Overview

URL d16imr0101.aboutnic.com.tw/
IP211.72.232.62
ASNAS3462 Data Communication Business Group
Location Taiwan
Report completed2017-07-17 13:24:49 CEST
StatusLoading report..
urlQuery Alerts No alerts detected


Settings

UserAgentMozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Referer
Pool
Access Level


Intrusion Detection Systems

Suricata /w Emerging Threats Pro  No alerts detected


Blacklists

MDL  No alerts detected
OpenPhish  No alerts detected
PhishTank  No alerts detected
Fortinet's Web Filter
Added / Verified Severity Host Comment
2017-07-17 2 d16imr0101.aboutnic.com.tw/jquery/jquery-migrate-1.2.1.min.js Malware
2017-07-17 2 d16imr0101.aboutnic.com.tw/js/cookie.js Malware
2017-07-17 2 d16imr0101.aboutnic.com.tw/ Malware
2017-07-17 2 d16imr0101.aboutnic.com.tw/js/search.js Malware
2017-07-17 2 d16imr0101.aboutnic.com.tw/js/dropdownmenu.js Malware
2017-07-17 2 d16imr0101.aboutnic.com.tw/js/AC_RunActiveContent.js Malware
2017-07-17 2 d16imr0101.aboutnic.com.tw/js/swfobject.js Malware
2017-07-17 2 d16imr0101.aboutnic.com.tw/jquery/jquerylazy/jquery.lazy.min.js Malware
2017-07-17 2 d16imr0101.aboutnic.com.tw/jquery/jquery.tools-1.2.6.min.js Malware
2017-07-17 2 d16imr0101.aboutnic.com.tw/jquery/jquery-1.11.3.min.js Malware
2017-07-17 2 d16imr0101.aboutnic.com.tw/engine1/script.js Malware
2017-07-17 2 d16imr0101.aboutnic.com.tw/engine1/wowslider.js Malware
2017-07-17 2 d16imr0101.aboutnic.com.tw/jquery/jquery-ui-1.11.4.min.js Malware
2017-07-17 2 d16imr0101.aboutnic.com.tw/font-awesome/fonts/fontawesome-webfont.woff?v=4.6.3 Malware
DNS-BH  No alerts detected
mnemonic secure dns  No alerts detected


Recent reports on same IP/ASN/Domain

Last 10 reports on IP: 211.72.232.62

Date UQ / IDS / BL URL IP
2017-07-20 10:23:59 +0200
0 - 0 - 11 d15imr1201.aboutnic.com.tw/ 211.72.232.62
2017-07-20 02:03:19 +0200
0 - 0 - 5 t1402002.aboutnic.com.tw/ 211.72.232.62
2017-07-19 16:26:00 +0200
0 - 0 - 10 d16imr0301.aboutnic.com.tw/ 211.72.232.62
2017-07-19 10:23:08 +0200
0 - 0 - 4 basic10.aboutnic.com.tw/ 211.72.232.62
2017-07-19 08:02:35 +0200
0 - 0 - 5 t1402003.aboutnic.com.tw/ 211.72.232.62
2017-07-19 08:01:55 +0200
0 - 0 - 5 t1402001.aboutnic.com.tw/ 211.72.232.62
2017-07-19 07:24:12 +0200
0 - 0 - 11 d15imr1201.aboutnic.com.tw/ 211.72.232.62
2017-07-19 07:23:35 +0200
0 - 0 - 3 basicall.aboutnic.com.tw/ 211.72.232.62
2017-07-19 05:01:46 +0200
0 - 0 - 5 t1402001.aboutnic.com.tw/ 211.72.232.62
2017-07-18 13:23:42 +0200
0 - 0 - 3 basicall.aboutnic.com.tw/ 211.72.232.62

Last 10 reports on ASN: AS3462 Data Communication Business Group

Date UQ / IDS / BL URL IP
2017-07-20 20:42:29 +0200
0 - 3 - 0 www.sag.com.tw/ 61.218.179.175
2017-07-20 20:26:50 +0200
0 - 2 - 0 isdesign.wartw.top/ 59.127.187.39
2017-07-20 19:34:54 +0200
0 - 0 - 9 ostergift.com/ 61.221.12.26
2017-07-20 18:27:56 +0200
0 - 2 - 0 dreamcan.wartw.top/ 59.127.187.39
2017-07-20 18:21:39 +0200
0 - 0 - 1 accounts.craigslist.org-securelogin---------- (...) 220.128.203.9
2017-07-20 17:55:48 +0200
0 - 0 - 1 www.nexia.com.tw/js/login-paypal.co.uk/index02.htm 60.250.67.56
2017-07-20 17:55:27 +0200
0 - 0 - 1 https://tenten.co/blog/files/invoices.php 118.163.2.154
2017-07-20 17:00:20 +0200
0 - 1 - 0 www.eesmc.com.tw/ 59.124.0.180
2017-07-20 15:17:51 +0200
0 - 0 - 1 accounts.craigslist.org-securelogin---------- (...) 220.128.203.9
2017-07-20 14:55:42 +0200
0 - 3 - 0 www.jennwei.com/ch/Turning_Machine8.html 61.218.179.161

No other reports on domain: .



