firefox.settings.services.mozilla.com/v1/
143.204.55.36200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP 143.204.55.36:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 91dd975a7b17b2922dd23c0e49314e40
57a2ece1e3cee7c4ebf927f2ba92f52cac395fe2
09966873bbf317f8910c59544cfde2a6d46e8acd2905797cc7c85c6b4d18ea8a
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Length, Content-Type, Alert, Backoff, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Sat, 10 Sep 2022 01:06:09 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 96c778ce6156d12f24b8b6cdaa0cbf66.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: LYBJmT8zykJ5KNPNr6kIW8jYZCU-by2vllzlRXYBw2RzrGmArpGcsw==
Age: 2600
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash f55e483f32b3fd50b1a2414aaada9b61
9d6b22edb98866e002e3b1ace44dfb0f8d00935f
4b09e1d2b887ded061e4ec5f82ec70ce699eeed428acc6b4fd3ef10ed9233c89
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4B09E1D2B887DED061E4EC5F82EC70CE699EEED428ACC6B4FD3EF10ED9233C89"
Last-Modified: Thu, 08 Sep 2022 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6618
Expires: Sat, 10 Sep 2022 03:39:47 GMT
Date: Sat, 10 Sep 2022 01:49:29 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain
143.204.55.35200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain
IP 143.204.55.35:0
File type PEM certificate\012- , ASCII text
Hash 742edb4038f38bc533514982f3d2e861
cc3a20c8dc2a8c632ef9387a2744253f1e3fdef1
b6bfa49d3d135035701231db2fffc0c0643444394009a94c6a1b4d829d6b8345
GET /chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Sat, 20 Aug 2022 23:18:05 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Fri, 09 Sep 2022 03:46:35 GMT
etag: "742edb4038f38bc533514982f3d2e861"
x-cache: Hit from cloudfront
via: 1.1 a034aae43a19aef875fa395182990970.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: uFp1IKyFwB5foX8e5A9CtaGcgGNLINMZ32yGh4_jHQTWnjkppRfCkA==
age: 79375
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 10 Sep 2022 01:49:29 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
njf.com.tw/njf/zvrffcmi/rzb/imed/public/index/imed/index.html
125.227.104.139302 Moved Temporarily 154 B URL HTTP/1.1 njf.com.tw/njf/zvrffcmi/rzb/imed/public/index/imed/index.html
IP 125.227.104.139:0
ASN #3462 Data Communication Business Group
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash cfbeaf604823f038b8b46f0ac862b98c
7b9eb1dac48e74fa5f418bc456cb410f88b81d98
20c1ab602462b7fc0d5b4cbd555cacf127b69a07a737579598ebcbc0f5b21319
Analyzer Verdict Alert fortinet Phishing
GET /njf/zvrffcmi/rzb/imed/public/index/imed/index.html HTTP/1.1
Host: njf.com.tw
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 302 Moved Temporarily
Date: Sat, 10 Sep 2022 01:49:29 GMT
Content-Type: text/html
Content-Length: 154
Connection: close
Location: https://njf.com.tw/njf/zvrffcmi/rzb/imed/public/index/imed/index.html?
Strict-Transport-Security: max-age=31536000
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
143.204.55.36200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 143.204.55.36:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Cache-Control: max-age=3600
Date: Sat, 10 Sep 2022 00:56:07 GMT
Expires: Sat, 10 Sep 2022 01:55:20 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 5de23153ac267c206221751e1cccb6e8.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: iyuUxlvBhQ7Tzf44FRAn54Rgy3mxOhjSKJCgO7kmBF2IQYpDSIPjxQ==
Age: 3203
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash d0c56e0b2955a5dd7f37ba4bbf5727b4
f435bd1f6fb8ec931f1817fe4b91e6b86a7cb14b
99f7da9dca677db8e9cec5491c0d6d8a86b9c5e907907c2fdd30973c747f4282
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4977
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 10 Sep 2022 01:49:30 GMT
Last-Modified: Sat, 10 Sep 2022 00:26:33 GMT
Server: ECS (ska/F70C)
X-Cache: HIT
Content-Length: 471
status.thawte.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash ab7a017e580ff571b043ff2b67e4a5f2
ec425d160a3ddfa02b6dadaf8cf638102a2ddb41
312e12dee6fba11fd111c9fdc5ad1b8104a97c822eacd3ae4ee43b577c08c8eb
POST / HTTP/1.1
Host: status.thawte.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 10 Sep 2022 01:49:30 GMT
Server: ECS (amb/6B85)
Content-Length: 471
push.services.mozilla.com/
34.218.164.174101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 34.218.164.174:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: /Kq1XzPr3C1G+roXPJAQ4w==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: eAOx6Kj1Kx2wtzpuJfbejq52+PE=
njf.com.tw/njf/zvrffcmi/rzb/imed/public/index/imed/index.html?
125.227.104.139302 Found 332 B URL HTTP/1.1 njf.com.tw/njf/zvrffcmi/rzb/imed/public/index/imed/index.html?
IP 125.227.104.139:0
ASN #3462 Data Communication Business Group
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash da7fd29ad81044796d86698edd24a242
7bb194700bb2b5b50b55b9fc85ff24d53b348b6f
39f69c12a747ed0664f487fdfec31c343e5ac123391fe8c9ed10435837b7d6b8
Analyzer Verdict Alert fortinet Phishing
GET /njf/zvrffcmi/rzb/imed/public/index/imed/index.html? HTTP/1.1
Host: njf.com.tw
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/1.1 302 Found
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: no-cache, private
Date: Sat, 10 Sep 2022 01:49:30 GMT
Location: https://njf.com.tw/njf
Strict-Transport-Security: max-age=31536000
njf.com.tw/njf
125.227.104.139301 Moved Permanently 178 B IP 125.227.104.139:0
ASN #3462 Data Communication Business Group
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash cd2e0e43980a00fb6a2742d3afd803b8
81ffbd1712afe8cdf138b570c0fc9934742c33c1
bd9df047d51943acc4bc6cf55d88edb5b6785a53337ee2a0f74dd521aedde87d
Analyzer Verdict Alert fortinet Phishing
GET /njf HTTP/1.1
Host: njf.com.tw
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/1.1 301 Moved Permanently
Date: Sat, 10 Sep 2022 01:49:30 GMT
Content-Type: text/html
Content-Length: 178
Location: https://njf.com.tw/njf/
Connection: keep-alive
Strict-Transport-Security: max-age=31536000
njf.com.tw/njf/
125.227.104.139200 OK 6.7 kB IP 125.227.104.139:0
ASN #3462 Data Communication Business Group
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (499), with CRLF, LF line terminators
Hash a1d2a9a1299948e5267b9dcffb7b29e5
433babf03d6a06fb04e34d69ebee8d739999f068
a7d2ad91668d37c58f947a560b2da2e728bd209369b537e5713afd4c2f7edd72
Analyzer Verdict Alert fortinet Phishing
GET /njf/ HTTP/1.1
Host: njf.com.tw
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: no-cache, private
Date: Sat, 10 Sep 2022 01:49:31 GMT
Set-Cookie: XSRF-TOKEN=eyJpdiI6IkNJXC9yeEFkZVNCRUJ0eTgwc2xESFNRPT0iLCJ2YWx1ZSI6Ik1yTEdmMGp4bDVHSnRuU1FhSXJqc1Qrc2JDVUljRzFQejJQdnR2Sit5cTEwdDN4N1dmVXRSMjFpakd5WnhTejciLCJtYWMiOiI1ZDM0MmE3NDgzYTZlMTM0MzE5MjY4ZWEzNmRiNzZjZmYxMjQ5NThmY2Y0ZmZlODU5NzQ1ZTA0ZWIzYTI1MzNiIn0%3D; expires=Sat, 10-Sep-2022 01:50:31 GMT; Max-Age=60; path=/
laravel_session=eyJpdiI6ImZxS0xoa1dmVGRjQXZSYWtkbXo4dWc9PSIsInZhbHVlIjoiMkVLMVpqbWJ4dngwcGtGaStkQ3JyWkFZbzNYWEU0dWVJVkdFekNRZXoxXC9yS2pZcGJTTHdYQTlJekVtWVwveitLIiwibWFjIjoiZWY5MDI2NzgwZmEyNzY0NTA4OWU1ZTEyN2JmMDNhMjA1MjExZGVkNGYxMmI0YmM3MWRiZDA1YzcxZGQzZTI4YyJ9; expires=Sat, 10-Sep-2022 01:50:31 GMT; Max-Age=60; path=/; httponly
Strict-Transport-Security: max-age=31536000
Content-Encoding: gzip
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash e0fbe5627b19e9ad7ad4d40c96514ae9
d9d361271987c5947d96ddacc67efb3f3a32bbd3
48b4321f3bda8fd67c5bc75f98b0dfe6df2bfda8dcf5e708aecd47270ae03217
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "48B4321F3BDA8FD67C5BC75F98B0DFE6DF2BFDA8DCF5E708AECD47270AE03217"
Last-Modified: Wed, 07 Sep 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3104
Expires: Sat, 10 Sep 2022 02:41:15 GMT
Date: Sat, 10 Sep 2022 01:49:31 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash e0fbe5627b19e9ad7ad4d40c96514ae9
d9d361271987c5947d96ddacc67efb3f3a32bbd3
48b4321f3bda8fd67c5bc75f98b0dfe6df2bfda8dcf5e708aecd47270ae03217
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "48B4321F3BDA8FD67C5BC75F98B0DFE6DF2BFDA8DCF5E708AECD47270AE03217"
Last-Modified: Wed, 07 Sep 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3104
Expires: Sat, 10 Sep 2022 02:41:15 GMT
Date: Sat, 10 Sep 2022 01:49:31 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash e0fbe5627b19e9ad7ad4d40c96514ae9
d9d361271987c5947d96ddacc67efb3f3a32bbd3
48b4321f3bda8fd67c5bc75f98b0dfe6df2bfda8dcf5e708aecd47270ae03217
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "48B4321F3BDA8FD67C5BC75F98B0DFE6DF2BFDA8DCF5E708AECD47270AE03217"
Last-Modified: Wed, 07 Sep 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3104
Expires: Sat, 10 Sep 2022 02:41:15 GMT
Date: Sat, 10 Sep 2022 01:49:31 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash e0fbe5627b19e9ad7ad4d40c96514ae9
d9d361271987c5947d96ddacc67efb3f3a32bbd3
48b4321f3bda8fd67c5bc75f98b0dfe6df2bfda8dcf5e708aecd47270ae03217
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "48B4321F3BDA8FD67C5BC75F98B0DFE6DF2BFDA8DCF5E708AECD47270AE03217"
Last-Modified: Wed, 07 Sep 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3104
Expires: Sat, 10 Sep 2022 02:41:15 GMT
Date: Sat, 10 Sep 2022 01:49:31 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash e0fbe5627b19e9ad7ad4d40c96514ae9
d9d361271987c5947d96ddacc67efb3f3a32bbd3
48b4321f3bda8fd67c5bc75f98b0dfe6df2bfda8dcf5e708aecd47270ae03217
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "48B4321F3BDA8FD67C5BC75F98B0DFE6DF2BFDA8DCF5E708AECD47270AE03217"
Last-Modified: Wed, 07 Sep 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3104
Expires: Sat, 10 Sep 2022 02:41:15 GMT
Date: Sat, 10 Sep 2022 01:49:31 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe535d149-d5c6-4543-8a5b-a5a98be48b9e.jpeg
34.120.237.76200 OK 6.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe535d149-d5c6-4543-8a5b-a5a98be48b9e.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 362d0931425ffa11f3287246f0480cc8
cc0f8bf63d11aeb3ea780af092523833f3b1abd3
75619cdf413b35451f109180e084a3630d0665a24b29e45510fed938d381db75
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe535d149-d5c6-4543-8a5b-a5a98be48b9e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6676
x-amzn-requestid: 97140273-f327-4ec8-b076-cea440ce1d29
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YNi34HNxoAMF9Rg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631bb1cb-6356b02944a048db1be05d1c;Sampled=0
x-amzn-remapped-date: Fri, 09 Sep 2022 21:36:11 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 2s35YFxVMMVFBVoSTyoCp0w0ivNRYerua-rmRWXdbvtP2UHafYwUmw==
via: 1.1 0005a84c2971ff4f5bbb79e7ebc622a8.cloudfront.net (CloudFront), 1.1 1b74ccf4cb51eacf97a0e6d60ae46a3e.cloudfront.net (CloudFront), 1.1 google
date: Fri, 09 Sep 2022 22:13:18 GMT
etag: "cc0f8bf63d11aeb3ea780af092523833f3b1abd3"
content-type: image/jpeg
age: 12973
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9a798806-4378-4646-89ee-e50837809910.jpeg
34.120.237.76200 OK 9.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9a798806-4378-4646-89ee-e50837809910.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 1abac18a85802f38f08561ac64020b55
afbc7666fa0b2093ef0c5d9a955d54d139c09b30
eae7f28dd178293939ecd81082ab68ae6098bb3cb1f1fe9411c38314ddb0f944
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9a798806-4378-4646-89ee-e50837809910.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9610
x-amzn-requestid: 34102145-abda-4987-a68d-9069496366ea
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YNj0oF7loAMF6zg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631bb350-52aee64214c814812c03262e;Sampled=0
x-amzn-remapped-date: Fri, 09 Sep 2022 21:42:40 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 91AsC8-zVFCOPHFb2qnlTev2aXzdCEDYtc68JtYYsQSKS7OFF4QzgQ==
via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 4f3feb5c4393987d42d1971d404d7cea.cloudfront.net (CloudFront), 1.1 google
date: Fri, 09 Sep 2022 22:00:27 GMT
age: 13744
etag: "afbc7666fa0b2093ef0c5d9a955d54d139c09b30"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd9009587-828b-4a7a-8b84-f28d4b93cdef.jpeg
34.120.237.76200 OK 7.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd9009587-828b-4a7a-8b84-f28d4b93cdef.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 60fa03262bb3728f24a4c7a8177ec788
