
Last-Modified: Sat, 10 Sep 2022 00:26:33 GMT
Server: ECS (ska/F70C)
X-Cache: HIT
Content-Length: 471

status.thawte.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
status.thawte.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
ab7a017e580ff571b043ff2b67e4a5f2
ec425d160a3ddfa02b6dadaf8cf638102a2ddb41
312e12dee6fba11fd111c9fdc5ad1b8104a97c822eacd3ae4ee43b577c08c8eb

HTTP Headers

POST / HTTP/1.1
Host: status.thawte.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 10 Sep 2022 01:49:30 GMT
Server: ECS (amb/6B85)
Content-Length: 471

push.services.mozilla.com/

34.218.164.174

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
34.218.164.174:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: /Kq1XzPr3C1G+roXPJAQ4w==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: eAOx6Kj1Kx2wtzpuJfbejq52+PE=

njf.com.tw/njf/zvrffcmi/rzb/imed/public/index/imed/index.html?

125.227.104.139

302 Found

332 B

URL HTTP/1.1
njf.com.tw/njf/zvrffcmi/rzb/imed/public/index/imed/index.html?
IP
125.227.104.139:0
ASN
#3462 Data Communication Business Group

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
332 B (332 bytes)
Hash
da7fd29ad81044796d86698edd24a242
7bb194700bb2b5b50b55b9fc85ff24d53b348b6f
39f69c12a747ed0664f487fdfec31c343e5ac123391fe8c9ed10435837b7d6b8

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /njf/zvrffcmi/rzb/imed/public/index/imed/index.html? HTTP/1.1
Host: njf.com.tw
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

HTTP/1.1 302 Found
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: no-cache, private
Date: Sat, 10 Sep 2022 01:49:30 GMT
Location: https://njf.com.tw/njf
Strict-Transport-Security: max-age=31536000

njf.com.tw/njf

125.227.104.139

301 Moved Permanently

178 B

URL HTTP/1.1
njf.com.tw/njf
IP
125.227.104.139:0
ASN
#3462 Data Communication Business Group

File type
HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size
178 B (178 bytes)
Hash
cd2e0e43980a00fb6a2742d3afd803b8
81ffbd1712afe8cdf138b570c0fc9934742c33c1
bd9df047d51943acc4bc6cf55d88edb5b6785a53337ee2a0f74dd521aedde87d

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /njf HTTP/1.1
Host: njf.com.tw
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

HTTP/1.1 301 Moved Permanently
Date: Sat, 10 Sep 2022 01:49:30 GMT
Content-Type: text/html
Content-Length: 178
Location: https://njf.com.tw/njf/
Connection: keep-alive
Strict-Transport-Security: max-age=31536000

njf.com.tw/njf/

125.227.104.139

200 OK

6.7 kB

URL HTTP/1.1
njf.com.tw/njf/
IP
125.227.104.139:0
ASN
#3462 Data Communication Business Group

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (499), with CRLF, LF line terminators
Size
6.7 kB (6670 bytes)
Hash
a1d2a9a1299948e5267b9dcffb7b29e5
433babf03d6a06fb04e34d69ebee8d739999f068
a7d2ad91668d37c58f947a560b2da2e728bd209369b537e5713afd4c2f7edd72

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /njf/ HTTP/1.1
Host: njf.com.tw
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: no-cache, private
Date: Sat, 10 Sep 2022 01:49:31 GMT
Set-Cookie: XSRF-TOKEN=eyJpdiI6IkNJXC9yeEFkZVNCRUJ0eTgwc2xESFNRPT0iLCJ2YWx1ZSI6Ik1yTEdmMGp4bDVHSnRuU1FhSXJqc1Qrc2JDVUljRzFQejJQdnR2Sit5cTEwdDN4N1dmVXRSMjFpakd5WnhTejciLCJtYWMiOiI1ZDM0MmE3NDgzYTZlMTM0MzE5MjY4ZWEzNmRiNzZjZmYxMjQ5NThmY2Y0ZmZlODU5NzQ1ZTA0ZWIzYTI1MzNiIn0%3D; expires=Sat, 10-Sep-2022 01:50:31 GMT; Max-Age=60; path=/
laravel_session=eyJpdiI6ImZxS0xoa1dmVGRjQXZSYWtkbXo4dWc9PSIsInZhbHVlIjoiMkVLMVpqbWJ4dngwcGtGaStkQ3JyWkFZbzNYWEU0dWVJVkdFekNRZXoxXC9yS2pZcGJTTHdYQTlJekVtWVwveitLIiwibWFjIjoiZWY5MDI2NzgwZmEyNzY0NTA4OWU1ZTEyN2JmMDNhMjA1MjExZGVkNGYxMmI0YmM3MWRiZDA1YzcxZGQzZTI4YyJ9; expires=Sat, 10-Sep-2022 01:50:31 GMT; Max-Age=60; path=/; httponly
Strict-Transport-Security: max-age=31536000
Content-Encoding: gzip

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
e0fbe5627b19e9ad7ad4d40c96514ae9
d9d361271987c5947d96ddacc67efb3f3a32bbd3
48b4321f3bda8fd67c5bc75f98b0dfe6df2bfda8dcf5e708aecd47270ae03217

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "48B4321F3BDA8FD67C5BC75F98B0DFE6DF2BFDA8DCF5E708AECD47270AE03217"
Last-Modified: Wed, 07 Sep 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3104
Expires: Sat, 10 Sep 2022 02:41:15 GMT
Date: Sat, 10 Sep 2022 01:49:31 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
e0fbe5627b19e9ad7ad4d40c96514ae9
d9d361271987c5947d96ddacc67efb3f3a32bbd3
48b4321f3bda8fd67c5bc75f98b0dfe6df2bfda8dcf5e708aecd47270ae03217

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "48B4321F3BDA8FD67C5BC75F98B0DFE6DF2BFDA8DCF5E708AECD47270AE03217"
Last-Modified: Wed, 07 Sep 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3104
Expires: Sat, 10 Sep 2022 02:41:15 GMT
Date: Sat, 10 Sep 2022 01:49:31 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
e0fbe5627b19e9ad7ad4d40c96514ae9
d9d361271987c5947d96ddacc67efb3f3a32bbd3
48b4321f3bda8fd67c5bc75f98b0dfe6df2bfda8dcf5e708aecd47270ae03217

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "48B4321F3BDA8FD67C5BC75F98B0DFE6DF2BFDA8DCF5E708AECD47270AE03217"
Last-Modified: Wed, 07 Sep 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3104
Expires: Sat, 10 Sep 2022 02:41:15 GMT
Date: Sat, 10 Sep 2022 01:49:31 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
e0fbe5627b19e9ad7ad4d40c96514ae9
d9d361271987c5947d96ddacc67efb3f3a32bbd3
48b4321f3bda8fd67c5bc75f98b0dfe6df2bfda8dcf5e708aecd47270ae03217

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "48B4321F3BDA8FD67C5BC75F98B0DFE6DF2BFDA8DCF5E708AECD47270AE03217"
Last-Modified: Wed, 07 Sep 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3104
Expires: Sat, 10 Sep 2022 02:41:15 GMT
Date: Sat, 10 Sep 2022 01:49:31 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
e0fbe5627b19e9ad7ad4d40c96514ae9
d9d361271987c5947d96ddacc67efb3f3a32bbd3
48b4321f3bda8fd67c5bc75f98b0dfe6df2bfda8dcf5e708aecd47270ae03217

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "48B4321F3BDA8FD67C5BC75F98B0DFE6DF2BFDA8DCF5E708AECD47270AE03217"
Last-Modified: Wed, 07 Sep 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3104
Expires: Sat, 10 Sep 2022 02:41:15 GMT
Date: Sat, 10 Sep 2022 01:49:31 GMT
Connection: keep-alive

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe535d149-d5c6-4543-8a5b-a5a98be48b9e.jpeg

34.120.237.76

200 OK

6.7 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe535d149-d5c6-4543-8a5b-a5a98be48b9e.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
6.7 kB (6676 bytes)
Hash
362d0931425ffa11f3287246f0480cc8
cc0f8bf63d11aeb3ea780af092523833f3b1abd3
75619cdf413b35451f109180e084a3630d0665a24b29e45510fed938d381db75

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe535d149-d5c6-4543-8a5b-a5a98be48b9e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 6676
x-amzn-requestid: 97140273-f327-4ec8-b076-cea440ce1d29
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YNi34HNxoAMF9Rg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631bb1cb-6356b02944a048db1be05d1c;Sampled=0
x-amzn-remapped-date: Fri, 09 Sep 2022 21:36:11 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 2s35YFxVMMVFBVoSTyoCp0w0ivNRYerua-rmRWXdbvtP2UHafYwUmw==
via: 1.1 0005a84c2971ff4f5bbb79e7ebc622a8.cloudfront.net (CloudFront), 1.1 1b74ccf4cb51eacf97a0e6d60ae46a3e.cloudfront.net (CloudFront), 1.1 google
date: Fri, 09 Sep 2022 22:13:18 GMT
etag: "cc0f8bf63d11aeb3ea780af092523833f3b1abd3"
content-type: image/jpeg
age: 12973
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

9.6 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9a798806-4378-4646-89ee-e50837809910.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
9.6 kB (9610 bytes)
Hash
1abac18a85802f38f08561ac64020b55
afbc7666fa0b2093ef0c5d9a955d54d139c09b30
eae7f28dd178293939ecd81082ab68ae6098bb3cb1f1fe9411c38314ddb0f944

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9a798806-4378-4646-89ee-e50837809910.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 9610
x-amzn-requestid: 34102145-abda-4987-a68d-9069496366ea
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YNj0oF7loAMF6zg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631bb350-52aee64214c814812c03262e;Sampled=0
x-amzn-remapped-date: Fri, 09 Sep 2022 21:42:40 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 91AsC8-zVFCOPHFb2qnlTev2aXzdCEDYtc68JtYYsQSKS7OFF4QzgQ==
via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 4f3feb5c4393987d42d1971d404d7cea.cloudfront.net (CloudFront), 1.1 google
date: Fri, 09 Sep 2022 22:00:27 GMT
age: 13744
etag: "afbc7666fa0b2093ef0c5d9a955d54d139c09b30"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

7.5 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd9009587-828b-4a7a-8b84-f28d4b93cdef.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
7.5 kB (7515 bytes)
Hash
60fa03262bb3728f24a4c7a8177ec788
09dcbdc6043f01dd56920cca3ce3920d0d07b795
e7448f186933f9848f1d55f0e8dba593918846d02fb9cc3a7cd86d69b96a7fde

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd9009587-828b-4a7a-8b84-f28d4b93cdef.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 7515
x-amzn-requestid: bb6a7928-9bdc-44e7-8478-b415bc504343
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YJu0bGYdoAMF5jQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631a2b4f-208339fd72e62dff4a2ba339;Sampled=0
x-amzn-remapped-date: Thu, 08 Sep 2022 17:50:07 GMT
x-amz-cf-pop: SEA73-P2
x-cache: Miss from cloudfront
x-amz-cf-id: UaU9GK4lcCuAN2WghBDa7f-21dRTA4Fh1tlAmGFMKh4wQOGZlKdmOw==
via: 1.1 4d7fa73f804f1c93f20cfc24c4b1266e.cloudfront.net (CloudFront), 1.1 e77661e211afe9242e85e573f12d5534.cloudfront.net (CloudFront), 1.1 google
date: Fri, 09 Sep 2022 21:46:20 GMT
age: 14591
etag: "09dcbdc6043f01dd56920cca3ce3920d0d07b795"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

8.7 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5e72c2e9-6d47-42ac-9514-316cd8f8f6c5.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
8.7 kB (8676 bytes)
Hash
e8f11aeba65478b039cfb4100aa23435
88db17a82ea0207ccb4826c2961875c5106b427a
6f6ec5922ec54d824e7f933de87608c5a763da119ae9461d99c6525649b1a9af

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5e72c2e9-6d47-42ac-9514-316cd8f8f6c5.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 8676
x-amzn-requestid: 64a58aa8-8321-4c91-98fe-dbf97996c513
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YNiuZEjnIAMFRFg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631bb18f-77b635593b202d7d3cd0ac84;Sampled=0
x-amzn-remapped-date: Fri, 09 Sep 2022 21:35:11 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P2
x-cache: Hit from cloudfront
x-amz-cf-id: VWwNSpFvcDq3nrn91QvYjrJX5hLjp96vrKgZzR-pOdrdHx7MlcagGQ==
via: 1.1 41e349e25dc4bc856d0e5d2c162428a0.cloudfront.net (CloudFront), 1.1 d1d67b07408bba8c682597d8303642e2.cloudfront.net (CloudFront), 1.1 google
date: Fri, 09 Sep 2022 21:56:34 GMT
age: 13977
etag: "88db17a82ea0207ccb4826c2961875c5106b427a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

2.5 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbfb49483-577b-4413-86f1-41eeb2d7b540.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
2.5 kB (2524 bytes)
Hash
e3a2c5db656aab4f88ddadd8fa742b4c
78c0d3df42ec5ae34ad62430b6c4794e03fd411e
8818edbe7edbcbc7a46b49d8820851779d4d6c18a1d5cc4fa8234b2ba355a495

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbfb49483-577b-4413-86f1-41eeb2d7b540.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 2524
x-amzn-requestid: 2db0d0d7-4d18-464f-8c23-f12d5448fb47
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YNkCsE7toAMF9xA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631bb3aa-490eb8124b8f16fb747308fa;Sampled=0
x-amzn-remapped-date: Fri, 09 Sep 2022 21:44:10 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: spKSoFyyBJFS0Lchq49Ewa7tnd4CK3b-0a0rSlpDugQMpMkvEYIgrg==
via: 1.1 26ca01ec7377e425b59b6a08cb1ec342.cloudfront.net (CloudFront), 1.1 5565a51537c689d1d16f6b4d41f40082.cloudfront.net (CloudFront), 1.1 google
date: Fri, 09 Sep 2022 22:00:37 GMT
etag: "78c0d3df42ec5ae34ad62430b6c4794e03fd411e"
content-type: image/jpeg
age: 13734
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

11 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1cb41144-803c-4f52-8cbe-27da96acb450.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
11 kB (11021 bytes)
Hash
6759bd6c847ff8f62b279887f56ba080
45cd3f2951313d0c4beff490753b228e998caa30
8c4edb4b6edb6017f147979c042c47934d2e3f010b5b6d0ab028192ff7dfb75f

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1cb41144-803c-4f52-8cbe-27da96acb450.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 11021
x-amzn-requestid: 392c7c93-2ad3-4bd5-80ab-9d75a8acad55
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YNi3rEU3IAMFhPw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631bb1ca-22e319dc24a7c8e66e02c34d;Sampled=0
x-amzn-remapped-date: Fri, 09 Sep 2022 21:36:10 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: qsKfDwoUdkIl0kArTkAWb7v_lDRNnRPxSfV8x7W_FEElCqYx8fwhJw==
via: 1.1 f13aef0c4b52f6f681401f232d03eb68.cloudfront.net (CloudFront), 1.1 760139201585481b26f947c5f776103a.cloudfront.net (CloudFront), 1.1 google
date: Fri, 09 Sep 2022 22:06:13 GMT
age: 13398
etag: "45cd3f2951313d0c4beff490753b228e998caa30"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
e66743a6c60c1181d7f47c7f748ddfa3
97e333fac41fce213aeda4a42c79b0c5077e26c0
498cbdcbc5fed75df7e4974b21f3be66580dd169b8c82e76c69a823567e27ab6

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 10 Sep 2022 01:49:31 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
f1fa8224847ea7d9b4dc8e598fae4142
cb703a2944e58d97dd48a7e56ee9f4510ced78b4
920094aad2886535e2ba9e38d4731f63fbde93038d92b38f0030b0a0f47c2ac8

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 10 Sep 2022 01:49:31 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.google.com/recaptcha/api.js

142.250.74.164

200 OK

553 B

URL HTTP/2
www.google.com/recaptcha/api.js
IP
142.250.74.164:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (850), with no line terminators
Size
553 B (553 bytes)
Hash
528455474b03fa8ad71a558347e43fe1
597b34487415fa60028f80afd7ab2cf27383ace5
af9ee6f9ce7bd44e5dbbfcab2a528e062f9dec4640a98a396170d46c494dafb5

HTTP Headers

GET /recaptcha/api.js HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://njf.com.tw/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
expires: Sat, 10 Sep 2022 01:49:31 GMT
date: Sat, 10 Sep 2022 01:49:31 GMT
cache-control: private, max-age=300
content-type: text/javascript; charset=UTF-8
cross-origin-resource-policy: cross-origin
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
content-length: 553
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
90af7f9fc306540e02535db3d00dca64
9e05b003b35ed57277b6b295adde93add7c41b0b
64abd990305ef3f25ffb3fb2ccae04b76e178375752ecb2020411df8f7974fcf

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 10 Sep 2022 01:49:31 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
f1fa8224847ea7d9b4dc8e598fae4142
cb703a2944e58d97dd48a7e56ee9f4510ced78b4
920094aad2886535e2ba9e38d4731f63fbde93038d92b38f0030b0a0f47c2ac8

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 10 Sep 2022 01:49:31 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.globalsign.com/gsrsaovsslca2018

104.18.20.226

200 OK

1.4 kB

URL HTTP/1.1
ocsp.globalsign.com/gsrsaovsslca2018
IP
104.18.20.226:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
1.4 kB (1432 bytes)
Hash
7ef750a3566f4415eefbbe6f9d65fc64
47306c4151014fc7a58923362a9fe67e134ef11d
4dc29354ed22e705c362b16223b5a44aa3dd4841f4840bf3459a2b64defb474a

HTTP Headers

POST /gsrsaovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sat, 10 Sep 2022 01:49:32 GMT
Content-Type: application/ocsp-response
Content-Length: 1432
Connection: keep-alive
Expires: Tue, 13 Sep 2022 23:28:42 GMT
ETag: "47306c4151014fc7a58923362a9fe67e134ef11d"
Last-Modified: Fri, 09 Sep 2022 23:28:43 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 1836
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 748481f3a862b527-OSL

njf.com.tw/njf/public/wow/wow.min.js

125.227.104.139

200 OK

8.4 kB

URL HTTP/1.1
njf.com.tw/njf/public/wow/wow.min.js
IP
125.227.104.139:0
ASN
#3462 Data Communication Business Group