JavaScript

Executed Scripts (16)


Executed Evals (0)


Executed Writes (0)



HTTP Transactions (32)


Request Response
                                        
                                            GET /css/animation.css HTTP/1.1 
Host: d16imr0101.aboutnic.com.tw
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://d16imr0101.aboutnic.com.tw/
Cookie: FreightDef=0; FreeShippingDef=0; FreeShipping=0; ShopCount=0; RealTotalCost=0; MAXS=; Payment=; COSTS=; TOTALS=; COUNTS=; TotalCost=0; PRODNOS=; TITLES=; PaymentType=; IDS=; ASPSESSIONIDQQSBBQRB=PMIFCPECLNGGJEJBLKCOOILC

                                         
                                         211.72.232.62
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Last-Modified: Thu, 22 Jun 2017 15:51:45 GMT
Accept-Ranges: bytes
Etag: "44371736febd21:0"
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET
X-Powered-By-Plesk: PleskWin
Date: Mon, 17 Jul 2017 11:24:08 GMT
Content-Length: 1857


--- Additional Info ---
Magic:  ASCII C program text
Size:   1857
Md5:    5efb6f925470166045ba28c25131f79a
Sha1:   181bbc89ec978981bf0ef8c7239710ae5b3ad6a1
Sha256: c5221cfe37e6f0b011346164e7b3378c106807dc0d42fc0887440ab36c09e205
                                        
                                            GET /css/common.css HTTP/1.1 
Host: d16imr0101.aboutnic.com.tw
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://d16imr0101.aboutnic.com.tw/
Cookie: FreightDef=0; FreeShippingDef=0; FreeShipping=0; ShopCount=0; RealTotalCost=0; MAXS=; Payment=; COSTS=; TOTALS=; COUNTS=; TotalCost=0; PRODNOS=; TITLES=; PaymentType=; IDS=; ASPSESSIONIDQQSBBQRB=PMIFCPECLNGGJEJBLKCOOILC

                                         
                                         211.72.232.62
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Last-Modified: Thu, 22 Jun 2017 15:51:45 GMT
Accept-Ranges: bytes
Etag: "10c1a736febd21:0"
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET
X-Powered-By-Plesk: PleskWin
Date: Mon, 17 Jul 2017 11:24:08 GMT
Content-Length: 4436


--- Additional Info ---
Magic:  UTF-8 Unicode C program text, with CRLF line terminators
Size:   4436
Md5:    b0bd4b593feb0a01c1945f43e2236faf
Sha1:   c498741fae3c287928325649aebdb5854308a125
Sha256: e7bb468f4be637845787e0995be1ec713be486d067b0af85f315153a6d7e8f29
                                        
                                            GET /jquery/jquery-migrate-1.2.1.min.js HTTP/1.1 
Host: d16imr0101.aboutnic.com.tw
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://d16imr0101.aboutnic.com.tw/
Cookie: FreightDef=0; FreeShippingDef=0; FreeShipping=0; ShopCount=0; RealTotalCost=0; MAXS=; Payment=; COSTS=; TOTALS=; COUNTS=; TotalCost=0; PRODNOS=; TITLES=; PaymentType=; IDS=; ASPSESSIONIDQQSBBQRB=PMIFCPECLNGGJEJBLKCOOILC

                                         
                                         211.72.232.62
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Last-Modified: Thu, 22 Jun 2017 15:51:52 GMT
Accept-Ranges: bytes
Etag: "df8c66776febd21:0"
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET
X-Powered-By-Plesk: PleskWin
Date: Mon, 17 Jul 2017 11:24:08 GMT
Content-Length: 7199


--- Additional Info ---
Magic:  ASCII English text, with very long lines
Size:   7199
Md5:    eb05d8d73b5b13d8d84308a4751ece96
Sha1:   743052320809514fb788fe1d3df37fc87ce90452
Sha256: 1e67d8dbcca1f6fd94e077c85c2fb40fa1c2756c99238daa8da882144260a68d

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /js/cookie.js HTTP/1.1 
Host: d16imr0101.aboutnic.com.tw
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://d16imr0101.aboutnic.com.tw/
Cookie: FreightDef=0; FreeShippingDef=0; FreeShipping=0; ShopCount=0; RealTotalCost=0; MAXS=; Payment=; COSTS=; TOTALS=; COUNTS=; TotalCost=0; PRODNOS=; TITLES=; PaymentType=; IDS=; ASPSESSIONIDQQSBBQRB=PMIFCPECLNGGJEJBLKCOOILC

                                         
                                         211.72.232.62
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Last-Modified: Thu, 22 Jun 2017 15:51:52 GMT
Accept-Ranges: bytes
Etag: "2e178f776febd21:0"
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET
X-Powered-By-Plesk: PleskWin
Date: Mon, 17 Jul 2017 11:24:09 GMT
Content-Length: 1197


--- Additional Info ---
Magic:  ISO-8859 text, with CRLF line terminators
Size:   1197
Md5:    61ef1b2d694031301b098c8becfea329
Sha1:   d3f498d3b41aa4e46ad56a03c961a3b09941ba7d
Sha256: 2844990a2048190766ec35501618f5efbd614df2c55a9b8ba79d42feb49369e7

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET / HTTP/1.1 
Host: d16imr0101.aboutnic.com.tw
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         211.72.232.62
HTTP/1.1 200 OK
Content-Type: text/html; Charset=utf-8
                                        
Cache-Control: private
Content-Length: 16972
Server: Microsoft-IIS/8.5
Set-Cookie: FreightDef=0; path=/ FreeShippingDef=0; path=/ FreeShipping=0; path=/ ShopCount=0; path=/ RealTotalCost=0; path=/ MAXS=; path=/ Payment=; path=/ COSTS=; path=/ TOTALS=; path=/ COUNTS=; path=/ TotalCost=0; path=/ PRODNOS=; path=/ TITLES=; path=/ PaymentType=; path=/ IDS=; path=/ ASPSESSIONIDQQSBBQRB=PMIFCPECLNGGJEJBLKCOOILC; path=/
X-Powered-By: ASP.NET
X-Powered-By-Plesk: PleskWin
Date: Mon, 17 Jul 2017 11:24:08 GMT