09dcbdc6043f01dd56920cca3ce3920d0d07b795
e7448f186933f9848f1d55f0e8dba593918846d02fb9cc3a7cd86d69b96a7fde
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd9009587-828b-4a7a-8b84-f28d4b93cdef.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7515
x-amzn-requestid: bb6a7928-9bdc-44e7-8478-b415bc504343
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YJu0bGYdoAMF5jQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631a2b4f-208339fd72e62dff4a2ba339;Sampled=0
x-amzn-remapped-date: Thu, 08 Sep 2022 17:50:07 GMT
x-amz-cf-pop: SEA73-P2
x-cache: Miss from cloudfront
x-amz-cf-id: UaU9GK4lcCuAN2WghBDa7f-21dRTA4Fh1tlAmGFMKh4wQOGZlKdmOw==
via: 1.1 4d7fa73f804f1c93f20cfc24c4b1266e.cloudfront.net (CloudFront), 1.1 e77661e211afe9242e85e573f12d5534.cloudfront.net (CloudFront), 1.1 google
date: Fri, 09 Sep 2022 21:46:20 GMT
age: 14591
etag: "09dcbdc6043f01dd56920cca3ce3920d0d07b795"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5e72c2e9-6d47-42ac-9514-316cd8f8f6c5.jpeg
34.120.237.76200 OK 8.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5e72c2e9-6d47-42ac-9514-316cd8f8f6c5.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash e8f11aeba65478b039cfb4100aa23435
88db17a82ea0207ccb4826c2961875c5106b427a
6f6ec5922ec54d824e7f933de87608c5a763da119ae9461d99c6525649b1a9af
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5e72c2e9-6d47-42ac-9514-316cd8f8f6c5.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8676
x-amzn-requestid: 64a58aa8-8321-4c91-98fe-dbf97996c513
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YNiuZEjnIAMFRFg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631bb18f-77b635593b202d7d3cd0ac84;Sampled=0
x-amzn-remapped-date: Fri, 09 Sep 2022 21:35:11 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P2
x-cache: Hit from cloudfront
x-amz-cf-id: VWwNSpFvcDq3nrn91QvYjrJX5hLjp96vrKgZzR-pOdrdHx7MlcagGQ==
via: 1.1 41e349e25dc4bc856d0e5d2c162428a0.cloudfront.net (CloudFront), 1.1 d1d67b07408bba8c682597d8303642e2.cloudfront.net (CloudFront), 1.1 google
date: Fri, 09 Sep 2022 21:56:34 GMT
age: 13977
etag: "88db17a82ea0207ccb4826c2961875c5106b427a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbfb49483-577b-4413-86f1-41eeb2d7b540.jpeg
34.120.237.76200 OK 2.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbfb49483-577b-4413-86f1-41eeb2d7b540.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash e3a2c5db656aab4f88ddadd8fa742b4c
78c0d3df42ec5ae34ad62430b6c4794e03fd411e
8818edbe7edbcbc7a46b49d8820851779d4d6c18a1d5cc4fa8234b2ba355a495
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbfb49483-577b-4413-86f1-41eeb2d7b540.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 2524
x-amzn-requestid: 2db0d0d7-4d18-464f-8c23-f12d5448fb47
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YNkCsE7toAMF9xA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631bb3aa-490eb8124b8f16fb747308fa;Sampled=0
x-amzn-remapped-date: Fri, 09 Sep 2022 21:44:10 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: spKSoFyyBJFS0Lchq49Ewa7tnd4CK3b-0a0rSlpDugQMpMkvEYIgrg==
via: 1.1 26ca01ec7377e425b59b6a08cb1ec342.cloudfront.net (CloudFront), 1.1 5565a51537c689d1d16f6b4d41f40082.cloudfront.net (CloudFront), 1.1 google
date: Fri, 09 Sep 2022 22:00:37 GMT
etag: "78c0d3df42ec5ae34ad62430b6c4794e03fd411e"
content-type: image/jpeg
age: 13734
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1cb41144-803c-4f52-8cbe-27da96acb450.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1cb41144-803c-4f52-8cbe-27da96acb450.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 6759bd6c847ff8f62b279887f56ba080
45cd3f2951313d0c4beff490753b228e998caa30
8c4edb4b6edb6017f147979c042c47934d2e3f010b5b6d0ab028192ff7dfb75f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1cb41144-803c-4f52-8cbe-27da96acb450.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11021
x-amzn-requestid: 392c7c93-2ad3-4bd5-80ab-9d75a8acad55
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YNi3rEU3IAMFhPw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631bb1ca-22e319dc24a7c8e66e02c34d;Sampled=0
x-amzn-remapped-date: Fri, 09 Sep 2022 21:36:10 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: qsKfDwoUdkIl0kArTkAWb7v_lDRNnRPxSfV8x7W_FEElCqYx8fwhJw==
via: 1.1 f13aef0c4b52f6f681401f232d03eb68.cloudfront.net (CloudFront), 1.1 760139201585481b26f947c5f776103a.cloudfront.net (CloudFront), 1.1 google
date: Fri, 09 Sep 2022 22:06:13 GMT
age: 13398
etag: "45cd3f2951313d0c4beff490753b228e998caa30"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash e66743a6c60c1181d7f47c7f748ddfa3
97e333fac41fce213aeda4a42c79b0c5077e26c0
498cbdcbc5fed75df7e4974b21f3be66580dd169b8c82e76c69a823567e27ab6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 10 Sep 2022 01:49:31 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash f1fa8224847ea7d9b4dc8e598fae4142
cb703a2944e58d97dd48a7e56ee9f4510ced78b4
920094aad2886535e2ba9e38d4731f63fbde93038d92b38f0030b0a0f47c2ac8
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 10 Sep 2022 01:49:31 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.com/recaptcha/api.js
142.250.74.164200 OK 553 B URL HTTP/2 www.google.com/recaptcha/api.js
IP 142.250.74.164:0
File type ASCII text, with very long lines (850), with no line terminators
Hash 528455474b03fa8ad71a558347e43fe1
597b34487415fa60028f80afd7ab2cf27383ace5
af9ee6f9ce7bd44e5dbbfcab2a528e062f9dec4640a98a396170d46c494dafb5
GET /recaptcha/api.js HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://njf.com.tw/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
expires: Sat, 10 Sep 2022 01:49:31 GMT
date: Sat, 10 Sep 2022 01:49:31 GMT
cache-control: private, max-age=300
content-type: text/javascript; charset=UTF-8
cross-origin-resource-policy: cross-origin
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
content-length: 553
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 90af7f9fc306540e02535db3d00dca64
9e05b003b35ed57277b6b295adde93add7c41b0b
64abd990305ef3f25ffb3fb2ccae04b76e178375752ecb2020411df8f7974fcf
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 10 Sep 2022 01:49:31 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash f1fa8224847ea7d9b4dc8e598fae4142
cb703a2944e58d97dd48a7e56ee9f4510ced78b4
920094aad2886535e2ba9e38d4731f63fbde93038d92b38f0030b0a0f47c2ac8
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 10 Sep 2022 01:49:31 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.globalsign.com/gsrsaovsslca2018
104.18.20.226200 OK 1.4 kB URL HTTP/1.1 ocsp.globalsign.com/gsrsaovsslca2018
IP 104.18.20.226:0
Hash 7ef750a3566f4415eefbbe6f9d65fc64
47306c4151014fc7a58923362a9fe67e134ef11d
4dc29354ed22e705c362b16223b5a44aa3dd4841f4840bf3459a2b64defb474a
POST /gsrsaovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 10 Sep 2022 01:49:32 GMT
Content-Type: application/ocsp-response
Content-Length: 1432
Connection: keep-alive
Expires: Tue, 13 Sep 2022 23:28:42 GMT
ETag: "47306c4151014fc7a58923362a9fe67e134ef11d"
Last-Modified: Fri, 09 Sep 2022 23:28:43 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 1836
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 748481f3a862b527-OSL
njf.com.tw/njf/public/wow/wow.min.js
125.227.104.139200 OK 8.4 kB URL HTTP/1.1 njf.com.tw/njf/public/wow/wow.min.js
IP 125.227.104.139:0
ASN #3462 Data Communication Business Group
File type ASCII text, with very long lines (8385)
Hash 36050285bfeeb7395752f0f9bbc08273
5924f7bbbf1dfa3f0926851d01f782f23a59e805
0ec632e6ab02d4fdd514da7f5edc74aa28c9d4c71af76f1c8b93a1fba85bcc69
Analyzer Verdict Alert fortinet Phishing
GET /njf/public/wow/wow.min.js HTTP/1.1
Host: njf.com.tw
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://njf.com.tw/njf/
Cookie: XSRF-TOKEN=eyJpdiI6IkNJXC9yeEFkZVNCRUJ0eTgwc2xESFNRPT0iLCJ2YWx1ZSI6Ik1yTEdmMGp4bDVHSnRuU1FhSXJqc1Qrc2JDVUljRzFQejJQdnR2Sit5cTEwdDN4N1dmVXRSMjFpakd5WnhTejciLCJtYWMiOiI1ZDM0MmE3NDgzYTZlMTM0MzE5MjY4ZWEzNmRiNzZjZmYxMjQ5NThmY2Y0ZmZlODU5NzQ1ZTA0ZWIzYTI1MzNiIn0%3D; laravel_session=eyJpdiI6ImZxS0xoa1dmVGRjQXZSYWtkbXo4dWc9PSIsInZhbHVlIjoiMkVLMVpqbWJ4dngwcGtGaStkQ3JyWkFZbzNYWEU0dWVJVkdFekNRZXoxXC9yS2pZcGJTTHdYQTlJekVtWVwveitLIiwibWFjIjoiZWY5MDI2NzgwZmEyNzY0NTA4OWU1ZTEyN2JmMDNhMjA1MjExZGVkNGYxMmI0YmM3MWRiZDA1YzcxZGQzZTI4YyJ9
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 10 Sep 2022 01:49:32 GMT
Content-Type: application/javascript; charset=utf-8
Content-Length: 8415
Last-Modified: Mon, 10 May 2021 00:55:06 GMT
Connection: keep-alive
ETag: "6098846a-20df"
Strict-Transport-Security: max-age=31536000
Accept-Ranges: bytes
njf.com.tw/njf/public/js/widget_right_side.js
125.227.104.139200 OK 458 B URL HTTP/1.1 njf.com.tw/njf/public/js/widget_right_side.js
IP 125.227.104.139:0
ASN #3462 Data Communication Business Group
File type ASCII text, with CRLF line terminators
Hash f44c3721e6729e097efa0a6bdcc33ec6
b529ffa4ee7314161eaa12372a0266a7645dd3f9
7cf6ba41518d1cc8775c2eb6d35c9db30019bc7d62e92ea81b72f9b06be8e8a6
Analyzer Verdict Alert fortinet Phishing
GET /njf/public/js/widget_right_side.js HTTP/1.1
Host: njf.com.tw
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://njf.com.tw/njf/
Cookie: XSRF-TOKEN=eyJpdiI6IkNJXC9yeEFkZVNCRUJ0eTgwc2xESFNRPT0iLCJ2YWx1ZSI6Ik1yTEdmMGp4bDVHSnRuU1FhSXJqc1Qrc2JDVUljRzFQejJQdnR2Sit5cTEwdDN4N1dmVXRSMjFpakd5WnhTejciLCJtYWMiOiI1ZDM0MmE3NDgzYTZlMTM0MzE5MjY4ZWEzNmRiNzZjZmYxMjQ5NThmY2Y0ZmZlODU5NzQ1ZTA0ZWIzYTI1MzNiIn0%3D; laravel_session=eyJpdiI6ImZxS0xoa1dmVGRjQXZSYWtkbXo4dWc9PSIsInZhbHVlIjoiMkVLMVpqbWJ4dngwcGtGaStkQ3JyWkFZbzNYWEU0dWVJVkdFekNRZXoxXC9yS2pZcGJTTHdYQTlJekVtWVwveitLIiwibWFjIjoiZWY5MDI2NzgwZmEyNzY0NTA4OWU1ZTEyN2JmMDNhMjA1MjExZGVkNGYxMmI0YmM3MWRiZDA1YzcxZGQzZTI4YyJ9
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 10 Sep 2022 01:49:32 GMT
Content-Type: application/javascript; charset=utf-8
Content-Length: 458
Last-Modified: Mon, 10 May 2021 00:55:06 GMT
Connection: keep-alive
ETag: "6098846a-1ca"
Strict-Transport-Security: max-age=31536000
Accept-Ranges: bytes
njf.com.tw/njf/public/js/jquery-1.12.4.min.js
125.227.104.139200 OK 290 kB URL HTTP/1.1 njf.com.tw/njf/public/js/jquery-1.12.4.min.js
IP 125.227.104.139:0
ASN #3462 Data Communication Business Group
File type ASCII text, with CRLF line terminators
Size 290 kB (290446 bytes)
Hash eac275563332b65bae1a3452532ebe38
f861f9abe81db5009022a6680cc41dc9cef2d8c0
c96b8b5e3be412f0091cbd1f37aeb7c6c23a0ee9a559be4b083db5f16693fed5
Analyzer Verdict Alert fortinet Phishing
GET /njf/public/js/jquery-1.12.4.min.js HTTP/1.1
Host: njf.com.tw
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://njf.com.tw/njf/
Cookie: XSRF-TOKEN=eyJpdiI6IkNJXC9yeEFkZVNCRUJ0eTgwc2xESFNRPT0iLCJ2YWx1ZSI6Ik1yTEdmMGp4bDVHSnRuU1FhSXJqc1Qrc2JDVUljRzFQejJQdnR2Sit5cTEwdDN4N1dmVXRSMjFpakd5WnhTejciLCJtYWMiOiI1ZDM0MmE3NDgzYTZlMTM0MzE5MjY4ZWEzNmRiNzZjZmYxMjQ5NThmY2Y0ZmZlODU5NzQ1ZTA0ZWIzYTI1MzNiIn0%3D; laravel_session=eyJpdiI6ImZxS0xoa1dmVGRjQXZSYWtkbXo4dWc9PSIsInZhbHVlIjoiMkVLMVpqbWJ4dngwcGtGaStkQ3JyWkFZbzNYWEU0dWVJVkdFekNRZXoxXC9yS2pZcGJTTHdYQTlJekVtWVwveitLIiwibWFjIjoiZWY5MDI2NzgwZmEyNzY0NTA4OWU1ZTEyN2JmMDNhMjA1MjExZGVkNGYxMmI0YmM3MWRiZDA1YzcxZGQzZTI4YyJ9
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 10 Sep 2022 01:49:31 GMT
Content-Type: application/javascript; charset=utf-8
Content-Length: 290446
Last-Modified: Mon, 10 May 2021 00:55:06 GMT
Connection: keep-alive
ETag: "6098846a-46e8e"
Strict-Transport-Security: max-age=31536000
Accept-Ranges: bytes
njf.com.tw/njf/public/aos-master/dist/aos.js
125.227.104.139200 OK 14 kB URL HTTP/1.1 njf.com.tw/njf/public/aos-master/dist/aos.js
IP 125.227.104.139:0
ASN #3462 Data Communication Business Group
File type ASCII text, with very long lines (14243), with no line terminators
Hash a01f9089e8301e9eacfb9d029dc0ca5c
165152546121aaaf96c19418908cffe3630a2336
4460f1596174d06cca957fdaca2c71e1a377cf1d6f07ee4c75ffb3bf3fc97a03
Analyzer Verdict Alert fortinet Phishing
GET /njf/public/aos-master/dist/aos.js HTTP/1.1
Host: njf.com.tw
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://njf.com.tw/njf/