File type
ASCII text, with very long lines (8385)
Size
8.4 kB (8415 bytes)
Hash
36050285bfeeb7395752f0f9bbc08273
5924f7bbbf1dfa3f0926851d01f782f23a59e805
0ec632e6ab02d4fdd514da7f5edc74aa28c9d4c71af76f1c8b93a1fba85bcc69

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /njf/public/wow/wow.min.js HTTP/1.1
Host: njf.com.tw
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://njf.com.tw/njf/
Cookie: XSRF-TOKEN=eyJpdiI6IkNJXC9yeEFkZVNCRUJ0eTgwc2xESFNRPT0iLCJ2YWx1ZSI6Ik1yTEdmMGp4bDVHSnRuU1FhSXJqc1Qrc2JDVUljRzFQejJQdnR2Sit5cTEwdDN4N1dmVXRSMjFpakd5WnhTejciLCJtYWMiOiI1ZDM0MmE3NDgzYTZlMTM0MzE5MjY4ZWEzNmRiNzZjZmYxMjQ5NThmY2Y0ZmZlODU5NzQ1ZTA0ZWIzYTI1MzNiIn0%3D; laravel_session=eyJpdiI6ImZxS0xoa1dmVGRjQXZSYWtkbXo4dWc9PSIsInZhbHVlIjoiMkVLMVpqbWJ4dngwcGtGaStkQ3JyWkFZbzNYWEU0dWVJVkdFekNRZXoxXC9yS2pZcGJTTHdYQTlJekVtWVwveitLIiwibWFjIjoiZWY5MDI2NzgwZmEyNzY0NTA4OWU1ZTEyN2JmMDNhMjA1MjExZGVkNGYxMmI0YmM3MWRiZDA1YzcxZGQzZTI4YyJ9
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sat, 10 Sep 2022 01:49:32 GMT
Content-Type: application/javascript; charset=utf-8
Content-Length: 8415
Last-Modified: Mon, 10 May 2021 00:55:06 GMT
Connection: keep-alive
ETag: "6098846a-20df"
Strict-Transport-Security: max-age=31536000
Accept-Ranges: bytes

njf.com.tw/njf/public/js/widget_right_side.js

125.227.104.139

200 OK

458 B

URL HTTP/1.1
njf.com.tw/njf/public/js/widget_right_side.js
IP
125.227.104.139:0
ASN
#3462 Data Communication Business Group

File type
ASCII text, with CRLF line terminators
Size
458 B (458 bytes)
Hash
f44c3721e6729e097efa0a6bdcc33ec6
b529ffa4ee7314161eaa12372a0266a7645dd3f9
7cf6ba41518d1cc8775c2eb6d35c9db30019bc7d62e92ea81b72f9b06be8e8a6

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /njf/public/js/widget_right_side.js HTTP/1.1
Host: njf.com.tw
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://njf.com.tw/njf/
Cookie: XSRF-TOKEN=eyJpdiI6IkNJXC9yeEFkZVNCRUJ0eTgwc2xESFNRPT0iLCJ2YWx1ZSI6Ik1yTEdmMGp4bDVHSnRuU1FhSXJqc1Qrc2JDVUljRzFQejJQdnR2Sit5cTEwdDN4N1dmVXRSMjFpakd5WnhTejciLCJtYWMiOiI1ZDM0MmE3NDgzYTZlMTM0MzE5MjY4ZWEzNmRiNzZjZmYxMjQ5NThmY2Y0ZmZlODU5NzQ1ZTA0ZWIzYTI1MzNiIn0%3D; laravel_session=eyJpdiI6ImZxS0xoa1dmVGRjQXZSYWtkbXo4dWc9PSIsInZhbHVlIjoiMkVLMVpqbWJ4dngwcGtGaStkQ3JyWkFZbzNYWEU0dWVJVkdFekNRZXoxXC9yS2pZcGJTTHdYQTlJekVtWVwveitLIiwibWFjIjoiZWY5MDI2NzgwZmEyNzY0NTA4OWU1ZTEyN2JmMDNhMjA1MjExZGVkNGYxMmI0YmM3MWRiZDA1YzcxZGQzZTI4YyJ9
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sat, 10 Sep 2022 01:49:32 GMT
Content-Type: application/javascript; charset=utf-8
Content-Length: 458
Last-Modified: Mon, 10 May 2021 00:55:06 GMT
Connection: keep-alive
ETag: "6098846a-1ca"
Strict-Transport-Security: max-age=31536000
Accept-Ranges: bytes

njf.com.tw/njf/public/js/jquery-1.12.4.min.js

125.227.104.139

200 OK

290 kB

URL HTTP/1.1
njf.com.tw/njf/public/js/jquery-1.12.4.min.js
IP
125.227.104.139:0
ASN
#3462 Data Communication Business Group

File type
ASCII text, with CRLF line terminators
Size
290 kB (290446 bytes)
Hash
eac275563332b65bae1a3452532ebe38
f861f9abe81db5009022a6680cc41dc9cef2d8c0
c96b8b5e3be412f0091cbd1f37aeb7c6c23a0ee9a559be4b083db5f16693fed5

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /njf/public/js/jquery-1.12.4.min.js HTTP/1.1
Host: njf.com.tw
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://njf.com.tw/njf/
Cookie: XSRF-TOKEN=eyJpdiI6IkNJXC9yeEFkZVNCRUJ0eTgwc2xESFNRPT0iLCJ2YWx1ZSI6Ik1yTEdmMGp4bDVHSnRuU1FhSXJqc1Qrc2JDVUljRzFQejJQdnR2Sit5cTEwdDN4N1dmVXRSMjFpakd5WnhTejciLCJtYWMiOiI1ZDM0MmE3NDgzYTZlMTM0MzE5MjY4ZWEzNmRiNzZjZmYxMjQ5NThmY2Y0ZmZlODU5NzQ1ZTA0ZWIzYTI1MzNiIn0%3D; laravel_session=eyJpdiI6ImZxS0xoa1dmVGRjQXZSYWtkbXo4dWc9PSIsInZhbHVlIjoiMkVLMVpqbWJ4dngwcGtGaStkQ3JyWkFZbzNYWEU0dWVJVkdFekNRZXoxXC9yS2pZcGJTTHdYQTlJekVtWVwveitLIiwibWFjIjoiZWY5MDI2NzgwZmEyNzY0NTA4OWU1ZTEyN2JmMDNhMjA1MjExZGVkNGYxMmI0YmM3MWRiZDA1YzcxZGQzZTI4YyJ9
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sat, 10 Sep 2022 01:49:31 GMT
Content-Type: application/javascript; charset=utf-8
Content-Length: 290446
Last-Modified: Mon, 10 May 2021 00:55:06 GMT
Connection: keep-alive
ETag: "6098846a-46e8e"
Strict-Transport-Security: max-age=31536000
Accept-Ranges: bytes

njf.com.tw/njf/public/aos-master/dist/aos.js

125.227.104.139

200 OK

14 kB

URL HTTP/1.1
njf.com.tw/njf/public/aos-master/dist/aos.js
IP
125.227.104.139:0
ASN
#3462 Data Communication Business Group

File type
ASCII text, with very long lines (14243), with no line terminators
Size
14 kB (14243 bytes)
Hash
a01f9089e8301e9eacfb9d029dc0ca5c
165152546121aaaf96c19418908cffe3630a2336
4460f1596174d06cca957fdaca2c71e1a377cf1d6f07ee4c75ffb3bf3fc97a03

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /njf/public/aos-master/dist/aos.js HTTP/1.1
Host: njf.com.tw
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://njf.com.tw/njf/
Cookie: XSRF-TOKEN=eyJpdiI6IkNJXC9yeEFkZVNCRUJ0eTgwc2xESFNRPT0iLCJ2YWx1ZSI6Ik1yTEdmMGp4bDVHSnRuU1FhSXJqc1Qrc2JDVUljRzFQejJQdnR2Sit5cTEwdDN4N1dmVXRSMjFpakd5WnhTejciLCJtYWMiOiI1ZDM0MmE3NDgzYTZlMTM0MzE5MjY4ZWEzNmRiNzZjZmYxMjQ5NThmY2Y0ZmZlODU5NzQ1ZTA0ZWIzYTI1MzNiIn0%3D; laravel_session=eyJpdiI6ImZxS0xoa1dmVGRjQXZSYWtkbXo4dWc9PSIsInZhbHVlIjoiMkVLMVpqbWJ4dngwcGtGaStkQ3JyWkFZbzNYWEU0dWVJVkdFekNRZXoxXC9yS2pZcGJTTHdYQTlJekVtWVwveitLIiwibWFjIjoiZWY5MDI2NzgwZmEyNzY0NTA4OWU1ZTEyN2JmMDNhMjA1MjExZGVkNGYxMmI0YmM3MWRiZDA1YzcxZGQzZTI4YyJ9
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sat, 10 Sep 2022 01:49:32 GMT
Content-Type: application/javascript; charset=utf-8
Content-Length: 14243
Last-Modified: Mon, 10 May 2021 00:54:51 GMT
Connection: keep-alive
ETag: "6098845b-37a3"
Strict-Transport-Security: max-age=31536000
Accept-Ranges: bytes

njf.com.tw/njf/public/js/bootstrap.min.js

125.227.104.139

200 OK

37 kB

URL HTTP/1.1
njf.com.tw/njf/public/js/bootstrap.min.js
IP
125.227.104.139:0
ASN
#3462 Data Communication Business Group

File type
ASCII text, with very long lines (32033)
Size
37 kB (37045 bytes)
Hash
5869c96cc8f19086aee625d670d741f9
430a443d74830fe9be26efca431f448c1b3740f9
53964478a7c634e8dad34ecc303dd8048d00dce4993906de1bacf67f663486ef

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /njf/public/js/bootstrap.min.js HTTP/1.1
Host: njf.com.tw
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://njf.com.tw/njf/
Cookie: XSRF-TOKEN=eyJpdiI6IkNJXC9yeEFkZVNCRUJ0eTgwc2xESFNRPT0iLCJ2YWx1ZSI6Ik1yTEdmMGp4bDVHSnRuU1FhSXJqc1Qrc2JDVUljRzFQejJQdnR2Sit5cTEwdDN4N1dmVXRSMjFpakd5WnhTejciLCJtYWMiOiI1ZDM0MmE3NDgzYTZlMTM0MzE5MjY4ZWEzNmRiNzZjZmYxMjQ5NThmY2Y0ZmZlODU5NzQ1ZTA0ZWIzYTI1MzNiIn0%3D; laravel_session=eyJpdiI6ImZxS0xoa1dmVGRjQXZSYWtkbXo4dWc9PSIsInZhbHVlIjoiMkVLMVpqbWJ4dngwcGtGaStkQ3JyWkFZbzNYWEU0dWVJVkdFekNRZXoxXC9yS2pZcGJTTHdYQTlJekVtWVwveitLIiwibWFjIjoiZWY5MDI2NzgwZmEyNzY0NTA4OWU1ZTEyN2JmMDNhMjA1MjExZGVkNGYxMmI0YmM3MWRiZDA1YzcxZGQzZTI4YyJ9
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sat, 10 Sep 2022 01:49:32 GMT
Content-Type: application/javascript; charset=utf-8
Content-Length: 37045
Last-Modified: Mon, 10 May 2021 00:55:06 GMT
Connection: keep-alive
ETag: "6098846a-90b5"
Strict-Transport-Security: max-age=31536000
Accept-Ranges: bytes

njf.com.tw/njf/public/css/public-style.css

125.227.104.139

200 OK

5.8 kB

URL HTTP/1.1
njf.com.tw/njf/public/css/public-style.css
IP
125.227.104.139:0
ASN
#3462 Data Communication Business Group

File type
Unicode text, UTF-8 text, with CRLF line terminators
Size
5.8 kB (5845 bytes)
Hash
20020e89d36980ea24dd2e163b219cac
9eaf1a6c4e9dba39d7db7b303cf7ad69e9d82e3c
bfb99b7dd2a66dea7adbf2814dade2e93f9cb1d9ceeea019fd1c93358c82642c

HTTP Headers

GET /njf/public/css/public-style.css HTTP/1.1
Host: njf.com.tw
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://njf.com.tw/njf/
Cookie: XSRF-TOKEN=eyJpdiI6IkNJXC9yeEFkZVNCRUJ0eTgwc2xESFNRPT0iLCJ2YWx1ZSI6Ik1yTEdmMGp4bDVHSnRuU1FhSXJqc1Qrc2JDVUljRzFQejJQdnR2Sit5cTEwdDN4N1dmVXRSMjFpakd5WnhTejciLCJtYWMiOiI1ZDM0MmE3NDgzYTZlMTM0MzE5MjY4ZWEzNmRiNzZjZmYxMjQ5NThmY2Y0ZmZlODU5NzQ1ZTA0ZWIzYTI1MzNiIn0%3D; laravel_session=eyJpdiI6ImZxS0xoa1dmVGRjQXZSYWtkbXo4dWc9PSIsInZhbHVlIjoiMkVLMVpqbWJ4dngwcGtGaStkQ3JyWkFZbzNYWEU0dWVJVkdFekNRZXoxXC9yS2pZcGJTTHdYQTlJekVtWVwveitLIiwibWFjIjoiZWY5MDI2NzgwZmEyNzY0NTA4OWU1ZTEyN2JmMDNhMjA1MjExZGVkNGYxMmI0YmM3MWRiZDA1YzcxZGQzZTI4YyJ9
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sat, 10 Sep 2022 01:49:32 GMT
Content-Type: text/css
Content-Length: 5845
Last-Modified: Mon, 10 May 2021 00:54:51 GMT
Connection: keep-alive
ETag: "6098845b-16d5"
Strict-Transport-Security: max-age=31536000
Accept-Ranges: bytes

njf.com.tw/njf/public/css/bootstrap.min.css

125.227.104.139

200 OK

121 kB

URL HTTP/1.1
njf.com.tw/njf/public/css/bootstrap.min.css
IP
125.227.104.139:0
ASN
#3462 Data Communication Business Group

File type
ASCII text, with very long lines (65371)
Size
121 kB (121200 bytes)
Hash
ec3bb52a00e176a7181d454dffaea219
6527d8bf3e1e9368bab8c7b60f56bc01fa3afd68
f75e846cc83bd11432f4b1e21a45f31bc85283d11d372f7b19accd1bf6a2635c

HTTP Headers

GET /njf/public/css/bootstrap.min.css HTTP/1.1
Host: njf.com.tw
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://njf.com.tw/njf/
Cookie: XSRF-TOKEN=eyJpdiI6IkNJXC9yeEFkZVNCRUJ0eTgwc2xESFNRPT0iLCJ2YWx1ZSI6Ik1yTEdmMGp4bDVHSnRuU1FhSXJqc1Qrc2JDVUljRzFQejJQdnR2Sit5cTEwdDN4N1dmVXRSMjFpakd5WnhTejciLCJtYWMiOiI1ZDM0MmE3NDgzYTZlMTM0MzE5MjY4ZWEzNmRiNzZjZmYxMjQ5NThmY2Y0ZmZlODU5NzQ1ZTA0ZWIzYTI1MzNiIn0%3D; laravel_session=eyJpdiI6ImZxS0xoa1dmVGRjQXZSYWtkbXo4dWc9PSIsInZhbHVlIjoiMkVLMVpqbWJ4dngwcGtGaStkQ3JyWkFZbzNYWEU0dWVJVkdFekNRZXoxXC9yS2pZcGJTTHdYQTlJekVtWVwveitLIiwibWFjIjoiZWY5MDI2NzgwZmEyNzY0NTA4OWU1ZTEyN2JmMDNhMjA1MjExZGVkNGYxMmI0YmM3MWRiZDA1YzcxZGQzZTI4YyJ9
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sat, 10 Sep 2022 01:49:32 GMT
Content-Type: text/css
Content-Length: 121200
Last-Modified: Mon, 10 May 2021 00:54:51 GMT
Connection: keep-alive
ETag: "6098845b-1d970"
Strict-Transport-Security: max-age=31536000
Accept-Ranges: bytes

njf.com.tw/njf/public/css/bootstrap-theme.min.css

125.227.104.139

200 OK

23 kB

URL HTTP/1.1
njf.com.tw/njf/public/css/bootstrap-theme.min.css
IP
125.227.104.139:0
ASN
#3462 Data Communication Business Group

File type
ASCII text, with very long lines (23192)
Size
23 kB (23409 bytes)
Hash
ab6b02efeaf178e0247b9504051472fb
8256575374f430476bdcd49de98c77990229ce31
653e073e97423adda5bc3917a241ee8497dd38a48f14bcde0098a4e54fd0fa5e

HTTP Headers

GET /njf/public/css/bootstrap-theme.min.css HTTP/1.1
Host: njf.com.tw
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://njf.com.tw/njf/
Cookie: XSRF-TOKEN=eyJpdiI6IkNJXC9yeEFkZVNCRUJ0eTgwc2xESFNRPT0iLCJ2YWx1ZSI6Ik1yTEdmMGp4bDVHSnRuU1FhSXJqc1Qrc2JDVUljRzFQejJQdnR2Sit5cTEwdDN4N1dmVXRSMjFpakd5WnhTejciLCJtYWMiOiI1ZDM0MmE3NDgzYTZlMTM0MzE5MjY4ZWEzNmRiNzZjZmYxMjQ5NThmY2Y0ZmZlODU5NzQ1ZTA0ZWIzYTI1MzNiIn0%3D; laravel_session=eyJpdiI6ImZxS0xoa1dmVGRjQXZSYWtkbXo4dWc9PSIsInZhbHVlIjoiMkVLMVpqbWJ4dngwcGtGaStkQ3JyWkFZbzNYWEU0dWVJVkdFekNRZXoxXC9yS2pZcGJTTHdYQTlJekVtWVwveitLIiwibWFjIjoiZWY5MDI2NzgwZmEyNzY0NTA4OWU1ZTEyN2JmMDNhMjA1MjExZGVkNGYxMmI0YmM3MWRiZDA1YzcxZGQzZTI4YyJ9
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sat, 10 Sep 2022 01:49:32 GMT
Content-Type: text/css
Content-Length: 23409
Last-Modified: Mon, 10 May 2021 00:54:51 GMT
Connection: keep-alive
ETag: "6098845b-5b71"
Strict-Transport-Security: max-age=31536000
Accept-Ranges: bytes

njf.com.tw/njf/public/jquery-ui-1.12.1.custom/jquery-ui.css

125.227.104.139

200 OK

36 kB

URL HTTP/1.1
njf.com.tw/njf/public/jquery-ui-1.12.1.custom/jquery-ui.css
IP
125.227.104.139:0
ASN
#3462 Data Communication Business Group