--- Additional Info ---
Magic:  UTF-8 Unicode HTML document text, with CRLF line terminators
Size:   16972
Md5:    b663c8c4297def81e5c9c128e7cc667a
Sha1:   c443b091d39ad6ded4a5e255d356b8e6eb8c21a9
Sha256: da35d6f65bc656884e6de3c3107b036ab62354e51e65951a7d65ae496c931bd4

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /font-awesome/css/font-awesome.css HTTP/1.1 
Host: d16imr0101.aboutnic.com.tw
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://d16imr0101.aboutnic.com.tw/
Cookie: FreightDef=0; FreeShippingDef=0; FreeShipping=0; ShopCount=0; RealTotalCost=0; MAXS=; Payment=; COSTS=; TOTALS=; COUNTS=; TotalCost=0; PRODNOS=; TITLES=; PaymentType=; IDS=; ASPSESSIONIDQQSBBQRB=PMIFCPECLNGGJEJBLKCOOILC

                                         
                                         211.72.232.62
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Last-Modified: Thu, 22 Jun 2017 15:51:50 GMT
Accept-Ranges: bytes
Etag: "c46516766febd21:0"
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET
X-Powered-By-Plesk: PleskWin
Date: Mon, 17 Jul 2017 11:24:08 GMT
Content-Length: 35134


--- Additional Info ---
Magic:  troff or preprocessor input text
Size:   35134
Md5:    b652e3b759188ceaf79182f2fe72ea64
Sha1:   4eda182cbcc046dbf449aef97c02c230cf80a494
Sha256: b977f453450222a069d89dd2e776f6f21f9fa42f6e15c03c7fe6ff34d9a2c159
                                        
                                            GET /js/search.js HTTP/1.1 
Host: d16imr0101.aboutnic.com.tw
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://d16imr0101.aboutnic.com.tw/
Cookie: FreightDef=0; FreeShippingDef=0; FreeShipping=0; ShopCount=0; RealTotalCost=0; MAXS=; Payment=; COSTS=; TOTALS=; COUNTS=; TotalCost=0; PRODNOS=; TITLES=; PaymentType=; IDS=; ASPSESSIONIDQQSBBQRB=PMIFCPECLNGGJEJBLKCOOILC

                                         
                                         211.72.232.62
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Last-Modified: Thu, 22 Jun 2017 15:51:53 GMT
Accept-Ranges: bytes
Etag: "d83bf3776febd21:0"
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET
X-Powered-By-Plesk: PleskWin
Date: Mon, 17 Jul 2017 11:24:09 GMT
Content-Length: 496


--- Additional Info ---
Magic:  ASCII C++ program text, with CRLF line terminators
Size:   496
Md5:    210f103c576b6d993d9e73bcb3e33471
Sha1:   84d65f882b5e84132c01939e97ee371820e53da3
Sha256: b3971edbc4f427bf8bfecc49790a5bbf7d65556e25c0879a76df6c95b20da8b1

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /js/dropdownmenu.js HTTP/1.1 
Host: d16imr0101.aboutnic.com.tw
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://d16imr0101.aboutnic.com.tw/
Cookie: FreightDef=0; FreeShippingDef=0; FreeShipping=0; ShopCount=0; RealTotalCost=0; MAXS=; Payment=; COSTS=; TOTALS=; COUNTS=; TotalCost=0; PRODNOS=; TITLES=; PaymentType=; IDS=; ASPSESSIONIDQQSBBQRB=PMIFCPECLNGGJEJBLKCOOILC

                                         
                                         211.72.232.62
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Last-Modified: Thu, 22 Jun 2017 15:51:52 GMT
Accept-Ranges: bytes
Etag: "a47e91776febd21:0"
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET
X-Powered-By-Plesk: PleskWin
Date: Mon, 17 Jul 2017 11:24:09 GMT
Content-Length: 2084


--- Additional Info ---
Magic:  UTF-8 Unicode (with BOM) C++ program text, with CRLF line terminators
Size:   2084
Md5:    0e6a41989cfde401331535c5aa00ef5a
Sha1:   e150413aa422b2408e7c0845227e8718b8542e99
Sha256: 55b77a4919a0f0f11c6beb928d3a3645ce25f1df08252035294aa698e0f4f41c

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /js/AC_RunActiveContent.js HTTP/1.1 
Host: d16imr0101.aboutnic.com.tw
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://d16imr0101.aboutnic.com.tw/
Cookie: FreightDef=0; FreeShippingDef=0; FreeShipping=0; ShopCount=0; RealTotalCost=0; MAXS=; Payment=; COSTS=; TOTALS=; COUNTS=; TotalCost=0; PRODNOS=; TITLES=; PaymentType=; IDS=; ASPSESSIONIDQQSBBQRB=PMIFCPECLNGGJEJBLKCOOILC

                                         
                                         211.72.232.62
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Last-Modified: Thu, 22 Jun 2017 15:51:52 GMT
Accept-Ranges: bytes
Etag: "c7ee87776febd21:0"
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET
X-Powered-By-Plesk: PleskWin
Date: Mon, 17 Jul 2017 11:24:10 GMT
Content-Length: 3359


--- Additional Info ---
Magic:  ASCII text, with CRLF line terminators
Size:   3359
Md5:    ae56d02f42b582e11647155fef36ceda
Sha1:   0042f7798243c5258a68fdec9c311690275c4711
Sha256: 2eb0464eb6c8bdd06125cc5f1de7b6f7ed17d3c06a7634b49e99f3d58811ad10