Cookie: XSRF-TOKEN=eyJpdiI6IkNJXC9yeEFkZVNCRUJ0eTgwc2xESFNRPT0iLCJ2YWx1ZSI6Ik1yTEdmMGp4bDVHSnRuU1FhSXJqc1Qrc2JDVUljRzFQejJQdnR2Sit5cTEwdDN4N1dmVXRSMjFpakd5WnhTejciLCJtYWMiOiI1ZDM0MmE3NDgzYTZlMTM0MzE5MjY4ZWEzNmRiNzZjZmYxMjQ5NThmY2Y0ZmZlODU5NzQ1ZTA0ZWIzYTI1MzNiIn0%3D; laravel_session=eyJpdiI6ImZxS0xoa1dmVGRjQXZSYWtkbXo4dWc9PSIsInZhbHVlIjoiMkVLMVpqbWJ4dngwcGtGaStkQ3JyWkFZbzNYWEU0dWVJVkdFekNRZXoxXC9yS2pZcGJTTHdYQTlJekVtWVwveitLIiwibWFjIjoiZWY5MDI2NzgwZmEyNzY0NTA4OWU1ZTEyN2JmMDNhMjA1MjExZGVkNGYxMmI0YmM3MWRiZDA1YzcxZGQzZTI4YyJ9
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 10 Sep 2022 01:49:32 GMT
Content-Type: application/javascript; charset=utf-8
Content-Length: 14243
Last-Modified: Mon, 10 May 2021 00:54:51 GMT
Connection: keep-alive
ETag: "6098845b-37a3"
Strict-Transport-Security: max-age=31536000
Accept-Ranges: bytes
njf.com.tw/njf/public/js/bootstrap.min.js
125.227.104.139200 OK 37 kB URL HTTP/1.1 njf.com.tw/njf/public/js/bootstrap.min.js
IP 125.227.104.139:0
ASN #3462 Data Communication Business Group
File type ASCII text, with very long lines (32033)
Hash 5869c96cc8f19086aee625d670d741f9
430a443d74830fe9be26efca431f448c1b3740f9
53964478a7c634e8dad34ecc303dd8048d00dce4993906de1bacf67f663486ef
Analyzer Verdict Alert fortinet Phishing
GET /njf/public/js/bootstrap.min.js HTTP/1.1
Host: njf.com.tw
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://njf.com.tw/njf/
Cookie: XSRF-TOKEN=eyJpdiI6IkNJXC9yeEFkZVNCRUJ0eTgwc2xESFNRPT0iLCJ2YWx1ZSI6Ik1yTEdmMGp4bDVHSnRuU1FhSXJqc1Qrc2JDVUljRzFQejJQdnR2Sit5cTEwdDN4N1dmVXRSMjFpakd5WnhTejciLCJtYWMiOiI1ZDM0MmE3NDgzYTZlMTM0MzE5MjY4ZWEzNmRiNzZjZmYxMjQ5NThmY2Y0ZmZlODU5NzQ1ZTA0ZWIzYTI1MzNiIn0%3D; laravel_session=eyJpdiI6ImZxS0xoa1dmVGRjQXZSYWtkbXo4dWc9PSIsInZhbHVlIjoiMkVLMVpqbWJ4dngwcGtGaStkQ3JyWkFZbzNYWEU0dWVJVkdFekNRZXoxXC9yS2pZcGJTTHdYQTlJekVtWVwveitLIiwibWFjIjoiZWY5MDI2NzgwZmEyNzY0NTA4OWU1ZTEyN2JmMDNhMjA1MjExZGVkNGYxMmI0YmM3MWRiZDA1YzcxZGQzZTI4YyJ9
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 10 Sep 2022 01:49:32 GMT
Content-Type: application/javascript; charset=utf-8
Content-Length: 37045
Last-Modified: Mon, 10 May 2021 00:55:06 GMT
Connection: keep-alive
ETag: "6098846a-90b5"
Strict-Transport-Security: max-age=31536000
Accept-Ranges: bytes
njf.com.tw/njf/public/css/public-style.css
125.227.104.139200 OK 5.8 kB URL HTTP/1.1 njf.com.tw/njf/public/css/public-style.css
IP 125.227.104.139:0
ASN #3462 Data Communication Business Group
File type Unicode text, UTF-8 text, with CRLF line terminators
Hash 20020e89d36980ea24dd2e163b219cac
9eaf1a6c4e9dba39d7db7b303cf7ad69e9d82e3c
bfb99b7dd2a66dea7adbf2814dade2e93f9cb1d9ceeea019fd1c93358c82642c
GET /njf/public/css/public-style.css HTTP/1.1
Host: njf.com.tw
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://njf.com.tw/njf/
Cookie: XSRF-TOKEN=eyJpdiI6IkNJXC9yeEFkZVNCRUJ0eTgwc2xESFNRPT0iLCJ2YWx1ZSI6Ik1yTEdmMGp4bDVHSnRuU1FhSXJqc1Qrc2JDVUljRzFQejJQdnR2Sit5cTEwdDN4N1dmVXRSMjFpakd5WnhTejciLCJtYWMiOiI1ZDM0MmE3NDgzYTZlMTM0MzE5MjY4ZWEzNmRiNzZjZmYxMjQ5NThmY2Y0ZmZlODU5NzQ1ZTA0ZWIzYTI1MzNiIn0%3D; laravel_session=eyJpdiI6ImZxS0xoa1dmVGRjQXZSYWtkbXo4dWc9PSIsInZhbHVlIjoiMkVLMVpqbWJ4dngwcGtGaStkQ3JyWkFZbzNYWEU0dWVJVkdFekNRZXoxXC9yS2pZcGJTTHdYQTlJekVtWVwveitLIiwibWFjIjoiZWY5MDI2NzgwZmEyNzY0NTA4OWU1ZTEyN2JmMDNhMjA1MjExZGVkNGYxMmI0YmM3MWRiZDA1YzcxZGQzZTI4YyJ9
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 10 Sep 2022 01:49:32 GMT
Content-Type: text/css
Content-Length: 5845
Last-Modified: Mon, 10 May 2021 00:54:51 GMT
Connection: keep-alive
ETag: "6098845b-16d5"
Strict-Transport-Security: max-age=31536000
Accept-Ranges: bytes
njf.com.tw/njf/public/css/bootstrap.min.css
125.227.104.139200 OK 121 kB URL HTTP/1.1 njf.com.tw/njf/public/css/bootstrap.min.css
IP 125.227.104.139:0
ASN #3462 Data Communication Business Group
File type ASCII text, with very long lines (65371)
Size 121 kB (121200 bytes)
Hash ec3bb52a00e176a7181d454dffaea219
6527d8bf3e1e9368bab8c7b60f56bc01fa3afd68
f75e846cc83bd11432f4b1e21a45f31bc85283d11d372f7b19accd1bf6a2635c
GET /njf/public/css/bootstrap.min.css HTTP/1.1
Host: njf.com.tw
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://njf.com.tw/njf/
Cookie: XSRF-TOKEN=eyJpdiI6IkNJXC9yeEFkZVNCRUJ0eTgwc2xESFNRPT0iLCJ2YWx1ZSI6Ik1yTEdmMGp4bDVHSnRuU1FhSXJqc1Qrc2JDVUljRzFQejJQdnR2Sit5cTEwdDN4N1dmVXRSMjFpakd5WnhTejciLCJtYWMiOiI1ZDM0MmE3NDgzYTZlMTM0MzE5MjY4ZWEzNmRiNzZjZmYxMjQ5NThmY2Y0ZmZlODU5NzQ1ZTA0ZWIzYTI1MzNiIn0%3D; laravel_session=eyJpdiI6ImZxS0xoa1dmVGRjQXZSYWtkbXo4dWc9PSIsInZhbHVlIjoiMkVLMVpqbWJ4dngwcGtGaStkQ3JyWkFZbzNYWEU0dWVJVkdFekNRZXoxXC9yS2pZcGJTTHdYQTlJekVtWVwveitLIiwibWFjIjoiZWY5MDI2NzgwZmEyNzY0NTA4OWU1ZTEyN2JmMDNhMjA1MjExZGVkNGYxMmI0YmM3MWRiZDA1YzcxZGQzZTI4YyJ9
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 10 Sep 2022 01:49:32 GMT
Content-Type: text/css
Content-Length: 121200
Last-Modified: Mon, 10 May 2021 00:54:51 GMT
Connection: keep-alive
ETag: "6098845b-1d970"
Strict-Transport-Security: max-age=31536000
Accept-Ranges: bytes
njf.com.tw/njf/public/css/bootstrap-theme.min.css
125.227.104.139200 OK 23 kB URL HTTP/1.1 njf.com.tw/njf/public/css/bootstrap-theme.min.css
IP 125.227.104.139:0
ASN #3462 Data Communication Business Group
File type ASCII text, with very long lines (23192)
Hash ab6b02efeaf178e0247b9504051472fb
8256575374f430476bdcd49de98c77990229ce31
653e073e97423adda5bc3917a241ee8497dd38a48f14bcde0098a4e54fd0fa5e
GET /njf/public/css/bootstrap-theme.min.css HTTP/1.1
Host: njf.com.tw
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://njf.com.tw/njf/
Cookie: XSRF-TOKEN=eyJpdiI6IkNJXC9yeEFkZVNCRUJ0eTgwc2xESFNRPT0iLCJ2YWx1ZSI6Ik1yTEdmMGp4bDVHSnRuU1FhSXJqc1Qrc2JDVUljRzFQejJQdnR2Sit5cTEwdDN4N1dmVXRSMjFpakd5WnhTejciLCJtYWMiOiI1ZDM0MmE3NDgzYTZlMTM0MzE5MjY4ZWEzNmRiNzZjZmYxMjQ5NThmY2Y0ZmZlODU5NzQ1ZTA0ZWIzYTI1MzNiIn0%3D; laravel_session=eyJpdiI6ImZxS0xoa1dmVGRjQXZSYWtkbXo4dWc9PSIsInZhbHVlIjoiMkVLMVpqbWJ4dngwcGtGaStkQ3JyWkFZbzNYWEU0dWVJVkdFekNRZXoxXC9yS2pZcGJTTHdYQTlJekVtWVwveitLIiwibWFjIjoiZWY5MDI2NzgwZmEyNzY0NTA4OWU1ZTEyN2JmMDNhMjA1MjExZGVkNGYxMmI0YmM3MWRiZDA1YzcxZGQzZTI4YyJ9
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 10 Sep 2022 01:49:32 GMT
Content-Type: text/css
Content-Length: 23409
Last-Modified: Mon, 10 May 2021 00:54:51 GMT
Connection: keep-alive
ETag: "6098845b-5b71"
Strict-Transport-Security: max-age=31536000
Accept-Ranges: bytes
njf.com.tw/njf/public/jquery-ui-1.12.1.custom/jquery-ui.css
125.227.104.139200 OK 36 kB URL HTTP/1.1 njf.com.tw/njf/public/jquery-ui-1.12.1.custom/jquery-ui.css
IP 125.227.104.139:0
ASN #3462 Data Communication Business Group
File type ASCII text, with very long lines (2363)
Hash 3e88fbf72a3a7bd199f90a45752f6af6
a81495e3bb14622a70e090c4fe9436dbec3b5b3a
47513e58f37a8258f58da1fdb86ebf74af74bfcf63195fa5d06a2f17b0beb43d
GET /njf/public/jquery-ui-1.12.1.custom/jquery-ui.css HTTP/1.1
Host: njf.com.tw
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://njf.com.tw/njf/
Cookie: XSRF-TOKEN=eyJpdiI6IkNJXC9yeEFkZVNCRUJ0eTgwc2xESFNRPT0iLCJ2YWx1ZSI6Ik1yTEdmMGp4bDVHSnRuU1FhSXJqc1Qrc2JDVUljRzFQejJQdnR2Sit5cTEwdDN4N1dmVXRSMjFpakd5WnhTejciLCJtYWMiOiI1ZDM0MmE3NDgzYTZlMTM0MzE5MjY4ZWEzNmRiNzZjZmYxMjQ5NThmY2Y0ZmZlODU5NzQ1ZTA0ZWIzYTI1MzNiIn0%3D; laravel_session=eyJpdiI6ImZxS0xoa1dmVGRjQXZSYWtkbXo4dWc9PSIsInZhbHVlIjoiMkVLMVpqbWJ4dngwcGtGaStkQ3JyWkFZbzNYWEU0dWVJVkdFekNRZXoxXC9yS2pZcGJTTHdYQTlJekVtWVwveitLIiwibWFjIjoiZWY5MDI2NzgwZmEyNzY0NTA4OWU1ZTEyN2JmMDNhMjA1MjExZGVkNGYxMmI0YmM3MWRiZDA1YzcxZGQzZTI4YyJ9
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 10 Sep 2022 01:49:32 GMT
Content-Type: text/css
Content-Length: 35997
Last-Modified: Mon, 10 May 2021 00:55:06 GMT
Connection: keep-alive
ETag: "6098846a-8c9d"
Strict-Transport-Security: max-age=31536000
Accept-Ranges: bytes
njf.com.tw/njf/public/css/widget_right_side.css
125.227.104.139200 OK 1.3 kB URL HTTP/1.1 njf.com.tw/njf/public/css/widget_right_side.css
IP 125.227.104.139:0
ASN #3462 Data Communication Business Group
File type Unicode text, UTF-8 text, with CRLF line terminators
Hash 5f47c9897d33364a8b3fc0e9dcf41a16
8cfbe43f9d285d3d0614f8e7ec750cb51ebe60f6
07e4f1d05ae30486c79f317e71896d157c686c0568b39d2e52bbaf39293ffc95
GET /njf/public/css/widget_right_side.css HTTP/1.1
Host: njf.com.tw
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://njf.com.tw/njf/
Cookie: XSRF-TOKEN=eyJpdiI6IkNJXC9yeEFkZVNCRUJ0eTgwc2xESFNRPT0iLCJ2YWx1ZSI6Ik1yTEdmMGp4bDVHSnRuU1FhSXJqc1Qrc2JDVUljRzFQejJQdnR2Sit5cTEwdDN4N1dmVXRSMjFpakd5WnhTejciLCJtYWMiOiI1ZDM0MmE3NDgzYTZlMTM0MzE5MjY4ZWEzNmRiNzZjZmYxMjQ5NThmY2Y0ZmZlODU5NzQ1ZTA0ZWIzYTI1MzNiIn0%3D; laravel_session=eyJpdiI6ImZxS0xoa1dmVGRjQXZSYWtkbXo4dWc9PSIsInZhbHVlIjoiMkVLMVpqbWJ4dngwcGtGaStkQ3JyWkFZbzNYWEU0dWVJVkdFekNRZXoxXC9yS2pZcGJTTHdYQTlJekVtWVwveitLIiwibWFjIjoiZWY5MDI2NzgwZmEyNzY0NTA4OWU1ZTEyN2JmMDNhMjA1MjExZGVkNGYxMmI0YmM3MWRiZDA1YzcxZGQzZTI4YyJ9
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 10 Sep 2022 01:49:33 GMT
Content-Type: text/css
Content-Length: 1251
Last-Modified: Mon, 10 May 2021 00:54:51 GMT
Connection: keep-alive
ETag: "6098845b-4e3"
Strict-Transport-Security: max-age=31536000
Accept-Ranges: bytes
njf.com.tw/njf/public/swiper-3.4.2/css/swiper.min.css
125.227.104.139200 OK 18 kB URL HTTP/1.1 njf.com.tw/njf/public/swiper-3.4.2/css/swiper.min.css
IP 125.227.104.139:0
ASN #3462 Data Communication Business Group
File type ASCII text, with very long lines (17459)
Hash 6af34d0737ad0ca608111771cf74cc79
15d0417baa08a741c6aee19fdfbf4813635f98f8
47b0e7129add982c0e394f0dfa8d9621e6c9e4126859b26e1ad25c18def0d812
GET /njf/public/swiper-3.4.2/css/swiper.min.css HTTP/1.1
Host: njf.com.tw
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://njf.com.tw/njf/
Cookie: XSRF-TOKEN=eyJpdiI6IkNJXC9yeEFkZVNCRUJ0eTgwc2xESFNRPT0iLCJ2YWx1ZSI6Ik1yTEdmMGp4bDVHSnRuU1FhSXJqc1Qrc2JDVUljRzFQejJQdnR2Sit5cTEwdDN4N1dmVXRSMjFpakd5WnhTejciLCJtYWMiOiI1ZDM0MmE3NDgzYTZlMTM0MzE5MjY4ZWEzNmRiNzZjZmYxMjQ5NThmY2Y0ZmZlODU5NzQ1ZTA0ZWIzYTI1MzNiIn0%3D; laravel_session=eyJpdiI6ImZxS0xoa1dmVGRjQXZSYWtkbXo4dWc9PSIsInZhbHVlIjoiMkVLMVpqbWJ4dngwcGtGaStkQ3JyWkFZbzNYWEU0dWVJVkdFekNRZXoxXC9yS2pZcGJTTHdYQTlJekVtWVwveitLIiwibWFjIjoiZWY5MDI2NzgwZmEyNzY0NTA4OWU1ZTEyN2JmMDNhMjA1MjExZGVkNGYxMmI0YmM3MWRiZDA1YzcxZGQzZTI4YyJ9
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 10 Sep 2022 01:49:32 GMT
Content-Type: text/css
Content-Length: 17759
Last-Modified: Mon, 10 May 2021 00:55:06 GMT
Connection: keep-alive
ETag: "6098846a-455f"
Strict-Transport-Security: max-age=31536000
Accept-Ranges: bytes
njf.com.tw/njf/public/css/custom-bootstrap.css
125.227.104.139200 OK 2.8 kB URL HTTP/1.1 njf.com.tw/njf/public/css/custom-bootstrap.css
IP 125.227.104.139:0
ASN #3462 Data Communication Business Group
File type ASCII text, with CRLF line terminators
Hash 4f428b825850120139ef033009047398
98d8a4511e8f517ccf28a11a346730b61024efbd
3ea033047afeaef0cab079c83fd311afa51b7b0221ad063fc93d42bc5cf5fa30
GET /njf/public/css/custom-bootstrap.css HTTP/1.1
Host: njf.com.tw
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://njf.com.tw/njf/
Cookie: XSRF-TOKEN=eyJpdiI6IkNJXC9yeEFkZVNCRUJ0eTgwc2xESFNRPT0iLCJ2YWx1ZSI6Ik1yTEdmMGp4bDVHSnRuU1FhSXJqc1Qrc2JDVUljRzFQejJQdnR2Sit5cTEwdDN4N1dmVXRSMjFpakd5WnhTejciLCJtYWMiOiI1ZDM0MmE3NDgzYTZlMTM0MzE5MjY4ZWEzNmRiNzZjZmYxMjQ5NThmY2Y0ZmZlODU5NzQ1ZTA0ZWIzYTI1MzNiIn0%3D; laravel_session=eyJpdiI6ImZxS0xoa1dmVGRjQXZSYWtkbXo4dWc9PSIsInZhbHVlIjoiMkVLMVpqbWJ4dngwcGtGaStkQ3JyWkFZbzNYWEU0dWVJVkdFekNRZXoxXC9yS2pZcGJTTHdYQTlJekVtWVwveitLIiwibWFjIjoiZWY5MDI2NzgwZmEyNzY0NTA4OWU1ZTEyN2JmMDNhMjA1MjExZGVkNGYxMmI0YmM3MWRiZDA1YzcxZGQzZTI4YyJ9
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 10 Sep 2022 01:49:33 GMT
Content-Type: text/css
Content-Length: 2831
Last-Modified: Mon, 10 May 2021 00:54:51 GMT
Connection: keep-alive
ETag: "6098845b-b0f"
Strict-Transport-Security: max-age=31536000
Accept-Ranges: bytes
njf.com.tw/njf/public/jquery-ui-1.12.1.custom/jquery-ui.min.js
125.227.104.139200 OK 254 kB URL HTTP/1.1 njf.com.tw/njf/public/jquery-ui-1.12.1.custom/jquery-ui.min.js
IP 125.227.104.139:0
ASN #3462 Data Communication Business Group
File type ASCII text, with very long lines (33326)
Size 254 kB (253668 bytes)
Hash 52850ca4b728af2d5d52c97352739ecf
e90d7f9abf587868e5ea7e9c60cbbe620f342e9f
c5bf25632a6c9900113fedef27193c8bacc056dd5cfd6a89e1b791deef5bf24b
Analyzer Verdict Alert fortinet Phishing
GET /njf/public/jquery-ui-1.12.1.custom/jquery-ui.min.js HTTP/1.1
Host: njf.com.tw
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://njf.com.tw/njf/