File type
ASCII text, with very long lines (2363)
Size
36 kB (35997 bytes)
Hash
3e88fbf72a3a7bd199f90a45752f6af6
a81495e3bb14622a70e090c4fe9436dbec3b5b3a
47513e58f37a8258f58da1fdb86ebf74af74bfcf63195fa5d06a2f17b0beb43d

HTTP Headers

GET /njf/public/jquery-ui-1.12.1.custom/jquery-ui.css HTTP/1.1
Host: njf.com.tw
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://njf.com.tw/njf/
Cookie: XSRF-TOKEN=eyJpdiI6IkNJXC9yeEFkZVNCRUJ0eTgwc2xESFNRPT0iLCJ2YWx1ZSI6Ik1yTEdmMGp4bDVHSnRuU1FhSXJqc1Qrc2JDVUljRzFQejJQdnR2Sit5cTEwdDN4N1dmVXRSMjFpakd5WnhTejciLCJtYWMiOiI1ZDM0MmE3NDgzYTZlMTM0MzE5MjY4ZWEzNmRiNzZjZmYxMjQ5NThmY2Y0ZmZlODU5NzQ1ZTA0ZWIzYTI1MzNiIn0%3D; laravel_session=eyJpdiI6ImZxS0xoa1dmVGRjQXZSYWtkbXo4dWc9PSIsInZhbHVlIjoiMkVLMVpqbWJ4dngwcGtGaStkQ3JyWkFZbzNYWEU0dWVJVkdFekNRZXoxXC9yS2pZcGJTTHdYQTlJekVtWVwveitLIiwibWFjIjoiZWY5MDI2NzgwZmEyNzY0NTA4OWU1ZTEyN2JmMDNhMjA1MjExZGVkNGYxMmI0YmM3MWRiZDA1YzcxZGQzZTI4YyJ9
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sat, 10 Sep 2022 01:49:32 GMT
Content-Type: text/css
Content-Length: 35997
Last-Modified: Mon, 10 May 2021 00:55:06 GMT
Connection: keep-alive
ETag: "6098846a-8c9d"
Strict-Transport-Security: max-age=31536000
Accept-Ranges: bytes

njf.com.tw/njf/public/css/widget_right_side.css

125.227.104.139

200 OK

1.3 kB

URL HTTP/1.1
njf.com.tw/njf/public/css/widget_right_side.css
IP
125.227.104.139:0
ASN
#3462 Data Communication Business Group

File type
Unicode text, UTF-8 text, with CRLF line terminators
Size
1.3 kB (1251 bytes)
Hash
5f47c9897d33364a8b3fc0e9dcf41a16
8cfbe43f9d285d3d0614f8e7ec750cb51ebe60f6
07e4f1d05ae30486c79f317e71896d157c686c0568b39d2e52bbaf39293ffc95

HTTP Headers

GET /njf/public/css/widget_right_side.css HTTP/1.1
Host: njf.com.tw
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://njf.com.tw/njf/
Cookie: XSRF-TOKEN=eyJpdiI6IkNJXC9yeEFkZVNCRUJ0eTgwc2xESFNRPT0iLCJ2YWx1ZSI6Ik1yTEdmMGp4bDVHSnRuU1FhSXJqc1Qrc2JDVUljRzFQejJQdnR2Sit5cTEwdDN4N1dmVXRSMjFpakd5WnhTejciLCJtYWMiOiI1ZDM0MmE3NDgzYTZlMTM0MzE5MjY4ZWEzNmRiNzZjZmYxMjQ5NThmY2Y0ZmZlODU5NzQ1ZTA0ZWIzYTI1MzNiIn0%3D; laravel_session=eyJpdiI6ImZxS0xoa1dmVGRjQXZSYWtkbXo4dWc9PSIsInZhbHVlIjoiMkVLMVpqbWJ4dngwcGtGaStkQ3JyWkFZbzNYWEU0dWVJVkdFekNRZXoxXC9yS2pZcGJTTHdYQTlJekVtWVwveitLIiwibWFjIjoiZWY5MDI2NzgwZmEyNzY0NTA4OWU1ZTEyN2JmMDNhMjA1MjExZGVkNGYxMmI0YmM3MWRiZDA1YzcxZGQzZTI4YyJ9
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sat, 10 Sep 2022 01:49:33 GMT
Content-Type: text/css
Content-Length: 1251
Last-Modified: Mon, 10 May 2021 00:54:51 GMT
Connection: keep-alive
ETag: "6098845b-4e3"
Strict-Transport-Security: max-age=31536000
Accept-Ranges: bytes

njf.com.tw/njf/public/swiper-3.4.2/css/swiper.min.css

125.227.104.139

200 OK

18 kB

URL HTTP/1.1
njf.com.tw/njf/public/swiper-3.4.2/css/swiper.min.css
IP
125.227.104.139:0
ASN
#3462 Data Communication Business Group

File type
ASCII text, with very long lines (17459)
Size
18 kB (17759 bytes)
Hash
6af34d0737ad0ca608111771cf74cc79
15d0417baa08a741c6aee19fdfbf4813635f98f8
47b0e7129add982c0e394f0dfa8d9621e6c9e4126859b26e1ad25c18def0d812

HTTP Headers

GET /njf/public/swiper-3.4.2/css/swiper.min.css HTTP/1.1
Host: njf.com.tw
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://njf.com.tw/njf/
Cookie: XSRF-TOKEN=eyJpdiI6IkNJXC9yeEFkZVNCRUJ0eTgwc2xESFNRPT0iLCJ2YWx1ZSI6Ik1yTEdmMGp4bDVHSnRuU1FhSXJqc1Qrc2JDVUljRzFQejJQdnR2Sit5cTEwdDN4N1dmVXRSMjFpakd5WnhTejciLCJtYWMiOiI1ZDM0MmE3NDgzYTZlMTM0MzE5MjY4ZWEzNmRiNzZjZmYxMjQ5NThmY2Y0ZmZlODU5NzQ1ZTA0ZWIzYTI1MzNiIn0%3D; laravel_session=eyJpdiI6ImZxS0xoa1dmVGRjQXZSYWtkbXo4dWc9PSIsInZhbHVlIjoiMkVLMVpqbWJ4dngwcGtGaStkQ3JyWkFZbzNYWEU0dWVJVkdFekNRZXoxXC9yS2pZcGJTTHdYQTlJekVtWVwveitLIiwibWFjIjoiZWY5MDI2NzgwZmEyNzY0NTA4OWU1ZTEyN2JmMDNhMjA1MjExZGVkNGYxMmI0YmM3MWRiZDA1YzcxZGQzZTI4YyJ9
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sat, 10 Sep 2022 01:49:32 GMT
Content-Type: text/css
Content-Length: 17759
Last-Modified: Mon, 10 May 2021 00:55:06 GMT
Connection: keep-alive
ETag: "6098846a-455f"
Strict-Transport-Security: max-age=31536000
Accept-Ranges: bytes

njf.com.tw/njf/public/css/custom-bootstrap.css

125.227.104.139

200 OK

2.8 kB

URL HTTP/1.1
njf.com.tw/njf/public/css/custom-bootstrap.css
IP
125.227.104.139:0
ASN
#3462 Data Communication Business Group

File type
ASCII text, with CRLF line terminators
Size
2.8 kB (2831 bytes)
Hash
4f428b825850120139ef033009047398
98d8a4511e8f517ccf28a11a346730b61024efbd
3ea033047afeaef0cab079c83fd311afa51b7b0221ad063fc93d42bc5cf5fa30

HTTP Headers

GET /njf/public/css/custom-bootstrap.css HTTP/1.1
Host: njf.com.tw
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://njf.com.tw/njf/
Cookie: XSRF-TOKEN=eyJpdiI6IkNJXC9yeEFkZVNCRUJ0eTgwc2xESFNRPT0iLCJ2YWx1ZSI6Ik1yTEdmMGp4bDVHSnRuU1FhSXJqc1Qrc2JDVUljRzFQejJQdnR2Sit5cTEwdDN4N1dmVXRSMjFpakd5WnhTejciLCJtYWMiOiI1ZDM0MmE3NDgzYTZlMTM0MzE5MjY4ZWEzNmRiNzZjZmYxMjQ5NThmY2Y0ZmZlODU5NzQ1ZTA0ZWIzYTI1MzNiIn0%3D; laravel_session=eyJpdiI6ImZxS0xoa1dmVGRjQXZSYWtkbXo4dWc9PSIsInZhbHVlIjoiMkVLMVpqbWJ4dngwcGtGaStkQ3JyWkFZbzNYWEU0dWVJVkdFekNRZXoxXC9yS2pZcGJTTHdYQTlJekVtWVwveitLIiwibWFjIjoiZWY5MDI2NzgwZmEyNzY0NTA4OWU1ZTEyN2JmMDNhMjA1MjExZGVkNGYxMmI0YmM3MWRiZDA1YzcxZGQzZTI4YyJ9
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sat, 10 Sep 2022 01:49:33 GMT
Content-Type: text/css
Content-Length: 2831
Last-Modified: Mon, 10 May 2021 00:54:51 GMT
Connection: keep-alive
ETag: "6098845b-b0f"
Strict-Transport-Security: max-age=31536000
Accept-Ranges: bytes

njf.com.tw/njf/public/jquery-ui-1.12.1.custom/jquery-ui.min.js

125.227.104.139

200 OK

254 kB

URL HTTP/1.1
njf.com.tw/njf/public/jquery-ui-1.12.1.custom/jquery-ui.min.js
IP
125.227.104.139:0
ASN
#3462 Data Communication Business Group

File type
ASCII text, with very long lines (33326)
Size
254 kB (253668 bytes)
Hash
52850ca4b728af2d5d52c97352739ecf
e90d7f9abf587868e5ea7e9c60cbbe620f342e9f
c5bf25632a6c9900113fedef27193c8bacc056dd5cfd6a89e1b791deef5bf24b

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /njf/public/jquery-ui-1.12.1.custom/jquery-ui.min.js HTTP/1.1
Host: njf.com.tw
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://njf.com.tw/njf/
Cookie: XSRF-TOKEN=eyJpdiI6IkNJXC9yeEFkZVNCRUJ0eTgwc2xESFNRPT0iLCJ2YWx1ZSI6Ik1yTEdmMGp4bDVHSnRuU1FhSXJqc1Qrc2JDVUljRzFQejJQdnR2Sit5cTEwdDN4N1dmVXRSMjFpakd5WnhTejciLCJtYWMiOiI1ZDM0MmE3NDgzYTZlMTM0MzE5MjY4ZWEzNmRiNzZjZmYxMjQ5NThmY2Y0ZmZlODU5NzQ1ZTA0ZWIzYTI1MzNiIn0%3D; laravel_session=eyJpdiI6ImZxS0xoa1dmVGRjQXZSYWtkbXo4dWc9PSIsInZhbHVlIjoiMkVLMVpqbWJ4dngwcGtGaStkQ3JyWkFZbzNYWEU0dWVJVkdFekNRZXoxXC9yS2pZcGJTTHdYQTlJekVtWVwveitLIiwibWFjIjoiZWY5MDI2NzgwZmEyNzY0NTA4OWU1ZTEyN2JmMDNhMjA1MjExZGVkNGYxMmI0YmM3MWRiZDA1YzcxZGQzZTI4YyJ9
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sat, 10 Sep 2022 01:49:32 GMT
Content-Type: application/javascript; charset=utf-8
Content-Length: 253668
Last-Modified: Mon, 10 May 2021 00:55:06 GMT
Connection: keep-alive
ETag: "6098846a-3dee4"
Strict-Transport-Security: max-age=31536000
Accept-Ranges: bytes

njf.com.tw/njf/public//fontawesome/css/all.css

125.227.104.139

200 OK

74 kB

URL HTTP/1.1
njf.com.tw/njf/public//fontawesome/css/all.css
IP
125.227.104.139:0
ASN
#3462 Data Communication Business Group

File type
ASCII text
Size
74 kB (73625 bytes)
Hash
a1e269aef076bad8ee205d2a5585d872
17f5a041bab663be0db80721c404a7a6f3fdad44
462beb0c8ecb2abb15685c31875f268d166313581df110401c2483fab24a46df

HTTP Headers

GET /njf/public//fontawesome/css/all.css HTTP/1.1
Host: njf.com.tw
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://njf.com.tw/njf/
Cookie: XSRF-TOKEN=eyJpdiI6IkNJXC9yeEFkZVNCRUJ0eTgwc2xESFNRPT0iLCJ2YWx1ZSI6Ik1yTEdmMGp4bDVHSnRuU1FhSXJqc1Qrc2JDVUljRzFQejJQdnR2Sit5cTEwdDN4N1dmVXRSMjFpakd5WnhTejciLCJtYWMiOiI1ZDM0MmE3NDgzYTZlMTM0MzE5MjY4ZWEzNmRiNzZjZmYxMjQ5NThmY2Y0ZmZlODU5NzQ1ZTA0ZWIzYTI1MzNiIn0%3D; laravel_session=eyJpdiI6ImZxS0xoa1dmVGRjQXZSYWtkbXo4dWc9PSIsInZhbHVlIjoiMkVLMVpqbWJ4dngwcGtGaStkQ3JyWkFZbzNYWEU0dWVJVkdFekNRZXoxXC9yS2pZcGJTTHdYQTlJekVtWVwveitLIiwibWFjIjoiZWY5MDI2NzgwZmEyNzY0NTA4OWU1ZTEyN2JmMDNhMjA1MjExZGVkNGYxMmI0YmM3MWRiZDA1YzcxZGQzZTI4YyJ9
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sat, 10 Sep 2022 01:49:33 GMT
Content-Type: text/css
Content-Length: 73625
Last-Modified: Mon, 10 May 2021 00:54:57 GMT
Connection: keep-alive
ETag: "60988461-11f99"
Strict-Transport-Security: max-age=31536000
Accept-Ranges: bytes

njf.com.tw/njf/public/css/change-bootstrap-navbar.css

125.227.104.139

200 OK

2.1 kB

URL HTTP/1.1
njf.com.tw/njf/public/css/change-bootstrap-navbar.css
IP
125.227.104.139:0
ASN
#3462 Data Communication Business Group

File type
ASCII text, with CRLF line terminators
Size
2.1 kB (2143 bytes)
Hash
53afd35d683eb7416dec01cc426d026a
07480a869ec75caa1e0f94678cb95b237e16aafb
12515b62d81568d74db618b7117027f2cebd7af07f1fe40284cc98e59d451efc

HTTP Headers

GET /njf/public/css/change-bootstrap-navbar.css HTTP/1.1
Host: njf.com.tw
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://njf.com.tw/njf/
Cookie: XSRF-TOKEN=eyJpdiI6IkNJXC9yeEFkZVNCRUJ0eTgwc2xESFNRPT0iLCJ2YWx1ZSI6Ik1yTEdmMGp4bDVHSnRuU1FhSXJqc1Qrc2JDVUljRzFQejJQdnR2Sit5cTEwdDN4N1dmVXRSMjFpakd5WnhTejciLCJtYWMiOiI1ZDM0MmE3NDgzYTZlMTM0MzE5MjY4ZWEzNmRiNzZjZmYxMjQ5NThmY2Y0ZmZlODU5NzQ1ZTA0ZWIzYTI1MzNiIn0%3D; laravel_session=eyJpdiI6ImZxS0xoa1dmVGRjQXZSYWtkbXo4dWc9PSIsInZhbHVlIjoiMkVLMVpqbWJ4dngwcGtGaStkQ3JyWkFZbzNYWEU0dWVJVkdFekNRZXoxXC9yS2pZcGJTTHdYQTlJekVtWVwveitLIiwibWFjIjoiZWY5MDI2NzgwZmEyNzY0NTA4OWU1ZTEyN2JmMDNhMjA1MjExZGVkNGYxMmI0YmM3MWRiZDA1YzcxZGQzZTI4YyJ9
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sat, 10 Sep 2022 01:49:33 GMT
Content-Type: text/css
Content-Length: 2143
Last-Modified: Mon, 10 May 2021 00:54:51 GMT
Connection: keep-alive
ETag: "6098845b-85f"
Strict-Transport-Security: max-age=31536000
Accept-Ranges: bytes

njf.com.tw/njf/public/aos-master/dist/aos.css

125.227.104.139

200 OK

26 kB

URL HTTP/1.1
njf.com.tw/njf/public/aos-master/dist/aos.css
IP
125.227.104.139:0
ASN
#3462 Data Communication Business Group

File type
ASCII text, with very long lines (26053), with no line terminators
Size
26 kB (26053 bytes)
Hash
847da8fca8060ca1a70f976aab1210b9
0557d37454b67f42f2cb101e57e5070fb1193570
1aa8845fd06e475aefe733d4e55b36a92fcd487975049c8172341827ac9cc03e