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /js/swfobject.js HTTP/1.1 
Host: d16imr0101.aboutnic.com.tw
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://d16imr0101.aboutnic.com.tw/
Cookie: FreightDef=0; FreeShippingDef=0; FreeShipping=0; ShopCount=0; RealTotalCost=0; MAXS=; Payment=; COSTS=; TOTALS=; COUNTS=; TotalCost=0; PRODNOS=; TITLES=; PaymentType=; IDS=; ASPSESSIONIDQQSBBQRB=PMIFCPECLNGGJEJBLKCOOILC

                                         
                                         211.72.232.62
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Last-Modified: Thu, 22 Jun 2017 15:51:53 GMT
Accept-Ranges: bytes
Etag: "c69cf5776febd21:0"
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET
X-Powered-By-Plesk: PleskWin
Date: Mon, 17 Jul 2017 11:24:10 GMT
Content-Length: 10220


--- Additional Info ---
Magic:  ASCII C program text, with very long lines
Size:   10220
Md5:    892a543f3abb54e8ec1ada55be3b0649
Sha1:   5847ed101f55d51c53538a7078971e7de8fb6762
Sha256: 8677971b119ccdb82af697ff0e08f218490d15116f221d44301f1cc8797e67d4

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /css/main.css HTTP/1.1 
Host: d16imr0101.aboutnic.com.tw
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://d16imr0101.aboutnic.com.tw/
Cookie: FreightDef=0; FreeShippingDef=0; FreeShipping=0; ShopCount=0; RealTotalCost=0; MAXS=; Payment=; COSTS=; TOTALS=; COUNTS=; TotalCost=0; PRODNOS=; TITLES=; PaymentType=; IDS=; ASPSESSIONIDQQSBBQRB=PMIFCPECLNGGJEJBLKCOOILC

                                         
                                         211.72.232.62
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Last-Modified: Thu, 22 Jun 2017 15:51:45 GMT
Accept-Ranges: bytes
Etag: "6f232c736febd21:0"
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET
X-Powered-By-Plesk: PleskWin
Date: Mon, 17 Jul 2017 11:24:08 GMT
Content-Length: 5188


--- Additional Info ---
Magic:  ASCII C program text, with CRLF line terminators
Size:   5188
Md5:    262e51a97b11fe50b81e6af081cea896
Sha1:   37bfb71e1ddc548a5accde6fb68a605d077f8220
Sha256: 2ab9e18ead7c6bcbf9cec99cada96a80978d9b6396343b60bfabbe3182773c38
                                        
                                            GET /css/nav.css HTTP/1.1 
Host: d16imr0101.aboutnic.com.tw
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://d16imr0101.aboutnic.com.tw/css/common.css
Cookie: FreightDef=0; FreeShippingDef=0; FreeShipping=0; ShopCount=0; RealTotalCost=0; MAXS=; Payment=; COSTS=; TOTALS=; COUNTS=; TotalCost=0; PRODNOS=; TITLES=; PaymentType=; IDS=; ASPSESSIONIDQQSBBQRB=PMIFCPECLNGGJEJBLKCOOILC

                                         
                                         211.72.232.62
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Last-Modified: Thu, 22 Jun 2017 15:51:45 GMT
Accept-Ranges: bytes
Etag: "baeb30736febd21:0"
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET
X-Powered-By-Plesk: PleskWin
Date: Mon, 17 Jul 2017 11:24:10 GMT
Content-Length: 1107


--- Additional Info ---
Magic:  ASCII text, with CRLF line terminators
Size:   1107
Md5:    285447288bdca2c7f16dc7012b81c1fe
Sha1:   3bcbee2d44776ed6abaccad4e2d1a4043bfa0170
Sha256: bfad9f26d832a6bf5ad1c2fccf647a3802b406c268e6137766a8007d78622f79
                                        
                                            GET /file/Profile/logo.png HTTP/1.1 
Host: d16imr0101.aboutnic.com.tw
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://d16imr0101.aboutnic.com.tw/
Cookie: FreightDef=0; FreeShippingDef=0; FreeShipping=0; ShopCount=0; RealTotalCost=0; MAXS=; Payment=; COSTS=; TOTALS=; COUNTS=; TotalCost=0; PRODNOS=; TITLES=; PaymentType=; IDS=; ASPSESSIONIDQQSBBQRB=PMIFCPECLNGGJEJBLKCOOILC

                                         
                                         211.72.232.62
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Last-Modified: Thu, 22 Jun 2017 15:51:48 GMT
Accept-Ranges: bytes
Etag: "95f627756febd21:0"
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET
X-Powered-By-Plesk: PleskWin
Date: Mon, 17 Jul 2017 11:24:10 GMT
Content-Length: 1278


--- Additional Info ---
Magic:  PNG image, 150 x 45, 8-bit/color RGBA, non-interlaced
Size:   1278
Md5:    4d29cb70cb06a98dbcc1c6b918e0bf76
Sha1:   74cb8788b8c7018847568d767b4fcf769a718517
Sha256: f5a5b048f433119275a754451e270456fd70379b0bcc173cc5152b46e12be830
                                        
                                            GET /jquery/jquerylazy/jquery.lazy.min.js HTTP/1.1 
Host: d16imr0101.aboutnic.com.tw
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://d16imr0101.aboutnic.com.tw/
Cookie: FreightDef=0; FreeShippingDef=0; FreeShipping=0; ShopCount=0; RealTotalCost=0; MAXS=; Payment=; COSTS=; TOTALS=; COUNTS=; TotalCost=0; PRODNOS=; TITLES=; PaymentType=; IDS=; ASPSESSIONIDQQSBBQRB=PMIFCPECLNGGJEJBLKCOOILC