Cookie: XSRF-TOKEN=eyJpdiI6IkNJXC9yeEFkZVNCRUJ0eTgwc2xESFNRPT0iLCJ2YWx1ZSI6Ik1yTEdmMGp4bDVHSnRuU1FhSXJqc1Qrc2JDVUljRzFQejJQdnR2Sit5cTEwdDN4N1dmVXRSMjFpakd5WnhTejciLCJtYWMiOiI1ZDM0MmE3NDgzYTZlMTM0MzE5MjY4ZWEzNmRiNzZjZmYxMjQ5NThmY2Y0ZmZlODU5NzQ1ZTA0ZWIzYTI1MzNiIn0%3D; laravel_session=eyJpdiI6ImZxS0xoa1dmVGRjQXZSYWtkbXo4dWc9PSIsInZhbHVlIjoiMkVLMVpqbWJ4dngwcGtGaStkQ3JyWkFZbzNYWEU0dWVJVkdFekNRZXoxXC9yS2pZcGJTTHdYQTlJekVtWVwveitLIiwibWFjIjoiZWY5MDI2NzgwZmEyNzY0NTA4OWU1ZTEyN2JmMDNhMjA1MjExZGVkNGYxMmI0YmM3MWRiZDA1YzcxZGQzZTI4YyJ9
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 10 Sep 2022 01:49:32 GMT
Content-Type: application/javascript; charset=utf-8
Content-Length: 253668
Last-Modified: Mon, 10 May 2021 00:55:06 GMT
Connection: keep-alive
ETag: "6098846a-3dee4"
Strict-Transport-Security: max-age=31536000
Accept-Ranges: bytes
njf.com.tw/njf/public//fontawesome/css/all.css
125.227.104.139200 OK 74 kB URL HTTP/1.1 njf.com.tw/njf/public//fontawesome/css/all.css
IP 125.227.104.139:0
ASN #3462 Data Communication Business Group
Hash a1e269aef076bad8ee205d2a5585d872
17f5a041bab663be0db80721c404a7a6f3fdad44
462beb0c8ecb2abb15685c31875f268d166313581df110401c2483fab24a46df
GET /njf/public//fontawesome/css/all.css HTTP/1.1
Host: njf.com.tw
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://njf.com.tw/njf/
Cookie: XSRF-TOKEN=eyJpdiI6IkNJXC9yeEFkZVNCRUJ0eTgwc2xESFNRPT0iLCJ2YWx1ZSI6Ik1yTEdmMGp4bDVHSnRuU1FhSXJqc1Qrc2JDVUljRzFQejJQdnR2Sit5cTEwdDN4N1dmVXRSMjFpakd5WnhTejciLCJtYWMiOiI1ZDM0MmE3NDgzYTZlMTM0MzE5MjY4ZWEzNmRiNzZjZmYxMjQ5NThmY2Y0ZmZlODU5NzQ1ZTA0ZWIzYTI1MzNiIn0%3D; laravel_session=eyJpdiI6ImZxS0xoa1dmVGRjQXZSYWtkbXo4dWc9PSIsInZhbHVlIjoiMkVLMVpqbWJ4dngwcGtGaStkQ3JyWkFZbzNYWEU0dWVJVkdFekNRZXoxXC9yS2pZcGJTTHdYQTlJekVtWVwveitLIiwibWFjIjoiZWY5MDI2NzgwZmEyNzY0NTA4OWU1ZTEyN2JmMDNhMjA1MjExZGVkNGYxMmI0YmM3MWRiZDA1YzcxZGQzZTI4YyJ9
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 10 Sep 2022 01:49:33 GMT
Content-Type: text/css
Content-Length: 73625
Last-Modified: Mon, 10 May 2021 00:54:57 GMT
Connection: keep-alive
ETag: "60988461-11f99"
Strict-Transport-Security: max-age=31536000
Accept-Ranges: bytes
njf.com.tw/njf/public/css/change-bootstrap-navbar.css
125.227.104.139200 OK 2.1 kB URL HTTP/1.1 njf.com.tw/njf/public/css/change-bootstrap-navbar.css
IP 125.227.104.139:0
ASN #3462 Data Communication Business Group
File type ASCII text, with CRLF line terminators
Hash 53afd35d683eb7416dec01cc426d026a
07480a869ec75caa1e0f94678cb95b237e16aafb
12515b62d81568d74db618b7117027f2cebd7af07f1fe40284cc98e59d451efc
GET /njf/public/css/change-bootstrap-navbar.css HTTP/1.1
Host: njf.com.tw
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://njf.com.tw/njf/
Cookie: XSRF-TOKEN=eyJpdiI6IkNJXC9yeEFkZVNCRUJ0eTgwc2xESFNRPT0iLCJ2YWx1ZSI6Ik1yTEdmMGp4bDVHSnRuU1FhSXJqc1Qrc2JDVUljRzFQejJQdnR2Sit5cTEwdDN4N1dmVXRSMjFpakd5WnhTejciLCJtYWMiOiI1ZDM0MmE3NDgzYTZlMTM0MzE5MjY4ZWEzNmRiNzZjZmYxMjQ5NThmY2Y0ZmZlODU5NzQ1ZTA0ZWIzYTI1MzNiIn0%3D; laravel_session=eyJpdiI6ImZxS0xoa1dmVGRjQXZSYWtkbXo4dWc9PSIsInZhbHVlIjoiMkVLMVpqbWJ4dngwcGtGaStkQ3JyWkFZbzNYWEU0dWVJVkdFekNRZXoxXC9yS2pZcGJTTHdYQTlJekVtWVwveitLIiwibWFjIjoiZWY5MDI2NzgwZmEyNzY0NTA4OWU1ZTEyN2JmMDNhMjA1MjExZGVkNGYxMmI0YmM3MWRiZDA1YzcxZGQzZTI4YyJ9
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 10 Sep 2022 01:49:33 GMT
Content-Type: text/css
Content-Length: 2143
Last-Modified: Mon, 10 May 2021 00:54:51 GMT
Connection: keep-alive
ETag: "6098845b-85f"
Strict-Transport-Security: max-age=31536000
Accept-Ranges: bytes
njf.com.tw/njf/public/aos-master/dist/aos.css
125.227.104.139200 OK 26 kB URL HTTP/1.1 njf.com.tw/njf/public/aos-master/dist/aos.css
IP 125.227.104.139:0
ASN #3462 Data Communication Business Group
File type ASCII text, with very long lines (26053), with no line terminators
Hash 847da8fca8060ca1a70f976aab1210b9
0557d37454b67f42f2cb101e57e5070fb1193570
1aa8845fd06e475aefe733d4e55b36a92fcd487975049c8172341827ac9cc03e
GET /njf/public/aos-master/dist/aos.css HTTP/1.1
Host: njf.com.tw
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://njf.com.tw/njf/
Cookie: XSRF-TOKEN=eyJpdiI6IkNJXC9yeEFkZVNCRUJ0eTgwc2xESFNRPT0iLCJ2YWx1ZSI6Ik1yTEdmMGp4bDVHSnRuU1FhSXJqc1Qrc2JDVUljRzFQejJQdnR2Sit5cTEwdDN4N1dmVXRSMjFpakd5WnhTejciLCJtYWMiOiI1ZDM0MmE3NDgzYTZlMTM0MzE5MjY4ZWEzNmRiNzZjZmYxMjQ5NThmY2Y0ZmZlODU5NzQ1ZTA0ZWIzYTI1MzNiIn0%3D; laravel_session=eyJpdiI6ImZxS0xoa1dmVGRjQXZSYWtkbXo4dWc9PSIsInZhbHVlIjoiMkVLMVpqbWJ4dngwcGtGaStkQ3JyWkFZbzNYWEU0dWVJVkdFekNRZXoxXC9yS2pZcGJTTHdYQTlJekVtWVwveitLIiwibWFjIjoiZWY5MDI2NzgwZmEyNzY0NTA4OWU1ZTEyN2JmMDNhMjA1MjExZGVkNGYxMmI0YmM3MWRiZDA1YzcxZGQzZTI4YyJ9
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 10 Sep 2022 01:49:33 GMT
Content-Type: text/css
Content-Length: 26053
Last-Modified: Mon, 10 May 2021 00:54:51 GMT
Connection: keep-alive
ETag: "6098845b-65c5"
Strict-Transport-Security: max-age=31536000
Accept-Ranges: bytes
njf.com.tw/njf/public/timeline-slider/js/jquery.timelinr-0.9.4.js
125.227.104.139200 OK 12 kB URL HTTP/1.1 njf.com.tw/njf/public/timeline-slider/js/jquery.timelinr-0.9.4.js
IP 125.227.104.139:0
ASN #3462 Data Communication Business Group
Hash 4119aa2cae3560b9f0c029406d0e173d
36ab613b2578d2918a6bfe1172c10714de37de00
47a2f2e371852ba4172c71993a1dbc1d3ec6a6a2f5d1808b2d9b684e35370e51
Analyzer Verdict Alert fortinet Phishing
GET /njf/public/timeline-slider/js/jquery.timelinr-0.9.4.js HTTP/1.1
Host: njf.com.tw
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://njf.com.tw/njf/
Cookie: XSRF-TOKEN=eyJpdiI6IkNJXC9yeEFkZVNCRUJ0eTgwc2xESFNRPT0iLCJ2YWx1ZSI6Ik1yTEdmMGp4bDVHSnRuU1FhSXJqc1Qrc2JDVUljRzFQejJQdnR2Sit5cTEwdDN4N1dmVXRSMjFpakd5WnhTejciLCJtYWMiOiI1ZDM0MmE3NDgzYTZlMTM0MzE5MjY4ZWEzNmRiNzZjZmYxMjQ5NThmY2Y0ZmZlODU5NzQ1ZTA0ZWIzYTI1MzNiIn0%3D; laravel_session=eyJpdiI6ImZxS0xoa1dmVGRjQXZSYWtkbXo4dWc9PSIsInZhbHVlIjoiMkVLMVpqbWJ4dngwcGtGaStkQ3JyWkFZbzNYWEU0dWVJVkdFekNRZXoxXC9yS2pZcGJTTHdYQTlJekVtWVwveitLIiwibWFjIjoiZWY5MDI2NzgwZmEyNzY0NTA4OWU1ZTEyN2JmMDNhMjA1MjExZGVkNGYxMmI0YmM3MWRiZDA1YzcxZGQzZTI4YyJ9
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 10 Sep 2022 01:49:33 GMT
Content-Type: application/javascript; charset=utf-8
Content-Length: 12232
Last-Modified: Mon, 10 May 2021 00:55:06 GMT
Connection: keep-alive
ETag: "6098846a-2fc8"
Strict-Transport-Security: max-age=31536000
Accept-Ranges: bytes
njf.com.tw/njf/public/timeline-slider/css/styles.css
125.227.104.139200 OK 4.8 kB URL HTTP/1.1 njf.com.tw/njf/public/timeline-slider/css/styles.css
IP 125.227.104.139:0
ASN #3462 Data Communication Business Group
File type Unicode text, UTF-8 text, with CRLF line terminators
Hash b532c647e4452e94b539792c77aba3b9
10a7b40d441f770fdc34df9b991fd25883566a7c
963e96d08bed0873781dcc1fcdbf3981e82533688a9e637470d4add4f49c1a2c
GET /njf/public/timeline-slider/css/styles.css HTTP/1.1
Host: njf.com.tw
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://njf.com.tw/njf/
Cookie: XSRF-TOKEN=eyJpdiI6IkNJXC9yeEFkZVNCRUJ0eTgwc2xESFNRPT0iLCJ2YWx1ZSI6Ik1yTEdmMGp4bDVHSnRuU1FhSXJqc1Qrc2JDVUljRzFQejJQdnR2Sit5cTEwdDN4N1dmVXRSMjFpakd5WnhTejciLCJtYWMiOiI1ZDM0MmE3NDgzYTZlMTM0MzE5MjY4ZWEzNmRiNzZjZmYxMjQ5NThmY2Y0ZmZlODU5NzQ1ZTA0ZWIzYTI1MzNiIn0%3D; laravel_session=eyJpdiI6ImZxS0xoa1dmVGRjQXZSYWtkbXo4dWc9PSIsInZhbHVlIjoiMkVLMVpqbWJ4dngwcGtGaStkQ3JyWkFZbzNYWEU0dWVJVkdFekNRZXoxXC9yS2pZcGJTTHdYQTlJekVtWVwveitLIiwibWFjIjoiZWY5MDI2NzgwZmEyNzY0NTA4OWU1ZTEyN2JmMDNhMjA1MjExZGVkNGYxMmI0YmM3MWRiZDA1YzcxZGQzZTI4YyJ9
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 10 Sep 2022 01:49:33 GMT
Content-Type: text/css
Content-Length: 4777
Last-Modified: Mon, 10 May 2021 00:55:06 GMT
Connection: keep-alive
ETag: "6098846a-12a9"
Strict-Transport-Security: max-age=31536000
Accept-Ranges: bytes
njf.com.tw/njf/public/css/index.css
125.227.104.139200 OK 21 kB URL HTTP/1.1 njf.com.tw/njf/public/css/index.css
IP 125.227.104.139:0
ASN #3462 Data Communication Business Group
File type ASCII text, with CRLF line terminators
Hash 96fa443ace69300ef4b776847ede9b2e
2962d19b2cdcd738baef69e226bf0be41417d9a6
484187dbdd3427ad611213cb285dfbfd387aff1859eff42f84f6fc2ab446766e
GET /njf/public/css/index.css HTTP/1.1
Host: njf.com.tw
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://njf.com.tw/njf/
Cookie: XSRF-TOKEN=eyJpdiI6IkNJXC9yeEFkZVNCRUJ0eTgwc2xESFNRPT0iLCJ2YWx1ZSI6Ik1yTEdmMGp4bDVHSnRuU1FhSXJqc1Qrc2JDVUljRzFQejJQdnR2Sit5cTEwdDN4N1dmVXRSMjFpakd5WnhTejciLCJtYWMiOiI1ZDM0MmE3NDgzYTZlMTM0MzE5MjY4ZWEzNmRiNzZjZmYxMjQ5NThmY2Y0ZmZlODU5NzQ1ZTA0ZWIzYTI1MzNiIn0%3D; laravel_session=eyJpdiI6ImZxS0xoa1dmVGRjQXZSYWtkbXo4dWc9PSIsInZhbHVlIjoiMkVLMVpqbWJ4dngwcGtGaStkQ3JyWkFZbzNYWEU0dWVJVkdFekNRZXoxXC9yS2pZcGJTTHdYQTlJekVtWVwveitLIiwibWFjIjoiZWY5MDI2NzgwZmEyNzY0NTA4OWU1ZTEyN2JmMDNhMjA1MjExZGVkNGYxMmI0YmM3MWRiZDA1YzcxZGQzZTI4YyJ9
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 10 Sep 2022 01:49:33 GMT
Content-Type: text/css
Content-Length: 21075
Last-Modified: Wed, 04 May 2022 00:47:28 GMT
Connection: keep-alive
ETag: "6271cd20-5253"
Strict-Transport-Security: max-age=31536000
Accept-Ranges: bytes
njf.com.tw/njf/public/js/timeline-slider-custom.js
125.227.104.139200 OK 2.2 kB URL HTTP/1.1 njf.com.tw/njf/public/js/timeline-slider-custom.js
IP 125.227.104.139:0
ASN #3462 Data Communication Business Group
File type CSV text\012- HTML document, Unicode text, UTF-8 text, with CRLF line terminators
Hash 41ae8f78131e72c01ca9db6f3bd4d84d
30ecef063a54eacce5cf4f492c036ce5305887f7
5d1de282ba56e60f4cb4298e32bd32da11359b31bf1ab3b36b939aab8f8ac9d9
Analyzer Verdict Alert fortinet Phishing
GET /njf/public/js/timeline-slider-custom.js HTTP/1.1
Host: njf.com.tw
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://njf.com.tw/njf/
Cookie: XSRF-TOKEN=eyJpdiI6IkNJXC9yeEFkZVNCRUJ0eTgwc2xESFNRPT0iLCJ2YWx1ZSI6Ik1yTEdmMGp4bDVHSnRuU1FhSXJqc1Qrc2JDVUljRzFQejJQdnR2Sit5cTEwdDN4N1dmVXRSMjFpakd5WnhTejciLCJtYWMiOiI1ZDM0MmE3NDgzYTZlMTM0MzE5MjY4ZWEzNmRiNzZjZmYxMjQ5NThmY2Y0ZmZlODU5NzQ1ZTA0ZWIzYTI1MzNiIn0%3D; laravel_session=eyJpdiI6ImZxS0xoa1dmVGRjQXZSYWtkbXo4dWc9PSIsInZhbHVlIjoiMkVLMVpqbWJ4dngwcGtGaStkQ3JyWkFZbzNYWEU0dWVJVkdFekNRZXoxXC9yS2pZcGJTTHdYQTlJekVtWVwveitLIiwibWFjIjoiZWY5MDI2NzgwZmEyNzY0NTA4OWU1ZTEyN2JmMDNhMjA1MjExZGVkNGYxMmI0YmM3MWRiZDA1YzcxZGQzZTI4YyJ9
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 10 Sep 2022 01:49:33 GMT
Content-Type: application/javascript; charset=utf-8
Content-Length: 2212
Last-Modified: Mon, 10 May 2021 00:55:06 GMT
Connection: keep-alive
ETag: "6098846a-8a4"
Strict-Transport-Security: max-age=31536000
Accept-Ranges: bytes
njf.com.tw/njf/public/fontawesome/js/all.js
125.227.104.139200 OK 1.3 MB URL HTTP/1.1 njf.com.tw/njf/public/fontawesome/js/all.js
IP 125.227.104.139:0
ASN #3462 Data Communication Business Group
File type ASCII text, with very long lines (3431)
Size 1.3 MB (1260431 bytes)
Hash 4626c2d1497220a92dc418738dc73fca
4ea8954b9b8c75329b995b2ba51cc8476bd763c9
a6f3cff2c581ae8c339c7bf5c6c8d304eeffef83812b398e0866847aadeaf934
Analyzer Verdict Alert fortinet Phishing
GET /njf/public/fontawesome/js/all.js HTTP/1.1
Host: njf.com.tw
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://njf.com.tw/njf/
Cookie: XSRF-TOKEN=eyJpdiI6IkNJXC9yeEFkZVNCRUJ0eTgwc2xESFNRPT0iLCJ2YWx1ZSI6Ik1yTEdmMGp4bDVHSnRuU1FhSXJqc1Qrc2JDVUljRzFQejJQdnR2Sit5cTEwdDN4N1dmVXRSMjFpakd5WnhTejciLCJtYWMiOiI1ZDM0MmE3NDgzYTZlMTM0MzE5MjY4ZWEzNmRiNzZjZmYxMjQ5NThmY2Y0ZmZlODU5NzQ1ZTA0ZWIzYTI1MzNiIn0%3D; laravel_session=eyJpdiI6ImZxS0xoa1dmVGRjQXZSYWtkbXo4dWc9PSIsInZhbHVlIjoiMkVLMVpqbWJ4dngwcGtGaStkQ3JyWkFZbzNYWEU0dWVJVkdFekNRZXoxXC9yS2pZcGJTTHdYQTlJekVtWVwveitLIiwibWFjIjoiZWY5MDI2NzgwZmEyNzY0NTA4OWU1ZTEyN2JmMDNhMjA1MjExZGVkNGYxMmI0YmM3MWRiZDA1YzcxZGQzZTI4YyJ9
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 10 Sep 2022 01:49:32 GMT
Content-Type: application/javascript; charset=utf-8
Content-Length: 1260431
Last-Modified: Mon, 10 May 2021 00:54:57 GMT
Connection: keep-alive
ETag: "60988461-133b8f"
Strict-Transport-Security: max-age=31536000
Accept-Ranges: bytes
njf.com.tw/njf/public/swiper-3.4.2/js/swiper.min.js
125.227.104.139200 OK 96 kB URL HTTP/1.1 njf.com.tw/njf/public/swiper-3.4.2/js/swiper.min.js
IP 125.227.104.139:0
ASN #3462 Data Communication Business Group
File type ASCII text, with very long lines (31999)
Hash fb13ef3e875ca3497ede35d3774be9d3
ab0743a89d522438c17ae7eaf5943fd4590ee3d0
4a10219bee747aadeeda78f166d787adf32583f361f88d44b472f6f3da798083