HTTP Headers

GET /njf/public/aos-master/dist/aos.css HTTP/1.1
Host: njf.com.tw
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://njf.com.tw/njf/
Cookie: XSRF-TOKEN=eyJpdiI6IkNJXC9yeEFkZVNCRUJ0eTgwc2xESFNRPT0iLCJ2YWx1ZSI6Ik1yTEdmMGp4bDVHSnRuU1FhSXJqc1Qrc2JDVUljRzFQejJQdnR2Sit5cTEwdDN4N1dmVXRSMjFpakd5WnhTejciLCJtYWMiOiI1ZDM0MmE3NDgzYTZlMTM0MzE5MjY4ZWEzNmRiNzZjZmYxMjQ5NThmY2Y0ZmZlODU5NzQ1ZTA0ZWIzYTI1MzNiIn0%3D; laravel_session=eyJpdiI6ImZxS0xoa1dmVGRjQXZSYWtkbXo4dWc9PSIsInZhbHVlIjoiMkVLMVpqbWJ4dngwcGtGaStkQ3JyWkFZbzNYWEU0dWVJVkdFekNRZXoxXC9yS2pZcGJTTHdYQTlJekVtWVwveitLIiwibWFjIjoiZWY5MDI2NzgwZmEyNzY0NTA4OWU1ZTEyN2JmMDNhMjA1MjExZGVkNGYxMmI0YmM3MWRiZDA1YzcxZGQzZTI4YyJ9
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sat, 10 Sep 2022 01:49:33 GMT
Content-Type: text/css
Content-Length: 26053
Last-Modified: Mon, 10 May 2021 00:54:51 GMT
Connection: keep-alive
ETag: "6098845b-65c5"
Strict-Transport-Security: max-age=31536000
Accept-Ranges: bytes

njf.com.tw/njf/public/timeline-slider/js/jquery.timelinr-0.9.4.js

125.227.104.139

200 OK

12 kB

URL HTTP/1.1
njf.com.tw/njf/public/timeline-slider/js/jquery.timelinr-0.9.4.js
IP
125.227.104.139:0
ASN
#3462 Data Communication Business Group

File type
Unicode text, UTF-8 text
Size
12 kB (12232 bytes)
Hash
4119aa2cae3560b9f0c029406d0e173d
36ab613b2578d2918a6bfe1172c10714de37de00
47a2f2e371852ba4172c71993a1dbc1d3ec6a6a2f5d1808b2d9b684e35370e51

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /njf/public/timeline-slider/js/jquery.timelinr-0.9.4.js HTTP/1.1
Host: njf.com.tw
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://njf.com.tw/njf/
Cookie: XSRF-TOKEN=eyJpdiI6IkNJXC9yeEFkZVNCRUJ0eTgwc2xESFNRPT0iLCJ2YWx1ZSI6Ik1yTEdmMGp4bDVHSnRuU1FhSXJqc1Qrc2JDVUljRzFQejJQdnR2Sit5cTEwdDN4N1dmVXRSMjFpakd5WnhTejciLCJtYWMiOiI1ZDM0MmE3NDgzYTZlMTM0MzE5MjY4ZWEzNmRiNzZjZmYxMjQ5NThmY2Y0ZmZlODU5NzQ1ZTA0ZWIzYTI1MzNiIn0%3D; laravel_session=eyJpdiI6ImZxS0xoa1dmVGRjQXZSYWtkbXo4dWc9PSIsInZhbHVlIjoiMkVLMVpqbWJ4dngwcGtGaStkQ3JyWkFZbzNYWEU0dWVJVkdFekNRZXoxXC9yS2pZcGJTTHdYQTlJekVtWVwveitLIiwibWFjIjoiZWY5MDI2NzgwZmEyNzY0NTA4OWU1ZTEyN2JmMDNhMjA1MjExZGVkNGYxMmI0YmM3MWRiZDA1YzcxZGQzZTI4YyJ9
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sat, 10 Sep 2022 01:49:33 GMT
Content-Type: application/javascript; charset=utf-8
Content-Length: 12232
Last-Modified: Mon, 10 May 2021 00:55:06 GMT
Connection: keep-alive
ETag: "6098846a-2fc8"
Strict-Transport-Security: max-age=31536000
Accept-Ranges: bytes

njf.com.tw/njf/public/timeline-slider/css/styles.css

125.227.104.139

200 OK

4.8 kB

URL HTTP/1.1
njf.com.tw/njf/public/timeline-slider/css/styles.css
IP
125.227.104.139:0
ASN
#3462 Data Communication Business Group

File type
Unicode text, UTF-8 text, with CRLF line terminators
Size
4.8 kB (4777 bytes)
Hash
b532c647e4452e94b539792c77aba3b9
10a7b40d441f770fdc34df9b991fd25883566a7c
963e96d08bed0873781dcc1fcdbf3981e82533688a9e637470d4add4f49c1a2c

HTTP Headers

GET /njf/public/timeline-slider/css/styles.css HTTP/1.1
Host: njf.com.tw
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://njf.com.tw/njf/
Cookie: XSRF-TOKEN=eyJpdiI6IkNJXC9yeEFkZVNCRUJ0eTgwc2xESFNRPT0iLCJ2YWx1ZSI6Ik1yTEdmMGp4bDVHSnRuU1FhSXJqc1Qrc2JDVUljRzFQejJQdnR2Sit5cTEwdDN4N1dmVXRSMjFpakd5WnhTejciLCJtYWMiOiI1ZDM0MmE3NDgzYTZlMTM0MzE5MjY4ZWEzNmRiNzZjZmYxMjQ5NThmY2Y0ZmZlODU5NzQ1ZTA0ZWIzYTI1MzNiIn0%3D; laravel_session=eyJpdiI6ImZxS0xoa1dmVGRjQXZSYWtkbXo4dWc9PSIsInZhbHVlIjoiMkVLMVpqbWJ4dngwcGtGaStkQ3JyWkFZbzNYWEU0dWVJVkdFekNRZXoxXC9yS2pZcGJTTHdYQTlJekVtWVwveitLIiwibWFjIjoiZWY5MDI2NzgwZmEyNzY0NTA4OWU1ZTEyN2JmMDNhMjA1MjExZGVkNGYxMmI0YmM3MWRiZDA1YzcxZGQzZTI4YyJ9
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sat, 10 Sep 2022 01:49:33 GMT
Content-Type: text/css
Content-Length: 4777
Last-Modified: Mon, 10 May 2021 00:55:06 GMT
Connection: keep-alive
ETag: "6098846a-12a9"
Strict-Transport-Security: max-age=31536000
Accept-Ranges: bytes

njf.com.tw/njf/public/css/index.css

125.227.104.139

200 OK

21 kB

URL HTTP/1.1
njf.com.tw/njf/public/css/index.css
IP
125.227.104.139:0
ASN
#3462 Data Communication Business Group

File type
ASCII text, with CRLF line terminators
Size
21 kB (21075 bytes)
Hash
96fa443ace69300ef4b776847ede9b2e
2962d19b2cdcd738baef69e226bf0be41417d9a6
484187dbdd3427ad611213cb285dfbfd387aff1859eff42f84f6fc2ab446766e

HTTP Headers

GET /njf/public/css/index.css HTTP/1.1
Host: njf.com.tw
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://njf.com.tw/njf/
Cookie: XSRF-TOKEN=eyJpdiI6IkNJXC9yeEFkZVNCRUJ0eTgwc2xESFNRPT0iLCJ2YWx1ZSI6Ik1yTEdmMGp4bDVHSnRuU1FhSXJqc1Qrc2JDVUljRzFQejJQdnR2Sit5cTEwdDN4N1dmVXRSMjFpakd5WnhTejciLCJtYWMiOiI1ZDM0MmE3NDgzYTZlMTM0MzE5MjY4ZWEzNmRiNzZjZmYxMjQ5NThmY2Y0ZmZlODU5NzQ1ZTA0ZWIzYTI1MzNiIn0%3D; laravel_session=eyJpdiI6ImZxS0xoa1dmVGRjQXZSYWtkbXo4dWc9PSIsInZhbHVlIjoiMkVLMVpqbWJ4dngwcGtGaStkQ3JyWkFZbzNYWEU0dWVJVkdFekNRZXoxXC9yS2pZcGJTTHdYQTlJekVtWVwveitLIiwibWFjIjoiZWY5MDI2NzgwZmEyNzY0NTA4OWU1ZTEyN2JmMDNhMjA1MjExZGVkNGYxMmI0YmM3MWRiZDA1YzcxZGQzZTI4YyJ9
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sat, 10 Sep 2022 01:49:33 GMT
Content-Type: text/css
Content-Length: 21075
Last-Modified: Wed, 04 May 2022 00:47:28 GMT
Connection: keep-alive
ETag: "6271cd20-5253"
Strict-Transport-Security: max-age=31536000
Accept-Ranges: bytes

njf.com.tw/njf/public/js/timeline-slider-custom.js

125.227.104.139

200 OK

2.2 kB

URL HTTP/1.1
njf.com.tw/njf/public/js/timeline-slider-custom.js
IP
125.227.104.139:0
ASN
#3462 Data Communication Business Group

File type
CSV text\012- HTML document, Unicode text, UTF-8 text, with CRLF line terminators
Size
2.2 kB (2212 bytes)
Hash
41ae8f78131e72c01ca9db6f3bd4d84d
30ecef063a54eacce5cf4f492c036ce5305887f7
5d1de282ba56e60f4cb4298e32bd32da11359b31bf1ab3b36b939aab8f8ac9d9

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /njf/public/js/timeline-slider-custom.js HTTP/1.1
Host: njf.com.tw
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://njf.com.tw/njf/
Cookie: XSRF-TOKEN=eyJpdiI6IkNJXC9yeEFkZVNCRUJ0eTgwc2xESFNRPT0iLCJ2YWx1ZSI6Ik1yTEdmMGp4bDVHSnRuU1FhSXJqc1Qrc2JDVUljRzFQejJQdnR2Sit5cTEwdDN4N1dmVXRSMjFpakd5WnhTejciLCJtYWMiOiI1ZDM0MmE3NDgzYTZlMTM0MzE5MjY4ZWEzNmRiNzZjZmYxMjQ5NThmY2Y0ZmZlODU5NzQ1ZTA0ZWIzYTI1MzNiIn0%3D; laravel_session=eyJpdiI6ImZxS0xoa1dmVGRjQXZSYWtkbXo4dWc9PSIsInZhbHVlIjoiMkVLMVpqbWJ4dngwcGtGaStkQ3JyWkFZbzNYWEU0dWVJVkdFekNRZXoxXC9yS2pZcGJTTHdYQTlJekVtWVwveitLIiwibWFjIjoiZWY5MDI2NzgwZmEyNzY0NTA4OWU1ZTEyN2JmMDNhMjA1MjExZGVkNGYxMmI0YmM3MWRiZDA1YzcxZGQzZTI4YyJ9
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sat, 10 Sep 2022 01:49:33 GMT
Content-Type: application/javascript; charset=utf-8
Content-Length: 2212
Last-Modified: Mon, 10 May 2021 00:55:06 GMT
Connection: keep-alive
ETag: "6098846a-8a4"
Strict-Transport-Security: max-age=31536000
Accept-Ranges: bytes

njf.com.tw/njf/public/fontawesome/js/all.js

125.227.104.139

200 OK

1.3 MB

URL HTTP/1.1
njf.com.tw/njf/public/fontawesome/js/all.js
IP
125.227.104.139:0
ASN
#3462 Data Communication Business Group

File type
ASCII text, with very long lines (3431)
Size
1.3 MB (1260431 bytes)
Hash
4626c2d1497220a92dc418738dc73fca
4ea8954b9b8c75329b995b2ba51cc8476bd763c9
a6f3cff2c581ae8c339c7bf5c6c8d304eeffef83812b398e0866847aadeaf934

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /njf/public/fontawesome/js/all.js HTTP/1.1
Host: njf.com.tw
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://njf.com.tw/njf/
Cookie: XSRF-TOKEN=eyJpdiI6IkNJXC9yeEFkZVNCRUJ0eTgwc2xESFNRPT0iLCJ2YWx1ZSI6Ik1yTEdmMGp4bDVHSnRuU1FhSXJqc1Qrc2JDVUljRzFQejJQdnR2Sit5cTEwdDN4N1dmVXRSMjFpakd5WnhTejciLCJtYWMiOiI1ZDM0MmE3NDgzYTZlMTM0MzE5MjY4ZWEzNmRiNzZjZmYxMjQ5NThmY2Y0ZmZlODU5NzQ1ZTA0ZWIzYTI1MzNiIn0%3D; laravel_session=eyJpdiI6ImZxS0xoa1dmVGRjQXZSYWtkbXo4dWc9PSIsInZhbHVlIjoiMkVLMVpqbWJ4dngwcGtGaStkQ3JyWkFZbzNYWEU0dWVJVkdFekNRZXoxXC9yS2pZcGJTTHdYQTlJekVtWVwveitLIiwibWFjIjoiZWY5MDI2NzgwZmEyNzY0NTA4OWU1ZTEyN2JmMDNhMjA1MjExZGVkNGYxMmI0YmM3MWRiZDA1YzcxZGQzZTI4YyJ9
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sat, 10 Sep 2022 01:49:32 GMT
Content-Type: application/javascript; charset=utf-8
Content-Length: 1260431
Last-Modified: Mon, 10 May 2021 00:54:57 GMT
Connection: keep-alive
ETag: "60988461-133b8f"
Strict-Transport-Security: max-age=31536000
Accept-Ranges: bytes

njf.com.tw/njf/public/swiper-3.4.2/js/swiper.min.js

125.227.104.139

200 OK

96 kB

URL HTTP/1.1
njf.com.tw/njf/public/swiper-3.4.2/js/swiper.min.js
IP
125.227.104.139:0
ASN
#3462 Data Communication Business Group

File type
ASCII text, with very long lines (31999)
Size
96 kB (96419 bytes)
Hash
fb13ef3e875ca3497ede35d3774be9d3
ab0743a89d522438c17ae7eaf5943fd4590ee3d0
4a10219bee747aadeeda78f166d787adf32583f361f88d44b472f6f3da798083

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /njf/public/swiper-3.4.2/js/swiper.min.js HTTP/1.1
Host: njf.com.tw
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://njf.com.tw/njf/
Cookie: XSRF-TOKEN=eyJpdiI6IkNJXC9yeEFkZVNCRUJ0eTgwc2xESFNRPT0iLCJ2YWx1ZSI6Ik1yTEdmMGp4bDVHSnRuU1FhSXJqc1Qrc2JDVUljRzFQejJQdnR2Sit5cTEwdDN4N1dmVXRSMjFpakd5WnhTejciLCJtYWMiOiI1ZDM0MmE3NDgzYTZlMTM0MzE5MjY4ZWEzNmRiNzZjZmYxMjQ5NThmY2Y0ZmZlODU5NzQ1ZTA0ZWIzYTI1MzNiIn0%3D; laravel_session=eyJpdiI6ImZxS0xoa1dmVGRjQXZSYWtkbXo4dWc9PSIsInZhbHVlIjoiMkVLMVpqbWJ4dngwcGtGaStkQ3JyWkFZbzNYWEU0dWVJVkdFekNRZXoxXC9yS2pZcGJTTHdYQTlJekVtWVwveitLIiwibWFjIjoiZWY5MDI2NzgwZmEyNzY0NTA4OWU1ZTEyN2JmMDNhMjA1MjExZGVkNGYxMmI0YmM3MWRiZDA1YzcxZGQzZTI4YyJ9
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sat, 10 Sep 2022 01:49:33 GMT
Content-Type: application/javascript; charset=utf-8
Content-Length: 96419
Last-Modified: Mon, 10 May 2021 00:55:06 GMT
Connection: keep-alive
ETag: "6098846a-178a3"
Strict-Transport-Security: max-age=31536000
Accept-Ranges: bytes

njf.com.tw/njf/public/images/index/oki-01-01.png

125.227.104.139

200 OK

14 kB

URL HTTP/1.1
njf.com.tw/njf/public/images/index/oki-01-01.png
IP
125.227.104.139:0
ASN
#3462 Data Communication Business Group

File type
PNG image data, 338 x 357, 8-bit/color RGBA, non-interlaced\012- data
Size
14 kB (13645 bytes)
Hash
3095a925e5e58393fd18d950f78c301f
fcd45d93cb1f52e3914ec622ecd989a112013561
9d3e4dbf4d57fefbe7cde8bb65e0f6bd36b80e4f7f74cf78976232d0700c23ca

HTTP Headers

GET /njf/public/images/index/oki-01-01.png HTTP/1.1
Host: njf.com.tw
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://njf.com.tw/njf/
Cookie: XSRF-TOKEN=eyJpdiI6IkNJXC9yeEFkZVNCRUJ0eTgwc2xESFNRPT0iLCJ2YWx1ZSI6Ik1yTEdmMGp4bDVHSnRuU1FhSXJqc1Qrc2JDVUljRzFQejJQdnR2Sit5cTEwdDN4N1dmVXRSMjFpakd5WnhTejciLCJtYWMiOiI1ZDM0MmE3NDgzYTZlMTM0MzE5MjY4ZWEzNmRiNzZjZmYxMjQ5NThmY2Y0ZmZlODU5NzQ1ZTA0ZWIzYTI1MzNiIn0%3D; laravel_session=eyJpdiI6ImZxS0xoa1dmVGRjQXZSYWtkbXo4dWc9PSIsInZhbHVlIjoiMkVLMVpqbWJ4dngwcGtGaStkQ3JyWkFZbzNYWEU0dWVJVkdFekNRZXoxXC9yS2pZcGJTTHdYQTlJekVtWVwveitLIiwibWFjIjoiZWY5MDI2NzgwZmEyNzY0NTA4OWU1ZTEyN2JmMDNhMjA1MjExZGVkNGYxMmI0YmM3MWRiZDA1YzcxZGQzZTI4YyJ9
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sat, 10 Sep 2022 01:49:34 GMT
Content-Type: image/png
Content-Length: 13645
Last-Modified: Mon, 10 May 2021 00:55:00 GMT
Connection: keep-alive
ETag: "60988464-354d"
Strict-Transport-Security: max-age=31536000
Accept-Ranges: bytes

njf.com.tw/njf/public/images/index/medi-01-01.png

125.227.104.139

200 OK

21 kB

URL HTTP/1.1
njf.com.tw/njf/public/images/index/medi-01-01.png
IP
125.227.104.139:0
ASN
#3462 Data Communication Business Group

File type
PNG image data, 338 x 357, 8-bit/color RGBA, non-interlaced\012- data
Size
21 kB (20793 bytes)
Hash
100cac4830e777d62633b6b2fc1e79d9
3474f780a38133a0ec9e509c1c9515f66b66f882
a9ccb4cfc188972a9dcc0a3d607afdeb0cfbf041f50205d1a38b1a5cc894606c