                                         
                                         211.72.232.62
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Last-Modified: Thu, 22 Jun 2017 15:51:52 GMT
Accept-Ranges: bytes
Etag: "18c780776febd21:0"
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET
X-Powered-By-Plesk: PleskWin
Date: Mon, 17 Jul 2017 11:24:10 GMT
Content-Length: 3843


--- Additional Info ---
Magic:  ASCII text, with very long lines
Size:   3843
Md5:    08fee4e07b65038738a4b827913d4f4e
Sha1:   3965f25e0979b09e93057171deec3af215e9632d
Sha256: 4eed4b831371f49dea63f25eea3c583447b602f5a7578de1447837cf48811627

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /jquery/jquery.tools-1.2.6.min.js HTTP/1.1 
Host: d16imr0101.aboutnic.com.tw
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://d16imr0101.aboutnic.com.tw/
Cookie: FreightDef=0; FreeShippingDef=0; FreeShipping=0; ShopCount=0; RealTotalCost=0; MAXS=; Payment=; COSTS=; TOTALS=; COUNTS=; TotalCost=0; PRODNOS=; TITLES=; PaymentType=; IDS=; ASPSESSIONIDQQSBBQRB=PMIFCPECLNGGJEJBLKCOOILC

                                         
                                         211.72.232.62
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Last-Modified: Thu, 22 Jun 2017 15:51:52 GMT
Accept-Ranges: bytes
Etag: "41a179776febd21:0"
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET
X-Powered-By-Plesk: PleskWin
Date: Mon, 17 Jul 2017 11:24:09 GMT
Content-Length: 78612


--- Additional Info ---
Magic:  UTF-8 Unicode (with BOM) C program text, with very long lines
Size:   78612
Md5:    012f8d343f090ea4dfb93386afbe455d
Sha1:   f76833219604f03324abf550090676cf8e80f74b
Sha256: 663fa21c2be157074ad4b0b6384345548ace4583733a446f65dc53daec1fd902

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /jquery/jquery-1.11.3.min.js HTTP/1.1 
Host: d16imr0101.aboutnic.com.tw
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://d16imr0101.aboutnic.com.tw/
Cookie: FreightDef=0; FreeShippingDef=0; FreeShipping=0; ShopCount=0; RealTotalCost=0; MAXS=; Payment=; COSTS=; TOTALS=; COUNTS=; TotalCost=0; PRODNOS=; TITLES=; PaymentType=; IDS=; ASPSESSIONIDQQSBBQRB=PMIFCPECLNGGJEJBLKCOOILC

                                         
                                         211.72.232.62
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Last-Modified: Thu, 22 Jun 2017 15:51:52 GMT
Accept-Ranges: bytes
Etag: "62f168776febd21:0"
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET
X-Powered-By-Plesk: PleskWin
Date: Mon, 17 Jul 2017 11:24:08 GMT
Content-Length: 95957


--- Additional Info ---
Magic:  ASCII text, with very long lines
Size:   95957
Md5:    895323ed2f7258af4fae2c738c8aea49
Sha1:   276c87ff3e1e3155679c318938e74e5c1b76d809
Sha256: ecb916133a9376911f10bc5c659952eb0031e457f5df367cde560edbfba38fb8

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /engine1/script.js HTTP/1.1 
Host: d16imr0101.aboutnic.com.tw
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://d16imr0101.aboutnic.com.tw/
Cookie: FreightDef=0; FreeShippingDef=0; FreeShipping=0; ShopCount=0; RealTotalCost=0; MAXS=; Payment=; COSTS=; TOTALS=; COUNTS=; TotalCost=0; PRODNOS=; TITLES=; PaymentType=; IDS=; ASPSESSIONIDQQSBBQRB=PMIFCPECLNGGJEJBLKCOOILC

                                         
                                         211.72.232.62
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Last-Modified: Thu, 22 Jun 2017 15:51:45 GMT
Accept-Ranges: bytes
Etag: "55e38736febd21:0"
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET
X-Powered-By-Plesk: PleskWin
Date: Mon, 17 Jul 2017 11:24:17 GMT
Content-Length: 1998


--- Additional Info ---
Magic:  ASCII C++ program text, with very long lines
Size:   1998
Md5:    9e1f85035c5187d29f9e6f741bdb160e
Sha1:   b0e3ade553efb0d06568ae1d9c7cad776f33d837
Sha256: d186e3237a32e3ba19b77c039279d5ab019a930749c1aad930c6adbfd5e91118

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /images/logo2.png HTTP/1.1 
Host: d16imr0101.aboutnic.com.tw
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://d16imr0101.aboutnic.com.tw/
Cookie: FreightDef=0; FreeShippingDef=0; FreeShipping=0; ShopCount=0; RealTotalCost=0; MAXS=; Payment=; COSTS=; TOTALS=; COUNTS=; TotalCost=0; PRODNOS=; TITLES=; PaymentType=; IDS=; ASPSESSIONIDQQSBBQRB=PMIFCPECLNGGJEJBLKCOOILC

                                         
                                         211.72.232.62
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Last-Modified: Thu, 22 Jun 2017 15:51:51 GMT
Accept-Ranges: bytes
Etag: "f7317776febd21:0"
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET
X-Powered-By-Plesk: PleskWin
Date: Mon, 17 Jul 2017 11:24:18 GMT
Content-Length: 1253


--- Additional Info ---
Magic:  PNG image, 150 x 45, 8-bit/color RGBA, non-interlaced
Size:   1253
Md5:    dd71490897b155ed6fbfea554de30f52
Sha1:   ca6ae5c280b61ec50ee354aa6dd3809b7824d35b
Sha256: c417e44303ccc4fd09d62acadc77a658037669b4e04c9276e3da4e6a75eb984e
                                        