Analyzer Verdict Alert fortinet Phishing
GET /njf/public/swiper-3.4.2/js/swiper.min.js HTTP/1.1
Host: njf.com.tw
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://njf.com.tw/njf/
Cookie: XSRF-TOKEN=eyJpdiI6IkNJXC9yeEFkZVNCRUJ0eTgwc2xESFNRPT0iLCJ2YWx1ZSI6Ik1yTEdmMGp4bDVHSnRuU1FhSXJqc1Qrc2JDVUljRzFQejJQdnR2Sit5cTEwdDN4N1dmVXRSMjFpakd5WnhTejciLCJtYWMiOiI1ZDM0MmE3NDgzYTZlMTM0MzE5MjY4ZWEzNmRiNzZjZmYxMjQ5NThmY2Y0ZmZlODU5NzQ1ZTA0ZWIzYTI1MzNiIn0%3D; laravel_session=eyJpdiI6ImZxS0xoa1dmVGRjQXZSYWtkbXo4dWc9PSIsInZhbHVlIjoiMkVLMVpqbWJ4dngwcGtGaStkQ3JyWkFZbzNYWEU0dWVJVkdFekNRZXoxXC9yS2pZcGJTTHdYQTlJekVtWVwveitLIiwibWFjIjoiZWY5MDI2NzgwZmEyNzY0NTA4OWU1ZTEyN2JmMDNhMjA1MjExZGVkNGYxMmI0YmM3MWRiZDA1YzcxZGQzZTI4YyJ9
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 10 Sep 2022 01:49:33 GMT
Content-Type: application/javascript; charset=utf-8
Content-Length: 96419
Last-Modified: Mon, 10 May 2021 00:55:06 GMT
Connection: keep-alive
ETag: "6098846a-178a3"
Strict-Transport-Security: max-age=31536000
Accept-Ranges: bytes
njf.com.tw/njf/public/images/index/oki-01-01.png
125.227.104.139200 OK 14 kB URL HTTP/1.1 njf.com.tw/njf/public/images/index/oki-01-01.png
IP 125.227.104.139:0
ASN #3462 Data Communication Business Group
File type PNG image data, 338 x 357, 8-bit/color RGBA, non-interlaced\012- data
Hash 3095a925e5e58393fd18d950f78c301f
fcd45d93cb1f52e3914ec622ecd989a112013561
9d3e4dbf4d57fefbe7cde8bb65e0f6bd36b80e4f7f74cf78976232d0700c23ca
GET /njf/public/images/index/oki-01-01.png HTTP/1.1
Host: njf.com.tw
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://njf.com.tw/njf/
Cookie: XSRF-TOKEN=eyJpdiI6IkNJXC9yeEFkZVNCRUJ0eTgwc2xESFNRPT0iLCJ2YWx1ZSI6Ik1yTEdmMGp4bDVHSnRuU1FhSXJqc1Qrc2JDVUljRzFQejJQdnR2Sit5cTEwdDN4N1dmVXRSMjFpakd5WnhTejciLCJtYWMiOiI1ZDM0MmE3NDgzYTZlMTM0MzE5MjY4ZWEzNmRiNzZjZmYxMjQ5NThmY2Y0ZmZlODU5NzQ1ZTA0ZWIzYTI1MzNiIn0%3D; laravel_session=eyJpdiI6ImZxS0xoa1dmVGRjQXZSYWtkbXo4dWc9PSIsInZhbHVlIjoiMkVLMVpqbWJ4dngwcGtGaStkQ3JyWkFZbzNYWEU0dWVJVkdFekNRZXoxXC9yS2pZcGJTTHdYQTlJekVtWVwveitLIiwibWFjIjoiZWY5MDI2NzgwZmEyNzY0NTA4OWU1ZTEyN2JmMDNhMjA1MjExZGVkNGYxMmI0YmM3MWRiZDA1YzcxZGQzZTI4YyJ9
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 10 Sep 2022 01:49:34 GMT
Content-Type: image/png
Content-Length: 13645
Last-Modified: Mon, 10 May 2021 00:55:00 GMT
Connection: keep-alive
ETag: "60988464-354d"
Strict-Transport-Security: max-age=31536000
Accept-Ranges: bytes
njf.com.tw/njf/public/images/index/medi-01-01.png
125.227.104.139200 OK 21 kB URL HTTP/1.1 njf.com.tw/njf/public/images/index/medi-01-01.png
IP 125.227.104.139:0
ASN #3462 Data Communication Business Group
File type PNG image data, 338 x 357, 8-bit/color RGBA, non-interlaced\012- data
Hash 100cac4830e777d62633b6b2fc1e79d9
3474f780a38133a0ec9e509c1c9515f66b66f882
a9ccb4cfc188972a9dcc0a3d607afdeb0cfbf041f50205d1a38b1a5cc894606c
GET /njf/public/images/index/medi-01-01.png HTTP/1.1
Host: njf.com.tw
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://njf.com.tw/njf/
Cookie: XSRF-TOKEN=eyJpdiI6IkNJXC9yeEFkZVNCRUJ0eTgwc2xESFNRPT0iLCJ2YWx1ZSI6Ik1yTEdmMGp4bDVHSnRuU1FhSXJqc1Qrc2JDVUljRzFQejJQdnR2Sit5cTEwdDN4N1dmVXRSMjFpakd5WnhTejciLCJtYWMiOiI1ZDM0MmE3NDgzYTZlMTM0MzE5MjY4ZWEzNmRiNzZjZmYxMjQ5NThmY2Y0ZmZlODU5NzQ1ZTA0ZWIzYTI1MzNiIn0%3D; laravel_session=eyJpdiI6ImZxS0xoa1dmVGRjQXZSYWtkbXo4dWc9PSIsInZhbHVlIjoiMkVLMVpqbWJ4dngwcGtGaStkQ3JyWkFZbzNYWEU0dWVJVkdFekNRZXoxXC9yS2pZcGJTTHdYQTlJekVtWVwveitLIiwibWFjIjoiZWY5MDI2NzgwZmEyNzY0NTA4OWU1ZTEyN2JmMDNhMjA1MjExZGVkNGYxMmI0YmM3MWRiZDA1YzcxZGQzZTI4YyJ9
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 10 Sep 2022 01:49:34 GMT
Content-Type: image/png
Content-Length: 20793
Last-Modified: Mon, 10 May 2021 00:55:00 GMT
Connection: keep-alive
ETag: "60988464-5139"
Strict-Transport-Security: max-age=31536000
Accept-Ranges: bytes
njf.com.tw/njf/public/images/index/IMed-logo.png
125.227.104.139200 OK 22 kB URL HTTP/1.1 njf.com.tw/njf/public/images/index/IMed-logo.png
IP 125.227.104.139:0
ASN #3462 Data Communication Business Group
File type PNG image data, 206 x 206, 8-bit/color RGBA, non-interlaced\012- data
Hash 205ba00f97fc7b82aadf06f70a9d5522
d16b5e4f6a12a0021478ec258c8af6d1228f6b65
bbfc29a7ca61bab120e08f046ae9da583c3853c73d054604045ed2127dfc8e86
GET /njf/public/images/index/IMed-logo.png HTTP/1.1
Host: njf.com.tw
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://njf.com.tw/njf/
Cookie: XSRF-TOKEN=eyJpdiI6IkNJXC9yeEFkZVNCRUJ0eTgwc2xESFNRPT0iLCJ2YWx1ZSI6Ik1yTEdmMGp4bDVHSnRuU1FhSXJqc1Qrc2JDVUljRzFQejJQdnR2Sit5cTEwdDN4N1dmVXRSMjFpakd5WnhTejciLCJtYWMiOiI1ZDM0MmE3NDgzYTZlMTM0MzE5MjY4ZWEzNmRiNzZjZmYxMjQ5NThmY2Y0ZmZlODU5NzQ1ZTA0ZWIzYTI1MzNiIn0%3D; laravel_session=eyJpdiI6ImZxS0xoa1dmVGRjQXZSYWtkbXo4dWc9PSIsInZhbHVlIjoiMkVLMVpqbWJ4dngwcGtGaStkQ3JyWkFZbzNYWEU0dWVJVkdFekNRZXoxXC9yS2pZcGJTTHdYQTlJekVtWVwveitLIiwibWFjIjoiZWY5MDI2NzgwZmEyNzY0NTA4OWU1ZTEyN2JmMDNhMjA1MjExZGVkNGYxMmI0YmM3MWRiZDA1YzcxZGQzZTI4YyJ9
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 10 Sep 2022 01:49:34 GMT
Content-Type: image/png
Content-Length: 22264
Last-Modified: Mon, 10 May 2021 00:55:00 GMT
Connection: keep-alive
ETag: "60988464-56f8"
Strict-Transport-Security: max-age=31536000
Accept-Ranges: bytes
njf.com.tw/njf/public//fontawesome/webfonts/fa-solid-900.woff2
125.227.104.139200 OK 80 kB URL HTTP/1.1 njf.com.tw/njf/public//fontawesome/webfonts/fa-solid-900.woff2
IP 125.227.104.139:0
ASN #3462 Data Communication Business Group
File type Web Open Font Format (Version 2), TrueType, length 80252, version 331.-31327\012- data
Hash 9ae050d1876ac1763eb6afe4264e6d5a
72344eab2e7431eec313caa21f266cbfda7caf60
6c916669cf923b4f1b2db5c5107c83b6ca205e7ad0dcd840b251e63f0c8d28a2
Analyzer Verdict Alert fortinet Phishing
GET /njf/public//fontawesome/webfonts/fa-solid-900.woff2 HTTP/1.1
Host: njf.com.tw
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://njf.com.tw/njf/public//fontawesome/css/all.css
Cookie: XSRF-TOKEN=eyJpdiI6IkNJXC9yeEFkZVNCRUJ0eTgwc2xESFNRPT0iLCJ2YWx1ZSI6Ik1yTEdmMGp4bDVHSnRuU1FhSXJqc1Qrc2JDVUljRzFQejJQdnR2Sit5cTEwdDN4N1dmVXRSMjFpakd5WnhTejciLCJtYWMiOiI1ZDM0MmE3NDgzYTZlMTM0MzE5MjY4ZWEzNmRiNzZjZmYxMjQ5NThmY2Y0ZmZlODU5NzQ1ZTA0ZWIzYTI1MzNiIn0%3D; laravel_session=eyJpdiI6ImZxS0xoa1dmVGRjQXZSYWtkbXo4dWc9PSIsInZhbHVlIjoiMkVLMVpqbWJ4dngwcGtGaStkQ3JyWkFZbzNYWEU0dWVJVkdFekNRZXoxXC9yS2pZcGJTTHdYQTlJekVtWVwveitLIiwibWFjIjoiZWY5MDI2NzgwZmEyNzY0NTA4OWU1ZTEyN2JmMDNhMjA1MjExZGVkNGYxMmI0YmM3MWRiZDA1YzcxZGQzZTI4YyJ9
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 10 Sep 2022 01:49:34 GMT
Content-Type: application/octet-stream
Content-Length: 80252
Last-Modified: Mon, 10 May 2021 00:54:59 GMT
Connection: keep-alive
ETag: "60988463-1397c"
Strict-Transport-Security: max-age=31536000
Accept-Ranges: bytes
njf.com.tw/njf/public//fontawesome/webfonts/fa-regular-400.woff2
125.227.104.139200 OK 14 kB URL HTTP/1.1 njf.com.tw/njf/public//fontawesome/webfonts/fa-regular-400.woff2
IP 125.227.104.139:0
ASN #3462 Data Communication Business Group
File type Web Open Font Format (Version 2), TrueType, length 13588, version 331.-31327\012- data
Hash 847712aaabbeba674afdda86d31cab17
c07631a91ee71c0a1a84a3151db42b1f2d9a9692
b3b8c21edfe6c5e402fdc607366fd8d15949a65914f58134733dc68922bc8d61
Analyzer Verdict Alert fortinet Phishing
GET /njf/public//fontawesome/webfonts/fa-regular-400.woff2 HTTP/1.1
Host: njf.com.tw
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://njf.com.tw/njf/public//fontawesome/css/all.css
Cookie: XSRF-TOKEN=eyJpdiI6IkNJXC9yeEFkZVNCRUJ0eTgwc2xESFNRPT0iLCJ2YWx1ZSI6Ik1yTEdmMGp4bDVHSnRuU1FhSXJqc1Qrc2JDVUljRzFQejJQdnR2Sit5cTEwdDN4N1dmVXRSMjFpakd5WnhTejciLCJtYWMiOiI1ZDM0MmE3NDgzYTZlMTM0MzE5MjY4ZWEzNmRiNzZjZmYxMjQ5NThmY2Y0ZmZlODU5NzQ1ZTA0ZWIzYTI1MzNiIn0%3D; laravel_session=eyJpdiI6ImZxS0xoa1dmVGRjQXZSYWtkbXo4dWc9PSIsInZhbHVlIjoiMkVLMVpqbWJ4dngwcGtGaStkQ3JyWkFZbzNYWEU0dWVJVkdFekNRZXoxXC9yS2pZcGJTTHdYQTlJekVtWVwveitLIiwibWFjIjoiZWY5MDI2NzgwZmEyNzY0NTA4OWU1ZTEyN2JmMDNhMjA1MjExZGVkNGYxMmI0YmM3MWRiZDA1YzcxZGQzZTI4YyJ9
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 10 Sep 2022 01:49:34 GMT
Content-Type: application/octet-stream
Content-Length: 13588
Last-Modified: Mon, 10 May 2021 00:54:59 GMT
Connection: keep-alive
ETag: "60988463-3514"
Strict-Transport-Security: max-age=31536000
Accept-Ranges: bytes
njf.com.tw/njf/public/fonts/glyphicons-halflings-regular.woff2
125.227.104.139200 OK 18 kB URL HTTP/1.1 njf.com.tw/njf/public/fonts/glyphicons-halflings-regular.woff2
IP 125.227.104.139:0
ASN #3462 Data Communication Business Group
File type Web Open Font Format (Version 2), TrueType, length 18028, version 1.589\012- data
Hash 448c34a56d699c29117adc64c43affeb
ca35b697d99cae4d1b60f2d60fcd37771987eb07
fe185d11a49676890d47bb783312a0cda5a44c4039214094e7957b4c040ef11c
Analyzer Verdict Alert fortinet Phishing
GET /njf/public/fonts/glyphicons-halflings-regular.woff2 HTTP/1.1
Host: njf.com.tw
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://njf.com.tw/njf/public/css/bootstrap.min.css
Cookie: XSRF-TOKEN=eyJpdiI6IkNJXC9yeEFkZVNCRUJ0eTgwc2xESFNRPT0iLCJ2YWx1ZSI6Ik1yTEdmMGp4bDVHSnRuU1FhSXJqc1Qrc2JDVUljRzFQejJQdnR2Sit5cTEwdDN4N1dmVXRSMjFpakd5WnhTejciLCJtYWMiOiI1ZDM0MmE3NDgzYTZlMTM0MzE5MjY4ZWEzNmRiNzZjZmYxMjQ5NThmY2Y0ZmZlODU5NzQ1ZTA0ZWIzYTI1MzNiIn0%3D; laravel_session=eyJpdiI6ImZxS0xoa1dmVGRjQXZSYWtkbXo4dWc9PSIsInZhbHVlIjoiMkVLMVpqbWJ4dngwcGtGaStkQ3JyWkFZbzNYWEU0dWVJVkdFekNRZXoxXC9yS2pZcGJTTHdYQTlJekVtWVwveitLIiwibWFjIjoiZWY5MDI2NzgwZmEyNzY0NTA4OWU1ZTEyN2JmMDNhMjA1MjExZGVkNGYxMmI0YmM3MWRiZDA1YzcxZGQzZTI4YyJ9
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 10 Sep 2022 01:49:34 GMT
Content-Type: application/octet-stream
Content-Length: 18028
Last-Modified: Mon, 10 May 2021 00:54:59 GMT
Connection: keep-alive
ETag: "60988463-466c"
Strict-Transport-Security: max-age=31536000
Accept-Ranges: bytes
njf.com.tw/njf/public/css/%7B%7Basset('public/images/index/home_banner.png')%7D%7D
125.227.104.139302 Found 332 B URL HTTP/1.1 njf.com.tw/njf/public/css/%7B%7Basset('public/images/index/home_banner.png')%7D%7D
IP 125.227.104.139:0
ASN #3462 Data Communication Business Group
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash da7fd29ad81044796d86698edd24a242
7bb194700bb2b5b50b55b9fc85ff24d53b348b6f
39f69c12a747ed0664f487fdfec31c343e5ac123391fe8c9ed10435837b7d6b8
Analyzer Verdict Alert fortinet Phishing
GET /njf/public/css/%7B%7Basset('public/images/index/home_banner.png')%7D%7D HTTP/1.1
Host: njf.com.tw
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://njf.com.tw/njf/public/css/public-style.css
Cookie: XSRF-TOKEN=eyJpdiI6IkNJXC9yeEFkZVNCRUJ0eTgwc2xESFNRPT0iLCJ2YWx1ZSI6Ik1yTEdmMGp4bDVHSnRuU1FhSXJqc1Qrc2JDVUljRzFQejJQdnR2Sit5cTEwdDN4N1dmVXRSMjFpakd5WnhTejciLCJtYWMiOiI1ZDM0MmE3NDgzYTZlMTM0MzE5MjY4ZWEzNmRiNzZjZmYxMjQ5NThmY2Y0ZmZlODU5NzQ1ZTA0ZWIzYTI1MzNiIn0%3D; laravel_session=eyJpdiI6ImZxS0xoa1dmVGRjQXZSYWtkbXo4dWc9PSIsInZhbHVlIjoiMkVLMVpqbWJ4dngwcGtGaStkQ3JyWkFZbzNYWEU0dWVJVkdFekNRZXoxXC9yS2pZcGJTTHdYQTlJekVtWVwveitLIiwibWFjIjoiZWY5MDI2NzgwZmEyNzY0NTA4OWU1ZTEyN2JmMDNhMjA1MjExZGVkNGYxMmI0YmM3MWRiZDA1YzcxZGQzZTI4YyJ9
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 302 Found
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: no-cache, private
Date: Sat, 10 Sep 2022 01:49:34 GMT
Location: https://njf.com.tw/njf
Strict-Transport-Security: max-age=31536000
njf.com.tw/njf/public/images/index/right_arrow_circle.png
125.227.104.139200 OK 1.1 kB URL HTTP/1.1 njf.com.tw/njf/public/images/index/right_arrow_circle.png
IP 125.227.104.139:0
ASN #3462 Data Communication Business Group
File type PNG image data, 61 x 61, 8-bit/color RGBA, non-interlaced\012- data
Hash 666a2997553e5ad25b9f44d887078ae7
7a248c2506675f7d3063e69ed4039609a2bc7f15
947b63e213091b308763e135e24ed5064b5a44e5b3d9953243cd1e2a26b08d8b
GET /njf/public/images/index/right_arrow_circle.png HTTP/1.1
Host: njf.com.tw
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://njf.com.tw/njf/
Cookie: XSRF-TOKEN=eyJpdiI6IkNJXC9yeEFkZVNCRUJ0eTgwc2xESFNRPT0iLCJ2YWx1ZSI6Ik1yTEdmMGp4bDVHSnRuU1FhSXJqc1Qrc2JDVUljRzFQejJQdnR2Sit5cTEwdDN4N1dmVXRSMjFpakd5WnhTejciLCJtYWMiOiI1ZDM0MmE3NDgzYTZlMTM0MzE5MjY4ZWEzNmRiNzZjZmYxMjQ5NThmY2Y0ZmZlODU5NzQ1ZTA0ZWIzYTI1MzNiIn0%3D; laravel_session=eyJpdiI6ImZxS0xoa1dmVGRjQXZSYWtkbXo4dWc9PSIsInZhbHVlIjoiMkVLMVpqbWJ4dngwcGtGaStkQ3JyWkFZbzNYWEU0dWVJVkdFekNRZXoxXC9yS2pZcGJTTHdYQTlJekVtWVwveitLIiwibWFjIjoiZWY5MDI2NzgwZmEyNzY0NTA4OWU1ZTEyN2JmMDNhMjA1MjExZGVkNGYxMmI0YmM3MWRiZDA1YzcxZGQzZTI4YyJ9
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 10 Sep 2022 01:49:34 GMT
Content-Type: image/png
Content-Length: 1075
Last-Modified: Mon, 10 May 2021 00:55:00 GMT
Connection: keep-alive
ETag: "60988464-433"
Strict-Transport-Security: max-age=31536000
Accept-Ranges: bytes
njf.com.tw/njf/get_current_news?currentYear=2022
125.227.104.139200 OK 852 B URL HTTP/1.1 njf.com.tw/njf/get_current_news?currentYear=2022
IP 125.227.104.139:0
ASN #3462 Data Communication Business Group
File type JSON data\012- , ASCII text, with very long lines (852), with no line terminators
Hash 250310242b580c510dffdf5171815188
73bb868f203e2d9fcd93638fea1c5f801abdba9d
795d4f159d4e6debe18139fd2878247d45540dfbc60c4be7918a06afbb870043
Analyzer Verdict Alert fortinet Phishing
GET /njf/get_current_news?currentYear=2022 HTTP/1.1
Host: njf.com.tw
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Referer: https://njf.com.tw/njf/
Cookie: XSRF-TOKEN=eyJpdiI6IkNJXC9yeEFkZVNCRUJ0eTgwc2xESFNRPT0iLCJ2YWx1ZSI6Ik1yTEdmMGp4bDVHSnRuU1FhSXJqc1Qrc2JDVUljRzFQejJQdnR2Sit5cTEwdDN4N1dmVXRSMjFpakd5WnhTejciLCJtYWMiOiI1ZDM0MmE3NDgzYTZlMTM0MzE5MjY4ZWEzNmRiNzZjZmYxMjQ5NThmY2Y0ZmZlODU5NzQ1ZTA0ZWIzYTI1MzNiIn0%3D; laravel_session=eyJpdiI6ImZxS0xoa1dmVGRjQXZSYWtkbXo4dWc9PSIsInZhbHVlIjoiMkVLMVpqbWJ4dngwcGtGaStkQ3JyWkFZbzNYWEU0dWVJVkdFekNRZXoxXC9yS2pZcGJTTHdYQTlJekVtWVwveitLIiwibWFjIjoiZWY5MDI2NzgwZmEyNzY0NTA4OWU1ZTEyN2JmMDNhMjA1MjExZGVkNGYxMmI0YmM3MWRiZDA1YzcxZGQzZTI4YyJ9
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Content-Type: application/json
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: no-cache, private
Date: Sat, 10 Sep 2022 01:49:34 GMT
Set-Cookie: XSRF-TOKEN=eyJpdiI6IkN3Ym5zc05sanZUanN2XC9XcklVdm9RPT0iLCJ2YWx1ZSI6ImVtSkIzaHJ5UnZkYlFqakJaN1U4Qmt0OTBvN0dLT2xWZVhcL1ZOb3hBRWJFS1RzUzRrdVFFRnpDa3Eyb1BrckVUIiwibWFjIjoiM2E2ZTJiYjZjMDk3NjBkOTI3ZGZjYzAxZDI4MGE1ZGVlMWUyYzYzYzJkZTFiYmFjNjNkZDQ2MTc5OWM3ODMzMSJ9; expires=Sat, 10-Sep-2022 01:50:34 GMT; Max-Age=60; path=/
laravel_session=eyJpdiI6IkN5aGRQZU5aZXlDTWswZmxpaTk0d2c9PSIsInZhbHVlIjoic29uMjNzcTAxaGdnMmVBQ0h5QzZWb3hmdnY1aFlSRVJac2pUUFwvR2o0Szl2VEpDRitCM3pjMlpiZDBOWGZldFgiLCJtYWMiOiIwZDlhMThmZjIxYjZkNjFiODkxMThmNTlmNzVkYzVlNGM1MjY3Y2FmMGVjMjkyMTJiMTAxNzRhNzlhNTFlOTQwIn0%3D; expires=Sat, 10-Sep-2022 01:50:34 GMT; Max-Age=60; path=/; httponly
Strict-Transport-Security: max-age=31536000
njf.com.tw/njf/public/timeline-slider/images/dot.gif
125.227.104.139200 OK 801 B URL HTTP/1.1 njf.com.tw/njf/public/timeline-slider/images/dot.gif
IP 125.227.104.139:0
ASN #3462 Data Communication Business Group
File type GIF image data, version 89a, 4 x 1\012- data
Hash 195229c4024ac61fc6c7820ee1338665
05152542540c46f190178c2a590979515b89a19f
6d3c21cdf0e2ab88b7666c86a1f5c4e5cce845d85a2d73801dc5e8595c88243a
GET /njf/public/timeline-slider/images/dot.gif HTTP/1.1
Host: njf.com.tw
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://njf.com.tw/njf/public/timeline-slider/css/styles.css
Cookie: XSRF-TOKEN=eyJpdiI6IkNJXC9yeEFkZVNCRUJ0eTgwc2xESFNRPT0iLCJ2YWx1ZSI6Ik1yTEdmMGp4bDVHSnRuU1FhSXJqc1Qrc2JDVUljRzFQejJQdnR2Sit5cTEwdDN4N1dmVXRSMjFpakd5WnhTejciLCJtYWMiOiI1ZDM0MmE3NDgzYTZlMTM0MzE5MjY4ZWEzNmRiNzZjZmYxMjQ5NThmY2Y0ZmZlODU5NzQ1ZTA0ZWIzYTI1MzNiIn0%3D; laravel_session=eyJpdiI6ImZxS0xoa1dmVGRjQXZSYWtkbXo4dWc9PSIsInZhbHVlIjoiMkVLMVpqbWJ4dngwcGtGaStkQ3JyWkFZbzNYWEU0dWVJVkdFekNRZXoxXC9yS2pZcGJTTHdYQTlJekVtWVwveitLIiwibWFjIjoiZWY5MDI2NzgwZmEyNzY0NTA4OWU1ZTEyN2JmMDNhMjA1MjExZGVkNGYxMmI0YmM3MWRiZDA1YzcxZGQzZTI4YyJ9
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 10 Sep 2022 01:49:34 GMT
Content-Type: image/gif
Content-Length: 801
Last-Modified: Mon, 10 May 2021 00:55:06 GMT
Connection: keep-alive
ETag: "6098846a-321"
Strict-Transport-Security: max-age=31536000
Accept-Ranges: bytes
njf.com.tw/njf/public/timeline-slider/images/biggerdot.png
125.227.104.139200 OK 152 B URL HTTP/1.1 njf.com.tw/njf/public/timeline-slider/images/biggerdot.png
IP 125.227.104.139:0
ASN #3462 Data Communication Business Group
File type PNG image data, 16 x 8, 8-bit/color RGB, non-interlaced\012- data
Hash 5cddd6792515027e01cfad7fa0e7d198
f869441131297761ca47f54c71a9ae1c13707e05
5db84c5e62194f53c54815f25290860ab4fe663039c472cba9544e42af08e43b
GET /njf/public/timeline-slider/images/biggerdot.png HTTP/1.1
Host: njf.com.tw
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://njf.com.tw/njf/public/timeline-slider/css/styles.css
Cookie: XSRF-TOKEN=eyJpdiI6IkNJXC9yeEFkZVNCRUJ0eTgwc2xESFNRPT0iLCJ2YWx1ZSI6Ik1yTEdmMGp4bDVHSnRuU1FhSXJqc1Qrc2JDVUljRzFQejJQdnR2Sit5cTEwdDN4N1dmVXRSMjFpakd5WnhTejciLCJtYWMiOiI1ZDM0MmE3NDgzYTZlMTM0MzE5MjY4ZWEzNmRiNzZjZmYxMjQ5NThmY2Y0ZmZlODU5NzQ1ZTA0ZWIzYTI1MzNiIn0%3D; laravel_session=eyJpdiI6ImZxS0xoa1dmVGRjQXZSYWtkbXo4dWc9PSIsInZhbHVlIjoiMkVLMVpqbWJ4dngwcGtGaStkQ3JyWkFZbzNYWEU0dWVJVkdFekNRZXoxXC9yS2pZcGJTTHdYQTlJekVtWVwveitLIiwibWFjIjoiZWY5MDI2NzgwZmEyNzY0NTA4OWU1ZTEyN2JmMDNhMjA1MjExZGVkNGYxMmI0YmM3MWRiZDA1YzcxZGQzZTI4YyJ9
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 10 Sep 2022 01:49:34 GMT
Content-Type: image/png
Content-Length: 152
Last-Modified: Mon, 10 May 2021 00:55:06 GMT
Connection: keep-alive
ETag: "6098846a-98"
Strict-Transport-Security: max-age=31536000
Accept-Ranges: bytes
njf.com.tw/njf/public/timeline-slider/images/next.png
125.227.104.139200 OK 2.9 kB URL HTTP/1.1 njf.com.tw/njf/public/timeline-slider/images/next.png
IP 125.227.104.139:0
ASN #3462 Data Communication Business Group
File type PNG image data, 22 x 114, 8-bit/color RGBA, non-interlaced\012- data
Hash d4c1658e3481a5629706b16e48a41c9d
711b28920d5c9880b8204e0355770ec63ba07e8f
26c7c3618dda5da32086523f4d3085dbcde30bfb31d1a13102936cf2a43ade3d
GET /njf/public/timeline-slider/images/next.png HTTP/1.1
Host: njf.com.tw
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://njf.com.tw/njf/public/timeline-slider/css/styles.css
Cookie: XSRF-TOKEN=eyJpdiI6IkNJXC9yeEFkZVNCRUJ0eTgwc2xESFNRPT0iLCJ2YWx1ZSI6Ik1yTEdmMGp4bDVHSnRuU1FhSXJqc1Qrc2JDVUljRzFQejJQdnR2Sit5cTEwdDN4N1dmVXRSMjFpakd5WnhTejciLCJtYWMiOiI1ZDM0MmE3NDgzYTZlMTM0MzE5MjY4ZWEzNmRiNzZjZmYxMjQ5NThmY2Y0ZmZlODU5NzQ1ZTA0ZWIzYTI1MzNiIn0%3D; laravel_session=eyJpdiI6ImZxS0xoa1dmVGRjQXZSYWtkbXo4dWc9PSIsInZhbHVlIjoiMkVLMVpqbWJ4dngwcGtGaStkQ3JyWkFZbzNYWEU0dWVJVkdFekNRZXoxXC9yS2pZcGJTTHdYQTlJekVtWVwveitLIiwibWFjIjoiZWY5MDI2NzgwZmEyNzY0NTA4OWU1ZTEyN2JmMDNhMjA1MjExZGVkNGYxMmI0YmM3MWRiZDA1YzcxZGQzZTI4YyJ9
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 10 Sep 2022 01:49:34 GMT
Content-Type: image/png
Content-Length: 2944
Last-Modified: Mon, 10 May 2021 00:55:06 GMT
Connection: keep-alive
ETag: "6098846a-b80"
Strict-Transport-Security: max-age=31536000
Accept-Ranges: bytes
njf.com.tw/njf/public/timeline-slider/images/prev.png
125.227.104.139200 OK 2.9 kB URL HTTP/1.1 njf.com.tw/njf/public/timeline-slider/images/prev.png
IP 125.227.104.139:0
ASN #3462 Data Communication Business Group
File type PNG image data, 22 x 114, 8-bit/color RGBA, non-interlaced\012- data
Hash 595af861f4f9e79753749e8b47da047f
5876150b93fc0d1b0a9a0fc5b22011e6fa332773
7c53ee11d46c8f24e1a16a61eddd8b843d632a8c6cab8ca19493e8389428c499
GET /njf/public/timeline-slider/images/prev.png HTTP/1.1
Host: njf.com.tw
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://njf.com.tw/njf/public/timeline-slider/css/styles.css
Cookie: XSRF-TOKEN=eyJpdiI6IkNJXC9yeEFkZVNCRUJ0eTgwc2xESFNRPT0iLCJ2YWx1ZSI6Ik1yTEdmMGp4bDVHSnRuU1FhSXJqc1Qrc2JDVUljRzFQejJQdnR2Sit5cTEwdDN4N1dmVXRSMjFpakd5WnhTejciLCJtYWMiOiI1ZDM0MmE3NDgzYTZlMTM0MzE5MjY4ZWEzNmRiNzZjZmYxMjQ5NThmY2Y0ZmZlODU5NzQ1ZTA0ZWIzYTI1MzNiIn0%3D; laravel_session=eyJpdiI6ImZxS0xoa1dmVGRjQXZSYWtkbXo4dWc9PSIsInZhbHVlIjoiMkVLMVpqbWJ4dngwcGtGaStkQ3JyWkFZbzNYWEU0dWVJVkdFekNRZXoxXC9yS2pZcGJTTHdYQTlJekVtWVwveitLIiwibWFjIjoiZWY5MDI2NzgwZmEyNzY0NTA4OWU1ZTEyN2JmMDNhMjA1MjExZGVkNGYxMmI0YmM3MWRiZDA1YzcxZGQzZTI4YyJ9
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 10 Sep 2022 01:49:34 GMT
Content-Type: image/png
Content-Length: 2935
Last-Modified: Mon, 10 May 2021 00:55:06 GMT
Connection: keep-alive
ETag: "6098846a-b77"
Strict-Transport-Security: max-age=31536000
Accept-Ranges: bytes
njf.com.tw/njf/
125.227.104.139200 OK 6.7 kB IP 125.227.104.139:0
ASN #3462 Data Communication Business Group
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (499), with CRLF, LF line terminators
Hash a1d2a9a1299948e5267b9dcffb7b29e5
433babf03d6a06fb04e34d69ebee8d739999f068
a7d2ad91668d37c58f947a560b2da2e728bd209369b537e5713afd4c2f7edd72
Analyzer Verdict Alert fortinet Phishing
GET /njf/ HTTP/1.1
Host: njf.com.tw
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://njf.com.tw/njf/public/css/public-style.css
Connection: keep-alive
Cookie: XSRF-TOKEN=eyJpdiI6IkNJXC9yeEFkZVNCRUJ0eTgwc2xESFNRPT0iLCJ2YWx1ZSI6Ik1yTEdmMGp4bDVHSnRuU1FhSXJqc1Qrc2JDVUljRzFQejJQdnR2Sit5cTEwdDN4N1dmVXRSMjFpakd5WnhTejciLCJtYWMiOiI1ZDM0MmE3NDgzYTZlMTM0MzE5MjY4ZWEzNmRiNzZjZmYxMjQ5NThmY2Y0ZmZlODU5NzQ1ZTA0ZWIzYTI1MzNiIn0%3D; laravel_session=eyJpdiI6ImZxS0xoa1dmVGRjQXZSYWtkbXo4dWc9PSIsInZhbHVlIjoiMkVLMVpqbWJ4dngwcGtGaStkQ3JyWkFZbzNYWEU0dWVJVkdFekNRZXoxXC9yS2pZcGJTTHdYQTlJekVtWVwveitLIiwibWFjIjoiZWY5MDI2NzgwZmEyNzY0NTA4OWU1ZTEyN2JmMDNhMjA1MjExZGVkNGYxMmI0YmM3MWRiZDA1YzcxZGQzZTI4YyJ9
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: no-cache, private
Date: Sat, 10 Sep 2022 01:49:35 GMT
Set-Cookie: XSRF-TOKEN=eyJpdiI6IkJNSlZDQzBWN1I1Tm1EMU92NkxORkE9PSIsInZhbHVlIjoicFkxbVRsdHpOZXl4QWhXd2lhZldUQ2NpMVJnRHViNENTWWFqZDAra1BkZEwzemtcLzZYOGQ5VUxDTG9aQTdQV04iLCJtYWMiOiJlOTEyYTM4YzljNDIzNzJjZTY4ZTNjN2ViNmQ5YzA1MTVkOTc1Yzc0YjM3Mjg1OTA4N2I1MDA1MTk5MGFiNWUwIn0%3D; expires=Sat, 10-Sep-2022 01:50:35 GMT; Max-Age=60; path=/
laravel_session=eyJpdiI6IjVaV3dGekI4YTJMR0drcFErZFRDOGc9PSIsInZhbHVlIjoiNVE3REcwXC9aZkVlTGdYY283OGlrRmx2THZGakZFcmhWNUJBWTBtNmcwSmhrSFdYZzBwUHdPWmVCTnJObmI4cXYiLCJtYWMiOiJiN2UzZDc0NTQ5NjQwMDc2YTRjZGI0MTFjNTE5OGFmMjgwYTMzMmZkM2IxN2Q5ZDdlMTIxNmVhN2RkM2Y2MjlkIn0%3D; expires=Sat, 10-Sep-2022 01:50:35 GMT; Max-Age=60; path=/; httponly
Strict-Transport-Security: max-age=31536000
Content-Encoding: gzip
njf.com.tw/njf/public/images/index/Banner_Hospital_Vector.png
125.227.104.139200 OK 942 kB URL HTTP/1.1 njf.com.tw/njf/public/images/index/Banner_Hospital_Vector.png
IP 125.227.104.139:0
ASN #3462 Data Communication Business Group
File type PNG image data, 3581 x 3173, 8-bit/color RGBA, non-interlaced\012- data
Size 942 kB (941755 bytes)
Hash 5c93fa524ed978d2ccb233fe6905bece
2e95f7332459df60ea1bc492bbe4394c7593eb41
32dca08478ae5d26f988e9defc4b6b1f3416f73ac0515af072730df5c2c72ac6
GET /njf/public/images/index/Banner_Hospital_Vector.png HTTP/1.1
Host: njf.com.tw
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://njf.com.tw/njf/
Cookie: XSRF-TOKEN=eyJpdiI6IkNJXC9yeEFkZVNCRUJ0eTgwc2xESFNRPT0iLCJ2YWx1ZSI6Ik1yTEdmMGp4bDVHSnRuU1FhSXJqc1Qrc2JDVUljRzFQejJQdnR2Sit5cTEwdDN4N1dmVXRSMjFpakd5WnhTejciLCJtYWMiOiI1ZDM0MmE3NDgzYTZlMTM0MzE5MjY4ZWEzNmRiNzZjZmYxMjQ5NThmY2Y0ZmZlODU5NzQ1ZTA0ZWIzYTI1MzNiIn0%3D; laravel_session=eyJpdiI6ImZxS0xoa1dmVGRjQXZSYWtkbXo4dWc9PSIsInZhbHVlIjoiMkVLMVpqbWJ4dngwcGtGaStkQ3JyWkFZbzNYWEU0dWVJVkdFekNRZXoxXC9yS2pZcGJTTHdYQTlJekVtWVwveitLIiwibWFjIjoiZWY5MDI2NzgwZmEyNzY0NTA4OWU1ZTEyN2JmMDNhMjA1MjExZGVkNGYxMmI0YmM3MWRiZDA1YzcxZGQzZTI4YyJ9
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 10 Sep 2022 01:49:34 GMT
Content-Type: image/png
Content-Length: 941755
Last-Modified: Mon, 10 May 2021 00:55:00 GMT
Connection: keep-alive
ETag: "60988464-e5ebb"
Strict-Transport-Security: max-age=31536000
Accept-Ranges: bytes
njf.com.tw/njf/public/images/index/client-1.png
125.227.104.139200 OK 52 kB URL HTTP/1.1 njf.com.tw/njf/public/images/index/client-1.png
IP 125.227.104.139:0
ASN #3462 Data Communication Business Group
File type PNG image data, 519 x 151, 8-bit/color RGBA, non-interlaced\012- data
Hash 1a5625c0a17b4bb3b41c0be616693e26
bdda7785495c3b81cf4aa3b84a8ae453b2da8d50
1208ee0eb4f22a7b6024bde605512fa35e952c8fc77e6fb6c026ae993f5d3981
GET /njf/public/images/index/client-1.png HTTP/1.1
Host: njf.com.tw
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://njf.com.tw/njf/
Cookie: XSRF-TOKEN=eyJpdiI6IkNJXC9yeEFkZVNCRUJ0eTgwc2xESFNRPT0iLCJ2YWx1ZSI6Ik1yTEdmMGp4bDVHSnRuU1FhSXJqc1Qrc2JDVUljRzFQejJQdnR2Sit5cTEwdDN4N1dmVXRSMjFpakd5WnhTejciLCJtYWMiOiI1ZDM0MmE3NDgzYTZlMTM0MzE5MjY4ZWEzNmRiNzZjZmYxMjQ5NThmY2Y0ZmZlODU5NzQ1ZTA0ZWIzYTI1MzNiIn0%3D; laravel_session=eyJpdiI6ImZxS0xoa1dmVGRjQXZSYWtkbXo4dWc9PSIsInZhbHVlIjoiMkVLMVpqbWJ4dngwcGtGaStkQ3JyWkFZbzNYWEU0dWVJVkdFekNRZXoxXC9yS2pZcGJTTHdYQTlJekVtWVwveitLIiwibWFjIjoiZWY5MDI2NzgwZmEyNzY0NTA4OWU1ZTEyN2JmMDNhMjA1MjExZGVkNGYxMmI0YmM3MWRiZDA1YzcxZGQzZTI4YyJ9
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 10 Sep 2022 01:49:35 GMT
Content-Type: image/png
Content-Length: 52156
Last-Modified: Mon, 10 May 2021 00:55:00 GMT
Connection: keep-alive
ETag: "60988464-cbbc"
Strict-Transport-Security: max-age=31536000
Accept-Ranges: bytes
njf.com.tw/njf/public/images/index/client-2.png
125.227.104.139200 OK 40 kB URL HTTP/1.1 njf.com.tw/njf/public/images/index/client-2.png
IP 125.227.104.139:0
ASN #3462 Data Communication Business Group
File type PNG image data, 1008 x 261, 8-bit/color RGBA, non-interlaced\012- data
Hash 1c3bfd81975db17fe31df2d5d84fabbf
9fee77e76aee160d7be489fe5e3262fe4505e1da
2f65db9741286f4a2cdeca2671b6d418ca18fac4e98cdd760eac103b1ab2fa81
GET /njf/public/images/index/client-2.png HTTP/1.1
Host: njf.com.tw
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://njf.com.tw/njf/
Cookie: XSRF-TOKEN=eyJpdiI6IkNJXC9yeEFkZVNCRUJ0eTgwc2xESFNRPT0iLCJ2YWx1ZSI6Ik1yTEdmMGp4bDVHSnRuU1FhSXJqc1Qrc2JDVUljRzFQejJQdnR2Sit5cTEwdDN4N1dmVXRSMjFpakd5WnhTejciLCJtYWMiOiI1ZDM0MmE3NDgzYTZlMTM0MzE5MjY4ZWEzNmRiNzZjZmYxMjQ5NThmY2Y0ZmZlODU5NzQ1ZTA0ZWIzYTI1MzNiIn0%3D; laravel_session=eyJpdiI6ImZxS0xoa1dmVGRjQXZSYWtkbXo4dWc9PSIsInZhbHVlIjoiMkVLMVpqbWJ4dngwcGtGaStkQ3JyWkFZbzNYWEU0dWVJVkdFekNRZXoxXC9yS2pZcGJTTHdYQTlJekVtWVwveitLIiwibWFjIjoiZWY5MDI2NzgwZmEyNzY0NTA4OWU1ZTEyN2JmMDNhMjA1MjExZGVkNGYxMmI0YmM3MWRiZDA1YzcxZGQzZTI4YyJ9
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 10 Sep 2022 01:49:35 GMT
Content-Type: image/png
Content-Length: 39875
Last-Modified: Mon, 10 May 2021 00:55:00 GMT
Connection: keep-alive
ETag: "60988464-9bc3"
Strict-Transport-Security: max-age=31536000
Accept-Ranges: bytes
njf.com.tw/njf/public/images/index/oki-c711.png
125.227.104.139200 OK 523 kB URL HTTP/1.1 njf.com.tw/njf/public/images/index/oki-c711.png
IP 125.227.104.139:0
ASN #3462 Data Communication Business Group
File type PNG image data, 1000 x 1000, 8-bit/color RGBA, non-interlaced\012- data
Size 523 kB (522940 bytes)
Hash 634155f22ff6a1daefc4ff58484b7008
f700797abd19ad3f04fd44d644166e600e109adf
a8f837d5a9cd64061316c88197e9e9ce09070f44435c1b2889c62019c58351ef
GET /njf/public/images/index/oki-c711.png HTTP/1.1
Host: njf.com.tw
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://njf.com.tw/njf/
Cookie: XSRF-TOKEN=eyJpdiI6IkNJXC9yeEFkZVNCRUJ0eTgwc2xESFNRPT0iLCJ2YWx1ZSI6Ik1yTEdmMGp4bDVHSnRuU1FhSXJqc1Qrc2JDVUljRzFQejJQdnR2Sit5cTEwdDN4N1dmVXRSMjFpakd5WnhTejciLCJtYWMiOiI1ZDM0MmE3NDgzYTZlMTM0MzE5MjY4ZWEzNmRiNzZjZmYxMjQ5NThmY2Y0ZmZlODU5NzQ1ZTA0ZWIzYTI1MzNiIn0%3D; laravel_session=eyJpdiI6ImZxS0xoa1dmVGRjQXZSYWtkbXo4dWc9PSIsInZhbHVlIjoiMkVLMVpqbWJ4dngwcGtGaStkQ3JyWkFZbzNYWEU0dWVJVkdFekNRZXoxXC9yS2pZcGJTTHdYQTlJekVtWVwveitLIiwibWFjIjoiZWY5MDI2NzgwZmEyNzY0NTA4OWU1ZTEyN2JmMDNhMjA1MjExZGVkNGYxMmI0YmM3MWRiZDA1YzcxZGQzZTI4YyJ9
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 10 Sep 2022 01:49:34 GMT
Content-Type: image/png
Content-Length: 522940
Last-Modified: Mon, 10 May 2021 00:55:00 GMT
Connection: keep-alive
ETag: "60988464-7fabc"
Strict-Transport-Security: max-age=31536000
Accept-Ranges: bytes
njf.com.tw/njf/public/images/index/client-3.png
125.227.104.139200 OK 11 kB URL HTTP/1.1 njf.com.tw/njf/public/images/index/client-3.png
IP 125.227.104.139:0
ASN #3462 Data Communication Business Group
File type PNG image data, 296 x 55, 8-bit/color RGBA, non-interlaced\012- data
Hash dc900016aaac1f076caca7085fde90bb
f9bf18f93c3c325081055590bb455a101220ae88
c04b5c899e1c4aaa3ad517544a4171fe1aa8215f8c735048a7c3dcd4594a4e07
GET /njf/public/images/index/client-3.png HTTP/1.1
Host: njf.com.tw
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://njf.com.tw/njf/
Cookie: XSRF-TOKEN=eyJpdiI6IkNJXC9yeEFkZVNCRUJ0eTgwc2xESFNRPT0iLCJ2YWx1ZSI6Ik1yTEdmMGp4bDVHSnRuU1FhSXJqc1Qrc2JDVUljRzFQejJQdnR2Sit5cTEwdDN4N1dmVXRSMjFpakd5WnhTejciLCJtYWMiOiI1ZDM0MmE3NDgzYTZlMTM0MzE5MjY4ZWEzNmRiNzZjZmYxMjQ5NThmY2Y0ZmZlODU5NzQ1ZTA0ZWIzYTI1MzNiIn0%3D; laravel_session=eyJpdiI6ImZxS0xoa1dmVGRjQXZSYWtkbXo4dWc9PSIsInZhbHVlIjoiMkVLMVpqbWJ4dngwcGtGaStkQ3JyWkFZbzNYWEU0dWVJVkdFekNRZXoxXC9yS2pZcGJTTHdYQTlJekVtWVwveitLIiwibWFjIjoiZWY5MDI2NzgwZmEyNzY0NTA4OWU1ZTEyN2JmMDNhMjA1MjExZGVkNGYxMmI0YmM3MWRiZDA1YzcxZGQzZTI4YyJ9
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 10 Sep 2022 01:49:35 GMT
Content-Type: image/png
Content-Length: 11144
Last-Modified: Mon, 10 May 2021 00:55:00 GMT
Connection: keep-alive
ETag: "60988464-2b88"
Strict-Transport-Security: max-age=31536000
Accept-Ranges: bytes
njf.com.tw/njf/public/images/index/client-4.png
125.227.104.139200 OK 90 kB URL HTTP/1.1 njf.com.tw/njf/public/images/index/client-4.png
IP 125.227.104.139:0
ASN #3462 Data Communication Business Group
File type PNG image data, 513 x 98, 8-bit/color RGBA, non-interlaced\012- data
Hash 677a2c8d4659b4e010eced025e19070d
3a18595d3d86821962bca1df337aaeb07b0d0346
935c59e89caf307762259d775e83f2da2c1290439ef482100f6eed9308100cac
GET /njf/public/images/index/client-4.png HTTP/1.1
Host: njf.com.tw
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://njf.com.tw/njf/
Cookie: XSRF-TOKEN=eyJpdiI6IkNJXC9yeEFkZVNCRUJ0eTgwc2xESFNRPT0iLCJ2YWx1ZSI6Ik1yTEdmMGp4bDVHSnRuU1FhSXJqc1Qrc2JDVUljRzFQejJQdnR2Sit5cTEwdDN4N1dmVXRSMjFpakd5WnhTejciLCJtYWMiOiI1ZDM0MmE3NDgzYTZlMTM0MzE5MjY4ZWEzNmRiNzZjZmYxMjQ5NThmY2Y0ZmZlODU5NzQ1ZTA0ZWIzYTI1MzNiIn0%3D; laravel_session=eyJpdiI6ImZxS0xoa1dmVGRjQXZSYWtkbXo4dWc9PSIsInZhbHVlIjoiMkVLMVpqbWJ4dngwcGtGaStkQ3JyWkFZbzNYWEU0dWVJVkdFekNRZXoxXC9yS2pZcGJTTHdYQTlJekVtWVwveitLIiwibWFjIjoiZWY5MDI2NzgwZmEyNzY0NTA4OWU1ZTEyN2JmMDNhMjA1MjExZGVkNGYxMmI0YmM3MWRiZDA1YzcxZGQzZTI4YyJ9
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 10 Sep 2022 01:49:35 GMT
Content-Type: image/png
Content-Length: 90432
Last-Modified: Mon, 10 May 2021 00:55:00 GMT
Connection: keep-alive
ETag: "60988464-16140"
Strict-Transport-Security: max-age=31536000
Accept-Ranges: bytes
njf.com.tw/njf/public/images/index/client-5.png
125.227.104.139200 OK 267 kB URL HTTP/1.1 njf.com.tw/njf/public/images/index/client-5.png
IP 125.227.104.139:0
ASN #3462 Data Communication Business Group
File type PNG image data, 1013 x 304, 8-bit/color RGB, non-interlaced\012- data
Size 267 kB (267266 bytes)
Hash 496a4f01df0e1a017d0c157817a1aa78
e5dac44b451f3424ea00481dd75c380e870a24fb
ffb7ae0265a003deb3323ac4eb42ca71ae628ded53cdbe3969913e830c4ab2d8
GET /njf/public/images/index/client-5.png HTTP/1.1
Host: njf.com.tw
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://njf.com.tw/njf/
Cookie: XSRF-TOKEN=eyJpdiI6IkNJXC9yeEFkZVNCRUJ0eTgwc2xESFNRPT0iLCJ2YWx1ZSI6Ik1yTEdmMGp4bDVHSnRuU1FhSXJqc1Qrc2JDVUljRzFQejJQdnR2Sit5cTEwdDN4N1dmVXRSMjFpakd5WnhTejciLCJtYWMiOiI1ZDM0MmE3NDgzYTZlMTM0MzE5MjY4ZWEzNmRiNzZjZmYxMjQ5NThmY2Y0ZmZlODU5NzQ1ZTA0ZWIzYTI1MzNiIn0%3D; laravel_session=eyJpdiI6ImZxS0xoa1dmVGRjQXZSYWtkbXo4dWc9PSIsInZhbHVlIjoiMkVLMVpqbWJ4dngwcGtGaStkQ3JyWkFZbzNYWEU0dWVJVkdFekNRZXoxXC9yS2pZcGJTTHdYQTlJekVtWVwveitLIiwibWFjIjoiZWY5MDI2NzgwZmEyNzY0NTA4OWU1ZTEyN2JmMDNhMjA1MjExZGVkNGYxMmI0YmM3MWRiZDA1YzcxZGQzZTI4YyJ9
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 10 Sep 2022 01:49:35 GMT
Content-Type: image/png
Content-Length: 267266
Last-Modified: Mon, 10 May 2021 00:55:00 GMT
Connection: keep-alive
ETag: "60988464-41402"
Strict-Transport-Security: max-age=31536000
Accept-Ranges: bytes
njf.com.tw/njf/public/images/index/medicine-screen.jpg
125.227.104.139200 OK 447 kB URL HTTP/1.1 njf.com.tw/njf/public/images/index/medicine-screen.jpg
IP 125.227.104.139:0
ASN #3462 Data Communication Business Group
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=12, height=2251, bps=0, PhotometricIntepretation=RGB, orientation=upper-left, width=4001], baseline, precision 8, 4001x2251, components 3\012- data
Size 447 kB (446992 bytes)
Hash f7aa4460b02a749644862aebd6f8f855
67e80701c695cb05e5150d7c6fed8456cc5c02de
005dcc62b3ef4db18e64a1994e73667996b6b7e3c9b87cf7aca5aeee313edc04
GET /njf/public/images/index/medicine-screen.jpg HTTP/1.1
Host: njf.com.tw
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://njf.com.tw/njf/
Cookie: XSRF-TOKEN=eyJpdiI6IkNJXC9yeEFkZVNCRUJ0eTgwc2xESFNRPT0iLCJ2YWx1ZSI6Ik1yTEdmMGp4bDVHSnRuU1FhSXJqc1Qrc2JDVUljRzFQejJQdnR2Sit5cTEwdDN4N1dmVXRSMjFpakd5WnhTejciLCJtYWMiOiI1ZDM0MmE3NDgzYTZlMTM0MzE5MjY4ZWEzNmRiNzZjZmYxMjQ5NThmY2Y0ZmZlODU5NzQ1ZTA0ZWIzYTI1MzNiIn0%3D; laravel_session=eyJpdiI6ImZxS0xoa1dmVGRjQXZSYWtkbXo4dWc9PSIsInZhbHVlIjoiMkVLMVpqbWJ4dngwcGtGaStkQ3JyWkFZbzNYWEU0dWVJVkdFekNRZXoxXC9yS2pZcGJTTHdYQTlJekVtWVwveitLIiwibWFjIjoiZWY5MDI2NzgwZmEyNzY0NTA4OWU1ZTEyN2JmMDNhMjA1MjExZGVkNGYxMmI0YmM3MWRiZDA1YzcxZGQzZTI4YyJ9
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 10 Sep 2022 01:49:35 GMT
Content-Type: image/jpeg
Content-Length: 446992
Last-Modified: Mon, 10 May 2021 00:55:00 GMT
Connection: keep-alive
ETag: "60988464-6d210"
Strict-Transport-Security: max-age=31536000
Accept-Ranges: bytes
njf.com.tw/njf/public/images/index/client-6.png
125.227.104.139200 OK 92 kB URL HTTP/1.1 njf.com.tw/njf/public/images/index/client-6.png
IP 125.227.104.139:0
ASN #3462 Data Communication Business Group
File type PNG image data, 895 x 236, 8-bit/color RGBA, non-interlaced\012- data
Hash 45ea1502c2d6c89a4f2e3388a7249f61
5da2f63de7d4e9ea84267e83efb6b8837e7cc388
f040180de1b11bf1c25e0b5329d15d717800892bd908deb8c762d0bff523b9a5
GET /njf/public/images/index/client-6.png HTTP/1.1
Host: njf.com.tw
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://njf.com.tw/njf/
Cookie: XSRF-TOKEN=eyJpdiI6IkNJXC9yeEFkZVNCRUJ0eTgwc2xESFNRPT0iLCJ2YWx1ZSI6Ik1yTEdmMGp4bDVHSnRuU1FhSXJqc1Qrc2JDVUljRzFQejJQdnR2Sit5cTEwdDN4N1dmVXRSMjFpakd5WnhTejciLCJtYWMiOiI1ZDM0MmE3NDgzYTZlMTM0MzE5MjY4ZWEzNmRiNzZjZmYxMjQ5NThmY2Y0ZmZlODU5NzQ1ZTA0ZWIzYTI1MzNiIn0%3D; laravel_session=eyJpdiI6ImZxS0xoa1dmVGRjQXZSYWtkbXo4dWc9PSIsInZhbHVlIjoiMkVLMVpqbWJ4dngwcGtGaStkQ3JyWkFZbzNYWEU0dWVJVkdFekNRZXoxXC9yS2pZcGJTTHdYQTlJekVtWVwveitLIiwibWFjIjoiZWY5MDI2NzgwZmEyNzY0NTA4OWU1ZTEyN2JmMDNhMjA1MjExZGVkNGYxMmI0YmM3MWRiZDA1YzcxZGQzZTI4YyJ9
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 10 Sep 2022 01:49:35 GMT
Content-Type: image/png
Content-Length: 92355
Last-Modified: Mon, 10 May 2021 00:55:00 GMT
Connection: keep-alive
ETag: "60988464-168c3"
Strict-Transport-Security: max-age=31536000
Accept-Ranges: bytes
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash ebc205cf750164c31d1fce2318d1636b
9309949107d69193b1c5156d45fbcc91e20a0fe4
4ab7f53d17c5d642e17a3e78aa93dc133c4713e44ccccb849f04fdcca62be8b6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 10 Sep 2022 01:49:36 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash a4ae55dbf8e22a357ee36e37fafa37af
18d33f606a8bc692802cfaa3a22ceb4a5eedca8c
8343a46c0a87b15be71cab0ae84912ed07d3104d4b621c55e3cd69367f58ebb6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 10 Sep 2022 01:49:36 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google-analytics.com/analytics.js
142.250.74.174200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP 142.250.74.174:0
File type ASCII text, with very long lines (1325)
Hash 56f5d7f608e25d64207135f045f988cb
901eb59372ae330ae85e1384da93479b21ae1082
1910daea79e5a9d04829a91e432dfa56f45a80a3e14a8cf667fec73af9fd3d29
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://njf.com.tw/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20006
date: Sat, 10 Sep 2022 00:41:12 GMT
expires: Sat, 10 Sep 2022 02:41:12 GMT
cache-control: public, max-age=7200
age: 4104
last-modified: Wed, 13 Apr 2022 21:02:38 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.gstatic.com/recaptcha/releases/duyHVVR9Brf6N2GewjkPRfsA/recaptcha__en.js
142.250.74.163200 OK 158 kB URL HTTP/2 www.gstatic.com/recaptcha/releases/duyHVVR9Brf6N2GewjkPRfsA/recaptcha__en.js
IP 142.250.74.163:0
File type HTML document, ASCII text, with very long lines (579)
Size 158 kB (158056 bytes)
Hash d63a69f898e1d00cfc7c871744ded8c4
e166540eccb571c95c8c1135c2168cf5df306991
ed7892ca1498d6dfc0ff8b354ab8c409eed81b1fa77b427467815d0c7f45021c
GET /recaptcha/releases/duyHVVR9Brf6N2GewjkPRfsA/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://njf.com.tw
Connection: keep-alive
Referer: https://njf.com.tw/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 158056
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 09 Sep 2022 21:31:14 GMT
expires: Sat, 09 Sep 2023 21:31:14 GMT
cache-control: public, max-age=31536000
age: 15502
last-modified: Fri, 02 Sep 2022 18:40:58 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash a4ae55dbf8e22a357ee36e37fafa37af
18d33f606a8bc692802cfaa3a22ceb4a5eedca8c
8343a46c0a87b15be71cab0ae84912ed07d3104d4b621c55e3cd69367f58ebb6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 10 Sep 2022 01:49:36 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash ebc205cf750164c31d1fce2318d1636b
9309949107d69193b1c5156d45fbcc91e20a0fe4
4ab7f53d17c5d642e17a3e78aa93dc133c4713e44ccccb849f04fdcca62be8b6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 10 Sep 2022 01:49:36 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google-analytics.com/j/collect?v=1&_v=j96&a=2025889283&t=pageview&_s=1&dl=https%3A%2F%2Fnjf.com.tw%2Fnjf%2F&ul=en-us&de=UTF-8&dt=%E6%96%B0%E9%89%85%E5%B3%B0%E5%9C%8B%E9%9A%9B%E7%A7%91%E6%8A%80%E6%9C%89%E9%99%90%E5%85%AC%E5%8F%B8&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=IEBAAEABAAAAAC~&jid=597755851&gjid=560991432&cid=1235824196.1662774567&tid=UA-76241117-1&_gid=432783219.1662774567&_r=1&_slc=1&z=1179383434
142.250.74.174200 OK 4 B URL HTTP/2 www.google-analytics.com/j/collect?v=1&_v=j96&a=2025889283&t=pageview&_s=1&dl=https%3A%2F%2Fnjf.com.tw%2Fnjf%2F&ul=en-us&de=UTF-8&dt=%E6%96%B0%E9%89%85%E5%B3%B0%E5%9C%8B%E9%9A%9B%E7%A7%91%E6%8A%80%E6%9C%89%E9%99%90%E5%85%AC%E5%8F%B8&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=IEBAAEABAAAAAC~&jid=597755851&gjid=560991432&cid=1235824196.1662774567&tid=UA-76241117-1&_gid=432783219.1662774567&_r=1&_slc=1&z=1179383434
IP 142.250.74.174:0
File type ASCII text, with no line terminators
Hash 9e92e190700c1af4539b40c2171320a9
209bcdb79e6067b51091ce8586d4b977f25b67d8
aec60bc104db041b1512185839f18f52986df7e569e5445f740dd60f763fbca8
POST /j/collect?v=1&_v=j96&a=2025889283&t=pageview&_s=1&dl=https%3A%2F%2Fnjf.com.tw%2Fnjf%2F&ul=en-us&de=UTF-8&dt=%E6%96%B0%E9%89%85%E5%B3%B0%E5%9C%8B%E9%9A%9B%E7%A7%91%E6%8A%80%E6%9C%89%E9%99%90%E5%85%AC%E5%8F%B8&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=IEBAAEABAAAAAC~&jid=597755851&gjid=560991432&cid=1235824196.1662774567&tid=UA-76241117-1&_gid=432783219.1662774567&_r=1&_slc=1&z=1179383434 HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://njf.com.tw
Connection: keep-alive
Referer: https://njf.com.tw/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: https://njf.com.tw
date: Sat, 10 Sep 2022 01:49:36 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 4
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 97e5566c275b9fe27464690811145846
fa8973c8004db59d9a8fd46e9743fb6c9a8d3efd
e77cd1a4510c736e628aa10719f7694d7c7fef15adf1a449d800f90cde76fb88
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 10 Sep 2022 01:49:36 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j96&tid=UA-76241117-1&cid=1235824196.1662774567&jid=597755851&gjid=560991432&_gid=432783219.1662774567&_u=IEBAAEAAAAAAAC~&z=1430457243
142.251.1.155200 OK 1 B URL HTTP/2 stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j96&tid=UA-76241117-1&cid=1235824196.1662774567&jid=597755851&gjid=560991432&_gid=432783219.1662774567&_u=IEBAAEAAAAAAAC~&z=1430457243
IP 142.251.1.155:0
File type very short file (no magic)
Hash c4ca4238a0b923820dcc509a6f75849b
356a192b7913b04c54574d18c28d46e6395428ab
6b86b273ff34fce19d6b804eff5a3f5747ada4eaa22f1d49c01e52ddb7875b4b
POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j96&tid=UA-76241117-1&cid=1235824196.1662774567&jid=597755851&gjid=560991432&_gid=432783219.1662774567&_u=IEBAAEAAAAAAAC~&z=1430457243 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://njf.com.tw
Connection: keep-alive
Referer: https://njf.com.tw/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://njf.com.tw
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Sat, 10 Sep 2022 01:49:36 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 1
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
njf.com.tw/njf/public/images/NJF.ico
125.227.104.139200 OK 4.3 kB URL HTTP/1.1 njf.com.tw/njf/public/images/NJF.ico
IP 125.227.104.139:0
ASN #3462 Data Communication Business Group
File type MS Windows icon resource - 1 icon, 32x32, 32 bits/pixel\012- data
Hash ca21cc61f377a14af4e8bea23af40838
32ad918c4fac30de36bf87300aa55f01f4e2b4bd
887f9f11109b1c8481bfbcd54f2bf3126f169a313597c8b00623e2fef6839ff5
Analyzer Verdict Alert fortinet Phishing
GET /njf/public/images/NJF.ico HTTP/1.1
Host: njf.com.tw
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://njf.com.tw/njf/
Cookie: XSRF-TOKEN=eyJpdiI6IkJNSlZDQzBWN1I1Tm1EMU92NkxORkE9PSIsInZhbHVlIjoicFkxbVRsdHpOZXl4QWhXd2lhZldUQ2NpMVJnRHViNENTWWFqZDAra1BkZEwzemtcLzZYOGQ5VUxDTG9aQTdQV04iLCJtYWMiOiJlOTEyYTM4YzljNDIzNzJjZTY4ZTNjN2ViNmQ5YzA1MTVkOTc1Yzc0YjM3Mjg1OTA4N2I1MDA1MTk5MGFiNWUwIn0%3D; laravel_session=eyJpdiI6IjVaV3dGekI4YTJMR0drcFErZFRDOGc9PSIsInZhbHVlIjoiNVE3REcwXC9aZkVlTGdYY283OGlrRmx2THZGakZFcmhWNUJBWTBtNmcwSmhrSFdYZzBwUHdPWmVCTnJObmI4cXYiLCJtYWMiOiJiN2UzZDc0NTQ5NjQwMDc2YTRjZGI0MTFjNTE5OGFmMjgwYTMzMmZkM2IxN2Q5ZDdlMTIxNmVhN2RkM2Y2MjlkIn0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 10 Sep 2022 01:49:36 GMT
Content-Type: image/x-icon
Content-Length: 4286
Last-Modified: Mon, 10 May 2021 00:55:04 GMT
Connection: keep-alive
ETag: "60988468-10be"
Strict-Transport-Security: max-age=31536000
Accept-Ranges: bytes
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 97e5566c275b9fe27464690811145846
fa8973c8004db59d9a8fd46e9743fb6c9a8d3efd
e77cd1a4510c736e628aa10719f7694d7c7fef15adf1a449d800f90cde76fb88
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 10 Sep 2022 01:49:36 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
njf.com.tw/njf/public/images/logo.png
125.227.104.139200 OK 981 kB URL HTTP/1.1 njf.com.tw/njf/public/images/logo.png
IP 125.227.104.139:0
ASN #3462 Data Communication Business Group
File type PNG image data, 3938 x 504, 8-bit/color RGBA, non-interlaced\012- data
Size 981 kB (981183 bytes)
Hash 9602d111236db23e908c6e63c19cb08b
763bd46cfc00cb860954c8279edb4db1fee3930c
31a070b26464f8d29ad448d85efa61118774482bb010da432217463d49b851d5
GET /njf/public/images/logo.png HTTP/1.1
Host: njf.com.tw
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://njf.com.tw/njf/
Cookie: XSRF-TOKEN=eyJpdiI6IkNJXC9yeEFkZVNCRUJ0eTgwc2xESFNRPT0iLCJ2YWx1ZSI6Ik1yTEdmMGp4bDVHSnRuU1FhSXJqc1Qrc2JDVUljRzFQejJQdnR2Sit5cTEwdDN4N1dmVXRSMjFpakd5WnhTejciLCJtYWMiOiI1ZDM0MmE3NDgzYTZlMTM0MzE5MjY4ZWEzNmRiNzZjZmYxMjQ5NThmY2Y0ZmZlODU5NzQ1ZTA0ZWIzYTI1MzNiIn0%3D; laravel_session=eyJpdiI6ImZxS0xoa1dmVGRjQXZSYWtkbXo4dWc9PSIsInZhbHVlIjoiMkVLMVpqbWJ4dngwcGtGaStkQ3JyWkFZbzNYWEU0dWVJVkdFekNRZXoxXC9yS2pZcGJTTHdYQTlJekVtWVwveitLIiwibWFjIjoiZWY5MDI2NzgwZmEyNzY0NTA4OWU1ZTEyN2JmMDNhMjA1MjExZGVkNGYxMmI0YmM3MWRiZDA1YzcxZGQzZTI4YyJ9
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 10 Sep 2022 01:49:34 GMT
Content-Type: image/png
Content-Length: 981183
Last-Modified: Mon, 10 May 2021 00:55:00 GMT
Connection: keep-alive
ETag: "60988464-ef8bf"
Strict-Transport-Security: max-age=31536000
Accept-Ranges: bytes
njf.com.tw/njf/public/images/index/abt-us.jpg
125.227.104.139200 OK 1.1 MB URL HTTP/1.1 njf.com.tw/njf/public/images/index/abt-us.jpg
IP 125.227.104.139:0
ASN #3462 Data Communication Business Group
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 144x144, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=5, orientation=upper-left, xresolution=74, yresolution=82, resolutionunit=2], baseline, precision 8, 2880x1447, components 3\012- data
Size 1.1 MB (1102408 bytes)
Hash 7d3e083c6da941ffd6241dc8c09ac54b
0d4c98d6765209e047b5fac6866dc23815cd0cd0
873bd767ec2bd96abea71246c6305ffa81000ac801c4a61639df110f8ce179e0
GET /njf/public/images/index/abt-us.jpg HTTP/1.1
Host: njf.com.tw
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://njf.com.tw/njf/
Cookie: XSRF-TOKEN=eyJpdiI6IkNJXC9yeEFkZVNCRUJ0eTgwc2xESFNRPT0iLCJ2YWx1ZSI6Ik1yTEdmMGp4bDVHSnRuU1FhSXJqc1Qrc2JDVUljRzFQejJQdnR2Sit5cTEwdDN4N1dmVXRSMjFpakd5WnhTejciLCJtYWMiOiI1ZDM0MmE3NDgzYTZlMTM0MzE5MjY4ZWEzNmRiNzZjZmYxMjQ5NThmY2Y0ZmZlODU5NzQ1ZTA0ZWIzYTI1MzNiIn0%3D; laravel_session=eyJpdiI6ImZxS0xoa1dmVGRjQXZSYWtkbXo4dWc9PSIsInZhbHVlIjoiMkVLMVpqbWJ4dngwcGtGaStkQ3JyWkFZbzNYWEU0dWVJVkdFekNRZXoxXC9yS2pZcGJTTHdYQTlJekVtWVwveitLIiwibWFjIjoiZWY5MDI2NzgwZmEyNzY0NTA4OWU1ZTEyN2JmMDNhMjA1MjExZGVkNGYxMmI0YmM3MWRiZDA1YzcxZGQzZTI4YyJ9
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 10 Sep 2022 01:49:35 GMT
Content-Type: image/jpeg
Content-Length: 1102408
Last-Modified: Mon, 10 May 2021 00:54:59 GMT
Connection: keep-alive
ETag: "60988463-10d248"
Strict-Transport-Security: max-age=31536000
Accept-Ranges: bytes
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0bedecf7-d9af-4aa7-88b0-94b2a33f9e1a.jpeg
34.120.237.76200 OK 9.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0bedecf7-d9af-4aa7-88b0-94b2a33f9e1a.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 7ade70e6dbcfb3ca1765f95112671e69
3768753be084c0e0fc268be5b192d02d769114b6
9670a3bf2476ba193cfeb3153c1254bdcfc980a28503dda0d9b398a3a59f53f4
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0bedecf7-d9af-4aa7-88b0-94b2a33f9e1a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 9766
x-amzn-requestid: 720a4111-91de-4672-88c8-f40db517c07d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YHsjRE13oAMFbCA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63195ae1-288f1f5456bf4d146dcf774c;Sampled=0
x-amzn-remapped-date: Thu, 08 Sep 2022 03:00:49 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: HwwG0Hjf8uZn1AtbLU_wKs3w9lict3tRP31XQY6tIxDz9KDNaBMAqw==
via: 1.1 000f4a2f631bace380a0afa747a82482.cloudfront.net (CloudFront), 1.1 4f3feb5c4393987d42d1971d404d7cea.cloudfront.net (CloudFront), 1.1 google
date: Fri, 09 Sep 2022 05:24:38 GMT
age: 73500
etag: "3768753be084c0e0fc268be5b192d02d769114b6"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
njf.com.tw/njf/public/wow/animate.css
125.227.104.139200 OK 0 B URL HTTP/1.1 njf.com.tw/njf/public/wow/animate.css
IP 125.227.104.139:0
ASN #3462 Data Communication Business Group
GET /njf/public/wow/animate.css HTTP/1.1
Host: njf.com.tw
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://njf.com.tw/njf/
Cookie: XSRF-TOKEN=eyJpdiI6IkNJXC9yeEFkZVNCRUJ0eTgwc2xESFNRPT0iLCJ2YWx1ZSI6Ik1yTEdmMGp4bDVHSnRuU1FhSXJqc1Qrc2JDVUljRzFQejJQdnR2Sit5cTEwdDN4N1dmVXRSMjFpakd5WnhTejciLCJtYWMiOiI1ZDM0MmE3NDgzYTZlMTM0MzE5MjY4ZWEzNmRiNzZjZmYxMjQ5NThmY2Y0ZmZlODU5NzQ1ZTA0ZWIzYTI1MzNiIn0%3D; laravel_session=eyJpdiI6ImZxS0xoa1dmVGRjQXZSYWtkbXo4dWc9PSIsInZhbHVlIjoiMkVLMVpqbWJ4dngwcGtGaStkQ3JyWkFZbzNYWEU0dWVJVkdFekNRZXoxXC9yS2pZcGJTTHdYQTlJekVtWVwveitLIiwibWFjIjoiZWY5MDI2NzgwZmEyNzY0NTA4OWU1ZTEyN2JmMDNhMjA1MjExZGVkNGYxMmI0YmM3MWRiZDA1YzcxZGQzZTI4YyJ9
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 10 Sep 2022 01:49:33 GMT
Content-Type: text/css
Content-Length: 57095
Last-Modified: Mon, 10 May 2021 00:55:06 GMT
Connection: keep-alive
ETag: "6098846a-df07"
Strict-Transport-Security: max-age=31536000
Accept-Ranges: bytes
qr-official.line.me/L/3CWmSG9bO0.png
147.92.146.123200 OK 0 B URL HTTP/2 qr-official.line.me/L/3CWmSG9bO0.png
IP 147.92.146.123:0
ASN #38631 LINE Corporation
GET /L/3CWmSG9bO0.png HTTP/1.1
Host: qr-official.line.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://njf.com.tw/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 10 Sep 2022 01:49:32 GMT
expires: Sun, 11 Sep 2022 01:49:32 GMT
cache-control: max-age=86400
X-Firefox-Spdy: h2
fonts.googleapis.com/earlyaccess/notosanstc.css
142.250.74.10200 OK 0 B URL HTTP/2 fonts.googleapis.com/earlyaccess/notosanstc.css
IP 142.250.74.10:0
GET /earlyaccess/notosanstc.css HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://njf.com.tw/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sat, 10 Sep 2022 01:49:31 GMT
date: Sat, 10 Sep 2022 01:49:31 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2