HTTP Headers

GET /njf/public/images/index/medi-01-01.png HTTP/1.1
Host: njf.com.tw
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://njf.com.tw/njf/
Cookie: XSRF-TOKEN=eyJpdiI6IkNJXC9yeEFkZVNCRUJ0eTgwc2xESFNRPT0iLCJ2YWx1ZSI6Ik1yTEdmMGp4bDVHSnRuU1FhSXJqc1Qrc2JDVUljRzFQejJQdnR2Sit5cTEwdDN4N1dmVXRSMjFpakd5WnhTejciLCJtYWMiOiI1ZDM0MmE3NDgzYTZlMTM0MzE5MjY4ZWEzNmRiNzZjZmYxMjQ5NThmY2Y0ZmZlODU5NzQ1ZTA0ZWIzYTI1MzNiIn0%3D; laravel_session=eyJpdiI6ImZxS0xoa1dmVGRjQXZSYWtkbXo4dWc9PSIsInZhbHVlIjoiMkVLMVpqbWJ4dngwcGtGaStkQ3JyWkFZbzNYWEU0dWVJVkdFekNRZXoxXC9yS2pZcGJTTHdYQTlJekVtWVwveitLIiwibWFjIjoiZWY5MDI2NzgwZmEyNzY0NTA4OWU1ZTEyN2JmMDNhMjA1MjExZGVkNGYxMmI0YmM3MWRiZDA1YzcxZGQzZTI4YyJ9
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sat, 10 Sep 2022 01:49:34 GMT
Content-Type: image/png
Content-Length: 20793
Last-Modified: Mon, 10 May 2021 00:55:00 GMT
Connection: keep-alive
ETag: "60988464-5139"
Strict-Transport-Security: max-age=31536000
Accept-Ranges: bytes

njf.com.tw/njf/public/images/index/IMed-logo.png

125.227.104.139

200 OK

22 kB

URL HTTP/1.1
njf.com.tw/njf/public/images/index/IMed-logo.png
IP
125.227.104.139:0
ASN
#3462 Data Communication Business Group

File type
PNG image data, 206 x 206, 8-bit/color RGBA, non-interlaced\012- data
Size
22 kB (22264 bytes)
Hash
205ba00f97fc7b82aadf06f70a9d5522
d16b5e4f6a12a0021478ec258c8af6d1228f6b65
bbfc29a7ca61bab120e08f046ae9da583c3853c73d054604045ed2127dfc8e86

HTTP Headers

GET /njf/public/images/index/IMed-logo.png HTTP/1.1
Host: njf.com.tw
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://njf.com.tw/njf/
Cookie: XSRF-TOKEN=eyJpdiI6IkNJXC9yeEFkZVNCRUJ0eTgwc2xESFNRPT0iLCJ2YWx1ZSI6Ik1yTEdmMGp4bDVHSnRuU1FhSXJqc1Qrc2JDVUljRzFQejJQdnR2Sit5cTEwdDN4N1dmVXRSMjFpakd5WnhTejciLCJtYWMiOiI1ZDM0MmE3NDgzYTZlMTM0MzE5MjY4ZWEzNmRiNzZjZmYxMjQ5NThmY2Y0ZmZlODU5NzQ1ZTA0ZWIzYTI1MzNiIn0%3D; laravel_session=eyJpdiI6ImZxS0xoa1dmVGRjQXZSYWtkbXo4dWc9PSIsInZhbHVlIjoiMkVLMVpqbWJ4dngwcGtGaStkQ3JyWkFZbzNYWEU0dWVJVkdFekNRZXoxXC9yS2pZcGJTTHdYQTlJekVtWVwveitLIiwibWFjIjoiZWY5MDI2NzgwZmEyNzY0NTA4OWU1ZTEyN2JmMDNhMjA1MjExZGVkNGYxMmI0YmM3MWRiZDA1YzcxZGQzZTI4YyJ9
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sat, 10 Sep 2022 01:49:34 GMT
Content-Type: image/png
Content-Length: 22264
Last-Modified: Mon, 10 May 2021 00:55:00 GMT
Connection: keep-alive
ETag: "60988464-56f8"
Strict-Transport-Security: max-age=31536000
Accept-Ranges: bytes

njf.com.tw/njf/public//fontawesome/webfonts/fa-solid-900.woff2

125.227.104.139

200 OK

80 kB

URL HTTP/1.1
njf.com.tw/njf/public//fontawesome/webfonts/fa-solid-900.woff2
IP
125.227.104.139:0
ASN
#3462 Data Communication Business Group

File type
Web Open Font Format (Version 2), TrueType, length 80252, version 331.-31327\012- data
Size
80 kB (80252 bytes)
Hash
9ae050d1876ac1763eb6afe4264e6d5a
72344eab2e7431eec313caa21f266cbfda7caf60
6c916669cf923b4f1b2db5c5107c83b6ca205e7ad0dcd840b251e63f0c8d28a2

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /njf/public//fontawesome/webfonts/fa-solid-900.woff2 HTTP/1.1
Host: njf.com.tw
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://njf.com.tw/njf/public//fontawesome/css/all.css
Cookie: XSRF-TOKEN=eyJpdiI6IkNJXC9yeEFkZVNCRUJ0eTgwc2xESFNRPT0iLCJ2YWx1ZSI6Ik1yTEdmMGp4bDVHSnRuU1FhSXJqc1Qrc2JDVUljRzFQejJQdnR2Sit5cTEwdDN4N1dmVXRSMjFpakd5WnhTejciLCJtYWMiOiI1ZDM0MmE3NDgzYTZlMTM0MzE5MjY4ZWEzNmRiNzZjZmYxMjQ5NThmY2Y0ZmZlODU5NzQ1ZTA0ZWIzYTI1MzNiIn0%3D; laravel_session=eyJpdiI6ImZxS0xoa1dmVGRjQXZSYWtkbXo4dWc9PSIsInZhbHVlIjoiMkVLMVpqbWJ4dngwcGtGaStkQ3JyWkFZbzNYWEU0dWVJVkdFekNRZXoxXC9yS2pZcGJTTHdYQTlJekVtWVwveitLIiwibWFjIjoiZWY5MDI2NzgwZmEyNzY0NTA4OWU1ZTEyN2JmMDNhMjA1MjExZGVkNGYxMmI0YmM3MWRiZDA1YzcxZGQzZTI4YyJ9
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sat, 10 Sep 2022 01:49:34 GMT
Content-Type: application/octet-stream
Content-Length: 80252
Last-Modified: Mon, 10 May 2021 00:54:59 GMT
Connection: keep-alive
ETag: "60988463-1397c"
Strict-Transport-Security: max-age=31536000
Accept-Ranges: bytes

njf.com.tw/njf/public//fontawesome/webfonts/fa-regular-400.woff2

125.227.104.139

200 OK

14 kB

URL HTTP/1.1
njf.com.tw/njf/public//fontawesome/webfonts/fa-regular-400.woff2
IP
125.227.104.139:0
ASN
#3462 Data Communication Business Group

File type
Web Open Font Format (Version 2), TrueType, length 13588, version 331.-31327\012- data
Size
14 kB (13588 bytes)
Hash
847712aaabbeba674afdda86d31cab17
c07631a91ee71c0a1a84a3151db42b1f2d9a9692
b3b8c21edfe6c5e402fdc607366fd8d15949a65914f58134733dc68922bc8d61

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /njf/public//fontawesome/webfonts/fa-regular-400.woff2 HTTP/1.1
Host: njf.com.tw
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://njf.com.tw/njf/public//fontawesome/css/all.css
Cookie: XSRF-TOKEN=eyJpdiI6IkNJXC9yeEFkZVNCRUJ0eTgwc2xESFNRPT0iLCJ2YWx1ZSI6Ik1yTEdmMGp4bDVHSnRuU1FhSXJqc1Qrc2JDVUljRzFQejJQdnR2Sit5cTEwdDN4N1dmVXRSMjFpakd5WnhTejciLCJtYWMiOiI1ZDM0MmE3NDgzYTZlMTM0MzE5MjY4ZWEzNmRiNzZjZmYxMjQ5NThmY2Y0ZmZlODU5NzQ1ZTA0ZWIzYTI1MzNiIn0%3D; laravel_session=eyJpdiI6ImZxS0xoa1dmVGRjQXZSYWtkbXo4dWc9PSIsInZhbHVlIjoiMkVLMVpqbWJ4dngwcGtGaStkQ3JyWkFZbzNYWEU0dWVJVkdFekNRZXoxXC9yS2pZcGJTTHdYQTlJekVtWVwveitLIiwibWFjIjoiZWY5MDI2NzgwZmEyNzY0NTA4OWU1ZTEyN2JmMDNhMjA1MjExZGVkNGYxMmI0YmM3MWRiZDA1YzcxZGQzZTI4YyJ9
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sat, 10 Sep 2022 01:49:34 GMT
Content-Type: application/octet-stream
Content-Length: 13588
Last-Modified: Mon, 10 May 2021 00:54:59 GMT
Connection: keep-alive
ETag: "60988463-3514"
Strict-Transport-Security: max-age=31536000
Accept-Ranges: bytes

njf.com.tw/njf/public/fonts/glyphicons-halflings-regular.woff2

125.227.104.139

200 OK

18 kB

URL HTTP/1.1
njf.com.tw/njf/public/fonts/glyphicons-halflings-regular.woff2
IP
125.227.104.139:0
ASN
#3462 Data Communication Business Group

File type
Web Open Font Format (Version 2), TrueType, length 18028, version 1.589\012- data
Size
18 kB (18028 bytes)
Hash
448c34a56d699c29117adc64c43affeb
ca35b697d99cae4d1b60f2d60fcd37771987eb07
fe185d11a49676890d47bb783312a0cda5a44c4039214094e7957b4c040ef11c

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /njf/public/fonts/glyphicons-halflings-regular.woff2 HTTP/1.1
Host: njf.com.tw
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://njf.com.tw/njf/public/css/bootstrap.min.css
Cookie: XSRF-TOKEN=eyJpdiI6IkNJXC9yeEFkZVNCRUJ0eTgwc2xESFNRPT0iLCJ2YWx1ZSI6Ik1yTEdmMGp4bDVHSnRuU1FhSXJqc1Qrc2JDVUljRzFQejJQdnR2Sit5cTEwdDN4N1dmVXRSMjFpakd5WnhTejciLCJtYWMiOiI1ZDM0MmE3NDgzYTZlMTM0MzE5MjY4ZWEzNmRiNzZjZmYxMjQ5NThmY2Y0ZmZlODU5NzQ1ZTA0ZWIzYTI1MzNiIn0%3D; laravel_session=eyJpdiI6ImZxS0xoa1dmVGRjQXZSYWtkbXo4dWc9PSIsInZhbHVlIjoiMkVLMVpqbWJ4dngwcGtGaStkQ3JyWkFZbzNYWEU0dWVJVkdFekNRZXoxXC9yS2pZcGJTTHdYQTlJekVtWVwveitLIiwibWFjIjoiZWY5MDI2NzgwZmEyNzY0NTA4OWU1ZTEyN2JmMDNhMjA1MjExZGVkNGYxMmI0YmM3MWRiZDA1YzcxZGQzZTI4YyJ9
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sat, 10 Sep 2022 01:49:34 GMT
Content-Type: application/octet-stream
Content-Length: 18028
Last-Modified: Mon, 10 May 2021 00:54:59 GMT
Connection: keep-alive
ETag: "60988463-466c"
Strict-Transport-Security: max-age=31536000
Accept-Ranges: bytes

njf.com.tw/njf/public/css/%7B%7Basset('public/images/index/home_banner.png')%7D%7D

125.227.104.139

302 Found

332 B

URL HTTP/1.1
njf.com.tw/njf/public/css/%7B%7Basset('public/images/index/home_banner.png')%7D%7D
IP
125.227.104.139:0
ASN
#3462 Data Communication Business Group

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
332 B (332 bytes)
Hash
da7fd29ad81044796d86698edd24a242
7bb194700bb2b5b50b55b9fc85ff24d53b348b6f
39f69c12a747ed0664f487fdfec31c343e5ac123391fe8c9ed10435837b7d6b8

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /njf/public/css/%7B%7Basset('public/images/index/home_banner.png')%7D%7D HTTP/1.1
Host: njf.com.tw
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://njf.com.tw/njf/public/css/public-style.css
Cookie: XSRF-TOKEN=eyJpdiI6IkNJXC9yeEFkZVNCRUJ0eTgwc2xESFNRPT0iLCJ2YWx1ZSI6Ik1yTEdmMGp4bDVHSnRuU1FhSXJqc1Qrc2JDVUljRzFQejJQdnR2Sit5cTEwdDN4N1dmVXRSMjFpakd5WnhTejciLCJtYWMiOiI1ZDM0MmE3NDgzYTZlMTM0MzE5MjY4ZWEzNmRiNzZjZmYxMjQ5NThmY2Y0ZmZlODU5NzQ1ZTA0ZWIzYTI1MzNiIn0%3D; laravel_session=eyJpdiI6ImZxS0xoa1dmVGRjQXZSYWtkbXo4dWc9PSIsInZhbHVlIjoiMkVLMVpqbWJ4dngwcGtGaStkQ3JyWkFZbzNYWEU0dWVJVkdFekNRZXoxXC9yS2pZcGJTTHdYQTlJekVtWVwveitLIiwibWFjIjoiZWY5MDI2NzgwZmEyNzY0NTA4OWU1ZTEyN2JmMDNhMjA1MjExZGVkNGYxMmI0YmM3MWRiZDA1YzcxZGQzZTI4YyJ9
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 302 Found
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: no-cache, private
Date: Sat, 10 Sep 2022 01:49:34 GMT
Location: https://njf.com.tw/njf
Strict-Transport-Security: max-age=31536000

njf.com.tw/njf/public/images/index/right_arrow_circle.png

125.227.104.139

200 OK

1.1 kB

URL HTTP/1.1
njf.com.tw/njf/public/images/index/right_arrow_circle.png
IP
125.227.104.139:0
ASN
#3462 Data Communication Business Group

File type
PNG image data, 61 x 61, 8-bit/color RGBA, non-interlaced\012- data
Size
1.1 kB (1075 bytes)
Hash
666a2997553e5ad25b9f44d887078ae7
7a248c2506675f7d3063e69ed4039609a2bc7f15
947b63e213091b308763e135e24ed5064b5a44e5b3d9953243cd1e2a26b08d8b

HTTP Headers

GET /njf/public/images/index/right_arrow_circle.png HTTP/1.1
Host: njf.com.tw
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://njf.com.tw/njf/
Cookie: XSRF-TOKEN=eyJpdiI6IkNJXC9yeEFkZVNCRUJ0eTgwc2xESFNRPT0iLCJ2YWx1ZSI6Ik1yTEdmMGp4bDVHSnRuU1FhSXJqc1Qrc2JDVUljRzFQejJQdnR2Sit5cTEwdDN4N1dmVXRSMjFpakd5WnhTejciLCJtYWMiOiI1ZDM0MmE3NDgzYTZlMTM0MzE5MjY4ZWEzNmRiNzZjZmYxMjQ5NThmY2Y0ZmZlODU5NzQ1ZTA0ZWIzYTI1MzNiIn0%3D; laravel_session=eyJpdiI6ImZxS0xoa1dmVGRjQXZSYWtkbXo4dWc9PSIsInZhbHVlIjoiMkVLMVpqbWJ4dngwcGtGaStkQ3JyWkFZbzNYWEU0dWVJVkdFekNRZXoxXC9yS2pZcGJTTHdYQTlJekVtWVwveitLIiwibWFjIjoiZWY5MDI2NzgwZmEyNzY0NTA4OWU1ZTEyN2JmMDNhMjA1MjExZGVkNGYxMmI0YmM3MWRiZDA1YzcxZGQzZTI4YyJ9
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sat, 10 Sep 2022 01:49:34 GMT
Content-Type: image/png
Content-Length: 1075
Last-Modified: Mon, 10 May 2021 00:55:00 GMT
Connection: keep-alive
ETag: "60988464-433"
Strict-Transport-Security: max-age=31536000
Accept-Ranges: bytes

njf.com.tw/njf/get_current_news?currentYear=2022

125.227.104.139

200 OK

852 B

URL HTTP/1.1
njf.com.tw/njf/get_current_news?currentYear=2022
IP
125.227.104.139:0
ASN
#3462 Data Communication Business Group

File type
JSON data\012- , ASCII text, with very long lines (852), with no line terminators
Size
852 B (852 bytes)
Hash
250310242b580c510dffdf5171815188
73bb868f203e2d9fcd93638fea1c5f801abdba9d
795d4f159d4e6debe18139fd2878247d45540dfbc60c4be7918a06afbb870043