                                            GET /engine1/wowslider.js HTTP/1.1 
Host: d16imr0101.aboutnic.com.tw
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://d16imr0101.aboutnic.com.tw/
Cookie: FreightDef=0; FreeShippingDef=0; FreeShipping=0; ShopCount=0; RealTotalCost=0; MAXS=; Payment=; COSTS=; TOTALS=; COUNTS=; TotalCost=0; PRODNOS=; TITLES=; PaymentType=; IDS=; ASPSESSIONIDQQSBBQRB=PMIFCPECLNGGJEJBLKCOOILC

                                         
                                         211.72.232.62
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Last-Modified: Thu, 22 Jun 2017 15:51:45 GMT
Accept-Ranges: bytes
Etag: "ac333f736febd21:0"
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET
X-Powered-By-Plesk: PleskWin
Date: Mon, 17 Jul 2017 11:24:17 GMT
Content-Length: 24862


--- Additional Info ---
Magic:  ASCII C++ program text, with very long lines
Size:   24862
Md5:    c681e5a51bc1fb8c7fd91f4a7c573b88
Sha1:   e86655b020be2f0391d1e9ab99762477b5efc228
Sha256: 4e66251624b8e08cb198d8c37fb94126847df11fa3532dab60d28e2d2f1e1771

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /jquery/jquery-ui-1.11.4.min.js HTTP/1.1 
Host: d16imr0101.aboutnic.com.tw
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://d16imr0101.aboutnic.com.tw/
Cookie: FreightDef=0; FreeShippingDef=0; FreeShipping=0; ShopCount=0; RealTotalCost=0; MAXS=; Payment=; COSTS=; TOTALS=; COUNTS=; TotalCost=0; PRODNOS=; TITLES=; PaymentType=; IDS=; ASPSESSIONIDQQSBBQRB=PMIFCPECLNGGJEJBLKCOOILC

                                         
                                         211.72.232.62
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Last-Modified: Thu, 22 Jun 2017 15:51:52 GMT
Accept-Ranges: bytes
Etag: "83b86d776febd21:0"
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET
X-Powered-By-Plesk: PleskWin
Date: Mon, 17 Jul 2017 11:24:09 GMT
Content-Length: 240427


--- Additional Info ---
Magic:  ASCII text, with very long lines
Size:   240427
Md5:    10e588c9ed94761cca7a4f8d79d26011
Sha1:   60a4ba5680d6ccfdf022af3b9acc29823271da1d
Sha256: 709a8d05227dfdc05b8dcee9b38b009c3d10e4f5555e64255f2d379b8ac8aa24

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /images/line01.gif HTTP/1.1 
Host: d16imr0101.aboutnic.com.tw
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://d16imr0101.aboutnic.com.tw/css/common.css
Cookie: FreightDef=0; FreeShippingDef=0; FreeShipping=0; ShopCount=0; RealTotalCost=0; MAXS=; Payment=; COSTS=; TOTALS=; COUNTS=; TotalCost=0; PRODNOS=; TITLES=; PaymentType=; IDS=; ASPSESSIONIDQQSBBQRB=PMIFCPECLNGGJEJBLKCOOILC

                                         
                                         211.72.232.62
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Last-Modified: Thu, 22 Jun 2017 15:51:51 GMT
Accept-Ranges: bytes
Etag: "d8120776febd21:0"
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET
X-Powered-By-Plesk: PleskWin
Date: Mon, 17 Jul 2017 11:24:20 GMT
Content-Length: 417


--- Additional Info ---
Magic:  GIF image data, version 89a, 587 x 5
Size:   417
Md5:    f9751044d784398a90373ebc9c08dafa
Sha1:   b9a938b5c3cf764734b3277dc43b09e5ef3a5c44
Sha256: 4d7d042bef164b64419066c9696df77982cdbf519811a372f1933083397eb653
                                        
                                            GET /engine1/style.css HTTP/1.1 
Host: d16imr0101.aboutnic.com.tw
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://d16imr0101.aboutnic.com.tw/
Cookie: FreightDef=0; FreeShippingDef=0; FreeShipping=0; ShopCount=0; RealTotalCost=0; MAXS=; Payment=; COSTS=; TOTALS=; COUNTS=; TotalCost=0; PRODNOS=; TITLES=; PaymentType=; IDS=; ASPSESSIONIDQQSBBQRB=PMIFCPECLNGGJEJBLKCOOILC

                                         
                                         211.72.232.62
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Last-Modified: Thu, 22 Jun 2017 15:51:45 GMT
Accept-Ranges: bytes
Etag: "72d23c736febd21:0"
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET
X-Powered-By-Plesk: PleskWin
Date: Mon, 17 Jul 2017 11:24:17 GMT
Content-Length: 22557


--- Additional Info ---
Magic:  ASCII C program text, with very long lines, with CRLF, LF line terminators
Size:   22557
Md5:    2c1c63170cf63d5e7e40a40817ad37ba
Sha1:   e0c06a9acd3a4d58284cbc995655668d4adca1c2
Sha256: e5a2455e21bdc0dfde362861fd8a0046c4624c23d4ce24630ed2dddec621b00b
                                        
                                            POST /ocsp HTTP/1.1 
Host: clients1.google.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 107
Content-Type: application/ocsp-request