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /njf/get_current_news?currentYear=2022 HTTP/1.1
Host: njf.com.tw
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Referer: https://njf.com.tw/njf/
Cookie: XSRF-TOKEN=eyJpdiI6IkNJXC9yeEFkZVNCRUJ0eTgwc2xESFNRPT0iLCJ2YWx1ZSI6Ik1yTEdmMGp4bDVHSnRuU1FhSXJqc1Qrc2JDVUljRzFQejJQdnR2Sit5cTEwdDN4N1dmVXRSMjFpakd5WnhTejciLCJtYWMiOiI1ZDM0MmE3NDgzYTZlMTM0MzE5MjY4ZWEzNmRiNzZjZmYxMjQ5NThmY2Y0ZmZlODU5NzQ1ZTA0ZWIzYTI1MzNiIn0%3D; laravel_session=eyJpdiI6ImZxS0xoa1dmVGRjQXZSYWtkbXo4dWc9PSIsInZhbHVlIjoiMkVLMVpqbWJ4dngwcGtGaStkQ3JyWkFZbzNYWEU0dWVJVkdFekNRZXoxXC9yS2pZcGJTTHdYQTlJekVtWVwveitLIiwibWFjIjoiZWY5MDI2NzgwZmEyNzY0NTA4OWU1ZTEyN2JmMDNhMjA1MjExZGVkNGYxMmI0YmM3MWRiZDA1YzcxZGQzZTI4YyJ9
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Content-Type: application/json
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: no-cache, private
Date: Sat, 10 Sep 2022 01:49:34 GMT
Set-Cookie: XSRF-TOKEN=eyJpdiI6IkN3Ym5zc05sanZUanN2XC9XcklVdm9RPT0iLCJ2YWx1ZSI6ImVtSkIzaHJ5UnZkYlFqakJaN1U4Qmt0OTBvN0dLT2xWZVhcL1ZOb3hBRWJFS1RzUzRrdVFFRnpDa3Eyb1BrckVUIiwibWFjIjoiM2E2ZTJiYjZjMDk3NjBkOTI3ZGZjYzAxZDI4MGE1ZGVlMWUyYzYzYzJkZTFiYmFjNjNkZDQ2MTc5OWM3ODMzMSJ9; expires=Sat, 10-Sep-2022 01:50:34 GMT; Max-Age=60; path=/
laravel_session=eyJpdiI6IkN5aGRQZU5aZXlDTWswZmxpaTk0d2c9PSIsInZhbHVlIjoic29uMjNzcTAxaGdnMmVBQ0h5QzZWb3hmdnY1aFlSRVJac2pUUFwvR2o0Szl2VEpDRitCM3pjMlpiZDBOWGZldFgiLCJtYWMiOiIwZDlhMThmZjIxYjZkNjFiODkxMThmNTlmNzVkYzVlNGM1MjY3Y2FmMGVjMjkyMTJiMTAxNzRhNzlhNTFlOTQwIn0%3D; expires=Sat, 10-Sep-2022 01:50:34 GMT; Max-Age=60; path=/; httponly
Strict-Transport-Security: max-age=31536000

njf.com.tw/njf/public/timeline-slider/images/dot.gif

125.227.104.139

200 OK

801 B

URL HTTP/1.1
njf.com.tw/njf/public/timeline-slider/images/dot.gif
IP
125.227.104.139:0
ASN
#3462 Data Communication Business Group

File type
GIF image data, version 89a, 4 x 1\012- data
Size
801 B (801 bytes)
Hash
195229c4024ac61fc6c7820ee1338665
05152542540c46f190178c2a590979515b89a19f
6d3c21cdf0e2ab88b7666c86a1f5c4e5cce845d85a2d73801dc5e8595c88243a

HTTP Headers

GET /njf/public/timeline-slider/images/dot.gif HTTP/1.1
Host: njf.com.tw
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://njf.com.tw/njf/public/timeline-slider/css/styles.css
Cookie: XSRF-TOKEN=eyJpdiI6IkNJXC9yeEFkZVNCRUJ0eTgwc2xESFNRPT0iLCJ2YWx1ZSI6Ik1yTEdmMGp4bDVHSnRuU1FhSXJqc1Qrc2JDVUljRzFQejJQdnR2Sit5cTEwdDN4N1dmVXRSMjFpakd5WnhTejciLCJtYWMiOiI1ZDM0MmE3NDgzYTZlMTM0MzE5MjY4ZWEzNmRiNzZjZmYxMjQ5NThmY2Y0ZmZlODU5NzQ1ZTA0ZWIzYTI1MzNiIn0%3D; laravel_session=eyJpdiI6ImZxS0xoa1dmVGRjQXZSYWtkbXo4dWc9PSIsInZhbHVlIjoiMkVLMVpqbWJ4dngwcGtGaStkQ3JyWkFZbzNYWEU0dWVJVkdFekNRZXoxXC9yS2pZcGJTTHdYQTlJekVtWVwveitLIiwibWFjIjoiZWY5MDI2NzgwZmEyNzY0NTA4OWU1ZTEyN2JmMDNhMjA1MjExZGVkNGYxMmI0YmM3MWRiZDA1YzcxZGQzZTI4YyJ9
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sat, 10 Sep 2022 01:49:34 GMT
Content-Type: image/gif
Content-Length: 801
Last-Modified: Mon, 10 May 2021 00:55:06 GMT
Connection: keep-alive
ETag: "6098846a-321"
Strict-Transport-Security: max-age=31536000
Accept-Ranges: bytes

njf.com.tw/njf/public/timeline-slider/images/biggerdot.png

125.227.104.139

200 OK

152 B

URL HTTP/1.1
njf.com.tw/njf/public/timeline-slider/images/biggerdot.png
IP
125.227.104.139:0
ASN
#3462 Data Communication Business Group

File type
PNG image data, 16 x 8, 8-bit/color RGB, non-interlaced\012- data
Size
152 B (152 bytes)
Hash
5cddd6792515027e01cfad7fa0e7d198
f869441131297761ca47f54c71a9ae1c13707e05
5db84c5e62194f53c54815f25290860ab4fe663039c472cba9544e42af08e43b

HTTP Headers

GET /njf/public/timeline-slider/images/biggerdot.png HTTP/1.1
Host: njf.com.tw
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://njf.com.tw/njf/public/timeline-slider/css/styles.css
Cookie: XSRF-TOKEN=eyJpdiI6IkNJXC9yeEFkZVNCRUJ0eTgwc2xESFNRPT0iLCJ2YWx1ZSI6Ik1yTEdmMGp4bDVHSnRuU1FhSXJqc1Qrc2JDVUljRzFQejJQdnR2Sit5cTEwdDN4N1dmVXRSMjFpakd5WnhTejciLCJtYWMiOiI1ZDM0MmE3NDgzYTZlMTM0MzE5MjY4ZWEzNmRiNzZjZmYxMjQ5NThmY2Y0ZmZlODU5NzQ1ZTA0ZWIzYTI1MzNiIn0%3D; laravel_session=eyJpdiI6ImZxS0xoa1dmVGRjQXZSYWtkbXo4dWc9PSIsInZhbHVlIjoiMkVLMVpqbWJ4dngwcGtGaStkQ3JyWkFZbzNYWEU0dWVJVkdFekNRZXoxXC9yS2pZcGJTTHdYQTlJekVtWVwveitLIiwibWFjIjoiZWY5MDI2NzgwZmEyNzY0NTA4OWU1ZTEyN2JmMDNhMjA1MjExZGVkNGYxMmI0YmM3MWRiZDA1YzcxZGQzZTI4YyJ9
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sat, 10 Sep 2022 01:49:34 GMT
Content-Type: image/png
Content-Length: 152
Last-Modified: Mon, 10 May 2021 00:55:06 GMT
Connection: keep-alive
ETag: "6098846a-98"
Strict-Transport-Security: max-age=31536000
Accept-Ranges: bytes

njf.com.tw/njf/public/timeline-slider/images/next.png

125.227.104.139

200 OK

2.9 kB

URL HTTP/1.1
njf.com.tw/njf/public/timeline-slider/images/next.png
IP
125.227.104.139:0
ASN
#3462 Data Communication Business Group

File type
PNG image data, 22 x 114, 8-bit/color RGBA, non-interlaced\012- data
Size
2.9 kB (2944 bytes)
Hash
d4c1658e3481a5629706b16e48a41c9d
711b28920d5c9880b8204e0355770ec63ba07e8f
26c7c3618dda5da32086523f4d3085dbcde30bfb31d1a13102936cf2a43ade3d

HTTP Headers

GET /njf/public/timeline-slider/images/next.png HTTP/1.1
Host: njf.com.tw
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://njf.com.tw/njf/public/timeline-slider/css/styles.css
Cookie: XSRF-TOKEN=eyJpdiI6IkNJXC9yeEFkZVNCRUJ0eTgwc2xESFNRPT0iLCJ2YWx1ZSI6Ik1yTEdmMGp4bDVHSnRuU1FhSXJqc1Qrc2JDVUljRzFQejJQdnR2Sit5cTEwdDN4N1dmVXRSMjFpakd5WnhTejciLCJtYWMiOiI1ZDM0MmE3NDgzYTZlMTM0MzE5MjY4ZWEzNmRiNzZjZmYxMjQ5NThmY2Y0ZmZlODU5NzQ1ZTA0ZWIzYTI1MzNiIn0%3D; laravel_session=eyJpdiI6ImZxS0xoa1dmVGRjQXZSYWtkbXo4dWc9PSIsInZhbHVlIjoiMkVLMVpqbWJ4dngwcGtGaStkQ3JyWkFZbzNYWEU0dWVJVkdFekNRZXoxXC9yS2pZcGJTTHdYQTlJekVtWVwveitLIiwibWFjIjoiZWY5MDI2NzgwZmEyNzY0NTA4OWU1ZTEyN2JmMDNhMjA1MjExZGVkNGYxMmI0YmM3MWRiZDA1YzcxZGQzZTI4YyJ9
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sat, 10 Sep 2022 01:49:34 GMT
Content-Type: image/png
Content-Length: 2944
Last-Modified: Mon, 10 May 2021 00:55:06 GMT
Connection: keep-alive
ETag: "6098846a-b80"
Strict-Transport-Security: max-age=31536000
Accept-Ranges: bytes

njf.com.tw/njf/public/timeline-slider/images/prev.png

125.227.104.139

200 OK

2.9 kB

URL HTTP/1.1
njf.com.tw/njf/public/timeline-slider/images/prev.png
IP
125.227.104.139:0
ASN
#3462 Data Communication Business Group

File type
PNG image data, 22 x 114, 8-bit/color RGBA, non-interlaced\012- data
Size
2.9 kB (2935 bytes)
Hash
595af861f4f9e79753749e8b47da047f
5876150b93fc0d1b0a9a0fc5b22011e6fa332773
7c53ee11d46c8f24e1a16a61eddd8b843d632a8c6cab8ca19493e8389428c499

HTTP Headers

GET /njf/public/timeline-slider/images/prev.png HTTP/1.1
Host: njf.com.tw
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://njf.com.tw/njf/public/timeline-slider/css/styles.css
Cookie: XSRF-TOKEN=eyJpdiI6IkNJXC9yeEFkZVNCRUJ0eTgwc2xESFNRPT0iLCJ2YWx1ZSI6Ik1yTEdmMGp4bDVHSnRuU1FhSXJqc1Qrc2JDVUljRzFQejJQdnR2Sit5cTEwdDN4N1dmVXRSMjFpakd5WnhTejciLCJtYWMiOiI1ZDM0MmE3NDgzYTZlMTM0MzE5MjY4ZWEzNmRiNzZjZmYxMjQ5NThmY2Y0ZmZlODU5NzQ1ZTA0ZWIzYTI1MzNiIn0%3D; laravel_session=eyJpdiI6ImZxS0xoa1dmVGRjQXZSYWtkbXo4dWc9PSIsInZhbHVlIjoiMkVLMVpqbWJ4dngwcGtGaStkQ3JyWkFZbzNYWEU0dWVJVkdFekNRZXoxXC9yS2pZcGJTTHdYQTlJekVtWVwveitLIiwibWFjIjoiZWY5MDI2NzgwZmEyNzY0NTA4OWU1ZTEyN2JmMDNhMjA1MjExZGVkNGYxMmI0YmM3MWRiZDA1YzcxZGQzZTI4YyJ9
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sat, 10 Sep 2022 01:49:34 GMT
Content-Type: image/png
Content-Length: 2935
Last-Modified: Mon, 10 May 2021 00:55:06 GMT
Connection: keep-alive
ETag: "6098846a-b77"
Strict-Transport-Security: max-age=31536000
Accept-Ranges: bytes

njf.com.tw/njf/

125.227.104.139

200 OK

6.7 kB

URL HTTP/1.1
njf.com.tw/njf/
IP
125.227.104.139:0
ASN
#3462 Data Communication Business Group

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (499), with CRLF, LF line terminators
Size
6.7 kB (6670 bytes)
Hash
a1d2a9a1299948e5267b9dcffb7b29e5
433babf03d6a06fb04e34d69ebee8d739999f068
a7d2ad91668d37c58f947a560b2da2e728bd209369b537e5713afd4c2f7edd72

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /njf/ HTTP/1.1
Host: njf.com.tw
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://njf.com.tw/njf/public/css/public-style.css
Connection: keep-alive
Cookie: XSRF-TOKEN=eyJpdiI6IkNJXC9yeEFkZVNCRUJ0eTgwc2xESFNRPT0iLCJ2YWx1ZSI6Ik1yTEdmMGp4bDVHSnRuU1FhSXJqc1Qrc2JDVUljRzFQejJQdnR2Sit5cTEwdDN4N1dmVXRSMjFpakd5WnhTejciLCJtYWMiOiI1ZDM0MmE3NDgzYTZlMTM0MzE5MjY4ZWEzNmRiNzZjZmYxMjQ5NThmY2Y0ZmZlODU5NzQ1ZTA0ZWIzYTI1MzNiIn0%3D; laravel_session=eyJpdiI6ImZxS0xoa1dmVGRjQXZSYWtkbXo4dWc9PSIsInZhbHVlIjoiMkVLMVpqbWJ4dngwcGtGaStkQ3JyWkFZbzNYWEU0dWVJVkdFekNRZXoxXC9yS2pZcGJTTHdYQTlJekVtWVwveitLIiwibWFjIjoiZWY5MDI2NzgwZmEyNzY0NTA4OWU1ZTEyN2JmMDNhMjA1MjExZGVkNGYxMmI0YmM3MWRiZDA1YzcxZGQzZTI4YyJ9
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: no-cache, private
Date: Sat, 10 Sep 2022 01:49:35 GMT
Set-Cookie: XSRF-TOKEN=eyJpdiI6IkJNSlZDQzBWN1I1Tm1EMU92NkxORkE9PSIsInZhbHVlIjoicFkxbVRsdHpOZXl4QWhXd2lhZldUQ2NpMVJnRHViNENTWWFqZDAra1BkZEwzemtcLzZYOGQ5VUxDTG9aQTdQV04iLCJtYWMiOiJlOTEyYTM4YzljNDIzNzJjZTY4ZTNjN2ViNmQ5YzA1MTVkOTc1Yzc0YjM3Mjg1OTA4N2I1MDA1MTk5MGFiNWUwIn0%3D; expires=Sat, 10-Sep-2022 01:50:35 GMT; Max-Age=60; path=/
laravel_session=eyJpdiI6IjVaV3dGekI4YTJMR0drcFErZFRDOGc9PSIsInZhbHVlIjoiNVE3REcwXC9aZkVlTGdYY283OGlrRmx2THZGakZFcmhWNUJBWTBtNmcwSmhrSFdYZzBwUHdPWmVCTnJObmI4cXYiLCJtYWMiOiJiN2UzZDc0NTQ5NjQwMDc2YTRjZGI0MTFjNTE5OGFmMjgwYTMzMmZkM2IxN2Q5ZDdlMTIxNmVhN2RkM2Y2MjlkIn0%3D; expires=Sat, 10-Sep-2022 01:50:35 GMT; Max-Age=60; path=/; httponly
Strict-Transport-Security: max-age=31536000
Content-Encoding: gzip

njf.com.tw/njf/public/images/index/Banner_Hospital_Vector.png

125.227.104.139

200 OK

942 kB

URL HTTP/1.1
njf.com.tw/njf/public/images/index/Banner_Hospital_Vector.png
IP
125.227.104.139:0
ASN
#3462 Data Communication Business Group

File type
PNG image data, 3581 x 3173, 8-bit/color RGBA, non-interlaced\012- data
Size
942 kB (941755 bytes)
Hash
5c93fa524ed978d2ccb233fe6905bece
2e95f7332459df60ea1bc492bbe4394c7593eb41
32dca08478ae5d26f988e9defc4b6b1f3416f73ac0515af072730df5c2c72ac6

HTTP Headers

GET /njf/public/images/index/Banner_Hospital_Vector.png HTTP/1.1
Host: njf.com.tw
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://njf.com.tw/njf/
Cookie: XSRF-TOKEN=eyJpdiI6IkNJXC9yeEFkZVNCRUJ0eTgwc2xESFNRPT0iLCJ2YWx1ZSI6Ik1yTEdmMGp4bDVHSnRuU1FhSXJqc1Qrc2JDVUljRzFQejJQdnR2Sit5cTEwdDN4N1dmVXRSMjFpakd5WnhTejciLCJtYWMiOiI1ZDM0MmE3NDgzYTZlMTM0MzE5MjY4ZWEzNmRiNzZjZmYxMjQ5NThmY2Y0ZmZlODU5NzQ1ZTA0ZWIzYTI1MzNiIn0%3D; laravel_session=eyJpdiI6ImZxS0xoa1dmVGRjQXZSYWtkbXo4dWc9PSIsInZhbHVlIjoiMkVLMVpqbWJ4dngwcGtGaStkQ3JyWkFZbzNYWEU0dWVJVkdFekNRZXoxXC9yS2pZcGJTTHdYQTlJekVtWVwveitLIiwibWFjIjoiZWY5MDI2NzgwZmEyNzY0NTA4OWU1ZTEyN2JmMDNhMjA1MjExZGVkNGYxMmI0YmM3MWRiZDA1YzcxZGQzZTI4YyJ9
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sat, 10 Sep 2022 01:49:34 GMT
Content-Type: image/png
Content-Length: 941755
Last-Modified: Mon, 10 May 2021 00:55:00 GMT
Connection: keep-alive
ETag: "60988464-e5ebb"
Strict-Transport-Security: max-age=31536000
Accept-Ranges: bytes

njf.com.tw/njf/public/images/index/client-1.png

125.227.104.139

200 OK

52 kB

URL HTTP/1.1
njf.com.tw/njf/public/images/index/client-1.png
IP
125.227.104.139:0
ASN
#3462 Data Communication Business Group

File type
PNG image data, 519 x 151, 8-bit/color RGBA, non-interlaced\012- data
Size
52 kB (52156 bytes)
Hash
1a5625c0a17b4bb3b41c0be616693e26
bdda7785495c3b81cf4aa3b84a8ae453b2da8d50
1208ee0eb4f22a7b6024bde605512fa35e952c8fc77e6fb6c026ae993f5d3981