                                         
                                         216.58.211.142
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Mon, 17 Jul 2017 11:24:22 GMT
Expires: Fri, 21 Jul 2017 11:24:22 GMT
Cache-Control: public, max-age=345600
Server: ocsp_responder
Content-Length: 463
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  data
Size:   463
Md5:    775a5c100298d653ad0c5a22ef06be10
Sha1:   56ccb5e6f8174432d2663f74abe5cfb79a77bd57
Sha256: b0490933d07bb3d6ae29f92613c73a4f3c1010b4c85e3e5865de30d47170405b
                                        
                                            POST / HTTP/1.1 
Host: g.symcd.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         23.43.139.27
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx/1.10.2
Content-Length: 1390
Content-Transfer-Encoding: binary
Cache-Control: max-age=339639, public, no-transform, must-revalidate
Last-Modified: Fri, 14 Jul 2017 09:41:26 GMT
Expires: Fri, 21 Jul 2017 09:41:26 GMT
Date: Mon, 17 Jul 2017 11:24:22 GMT
Connection: keep-alive


--- Additional Info ---
Magic:  data
Size:   1390
Md5:    feec02a24095e65e818da9ac640e9e31
Sha1:   e36d560928fdf1e3add590a2b0752d028f70b75f
Sha256: ceaf2a49bd504b714de50c1b7d29ba6a7065705c26778bf0078a167f1a48d737
                                        
                                            GET /css?family=Gurajada&subset=latin,telugu HTTP/1.1 
Host: fonts.googleapis.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://d16imr0101.aboutnic.com.tw/engine1/style.css

                                         
                                         216.58.211.138
HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
                                        
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Expires: Mon, 17 Jul 2017 11:24:22 GMT
Date: Mon, 17 Jul 2017 11:24:22 GMT
Cache-Control: private, max-age=86400
Content-Encoding: gzip
Server: ESF
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN
Alt-Svc: quic=":443"; ma=2592000; v="39,38,37,36,35"
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  gzip compressed data, max compression
Size:   201
Md5:    aa8a146518fcd95765b8382d04ac7da4
Sha1:   39866a3a86936c08678cd6ca1e3e7a1091dc1164
Sha256: e908b1772c868066c02733a4025faddae2dbbaa2e004a933a2dce42b916fa03e
                                        
                                            GET /file/Ad/ad2016012600003.jpg HTTP/1.1 
Host: d16imr0101.aboutnic.com.tw
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://d16imr0101.aboutnic.com.tw/
Cookie: FreightDef=0; FreeShippingDef=0; FreeShipping=0; ShopCount=0; RealTotalCost=0; MAXS=; Payment=; COSTS=; TOTALS=; COUNTS=; TotalCost=0; PRODNOS=; TITLES=; PaymentType=; IDS=; ASPSESSIONIDQQSBBQRB=PMIFCPECLNGGJEJBLKCOOILC

                                         
                                         211.72.232.62
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Last-Modified: Thu, 22 Jun 2017 15:51:46 GMT
Accept-Ranges: bytes
Etag: "686d3736febd21:0"
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET
X-Powered-By-Plesk: PleskWin
Date: Mon, 17 Jul 2017 11:24:17 GMT
Content-Length: 53456


--- Additional Info ---
Magic:  JPEG image data, EXIF standard
Size:   53456
Md5:    a4e7016e95d29c0efe45dd10cd446a8e
Sha1:   619752d4e96e3d54bc5f9410e0e37838b47be073
Sha256: e6ec316d4ed3722a8597adae363362fdd5094637e2be785d4b415d9abffecd05
                                        
                                            GET /font-awesome/fonts/fontawesome-webfont.woff?v=4.6.3 HTTP/1.1 
Host: d16imr0101.aboutnic.com.tw
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://d16imr0101.aboutnic.com.tw/font-awesome/css/font-awesome.css
Cookie: FreightDef=0; FreeShippingDef=0; FreeShipping=0; ShopCount=0; RealTotalCost=0; MAXS=; Payment=; COSTS=; TOTALS=; COUNTS=; TotalCost=0; PRODNOS=; TITLES=; PaymentType=; IDS=; ASPSESSIONIDQQSBBQRB=PMIFCPECLNGGJEJBLKCOOILC

                                         
                                         211.72.232.62
HTTP/1.1 200 OK
Content-Type: font/x-woff
                                        
Last-Modified: Thu, 22 Jun 2017 15:51:50 GMT
Accept-Ranges: bytes
Etag: "469e30766febd21:0"
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET
X-Powered-By-Plesk: PleskWin
Date: Mon, 17 Jul 2017 11:24:21 GMT
Content-Length: 90412


--- Additional Info ---
Magic:  data
Size:   90412
Md5:    c8ddf1e5e5bf3682bc7bebf30f394148
Sha1:   6d7e6a5fc802b13694d8820fc0138037c0977d2e
Sha256: adbc4f95eb6d7f2738959cf0ecbc374672fce47e856050a8e9791f457623ac2c

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /file/Ad/ad2017051500003.jpg HTTP/1.1 
Host: d16imr0101.aboutnic.com.tw
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://d16imr0101.aboutnic.com.tw/
Cookie: FreightDef=0; FreeShippingDef=0; FreeShipping=0; ShopCount=0; RealTotalCost=0; MAXS=; Payment=; COSTS=; TOTALS=; COUNTS=; TotalCost=0; PRODNOS=; TITLES=; PaymentType=; IDS=; ASPSESSIONIDQQSBBQRB=PMIFCPECLNGGJEJBLKCOOILC

                                         
                                         211.72.232.62
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Last-Modified: Thu, 22 Jun 2017 15:51:46 GMT
Accept-Ranges: bytes
Etag: "31195746febd21:0"
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET
X-Powered-By-Plesk: PleskWin
Date: Mon, 17 Jul 2017 11:24:17 GMT
Content-Length: 126166


--- Additional Info ---
Magic:  JPEG image data, EXIF standard
Size:   126166
Md5:    49265f1d203067ef6ef64c82a176e486
Sha1:   2be4919f5505b7b5e0e85e7571898ff8e983256e
Sha256: f1be3c622f39721b1e8c657c6935929c442a7a48893754fbcdd8aff0b22d0510
                                        
                                            GET /file/Ad/ad2016012600009.jpg HTTP/1.1 
Host: d16imr0101.aboutnic.com.tw
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://d16imr0101.aboutnic.com.tw/
Cookie: FreightDef=0; FreeShippingDef=0; FreeShipping=0; ShopCount=0; RealTotalCost=0; MAXS=; Payment=; COSTS=; TOTALS=; COUNTS=; TotalCost=0; PRODNOS=; TITLES=; PaymentType=; IDS=; ASPSESSIONIDQQSBBQRB=PMIFCPECLNGGJEJBLKCOOILC

                                         
                                         211.72.232.62
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Last-Modified: Thu, 22 Jun 2017 15:51:46 GMT
Accept-Ranges: bytes
Etag: "75cfd7736febd21:0"
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET
X-Powered-By-Plesk: PleskWin
Date: Mon, 17 Jul 2017 11:24:27 GMT
Content-Length: 29495


--- Additional Info ---
Magic:  JPEG image data, EXIF standard
Size:   29495
Md5:    4cfc4611b71a4177495555b167e62b58
Sha1:   bcad33e8894408a1671d8653c787bf84cf5aede7
Sha256: 3addd3959c4632c6d8ed1131776f5acc5133faf3f7ea5b28cccd4cf5daca3bb4
                                        
                                            GET /favicon.ico HTTP/1.1 
Host: d16imr0101.aboutnic.com.tw
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Cookie: FreightDef=0; FreeShippingDef=0; FreeShipping=0; ShopCount=0; RealTotalCost=0; MAXS=; Payment=; COSTS=; TOTALS=; COUNTS=; TotalCost=0; PRODNOS=; TITLES=; PaymentType=; IDS=; ASPSESSIONIDQQSBBQRB=PMIFCPECLNGGJEJBLKCOOILC

                                         
                                         211.72.232.62
HTTP/1.1 200 OK
Content-Type: image/x-icon
                                        
Last-Modified: Fri, 16 Jan 2009 18:32:14 GMT
Accept-Ranges: bytes
Etag: "0cb69c0878c91:0"
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET
X-Powered-By-Plesk: PleskWin
Date: Mon, 17 Jul 2017 11:24:27 GMT
Content-Length: 3638


--- Additional Info ---
Magic:  MS Windows icon resource - 2 icons, 16x16, 256-colors
Size:   3638
Md5:    46a55e848ba68b3c3195b787baf77739
Sha1:   ebb0747b32eeab5fd88728c4222e21e13679eb3b
Sha256: 218c4a4d8ca9558d7f4065007ab945423061f97aff7abb5a3db79ebddafb0a83
                                        
                                            GET /file/Ad/ad2016012600005.jpg HTTP/1.1 
Host: d16imr0101.aboutnic.com.tw
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://d16imr0101.aboutnic.com.tw/
Cookie: FreightDef=0; FreeShippingDef=0; FreeShipping=0; ShopCount=0; RealTotalCost=0; MAXS=; Payment=; COSTS=; TOTALS=; COUNTS=; TotalCost=0; PRODNOS=; TITLES=; PaymentType=; IDS=; ASPSESSIONIDQQSBBQRB=PMIFCPECLNGGJEJBLKCOOILC

                                         
                                         211.72.232.62
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Last-Modified: Thu, 22 Jun 2017 15:51:46 GMT
Accept-Ranges: bytes
Etag: "5569d5736febd21:0"
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET
X-Powered-By-Plesk: PleskWin
Date: Mon, 17 Jul 2017 11:24:27 GMT
Content-Length: 25695


--- Additional Info ---
Magic:  JPEG image data, EXIF standard
Size:   25695
Md5:    50026b98ec812f9807938b1971578744
Sha1:   8248dc7ab64fe48d81e40a98f0dd5926f7d28f66
Sha256: 5afe4d742b719a622a8899eb84d4d519bf6e2a96a288f72a445938c14b5687cf
                                        
                                            GET /file/Ad/ad2016012600007.jpg HTTP/1.1 
Host: d16imr0101.aboutnic.com.tw
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://d16imr0101.aboutnic.com.tw/
Cookie: FreightDef=0; FreeShippingDef=0; FreeShipping=0; ShopCount=0; RealTotalCost=0; MAXS=; Payment=; COSTS=; TOTALS=; COUNTS=; TotalCost=0; PRODNOS=; TITLES=; PaymentType=; IDS=; ASPSESSIONIDQQSBBQRB=PMIFCPECLNGGJEJBLKCOOILC

                                         
                                         211.72.232.62
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Last-Modified: Thu, 22 Jun 2017 15:51:46 GMT
Accept-Ranges: bytes
Etag: "5569d5736febd21:0"
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET
X-Powered-By-Plesk: PleskWin
Date: Mon, 17 Jul 2017 11:24:27 GMT
Content-Length: 29722


--- Additional Info ---
Magic:  JPEG image data, EXIF standard
Size:   29722
Md5:    7690220bf89a9c2b463e56858f39cbb8
Sha1:   2d9454f11107b84daff5ca00293ebeca7ccbdc68
Sha256: bc5d21f20bd3be657ba0c3397968b48a56d28d2adf5ab654ddc025e872fc97a1