HTTP Headers

GET /njf/public/images/index/client-1.png HTTP/1.1
Host: njf.com.tw
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://njf.com.tw/njf/
Cookie: XSRF-TOKEN=eyJpdiI6IkNJXC9yeEFkZVNCRUJ0eTgwc2xESFNRPT0iLCJ2YWx1ZSI6Ik1yTEdmMGp4bDVHSnRuU1FhSXJqc1Qrc2JDVUljRzFQejJQdnR2Sit5cTEwdDN4N1dmVXRSMjFpakd5WnhTejciLCJtYWMiOiI1ZDM0MmE3NDgzYTZlMTM0MzE5MjY4ZWEzNmRiNzZjZmYxMjQ5NThmY2Y0ZmZlODU5NzQ1ZTA0ZWIzYTI1MzNiIn0%3D; laravel_session=eyJpdiI6ImZxS0xoa1dmVGRjQXZSYWtkbXo4dWc9PSIsInZhbHVlIjoiMkVLMVpqbWJ4dngwcGtGaStkQ3JyWkFZbzNYWEU0dWVJVkdFekNRZXoxXC9yS2pZcGJTTHdYQTlJekVtWVwveitLIiwibWFjIjoiZWY5MDI2NzgwZmEyNzY0NTA4OWU1ZTEyN2JmMDNhMjA1MjExZGVkNGYxMmI0YmM3MWRiZDA1YzcxZGQzZTI4YyJ9
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sat, 10 Sep 2022 01:49:35 GMT
Content-Type: image/png
Content-Length: 52156
Last-Modified: Mon, 10 May 2021 00:55:00 GMT
Connection: keep-alive
ETag: "60988464-cbbc"
Strict-Transport-Security: max-age=31536000
Accept-Ranges: bytes

njf.com.tw/njf/public/images/index/client-2.png

125.227.104.139

200 OK

40 kB

URL HTTP/1.1
njf.com.tw/njf/public/images/index/client-2.png
IP
125.227.104.139:0
ASN
#3462 Data Communication Business Group

File type
PNG image data, 1008 x 261, 8-bit/color RGBA, non-interlaced\012- data
Size
40 kB (39875 bytes)
Hash
1c3bfd81975db17fe31df2d5d84fabbf
9fee77e76aee160d7be489fe5e3262fe4505e1da
2f65db9741286f4a2cdeca2671b6d418ca18fac4e98cdd760eac103b1ab2fa81

HTTP Headers

GET /njf/public/images/index/client-2.png HTTP/1.1
Host: njf.com.tw
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://njf.com.tw/njf/
Cookie: XSRF-TOKEN=eyJpdiI6IkNJXC9yeEFkZVNCRUJ0eTgwc2xESFNRPT0iLCJ2YWx1ZSI6Ik1yTEdmMGp4bDVHSnRuU1FhSXJqc1Qrc2JDVUljRzFQejJQdnR2Sit5cTEwdDN4N1dmVXRSMjFpakd5WnhTejciLCJtYWMiOiI1ZDM0MmE3NDgzYTZlMTM0MzE5MjY4ZWEzNmRiNzZjZmYxMjQ5NThmY2Y0ZmZlODU5NzQ1ZTA0ZWIzYTI1MzNiIn0%3D; laravel_session=eyJpdiI6ImZxS0xoa1dmVGRjQXZSYWtkbXo4dWc9PSIsInZhbHVlIjoiMkVLMVpqbWJ4dngwcGtGaStkQ3JyWkFZbzNYWEU0dWVJVkdFekNRZXoxXC9yS2pZcGJTTHdYQTlJekVtWVwveitLIiwibWFjIjoiZWY5MDI2NzgwZmEyNzY0NTA4OWU1ZTEyN2JmMDNhMjA1MjExZGVkNGYxMmI0YmM3MWRiZDA1YzcxZGQzZTI4YyJ9
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sat, 10 Sep 2022 01:49:35 GMT
Content-Type: image/png
Content-Length: 39875
Last-Modified: Mon, 10 May 2021 00:55:00 GMT
Connection: keep-alive
ETag: "60988464-9bc3"
Strict-Transport-Security: max-age=31536000
Accept-Ranges: bytes

njf.com.tw/njf/public/images/index/oki-c711.png

125.227.104.139

200 OK

523 kB

URL HTTP/1.1
njf.com.tw/njf/public/images/index/oki-c711.png
IP
125.227.104.139:0
ASN
#3462 Data Communication Business Group

File type
PNG image data, 1000 x 1000, 8-bit/color RGBA, non-interlaced\012- data
Size
523 kB (522940 bytes)
Hash
634155f22ff6a1daefc4ff58484b7008
f700797abd19ad3f04fd44d644166e600e109adf
a8f837d5a9cd64061316c88197e9e9ce09070f44435c1b2889c62019c58351ef

HTTP Headers

GET /njf/public/images/index/oki-c711.png HTTP/1.1
Host: njf.com.tw
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://njf.com.tw/njf/
Cookie: XSRF-TOKEN=eyJpdiI6IkNJXC9yeEFkZVNCRUJ0eTgwc2xESFNRPT0iLCJ2YWx1ZSI6Ik1yTEdmMGp4bDVHSnRuU1FhSXJqc1Qrc2JDVUljRzFQejJQdnR2Sit5cTEwdDN4N1dmVXRSMjFpakd5WnhTejciLCJtYWMiOiI1ZDM0MmE3NDgzYTZlMTM0MzE5MjY4ZWEzNmRiNzZjZmYxMjQ5NThmY2Y0ZmZlODU5NzQ1ZTA0ZWIzYTI1MzNiIn0%3D; laravel_session=eyJpdiI6ImZxS0xoa1dmVGRjQXZSYWtkbXo4dWc9PSIsInZhbHVlIjoiMkVLMVpqbWJ4dngwcGtGaStkQ3JyWkFZbzNYWEU0dWVJVkdFekNRZXoxXC9yS2pZcGJTTHdYQTlJekVtWVwveitLIiwibWFjIjoiZWY5MDI2NzgwZmEyNzY0NTA4OWU1ZTEyN2JmMDNhMjA1MjExZGVkNGYxMmI0YmM3MWRiZDA1YzcxZGQzZTI4YyJ9
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sat, 10 Sep 2022 01:49:34 GMT
Content-Type: image/png
Content-Length: 522940
Last-Modified: Mon, 10 May 2021 00:55:00 GMT
Connection: keep-alive
ETag: "60988464-7fabc"
Strict-Transport-Security: max-age=31536000
Accept-Ranges: bytes

njf.com.tw/njf/public/images/index/client-3.png

125.227.104.139

200 OK

11 kB

URL HTTP/1.1
njf.com.tw/njf/public/images/index/client-3.png
IP
125.227.104.139:0
ASN
#3462 Data Communication Business Group

File type
PNG image data, 296 x 55, 8-bit/color RGBA, non-interlaced\012- data
Size
11 kB (11144 bytes)
Hash
dc900016aaac1f076caca7085fde90bb
f9bf18f93c3c325081055590bb455a101220ae88
c04b5c899e1c4aaa3ad517544a4171fe1aa8215f8c735048a7c3dcd4594a4e07

HTTP Headers

GET /njf/public/images/index/client-3.png HTTP/1.1
Host: njf.com.tw
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://njf.com.tw/njf/
Cookie: XSRF-TOKEN=eyJpdiI6IkNJXC9yeEFkZVNCRUJ0eTgwc2xESFNRPT0iLCJ2YWx1ZSI6Ik1yTEdmMGp4bDVHSnRuU1FhSXJqc1Qrc2JDVUljRzFQejJQdnR2Sit5cTEwdDN4N1dmVXRSMjFpakd5WnhTejciLCJtYWMiOiI1ZDM0MmE3NDgzYTZlMTM0MzE5MjY4ZWEzNmRiNzZjZmYxMjQ5NThmY2Y0ZmZlODU5NzQ1ZTA0ZWIzYTI1MzNiIn0%3D; laravel_session=eyJpdiI6ImZxS0xoa1dmVGRjQXZSYWtkbXo4dWc9PSIsInZhbHVlIjoiMkVLMVpqbWJ4dngwcGtGaStkQ3JyWkFZbzNYWEU0dWVJVkdFekNRZXoxXC9yS2pZcGJTTHdYQTlJekVtWVwveitLIiwibWFjIjoiZWY5MDI2NzgwZmEyNzY0NTA4OWU1ZTEyN2JmMDNhMjA1MjExZGVkNGYxMmI0YmM3MWRiZDA1YzcxZGQzZTI4YyJ9
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sat, 10 Sep 2022 01:49:35 GMT
Content-Type: image/png
Content-Length: 11144
Last-Modified: Mon, 10 May 2021 00:55:00 GMT
Connection: keep-alive
ETag: "60988464-2b88"
Strict-Transport-Security: max-age=31536000
Accept-Ranges: bytes

njf.com.tw/njf/public/images/index/client-4.png

125.227.104.139

200 OK

90 kB

URL HTTP/1.1
njf.com.tw/njf/public/images/index/client-4.png
IP
125.227.104.139:0
ASN
#3462 Data Communication Business Group

File type
PNG image data, 513 x 98, 8-bit/color RGBA, non-interlaced\012- data
Size
90 kB (90432 bytes)
Hash
677a2c8d4659b4e010eced025e19070d
3a18595d3d86821962bca1df337aaeb07b0d0346
935c59e89caf307762259d775e83f2da2c1290439ef482100f6eed9308100cac

HTTP Headers

GET /njf/public/images/index/client-4.png HTTP/1.1
Host: njf.com.tw
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://njf.com.tw/njf/
Cookie: XSRF-TOKEN=eyJpdiI6IkNJXC9yeEFkZVNCRUJ0eTgwc2xESFNRPT0iLCJ2YWx1ZSI6Ik1yTEdmMGp4bDVHSnRuU1FhSXJqc1Qrc2JDVUljRzFQejJQdnR2Sit5cTEwdDN4N1dmVXRSMjFpakd5WnhTejciLCJtYWMiOiI1ZDM0MmE3NDgzYTZlMTM0MzE5MjY4ZWEzNmRiNzZjZmYxMjQ5NThmY2Y0ZmZlODU5NzQ1ZTA0ZWIzYTI1MzNiIn0%3D; laravel_session=eyJpdiI6ImZxS0xoa1dmVGRjQXZSYWtkbXo4dWc9PSIsInZhbHVlIjoiMkVLMVpqbWJ4dngwcGtGaStkQ3JyWkFZbzNYWEU0dWVJVkdFekNRZXoxXC9yS2pZcGJTTHdYQTlJekVtWVwveitLIiwibWFjIjoiZWY5MDI2NzgwZmEyNzY0NTA4OWU1ZTEyN2JmMDNhMjA1MjExZGVkNGYxMmI0YmM3MWRiZDA1YzcxZGQzZTI4YyJ9
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sat, 10 Sep 2022 01:49:35 GMT
Content-Type: image/png
Content-Length: 90432
Last-Modified: Mon, 10 May 2021 00:55:00 GMT
Connection: keep-alive
ETag: "60988464-16140"
Strict-Transport-Security: max-age=31536000
Accept-Ranges: bytes

njf.com.tw/njf/public/images/index/client-5.png

125.227.104.139

200 OK

267 kB

URL HTTP/1.1
njf.com.tw/njf/public/images/index/client-5.png
IP
125.227.104.139:0
ASN
#3462 Data Communication Business Group

File type
PNG image data, 1013 x 304, 8-bit/color RGB, non-interlaced\012- data
Size
267 kB (267266 bytes)
Hash
496a4f01df0e1a017d0c157817a1aa78
e5dac44b451f3424ea00481dd75c380e870a24fb
ffb7ae0265a003deb3323ac4eb42ca71ae628ded53cdbe3969913e830c4ab2d8

HTTP Headers

GET /njf/public/images/index/client-5.png HTTP/1.1
Host: njf.com.tw
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://njf.com.tw/njf/
Cookie: XSRF-TOKEN=eyJpdiI6IkNJXC9yeEFkZVNCRUJ0eTgwc2xESFNRPT0iLCJ2YWx1ZSI6Ik1yTEdmMGp4bDVHSnRuU1FhSXJqc1Qrc2JDVUljRzFQejJQdnR2Sit5cTEwdDN4N1dmVXRSMjFpakd5WnhTejciLCJtYWMiOiI1ZDM0MmE3NDgzYTZlMTM0MzE5MjY4ZWEzNmRiNzZjZmYxMjQ5NThmY2Y0ZmZlODU5NzQ1ZTA0ZWIzYTI1MzNiIn0%3D; laravel_session=eyJpdiI6ImZxS0xoa1dmVGRjQXZSYWtkbXo4dWc9PSIsInZhbHVlIjoiMkVLMVpqbWJ4dngwcGtGaStkQ3JyWkFZbzNYWEU0dWVJVkdFekNRZXoxXC9yS2pZcGJTTHdYQTlJekVtWVwveitLIiwibWFjIjoiZWY5MDI2NzgwZmEyNzY0NTA4OWU1ZTEyN2JmMDNhMjA1MjExZGVkNGYxMmI0YmM3MWRiZDA1YzcxZGQzZTI4YyJ9
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sat, 10 Sep 2022 01:49:35 GMT
Content-Type: image/png
Content-Length: 267266
Last-Modified: Mon, 10 May 2021 00:55:00 GMT
Connection: keep-alive
ETag: "60988464-41402"
Strict-Transport-Security: max-age=31536000
Accept-Ranges: bytes

njf.com.tw/njf/public/images/index/medicine-screen.jpg

125.227.104.139

200 OK

447 kB

URL HTTP/1.1
njf.com.tw/njf/public/images/index/medicine-screen.jpg
IP
125.227.104.139:0
ASN
#3462 Data Communication Business Group

File type
JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=12, height=2251, bps=0, PhotometricIntepretation=RGB, orientation=upper-left, width=4001], baseline, precision 8, 4001x2251, components 3\012- data
Size
447 kB (446992 bytes)
Hash
f7aa4460b02a749644862aebd6f8f855
67e80701c695cb05e5150d7c6fed8456cc5c02de
005dcc62b3ef4db18e64a1994e73667996b6b7e3c9b87cf7aca5aeee313edc04

HTTP Headers

GET /njf/public/images/index/medicine-screen.jpg HTTP/1.1
Host: njf.com.tw
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://njf.com.tw/njf/
Cookie: XSRF-TOKEN=eyJpdiI6IkNJXC9yeEFkZVNCRUJ0eTgwc2xESFNRPT0iLCJ2YWx1ZSI6Ik1yTEdmMGp4bDVHSnRuU1FhSXJqc1Qrc2JDVUljRzFQejJQdnR2Sit5cTEwdDN4N1dmVXRSMjFpakd5WnhTejciLCJtYWMiOiI1ZDM0MmE3NDgzYTZlMTM0MzE5MjY4ZWEzNmRiNzZjZmYxMjQ5NThmY2Y0ZmZlODU5NzQ1ZTA0ZWIzYTI1MzNiIn0%3D; laravel_session=eyJpdiI6ImZxS0xoa1dmVGRjQXZSYWtkbXo4dWc9PSIsInZhbHVlIjoiMkVLMVpqbWJ4dngwcGtGaStkQ3JyWkFZbzNYWEU0dWVJVkdFekNRZXoxXC9yS2pZcGJTTHdYQTlJekVtWVwveitLIiwibWFjIjoiZWY5MDI2NzgwZmEyNzY0NTA4OWU1ZTEyN2JmMDNhMjA1MjExZGVkNGYxMmI0YmM3MWRiZDA1YzcxZGQzZTI4YyJ9
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sat, 10 Sep 2022 01:49:35 GMT
Content-Type: image/jpeg
Content-Length: 446992
Last-Modified: Mon, 10 May 2021 00:55:00 GMT
Connection: keep-alive
ETag: "60988464-6d210"
Strict-Transport-Security: max-age=31536000
Accept-Ranges: bytes

njf.com.tw/njf/public/images/index/client-6.png

125.227.104.139

200 OK

92 kB

URL HTTP/1.1
njf.com.tw/njf/public/images/index/client-6.png
IP
125.227.104.139:0
ASN
#3462 Data Communication Business Group

File type
PNG image data, 895 x 236, 8-bit/color RGBA, non-interlaced\012- data
Size
92 kB (92355 bytes)
Hash
45ea1502c2d6c89a4f2e3388a7249f61
5da2f63de7d4e9ea84267e83efb6b8837e7cc388
f040180de1b11bf1c25e0b5329d15d717800892bd908deb8c762d0bff523b9a5

HTTP Headers

GET /njf/public/images/index/client-6.png HTTP/1.1
Host: njf.com.tw
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://njf.com.tw/njf/
Cookie: XSRF-TOKEN=eyJpdiI6IkNJXC9yeEFkZVNCRUJ0eTgwc2xESFNRPT0iLCJ2YWx1ZSI6Ik1yTEdmMGp4bDVHSnRuU1FhSXJqc1Qrc2JDVUljRzFQejJQdnR2Sit5cTEwdDN4N1dmVXRSMjFpakd5WnhTejciLCJtYWMiOiI1ZDM0MmE3NDgzYTZlMTM0MzE5MjY4ZWEzNmRiNzZjZmYxMjQ5NThmY2Y0ZmZlODU5NzQ1ZTA0ZWIzYTI1MzNiIn0%3D; laravel_session=eyJpdiI6ImZxS0xoa1dmVGRjQXZSYWtkbXo4dWc9PSIsInZhbHVlIjoiMkVLMVpqbWJ4dngwcGtGaStkQ3JyWkFZbzNYWEU0dWVJVkdFekNRZXoxXC9yS2pZcGJTTHdYQTlJekVtWVwveitLIiwibWFjIjoiZWY5MDI2NzgwZmEyNzY0NTA4OWU1ZTEyN2JmMDNhMjA1MjExZGVkNGYxMmI0YmM3MWRiZDA1YzcxZGQzZTI4YyJ9
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sat, 10 Sep 2022 01:49:35 GMT
Content-Type: image/png
Content-Length: 92355
Last-Modified: Mon, 10 May 2021 00:55:00 GMT
Connection: keep-alive
ETag: "60988464-168c3"
Strict-Transport-Security: max-age=31536000
Accept-Ranges: bytes

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
ebc205cf750164c31d1fce2318d1636b
9309949107d69193b1c5156d45fbcc91e20a0fe4
4ab7f53d17c5d642e17a3e78aa93dc133c4713e44ccccb849f04fdcca62be8b6

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 10 Sep 2022 01:49:36 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
a4ae55dbf8e22a357ee36e37fafa37af
18d33f606a8bc692802cfaa3a22ceb4a5eedca8c
8343a46c0a87b15be71cab0ae84912ed07d3104d4b621c55e3cd69367f58ebb6

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 10 Sep 2022 01:49:36 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.google-analytics.com/analytics.js

142.250.74.174

200 OK

20 kB

URL HTTP/2
www.google-analytics.com/analytics.js
IP
142.250.74.174:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (1325)
Size
20 kB (20006 bytes)
Hash
56f5d7f608e25d64207135f045f988cb
901eb59372ae330ae85e1384da93479b21ae1082
1910daea79e5a9d04829a91e432dfa56f45a80a3e14a8cf667fec73af9fd3d29

HTTP Headers

GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://njf.com.tw/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20006
date: Sat, 10 Sep 2022 00:41:12 GMT
expires: Sat, 10 Sep 2022 02:41:12 GMT
cache-control: public, max-age=7200
age: 4104
last-modified: Wed, 13 Apr 2022 21:02:38 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

www.gstatic.com/recaptcha/releases/duyHVVR9Brf6N2GewjkPRfsA/recaptcha__en.js

142.250.74.163

200 OK

158 kB

URL HTTP/2
www.gstatic.com/recaptcha/releases/duyHVVR9Brf6N2GewjkPRfsA/recaptcha__en.js
IP
142.250.74.163:0
ASN
#15169 GOOGLE

File type
HTML document, ASCII text, with very long lines (579)
Size
158 kB (158056 bytes)
Hash
d63a69f898e1d00cfc7c871744ded8c4
e166540eccb571c95c8c1135c2168cf5df306991
ed7892ca1498d6dfc0ff8b354ab8c409eed81b1fa77b427467815d0c7f45021c

HTTP Headers

GET /recaptcha/releases/duyHVVR9Brf6N2GewjkPRfsA/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://njf.com.tw
Connection: keep-alive
Referer: https://njf.com.tw/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 158056
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 09 Sep 2022 21:31:14 GMT
expires: Sat, 09 Sep 2023 21:31:14 GMT
cache-control: public, max-age=31536000
age: 15502
last-modified: Fri, 02 Sep 2022 18:40:58 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
a4ae55dbf8e22a357ee36e37fafa37af
18d33f606a8bc692802cfaa3a22ceb4a5eedca8c
8343a46c0a87b15be71cab0ae84912ed07d3104d4b621c55e3cd69367f58ebb6

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 10 Sep 2022 01:49:36 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
ebc205cf750164c31d1fce2318d1636b
9309949107d69193b1c5156d45fbcc91e20a0fe4
4ab7f53d17c5d642e17a3e78aa93dc133c4713e44ccccb849f04fdcca62be8b6

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 10 Sep 2022 01:49:36 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.google-analytics.com/j/collect?v=1&_v=j96&a=2025889283&t=pageview&_s=1&dl=https%3A%2F%2Fnjf.com.tw%2Fnjf%2F&ul=en-us&de=UTF-8&dt=%E6%96%B0%E9%89%85%E5%B3%B0%E5%9C%8B%E9%9A%9B%E7%A7%91%E6%8A%80%E6%9C%89%E9%99%90%E5%85%AC%E5%8F%B8&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=IEBAAEABAAAAAC~&jid=597755851&gjid=560991432&cid=1235824196.1662774567&tid=UA-76241117-1&_gid=432783219.1662774567&_r=1&_slc=1&z=1179383434

142.250.74.174

200 OK

4 B

URL HTTP/2
www.google-analytics.com/j/collect?v=1&_v=j96&a=2025889283&t=pageview&_s=1&dl=https%3A%2F%2Fnjf.com.tw%2Fnjf%2F&ul=en-us&de=UTF-8&dt=%E6%96%B0%E9%89%85%E5%B3%B0%E5%9C%8B%E9%9A%9B%E7%A7%91%E6%8A%80%E6%9C%89%E9%99%90%E5%85%AC%E5%8F%B8&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=IEBAAEABAAAAAC~&jid=597755851&gjid=560991432&cid=1235824196.1662774567&tid=UA-76241117-1&_gid=432783219.1662774567&_r=1&_slc=1&z=1179383434
IP
142.250.74.174:0
ASN
#15169 GOOGLE

File type
ASCII text, with no line terminators
Size
4 B (4 bytes)
Hash
9e92e190700c1af4539b40c2171320a9
209bcdb79e6067b51091ce8586d4b977f25b67d8
aec60bc104db041b1512185839f18f52986df7e569e5445f740dd60f763fbca8

HTTP Headers

POST /j/collect?v=1&_v=j96&a=2025889283&t=pageview&_s=1&dl=https%3A%2F%2Fnjf.com.tw%2Fnjf%2F&ul=en-us&de=UTF-8&dt=%E6%96%B0%E9%89%85%E5%B3%B0%E5%9C%8B%E9%9A%9B%E7%A7%91%E6%8A%80%E6%9C%89%E9%99%90%E5%85%AC%E5%8F%B8&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=IEBAAEABAAAAAC~&jid=597755851&gjid=560991432&cid=1235824196.1662774567&tid=UA-76241117-1&_gid=432783219.1662774567&_r=1&_slc=1&z=1179383434 HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://njf.com.tw
Connection: keep-alive
Referer: https://njf.com.tw/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
access-control-allow-origin: https://njf.com.tw
date: Sat, 10 Sep 2022 01:49:36 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 4
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
97e5566c275b9fe27464690811145846
fa8973c8004db59d9a8fd46e9743fb6c9a8d3efd
e77cd1a4510c736e628aa10719f7694d7c7fef15adf1a449d800f90cde76fb88

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 10 Sep 2022 01:49:36 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j96&tid=UA-76241117-1&cid=1235824196.1662774567&jid=597755851&gjid=560991432&_gid=432783219.1662774567&_u=IEBAAEAAAAAAAC~&z=1430457243

142.251.1.155

200 OK

1 B

URL HTTP/2
stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j96&tid=UA-76241117-1&cid=1235824196.1662774567&jid=597755851&gjid=560991432&_gid=432783219.1662774567&_u=IEBAAEAAAAAAAC~&z=1430457243
IP
142.251.1.155:0
ASN
#15169 GOOGLE

File type
very short file (no magic)
Size
1 B (1 bytes)
Hash
c4ca4238a0b923820dcc509a6f75849b
356a192b7913b04c54574d18c28d46e6395428ab
6b86b273ff34fce19d6b804eff5a3f5747ada4eaa22f1d49c01e52ddb7875b4b

HTTP Headers

POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j96&tid=UA-76241117-1&cid=1235824196.1662774567&jid=597755851&gjid=560991432&_gid=432783219.1662774567&_u=IEBAAEAAAAAAAC~&z=1430457243 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://njf.com.tw
Connection: keep-alive
Referer: https://njf.com.tw/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: https://njf.com.tw
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Sat, 10 Sep 2022 01:49:36 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 1
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

njf.com.tw/njf/public/images/NJF.ico

125.227.104.139

200 OK

4.3 kB

URL HTTP/1.1
njf.com.tw/njf/public/images/NJF.ico
IP
125.227.104.139:0
ASN
#3462 Data Communication Business Group

File type
MS Windows icon resource - 1 icon, 32x32, 32 bits/pixel\012- data
Size
4.3 kB (4286 bytes)
Hash
ca21cc61f377a14af4e8bea23af40838
32ad918c4fac30de36bf87300aa55f01f4e2b4bd
887f9f11109b1c8481bfbcd54f2bf3126f169a313597c8b00623e2fef6839ff5

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /njf/public/images/NJF.ico HTTP/1.1
Host: njf.com.tw
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://njf.com.tw/njf/
Cookie: XSRF-TOKEN=eyJpdiI6IkJNSlZDQzBWN1I1Tm1EMU92NkxORkE9PSIsInZhbHVlIjoicFkxbVRsdHpOZXl4QWhXd2lhZldUQ2NpMVJnRHViNENTWWFqZDAra1BkZEwzemtcLzZYOGQ5VUxDTG9aQTdQV04iLCJtYWMiOiJlOTEyYTM4YzljNDIzNzJjZTY4ZTNjN2ViNmQ5YzA1MTVkOTc1Yzc0YjM3Mjg1OTA4N2I1MDA1MTk5MGFiNWUwIn0%3D; laravel_session=eyJpdiI6IjVaV3dGekI4YTJMR0drcFErZFRDOGc9PSIsInZhbHVlIjoiNVE3REcwXC9aZkVlTGdYY283OGlrRmx2THZGakZFcmhWNUJBWTBtNmcwSmhrSFdYZzBwUHdPWmVCTnJObmI4cXYiLCJtYWMiOiJiN2UzZDc0NTQ5NjQwMDc2YTRjZGI0MTFjNTE5OGFmMjgwYTMzMmZkM2IxN2Q5ZDdlMTIxNmVhN2RkM2Y2MjlkIn0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sat, 10 Sep 2022 01:49:36 GMT
Content-Type: image/x-icon
Content-Length: 4286
Last-Modified: Mon, 10 May 2021 00:55:04 GMT
Connection: keep-alive
ETag: "60988468-10be"
Strict-Transport-Security: max-age=31536000
Accept-Ranges: bytes

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
97e5566c275b9fe27464690811145846
fa8973c8004db59d9a8fd46e9743fb6c9a8d3efd
e77cd1a4510c736e628aa10719f7694d7c7fef15adf1a449d800f90cde76fb88

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 10 Sep 2022 01:49:36 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

njf.com.tw/njf/public/images/logo.png

125.227.104.139

200 OK

981 kB

URL HTTP/1.1
njf.com.tw/njf/public/images/logo.png
IP
125.227.104.139:0
ASN
#3462 Data Communication Business Group

File type
PNG image data, 3938 x 504, 8-bit/color RGBA, non-interlaced\012- data
Size
981 kB (981183 bytes)
Hash
9602d111236db23e908c6e63c19cb08b
763bd46cfc00cb860954c8279edb4db1fee3930c
31a070b26464f8d29ad448d85efa61118774482bb010da432217463d49b851d5

HTTP Headers

GET /njf/public/images/logo.png HTTP/1.1
Host: njf.com.tw
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://njf.com.tw/njf/
Cookie: XSRF-TOKEN=eyJpdiI6IkNJXC9yeEFkZVNCRUJ0eTgwc2xESFNRPT0iLCJ2YWx1ZSI6Ik1yTEdmMGp4bDVHSnRuU1FhSXJqc1Qrc2JDVUljRzFQejJQdnR2Sit5cTEwdDN4N1dmVXRSMjFpakd5WnhTejciLCJtYWMiOiI1ZDM0MmE3NDgzYTZlMTM0MzE5MjY4ZWEzNmRiNzZjZmYxMjQ5NThmY2Y0ZmZlODU5NzQ1ZTA0ZWIzYTI1MzNiIn0%3D; laravel_session=eyJpdiI6ImZxS0xoa1dmVGRjQXZSYWtkbXo4dWc9PSIsInZhbHVlIjoiMkVLMVpqbWJ4dngwcGtGaStkQ3JyWkFZbzNYWEU0dWVJVkdFekNRZXoxXC9yS2pZcGJTTHdYQTlJekVtWVwveitLIiwibWFjIjoiZWY5MDI2NzgwZmEyNzY0NTA4OWU1ZTEyN2JmMDNhMjA1MjExZGVkNGYxMmI0YmM3MWRiZDA1YzcxZGQzZTI4YyJ9
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sat, 10 Sep 2022 01:49:34 GMT
Content-Type: image/png
Content-Length: 981183
Last-Modified: Mon, 10 May 2021 00:55:00 GMT
Connection: keep-alive
ETag: "60988464-ef8bf"
Strict-Transport-Security: max-age=31536000
Accept-Ranges: bytes

njf.com.tw/njf/public/images/index/abt-us.jpg

125.227.104.139

200 OK

1.1 MB

URL HTTP/1.1
njf.com.tw/njf/public/images/index/abt-us.jpg
IP
125.227.104.139:0
ASN
#3462 Data Communication Business Group

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 144x144, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=5, orientation=upper-left, xresolution=74, yresolution=82, resolutionunit=2], baseline, precision 8, 2880x1447, components 3\012- data
Size
1.1 MB (1102408 bytes)
Hash
7d3e083c6da941ffd6241dc8c09ac54b
0d4c98d6765209e047b5fac6866dc23815cd0cd0
873bd767ec2bd96abea71246c6305ffa81000ac801c4a61639df110f8ce179e0

HTTP Headers

GET /njf/public/images/index/abt-us.jpg HTTP/1.1
Host: njf.com.tw
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://njf.com.tw/njf/
Cookie: XSRF-TOKEN=eyJpdiI6IkNJXC9yeEFkZVNCRUJ0eTgwc2xESFNRPT0iLCJ2YWx1ZSI6Ik1yTEdmMGp4bDVHSnRuU1FhSXJqc1Qrc2JDVUljRzFQejJQdnR2Sit5cTEwdDN4N1dmVXRSMjFpakd5WnhTejciLCJtYWMiOiI1ZDM0MmE3NDgzYTZlMTM0MzE5MjY4ZWEzNmRiNzZjZmYxMjQ5NThmY2Y0ZmZlODU5NzQ1ZTA0ZWIzYTI1MzNiIn0%3D; laravel_session=eyJpdiI6ImZxS0xoa1dmVGRjQXZSYWtkbXo4dWc9PSIsInZhbHVlIjoiMkVLMVpqbWJ4dngwcGtGaStkQ3JyWkFZbzNYWEU0dWVJVkdFekNRZXoxXC9yS2pZcGJTTHdYQTlJekVtWVwveitLIiwibWFjIjoiZWY5MDI2NzgwZmEyNzY0NTA4OWU1ZTEyN2JmMDNhMjA1MjExZGVkNGYxMmI0YmM3MWRiZDA1YzcxZGQzZTI4YyJ9
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sat, 10 Sep 2022 01:49:35 GMT
Content-Type: image/jpeg
Content-Length: 1102408
Last-Modified: Mon, 10 May 2021 00:54:59 GMT
Connection: keep-alive
ETag: "60988463-10d248"
Strict-Transport-Security: max-age=31536000
Accept-Ranges: bytes

34.120.237.76

200 OK

9.8 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0bedecf7-d9af-4aa7-88b0-94b2a33f9e1a.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
9.8 kB (9766 bytes)
Hash
7ade70e6dbcfb3ca1765f95112671e69
3768753be084c0e0fc268be5b192d02d769114b6
9670a3bf2476ba193cfeb3153c1254bdcfc980a28503dda0d9b398a3a59f53f4

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0bedecf7-d9af-4aa7-88b0-94b2a33f9e1a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
content-length: 9766
x-amzn-requestid: 720a4111-91de-4672-88c8-f40db517c07d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YHsjRE13oAMFbCA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63195ae1-288f1f5456bf4d146dcf774c;Sampled=0
x-amzn-remapped-date: Thu, 08 Sep 2022 03:00:49 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: HwwG0Hjf8uZn1AtbLU_wKs3w9lict3tRP31XQY6tIxDz9KDNaBMAqw==
via: 1.1 000f4a2f631bace380a0afa747a82482.cloudfront.net (CloudFront), 1.1 4f3feb5c4393987d42d1971d404d7cea.cloudfront.net (CloudFront), 1.1 google
date: Fri, 09 Sep 2022 05:24:38 GMT
age: 73500
etag: "3768753be084c0e0fc268be5b192d02d769114b6"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

njf.com.tw/njf/public/wow/animate.css

125.227.104.139

200 OK

0 B

URL HTTP/1.1
njf.com.tw/njf/public/wow/animate.css
IP
125.227.104.139:0
ASN
#3462 Data Communication Business Group

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /njf/public/wow/animate.css HTTP/1.1
Host: njf.com.tw
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://njf.com.tw/njf/
Cookie: XSRF-TOKEN=eyJpdiI6IkNJXC9yeEFkZVNCRUJ0eTgwc2xESFNRPT0iLCJ2YWx1ZSI6Ik1yTEdmMGp4bDVHSnRuU1FhSXJqc1Qrc2JDVUljRzFQejJQdnR2Sit5cTEwdDN4N1dmVXRSMjFpakd5WnhTejciLCJtYWMiOiI1ZDM0MmE3NDgzYTZlMTM0MzE5MjY4ZWEzNmRiNzZjZmYxMjQ5NThmY2Y0ZmZlODU5NzQ1ZTA0ZWIzYTI1MzNiIn0%3D; laravel_session=eyJpdiI6ImZxS0xoa1dmVGRjQXZSYWtkbXo4dWc9PSIsInZhbHVlIjoiMkVLMVpqbWJ4dngwcGtGaStkQ3JyWkFZbzNYWEU0dWVJVkdFekNRZXoxXC9yS2pZcGJTTHdYQTlJekVtWVwveitLIiwibWFjIjoiZWY5MDI2NzgwZmEyNzY0NTA4OWU1ZTEyN2JmMDNhMjA1MjExZGVkNGYxMmI0YmM3MWRiZDA1YzcxZGQzZTI4YyJ9
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sat, 10 Sep 2022 01:49:33 GMT
Content-Type: text/css
Content-Length: 57095
Last-Modified: Mon, 10 May 2021 00:55:06 GMT
Connection: keep-alive
ETag: "6098846a-df07"
Strict-Transport-Security: max-age=31536000
Accept-Ranges: bytes

qr-official.line.me/L/3CWmSG9bO0.png

147.92.146.123

200 OK

0 B

URL HTTP/2
qr-official.line.me/L/3CWmSG9bO0.png
IP
147.92.146.123:0
ASN
#38631 LINE Corporation

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /L/3CWmSG9bO0.png HTTP/1.1
Host: qr-official.line.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://njf.com.tw/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 10 Sep 2022 01:49:32 GMT
expires: Sun, 11 Sep 2022 01:49:32 GMT
cache-control: max-age=86400
X-Firefox-Spdy: h2

fonts.googleapis.com/earlyaccess/notosanstc.css

142.250.74.10

200 OK

0 B

URL HTTP/2
fonts.googleapis.com/earlyaccess/notosanstc.css
IP
142.250.74.10:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /earlyaccess/notosanstc.css HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://njf.com.tw/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sat, 10 Sep 2022 01:49:31 GMT
date: Sat, 10 Sep 2022 01:49:31 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

JavaScript (18)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations