r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash b7be8442ec1e518ccc80739495f6d047
7a9d24b9d4046262c7753c49afaf9c19f4840626
b93410a9d62da3f219796d753b61a0f730cc272c13596724aa9d20efba298b44
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B93410A9D62DA3F219796D753B61A0F730CC272C13596724AA9D20EFBA298B44"
Last-Modified: Thu, 03 Nov 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7076
Expires: Sat, 05 Nov 2022 05:45:15 GMT
Date: Sat, 05 Nov 2022 03:47:19 GMT
Connection: keep-alive
bizuz.com/
35.200.241.195301 Moved Permanently 707 B IP 35.200.241.195:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF, LF line terminators
Hash 1304294c0823ca486542ba408ed761e3
b2a70fb2d810ca13985882e6981f33998823e83e
3bbe72f3baa8ec61de17a1d767fca58704769684b7abe9161d0c4eaf4c8f0982
Analyzer Verdict Alert fortinet Phishing
GET / HTTP/1.1
Host: bizuz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Connection: Keep-Alive
Content-Type: text/html
Content-Length: 707
Date: Sat, 05 Nov 2022 03:47:19 GMT
Server: LiteSpeed
Location: https://bizuz.com/
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash cd02b32dbc8416dcb10b468af2166c33
503a9c4cabdb19dfde769f5e2d3ef919c818c364
46ca638514d9d4cf252762fdac37a5e7b1da550fcc9911070b0b26a6aa6150a7
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4362
Cache-Control: max-age=111388
Content-Type: application/ocsp-response
Date: Sat, 05 Nov 2022 03:47:19 GMT
Etag: "6364dbd9-1d7"
Expires: Sun, 06 Nov 2022 10:43:47 GMT
Last-Modified: Fri, 04 Nov 2022 09:31:05 GMT
Server: ECS (ska/F70E)
X-Cache: HIT
Content-Length: 471
firefox.settings.services.mozilla.com/v1/
34.102.187.140200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 4736bac84ca28f2b1e961159fb4ea098
1319612979f53896fcfeacd4215c2715d4951e4c
5e81213e111ddf68c7f884f72b4e06fc4dc95eb902c3cf0762236b2418840dba
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Alert, Retry-After, Content-Length, Backoff, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sat, 05 Nov 2022 03:43:05 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 254
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 9f3527f898221f8ba6b5015f6decc100
ead93baa0e9d3a6297be3377dc3a624e5a3f509a
73a068f907cc50dd60af18d545b4264dd44bc4b9f40bf9adfceea157fdc33099
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "73A068F907CC50DD60AF18D545B4264DD44BC4B9F40BF9ADFCEEA157FDC33099"
Last-Modified: Thu, 03 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6429
Expires: Sat, 05 Nov 2022 05:34:28 GMT
Date: Sat, 05 Nov 2022 03:47:19 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 67d5a988edcda47bc3b3b3f65d32b4b6
d4f0e0da8b3690cc7da925026d3414b68c7d954f
55e4848e3ec682e808ce7ee70950f86179c43af4f81926d826a95edfda395a78
GET /chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: gfNFjs4nUZ+JIECBA5gU+JzC1vKcXVYiXQ4mE6vI9HCiVd7aAtljpT409bUG8MhwsaJIF+I5xPw=
x-amz-request-id: R7Z13MDHMMS8B4Z8
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sat, 05 Nov 2022 03:09:51 GMT
age: 2248
last-modified: Fri, 30 Sep 2022 18:50:55 GMT
etag: "67d5a988edcda47bc3b3b3f65d32b4b6"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 05 Nov 2022 03:47:20 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash cb747fc7afa826ed208c4f6fa3625888
5cb171d8afa6ba5d13999cce4f07751a425d9d34
1510f48771a2390e7dd92e90a322303d99aeeaed1b6d660367360b5f4bb17f56
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1510F48771A2390E7DD92E90A322303D99AEEAED1B6D660367360B5F4BB17F56"
Last-Modified: Thu, 03 Nov 2022 07:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21573
Expires: Sat, 05 Nov 2022 09:46:53 GMT
Date: Sat, 05 Nov 2022 03:47:20 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 42a0adacced30df52cf7cad3e200036d
f7b4114defc61f806dbb74fd228bca155d52362a
e4928481739a2a75dce86c03b355c6dff507426e8d851cba5ca8537b1be87c20
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4805
Cache-Control: max-age=106772
Content-Type: application/ocsp-response
Date: Sat, 05 Nov 2022 03:47:20 GMT
Etag: "6364c817-1d7"
Expires: Sun, 06 Nov 2022 09:26:52 GMT
Last-Modified: Fri, 04 Nov 2022 08:06:47 GMT
Server: ECS (ska/F70E)
X-Cache: HIT
Content-Length: 471
push.services.mozilla.com/
52.42.234.253101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 52.42.234.253:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: qnw1Ld1w5ERblc2zdaZhxA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: p/rc7fsh/98qwh55VCJFaPL0KJw=
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash a2f6c296003d839bdee766ef4082e376
013ae64b10cb1355ae9b6ba38dcfa79f71a9b505
703d6582ab3344d6e4a0d5b7e0c9983b8f7e8179d73dd6584c37bbccc8c84308
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 05 Nov 2022 03:47:20 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash a2f6c296003d839bdee766ef4082e376
013ae64b10cb1355ae9b6ba38dcfa79f71a9b505
703d6582ab3344d6e4a0d5b7e0c9983b8f7e8179d73dd6584c37bbccc8c84308
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 05 Nov 2022 03:47:20 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash a2f6c296003d839bdee766ef4082e376
013ae64b10cb1355ae9b6ba38dcfa79f71a9b505
703d6582ab3344d6e4a0d5b7e0c9983b8f7e8179d73dd6584c37bbccc8c84308
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 05 Nov 2022 03:47:21 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash a2f6c296003d839bdee766ef4082e376
013ae64b10cb1355ae9b6ba38dcfa79f71a9b505
703d6582ab3344d6e4a0d5b7e0c9983b8f7e8179d73dd6584c37bbccc8c84308
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 05 Nov 2022 03:47:21 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash a2f6c296003d839bdee766ef4082e376
013ae64b10cb1355ae9b6ba38dcfa79f71a9b505
703d6582ab3344d6e4a0d5b7e0c9983b8f7e8179d73dd6584c37bbccc8c84308
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 05 Nov 2022 03:47:21 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 3f8945e0b967faaa3d66f021b51698b0
d16f00dddcf46a232938d28c249f5b9777db6b2d
72c9c95ec287ed44653e94d79c883e0750abac217e80fb0845fcef9e5278af55
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 05 Nov 2022 03:47:21 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash d65c94a3bfe8605059e5e626ea0fa57e
b0fbc3577331b82efc8e320095b8d8705a6360d3
0878edd256a972f526d7053cdebceb28241db5662cc7660a10f1b4c3430c43c6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 05 Nov 2022 03:47:21 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
apis.google.com/js/api:client.js?ver=5.7.8
142.250.74.174200 OK 6.9 kB URL HTTP/2 apis.google.com/js/api:client.js?ver=5.7.8
IP 142.250.74.174:0
File type ASCII text, with very long lines (2054)
Hash fa9c01846144c93b4dd3a80c0cefe291
117f5393f281cb68358bca49cd33d459d6543fd8
a2c4ff75a36a0546b3fea0303b41989ff312b59843fdcc4030b9921afebd2615
GET /js/api:client.js?ver=5.7.8 HTTP/1.1
Host: apis.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bizuz.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
access-control-allow-origin: *
content-security-policy: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/gapi-team
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="gapi-team"
report-to: {"group":"gapi-team","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gapi-team"}]}
timing-allow-origin: *
content-length: 6895
date: Sat, 05 Nov 2022 03:47:21 GMT
expires: Sat, 05 Nov 2022 03:47:21 GMT
cache-control: private, max-age=1800, stale-while-revalidate=1800
etag: "41849e22597c709b"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash a2f6c296003d839bdee766ef4082e376
013ae64b10cb1355ae9b6ba38dcfa79f71a9b505
703d6582ab3344d6e4a0d5b7e0c9983b8f7e8179d73dd6584c37bbccc8c84308
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 05 Nov 2022 03:47:21 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.googletagmanager.com/gtag/js?id=UA-195447336-1
142.250.74.168200 OK 44 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=UA-195447336-1
IP 142.250.74.168:0
File type ASCII text, with very long lines (1921)
Hash fa18b87c3757ea63b4e93347bad7ab78
11b5481d101fae2fadec8e7713b739d37ca2391a
002ce857bae1a66bde03f5b84c56dc180fc6c6ccd4634c65b304a5418db270f5
GET /gtag/js?id=UA-195447336-1 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bizuz.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sat, 05 Nov 2022 03:47:21 GMT
expires: Sat, 05 Nov 2022 03:47:21 GMT
cache-control: private, max-age=900
last-modified: Sat, 05 Nov 2022 03:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 43575
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 4a9066e8faeec7f06d9a7e91bef8ff52
699ce1c29412a4c3f9018f4deceb3db399ddcd29
46461d19bf1ea06f23d89c4179135eaca9d7c8753a91e913b3adaf2615bee36f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 05 Nov 2022 03:47:21 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash d65c94a3bfe8605059e5e626ea0fa57e
b0fbc3577331b82efc8e320095b8d8705a6360d3
0878edd256a972f526d7053cdebceb28241db5662cc7660a10f1b4c3430c43c6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 05 Nov 2022 03:47:21 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
bizuz.com/wp-content/plugins/mtouch-quiz/mtq_core_style.x34259.css
35.200.241.195200 OK 1.6 kB URL HTTP/2 bizuz.com/wp-content/plugins/mtouch-quiz/mtq_core_style.x34259.css
IP 35.200.241.195:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (449), with CRLF line terminators
Hash aacf451b8f3446f73259ffc8b24d9370
e4b47a3ff4768389bbb50a4289daa1d854552f0b
ed47fe8f9aff8f942b262befc3144e951932cac6f4dcc40def9cc51b9e05a203
GET /wp-content/plugins/mtouch-quiz/mtq_core_style.x34259.css HTTP/1.1
Host: bizuz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bizuz.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Sun, 05 Nov 2023 03:47:21 GMT
content-type: text/css
last-modified: Sat, 04 Dec 2021 12:17:56 GMT
etag: "2117-61ab5c74-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1642
date: Sat, 05 Nov 2022 03:47:21 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
pragma: public
x-powered-by: W3 Total Cache/2.2.6
X-Firefox-Spdy: h2
bizuz.com/wp-content/plugins/mtouch-quiz/mtq_theme_style.x34259.css
35.200.241.195200 OK 3.0 kB URL HTTP/2 bizuz.com/wp-content/plugins/mtouch-quiz/mtq_theme_style.x34259.css
IP 35.200.241.195:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with CRLF line terminators
Hash 6809fa284a224433bda06c49700800d6
7d4ae9e4d56a02f916362752e3d8e42f4e6cf0b9
1dc1586f8e4330ab9fbde998468dc75cf3e8d201d4204b93fb226873db90c43e
GET /wp-content/plugins/mtouch-quiz/mtq_theme_style.x34259.css HTTP/1.1
Host: bizuz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bizuz.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Sun, 05 Nov 2023 03:47:21 GMT
content-type: text/css
last-modified: Sat, 04 Dec 2021 12:17:56 GMT
etag: "74e4-61ab5c74-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2957
date: Sat, 05 Nov 2022 03:47:21 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
pragma: public
x-powered-by: W3 Total Cache/2.2.6
X-Firefox-Spdy: h2
bizuz.com/wp-content/plugins/wp-pagebuilder/assets/css/jquery-ui.x34259.css
35.200.241.195200 OK 7.9 kB URL HTTP/2 bizuz.com/wp-content/plugins/wp-pagebuilder/assets/css/jquery-ui.x34259.css
IP 35.200.241.195:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (2366)
Hash 91760a3f31c3752da86c42bfd84be4d6
dba255a2a47359805479f516eda3a7feb2aae802
e0f1abe8ecc3ed2cfb2b870271e7535c6c7150328e3dd2c7eee9133473d95fc7
GET /wp-content/plugins/wp-pagebuilder/assets/css/jquery-ui.x34259.css HTTP/1.1
Host: bizuz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bizuz.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Sun, 05 Nov 2023 03:47:21 GMT
content-type: text/css
last-modified: Mon, 05 Sep 2022 10:21:32 GMT
etag: "9301-6315cdac-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 7929
date: Sat, 05 Nov 2022 03:47:21 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
pragma: public
x-powered-by: W3 Total Cache/2.2.6
X-Firefox-Spdy: h2
bizuz.com/wp-content/plugins/wp-pagebuilder/assets/css/animate.min.x34259.css
35.200.241.195200 OK 3.8 kB URL HTTP/2 bizuz.com/wp-content/plugins/wp-pagebuilder/assets/css/animate.min.x34259.css
IP 35.200.241.195:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
Hash c54be3547cdcf1945957cbd139c875cb
14d981e0be5a18ca7f29dbb0a3d8a32829a19533
2b33628ba14d5d1d9aceb348d7fb6070e8e4028538d8e76ca6da8ccb8cba8a22
GET /wp-content/plugins/wp-pagebuilder/assets/css/animate.min.x34259.css HTTP/1.1
Host: bizuz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bizuz.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Sun, 05 Nov 2023 03:47:21 GMT
content-type: text/css
last-modified: Mon, 05 Sep 2022 10:21:32 GMT
etag: "11d0e-6315cdac-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3830
date: Sat, 05 Nov 2022 03:47:21 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
pragma: public
x-powered-by: W3 Total Cache/2.2.6
X-Firefox-Spdy: h2
bizuz.com/wp-content/plugins/wp-pagebuilder/assets/css/font-awesome-5.min.x34259.css
35.200.241.195200 OK 12 kB URL HTTP/2 bizuz.com/wp-content/plugins/wp-pagebuilder/assets/css/font-awesome-5.min.x34259.css
IP 35.200.241.195:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (56277)
Hash 7f3cd78cc2e5484db1ac7f4825ef31aa
60ddacd8ee89c5fed6097f0c29015a8f6e1219a7
f50ebe7a6eb7c857ce3b020c4a7494e7908fa12e2c29d6d27c8c9268e0d392df
GET /wp-content/plugins/wp-pagebuilder/assets/css/font-awesome-5.min.x34259.css HTTP/1.1
Host: bizuz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bizuz.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Sun, 05 Nov 2023 03:47:21 GMT
content-type: text/css
last-modified: Mon, 05 Sep 2022 10:21:32 GMT
etag: "dc8f-6315cdac-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 11792
date: Sat, 05 Nov 2022 03:47:21 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
pragma: public
x-powered-by: W3 Total Cache/2.2.6
X-Firefox-Spdy: h2
bizuz.com/wp-content/plugins/wp-pagebuilder/assets/css/wppb-fonts.x34259.css
35.200.241.195200 OK 3.0 kB URL HTTP/2 bizuz.com/wp-content/plugins/wp-pagebuilder/assets/css/wppb-fonts.x34259.css
IP 35.200.241.195:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
Hash 0a92c80b045638c3f9fc66170366d50f
1934fc3d6303b749f83517c4d32166a4f6a41d43
751e0c385ee8cb3235846086a460ba56ef921ddf8703f864780b75994753f153
GET /wp-content/plugins/wp-pagebuilder/assets/css/wppb-fonts.x34259.css HTTP/1.1
Host: bizuz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bizuz.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Sun, 05 Nov 2023 03:47:21 GMT
content-type: text/css
last-modified: Mon, 05 Sep 2022 10:21:32 GMT
etag: "47c1-6315cdac-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3004
date: Sat, 05 Nov 2022 03:47:21 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
pragma: public
x-powered-by: W3 Total Cache/2.2.6
X-Firefox-Spdy: h2
bizuz.com/wp-content/plugins/wp-pagebuilder/assets/css/wppb-addons.x34259.css
35.200.241.195200 OK 13 kB URL HTTP/2 bizuz.com/wp-content/plugins/wp-pagebuilder/assets/css/wppb-addons.x34259.css
IP 35.200.241.195:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
Hash d5a1d9ff7a717b000e982fbc05a9ae7d
d68cf09786f438ee859c86a43ecb65f9f94d3fd5
55770450ac5861617146a2c65b24597d58b1daa3af14ea1b55356a332d325290
GET /wp-content/plugins/wp-pagebuilder/assets/css/wppb-addons.x34259.css HTTP/1.1
Host: bizuz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bizuz.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Sun, 05 Nov 2023 03:47:21 GMT
content-type: text/css
last-modified: Mon, 05 Sep 2022 10:21:32 GMT
etag: "1802a-6315cdac-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 12580
date: Sat, 05 Nov 2022 03:47:21 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
pragma: public
x-powered-by: W3 Total Cache/2.2.6
X-Firefox-Spdy: h2
bizuz.com/wp-content/plugins/wp-pagebuilder/assets/css/wppb-main.x34259.css
35.200.241.195200 OK 1.7 kB URL HTTP/2 bizuz.com/wp-content/plugins/wp-pagebuilder/assets/css/wppb-main.x34259.css
IP 35.200.241.195:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
Hash 5bebb575722726f2918bfcba81fed0d2
79f68dbbf107cc8c1933902d0a5d3ca54a0b81a0
64af5aa1950013e66c45aa9e4950e427ffdc2016320b682d33cdd911b736522a
GET /wp-content/plugins/wp-pagebuilder/assets/css/wppb-main.x34259.css HTTP/1.1
Host: bizuz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bizuz.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Sun, 05 Nov 2023 03:47:21 GMT
content-type: text/css
last-modified: Mon, 05 Sep 2022 10:21:32 GMT
etag: "2c6d-6315cdac-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1747
date: Sat, 05 Nov 2022 03:47:21 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
pragma: public
x-powered-by: W3 Total Cache/2.2.6
X-Firefox-Spdy: h2
bizuz.com/wp-includes/css/dist/block-library/style.min.x34259.css
35.200.241.195200 OK 8.1 kB URL HTTP/2 bizuz.com/wp-includes/css/dist/block-library/style.min.x34259.css
IP 35.200.241.195:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type Unicode text, UTF-8 text, with very long lines (29677)
Hash 94816d5978ddc9ea9b99529b0df33900
cdd5c13a34ac09bef821aa64c7ec9e34bda6052e
4e6fd88eff0b6f5dc1e0a23bdf0b2c6b35f44e38615781531923614851f59ea6
GET /wp-includes/css/dist/block-library/style.min.x34259.css HTTP/1.1
Host: bizuz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bizuz.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Sun, 05 Nov 2023 03:47:21 GMT
content-type: text/css
last-modified: Fri, 16 Apr 2021 04:36:23 GMT
etag: "e33b-60791447-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 8146
date: Sat, 05 Nov 2022 03:47:21 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
pragma: public
x-powered-by: W3 Total Cache/2.2.6
X-Firefox-Spdy: h2
bizuz.com/wp-includes/css/dist/block-library/theme.min.x34259.css
35.200.241.195200 OK 650 B URL HTTP/2 bizuz.com/wp-includes/css/dist/block-library/theme.min.x34259.css
IP 35.200.241.195:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (2714), with no line terminators
Hash e7301ea3cf057ba5445ba55c4213f4a8
c59b25c0863206bb65aab3189bf7f6aebe2b20d1
bb09b511f8b97e2c35c070e49518fb71d77a7137a0aa36eb81ec2fa60b56c389
GET /wp-includes/css/dist/block-library/theme.min.x34259.css HTTP/1.1
Host: bizuz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bizuz.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Sun, 05 Nov 2023 03:47:21 GMT
content-type: text/css
last-modified: Wed, 07 Apr 2021 11:14:02 GMT
etag: "a9a-606d93fa-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 650
date: Sat, 05 Nov 2022 03:47:21 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
pragma: public
x-powered-by: W3 Total Cache/2.2.6
X-Firefox-Spdy: h2
demo.themeum.com/wordpress/edumax/wp-content/uploads/2019/05/icon2.png
172.67.73.243200 OK 1.6 kB URL HTTP/2 demo.themeum.com/wordpress/edumax/wp-content/uploads/2019/05/icon2.png
IP 172.67.73.243:0
File type PNG image data, 138 x 138, 8-bit colormap, non-interlaced\012- data
Hash b70f572343892c3ad6bbde99d2c90005
b1438654005f22ad11175b844c69b3568462b81d
3c95d32f8c122edffda993b6b330696614acf4fc98feba11373cf2beda23f8d2
GET /wordpress/edumax/wp-content/uploads/2019/05/icon2.png HTTP/1.1
Host: demo.themeum.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bizuz.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 05 Nov 2022 03:47:21 GMT
content-type: image/png
content-length: 1579
cf-bgj: imgq:100,h2pri
cf-polished: status=not_needed
etag: "5ce2439d-62b"
last-modified: Mon, 20 May 2019 06:05:17 GMT
cache-control: max-age=14400
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=d6ugVPyk4Lmr1idXoCo%2Bgzym59Cvi%2FLrVUMvWryjGeh3OQL5zlvI4TOzPqwBMT6MMNLSmp3iG7OQLKd%2FnB4LdKLWqEyZBpqjcOAyTthIk5sVhgZxYY5kHV1U%2Fx6vh3fG9ho%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 76529b88df3eb4ee-OSL
X-Firefox-Spdy: h2
bizuz.com/
35.200.241.195200 OK 226 kB IP 35.200.241.195:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (49890)
Size 226 kB (225805 bytes)
Hash 3069c37affa888551bc0f54e32ea95e4
09081d767258583e4201e9b0dd3e02124965baca
6c1cace8a25c7358cba9374c1b63b0201254f1cab6be1fda04e2a2dbe6054647
Analyzer Verdict Alert fortinet Phishing
GET / HTTP/1.1
Host: bizuz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
cache-control: public, max-age=-6095,public
expires: Sat, 05 Nov 2022 02:05:45 GMT
content-type: text/html; charset=UTF-8
last-modified: Sat, 05 Nov 2022 01:05:45 GMT
etag: "3720d-6365b6e9-0;gz"
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding, Cookie
content-length: 225805
date: Sat, 05 Nov 2022 03:47:20 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
x-powered-by: W3 Total Cache/2.2.6
pragma: public
alt-svc: quic=":443"; ma=2592000; v="43,46", h3-Q043=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-25=":443"; ma=2592000, h3-27=":443"; ma=2592000
X-Firefox-Spdy: h2
bizuz.com/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-vendors-style.x34259.css
35.200.241.195200 OK 1.1 kB URL HTTP/2 bizuz.com/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-vendors-style.x34259.css
IP 35.200.241.195:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (4933), with no line terminators
Hash 8f2da34c6f082c7bec00f9cca661fd59
d0de5b6b29a9788a64826b833465a9d08f7c2ab7
d461fea6636b26aab698f636b2518709cb79416c7d3916d6b03497c4d75befdd
GET /wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-vendors-style.x34259.css HTTP/1.1
Host: bizuz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bizuz.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Sun, 05 Nov 2023 03:47:21 GMT
content-type: text/css
last-modified: Fri, 04 Mar 2022 17:46:18 GMT
etag: "1345-6222506a-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1109
date: Sat, 05 Nov 2022 03:47:21 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
pragma: public
x-powered-by: W3 Total Cache/2.2.6
X-Firefox-Spdy: h2
bizuz.com/wp-includes/css/dist/components/style.min.x34259.css
35.200.241.195200 OK 15 kB URL HTTP/2 bizuz.com/wp-includes/css/dist/components/style.min.x34259.css
IP 35.200.241.195:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type Unicode text, UTF-8 text, with very long lines (43993)
Hash 69d96ca27b38ae36ebd204a6e72c1bd8
31b98ce104a957806a56768818fa07c4ddd90527
1d8677afad46fd8fd51981c5918ff873dcfd93240aad83fd7cbc790e053fbe41
GET /wp-includes/css/dist/components/style.min.x34259.css HTTP/1.1
Host: bizuz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bizuz.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Sun, 05 Nov 2023 03:47:21 GMT
content-type: text/css
last-modified: Wed, 07 Apr 2021 11:14:02 GMT
etag: "1b375-606d93fa-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 15173
date: Sat, 05 Nov 2022 03:47:21 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
pragma: public
x-powered-by: W3 Total Cache/2.2.6
X-Firefox-Spdy: h2
bizuz.com/wp-includes/css/dist/block-editor/style.min.x34259.css
35.200.241.195200 OK 12 kB URL HTTP/2 bizuz.com/wp-includes/css/dist/block-editor/style.min.x34259.css
IP 35.200.241.195:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type Unicode text, UTF-8 text, with very long lines (54131)
Hash 9a8d8436456c27534ef951369eaa2262
7334f1caeb92d029fd0bcfe4a52799962f73aeea
a845b42216b6e74927da2916cfe9782db94a9c31859031b0a8fbc4fb7a55c511
GET /wp-includes/css/dist/block-editor/style.min.x34259.css HTTP/1.1
Host: bizuz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bizuz.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Sun, 05 Nov 2023 03:47:21 GMT
content-type: text/css
last-modified: Tue, 14 Sep 2021 02:13:56 GMT
etag: "16b52-61400564-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 11604
date: Sat, 05 Nov 2022 03:47:21 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
pragma: public
x-powered-by: W3 Total Cache/2.2.6
X-Firefox-Spdy: h2
bizuz.com/wp-includes/css/dist/nux/style.min.x34259.css
35.200.241.195200 OK 674 B URL HTTP/2 bizuz.com/wp-includes/css/dist/nux/style.min.x34259.css
IP 35.200.241.195:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (2146)
Hash b21f093e7adac2cb6678b8be9eb1998d
b56a8ca4965c5abf47b8c02ccbf204732eb2abaa
443c3ec07a284e9d1d2f18e54610ab50d18a2972609e29d9052cdfaf6f580a6c
GET /wp-includes/css/dist/nux/style.min.x34259.css HTTP/1.1
Host: bizuz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bizuz.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Sun, 05 Nov 2023 03:47:21 GMT
content-type: text/css
last-modified: Wed, 07 Apr 2021 11:14:02 GMT
etag: "a62-606d93fa-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 674
date: Sat, 05 Nov 2022 03:47:21 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
pragma: public
x-powered-by: W3 Total Cache/2.2.6
X-Firefox-Spdy: h2
bizuz.com/wp-includes/css/dist/editor/style.min.x34259.css
35.200.241.195200 OK 3.6 kB URL HTTP/2 bizuz.com/wp-includes/css/dist/editor/style.min.x34259.css
IP 35.200.241.195:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type Unicode text, UTF-8 text, with very long lines (22594), with no line terminators
Hash 39a28618b4d12eaaefb027b0a64f0692
4465df3767c4a6afef3d04f1a5c80a8dbddbaae0
baea4027eb110081cdaba7969cf971a11c4c227836d9df2a939a947931d23c12
GET /wp-includes/css/dist/editor/style.min.x34259.css HTTP/1.1
Host: bizuz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bizuz.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Sun, 05 Nov 2023 03:47:21 GMT
content-type: text/css
last-modified: Wed, 07 Apr 2021 11:14:02 GMT
etag: "5862-606d93fa-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3602
date: Sat, 05 Nov 2022 03:47:21 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
pragma: public
x-powered-by: W3 Total Cache/2.2.6
X-Firefox-Spdy: h2
bizuz.com/wp-content/plugins/edumax-core/assets/css/blocks.style.build.x34259.css
35.200.241.195200 OK 3.3 kB URL HTTP/2 bizuz.com/wp-content/plugins/edumax-core/assets/css/blocks.style.build.x34259.css
IP 35.200.241.195:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (14908)
Hash f40835e5a038734fbead15a1636eaad6
9d17768aa8c46a9a392d964216a7c1e618ea0b28
6273a9058a48ececbcc4823fa51e192c5c9040000af70224939f6f805717211e
GET /wp-content/plugins/edumax-core/assets/css/blocks.style.build.x34259.css HTTP/1.1
Host: bizuz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bizuz.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Sun, 05 Nov 2023 03:47:21 GMT
content-type: text/css
last-modified: Tue, 19 Jan 2021 08:09:12 GMT
etag: "5c1f-600693a8-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3335
date: Sat, 05 Nov 2022 03:47:21 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
pragma: public
x-powered-by: W3 Total Cache/2.2.6
X-Firefox-Spdy: h2
bizuz.com/wp-content/plugins/embedpress/Gutenberg/dist/blocks.style.build.x34259.css
35.200.241.195200 OK 1.4 kB URL HTTP/2 bizuz.com/wp-content/plugins/embedpress/Gutenberg/dist/blocks.style.build.x34259.css
IP 35.200.241.195:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (2974)
Hash beac952384896dd9ad6fe436f1457d41
12f27dbae5005a2af252d602d5301ef964b4964c
d4ea830b82d217d821b36e75313e54bf9fcbf24de5147db935adaee5ed8f55fb
GET /wp-content/plugins/embedpress/Gutenberg/dist/blocks.style.build.x34259.css HTTP/1.1
Host: bizuz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bizuz.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Sun, 05 Nov 2023 03:47:21 GMT
content-type: text/css
last-modified: Sat, 29 Oct 2022 07:27:06 GMT
etag: "1813-635cd5ca-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1365
date: Sat, 05 Nov 2022 03:47:21 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
pragma: public
x-powered-by: W3 Total Cache/2.2.6
X-Firefox-Spdy: h2
bizuz.com/wp-content/plugins/contact-form-7/includes/css/styles.x34259.css
35.200.241.195200 OK 848 B URL HTTP/2 bizuz.com/wp-content/plugins/contact-form-7/includes/css/styles.x34259.css
IP 35.200.241.195:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
Hash c962ba8e7d42ff9da18392b41dad5151
7b89bc5e6ad161df2e6d7f7fb3ad894aa04b827f
322a4949c5bdd82eb80c13bbbd407ce30a7ad226685c54270d246cb6960e524e
GET /wp-content/plugins/contact-form-7/includes/css/styles.x34259.css HTTP/1.1
Host: bizuz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bizuz.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Sun, 05 Nov 2023 03:47:21 GMT
content-type: text/css
last-modified: Fri, 04 Mar 2022 17:43:50 GMT
etag: "aab-62224fd6-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 848
date: Sat, 05 Nov 2022 03:47:21 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
pragma: public
x-powered-by: W3 Total Cache/2.2.6
X-Firefox-Spdy: h2
bizuz.com/wp-content/plugins/edumax-core/assets/css/themeum-core.x34259.css
35.200.241.195200 OK 4.0 kB URL HTTP/2 bizuz.com/wp-content/plugins/edumax-core/assets/css/themeum-core.x34259.css
IP 35.200.241.195:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (458)
Hash 9cda9b48cd0d1855d71a732be9663bfa
ab4fb8efa56882d2aa2e8471f5c12f357c2aef26
3f157c7706e2ec472dbfb55df9f05b3ac5428854eba9d05d1f0daaf59c868a66
GET /wp-content/plugins/edumax-core/assets/css/themeum-core.x34259.css HTTP/1.1
Host: bizuz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bizuz.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Sun, 05 Nov 2023 03:47:21 GMT
content-type: text/css
last-modified: Tue, 19 Jan 2021 08:09:12 GMT
etag: "53ae-600693a8-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3977
date: Sat, 05 Nov 2022 03:47:21 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
pragma: public
x-powered-by: W3 Total Cache/2.2.6
X-Firefox-Spdy: h2
bizuz.com/wp-content/plugins/embedpress/assets/css/embedpress.x34259.css
35.200.241.195200 OK 2.1 kB URL HTTP/2 bizuz.com/wp-content/plugins/embedpress/assets/css/embedpress.x34259.css
IP 35.200.241.195:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type assembler source text\012- assembler source, ASCII text
Hash 3e07422a5baa1fb6a4aec2f39c09ffb7
a47a13785f8805a71de7fd33463c7a68181709d0
16add78262ff2ac847afd01364794afb5d3b17edfb94e718668e1812a772ce65
GET /wp-content/plugins/embedpress/assets/css/embedpress.x34259.css HTTP/1.1
Host: bizuz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bizuz.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Sun, 05 Nov 2023 03:47:21 GMT
content-type: text/css
last-modified: Sat, 29 Oct 2022 07:27:06 GMT
etag: "26f7-635cd5ca-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2141
date: Sat, 05 Nov 2022 03:47:21 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
pragma: public
x-powered-by: W3 Total Cache/2.2.6
X-Firefox-Spdy: h2
bizuz.com/wp-content/plugins/tutor/assets/css/tutor-icon.min.x34259.css
35.200.241.195200 OK 2.5 kB URL HTTP/2 bizuz.com/wp-content/plugins/tutor/assets/css/tutor-icon.min.x34259.css
IP 35.200.241.195:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (14849)
Hash 93fda252b3eed24c9d8a7a86f383ab24
96c54559e2e46c3b96b89729ea19f90c64b5e39a
4aafe13e3582e9cf0da4adddf65c0a862c23bdf506e6da3b766d222bd591aca7
GET /wp-content/plugins/tutor/assets/css/tutor-icon.min.x34259.css HTTP/1.1
Host: bizuz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bizuz.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Sun, 05 Nov 2023 03:47:21 GMT
content-type: text/css
last-modified: Sat, 29 Oct 2022 07:29:13 GMT
etag: "3a02-635cd649-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2549
date: Sat, 05 Nov 2022 03:47:21 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
pragma: public
x-powered-by: W3 Total Cache/2.2.6
X-Firefox-Spdy: h2
bizuz.com/wp-content/plugins/tutor-pro/addons/google-classroom/assets/css/classroom-frontend.x34259.css
35.200.241.195200 OK 1.2 kB URL HTTP/2 bizuz.com/wp-content/plugins/tutor-pro/addons/google-classroom/assets/css/classroom-frontend.x34259.css
IP 35.200.241.195:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
Hash dd70fec7dea0394a1f79841d083740bb
39cf068919faf984bfe069034e60ce9ded278f07
b88cf56690878d6264ecac02fa8b8559c8c1e60edbe76514361e6efa4b08e104
GET /wp-content/plugins/tutor-pro/addons/google-classroom/assets/css/classroom-frontend.x34259.css HTTP/1.1
Host: bizuz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bizuz.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Sun, 05 Nov 2023 03:47:21 GMT
content-type: text/css
last-modified: Fri, 06 Aug 2021 15:59:51 GMT
etag: "1635-610d5c77-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1221
date: Sat, 05 Nov 2022 03:47:21 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
pragma: public
x-powered-by: W3 Total Cache/2.2.6
X-Firefox-Spdy: h2
bizuz.com/wp-content/plugins/tutor-pro/addons/push-notification/assets/css/permission.x34259.css
35.200.241.195200 OK 495 B URL HTTP/2 bizuz.com/wp-content/plugins/tutor-pro/addons/push-notification/assets/css/permission.x34259.css
IP 35.200.241.195:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
Hash 03f5bde3b4a05fab5822e1f75ef79d5c
6e961e4416d637b23968ac9eea31309da215aaea
e6c1d704c8bbc64901b967d0573e90f5c492df974fb36bc2d2a1a01dc0b276df
GET /wp-content/plugins/tutor-pro/addons/push-notification/assets/css/permission.x34259.css HTTP/1.1
Host: bizuz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bizuz.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Sun, 05 Nov 2023 03:47:21 GMT
content-type: text/css
last-modified: Fri, 06 Aug 2021 15:59:51 GMT
etag: "6d6-610d5c77-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 495
date: Sat, 05 Nov 2022 03:47:21 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
pragma: public
x-powered-by: W3 Total Cache/2.2.6
X-Firefox-Spdy: h2
bizuz.com/wp-content/plugins/tutor-pro/addons/tutor-certificate/assets/css/certificate-field.x34259.css
35.200.241.195200 OK 173 B URL HTTP/2 bizuz.com/wp-content/plugins/tutor-pro/addons/tutor-certificate/assets/css/certificate-field.x34259.css
IP 35.200.241.195:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
Hash ae3c7852b246c0855c97fe1004827a41
ededdf41ad964aed739bd9d49b7317817bf25fc5
d7cd180e5c08439b6822cd75ae92161aa0e768cf727e670a83bde0ede1972f85
GET /wp-content/plugins/tutor-pro/addons/tutor-certificate/assets/css/certificate-field.x34259.css HTTP/1.1
Host: bizuz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bizuz.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Sun, 05 Nov 2023 03:47:21 GMT
content-type: text/css
last-modified: Fri, 06 Aug 2021 15:59:51 GMT
etag: "190-610d5c77-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 173
date: Sat, 05 Nov 2022 03:47:21 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
pragma: public
x-powered-by: W3 Total Cache/2.2.6
X-Firefox-Spdy: h2
bizuz.com/wp-content/plugins/tutor-pro/addons/tutor-zoom/assets/css/jquery-ui-timepicker.x34259.css
35.200.241.195200 OK 450 B URL HTTP/2 bizuz.com/wp-content/plugins/tutor-pro/addons/tutor-zoom/assets/css/jquery-ui-timepicker.x34259.css
IP 35.200.241.195:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with CRLF line terminators
Hash 8447320a253574d9fcac23cdbb566d4a
7b1e9224385897614f903fc27204c2f8cced8f09
33dd2a33932a49a4a4a95227a96815d9d8e2346a854a7804ffc03e482c8c27ed
GET /wp-content/plugins/tutor-pro/addons/tutor-zoom/assets/css/jquery-ui-timepicker.x34259.css HTTP/1.1
Host: bizuz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bizuz.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Sun, 05 Nov 2023 03:47:21 GMT
content-type: text/css
last-modified: Fri, 06 Aug 2021 15:59:51 GMT
etag: "7b6-610d5c77-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 450
date: Sat, 05 Nov 2022 03:47:21 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
pragma: public
x-powered-by: W3 Total Cache/2.2.6
X-Firefox-Spdy: h2
bizuz.com/wp-content/plugins/tutor-pro/addons/tutor-zoom/assets/css/common.x34259.css
35.200.241.195200 OK 1.1 kB URL HTTP/2 bizuz.com/wp-content/plugins/tutor-pro/addons/tutor-zoom/assets/css/common.x34259.css
IP 35.200.241.195:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
Hash 166ddf0289f07ac3f1ac3f2a4ce8e7e4
5c25b9686459fac9aed157420beed6057b98f72f
7078248be7d0d83948b9bf6adcd00793288a652aa0ea7cfea553020fe2998dfe
GET /wp-content/plugins/tutor-pro/addons/tutor-zoom/assets/css/common.x34259.css HTTP/1.1
Host: bizuz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bizuz.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Sun, 05 Nov 2023 03:47:21 GMT
content-type: text/css
last-modified: Fri, 06 Aug 2021 15:59:51 GMT
etag: "15d6-610d5c77-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1144
date: Sat, 05 Nov 2022 03:47:21 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
pragma: public
x-powered-by: W3 Total Cache/2.2.6
X-Firefox-Spdy: h2
bizuz.com/wp-content/plugins/woocommerce/assets/css/woocommerce-layout.x34259.css
35.200.241.195200 OK 2.3 kB URL HTTP/2 bizuz.com/wp-content/plugins/woocommerce/assets/css/woocommerce-layout.x34259.css
IP 35.200.241.195:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (17809), with no line terminators
Hash 09d93f4de720fc11a2944fea38fcafcd
e46cf6a8d3373c7fa5feba0b30cd9b9983f719b2
cf900721be13309b96cf6c6f56b1c0a40194e8aea1b0a0361739219c9c0f9998
GET /wp-content/plugins/woocommerce/assets/css/woocommerce-layout.x34259.css HTTP/1.1
Host: bizuz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bizuz.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Sun, 05 Nov 2023 03:47:21 GMT
content-type: text/css
last-modified: Fri, 04 Mar 2022 17:46:17 GMT
etag: "4591-62225069-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2329
date: Sat, 05 Nov 2022 03:47:21 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
pragma: public
x-powered-by: W3 Total Cache/2.2.6
X-Firefox-Spdy: h2
bizuz.com/wp-content/plugins/woocommerce/assets/css/woocommerce.x34259.css
35.200.241.195200 OK 8.4 kB URL HTTP/2 bizuz.com/wp-content/plugins/woocommerce/assets/css/woocommerce.x34259.css
IP 35.200.241.195:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type Unicode text, UTF-8 text, with very long lines (62753), with no line terminators
Hash 60aea8fe062ea93aa6dfa342ea23b7fd
bf9a4843acf8f1f116ef2cae7fb40a9a2f37253a
7db430ef3124de87a8a33cf0ffe134a86bff67de803eea16f4b3ed4d2d569d4f
GET /wp-content/plugins/woocommerce/assets/css/woocommerce.x34259.css HTTP/1.1
Host: bizuz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bizuz.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Sun, 05 Nov 2023 03:47:21 GMT
content-type: text/css
last-modified: Fri, 04 Mar 2022 17:46:17 GMT
etag: "f523-62225069-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 8432
date: Sat, 05 Nov 2022 03:47:21 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
pragma: public
x-powered-by: W3 Total Cache/2.2.6
X-Firefox-Spdy: h2
bizuz.com/wp-content/plugins/wp-pagebuilder-pro/assets/css/wppb-pro-addon.x34259.css
35.200.241.195200 OK 3.1 kB URL HTTP/2 bizuz.com/wp-content/plugins/wp-pagebuilder-pro/assets/css/wppb-pro-addon.x34259.css
IP 35.200.241.195:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
Hash b97eb08a410e646263885a2f59f63664
7886d67b835930e2d845be3087c7391967c830aa
9b990f2d729d4ab2ea668d2656aa35c35f659a6986fc40cdf29919afd8def942
GET /wp-content/plugins/wp-pagebuilder-pro/assets/css/wppb-pro-addon.x34259.css HTTP/1.1
Host: bizuz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bizuz.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Sun, 05 Nov 2023 03:47:21 GMT
content-type: text/css
last-modified: Sat, 23 Jan 2021 06:01:09 GMT
etag: "5059-600bbba5-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3121
date: Sat, 05 Nov 2022 03:47:21 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
pragma: public
x-powered-by: W3 Total Cache/2.2.6
X-Firefox-Spdy: h2
bizuz.com/wp-content/plugins/header-footer-elementor/assets/css/header-footer-elementor.x34259.css
35.200.241.195200 OK 259 B URL HTTP/2 bizuz.com/wp-content/plugins/header-footer-elementor/assets/css/header-footer-elementor.x34259.css
IP 35.200.241.195:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
Hash 49736e2d926fb2846e2df8fc0a1b69f8
0c415addd3603df8843209de4fc448ef5c443761
be091ce2d9948f24a59c9d1578557cd92e8180e2318dc0a21308ca180071f8d0
GET /wp-content/plugins/header-footer-elementor/assets/css/header-footer-elementor.x34259.css HTTP/1.1
Host: bizuz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bizuz.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Sun, 05 Nov 2023 03:47:21 GMT
content-type: text/css
last-modified: Mon, 05 Sep 2022 10:16:33 GMT
etag: "308-6315cc81-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 259
date: Sat, 05 Nov 2022 03:47:21 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
pragma: public
x-powered-by: W3 Total Cache/2.2.6
X-Firefox-Spdy: h2
bizuz.com/wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.x34259.css
35.200.241.195200 OK 3.6 kB URL HTTP/2 bizuz.com/wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.x34259.css
IP 35.200.241.195:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (19233)
Hash af3bdf44d09914e8adb51fec560d8816
84bb225e096bab405868dd504e62133ba75cf1c1
4325dab21d3eb9efb8e285a0926be743f27e46446ccf5f9be65bb4b60c024152
GET /wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.x34259.css HTTP/1.1
Host: bizuz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bizuz.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Sun, 05 Nov 2023 03:47:21 GMT
content-type: text/css
last-modified: Sat, 29 Oct 2022 07:26:50 GMT
etag: "4b4f-635cd5ba-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3629
date: Sat, 05 Nov 2022 03:47:21 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
pragma: public
x-powered-by: W3 Total Cache/2.2.6
X-Firefox-Spdy: h2
bizuz.com/wp-content/plugins/elementor/assets/css/frontend-legacy.min.x34259.css
35.200.241.195200 OK 741 B URL HTTP/2 bizuz.com/wp-content/plugins/elementor/assets/css/frontend-legacy.min.x34259.css
IP 35.200.241.195:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (13766)
Hash 559ddb63026b93679bbcbfc98a0a05de
c1af455ac165dd9923dae839b75cde058f6e99c0
0913056dfc3b9ef3711992ae9ed773a45cffaa9fa5c6cd6c742aa2c3fd4fb9b4
GET /wp-content/plugins/elementor/assets/css/frontend-legacy.min.x34259.css HTTP/1.1
Host: bizuz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bizuz.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Sun, 05 Nov 2023 03:47:21 GMT
content-type: text/css
last-modified: Sat, 29 Oct 2022 07:26:50 GMT
etag: "35ed-635cd5ba-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 741
date: Sat, 05 Nov 2022 03:47:21 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
pragma: public
x-powered-by: W3 Total Cache/2.2.6
X-Firefox-Spdy: h2
bizuz.com/wp-content/uploads/elementor/css/post-1.x34259.css
35.200.241.195200 OK 320 B URL HTTP/2 bizuz.com/wp-content/uploads/elementor/css/post-1.x34259.css
IP 35.200.241.195:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (1152), with no line terminators
Hash 08010aa19447d03bf7cced2b67669170
5705b46ef46be0f77ba394a162dc9007f48392b0
5d6d2539189794a684ca624cd5452d8a9e6409f9f578318e8ee3072bab88484d
GET /wp-content/uploads/elementor/css/post-1.x34259.css HTTP/1.1
Host: bizuz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bizuz.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Sun, 05 Nov 2023 03:47:21 GMT
content-type: text/css
last-modified: Sat, 29 Oct 2022 07:27:30 GMT
etag: "480-635cd5e2-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 320
date: Sat, 05 Nov 2022 03:47:21 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
pragma: public
x-powered-by: W3 Total Cache/2.2.6
X-Firefox-Spdy: h2
bizuz.com/wp-content/plugins/embedpress/assets/css/embedpress-elementor.x34259.css
35.200.241.195200 OK 1.6 kB URL HTTP/2 bizuz.com/wp-content/plugins/embedpress/assets/css/embedpress-elementor.x34259.css
IP 35.200.241.195:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type assembler source text\012- assembler source, ASCII text
Hash 0190df0c0ebc1e1cc22fd3decf86df43
205e66508bbff9a3f5e3a777efa03976ddcf3117
d3f557c6c129ba052a40313dfce44d684232f6c026707ce90aa1a16d24322218
GET /wp-content/plugins/embedpress/assets/css/embedpress-elementor.x34259.css HTTP/1.1
Host: bizuz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bizuz.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Sun, 05 Nov 2023 03:47:21 GMT
content-type: text/css
last-modified: Sat, 29 Oct 2022 07:27:06 GMT
etag: "1e3a-635cd5ca-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1627
date: Sat, 05 Nov 2022 03:47:21 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
pragma: public
x-powered-by: W3 Total Cache/2.2.6
X-Firefox-Spdy: h2
bizuz.com/wp-content/uploads/elementor/css/global.x34259.css
35.200.241.195200 OK 2.5 kB URL HTTP/2 bizuz.com/wp-content/uploads/elementor/css/global.x34259.css
IP 35.200.241.195:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (20709)
Hash 9b136330146f9eb6f16e96a9a64b444f
3b9b2b143f3e06be3fe9908e50618513578800dc
d9cfdff8cbdf961621faa7be825427d98baefc0973d72e30cf13fa4d1a39d624
GET /wp-content/uploads/elementor/css/global.x34259.css HTTP/1.1
Host: bizuz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bizuz.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Sun, 05 Nov 2023 03:47:21 GMT
content-type: text/css
last-modified: Sat, 29 Oct 2022 07:27:31 GMT
etag: "7fad-635cd5e3-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2456
date: Sat, 05 Nov 2022 03:47:21 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
pragma: public
x-powered-by: W3 Total Cache/2.2.6
X-Firefox-Spdy: h2
bizuz.com/wp-content/uploads/elementor/css/post-1422.x34259.css
35.200.241.195200 OK 1.2 kB URL HTTP/2 bizuz.com/wp-content/uploads/elementor/css/post-1422.x34259.css
IP 35.200.241.195:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (13572), with no line terminators
Hash 0e6854a6b49df8f258388e8afcc10296
56a2b014be6bd757ac1e5f33eba446d002c3a4b8
68100462ef46ecc6f4344b094970ec344d5768749267dc1b77679e60cdb9165d
GET /wp-content/uploads/elementor/css/post-1422.x34259.css HTTP/1.1
Host: bizuz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bizuz.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Sun, 05 Nov 2023 03:47:21 GMT
content-type: text/css
last-modified: Sat, 29 Oct 2022 07:27:31 GMT
etag: "3504-635cd5e3-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1166
date: Sat, 05 Nov 2022 03:47:21 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
pragma: public
x-powered-by: W3 Total Cache/2.2.6
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash b517df705fc2add80e589293440473d2
0777d2d1e4a7360033388015e2875105cc7d318d
f0ce95ff45e1037f928f54193e681c0644a75e1b38f5185642da89e303716dd6
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 902
Cache-Control: max-age=132384
Content-Type: application/ocsp-response
Date: Sat, 05 Nov 2022 03:47:21 GMT
Etag: "63653b63-116"
Expires: Sun, 06 Nov 2022 16:33:45 GMT
Last-Modified: Fri, 04 Nov 2022 16:18:43 GMT
Server: ECS (ska/F70E)
X-Cache: HIT
Content-Length: 278
bizuz.com/wp-content/plugins/header-footer-elementor/inc/widgets-css/frontend.x34259.css
35.200.241.195200 OK 7.4 kB URL HTTP/2 bizuz.com/wp-content/plugins/header-footer-elementor/inc/widgets-css/frontend.x34259.css
IP 35.200.241.195:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type Unicode text, UTF-8 text, with very long lines (1646)
Hash 806afc62d640eb03fccbd5fe46ed8666
31259bb9e403fbe379125ea0c562ac11d76dc4d7
f7ceb3661377e98e71ccebe4d91336ac77e4e62a84bff79a1e6f865f3d00c26f
GET /wp-content/plugins/header-footer-elementor/inc/widgets-css/frontend.x34259.css HTTP/1.1
Host: bizuz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bizuz.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Sun, 05 Nov 2023 03:47:21 GMT
content-type: text/css
last-modified: Mon, 05 Sep 2022 10:16:33 GMT
etag: "127a4-6315cc81-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 7374
date: Sat, 05 Nov 2022 03:47:21 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
pragma: public
x-powered-by: W3 Total Cache/2.2.6
X-Firefox-Spdy: h2
bizuz.com/wp-includes/css/buttons.min.x34259.css
35.200.241.195200 OK 1.3 kB URL HTTP/2 bizuz.com/wp-includes/css/buttons.min.x34259.css
IP 35.200.241.195:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (5819)
Hash 17db97455648bb05ee8e5683f18d5db7
40db890ba7d604c300f053185cfa48e4249aa6df
330ad539cfe68b5cd70dd1430d49f7f8e8a6192077fe3c60562bc413d2fb9e47
GET /wp-includes/css/buttons.min.x34259.css HTTP/1.1
Host: bizuz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bizuz.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Sun, 05 Nov 2023 03:47:21 GMT
content-type: text/css
last-modified: Wed, 07 Apr 2021 11:14:02 GMT
etag: "16de-606d93fa-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1255
date: Sat, 05 Nov 2022 03:47:21 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
pragma: public
x-powered-by: W3 Total Cache/2.2.6
X-Firefox-Spdy: h2
bizuz.com/wp-includes/js/mediaelement/mediaelementplayer-legacy.min.x34259.css
35.200.241.195200 OK 2.4 kB URL HTTP/2 bizuz.com/wp-includes/js/mediaelement/mediaelementplayer-legacy.min.x34259.css
IP 35.200.241.195:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (11256), with no line terminators
Hash ce94f62588d05264ac0148712111cb11
518bcd922f54169aeb199c0ccbc5877165ac218e
84ab658a69c39f424be0b27f61d612447d01606fce33beb962cbea53627d8c81
GET /wp-includes/js/mediaelement/mediaelementplayer-legacy.min.x34259.css HTTP/1.1
Host: bizuz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bizuz.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Sun, 05 Nov 2023 03:47:21 GMT
content-type: text/css
last-modified: Wed, 07 Apr 2021 11:14:03 GMT
etag: "2bf8-606d93fb-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2394
date: Sat, 05 Nov 2022 03:47:21 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
pragma: public
x-powered-by: W3 Total Cache/2.2.6
X-Firefox-Spdy: h2
bizuz.com/wp-includes/js/mediaelement/wp-mediaelement.min.x34259.css
35.200.241.195200 OK 982 B URL HTTP/2 bizuz.com/wp-includes/js/mediaelement/wp-mediaelement.min.x34259.css
IP 35.200.241.195:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (4186), with no line terminators
Hash 24f4d7f425e792ab35adaab50816e54a
9e25bf79b674ddb7ba09ad7f118c50ec473c02c8
1c78bfb4d523785a4ebd37bb1f79f214f9bdb16673f7cc50805f7f1a26ad7f83
GET /wp-includes/js/mediaelement/wp-mediaelement.min.x34259.css HTTP/1.1
Host: bizuz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bizuz.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Sun, 05 Nov 2023 03:47:21 GMT
content-type: text/css
last-modified: Fri, 07 Jun 2019 20:45:02 GMT
etag: "105a-5cfaccce-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 982
date: Sat, 05 Nov 2022 03:47:21 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
pragma: public
x-powered-by: W3 Total Cache/2.2.6
X-Firefox-Spdy: h2
bizuz.com/wp-includes/css/media-views.min.x34259.css
35.200.241.195200 OK 8.1 kB URL HTTP/2 bizuz.com/wp-includes/css/media-views.min.x34259.css
IP 35.200.241.195:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (42197)
Hash 0a22571f131ff8b753544b89bb5f41ec
b9672e97ddb54154c1f1a46a5be3b3358835bdad
56daae071f9ec85422ff8a6ef3c4f8f119c27053ecdfd929313f18c6bbd8733c
GET /wp-includes/css/media-views.min.x34259.css HTTP/1.1
Host: bizuz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bizuz.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Sun, 05 Nov 2023 03:47:21 GMT
content-type: text/css
last-modified: Fri, 16 Apr 2021 04:36:23 GMT
etag: "b1bc-60791447-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 8052
date: Sat, 05 Nov 2022 03:47:21 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
pragma: public
x-powered-by: W3 Total Cache/2.2.6
X-Firefox-Spdy: h2
bizuz.com/wp-includes/js/imgareaselect/imgareaselect.x34259.css
35.200.241.195200 OK 215 B URL HTTP/2 bizuz.com/wp-includes/js/imgareaselect/imgareaselect.x34259.css
IP 35.200.241.195:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
Hash 581e0aefdc8ff0166148998184c95c12
eb1ffa746689df7d6f10a593787117df9c1deeed
bdab08458c617500054153fad13a1b41dfdf0011047e83e0848eee6ef2cd80e3
GET /wp-includes/js/imgareaselect/imgareaselect.x34259.css HTTP/1.1
Host: bizuz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bizuz.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Sun, 05 Nov 2023 03:47:21 GMT
content-type: text/css
last-modified: Wed, 25 Apr 2012 21:49:57 GMT
etag: "316-4f987185-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 215
date: Sat, 05 Nov 2022 03:47:21 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
pragma: public
x-powered-by: W3 Total Cache/2.2.6
X-Firefox-Spdy: h2
bizuz.com/wp-content/themes/edumax/css/fontawesome.all.min.x34259.css
35.200.241.195200 OK 10 kB URL HTTP/2 bizuz.com/wp-content/themes/edumax/css/fontawesome.all.min.x34259.css
IP 35.200.241.195:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (48410)
Hash 66ae1e920bd8e5de820fb2145bd2cced
e09bca5d1ff1f52c608da8ee9cb266b130179234
dfba654c0002414f71923d52dbd56e42c789b6c0edcbe07d1aa804c28e0f0eed
GET /wp-content/themes/edumax/css/fontawesome.all.min.x34259.css HTTP/1.1
Host: bizuz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bizuz.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Sun, 05 Nov 2023 03:47:21 GMT
content-type: text/css
last-modified: Wed, 20 Jan 2021 18:31:53 GMT
etag: "bdd3-60087719-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 10181
date: Sat, 05 Nov 2022 03:47:21 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
pragma: public
x-powered-by: W3 Total Cache/2.2.6
X-Firefox-Spdy: h2
bizuz.com/wp-content/themes/edumax/css/nice-select.x34259.css
35.200.241.195200 OK 931 B URL HTTP/2 bizuz.com/wp-content/themes/edumax/css/nice-select.x34259.css
IP 35.200.241.195:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
Hash bf85a978164301e5d4261f0ffedafeb9
53abf15e06137a02072b5740c6c1db3f8ac072e2
63ff6cf9765c7f854982d74c94dc3db9c8a44da5560e38866334e9c09b8692a6
GET /wp-content/themes/edumax/css/nice-select.x34259.css HTTP/1.1
Host: bizuz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bizuz.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Sun, 05 Nov 2023 03:47:21 GMT
content-type: text/css
last-modified: Wed, 20 Jan 2021 18:31:53 GMT
etag: "fa7-60087719-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 931
date: Sat, 05 Nov 2022 03:47:21 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
pragma: public
x-powered-by: W3 Total Cache/2.2.6
X-Firefox-Spdy: h2
bizuz.com/wp-content/themes/edumax/css/main.x34259.css
35.200.241.195200 OK 9.9 kB URL HTTP/2 bizuz.com/wp-content/themes/edumax/css/main.x34259.css
IP 35.200.241.195:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (562)
Hash bf2eb71aba4a59c6cf3772cea91776f2
7c534abc5f6dd58f853daef1a771c60dbd167f9e
fdef3dd6ef7246c5ccb1fd57660ba24206777ddc97c303f675509b552c110e57
GET /wp-content/themes/edumax/css/main.x34259.css HTTP/1.1
Host: bizuz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bizuz.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Sun, 05 Nov 2023 03:47:21 GMT
content-type: text/css
last-modified: Wed, 20 Jan 2021 18:31:53 GMT
etag: "dc1f-60087719-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 9879
date: Sat, 05 Nov 2022 03:47:21 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
pragma: public
x-powered-by: W3 Total Cache/2.2.6
X-Firefox-Spdy: h2
bizuz.com/wp-content/themes/edumax/css/woocommerce.x34259.css
35.200.241.195200 OK 5.0 kB URL HTTP/2 bizuz.com/wp-content/themes/edumax/css/woocommerce.x34259.css
IP 35.200.241.195:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
Hash d2dc19ddeeb5f0b9960c233bc9ec33fb
7805fdac678b6a8cd763c56aac4d942a724231c6
b4a732035c21697f48710d941a8e1b7f38121619b6aaddd5ec347eabdcb74ab6
GET /wp-content/themes/edumax/css/woocommerce.x34259.css HTTP/1.1
Host: bizuz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bizuz.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Sun, 05 Nov 2023 03:47:21 GMT
content-type: text/css
last-modified: Wed, 20 Jan 2021 18:31:53 GMT
etag: "71e2-60087719-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 5047
date: Sat, 05 Nov 2022 03:47:21 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
pragma: public
x-powered-by: W3 Total Cache/2.2.6
X-Firefox-Spdy: h2
bizuz.com/wp-content/themes/edumax/style.x34259.css
35.200.241.195200 OK 1.7 kB URL HTTP/2 bizuz.com/wp-content/themes/edumax/style.x34259.css
IP 35.200.241.195:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type Unicode text, UTF-8 text, with very long lines (431)
Hash 7f78b563d04d5ef80f18451a0aa9f4a5
17190cb650ff6b2308b6b104dcd03024f9237ad6
dff7317d6807d055692345d18b607e11dc629d386694543bedeec72e93455a30
GET /wp-content/themes/edumax/style.x34259.css HTTP/1.1
Host: bizuz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bizuz.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Sun, 05 Nov 2023 03:47:21 GMT
content-type: text/css
last-modified: Wed, 20 Jan 2021 18:31:53 GMT
etag: "17ba-60087719-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1680
date: Sat, 05 Nov 2022 03:47:21 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
pragma: public
x-powered-by: W3 Total Cache/2.2.6
X-Firefox-Spdy: h2
bizuz.com/wp-content/plugins/wp-pagebuilder/addons/posts/assets/css/posts-addon.x34259.css
35.200.241.195200 OK 241 B URL HTTP/2 bizuz.com/wp-content/plugins/wp-pagebuilder/addons/posts/assets/css/posts-addon.x34259.css
IP 35.200.241.195:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
Hash 048cc790043547a3618cd43d44f42b73
5445ca5b8f90a05e695d0f76acad0a6d09623465
85a2817391982e910387916110af0a8e1dd81d8ed20065a43727f9b883acf419
GET /wp-content/plugins/wp-pagebuilder/addons/posts/assets/css/posts-addon.x34259.css HTTP/1.1
Host: bizuz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bizuz.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Sun, 05 Nov 2023 03:47:21 GMT
content-type: text/css
last-modified: Mon, 05 Sep 2022 10:21:32 GMT
etag: "1ef-6315cdac-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 241
date: Sat, 05 Nov 2022 03:47:21 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
pragma: public
x-powered-by: W3 Total Cache/2.2.6
X-Firefox-Spdy: h2
bizuz.com/wp-content/plugins/wp-pagebuilder-pro/addons/animated_heading/assets/css/thm-animated-heading.x34259.css
35.200.241.195200 OK 2.6 kB URL HTTP/2 bizuz.com/wp-content/plugins/wp-pagebuilder-pro/addons/animated_heading/assets/css/thm-animated-heading.x34259.css
IP 35.200.241.195:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
Hash 76a0ae21a017fef1f522d7839328751c
a183ffb4425d9e3d4197edafb432be9cd79b5b55
5100ba789e63feb55c43fb7faa21384452d21ceced7da820a555bcaa3efc2ac9
GET /wp-content/plugins/wp-pagebuilder-pro/addons/animated_heading/assets/css/thm-animated-heading.x34259.css HTTP/1.1
Host: bizuz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bizuz.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Sun, 05 Nov 2023 03:47:21 GMT
content-type: text/css
last-modified: Sat, 23 Jan 2021 06:01:09 GMT
etag: "5c99-600bbba5-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2603
date: Sat, 05 Nov 2022 03:47:21 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
pragma: public
x-powered-by: W3 Total Cache/2.2.6
X-Firefox-Spdy: h2
bizuz.com/wp-content/plugins/ubermenu/pro/assets/css/ubermenu.min.x34259.css
35.200.241.195200 OK 8.2 kB URL HTTP/2 bizuz.com/wp-content/plugins/ubermenu/pro/assets/css/ubermenu.min.x34259.css
IP 35.200.241.195:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (65536), with no line terminators
Hash b5c9748ee46666e229256a8a82cd2785
7e86ec0dc10b5939b7a8a04c89513bce5e52730d
f5a40a7d0f7cf189b989ad6d1767594deba166059fae1b070d23278458f067d7
GET /wp-content/plugins/ubermenu/pro/assets/css/ubermenu.min.x34259.css HTTP/1.1
Host: bizuz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bizuz.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Sun, 05 Nov 2023 03:47:21 GMT
content-type: text/css
last-modified: Fri, 11 Dec 2020 08:59:11 GMT
etag: "10208-5fd334df-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 8220
date: Sat, 05 Nov 2022 03:47:21 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
pragma: public
x-powered-by: W3 Total Cache/2.2.6
X-Firefox-Spdy: h2
bizuz.com/wp-content/plugins/ubermenu/assets/css/skins/blackwhite.x34259.css
35.200.241.195200 OK 632 B URL HTTP/2 bizuz.com/wp-content/plugins/ubermenu/assets/css/skins/blackwhite.x34259.css
IP 35.200.241.195:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
Hash eeda2f922d5fca89e03b17a950d0ef28
724f47bd941a90fdd75d7277946e3efe95dff481
8fa327a9ec8d6276f689aca61376e6ccb2b5d4386023b2044caaf03746488191
GET /wp-content/plugins/ubermenu/assets/css/skins/blackwhite.x34259.css HTTP/1.1
Host: bizuz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bizuz.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Sun, 05 Nov 2023 03:47:21 GMT
content-type: text/css
last-modified: Fri, 11 Dec 2020 08:59:11 GMT
etag: "faf-5fd334df-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 632
date: Sat, 05 Nov 2022 03:47:21 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
pragma: public
x-powered-by: W3 Total Cache/2.2.6
X-Firefox-Spdy: h2
bizuz.com/wp-content/plugins/ubermenu/assets/fontawesome/css/all.min.x34259.css
35.200.241.195200 OK 12 kB URL HTTP/2 bizuz.com/wp-content/plugins/ubermenu/assets/fontawesome/css/all.min.x34259.css
IP 35.200.241.195:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (58392)
Hash b2eab3e480d5efc1084c872b4ac38887
374df6f633ee2c71385d26a8988abe75d5fcbc6f
1da2563dfbad2891323e815976bff4eadefcd13cac3e86ade89fcc9487dc42a6
GET /wp-content/plugins/ubermenu/assets/fontawesome/css/all.min.x34259.css HTTP/1.1
Host: bizuz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bizuz.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Sun, 05 Nov 2023 03:47:21 GMT
content-type: text/css
last-modified: Fri, 11 Dec 2020 08:59:11 GMT
etag: "e4d2-5fd334df-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 12166
date: Sat, 05 Nov 2022 03:47:21 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
pragma: public
x-powered-by: W3 Total Cache/2.2.6
X-Firefox-Spdy: h2
bizuz.com/wp-content/plugins/wp-pagebuilder/assets/css/magnific-popup.x34259.css
35.200.241.195200 OK 1.8 kB URL HTTP/2 bizuz.com/wp-content/plugins/wp-pagebuilder/assets/css/magnific-popup.x34259.css
IP 35.200.241.195:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
Hash cc84749c2643bf71486625bff9be07b2
15502076abbb7242166ce0d2e56deff58de73a60
c5de1f8ec0f18e35c8723a137d590a58240340c3cc945deaedf928e1a35feb1a
GET /wp-content/plugins/wp-pagebuilder/assets/css/magnific-popup.x34259.css HTTP/1.1
Host: bizuz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bizuz.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Sun, 05 Nov 2023 03:47:21 GMT
content-type: text/css
last-modified: Mon, 05 Sep 2022 10:21:32 GMT
etag: "1e75-6315cdac-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1834
date: Sat, 05 Nov 2022 03:47:21 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
pragma: public
x-powered-by: W3 Total Cache/2.2.6
X-Firefox-Spdy: h2
bizuz.com/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-style.x34259.css
35.200.241.195200 OK 20 kB URL HTTP/2 bizuz.com/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-style.x34259.css
IP 35.200.241.195:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type Unicode text, UTF-8 text, with very long lines (65527), with no line terminators
Hash b67edb941c24a109fc1dc11bc0fad344
7af8b2197aaca63ee8bdb3de210c2a5f63baad9a
3f22ed7995a791b3434fc9ec202358e93fbeb2ba93ef8225f96bfb5a1412282e
GET /wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-style.x34259.css HTTP/1.1
Host: bizuz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bizuz.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Sun, 05 Nov 2023 03:47:21 GMT
content-type: text/css
last-modified: Fri, 04 Mar 2022 17:46:18 GMT
etag: "32f4b-6222506a-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 20303
date: Sat, 05 Nov 2022 03:47:21 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
pragma: public
x-powered-by: W3 Total Cache/2.2.6
X-Firefox-Spdy: h2
bizuz.com/wp-content/plugins/tutor/assets/css/tutor-front.min.x34259.css
35.200.241.195200 OK 17 kB URL HTTP/2 bizuz.com/wp-content/plugins/tutor/assets/css/tutor-front.min.x34259.css
IP 35.200.241.195:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (65536), with no line terminators
Hash 6aede78eb7bd48ac76a784bb51cf71bb
607f110fe23ea10dff870a9f55de742107a2bb4d
c4cf23ab560c4ae16cb89ab624e4b47f22c6cfc8966278d3c46e890d1c419407
GET /wp-content/plugins/tutor/assets/css/tutor-front.min.x34259.css HTTP/1.1
Host: bizuz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bizuz.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Sun, 05 Nov 2023 03:47:21 GMT
content-type: text/css
last-modified: Sat, 29 Oct 2022 07:29:13 GMT
etag: "1d594-635cd649-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 17016
date: Sat, 05 Nov 2022 03:47:21 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
pragma: public
x-powered-by: W3 Total Cache/2.2.6
X-Firefox-Spdy: h2
bizuz.com/wp-content/plugins/elementor/assets/css/frontend.min.x34259.css
35.200.241.195200 OK 19 kB URL HTTP/2 bizuz.com/wp-content/plugins/elementor/assets/css/frontend.min.x34259.css
IP 35.200.241.195:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (65497)
Hash 54beff7da4ba8514b4b8dad89200c2a8
638d59e6434fba38d325887782d93ef707c0e766
ab60206992a83173fdc53fef757170319b848679a29c630b23ab94784f4db7dd
GET /wp-content/plugins/elementor/assets/css/frontend.min.x34259.css HTTP/1.1
Host: bizuz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bizuz.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Sun, 05 Nov 2023 03:47:21 GMT
content-type: text/css
last-modified: Sat, 29 Oct 2022 07:26:50 GMT
etag: "28726-635cd5ba-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 18719
date: Sat, 05 Nov 2022 03:47:21 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
pragma: public
x-powered-by: W3 Total Cache/2.2.6
X-Firefox-Spdy: h2
bizuz.com/wp-content/plugins/iks-menu/assets/css/public.x34259.css
35.200.241.195200 OK 20 kB URL HTTP/2 bizuz.com/wp-content/plugins/iks-menu/assets/css/public.x34259.css
IP 35.200.241.195:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (47513)
Hash d534589000eac35663a9baaa4cf4ff86
e4906a238e9f15bc33854fb1f5b8155c8f50f430
8666580d2ca44f25b0a989af9cf64a32be9dcf72225bc0b19fbeaf7a65b1068a
GET /wp-content/plugins/iks-menu/assets/css/public.x34259.css HTTP/1.1
Host: bizuz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bizuz.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Sun, 05 Nov 2023 03:47:21 GMT
content-type: text/css
last-modified: Mon, 05 Sep 2022 10:17:33 GMT
etag: "b99a-6315ccbd-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 19791
date: Sat, 05 Nov 2022 03:47:21 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
pragma: public
x-powered-by: W3 Total Cache/2.2.6
X-Firefox-Spdy: h2
bizuz.com/wp-content/themes/edumax/css/bootstrap.min.x34259.css
35.200.241.195200 OK 19 kB URL HTTP/2 bizuz.com/wp-content/themes/edumax/css/bootstrap.min.x34259.css
IP 35.200.241.195:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (65324)
Hash 197b276c06c2f8b3b1c5c8507c46903a
697459a17ff318c4f141e301df6b5cac6f5cae4d
8cfac3c7cba4b74a30456591ec03e67d691d7f872d20774812cb4ad712d29e6e
GET /wp-content/themes/edumax/css/bootstrap.min.x34259.css HTTP/1.1
Host: bizuz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bizuz.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Sun, 05 Nov 2023 03:47:21 GMT
content-type: text/css
last-modified: Wed, 20 Jan 2021 18:31:53 GMT
etag: "22688-60087719-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 19090
date: Sat, 05 Nov 2022 03:47:21 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
pragma: public
x-powered-by: W3 Total Cache/2.2.6
X-Firefox-Spdy: h2
bizuz.com/wp-content/plugins/tutor/assets/css/tutor.min.x34259.css
35.200.241.195200 OK 36 kB URL HTTP/2 bizuz.com/wp-content/plugins/tutor/assets/css/tutor.min.x34259.css
IP 35.200.241.195:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (65536), with no line terminators
Hash 533c947be5badc79dc1d7beca5c614a9
d16736008281598916a9f86870a10aef2ee20d3b
4dd5e9d72daa7c05956cd6c8f8ebdb00cb335aa191888b9c897939dd33fce210
GET /wp-content/plugins/tutor/assets/css/tutor.min.x34259.css HTTP/1.1
Host: bizuz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bizuz.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Sun, 05 Nov 2023 03:47:21 GMT
content-type: text/css
last-modified: Sat, 29 Oct 2022 07:29:13 GMT
etag: "42d38-635cd649-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 35783
date: Sat, 05 Nov 2022 03:47:21 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
pragma: public
x-powered-by: W3 Total Cache/2.2.6
X-Firefox-Spdy: h2
bizuz.com/wp-includes/css/dashicons.min.x34259.css
35.200.241.195200 OK 35 kB URL HTTP/2 bizuz.com/wp-includes/css/dashicons.min.x34259.css
IP 35.200.241.195:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (58981)
Hash 54c5bfb8a890d87139d9abfe01662c83
f9eddf5b8a3269e6d6fa40b4f13083705e6267c6
9685e5cabe4efc8c85e986725af8009b306416aad3ecc9086ca5bb12b84ce4ef
GET /wp-includes/css/dashicons.min.x34259.css HTTP/1.1
Host: bizuz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bizuz.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Sun, 05 Nov 2023 03:47:21 GMT
content-type: text/css
last-modified: Fri, 16 Apr 2021 04:36:23 GMT
etag: "e688-60791447-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 35110
date: Sat, 05 Nov 2022 03:47:21 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
pragma: public
x-powered-by: W3 Total Cache/2.2.6
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 8ee5640e4bbe5e2c0dd4aa0698a3ce62
a175340e4e1a0a2e3d33fa5b113e3990e5a6dfef
938899f21fdf4e477f02c6f7f32cbed05bb1df35e3b221c3a37e8c214b2dc946
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "938899F21FDF4E477F02C6F7F32CBED05BB1DF35E3B221C3A37E8C214B2DC946"
Last-Modified: Thu, 03 Nov 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8975
Expires: Sat, 05 Nov 2022 06:16:57 GMT
Date: Sat, 05 Nov 2022 03:47:22 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 8ee5640e4bbe5e2c0dd4aa0698a3ce62
a175340e4e1a0a2e3d33fa5b113e3990e5a6dfef
938899f21fdf4e477f02c6f7f32cbed05bb1df35e3b221c3a37e8c214b2dc946
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "938899F21FDF4E477F02C6F7F32CBED05BB1DF35E3B221C3A37E8C214B2DC946"
Last-Modified: Thu, 03 Nov 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8975
Expires: Sat, 05 Nov 2022 06:16:57 GMT
Date: Sat, 05 Nov 2022 03:47:22 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 8ee5640e4bbe5e2c0dd4aa0698a3ce62
a175340e4e1a0a2e3d33fa5b113e3990e5a6dfef
938899f21fdf4e477f02c6f7f32cbed05bb1df35e3b221c3a37e8c214b2dc946
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "938899F21FDF4E477F02C6F7F32CBED05BB1DF35E3B221C3A37E8C214B2DC946"
Last-Modified: Thu, 03 Nov 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8975
Expires: Sat, 05 Nov 2022 06:16:57 GMT
Date: Sat, 05 Nov 2022 03:47:22 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 8ee5640e4bbe5e2c0dd4aa0698a3ce62
a175340e4e1a0a2e3d33fa5b113e3990e5a6dfef
938899f21fdf4e477f02c6f7f32cbed05bb1df35e3b221c3a37e8c214b2dc946
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "938899F21FDF4E477F02C6F7F32CBED05BB1DF35E3B221C3A37E8C214B2DC946"
Last-Modified: Thu, 03 Nov 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8975
Expires: Sat, 05 Nov 2022 06:16:57 GMT
Date: Sat, 05 Nov 2022 03:47:22 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 8ee5640e4bbe5e2c0dd4aa0698a3ce62
a175340e4e1a0a2e3d33fa5b113e3990e5a6dfef
938899f21fdf4e477f02c6f7f32cbed05bb1df35e3b221c3a37e8c214b2dc946
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "938899F21FDF4E477F02C6F7F32CBED05BB1DF35E3B221C3A37E8C214B2DC946"
Last-Modified: Thu, 03 Nov 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8975
Expires: Sat, 05 Nov 2022 06:16:57 GMT
Date: Sat, 05 Nov 2022 03:47:22 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff202f1f7-a6da-431c-9f04-b00a53780a8c.jpeg
34.120.237.76200 OK 5.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff202f1f7-a6da-431c-9f04-b00a53780a8c.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 683264508686ad18ae519baac54d3b05
1897c9fcad301764736ab867491beb18526af153
e8beb5d336ca424e36725ab87b98b4dedcf32a5b01c43b9c06363a7be25522fa
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff202f1f7-a6da-431c-9f04-b00a53780a8c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5754
x-amzn-requestid: df2c5b88-0444-44b1-81ef-04e565d25b36
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bAS--GiUoAMFTjg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-636331f9-0ec90f4d5f0c6fcf2d6e4a8b;Sampled=0
x-amzn-remapped-date: Thu, 03 Nov 2022 03:14:01 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 7CdkFTu--etXnoftDB8IYx3G6NIDBbKNiomZXVQQpr8et2Qh9yUGoQ==
via: 1.1 3c974a460e97e56c6eb1e6a30797d9d6.cloudfront.net (CloudFront), 1.1 ee330666adf9f04c8c30094f8ddcd004.cloudfront.net (CloudFront), 1.1 google
date: Sat, 05 Nov 2022 03:37:11 GMT
age: 611
etag: "1897c9fcad301764736ab867491beb18526af153"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F52bfe915-baee-403a-9240-12d17207ec94.jpeg
34.120.237.76200 OK 4.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F52bfe915-baee-403a-9240-12d17207ec94.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash d12961439cd33c86c7b8041ed9d42321
ddb7b18fae0082ce22d8ffa537c7367e1da404a5
d2cc0f7735f04a07c681eb2eae7c52e9f4c75b6d475b3ad4de587899089850a7
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F52bfe915-baee-403a-9240-12d17207ec94.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4662
x-amzn-requestid: 32199e11-d856-4403-ad55-65076eac83ff
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: amd5UFJQIAMFf-A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6358dd08-1761126e37ed504e46896b4d;Sampled=0
x-amzn-remapped-date: Wed, 26 Oct 2022 07:08:56 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: Nu2uC3we8aHv4ERvh7QcmiErm4Ax-NNmdWFovpdU9Or9DguzrIcn5g==
via: 1.1 4d7fa73f804f1c93f20cfc24c4b1266e.cloudfront.net (CloudFront), 1.1 1508efc4152aa1778ed4adecb328b374.cloudfront.net (CloudFront), 1.1 google
date: Fri, 04 Nov 2022 22:00:38 GMT
age: 20804
etag: "ddb7b18fae0082ce22d8ffa537c7367e1da404a5"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F28a5f5ce-bd81-4e56-bd1b-460e13379581.jpeg
34.120.237.76200 OK 7.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F28a5f5ce-bd81-4e56-bd1b-460e13379581.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 7a3b1551512640bb8f5e7deb80c32272
75805b9f03aef14cfad025259936ae5f217d25ca
5baa90853202e78cf9b59e9ab597e16ccfbf143d7e124583e64dc1ad1ee2c2df
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F28a5f5ce-bd81-4e56-bd1b-460e13379581.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7783
x-amzn-requestid: c8f73eac-612d-48e3-a655-41525e97331c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: apxM8H7aoAMFT3w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-635a2f1f-5470c77a30a11b9423f56837;Sampled=0
x-amzn-remapped-date: Thu, 27 Oct 2022 07:11:27 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: FLFsF-1gAeN0HiZnS03oNMNajnwk12P-5Aro-QOcQNFtkjknh9g5FA==
via: 1.1 0c04e836dfe22246a870a0f54a2d4746.cloudfront.net (CloudFront), 1.1 2f7934de1dfe281c3e4446892eab6462.cloudfront.net (CloudFront), 1.1 google
date: Fri, 04 Nov 2022 19:19:17 GMT
age: 30485
etag: "75805b9f03aef14cfad025259936ae5f217d25ca"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffe9d0595-2606-4462-8dd8-11c0a267de65.jpeg
34.120.237.76200 OK 4.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffe9d0595-2606-4462-8dd8-11c0a267de65.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash df11af332512d94d34a88a4671b2fbe1
0db58fda3dec787d0d979f8398d90b2b8d7e2c2f
7c561aed53b57db2039031c79453fc3f7cead944c60dd087487a9998c2df5a30
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffe9d0595-2606-4462-8dd8-11c0a267de65.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4413
x-amzn-requestid: b6f0aa99-437e-4e3d-b300-0a0ab1563c42
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bGHm_HhVIAMFdUA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6365862c-3eacf2f4114f5ae22a140480;Sampled=0
x-amzn-remapped-date: Fri, 04 Nov 2022 21:37:48 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: tfZ_BvuASWOZmTXu843gBNpGSe4T0CUCaymoVUMzYFWaILLZX-vPmg==
via: 1.1 1cc6ed0d2d3dd9529ce544f9dfe61a52.cloudfront.net (CloudFront), 1.1 73cb83fe6699afc2791b5c690c1ff8c6.cloudfront.net (CloudFront), 1.1 google
date: Fri, 04 Nov 2022 22:07:33 GMT
age: 20389
etag: "0db58fda3dec787d0d979f8398d90b2b8d7e2c2f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5f29b126-c6e5-4528-8307-e3c7fe12e225.jpeg
34.120.237.76200 OK 7.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5f29b126-c6e5-4528-8307-e3c7fe12e225.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 308da46611df43543d31ca502986bea2
0bf4de356c3a64785fe116161cb931b3b2476f5d
63996962e2763dcf2e0ae5e43aa12dfd8f8677082bb1cdf63528dfd00404f3e3
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5f29b126-c6e5-4528-8307-e3c7fe12e225.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7619
x-amzn-requestid: 67308248-e660-4294-aafe-5f178970f822
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bGHlcHHfIAMFyGA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63658622-5b1ee875554a05eb1e8a6f16;Sampled=0
x-amzn-remapped-date: Fri, 04 Nov 2022 21:37:38 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: Qn6QTO-5bR2vT6wtmHT2zVZX556_FUz6ImAWK3O8hc8xSJ9XmNM96w==
via: 1.1 1cc6ed0d2d3dd9529ce544f9dfe61a52.cloudfront.net (CloudFront), 1.1 707e733794d52100fde0ab21bf0b1462.cloudfront.net (CloudFront), 1.1 google
date: Fri, 04 Nov 2022 21:48:46 GMT
age: 21516
etag: "0bf4de356c3a64785fe116161cb931b3b2476f5d"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4f483454-b074-4576-b487-76a14ccb2059.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4f483454-b074-4576-b487-76a14ccb2059.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash bd006407a4ea0fbeec2f1351a71f30bc
d1625420cdc79643e759247b0e9ac89dadfbe956
fd461665ee463fad26300630684a11e3c520485e3b001c2f08439d50589ddbb7
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4f483454-b074-4576-b487-76a14ccb2059.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10527
x-amzn-requestid: 1b709c25-8424-49d8-bc0e-dac3fbc154ef
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: apNEzH5ZoAMFWdA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6359f551-3fb0703f27b571cf7f85e59e;Sampled=0
x-amzn-remapped-date: Thu, 27 Oct 2022 03:04:49 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 9A2gds6rdrlTJCrN3m05Yl3azoOYGCEaCd2OBH8qq21wHR8WgqI3CA==
via: 1.1 d16c3f15bd14953a9d4109eaaa991de2.cloudfront.net (CloudFront), 1.1 2ab6211e66998c8b58132661a7e3cade.cloudfront.net (CloudFront), 1.1 google
date: Sat, 05 Nov 2022 02:50:14 GMT
age: 3428
etag: "d1625420cdc79643e759247b0e9ac89dadfbe956"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
bizuz.com/wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.x34259.js
35.200.241.195200 OK 899 B URL HTTP/2 bizuz.com/wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.x34259.js
IP 35.200.241.195:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (1668)
Hash 22d65ba38528349e705d912ce26bf8ac
c89ba006009043d93b88ff155b4fec8797330550
6253bcb85e4267ad3ba843145534e729ee2c1d7e85e5b4ab5b2e074ae636bca3
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.x34259.js HTTP/1.1
Host: bizuz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bizuz.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Sun, 05 Nov 2023 03:47:22 GMT
content-type: application/x-javascript
last-modified: Fri, 04 Mar 2022 17:46:17 GMT
etag: "72a-62225069-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 899
date: Sat, 05 Nov 2022 03:47:22 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
access-control-allow-origin: *
pragma: public
x-powered-by: W3 Total Cache/2.2.6
X-Firefox-Spdy: h2
bizuz.com/wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.x34259.js
35.200.241.195200 OK 677 B URL HTTP/2 bizuz.com/wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.x34259.js
IP 35.200.241.195:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (2139), with no line terminators
Hash a43fc0dde8fdd69656ad0957e62849c7
4b07cf702ac8a770c8cbffc22b9a788b6e5389ba
1ce3d0493424870c81deec0ec41de0592d2af9f91cd8081cd40a1d7ea89b614f
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.x34259.js HTTP/1.1
Host: bizuz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bizuz.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Sun, 05 Nov 2023 03:47:22 GMT
content-type: application/x-javascript
last-modified: Fri, 04 Mar 2022 17:46:17 GMT
etag: "85b-62225069-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 677
date: Sat, 05 Nov 2022 03:47:22 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
access-control-allow-origin: *
pragma: public
x-powered-by: W3 Total Cache/2.2.6
X-Firefox-Spdy: h2
bizuz.com/wp-content/plugins/woocommerce/assets/js/frontend/cart-fragments.min.x34259.js
35.200.241.195200 OK 934 B URL HTTP/2 bizuz.com/wp-content/plugins/woocommerce/assets/js/frontend/cart-fragments.min.x34259.js
IP 35.200.241.195:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (2938), with no line terminators
Hash cf25dd071a208312bdc07f34d2cee027
76119563119eaae392ecc8903c989d98d0b93002
8635ba2cad8f887e72779bd526f8738ff6343c74cba715caf2eddea383ba7ce6
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/woocommerce/assets/js/frontend/cart-fragments.min.x34259.js HTTP/1.1
Host: bizuz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bizuz.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Sun, 05 Nov 2023 03:47:22 GMT
content-type: application/x-javascript
last-modified: Fri, 04 Mar 2022 17:46:17 GMT
etag: "b7a-62225069-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 934
date: Sat, 05 Nov 2022 03:47:22 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
access-control-allow-origin: *
pragma: public
x-powered-by: W3 Total Cache/2.2.6
X-Firefox-Spdy: h2
bizuz.com/wp-includes/js/underscore.min.x34259.js
35.200.241.195200 OK 5.6 kB URL HTTP/2 bizuz.com/wp-includes/js/underscore.min.x34259.js
IP 35.200.241.195:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (16010)
Hash dd62538bd136c672e4839cc2f5ba1e29
ce758398d631fd903d41538da046e70f760dbb8c
bc81775609a5b122ba46eefd8c07b8a38ae567bb56227c04b36c0481ab89a42c
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/underscore.min.x34259.js HTTP/1.1
Host: bizuz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bizuz.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Sun, 05 Nov 2023 03:47:22 GMT
content-type: application/x-javascript
last-modified: Fri, 16 Apr 2021 04:36:24 GMT
etag: "3ead-60791448-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 5563
date: Sat, 05 Nov 2022 03:47:22 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
access-control-allow-origin: *
pragma: public
x-powered-by: W3 Total Cache/2.2.6
X-Firefox-Spdy: h2
bizuz.com/wp-includes/js/shortcode.min.x34259.js
35.200.241.195200 OK 1.1 kB URL HTTP/2 bizuz.com/wp-includes/js/shortcode.min.x34259.js
IP 35.200.241.195:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (2615)
Hash 2ea63099434f0b7ee939d7fedb475a5f
74ce9b9e46c896682f513fb1dc80d6bcf5893703
35c7128f5fac3572d204bf47e00b05cc566c7de9c9d35d790aa6505c3e6bb246
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/shortcode.min.x34259.js HTTP/1.1
Host: bizuz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bizuz.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Sun, 05 Nov 2023 03:47:22 GMT
content-type: application/x-javascript
last-modified: Wed, 07 Apr 2021 11:14:03 GMT
etag: "a5a-606d93fb-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1070
date: Sat, 05 Nov 2022 03:47:22 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
access-control-allow-origin: *
pragma: public
x-powered-by: W3 Total Cache/2.2.6
X-Firefox-Spdy: h2
bizuz.com/wp-includes/js/backbone.min.x34259.js
35.200.241.195200 OK 7.7 kB URL HTTP/2 bizuz.com/wp-includes/js/backbone.min.x34259.js
IP 35.200.241.195:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (23783)
Hash d806dbb0328616f4ff59a9b13b91a793
d89cdb4fa047367e37889525f90857971ae18544
de8fd5bddfef418f9f0bebb8c8fdfa00b631046a3e9fa213febe7b6400a1d6d2
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/backbone.min.x34259.js HTTP/1.1
Host: bizuz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bizuz.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Sun, 05 Nov 2023 03:47:22 GMT
content-type: application/x-javascript
last-modified: Fri, 16 Apr 2021 04:36:24 GMT
etag: "5d0a-60791448-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 7680
date: Sat, 05 Nov 2022 03:47:22 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
access-control-allow-origin: *
pragma: public
x-powered-by: W3 Total Cache/2.2.6
X-Firefox-Spdy: h2
bizuz.com/wp-includes/js/wp-util.min.x34259.js
35.200.241.195200 OK 540 B URL HTTP/2 bizuz.com/wp-includes/js/wp-util.min.x34259.js
IP 35.200.241.195:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (1042)
Hash 2511695a6bb5d0a03b0329c1d63fa897
aec7cc39dbb1b01ce1e392d7c6488543003b5bb5
ce00a3016b722843f123f4c7afa04cc8ad2a9a022bc374061d220ed778ce2e71
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/wp-util.min.x34259.js HTTP/1.1
Host: bizuz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bizuz.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Sun, 05 Nov 2023 03:47:22 GMT
content-type: application/x-javascript
last-modified: Wed, 07 Apr 2021 11:14:03 GMT
etag: "435-606d93fb-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 540
date: Sat, 05 Nov 2022 03:47:22 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
access-control-allow-origin: *
pragma: public
x-powered-by: W3 Total Cache/2.2.6
X-Firefox-Spdy: h2
bizuz.com/wp-includes/js/wp-backbone.min.x34259.js
35.200.241.195200 OK 1.1 kB URL HTTP/2 bizuz.com/wp-includes/js/wp-backbone.min.x34259.js
IP 35.200.241.195:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (3002)
Hash e6fa9d152e10449ffbc08eb5026505c8
a564c4285538ca90cf70f5a1e596059f9f135336
49ec0a7330662940e0bb5f66015eca6360f68cfcb23018681267fdc1d49cca09
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/wp-backbone.min.x34259.js HTTP/1.1
Host: bizuz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bizuz.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Sun, 05 Nov 2023 03:47:22 GMT
content-type: application/x-javascript
last-modified: Fri, 16 Apr 2021 04:36:24 GMT
etag: "bdd-60791448-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1090
date: Sat, 05 Nov 2022 03:47:22 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
access-control-allow-origin: *
pragma: public
x-powered-by: W3 Total Cache/2.2.6
X-Firefox-Spdy: h2
bizuz.com/wp-includes/js/media-models.min.x34259.js
35.200.241.195200 OK 4.2 kB URL HTTP/2 bizuz.com/wp-includes/js/media-models.min.x34259.js
IP 35.200.241.195:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (13776)
Hash 9460a347513a48ba31dd56ea6290e259
3f902871ed4c20edd913a9931fd7abfd28e89ad6
39ce2c2d0a41d817922c5e3c1335aeb7664c46978192824ece2a7263fcd1e397
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/media-models.min.x34259.js HTTP/1.1
Host: bizuz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bizuz.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Sun, 05 Nov 2023 03:47:22 GMT
content-type: application/x-javascript
last-modified: Fri, 16 Apr 2021 04:36:24 GMT
etag: "35f3-60791448-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 4240
date: Sat, 05 Nov 2022 03:47:22 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
access-control-allow-origin: *
pragma: public
x-powered-by: W3 Total Cache/2.2.6
X-Firefox-Spdy: h2
bizuz.com/wp-includes/js/media-views.min.x34259.js
35.200.241.195200 OK 24 kB URL HTTP/2 bizuz.com/wp-includes/js/media-views.min.x34259.js
IP 35.200.241.195:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (65501)
Hash d862eb144bbccadfac3807da5e3c17b8
a606ac66b24a8bbc68745391ac9af80ddf7dfcc9
5a9b24c8f5320b16851a2a89ff1dbae41b22ffe1cbbf5b8c1c5ed0f91d104b13
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/media-views.min.x34259.js HTTP/1.1
Host: bizuz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bizuz.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Sun, 05 Nov 2023 03:47:22 GMT
content-type: application/x-javascript
last-modified: Fri, 16 Apr 2021 04:36:24 GMT
etag: "1a3e5-60791448-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 23690
date: Sat, 05 Nov 2022 03:47:22 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
access-control-allow-origin: *
pragma: public
x-powered-by: W3 Total Cache/2.2.6
X-Firefox-Spdy: h2
bizuz.com/wp-includes/js/media-editor.min.x34259.js
35.200.241.195200 OK 3.5 kB URL HTTP/2 bizuz.com/wp-includes/js/media-editor.min.x34259.js
IP 35.200.241.195:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (10874)
Hash 2843060b539919650257dab93e721b0d
dfc7f084c1ab677ec11653542e0f22c7b5e43e90
11e8d87a56708bb1739cb1676b29296ae463e1356bc462dd0842f02a8786baf9
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/media-editor.min.x34259.js HTTP/1.1
Host: bizuz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bizuz.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Sun, 05 Nov 2023 03:47:22 GMT
content-type: application/x-javascript
last-modified: Wed, 07 Apr 2021 11:14:03 GMT
etag: "2a9d-606d93fb-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3469
date: Sat, 05 Nov 2022 03:47:22 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
access-control-allow-origin: *
pragma: public
x-powered-by: W3 Total Cache/2.2.6
X-Firefox-Spdy: h2
bizuz.com/wp-includes/js/media-audiovideo.min.x34259.js
35.200.241.195200 OK 3.4 kB URL HTTP/2 bizuz.com/wp-includes/js/media-audiovideo.min.x34259.js
IP 35.200.241.195:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (12822)
Hash 60b477f235e759c89cba0d45d74d3e0f
87fbf912eed0d295c9f247e874aa415d8adcbbbd
2f4d292c337d473bfc767df7105271bb048cc7af850c6b6d1d2bedae73b34140
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/media-audiovideo.min.x34259.js HTTP/1.1
Host: bizuz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bizuz.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Sun, 05 Nov 2023 03:47:22 GMT
content-type: application/x-javascript
last-modified: Wed, 07 Apr 2021 11:14:03 GMT
etag: "3239-606d93fb-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3396
date: Sat, 05 Nov 2022 03:47:22 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
access-control-allow-origin: *
pragma: public
x-powered-by: W3 Total Cache/2.2.6
X-Firefox-Spdy: h2
bizuz.com/wp-content/themes/edumax/js/bootstrap.min.x34259.js
35.200.241.195200 OK 13 kB URL HTTP/2 bizuz.com/wp-content/themes/edumax/js/bootstrap.min.x34259.js
IP 35.200.241.195:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (50758)
Hash d6ae1fa9830006febc8d831df71d5d06
5749f689e462c91adf778d1709b91c3d3da9e25a
e0651b65bf82bd15e6d75948c331ea079c1d0336c3bee83d924d6f09aee46d46
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/edumax/js/bootstrap.min.x34259.js HTTP/1.1
Host: bizuz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bizuz.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Sun, 05 Nov 2023 03:47:22 GMT
content-type: application/x-javascript
last-modified: Wed, 20 Jan 2021 18:31:53 GMT
etag: "c75f-60087719-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 13430
date: Sat, 05 Nov 2022 03:47:22 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
access-control-allow-origin: *
pragma: public
x-powered-by: W3 Total Cache/2.2.6
X-Firefox-Spdy: h2
bizuz.com/wp-content/themes/edumax/js/jquery.nice-select.min.x34259.js
35.200.241.195200 OK 930 B URL HTTP/2 bizuz.com/wp-content/themes/edumax/js/jquery.nice-select.min.x34259.js
IP 35.200.241.195:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type Unicode text, UTF-8 text, with very long lines (2822)
Hash 7df2a8ed2b80cde0e5e7ca7c26764651
d6065cf9375fa62f0bc89dd8c7b8d39a7299720b
478a6036f21887bd2c4da8d4c1446b7ca247263af66c79056c0b290076c736fe
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/edumax/js/jquery.nice-select.min.x34259.js HTTP/1.1
Host: bizuz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bizuz.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Sun, 05 Nov 2023 03:47:22 GMT
content-type: application/x-javascript
last-modified: Wed, 20 Jan 2021 18:31:53 GMT
etag: "b7e-60087719-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 930
date: Sat, 05 Nov 2022 03:47:22 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
access-control-allow-origin: *
pragma: public
x-powered-by: W3 Total Cache/2.2.6
X-Firefox-Spdy: h2
bizuz.com/wp-content/themes/edumax/js/loopcounter.x34259.js
35.200.241.195200 OK 522 B URL HTTP/2 bizuz.com/wp-content/themes/edumax/js/loopcounter.x34259.js
IP 35.200.241.195:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
Hash 498a5493284870b01f209e448aebad9b
d282b5d27d9fa965e0826de9e1e8d9c1b2463345
1cd6a0c114505d710f2fc22dd2e8cd4af09ee0eeba3a4a04a069839a120a22e4
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/edumax/js/loopcounter.x34259.js HTTP/1.1
Host: bizuz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bizuz.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Sun, 05 Nov 2023 03:47:22 GMT
content-type: application/x-javascript
last-modified: Wed, 20 Jan 2021 18:31:53 GMT
etag: "63a-60087719-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 522
date: Sat, 05 Nov 2022 03:47:22 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
access-control-allow-origin: *
pragma: public
x-powered-by: W3 Total Cache/2.2.6
X-Firefox-Spdy: h2
bizuz.com/wp-content/themes/edumax/js/jquery.prettySocial.min.x34259.js
35.200.241.195200 OK 858 B URL HTTP/2 bizuz.com/wp-content/themes/edumax/js/jquery.prettySocial.min.x34259.js
IP 35.200.241.195:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (2109)
Hash bcaecf30732eadd08405c649392e6db3
b45435539718598bdf102fece62d861b81b3a604
56356365c1d59d015ea0dba1936daae892337ab48f3b516c1ecbeee91ac6d0c0
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/edumax/js/jquery.prettySocial.min.x34259.js HTTP/1.1
Host: bizuz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bizuz.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Sun, 05 Nov 2023 03:47:22 GMT
content-type: application/x-javascript
last-modified: Wed, 20 Jan 2021 18:31:53 GMT
etag: "8a9-60087719-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 858
date: Sat, 05 Nov 2022 03:47:22 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
access-control-allow-origin: *
pragma: public
x-powered-by: W3 Total Cache/2.2.6
X-Firefox-Spdy: h2
bizuz.com/wp-content/themes/edumax/js/main.x34259.js
35.200.241.195200 OK 1.5 kB URL HTTP/2 bizuz.com/wp-content/themes/edumax/js/main.x34259.js
IP 35.200.241.195:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
Hash 51a0a4f2521f52c1183b5d9b17b167e4
9dcbd8175cb591e6ee9a9f76ab0acfdcbb052926
d614f68e12da6dcb3d69d19285fe466f793a6f0b228f0a7a639b50e8ee494143
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/edumax/js/main.x34259.js HTTP/1.1
Host: bizuz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bizuz.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Sun, 05 Nov 2023 03:47:22 GMT
content-type: application/x-javascript
last-modified: Wed, 20 Jan 2021 18:31:53 GMT
etag: "1920-60087719-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1491
date: Sat, 05 Nov 2022 03:47:22 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
access-control-allow-origin: *
pragma: public
x-powered-by: W3 Total Cache/2.2.6
X-Firefox-Spdy: h2
bizuz.com/wp-includes/js/comment-reply.min.x34259.js
35.200.241.195200 OK 1.2 kB URL HTTP/2 bizuz.com/wp-includes/js/comment-reply.min.x34259.js
IP 35.200.241.195:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (2949)
Hash bcfb4d4521838dfaf1ecdbe9a74ef9b7
2e5fc11dae14cfe3081991ffaa684bc6e97a6223
70c6f139e01564819effae87a898afb404a4ab6d9635d983aa89d537f26173b3
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/comment-reply.min.x34259.js HTTP/1.1
Host: bizuz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bizuz.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Sun, 05 Nov 2023 03:47:22 GMT
content-type: application/x-javascript
last-modified: Fri, 16 Apr 2021 04:36:24 GMT
etag: "ba8-60791448-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1228
date: Sat, 05 Nov 2022 03:47:22 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
access-control-allow-origin: *
pragma: public
x-powered-by: W3 Total Cache/2.2.6
X-Firefox-Spdy: h2
bizuz.com/wp-content/plugins/wp-pagebuilder/assets/js/main.x34259.js
35.200.241.195200 OK 4.9 kB URL HTTP/2 bizuz.com/wp-content/plugins/wp-pagebuilder/assets/js/main.x34259.js
IP 35.200.241.195:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
Hash b2220f1c86556634a0b625a8180aab8e
883ee8210024c2939432afb586bbace3370aa0a0
9552afb6543b4ba45058500ea3026f7a789cd669d3595b08803c41c1f8471f71
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/wp-pagebuilder/assets/js/main.x34259.js HTTP/1.1
Host: bizuz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bizuz.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Sun, 05 Nov 2023 03:47:22 GMT
content-type: application/x-javascript
last-modified: Mon, 05 Sep 2022 10:21:32 GMT
etag: "5156-6315cdac-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 4886
date: Sat, 05 Nov 2022 03:47:22 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
access-control-allow-origin: *
pragma: public
x-powered-by: W3 Total Cache/2.2.6
X-Firefox-Spdy: h2
bizuz.com/wp-content/plugins/wp-pagebuilder/addons/posts/assets/js/posts-addon.x34259.js
35.200.241.195200 OK 503 B URL HTTP/2 bizuz.com/wp-content/plugins/wp-pagebuilder/addons/posts/assets/js/posts-addon.x34259.js
IP 35.200.241.195:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
Hash 0704ed262e815cbead13bcef43babb77
6ea58c8e75ebf78e413c6180a22bbfbf7e21f860
b7b59198dacfab6f3a9d4c33adfc25f8cdd33a8408be25cee74dbf8b63253d84
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/wp-pagebuilder/addons/posts/assets/js/posts-addon.x34259.js HTTP/1.1
Host: bizuz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bizuz.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Sun, 05 Nov 2023 03:47:22 GMT
content-type: application/x-javascript
last-modified: Mon, 05 Sep 2022 10:21:32 GMT
etag: "b16-6315cdac-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 503
date: Sat, 05 Nov 2022 03:47:22 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
access-control-allow-origin: *
pragma: public
x-powered-by: W3 Total Cache/2.2.6
X-Firefox-Spdy: h2
bizuz.com/wp-content/plugins/wp-pagebuilder-pro/addons/animated_heading/assets/js/thm-animated-heading.x34259.js
35.200.241.195200 OK 2.2 kB URL HTTP/2 bizuz.com/wp-content/plugins/wp-pagebuilder-pro/addons/animated_heading/assets/js/thm-animated-heading.x34259.js
IP 35.200.241.195:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
Hash 5fd6fd41097b346e8213208c76420e2a
d26bf2577b95738558c26392961503a5f21c442b
aed1b6ce3e0fdf52faa70343e920d24f7fd359b9a6872e912e3c4b50c9d09581
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/wp-pagebuilder-pro/addons/animated_heading/assets/js/thm-animated-heading.x34259.js HTTP/1.1
Host: bizuz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bizuz.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Sun, 05 Nov 2023 03:47:22 GMT
content-type: application/x-javascript
last-modified: Sat, 23 Jan 2021 06:01:09 GMT
etag: "2987-600bbba5-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2158
date: Sat, 05 Nov 2022 03:47:22 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
access-control-allow-origin: *
pragma: public
x-powered-by: W3 Total Cache/2.2.6
X-Firefox-Spdy: h2
bizuz.com/wp-content/plugins/ubermenu/assets/js/ubermenu.min.x34259.js
35.200.241.195200 OK 8.9 kB URL HTTP/2 bizuz.com/wp-content/plugins/ubermenu/assets/js/ubermenu.min.x34259.js
IP 35.200.241.195:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (636)
Hash 7509f466066052e4262262eaf10d6efe
a0e38f1e16f93a9e17ec834640346e7aef46ac84
91f7889755ebb134ae01db092a334247a09bef22172a22ed6946d3286c061519
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/ubermenu/assets/js/ubermenu.min.x34259.js HTTP/1.1
Host: bizuz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bizuz.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Sun, 05 Nov 2023 03:47:22 GMT
content-type: application/x-javascript
last-modified: Fri, 11 Dec 2020 08:59:11 GMT
etag: "9453-5fd334df-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 8936
date: Sat, 05 Nov 2022 03:47:22 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
access-control-allow-origin: *
pragma: public
x-powered-by: W3 Total Cache/2.2.6
X-Firefox-Spdy: h2
bizuz.com/wp-content/plugins/wp-pagebuilder/assets/js/jquery.magnific-popup.min.x34259.js
35.200.241.195200 OK 7.0 kB URL HTTP/2 bizuz.com/wp-content/plugins/wp-pagebuilder/assets/js/jquery.magnific-popup.min.x34259.js
IP 35.200.241.195:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (20087)
Hash f5e275bd34668dca4972a4cceccd7907
cba188e35681cd77cfcbd026aac16315747fab12
7874f3927ffd30d189723404d3fb9699e728955b083abeccc9a988890b4b2ede
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/wp-pagebuilder/assets/js/jquery.magnific-popup.min.x34259.js HTTP/1.1
Host: bizuz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bizuz.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Sun, 05 Nov 2023 03:47:22 GMT
content-type: application/x-javascript
last-modified: Mon, 05 Sep 2022 10:21:32 GMT
etag: "4ef8-6315cdac-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 7043
date: Sat, 05 Nov 2022 03:47:22 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
access-control-allow-origin: *
pragma: public
x-powered-by: W3 Total Cache/2.2.6
X-Firefox-Spdy: h2
bizuz.com/wp-content/plugins/essential-addons-for-elementor-lite/assets/front-end/js/view/general.min.x34259.js
35.200.241.195200 OK 2.7 kB URL HTTP/2 bizuz.com/wp-content/plugins/essential-addons-for-elementor-lite/assets/front-end/js/view/general.min.x34259.js
IP 35.200.241.195:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (8016), with no line terminators
Hash 8a68927ae9f9e4410a53da7e91333e5a
5ea49b0228c610db7747531827863eb58594922d
1996e2b780eafb29a0c5be7c1bbf51372f8a1d036e1077a6035691ba0a4f138d
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/essential-addons-for-elementor-lite/assets/front-end/js/view/general.min.x34259.js HTTP/1.1
Host: bizuz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bizuz.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Sun, 05 Nov 2023 03:47:22 GMT
content-type: application/x-javascript
last-modified: Sat, 29 Oct 2022 07:27:21 GMT
etag: "1f50-635cd5d9-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2663
date: Sat, 05 Nov 2022 03:47:22 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
access-control-allow-origin: *
pragma: public
x-powered-by: W3 Total Cache/2.2.6
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Muli%3A400%7CQuicksand%3A500%2C500%2C600%2C600%2C600&ver=5.7.8
142.250.74.10200 OK 2.6 kB URL HTTP/2 fonts.googleapis.com/css?family=Muli%3A400%7CQuicksand%3A500%2C500%2C600%2C600%2C600&ver=5.7.8
IP 142.250.74.10:0
Hash e7bfb50ad58995dd9683d8d844f95385
a979c6545ae9538e7c3090a51781a76433598f8f
cedcdb01ae5a018cda60c8165fbba463502e8fab33b628bfd728c0a50ed13763
GET /css?family=Muli%3A400%7CQuicksand%3A500%2C500%2C600%2C600%2C600&ver=5.7.8 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bizuz.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sat, 05 Nov 2022 03:47:21 GMT
date: Sat, 05 Nov 2022 03:47:21 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
bizuz.com/wp-includes/js/wp-embed.min.x34259.js
35.200.241.195200 OK 663 B URL HTTP/2 bizuz.com/wp-includes/js/wp-embed.min.x34259.js
IP 35.200.241.195:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (1391)
Hash 992198ff853eb696f88bb0ec8586d015
a6262428de1b6c68cccf617d2a503f5a3bd3aecd
ae0480bd571a7f57cccdbd08f77706edca84029f95bd90bc325224169528d21c
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/wp-embed.min.x34259.js HTTP/1.1
Host: bizuz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bizuz.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Sun, 05 Nov 2023 03:47:22 GMT
content-type: application/x-javascript
last-modified: Wed, 07 Apr 2021 11:14:03 GMT
etag: "592-606d93fb-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 663
date: Sat, 05 Nov 2022 03:47:22 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
access-control-allow-origin: *
pragma: public
x-powered-by: W3 Total Cache/2.2.6
X-Firefox-Spdy: h2
bizuz.com/wp-content/plugins/elementor/assets/js/webpack.runtime.min.x34259.js
35.200.241.195200 OK 2.0 kB URL HTTP/2 bizuz.com/wp-content/plugins/elementor/assets/js/webpack.runtime.min.x34259.js
IP 35.200.241.195:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (4918)
Hash f2f148d3136c613661dce08d59efd20f
7b8ca9339123bef488ff22f1bca411a40d638eb0
6946de14e8d94d8e58f8ca61d1b2ea7dc79cc318f326f3b883657a18b7832029
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/js/webpack.runtime.min.x34259.js HTTP/1.1
Host: bizuz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bizuz.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Sun, 05 Nov 2023 03:47:22 GMT
content-type: application/x-javascript
last-modified: Sat, 29 Oct 2022 07:26:50 GMT
etag: "135d-635cd5ba-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2044
date: Sat, 05 Nov 2022 03:47:22 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
access-control-allow-origin: *
pragma: public
x-powered-by: W3 Total Cache/2.2.6
X-Firefox-Spdy: h2
bizuz.com/wp-content/plugins/elementor/assets/js/frontend-modules.min.x34259.js
35.200.241.195200 OK 10 kB URL HTTP/2 bizuz.com/wp-content/plugins/elementor/assets/js/frontend-modules.min.x34259.js
IP 35.200.241.195:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type Unicode text, UTF-8 text, with very long lines (32889)
Hash 722ed92c0ba87f8762eb386eadbb3633
f390ed583c569c5fe0790bada5fe343faecff787
9081d73ce51d6244f41799efe85abc896ca04b4326780f17de60b62ada39160f
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/js/frontend-modules.min.x34259.js HTTP/1.1
Host: bizuz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bizuz.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Sun, 05 Nov 2023 03:47:22 GMT
content-type: application/x-javascript
last-modified: Sat, 29 Oct 2022 07:26:50 GMT
etag: "80a1-635cd5ba-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 10420
date: Sat, 05 Nov 2022 03:47:22 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
access-control-allow-origin: *
pragma: public
x-powered-by: W3 Total Cache/2.2.6
X-Firefox-Spdy: h2
bizuz.com/wp-includes/js/mediaelement/mediaelement-migrate.min.x34259.js
35.200.241.195200 OK 480 B URL HTTP/2 bizuz.com/wp-includes/js/mediaelement/mediaelement-migrate.min.x34259.js
IP 35.200.241.195:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (1193), with no line terminators
Hash d59ffa27c14ca826b1b5915341d754ba
6ef3b5e24dc5355edeccd68fa3ba4e1f2345985e
03e70c6408cff95603bf9ce421312562c5fb98cf66d454252734a13c0d5e2c99
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/mediaelement/mediaelement-migrate.min.x34259.js HTTP/1.1
Host: bizuz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bizuz.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Sun, 05 Nov 2023 03:47:22 GMT
content-type: application/x-javascript
last-modified: Wed, 07 Apr 2021 11:14:03 GMT
etag: "4a9-606d93fb-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 480
date: Sat, 05 Nov 2022 03:47:22 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
access-control-allow-origin: *
pragma: public
x-powered-by: W3 Total Cache/2.2.6
X-Firefox-Spdy: h2
bizuz.com/wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.x34259.js
35.200.241.195200 OK 2.9 kB URL HTTP/2 bizuz.com/wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.x34259.js
IP 35.200.241.195:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (12198), with no line terminators
Hash 869caa171b68cbec9fee5abbfb944ee8
f237e485e41f88b77384cfdb880f9d5a8f46eac8
25c2896e2790fb0e52f6b6ba1ce97bd87eb40463b4bb65ba16ad434c1d7a36dc
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.x34259.js HTTP/1.1
Host: bizuz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bizuz.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Sun, 05 Nov 2023 03:47:22 GMT
content-type: application/x-javascript
last-modified: Sat, 29 Oct 2022 07:26:51 GMT
etag: "2fa6-635cd5bb-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2867
date: Sat, 05 Nov 2022 03:47:22 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
access-control-allow-origin: *
pragma: public
x-powered-by: W3 Total Cache/2.2.6
X-Firefox-Spdy: h2
bizuz.com/wp-content/plugins/elementor/assets/lib/swiper/swiper.min.x34259.js
35.200.241.195200 OK 34 kB URL HTTP/2 bizuz.com/wp-content/plugins/elementor/assets/lib/swiper/swiper.min.x34259.js
IP 35.200.241.195:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (65280)
Hash 83a90323ac82b98062b4b2c8ac8c5051
d7d376677e3546b756b4fec6219be72b85c4f8f5
7fd68e9ea0ebd35958da46d7373113d1a3646a671217cf2cf471c65c3d710613
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/lib/swiper/swiper.min.x34259.js HTTP/1.1
Host: bizuz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bizuz.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Sun, 05 Nov 2023 03:47:22 GMT
content-type: application/x-javascript
last-modified: Sat, 29 Oct 2022 07:26:51 GMT
etag: "21f91-635cd5bb-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 34004
date: Sat, 05 Nov 2022 03:47:22 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
access-control-allow-origin: *
pragma: public
x-powered-by: W3 Total Cache/2.2.6
X-Firefox-Spdy: h2
bizuz.com/wp-includes/js/mediaelement/wp-mediaelement.min.x34259.js
35.200.241.195200 OK 392 B URL HTTP/2 bizuz.com/wp-includes/js/mediaelement/wp-mediaelement.min.x34259.js
IP 35.200.241.195:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type HTML document, ASCII text, with very long lines (906), with no line terminators
Hash 200d0ec78a54a35bb97450e75bddfe52
25a0c90e7c2a7f49b4d5abf3165eb2d03849c2cb
9555fae27002a4036ca476b62143a67552e3870a1ff46c5869611b5edbe1deac
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/mediaelement/wp-mediaelement.min.x34259.js HTTP/1.1
Host: bizuz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bizuz.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Sun, 05 Nov 2023 03:47:22 GMT
content-type: application/x-javascript
last-modified: Wed, 07 Apr 2021 11:14:03 GMT
etag: "38a-606d93fb-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 392
date: Sat, 05 Nov 2022 03:47:22 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
access-control-allow-origin: *
pragma: public
x-powered-by: W3 Total Cache/2.2.6
X-Firefox-Spdy: h2
bizuz.com/wp-content/plugins/elementor/assets/lib/share-link/share-link.min.x34259.js
35.200.241.195200 OK 1.0 kB URL HTTP/2 bizuz.com/wp-content/plugins/elementor/assets/lib/share-link/share-link.min.x34259.js
IP 35.200.241.195:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (2620), with no line terminators
Hash 906c4decdcd32482c1cf583b07925d30
30e726b9febb4b651544266df656a21251f0e8e3
53f86e9641d0e35772d6b54294cc6dd685fb9a376a1baad151da120fef609423
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/lib/share-link/share-link.min.x34259.js HTTP/1.1
Host: bizuz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bizuz.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Sun, 05 Nov 2023 03:47:22 GMT
content-type: application/x-javascript
last-modified: Sat, 29 Oct 2022 07:26:50 GMT
etag: "a3c-635cd5ba-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1047
date: Sat, 05 Nov 2022 03:47:22 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
access-control-allow-origin: *
pragma: public
x-powered-by: W3 Total Cache/2.2.6
X-Firefox-Spdy: h2
bizuz.com/wp-includes/js/api-request.min.x34259.js
35.200.241.195200 OK 528 B URL HTTP/2 bizuz.com/wp-includes/js/api-request.min.x34259.js
IP 35.200.241.195:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (990)
Hash 64a1d5f6c70f87555579df150bdc305d
a9e3a5e16dc4da9fc427dc22f6b23c4c22e23be8
81e99aced5c29f4e388ef89715b059c58d003f0f2c8a639a44e593ef8c332493
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/api-request.min.x34259.js HTTP/1.1
Host: bizuz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bizuz.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Sun, 05 Nov 2023 03:47:22 GMT
content-type: application/x-javascript
last-modified: Wed, 07 Apr 2021 11:14:03 GMT
etag: "401-606d93fb-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 528
date: Sat, 05 Nov 2022 03:47:22 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
access-control-allow-origin: *
pragma: public
x-powered-by: W3 Total Cache/2.2.6
X-Firefox-Spdy: h2
bizuz.com/wp-content/plugins/elementor/assets/lib/dialog/dialog.min.x34259.js
35.200.241.195200 OK 3.3 kB URL HTTP/2 bizuz.com/wp-content/plugins/elementor/assets/lib/dialog/dialog.min.x34259.js
IP 35.200.241.195:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (10544)
Hash 3821415a39954c48c7927e661467c6b8
dfe1116a0efc9898cb6caf094213880da83d6990
5f7f5b28f47c366a0bb70435dc3b2253278222c92429f013084f71fd7d29a32e
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/lib/dialog/dialog.min.x34259.js HTTP/1.1
Host: bizuz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bizuz.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Sun, 05 Nov 2023 03:47:22 GMT
content-type: application/x-javascript
last-modified: Sat, 29 Oct 2022 07:26:50 GMT
etag: "29ba-635cd5ba-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3268
date: Sat, 05 Nov 2022 03:47:22 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
access-control-allow-origin: *
pragma: public
x-powered-by: W3 Total Cache/2.2.6
X-Firefox-Spdy: h2
bizuz.com/wp-content/plugins/elementor/assets/js/frontend.min.x34259.js
35.200.241.195200 OK 12 kB URL HTTP/2 bizuz.com/wp-content/plugins/elementor/assets/js/frontend.min.x34259.js
IP 35.200.241.195:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (40474)
Hash b048bc13344485a58ff524b4716fe1da
6594bf7f610b75ce7eeebb3bbc34ed341f240707
1ef9f5a28805e970ec69e4e46791d955146db1150e83a8da5a5089a8896176b4
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/js/frontend.min.x34259.js HTTP/1.1
Host: bizuz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bizuz.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Sun, 05 Nov 2023 03:47:22 GMT
content-type: application/x-javascript
last-modified: Sat, 29 Oct 2022 07:26:50 GMT
etag: "9e41-635cd5ba-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 11702
date: Sat, 05 Nov 2022 03:47:22 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
access-control-allow-origin: *
pragma: public
x-powered-by: W3 Total Cache/2.2.6
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Montserrat:ital,wght@700,800,600,400,600,300,600,400,600,400,600,400,600,300,600,600,600,600,600,600,600,300,600,700
142.250.74.10200 OK 1.2 kB URL HTTP/2 fonts.googleapis.com/css?family=Montserrat:ital,wght@700,800,600,400,600,300,600,400,600,400,600,400,600,300,600,600,600,600,600,600,600,300,600,700
IP 142.250.74.10:0
Hash 076f5a96d503e1184cbee1589dca883c
df25a0e1e8032a3151b721c26831680fbc0f4859
08e828be0d618a8512ae1823bf76d9ba67a2252bdd84fefcd0e1de7ba1f5933a
GET /css?family=Montserrat:ital,wght@700,800,600,400,600,300,600,400,600,400,600,400,600,300,600,600,600,600,600,600,600,300,600,700 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bizuz.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sat, 05 Nov 2022 03:47:21 GMT
date: Sat, 05 Nov 2022 03:47:21 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
bizuz.com/wp-content/plugins/elementor/assets/js/preloaded-modules.min.x34259.js
35.200.241.195200 OK 12 kB URL HTTP/2 bizuz.com/wp-content/plugins/elementor/assets/js/preloaded-modules.min.x34259.js
IP 35.200.241.195:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (43101)
Hash bb00764de1f251926031abd60950985d
25c61f0399213bf43332ef7c93573e6a969903aa
e5ecf6c107160eb0ee6bcc47780ef5ce55657bf2e70851eee36de256756ddaa8
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/js/preloaded-modules.min.x34259.js HTTP/1.1
Host: bizuz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bizuz.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Sun, 05 Nov 2023 03:47:22 GMT
content-type: application/x-javascript
last-modified: Sat, 29 Oct 2022 07:26:50 GMT
etag: "a884-635cd5ba-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 12549
date: Sat, 05 Nov 2022 03:47:22 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
access-control-allow-origin: *
pragma: public
x-powered-by: W3 Total Cache/2.2.6
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Muli:ital,wght@700,800,600,400,600,300,600,400,600,400,600,400,600,300,600,600,600,600,600,600,600,300,600,700
142.250.74.10200 OK 1.6 kB URL HTTP/2 fonts.googleapis.com/css?family=Muli:ital,wght@700,800,600,400,600,300,600,400,600,400,600,400,600,300,600,600,600,600,600,600,600,300,600,700
IP 142.250.74.10:0
Hash 1f851bbb98cd760e3800d2cc70fdb581
197329ed48f4849cc5a0d18f952b574169ccfd1f
9fec7c960755352de73f5b297a03998bdedb59e5d77d5ebc5a2c39ca1bc02ec2
GET /css?family=Muli:ital,wght@700,800,600,400,600,300,600,400,600,400,600,400,600,300,600,600,600,600,600,600,600,300,600,700 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bizuz.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sat, 05 Nov 2022 03:47:21 GMT
date: Sat, 05 Nov 2022 03:47:21 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
bizuz.com/wp-content/plugins/essential-addons-for-elementor-lite/assets/front-end/css/view/general.min.x34259.css
35.200.241.195200 OK 708 B URL HTTP/2 bizuz.com/wp-content/plugins/essential-addons-for-elementor-lite/assets/front-end/css/view/general.min.x34259.css
IP 35.200.241.195:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (3432)
Hash f3ca6b9879df2ed966ae1150f3353baa
03c9aa5c941faad5f1efb4aa66ff623220f697ab
f33030c0a254c90f0fc701442b0468c882d105c44f20923696747cc09e7709cd
GET /wp-content/plugins/essential-addons-for-elementor-lite/assets/front-end/css/view/general.min.x34259.css HTTP/1.1
Host: bizuz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bizuz.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Sun, 05 Nov 2023 03:47:22 GMT
content-type: text/css
last-modified: Sat, 29 Oct 2022 07:27:21 GMT
etag: "d69-635cd5d9-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 708
date: Sat, 05 Nov 2022 03:47:22 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
pragma: public
x-powered-by: W3 Total Cache/2.2.6
X-Firefox-Spdy: h2
bizuz.com/wp-content/plugins/tutor-lms-elementor-addons/assets/css/slick.min.x34259.css
35.200.241.195200 OK 662 B URL HTTP/2 bizuz.com/wp-content/plugins/tutor-lms-elementor-addons/assets/css/slick.min.x34259.css
IP 35.200.241.195:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
Hash 3a28b881ff529bcdbdde600a3f849cdd
f01acd3dd66763ee8704c59069103ea591a38076
e48e338b0a83bdb5ec3c01c5e168f5ffea19059d041adc241441ac53a92ab642
GET /wp-content/plugins/tutor-lms-elementor-addons/assets/css/slick.min.x34259.css HTTP/1.1
Host: bizuz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bizuz.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Sun, 05 Nov 2023 03:47:22 GMT
content-type: text/css
last-modified: Wed, 14 Sep 2022 17:59:08 GMT
etag: "7ff-6322166c-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 662
date: Sat, 05 Nov 2022 03:47:22 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
pragma: public
x-powered-by: W3 Total Cache/2.2.6
X-Firefox-Spdy: h2
bizuz.com/wp-content/plugins/tutor-lms-elementor-addons/assets/css/slick-theme.x34259.css
35.200.241.195200 OK 748 B URL HTTP/2 bizuz.com/wp-content/plugins/tutor-lms-elementor-addons/assets/css/slick-theme.x34259.css
IP 35.200.241.195:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
Hash cb4e4dfabfbc445b21b6df7b1645f0a6
3088fb53ac840e6c3edc75a76b8f51986d293684
7bcf9e3757ca9fff0b0ea70d0ffe56cb3647cbf1317a863aed340f3051488867
GET /wp-content/plugins/tutor-lms-elementor-addons/assets/css/slick-theme.x34259.css HTTP/1.1
Host: bizuz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bizuz.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Sun, 05 Nov 2023 03:47:22 GMT
content-type: text/css
last-modified: Wed, 14 Sep 2022 17:59:08 GMT
etag: "c48-6322166c-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 748
date: Sat, 05 Nov 2022 03:47:22 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
pragma: public
x-powered-by: W3 Total Cache/2.2.6
X-Firefox-Spdy: h2
bizuz.com/wp-content/plugins/tutor-lms-elementor-addons/assets/css/tutor-elementor.min.x34259.css
35.200.241.195200 OK 3.2 kB URL HTTP/2 bizuz.com/wp-content/plugins/tutor-lms-elementor-addons/assets/css/tutor-elementor.min.x34259.css
IP 35.200.241.195:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (21279), with no line terminators
Hash d6f34a7b0344318c5b36e5d984182e1e
bfef642db69b523d8a464c36451225db3b7b0f7d
7ccdbfd5a41826e863bcfd351e36f89c002d92393838dba61cd7a4145a64d9c0
GET /wp-content/plugins/tutor-lms-elementor-addons/assets/css/tutor-elementor.min.x34259.css HTTP/1.1
Host: bizuz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bizuz.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Sun, 05 Nov 2023 03:47:22 GMT
content-type: text/css
last-modified: Wed, 14 Sep 2022 17:59:08 GMT
etag: "531f-6322166c-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3153
date: Sat, 05 Nov 2022 03:47:22 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
pragma: public
x-powered-by: W3 Total Cache/2.2.6
X-Firefox-Spdy: h2
bizuz.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/fontawesome.min.x34259.css
35.200.241.195200 OK 12 kB URL HTTP/2 bizuz.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/fontawesome.min.x34259.css
IP 35.200.241.195:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (57726)
Hash f463afd8661ddc733305df1f0cbdaff2
77262f0209e75e340eb7014aba9cd8d69966032f
c4b6541be58a0ca61549cd4562850315077880c459c019f01e835cf2d7b764de
GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/fontawesome.min.x34259.css HTTP/1.1
Host: bizuz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bizuz.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Sun, 05 Nov 2023 03:47:22 GMT
content-type: text/css
last-modified: Sat, 29 Oct 2022 07:26:50 GMT
etag: "e238-635cd5ba-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 12133
date: Sat, 05 Nov 2022 03:47:22 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
pragma: public
x-powered-by: W3 Total Cache/2.2.6
X-Firefox-Spdy: h2
bizuz.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/brands.min.x34259.css
35.200.241.195200 OK 284 B URL HTTP/2 bizuz.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/brands.min.x34259.css
IP 35.200.241.195:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (489)
Hash dc279c928e2924b07a4a7575f8070ee8
0196756cacdb61ef40483af7ea982b699b0933de
80b6d9e3f0304f4199350c6015fd96084646c2a0121332bcb5a46d3956b7df5c
GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/brands.min.x34259.css HTTP/1.1
Host: bizuz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bizuz.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Sun, 05 Nov 2023 03:47:22 GMT
content-type: text/css
last-modified: Sat, 29 Oct 2022 07:26:50 GMT
etag: "2a3-635cd5ba-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 284
date: Sat, 05 Nov 2022 03:47:22 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
pragma: public
x-powered-by: W3 Total Cache/2.2.6
X-Firefox-Spdy: h2
bizuz.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/solid.min.x34259.css
35.200.241.195200 OK 286 B URL HTTP/2 bizuz.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/solid.min.x34259.css
IP 35.200.241.195:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (483)
Hash 8828fa3c5bdcfa66615714a2b8c9d807
4f556d0b005ac7754af607418df445f8cf98e8b1
16950dcce60bc3ee2613b60439c99e7ed74d10245f59fe6f68346b7e72dd95e7
GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/solid.min.x34259.css HTTP/1.1
Host: bizuz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bizuz.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Sun, 05 Nov 2023 03:47:22 GMT
content-type: text/css
last-modified: Sat, 29 Oct 2022 07:26:50 GMT
etag: "29d-635cd5ba-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 286
date: Sat, 05 Nov 2022 03:47:22 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
pragma: public
x-powered-by: W3 Total Cache/2.2.6
X-Firefox-Spdy: h2
bizuz.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/regular.min.x34259.css
35.200.241.195200 OK 283 B URL HTTP/2 bizuz.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/regular.min.x34259.css
IP 35.200.241.195:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (491)
Hash 453a93dc816be89f942ebb253ff199fb
01563d6019803e3ff2a94c5397e7e771ee6f440d
36beebcd3778e04c8973faa581d07c7e7dc0bac2a77f637379e7d110383ab5d7
GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/regular.min.x34259.css HTTP/1.1
Host: bizuz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bizuz.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Sun, 05 Nov 2023 03:47:22 GMT
content-type: text/css
last-modified: Sat, 29 Oct 2022 07:26:50 GMT
etag: "2a5-635cd5ba-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 283
date: Sat, 05 Nov 2022 03:47:22 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
pragma: public
x-powered-by: W3 Total Cache/2.2.6
X-Firefox-Spdy: h2
bizuz.com/wp-content/plugins/advanced-dynamic-pricing-for-woocommerce/BaseVersion/assets/css/pricing-table.x34259.css
35.200.241.195200 OK 225 B URL HTTP/2 bizuz.com/wp-content/plugins/advanced-dynamic-pricing-for-woocommerce/BaseVersion/assets/css/pricing-table.x34259.css
IP 35.200.241.195:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
Hash b5ba79e44212929d125f5cb858ab8c88
fb6917e5858e5da51ee640d42b0b0b1de466a4a3
789695f5b38e915ebf21b8a5eaf8d9d4fbc64f1707d62bc49bb4cc46a33932ea
GET /wp-content/plugins/advanced-dynamic-pricing-for-woocommerce/BaseVersion/assets/css/pricing-table.x34259.css HTTP/1.1
Host: bizuz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bizuz.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Sun, 05 Nov 2023 03:47:22 GMT
content-type: text/css
last-modified: Sat, 29 Oct 2022 07:26:05 GMT
etag: "1c8-635cd58d-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 225
date: Sat, 05 Nov 2022 03:47:22 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
pragma: public
x-powered-by: W3 Total Cache/2.2.6
X-Firefox-Spdy: h2
bizuz.com/wp-content/plugins/advanced-dynamic-pricing-for-woocommerce/BaseVersion/assets/css/deals-table.x34259.css
35.200.241.195200 OK 282 B URL HTTP/2 bizuz.com/wp-content/plugins/advanced-dynamic-pricing-for-woocommerce/BaseVersion/assets/css/deals-table.x34259.css
IP 35.200.241.195:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
Hash 437f99672f64a70fc0e644107d123531
6c5d5401f78fc5d4db0ba3766ab82b38efbfec1b
5e2b08e430e5c84b7856429a770431b14411587d726a9ca0c0b9bbd09cbf3ad5
GET /wp-content/plugins/advanced-dynamic-pricing-for-woocommerce/BaseVersion/assets/css/deals-table.x34259.css HTTP/1.1
Host: bizuz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bizuz.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Sun, 05 Nov 2023 03:47:22 GMT
content-type: text/css
last-modified: Sat, 29 Oct 2022 07:26:05 GMT
etag: "11a-635cd58d-0;;;"
accept-ranges: bytes
content-length: 282
date: Sat, 05 Nov 2022 03:47:22 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
vary: Accept-Encoding
pragma: public
x-powered-by: W3 Total Cache/2.2.6
X-Firefox-Spdy: h2
bizuz.com/wp-includes/js/jquery/jquery.min.x34259.js
35.200.241.195200 OK 30 kB URL HTTP/2 bizuz.com/wp-includes/js/jquery/jquery.min.x34259.js
IP 35.200.241.195:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (65451)
Hash ef2cb9901cc106c049c57b6bb1c6eec4
3773a0684805600ac8a1c5543d0586e7f8b7e2de
386fc33b0d773cbabecd02bfa72605f417d337fcc8f26f5f919a8c7e6b7a5a0b
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/jquery/jquery.min.x34259.js HTTP/1.1
Host: bizuz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bizuz.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Sun, 05 Nov 2023 03:47:22 GMT
content-type: application/x-javascript
last-modified: Wed, 07 Apr 2021 11:14:03 GMT
etag: "15d98-606d93fb-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 30287
date: Sat, 05 Nov 2022 03:47:22 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
access-control-allow-origin: *
pragma: public
x-powered-by: W3 Total Cache/2.2.6
X-Firefox-Spdy: h2
bizuz.com/wp-includes/js/jquery/jquery-migrate.min.x34259.js
35.200.241.195200 OK 4.0 kB URL HTTP/2 bizuz.com/wp-includes/js/jquery/jquery-migrate.min.x34259.js
IP 35.200.241.195:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (11126)
Hash 7e058b51f939eacfa31cdface14dded5
9d732e5afdeb42edef9e1b9631b7e95e054787cc
4ece5b00423755d8f4121ce382c8ea4dc44c241f28f150abe19caa85d0b0acc1
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/jquery/jquery-migrate.min.x34259.js HTTP/1.1
Host: bizuz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bizuz.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Sun, 05 Nov 2023 03:47:22 GMT
content-type: application/x-javascript
last-modified: Wed, 07 Apr 2021 11:14:03 GMT
etag: "2bd8-606d93fb-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3995
date: Sat, 05 Nov 2022 03:47:22 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
access-control-allow-origin: *
pragma: public
x-powered-by: W3 Total Cache/2.2.6
X-Firefox-Spdy: h2
bizuz.com/wp-content/plugins/mtouch-quiz/script.x34259.js
35.200.241.195200 OK 7.9 kB URL HTTP/2 bizuz.com/wp-content/plugins/mtouch-quiz/script.x34259.js
IP 35.200.241.195:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with CRLF line terminators
Hash 9e5c49c167283ab7f047eb968d8442d4
08bbdc822b0cd70098c331ff1039b763cc05b921
b21d1eebe663bac6caccdaebd0cccefb91efb55bf452660e7014df59ba187a10
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/mtouch-quiz/script.x34259.js HTTP/1.1
Host: bizuz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bizuz.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Sun, 05 Nov 2023 03:47:22 GMT
content-type: application/x-javascript
last-modified: Sat, 04 Dec 2021 12:17:56 GMT
etag: "b46b-61ab5c74-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 7885
date: Sat, 05 Nov 2022 03:47:22 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
access-control-allow-origin: *
pragma: public
x-powered-by: W3 Total Cache/2.2.6
X-Firefox-Spdy: h2
bizuz.com/wp-content/plugins/edumax-core/assets/js/main.x34259.js
35.200.241.195200 OK 1.0 kB URL HTTP/2 bizuz.com/wp-content/plugins/edumax-core/assets/js/main.x34259.js
IP 35.200.241.195:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with CRLF line terminators
Hash 5e06c20361c3bffdc34ee59065974a61
85c9589aa04ce83ae3caa8adbfb7f32620793238
cf66b756c88dc8290cbcbb0b58e7e2f53025b1aa74fae5bbe141bbc1124ee7dc
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/edumax-core/assets/js/main.x34259.js HTTP/1.1
Host: bizuz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bizuz.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Sun, 05 Nov 2023 03:47:22 GMT
content-type: application/x-javascript
last-modified: Tue, 19 Jan 2021 08:09:12 GMT
etag: "1052-600693a8-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1040
date: Sat, 05 Nov 2022 03:47:22 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
access-control-allow-origin: *
pragma: public
x-powered-by: W3 Total Cache/2.2.6
X-Firefox-Spdy: h2
bizuz.com/wp-content/plugins/embedpress/assets/js/pdfobject.min.x34259.js
35.200.241.195200 OK 4.1 kB URL HTTP/2 bizuz.com/wp-content/plugins/embedpress/assets/js/pdfobject.min.x34259.js
IP 35.200.241.195:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
Hash a9d6c8dc6a3b6392bbdd005429ffa55c
82e8b3ee0aa30fff040cfd536befded297dcd0ab
e011665cb11528e885149303493ae6c87cece762390192058505c19034b2deae
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/embedpress/assets/js/pdfobject.min.x34259.js HTTP/1.1
Host: bizuz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bizuz.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Sun, 05 Nov 2023 03:47:22 GMT
content-type: application/x-javascript
last-modified: Sat, 29 Oct 2022 07:27:06 GMT
etag: "34d3-635cd5ca-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 4084
date: Sat, 05 Nov 2022 03:47:22 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
access-control-allow-origin: *
pragma: public
x-powered-by: W3 Total Cache/2.2.6
X-Firefox-Spdy: h2
bizuz.com/wp-content/plugins/tutor-pro/addons/push-notification/assets/js/registrar.x34259.js
35.200.241.195200 OK 1.7 kB URL HTTP/2 bizuz.com/wp-content/plugins/tutor-pro/addons/push-notification/assets/js/registrar.x34259.js
IP 35.200.241.195:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
Hash f5aceaf4fb16ab41e253ab436a15160b
e121b898838ea7ef87dca002a26c622861829b5e
84f3e05ddecbbc4685b33b790f0317665d842ee85d34e018fd778987d7c9cd0c
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/tutor-pro/addons/push-notification/assets/js/registrar.x34259.js HTTP/1.1
Host: bizuz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bizuz.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Sun, 05 Nov 2023 03:47:22 GMT
content-type: application/x-javascript
last-modified: Fri, 06 Aug 2021 15:59:51 GMT
etag: "174e-610d5c77-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1692
date: Sat, 05 Nov 2022 03:47:22 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
access-control-allow-origin: *
pragma: public
x-powered-by: W3 Total Cache/2.2.6
X-Firefox-Spdy: h2
bizuz.com/wp-content/plugins/iks-menu/assets/js/public.x34259.js
35.200.241.195200 OK 421 B URL HTTP/2 bizuz.com/wp-content/plugins/iks-menu/assets/js/public.x34259.js
IP 35.200.241.195:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (936), with no line terminators
Hash 5ef787c2f7ef5fe9ba7515d8c1e14a8c
e690352f7404f1bd8e39a45975d10cd38168403d
477bcc99213c46dd21dddda3c00dbe954dda336f63ca28b57997760267fe0e53
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/iks-menu/assets/js/public.x34259.js HTTP/1.1
Host: bizuz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bizuz.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Sun, 05 Nov 2023 03:47:22 GMT
content-type: application/x-javascript
last-modified: Mon, 05 Sep 2022 10:17:33 GMT
etag: "3a8-6315ccbd-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 421
date: Sat, 05 Nov 2022 03:47:22 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
access-control-allow-origin: *
pragma: public
x-powered-by: W3 Total Cache/2.2.6
X-Firefox-Spdy: h2
bizuz.com/wp-content/plugins/iks-menu/assets/js/menu.x34259.js
35.200.241.195200 OK 2.2 kB URL HTTP/2 bizuz.com/wp-content/plugins/iks-menu/assets/js/menu.x34259.js
IP 35.200.241.195:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
Hash 19b6b77c0179022c365adac15a74ccae
afd68c1eda721590d498c2637dd693bdfd6bfd74
24a0ee1a12ab686de70ad7e4dd6ecc5f1a4bdc7cfa8b05a3cbfdca9e3ae50684
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/iks-menu/assets/js/menu.x34259.js HTTP/1.1
Host: bizuz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bizuz.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Sun, 05 Nov 2023 03:47:22 GMT
content-type: application/x-javascript
last-modified: Mon, 05 Sep 2022 10:17:33 GMT
etag: "28d1-6315ccbd-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2180
date: Sat, 05 Nov 2022 03:47:22 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
access-control-allow-origin: *
pragma: public
x-powered-by: W3 Total Cache/2.2.6
X-Firefox-Spdy: h2
bizuz.com/wp-includes/js/utils.min.x34259.js
35.200.241.195200 OK 760 B URL HTTP/2 bizuz.com/wp-includes/js/utils.min.x34259.js
IP 35.200.241.195:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (1829)
Hash 12d0fab839162c62b3d884ecd3b326eb
53f2d31231b6fbc59f060920d61a498f0a129fd2
2e7556c05344a1339408a17fb5a19fe10e8656dbcb35bc4b2220200a9991ffda
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/utils.min.x34259.js HTTP/1.1
Host: bizuz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bizuz.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Sun, 05 Nov 2023 03:47:22 GMT
content-type: application/x-javascript
last-modified: Wed, 07 Apr 2021 11:14:03 GMT
etag: "748-606d93fb-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 760
date: Sat, 05 Nov 2022 03:47:22 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
access-control-allow-origin: *
pragma: public
x-powered-by: W3 Total Cache/2.2.6
X-Firefox-Spdy: h2
bizuz.com/wp-includes/js/plupload/moxie.min.x34259.js
35.200.241.195200 OK 27 kB URL HTTP/2 bizuz.com/wp-includes/js/plupload/moxie.min.x34259.js
IP 35.200.241.195:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (65536), with no line terminators
Hash 0fa693db69d61445ebf2b3754cdd99ef
1fc204ebeb98b3cb4d29feca7c12084dbfad708b
fb211c6259d1911033721324e315c0480e9414707f028bc06c4aeb51cac956ab
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/plupload/moxie.min.x34259.js HTTP/1.1
Host: bizuz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bizuz.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Sun, 05 Nov 2023 03:47:22 GMT
content-type: application/x-javascript
last-modified: Fri, 16 Apr 2021 04:36:24 GMT
etag: "1566c-60791448-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 26616
date: Sat, 05 Nov 2022 03:47:22 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
access-control-allow-origin: *
pragma: public
x-powered-by: W3 Total Cache/2.2.6
X-Firefox-Spdy: h2
bizuz.com/wp-content/plugins/wpforms-lite/assets/js/integrations/elementor/frontend.min.x34259.js
35.200.241.195200 OK 339 B URL HTTP/2 bizuz.com/wp-content/plugins/wpforms-lite/assets/js/integrations/elementor/frontend.min.x34259.js
IP 35.200.241.195:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (754), with no line terminators
Hash f4cea5c82bb62f34a31f39a322513366
bab5dfb3f8d04b76f83ca994798534e697b85290
5b00e0c1288d5d1f1df303a55bd0ff67d9acf5b734bc0093a651727c48a077ff
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/wpforms-lite/assets/js/integrations/elementor/frontend.min.x34259.js HTTP/1.1
Host: bizuz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bizuz.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Sun, 05 Nov 2023 03:47:23 GMT
content-type: application/x-javascript
last-modified: Sat, 29 Oct 2022 07:30:58 GMT
etag: "2f2-635cd6b2-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 339
date: Sat, 05 Nov 2022 03:47:23 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
access-control-allow-origin: *
pragma: public
x-powered-by: W3 Total Cache/2.2.6
X-Firefox-Spdy: h2
bizuz.com/wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart-variation.min.x34259.js
35.200.241.195200 OK 3.4 kB URL HTTP/2 bizuz.com/wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart-variation.min.x34259.js
IP 35.200.241.195:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (13590), with no line terminators
Hash 82352cd449ef5c2c92f7eae92a6841b5
ca4642f38f955ef0f42c1e6867b3cea7b26e552e
7d2428449304c3235523698b87acf2c2ebed5304f3cfd7a073abe62e9456d31a
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart-variation.min.x34259.js HTTP/1.1
Host: bizuz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bizuz.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Sun, 05 Nov 2023 03:47:23 GMT
content-type: application/x-javascript
last-modified: Fri, 04 Mar 2022 17:46:17 GMT
etag: "3516-62225069-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3419
date: Sat, 05 Nov 2022 03:47:23 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
access-control-allow-origin: *
pragma: public
x-powered-by: W3 Total Cache/2.2.6
X-Firefox-Spdy: h2
bizuz.com/wp-includes/js/clipboard.min.x34259.js
35.200.241.195200 OK 3.1 kB URL HTTP/2 bizuz.com/wp-includes/js/clipboard.min.x34259.js
IP 35.200.241.195:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (10384)
Hash 5ab6ae8e4f63cf2f69fcba79a7fbe0f3
e41d4829f2561ee1d052e5ade80f9a5f122a2e40
3f2fb2205d011dc0062e3c63289375d33380249a0e7545ecae225b7fe1fe665b
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/clipboard.min.x34259.js HTTP/1.1
Host: bizuz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bizuz.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Sun, 05 Nov 2023 03:47:23 GMT
content-type: application/x-javascript
last-modified: Fri, 16 Apr 2021 04:36:24 GMT
etag: "28b3-60791448-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3140
date: Sat, 05 Nov 2022 03:47:23 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
access-control-allow-origin: *
pragma: public
x-powered-by: W3 Total Cache/2.2.6
X-Firefox-Spdy: h2
bizuz.com/wp-content/plugins/woocommerce/assets/js/frontend/single-product.min.x34259.js
35.200.241.195200 OK 1.7 kB URL HTTP/2 bizuz.com/wp-content/plugins/woocommerce/assets/js/frontend/single-product.min.x34259.js
IP 35.200.241.195:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type Unicode text, UTF-8 text, with very long lines (6357), with no line terminators
Hash 70cc8e74d2d4626148acba55a4608dbd
d57045f3e31a245e6ebf818adf17886a83c1043c
764428782a932f7646daef46e5dbbb5062ba578de2bf7e2050ccaa12df789138
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/woocommerce/assets/js/frontend/single-product.min.x34259.js HTTP/1.1
Host: bizuz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bizuz.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Sun, 05 Nov 2023 03:47:23 GMT
content-type: application/x-javascript
last-modified: Fri, 04 Mar 2022 17:46:17 GMT
etag: "18d8-62225069-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1712
date: Sat, 05 Nov 2022 03:47:23 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
access-control-allow-origin: *
pragma: public
x-powered-by: W3 Total Cache/2.2.6
X-Firefox-Spdy: h2
bizuz.com/wp-includes/js/plupload/plupload.min.x34259.js
35.200.241.195200 OK 5.4 kB URL HTTP/2 bizuz.com/wp-includes/js/plupload/plupload.min.x34259.js
IP 35.200.241.195:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (15612), with no line terminators
Hash ac71c85d6766fe616c00d7672d20ed90
c4a980cb0f6d5123c1b10f2695580b7b9413e54f
d71a2257e634f152b2bbb52c22bf76329ebb1ef4a3cea75ab5c455a6740345aa
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/plupload/plupload.min.x34259.js HTTP/1.1
Host: bizuz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bizuz.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Sun, 05 Nov 2023 03:47:23 GMT
content-type: application/x-javascript
last-modified: Wed, 07 Apr 2021 11:14:03 GMT
etag: "3cfc-606d93fb-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 5368
date: Sat, 05 Nov 2022 03:47:23 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
access-control-allow-origin: *
pragma: public
x-powered-by: W3 Total Cache/2.2.6
X-Firefox-Spdy: h2
bizuz.com/wp-content/plugins/tutor-lms-elementor-addons/assets/js/slick.min.x34259.js
35.200.241.195200 OK 11 kB URL HTTP/2 bizuz.com/wp-content/plugins/tutor-lms-elementor-addons/assets/js/slick.min.x34259.js
IP 35.200.241.195:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (3201)
Hash 7f6dd4b675ac19550aad05cc1e7bc3e8
5427981f8385ba97d713d9da95f5366294936b64
d55f69b5b1f6b4bbe77a024b4901e8cda667ccff5a080d31252b21be32c79153
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/tutor-lms-elementor-addons/assets/js/slick.min.x34259.js HTTP/1.1
Host: bizuz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bizuz.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Sun, 05 Nov 2023 03:47:23 GMT
content-type: application/x-javascript
last-modified: Wed, 14 Sep 2022 17:59:08 GMT
etag: "c2cd-6322166c-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 10731
date: Sat, 05 Nov 2022 03:47:23 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
access-control-allow-origin: *
pragma: public
x-powered-by: W3 Total Cache/2.2.6
X-Firefox-Spdy: h2
bizuz.com/wp-content/plugins/tutor-lms-elementor-addons/assets/js/tutor-elementor.x34259.js
35.200.241.195200 OK 1.1 kB URL HTTP/2 bizuz.com/wp-content/plugins/tutor-lms-elementor-addons/assets/js/tutor-elementor.x34259.js
IP 35.200.241.195:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
Hash 0dadc0b5058dbb06e4365a05a1ece096
3b7441970bd50c5df5d027dd51d89fbbe0fec4b0
7c37decdedd0cebce33ca5077debaf369f2af7f58a0da60a7d758cf6e30ac311
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/tutor-lms-elementor-addons/assets/js/tutor-elementor.x34259.js HTTP/1.1
Host: bizuz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bizuz.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Sun, 05 Nov 2023 03:47:23 GMT
content-type: application/x-javascript
last-modified: Wed, 14 Sep 2022 17:59:08 GMT
etag: "13ea-6322166c-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1084
date: Sat, 05 Nov 2022 03:47:23 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
access-control-allow-origin: *
pragma: public
x-powered-by: W3 Total Cache/2.2.6
X-Firefox-Spdy: h2
bizuz.com/wp-content/plugins/advanced-dynamic-pricing-for-woocommerce/BaseVersion/assets/js/frontend.x34259.js
35.200.241.195200 OK 736 B URL HTTP/2 bizuz.com/wp-content/plugins/advanced-dynamic-pricing-for-woocommerce/BaseVersion/assets/js/frontend.x34259.js
IP 35.200.241.195:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
Hash 1a1b04b0a62be4bbed075ed579043d72
8c88466caec0c9d385ccb5a761656f53735304b9
f6e38685fa4c5cb5b8bf935ee02eb08534412b72052077ef9b0203ef3d823c12
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/advanced-dynamic-pricing-for-woocommerce/BaseVersion/assets/js/frontend.x34259.js HTTP/1.1
Host: bizuz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bizuz.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Sun, 05 Nov 2023 03:47:23 GMT
content-type: application/x-javascript
last-modified: Sat, 29 Oct 2022 07:26:05 GMT
etag: "a58-635cd58d-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 736
date: Sat, 05 Nov 2022 03:47:23 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
access-control-allow-origin: *
pragma: public
x-powered-by: W3 Total Cache/2.2.6
X-Firefox-Spdy: h2
bizuz.com/wp-content/uploads/2021/02/New-update-png.x34259.png
35.200.241.195200 OK 39 kB URL HTTP/2 bizuz.com/wp-content/uploads/2021/02/New-update-png.x34259.png
IP 35.200.241.195:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type PNG image data, 2960 x 1000, 8-bit colormap, non-interlaced\012- data
Hash 25cee975d8dd1805a40172d4bf99ae8d
67c86cc2ad410a9b19412f946f0a1baa3b3ad425
674e4a959b0e3f90e3d7252b782c0b1b8efb35c1c7acab2b20389ed73c1ee831
GET /wp-content/uploads/2021/02/New-update-png.x34259.png HTTP/1.1
Host: bizuz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bizuz.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Sun, 05 Nov 2023 03:47:23 GMT
content-type: image/png
last-modified: Thu, 20 May 2021 03:11:22 GMT
etag: "99fa-60a5d35a-0;;;"
accept-ranges: bytes
content-length: 39418
date: Sat, 05 Nov 2022 03:47:23 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
pragma: public
x-powered-by: W3 Total Cache/2.2.6
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 4a9066e8faeec7f06d9a7e91bef8ff52
699ce1c29412a4c3f9018f4deceb3db399ddcd29
46461d19bf1ea06f23d89c4179135eaca9d7c8753a91e913b3adaf2615bee36f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 05 Nov 2022 03:47:23 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 4a9066e8faeec7f06d9a7e91bef8ff52
699ce1c29412a4c3f9018f4deceb3db399ddcd29
46461d19bf1ea06f23d89c4179135eaca9d7c8753a91e913b3adaf2615bee36f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 05 Nov 2022 03:47:23 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
bizuz.com/wp-includes/js/wp-emoji-release.min.js?ver=5.7.8
35.200.241.195200 OK 4.3 kB URL HTTP/2 bizuz.com/wp-includes/js/wp-emoji-release.min.js?ver=5.7.8
IP 35.200.241.195:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (11272)
Hash 7d87881141a40d52cd30db52b4c49b6d
835ff8fcb3b6a2d309fe7f5bf2e97bf1f619f74f
a5ba20e36a910013cb27d443a2555f2b5fcdfe180ea759f93e2f8dd67d485583
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/wp-emoji-release.min.js?ver=5.7.8 HTTP/1.1
Host: bizuz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bizuz.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Sun, 05 Nov 2023 03:47:23 GMT
content-type: application/x-javascript
last-modified: Wed, 07 Apr 2021 11:14:03 GMT
etag: "3795-606d93fb-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 4316
date: Sat, 05 Nov 2022 03:47:23 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
access-control-allow-origin: *
pragma: public
x-powered-by: W3 Total Cache/2.2.6
X-Firefox-Spdy: h2
bizuz.com/wp-content/uploads/2021/01/Edexcel-IGCSE-Accounting-Past-Papers-1-362x190.x34259.jpg
35.200.241.195200 OK 22 kB URL HTTP/2 bizuz.com/wp-content/uploads/2021/01/Edexcel-IGCSE-Accounting-Past-Papers-1-362x190.x34259.jpg
IP 35.200.241.195:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 362x190, components 3\012- data
Hash 9798a3c91f466353ab6fbc3e2a286041
c178babe30057a4474462a746c6f2fcca81a90f0
67c21d3abd399bdcb0edbafd9d11ad3ae216a4d3667cb2ceef6d5f177b1e58cb
GET /wp-content/uploads/2021/01/Edexcel-IGCSE-Accounting-Past-Papers-1-362x190.x34259.jpg HTTP/1.1
Host: bizuz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bizuz.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Sun, 05 Nov 2023 03:47:23 GMT
content-type: image/jpeg
last-modified: Wed, 02 Jun 2021 06:51:08 GMT
etag: "54cb-60b72a5c-0;;;"
accept-ranges: bytes
content-length: 21707
date: Sat, 05 Nov 2022 03:47:23 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
pragma: public
x-powered-by: W3 Total Cache/2.2.6
X-Firefox-Spdy: h2
bizuz.com/wp-content/uploads/2021/01/Edexcel-IAL-Accounting-Unit-2-Past-Papers-1-362x190.x34259.jpg
35.200.241.195200 OK 22 kB URL HTTP/2 bizuz.com/wp-content/uploads/2021/01/Edexcel-IAL-Accounting-Unit-2-Past-Papers-1-362x190.x34259.jpg
IP 35.200.241.195:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 362x190, components 3\012- data
Hash 7eec0b92588256093fb97419e2f60f3a
4419372e4fa79285e1ec5153d3738f7b5b160211
6ac5953ce834eee0461cf01437912921f3c7845bc7d2fa7d57c6b4ce82e03e3f
GET /wp-content/uploads/2021/01/Edexcel-IAL-Accounting-Unit-2-Past-Papers-1-362x190.x34259.jpg HTTP/1.1
Host: bizuz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bizuz.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Sun, 05 Nov 2023 03:47:23 GMT
content-type: image/jpeg
last-modified: Wed, 02 Jun 2021 06:51:58 GMT
etag: "554f-60b72a8e-0;;;"
accept-ranges: bytes
content-length: 21839
date: Sat, 05 Nov 2022 03:47:23 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
pragma: public
x-powered-by: W3 Total Cache/2.2.6
X-Firefox-Spdy: h2
bizuz.com/wp-content/uploads/2021/01/Edexcel-IAL-Accounting-Unit-1-Past-Papers-1-362x190.x34259.jpg
35.200.241.195200 OK 21 kB URL HTTP/2 bizuz.com/wp-content/uploads/2021/01/Edexcel-IAL-Accounting-Unit-1-Past-Papers-1-362x190.x34259.jpg
IP 35.200.241.195:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 362x190, components 3\012- data
Hash 3f7675d25a3bed9e7bb6468b326a11a7
3fda56a73804bceda1276016369648ef8eaf36d0
a9ab414cfa7c45ab83dd83e43dd09dc949de873dbb449717df8177d699a85911
GET /wp-content/uploads/2021/01/Edexcel-IAL-Accounting-Unit-1-Past-Papers-1-362x190.x34259.jpg HTTP/1.1
Host: bizuz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bizuz.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Sun, 05 Nov 2023 03:47:23 GMT
content-type: image/jpeg
last-modified: Wed, 02 Jun 2021 06:52:40 GMT
etag: "5393-60b72ab8-0;;;"
accept-ranges: bytes
content-length: 21395
date: Sat, 05 Nov 2022 03:47:23 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
pragma: public
x-powered-by: W3 Total Cache/2.2.6
X-Firefox-Spdy: h2
bizuz.com/wp-content/uploads/2021/01/Edexcel-IGCSE-Bengali-Past-Papers-362x190.x34259.jpg
35.200.241.195200 OK 22 kB URL HTTP/2 bizuz.com/wp-content/uploads/2021/01/Edexcel-IGCSE-Bengali-Past-Papers-362x190.x34259.jpg
IP 35.200.241.195:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 362x190, components 3\012- data
Hash 5eab895e2a5dec026efcf5e4a583c098
421d9d4d6a123f65583c618af0ade05dc8423ed4
232d71d2af780f84a14ffffafa40307ae15c3cb2aa8b5cf46ba7832859ce42ac
GET /wp-content/uploads/2021/01/Edexcel-IGCSE-Bengali-Past-Papers-362x190.x34259.jpg HTTP/1.1
Host: bizuz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bizuz.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Sun, 05 Nov 2023 03:47:23 GMT
content-type: image/jpeg
last-modified: Tue, 11 May 2021 11:37:28 GMT
etag: "56e2-609a6c78-0;;;"
accept-ranges: bytes
content-length: 22242
date: Sat, 05 Nov 2022 03:47:23 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
pragma: public
x-powered-by: W3 Total Cache/2.2.6
X-Firefox-Spdy: h2
bizuz.com/wp-content/uploads/2021/01/Edexcel-IGCSE-Biology-Paper-2-Past-Papers-362x190.x34259.jpg
35.200.241.195200 OK 24 kB URL HTTP/2 bizuz.com/wp-content/uploads/2021/01/Edexcel-IGCSE-Biology-Paper-2-Past-Papers-362x190.x34259.jpg
IP 35.200.241.195:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 362x190, components 3\012- data
Hash fb093d430337882d72423cf36048e6e2
3de4adcac5a9f8a2ab893ee4c40e8f73f9e29ee3
cee1923ae021d4bd6fa034e717eefe4bf12ae9eb711ec5e12b7fd3def5318c8b
GET /wp-content/uploads/2021/01/Edexcel-IGCSE-Biology-Paper-2-Past-Papers-362x190.x34259.jpg HTTP/1.1
Host: bizuz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bizuz.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Sun, 05 Nov 2023 03:47:23 GMT
content-type: image/jpeg
last-modified: Wed, 02 Jun 2021 06:53:21 GMT
etag: "5fbe-60b72ae1-0;;;"
accept-ranges: bytes
content-length: 24510
date: Sat, 05 Nov 2022 03:47:23 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
pragma: public
x-powered-by: W3 Total Cache/2.2.6
X-Firefox-Spdy: h2
bizuz.com/wp-content/uploads/2021/01/Edexcel-IGCSE-Business-Studies-Paper-2-Past-Papers-362x190.x34259.jpg
35.200.241.195200 OK 24 kB URL HTTP/2 bizuz.com/wp-content/uploads/2021/01/Edexcel-IGCSE-Business-Studies-Paper-2-Past-Papers-362x190.x34259.jpg
IP 35.200.241.195:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 362x190, components 3\012- data
Hash 3aa9b8c9941a4aa3f28ce65c567d482c
6b9ed8a9a7ced002d8865b2828e72348ee50eba1
4b9288b5db2a4d0c1586c11093eb7d19cc580bf031671848278db84b71f513eb
GET /wp-content/uploads/2021/01/Edexcel-IGCSE-Business-Studies-Paper-2-Past-Papers-362x190.x34259.jpg HTTP/1.1
Host: bizuz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bizuz.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Sun, 05 Nov 2023 03:47:23 GMT
content-type: image/jpeg
last-modified: Wed, 02 Jun 2021 06:53:59 GMT
etag: "5f04-60b72b07-0;;;"
accept-ranges: bytes
content-length: 24324
date: Sat, 05 Nov 2022 03:47:23 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
pragma: public
x-powered-by: W3 Total Cache/2.2.6
X-Firefox-Spdy: h2
bizuz.com/wp-content/plugins/edumax-core/assets/images/google-icon.x34259.png
35.200.241.195200 OK 8.1 kB URL HTTP/2 bizuz.com/wp-content/plugins/edumax-core/assets/images/google-icon.x34259.png
IP 35.200.241.195:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type PNG image data, 382 x 92, 8-bit/color RGBA, non-interlaced\012- data
Hash 52a05e731e61db85e7d96bf3f10d919c
bbf56c48cbc340ba0c67e094f0bd6d2af8043e0d
1811e95030cddcf518b8c2e94f9af62cc21d839bf7f347c99b6989e3cf589324
GET /wp-content/plugins/edumax-core/assets/images/google-icon.x34259.png HTTP/1.1
Host: bizuz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bizuz.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Sun, 05 Nov 2023 03:47:23 GMT
content-type: image/png
last-modified: Tue, 19 Jan 2021 08:09:12 GMT
etag: "1f77-600693a8-0;;;"
accept-ranges: bytes
content-length: 8055
date: Sat, 05 Nov 2022 03:47:23 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
pragma: public
x-powered-by: W3 Total Cache/2.2.6
X-Firefox-Spdy: h2
bizuz.com/wp-content/plugins/elementor/assets/lib/animations/animations.min.x34259.css
35.200.241.195200 OK 2.4 kB URL HTTP/2 bizuz.com/wp-content/plugins/elementor/assets/lib/animations/animations.min.x34259.css
IP 35.200.241.195:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (10019)
Hash d2db71c82a8f672aea59a3e050cd8cd7
af626566f94b3164e4310288cfb142431e8349a6
bcd2c9c2ba22a48a8fabf9fbe5e947deb6404367e4be24f48326e302aead1180
GET /wp-content/plugins/elementor/assets/lib/animations/animations.min.x34259.css HTTP/1.1
Host: bizuz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bizuz.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Sun, 05 Nov 2023 03:47:23 GMT
content-type: text/css
last-modified: Sat, 29 Oct 2022 07:26:50 GMT
etag: "4824-635cd5ba-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2442
date: Sat, 05 Nov 2022 03:47:23 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
pragma: public
x-powered-by: W3 Total Cache/2.2.6
X-Firefox-Spdy: h2
bizuz.com/wp-includes/js/dist/vendor/wp-polyfill.min.x34259.js
35.200.241.195200 OK 33 kB URL HTTP/2 bizuz.com/wp-includes/js/dist/vendor/wp-polyfill.min.x34259.js
IP 35.200.241.195:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type Unicode text, UTF-8 text, with very long lines (34729), with NEL line terminators
Hash 8b15356d1a677e5b97c729e5e0bfd9f0
ee507dc198cebd2e6dd8646ebb634eabc4251ed8
3ce863de24ea00111e33686027c22631edd7a940f3354c8695aea7640fcf1579
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/dist/vendor/wp-polyfill.min.x34259.js HTTP/1.1
Host: bizuz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bizuz.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Sun, 05 Nov 2023 03:47:23 GMT
content-type: application/x-javascript
last-modified: Wed, 07 Apr 2021 11:14:03 GMT
etag: "183ee-606d93fb-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 32625
date: Sat, 05 Nov 2022 03:47:23 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
access-control-allow-origin: *
pragma: public
x-powered-by: W3 Total Cache/2.2.6
X-Firefox-Spdy: h2
bizuz.com/wp-content/plugins/contact-form-7/includes/js/index.x34259.js
35.200.241.195200 OK 3.1 kB URL HTTP/2 bizuz.com/wp-content/plugins/contact-form-7/includes/js/index.x34259.js
IP 35.200.241.195:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type HTML document, ASCII text, with very long lines (9720), with no line terminators
Hash 7b3d5adb95a380672e7d5da68b57b3c0
58db2566c56407e29d4557d912663b36ec328b14
aaa8914b936896ede7bb53ba3a4273d63bf82ed918efe0cfac6f2b3f4641a423
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/contact-form-7/includes/js/index.x34259.js HTTP/1.1
Host: bizuz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bizuz.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Sun, 05 Nov 2023 03:47:23 GMT
content-type: application/x-javascript
last-modified: Fri, 04 Mar 2022 17:43:50 GMT
etag: "25f8-62224fd6-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3050
date: Sat, 05 Nov 2022 03:47:23 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
access-control-allow-origin: *
pragma: public
x-powered-by: W3 Total Cache/2.2.6
X-Firefox-Spdy: h2
bizuz.com/wp-content/plugins/embedpress/assets/js/front.x34259.js
35.200.241.195200 OK 2.6 kB URL HTTP/2 bizuz.com/wp-content/plugins/embedpress/assets/js/front.x34259.js
IP 35.200.241.195:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
Hash 4501279d8b8b780bcac5ca0bbd7ea57b
84facc066e8765d1df1a1674de02a9a297a07926
cfda6aab5d4db3113a5a88cb15d7c5eb4e738dd44354c11a4dc259a10176d929
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/embedpress/assets/js/front.x34259.js HTTP/1.1
Host: bizuz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bizuz.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Sun, 05 Nov 2023 03:47:23 GMT
content-type: application/x-javascript
last-modified: Sat, 29 Oct 2022 07:27:06 GMT
etag: "2540-635cd5ca-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2583
date: Sat, 05 Nov 2022 03:47:23 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
access-control-allow-origin: *
pragma: public
x-powered-by: W3 Total Cache/2.2.6
X-Firefox-Spdy: h2
bizuz.com/wp-content/plugins/mystickymenu/js/detectmobilebrowser.x34259.js
35.200.241.195200 OK 1.3 kB URL HTTP/2 bizuz.com/wp-content/plugins/mystickymenu/js/detectmobilebrowser.x34259.js
IP 35.200.241.195:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (2065)
Hash 335d18563b078b93e50d6eade2070104
8858cdae674d3650a98d2a89be01e1ce51c4fcd3
b60c90cfbc1f7479ce3c16d61406090485e7bb3f83694a2b4222a90dd73b892f
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/mystickymenu/js/detectmobilebrowser.x34259.js HTTP/1.1
Host: bizuz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bizuz.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Sun, 05 Nov 2023 03:47:23 GMT
content-type: application/x-javascript
last-modified: Sat, 29 Oct 2022 07:27:48 GMT
etag: "8a3-635cd5f4-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1342
date: Sat, 05 Nov 2022 03:47:23 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
access-control-allow-origin: *
pragma: public
x-powered-by: W3 Total Cache/2.2.6
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Roboto%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto+Slab%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=auto&ver=5.7.8
142.250.74.10200 OK 2.9 kB URL HTTP/2 fonts.googleapis.com/css?family=Roboto%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto+Slab%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=auto&ver=5.7.8
IP 142.250.74.10:0
Hash 714c673b665de5f22700e286bdb23918
68e24920eb486e010feca9f905a8d739a691c1dd
afb640435d4e56623ffdabd6c45567aeb4c2f13007eabf8b075639c9a50d21cd
GET /css?family=Roboto%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto+Slab%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=auto&ver=5.7.8 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bizuz.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sat, 05 Nov 2022 03:47:21 GMT
date: Sat, 05 Nov 2022 03:47:21 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
bizuz.com/wp-includes/js/dist/hooks.min.x34259.js
35.200.241.195200 OK 2.2 kB URL HTTP/2 bizuz.com/wp-includes/js/dist/hooks.min.x34259.js
IP 35.200.241.195:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (6944)
Hash 0c602e16aa64fc034688c69da9c4147b
06809f86ff66a49e371b6e8abd2764afde4f3211
e4f27c9fda045551f73388fd26503b6c32058751a9d7206e5c854183ccfb6aaf
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/dist/hooks.min.x34259.js HTTP/1.1
Host: bizuz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bizuz.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Sun, 05 Nov 2023 03:47:23 GMT
content-type: application/x-javascript
last-modified: Tue, 14 Sep 2021 02:13:57 GMT
etag: "1b43-61400565-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2214
date: Sat, 05 Nov 2022 03:47:23 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
access-control-allow-origin: *
pragma: public
x-powered-by: W3 Total Cache/2.2.6
X-Firefox-Spdy: h2
bizuz.com/wp-includes/js/dist/i18n.min.x34259.js
35.200.241.195200 OK 3.7 kB URL HTTP/2 bizuz.com/wp-includes/js/dist/i18n.min.x34259.js
IP 35.200.241.195:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
Hash b062b05b11bc52b26c573ee6076c07df
b2fd8519706e117c920cff152761429887726b2b
a35166b860c67c57a0e611284f5a05490dd61c0109a4f6f11e827e11bdae7950
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/dist/i18n.min.x34259.js HTTP/1.1
Host: bizuz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bizuz.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Sun, 05 Nov 2023 03:47:23 GMT
content-type: application/x-javascript
last-modified: Tue, 14 Sep 2021 02:13:58 GMT
etag: "27d6-61400566-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3721
date: Sat, 05 Nov 2022 03:47:23 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
access-control-allow-origin: *
pragma: public
x-powered-by: W3 Total Cache/2.2.6
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 656a355c6cb333c5554fa65748d3d165
15e6dc206e412e258ca49e2eec46e67b831ea4a6
3bdcb16737f73a6985f7cfe3b221882d91b27ab3ec6f940f14477f94a0e40720
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 05 Nov 2022 03:47:23 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 656a355c6cb333c5554fa65748d3d165
15e6dc206e412e258ca49e2eec46e67b831ea4a6
3bdcb16737f73a6985f7cfe3b221882d91b27ab3ec6f940f14477f94a0e40720
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 05 Nov 2022 03:47:23 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 656a355c6cb333c5554fa65748d3d165
15e6dc206e412e258ca49e2eec46e67b831ea4a6
3bdcb16737f73a6985f7cfe3b221882d91b27ab3ec6f940f14477f94a0e40720
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 05 Nov 2022 03:47:23 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 656a355c6cb333c5554fa65748d3d165
15e6dc206e412e258ca49e2eec46e67b831ea4a6
3bdcb16737f73a6985f7cfe3b221882d91b27ab3ec6f940f14477f94a0e40720
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 05 Nov 2022 03:47:23 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 656a355c6cb333c5554fa65748d3d165
15e6dc206e412e258ca49e2eec46e67b831ea4a6
3bdcb16737f73a6985f7cfe3b221882d91b27ab3ec6f940f14477f94a0e40720
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 05 Nov 2022 03:47:23 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/quicksand/v30/6xKtdSZaM9iE8KbpRA_hK1QN.woff2
216.58.207.195200 OK 26 kB URL HTTP/2 fonts.gstatic.com/s/quicksand/v30/6xKtdSZaM9iE8KbpRA_hK1QN.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 25672, version 1.0\012- data
Hash fe3e5be2baa0126122ba9367ebab73c8
40bec99106dfab5f3721ed725483eb618a9016cd
8b166007d6f54c33b3ea10ea23572bc3166f55f365840d3cbd6ef7b5dcf6674e
GET /s/quicksand/v30/6xKtdSZaM9iE8KbpRA_hK1QN.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://bizuz.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 25672
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 31 Oct 2022 21:16:10 GMT
expires: Tue, 31 Oct 2023 21:16:10 GMT
cache-control: public, max-age=31536000
age: 369073
last-modified: Mon, 18 Jul 2022 19:12:08 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/poppins/v20/pxiEyp8kv8JHgFVrJJfecg.woff2
216.58.207.195200 OK 7.9 kB URL HTTP/2 fonts.gstatic.com/s/poppins/v20/pxiEyp8kv8JHgFVrJJfecg.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 7884, version 1.0\012- data
Hash 9212f6f9860f9fc6c69b02fedf6db8c3
ac6d71b4d5fdd2b3dabc9a06ff6c001e4251da0b
7d93459d86585bfcdbb7e0376056226adb25821ee54b96236fe2123e9560929f
GET /s/poppins/v20/pxiEyp8kv8JHgFVrJJfecg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://bizuz.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 7884
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 02 Nov 2022 21:48:50 GMT
expires: Thu, 02 Nov 2023 21:48:50 GMT
cache-control: public, max-age=31536000
age: 194313
last-modified: Wed, 27 Apr 2022 17:03:52 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/poppins/v20/pxiByp8kv8JHgFVrLCz7Z1xlFQ.woff2
216.58.207.195200 OK 7.8 kB URL HTTP/2 fonts.gstatic.com/s/poppins/v20/pxiByp8kv8JHgFVrLCz7Z1xlFQ.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 7816, version 1.0\012- data
Hash 25b0e113ca7cce3770d542736db26368
cb726212d5d525021752a1d8470a0fb593e0c49e
9338e65fc077355c7a87ae0d64cc101e23b9bf8ad78ae65f0f319c857311b526
GET /s/poppins/v20/pxiByp8kv8JHgFVrLCz7Z1xlFQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://bizuz.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 7816
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 02 Nov 2022 19:30:59 GMT
expires: Thu, 02 Nov 2023 19:30:59 GMT
cache-control: public, max-age=31536000
age: 202584
last-modified: Wed, 27 Apr 2022 16:11:40 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/lato/v23/S6uyw4BMUTPHjx4wXg.woff2
216.58.207.195200 OK 24 kB URL HTTP/2 fonts.gstatic.com/s/lato/v23/S6uyw4BMUTPHjx4wXg.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 23580, version 1.0\012- data
Hash e1b3b5908c9cf23dfb2b9c52b9a023ab
fcd4136085f2a03481d9958cc6793a5ed98e714c
918b7dc3e2e2d015c16ce08b57bcb64d2253bafc1707658f361e72865498e537
GET /s/lato/v23/S6uyw4BMUTPHjx4wXg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://bizuz.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 23580
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 01 Nov 2022 17:10:21 GMT
expires: Wed, 01 Nov 2023 17:10:21 GMT
cache-control: public, max-age=31536000
age: 297422
last-modified: Tue, 26 Apr 2022 15:48:56 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
bizuz.com/wp-includes/js/quicktags.min.x34259.js
35.200.241.195200 OK 3.3 kB URL HTTP/2 bizuz.com/wp-includes/js/quicktags.min.x34259.js
IP 35.200.241.195:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (11114)
Hash 3082ddf6b4507da797889953ba890082
2bf966d8622e0a4a7251e70b59749d03ad5451a5
9e05b45faa080639a59cbf427aef6db300e858713b16eeba279e6f1a80e06a68
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/quicktags.min.x34259.js HTTP/1.1
Host: bizuz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bizuz.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Sun, 05 Nov 2023 03:47:23 GMT
content-type: application/x-javascript
last-modified: Fri, 16 Apr 2021 04:36:24 GMT
etag: "2b8d-60791448-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3329
date: Sat, 05 Nov 2022 03:47:23 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
access-control-allow-origin: *
pragma: public
x-powered-by: W3 Total Cache/2.2.6
X-Firefox-Spdy: h2
bizuz.com/wp-includes/js/jquery/ui/core.min.x34259.js
35.200.241.195200 OK 6.6 kB URL HTTP/2 bizuz.com/wp-includes/js/jquery/ui/core.min.x34259.js
IP 35.200.241.195:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (7973)
Hash a860333ebd586af29e6e3f2f882aaf39
8b0a322de4f2e143339a1f01cf2301f7d5191ad1
5e56e5766fb13582a2bb4c36e780771cb3c27ac8a0e02096cd9f05a55b389653
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/jquery/ui/core.min.x34259.js HTTP/1.1
Host: bizuz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bizuz.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Sun, 05 Nov 2023 03:47:23 GMT
content-type: application/x-javascript
last-modified: Fri, 16 Apr 2021 04:36:24 GMT
etag: "5133-60791448-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 6589
date: Sat, 05 Nov 2022 03:47:23 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
access-control-allow-origin: *
pragma: public
x-powered-by: W3 Total Cache/2.2.6
X-Firefox-Spdy: h2
bizuz.com/wp-includes/js/jquery/ui/mouse.min.x34259.js
35.200.241.195200 OK 984 B URL HTTP/2 bizuz.com/wp-includes/js/jquery/ui/mouse.min.x34259.js
IP 35.200.241.195:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (3202)
Hash f2cf35e80249f611cca2a41d3c254af6
09ff3ebf0f5eeb883210ba081b61428dd070b831
8d953c7a7c7a0ed7b853ae8af58c81fb04fc79c0ee0852b28481ad2ea5d89002
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/jquery/ui/mouse.min.x34259.js HTTP/1.1
Host: bizuz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bizuz.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Sun, 05 Nov 2023 03:47:23 GMT
content-type: application/x-javascript
last-modified: Wed, 07 Apr 2021 11:14:03 GMT
etag: "d34-606d93fb-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 984
date: Sat, 05 Nov 2022 03:47:23 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
access-control-allow-origin: *
pragma: public
x-powered-by: W3 Total Cache/2.2.6
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Lato%3A400%2C500%2C600%2C700%7CPoppins%3A400%2C500%2C600%2C700&ver=2.6.1
142.250.74.10200 OK 6.8 kB URL HTTP/2 fonts.googleapis.com/css?family=Lato%3A400%2C500%2C600%2C700%7CPoppins%3A400%2C500%2C600%2C700&ver=2.6.1
IP 142.250.74.10:0
Hash 0da813f18dde896a5ab4aa911cf88112
a4c35011ccdf0e351705528c51bebc23b6f36862
438a5915e5298aba2d9b6cd932773ca180ff99eb8cedccc774d0a40df1232bae
GET /css?family=Lato%3A400%2C500%2C600%2C700%7CPoppins%3A400%2C500%2C600%2C700&ver=2.6.1 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bizuz.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sat, 05 Nov 2022 03:47:21 GMT
date: Sat, 05 Nov 2022 03:47:21 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
bizuz.com/wp-includes/js/jquery/jquery.ui.touch-punch.x34259.js
35.200.241.195200 OK 509 B URL HTTP/2 bizuz.com/wp-includes/js/jquery/jquery.ui.touch-punch.x34259.js
IP 35.200.241.195:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (985)
Hash 2a72848126aa3dc333d2c7a44ed76537
3b2feb0590d32022a7116151401b6167b0aaf498
b71567029a21c35a1de1a28f2e08c481506f6c85db0f7a7451c23f18bcd9144e
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/jquery/jquery.ui.touch-punch.x34259.js HTTP/1.1
Host: bizuz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bizuz.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Sun, 05 Nov 2023 03:47:23 GMT
content-type: application/x-javascript
last-modified: Wed, 11 Apr 2012 02:58:23 GMT
etag: "49b-4f84f34f-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 509
date: Sat, 05 Nov 2022 03:47:23 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
access-control-allow-origin: *
pragma: public
x-powered-by: W3 Total Cache/2.2.6
X-Firefox-Spdy: h2
bizuz.com/wp-content/plugins/tutor/assets/packages/SocialShare/SocialShare.min.x34259.js
35.200.241.195200 OK 4.8 kB URL HTTP/2 bizuz.com/wp-content/plugins/tutor/assets/packages/SocialShare/SocialShare.min.x34259.js
IP 35.200.241.195:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (15440), with no line terminators
Hash cb46fd9c8d9a481a4f97efd2aadb6254
afdec3f58c8e571317c23e3a180b24bf68e345e0
28ffd286fba9420282f53e5a9565a00a1b69ee59b823b9a6e0bc63d5ba261406
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/tutor/assets/packages/SocialShare/SocialShare.min.x34259.js HTTP/1.1
Host: bizuz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bizuz.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Sun, 05 Nov 2023 03:47:23 GMT
content-type: application/x-javascript
last-modified: Sat, 29 Oct 2022 07:29:13 GMT
etag: "3c50-635cd649-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 4813
date: Sat, 05 Nov 2022 03:47:23 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
access-control-allow-origin: *
pragma: public
x-powered-by: W3 Total Cache/2.2.6
X-Firefox-Spdy: h2
bizuz.com/wp-content/plugins/tutor/assets/js/tutor-front.min.x34259.js
35.200.241.195200 OK 19 kB URL HTTP/2 bizuz.com/wp-content/plugins/tutor/assets/js/tutor-front.min.x34259.js
IP 35.200.241.195:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (65536), with no line terminators
Hash daacbf871210a31e8f0ae87c09922a4b
375a9815fda51b50dfd3c6af313e1d1b4d320500
69e258be468b72d7290193f8df9f7ff917fcba5052020afb8a8f0b03be5a5361
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/tutor/assets/js/tutor-front.min.x34259.js HTTP/1.1
Host: bizuz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bizuz.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Sun, 05 Nov 2023 03:47:23 GMT
content-type: application/x-javascript
last-modified: Sat, 29 Oct 2022 07:29:13 GMT
etag: "17705-635cd649-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 19186
date: Sat, 05 Nov 2022 03:47:23 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
access-control-allow-origin: *
pragma: public
x-powered-by: W3 Total Cache/2.2.6
X-Firefox-Spdy: h2
bizuz.com/wp-includes/js/jquery/ui/datepicker.min.x34259.js
35.200.241.195200 OK 10 kB URL HTTP/2 bizuz.com/wp-includes/js/jquery/ui/datepicker.min.x34259.js
IP 35.200.241.195:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (35965)
Hash 7d0308fc8c0a62de915bb1854510af82
63a42d396a00ef85285f7c23d90fb7b98d5b6c4b
9245815ee5eecec8578ac1e51506119a007e4813a8c41be5bd80c6eeb7ad18b8
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/jquery/ui/datepicker.min.x34259.js HTTP/1.1
Host: bizuz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bizuz.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Sun, 05 Nov 2023 03:47:23 GMT
content-type: application/x-javascript
last-modified: Fri, 16 Apr 2021 04:36:24 GMT
etag: "8d34-60791448-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 10353
date: Sat, 05 Nov 2022 03:47:23 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
access-control-allow-origin: *
pragma: public
x-powered-by: W3 Total Cache/2.2.6
X-Firefox-Spdy: h2
bizuz.com/wp-content/plugins/tutor-pro/addons/tutor-certificate/assets/js/certificate-field.x34259.js
35.200.241.195200 OK 259 B URL HTTP/2 bizuz.com/wp-content/plugins/tutor-pro/addons/tutor-certificate/assets/js/certificate-field.x34259.js
IP 35.200.241.195:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
Hash 545fd09510dd5adfc0eb1e9a4a5ad041
a5a74901651dc9d27e8dae84381fe3bb320dbccd
b0d00b6475961850e566904f177d8289bf4c9b14ad0668db9c7ac533eb1be83b
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/tutor-pro/addons/tutor-certificate/assets/js/certificate-field.x34259.js HTTP/1.1
Host: bizuz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bizuz.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Sun, 05 Nov 2023 03:47:23 GMT
content-type: application/x-javascript
last-modified: Fri, 06 Aug 2021 15:59:51 GMT
etag: "103-610d5c77-0;;;"
accept-ranges: bytes
content-length: 259
date: Sat, 05 Nov 2022 03:47:23 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
access-control-allow-origin: *
vary: Accept-Encoding
pragma: public
x-powered-by: W3 Total Cache/2.2.6
X-Firefox-Spdy: h2
bizuz.com/wp-content/plugins/tutor-pro/addons/tutor-zoom/assets/js/jquery-ui-timepicker.x34259.js
35.200.241.195200 OK 18 kB URL HTTP/2 bizuz.com/wp-content/plugins/tutor-pro/addons/tutor-zoom/assets/js/jquery-ui-timepicker.x34259.js
IP 35.200.241.195:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type Algol 68 source text\012- Pascal source, ASCII text, with CRLF line terminators
Hash c22d055ca2eeb1b3a6248562a05b3f09
b858d88d402c1ab0353062585f75d123706c1dc7
e1d8c9bc23283f44473d2cb4d599298e29510edb1d58a181b8ef232f32d7bd23
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/tutor-pro/addons/tutor-zoom/assets/js/jquery-ui-timepicker.x34259.js HTTP/1.1
Host: bizuz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bizuz.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Sun, 05 Nov 2023 03:47:23 GMT
content-type: application/x-javascript
last-modified: Fri, 06 Aug 2021 15:59:51 GMT
etag: "13b7e-610d5c77-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 18387
date: Sat, 05 Nov 2022 03:47:23 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
access-control-allow-origin: *
pragma: public
x-powered-by: W3 Total Cache/2.2.6
X-Firefox-Spdy: h2
bizuz.com/wp-content/plugins/tutor-pro/addons/tutor-zoom/assets/js/admin.x34259.js
35.200.241.195200 OK 760 B URL HTTP/2 bizuz.com/wp-content/plugins/tutor-pro/addons/tutor-zoom/assets/js/admin.x34259.js
IP 35.200.241.195:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
Hash cff535737e7072c616a0bcb49f71ae9a
bd5765f97602f908367e1d2b98f5ce5a360ed578
3cc17c9dbfed97f0cc72f1db659222fd3bd32d1a0cf9d1eabe859194045f7f73
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/tutor-pro/addons/tutor-zoom/assets/js/admin.x34259.js HTTP/1.1
Host: bizuz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bizuz.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Sun, 05 Nov 2023 03:47:23 GMT
content-type: application/x-javascript
last-modified: Fri, 06 Aug 2021 15:59:51 GMT
etag: "db0-610d5c77-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 760
date: Sat, 05 Nov 2022 03:47:23 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
access-control-allow-origin: *
pragma: public
x-powered-by: W3 Total Cache/2.2.6
X-Firefox-Spdy: h2
bizuz.com/wp-content/plugins/tutor-pro/addons/tutor-zoom/assets/js/common.x34259.js
35.200.241.195200 OK 1.1 kB URL HTTP/2 bizuz.com/wp-content/plugins/tutor-pro/addons/tutor-zoom/assets/js/common.x34259.js
IP 35.200.241.195:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
Hash ad745bdcc2d725d299e33364e3f76367
6caed07f28ef160a3dbb0ab60f89d6724277ef97
f4d14ff5b93a94a9039971477f72262e015eb113e1d68270e5b3cf5541d0bdcb
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/tutor-pro/addons/tutor-zoom/assets/js/common.x34259.js HTTP/1.1
Host: bizuz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bizuz.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Sun, 05 Nov 2023 03:47:23 GMT
content-type: application/x-javascript
last-modified: Fri, 06 Aug 2021 15:59:51 GMT
etag: "16ee-610d5c77-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1066
date: Sat, 05 Nov 2022 03:47:23 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
access-control-allow-origin: *
pragma: public
x-powered-by: W3 Total Cache/2.2.6
X-Firefox-Spdy: h2
bizuz.com/wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.x34259.js
35.200.241.195200 OK 3.2 kB URL HTTP/2 bizuz.com/wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.x34259.js
IP 35.200.241.195:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (9139)
Hash 2289a47b9cb9b09edb011970c0c2d4f5
1845b95796da67d0024f04f8aa419e065b3bf0de
c58f03d19efbce8043e675d39f3f7e30f6f999a9e1f7ae46b01058d31451a233
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.x34259.js HTTP/1.1
Host: bizuz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bizuz.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Sun, 05 Nov 2023 03:47:23 GMT
content-type: application/x-javascript
last-modified: Fri, 04 Mar 2022 17:46:17 GMT
etag: "253d-62225069-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3245
date: Sat, 05 Nov 2022 03:47:23 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
access-control-allow-origin: *
pragma: public
x-powered-by: W3 Total Cache/2.2.6
X-Firefox-Spdy: h2
bizuz.com/wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.min.x34259.js
35.200.241.195200 OK 970 B URL HTTP/2 bizuz.com/wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.min.x34259.js
IP 35.200.241.195:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type HTML document, ASCII text, with very long lines (3037), with no line terminators
Hash 155d874ef60217f790dedec58e83d832
42a2698adec25b2000046cf7e3818e6478951fc3
c6801f4d5dcdd86ba3e33dc35a8765c03fd55e9f621443dd0fb7cd8c8e6707da
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.min.x34259.js HTTP/1.1
Host: bizuz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bizuz.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Sun, 05 Nov 2023 03:47:23 GMT
content-type: application/x-javascript
last-modified: Fri, 04 Mar 2022 17:46:17 GMT
etag: "bdd-62225069-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 970
date: Sat, 05 Nov 2022 03:47:23 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
access-control-allow-origin: *
pragma: public
x-powered-by: W3 Total Cache/2.2.6
X-Firefox-Spdy: h2
fonts.gstatic.com/s/muli/v28/7Au-p_0qiz-afTf2LwLT.woff2
216.58.207.195200 OK 32 kB URL HTTP/2 fonts.gstatic.com/s/muli/v28/7Au-p_0qiz-afTf2LwLT.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 32108, version 1.0\012- data
Hash 7d1264ce7519e3fcaa4150d97a3438f5
7611244aee232c37d4b76111f2b612d56d0085ff
542aa3a659dae23a91406e12842f7c1554e955238427f8374c6a1e17bfdb1940
GET /s/muli/v28/7Au-p_0qiz-afTf2LwLT.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://bizuz.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 32108
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 04 Nov 2022 15:45:18 GMT
expires: Sat, 04 Nov 2023 15:45:18 GMT
cache-control: public, max-age=31536000
age: 43325
last-modified: Mon, 11 Jul 2022 21:01:21 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/muli/v28/7Auwp_0qiz-afTLGLQ.woff2
216.58.207.195200 OK 31 kB URL HTTP/2 fonts.gstatic.com/s/muli/v28/7Auwp_0qiz-afTLGLQ.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 31196, version 1.0\012- data
Hash ea2343c7dccad57360fb611d67204445
b603d9e68bb1ed5e4b33d5e31121160cb4d23452
2a04078f9550381b5148170ceaf5b378a1b31ed8274c6d0094aeba6f599462cc
GET /s/muli/v28/7Auwp_0qiz-afTLGLQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://bizuz.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 31196
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 03 Nov 2022 06:19:56 GMT
expires: Fri, 03 Nov 2023 06:19:56 GMT
cache-control: public, max-age=31536000
age: 163647
last-modified: Mon, 11 Jul 2022 20:43:05 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
216.58.207.195200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 15860, version 1.0\012- data
Hash e9f5aaf547f165386cd313b995dddd8e
acdef5603c2387b0e5bffd744b679a24a8bc1968
f5aebdfea35d1e7656ef4acc5db1f243209755ae3300943ef8fc6280f363c860
GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://bizuz.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15860
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 02 Nov 2022 19:34:08 GMT
expires: Thu, 02 Nov 2023 19:34:08 GMT
cache-control: public, max-age=31536000
age: 202395
last-modified: Wed, 11 May 2022 19:24:42 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2
216.58.207.195200 OK 31 kB URL HTTP/2 fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 30928, version 1.0\012- data
Hash ac0d2859ea5f8fd6bcb3c305c08ec184
7f6c17e3e592cd8bd346b9cc261d8dd961b8aef7
ae919a7c9f25f0fd97fc18e398ae8e453fcaae487e4a4cb4f896e7fecde4a780
GET /s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://bizuz.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 30928
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 03 Nov 2022 16:40:18 GMT
expires: Fri, 03 Nov 2023 16:40:18 GMT
cache-control: public, max-age=31536000
age: 126425
last-modified: Mon, 11 Jul 2022 18:57:39 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
216.58.207.195200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data
Hash 15d9f621c3bd1599f0169dcf0bd5e63e
7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://bizuz.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 02 Nov 2022 19:34:08 GMT
expires: Thu, 02 Nov 2023 19:34:08 GMT
cache-control: public, max-age=31536000
age: 202395
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 656a355c6cb333c5554fa65748d3d165
15e6dc206e412e258ca49e2eec46e67b831ea4a6
3bdcb16737f73a6985f7cfe3b221882d91b27ab3ec6f940f14477f94a0e40720
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 05 Nov 2022 03:47:23 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
216.58.207.195200 OK 15 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 15344, version 1.0\012- data
Hash 5d4aeb4e5f5ef754e307d7ffaef688bd
06db651cdf354c64a7383ea9c77024ef4fb4cef8
3e253b66056519aa065b00a453bac37ac5ed8f3e6fe7b542e93a9dcdcc11d0bc
GET /s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15344
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 29 Oct 2022 12:31:58 GMT
expires: Sun, 29 Oct 2023 12:31:58 GMT
cache-control: public, max-age=31536000
age: 573325
last-modified: Mon, 16 Oct 2017 17:32:55 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
216.58.207.195200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 15552, version 1.0\012- data
Hash 285467176f7fe6bb6a9c6873b3dad2cc
ea04e4ff5142ddd69307c183def721a160e0a64e
5a8c1e7681318caa29e9f44e8a6e271f6a4067a2703e9916dfd4fe9099241db7
GET /s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15552
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 03 Nov 2022 21:46:16 GMT
expires: Fri, 03 Nov 2023 21:46:16 GMT
cache-control: public, max-age=31536000
age: 108067
last-modified: Mon, 16 Oct 2017 17:33:02 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
bizuz.com/wp-content/uploads/2021/09/Max-subjects.x34259.png
35.200.241.195200 OK 216 kB URL HTTP/2 bizuz.com/wp-content/uploads/2021/09/Max-subjects.x34259.png
IP 35.200.241.195:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type PNG image data, 1800 x 600, 8-bit colormap, non-interlaced\012- data
Size 216 kB (215964 bytes)
Hash a9cb85167756f027228e8ca15053d560
fe15176270242719148e1f77b43028376a83a8af
e7d7867d70abe2fdebe040795f57b383250d1868686f4b703c0c8cc0e768a285
GET /wp-content/uploads/2021/09/Max-subjects.x34259.png HTTP/1.1
Host: bizuz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bizuz.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Sun, 05 Nov 2023 03:47:23 GMT
content-type: image/png
last-modified: Thu, 09 Sep 2021 07:46:40 GMT
etag: "34b9c-6139bbe0-0;;;"
accept-ranges: bytes
content-length: 215964
date: Sat, 05 Nov 2022 03:47:23 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
pragma: public
x-powered-by: W3 Total Cache/2.2.6
X-Firefox-Spdy: h2
bizuz.com/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-solid-900.woff2
35.200.241.195200 OK 78 kB URL HTTP/2 bizuz.com/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-solid-900.woff2
IP 35.200.241.195:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type Web Open Font Format (Version 2), TrueType, length 78196, version 331.-31261\012- data
Hash e8a427e15cc502bef99cfd722b37ea98
a9922842a120a7f1eaced667480c5e185a106d69
d0b4256abed72481585662971262eabee345c19f837af00d7ce24239d3b40eef
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-solid-900.woff2 HTTP/1.1
Host: bizuz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Referer: https://bizuz.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/solid.min.x34259.css
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Sun, 05 Nov 2023 03:47:23 GMT
content-type: application/font-woff2
last-modified: Sat, 29 Oct 2022 07:26:50 GMT
etag: "13174-635cd5ba-0;;;"
accept-ranges: bytes
content-length: 78196
date: Sat, 05 Nov 2022 03:47:23 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
access-control-allow-origin: *
pragma: public
x-powered-by: W3 Total Cache/2.2.6
X-Firefox-Spdy: h2
bizuz.com/wp-content/uploads/2021/01/Home-Page-Thumbnail-Banner-scaled.jpg
35.200.241.195200 OK 163 kB URL HTTP/2 bizuz.com/wp-content/uploads/2021/01/Home-Page-Thumbnail-Banner-scaled.jpg
IP 35.200.241.195:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 2560x1067, components 3\012- data
Size 163 kB (162766 bytes)
Hash e631f12bd0c39ed1b7d6f1689c3169ae
44f21d1b1a2860214b679584d80e836585d3a112
9c1c33e54aed242441d044a4b71eb6814a1c0a13f076be30b16752c15b92187e
GET /wp-content/uploads/2021/01/Home-Page-Thumbnail-Banner-scaled.jpg HTTP/1.1
Host: bizuz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bizuz.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Sun, 05 Nov 2023 03:47:23 GMT
content-type: image/jpeg
last-modified: Tue, 11 May 2021 11:34:09 GMT
etag: "27bce-609a6bb1-0;;;"
accept-ranges: bytes
content-length: 162766
date: Sat, 05 Nov 2022 03:47:23 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
pragma: public
x-powered-by: W3 Total Cache/2.2.6
X-Firefox-Spdy: h2
bizuz.com/wp-content/plugins/tutor/assets/fonts/tutor.woff2
35.200.241.195200 OK 73 kB URL HTTP/2 bizuz.com/wp-content/plugins/tutor/assets/fonts/tutor.woff2
IP 35.200.241.195:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type Web Open Font Format (Version 2), TrueType, length 73248, version 1.0\012- data
Hash d108e170b40ad09423e83689e271cac6
45eec2db8b2994721d11ddbfb23d25f4356ede7b
43b4af63435c46c05838489ed758385accdaf461da8775de559a6372aa0112d6
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/tutor/assets/fonts/tutor.woff2 HTTP/1.1
Host: bizuz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Referer: https://bizuz.com/wp-content/plugins/tutor/assets/css/tutor-icon.min.x34259.css
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Sun, 05 Nov 2023 03:47:23 GMT
content-type: application/font-woff2
last-modified: Sat, 29 Oct 2022 07:29:13 GMT
etag: "11e20-635cd649-0;;;"
accept-ranges: bytes
content-length: 73248
date: Sat, 05 Nov 2022 03:47:23 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
access-control-allow-origin: *
pragma: public
x-powered-by: W3 Total Cache/2.2.6
X-Firefox-Spdy: h2
bizuz.com/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-regular-400.woff2
35.200.241.195200 OK 13 kB URL HTTP/2 bizuz.com/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-regular-400.woff2
IP 35.200.241.195:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type Web Open Font Format (Version 2), TrueType, length 13276, version 331.-31261\012- data
Hash f0f8230116992e521526097a28f54066
0447c6b10bbf73f97b23dcfd6e6a48510822cb6e
8afc6e5e842baab16010c2ce6fcf48ec4ded8e1579a37c1f1bc027e120d04951
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-regular-400.woff2 HTTP/1.1
Host: bizuz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Referer: https://bizuz.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/regular.min.x34259.css
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Sun, 05 Nov 2023 03:47:23 GMT
content-type: application/font-woff2
last-modified: Sat, 29 Oct 2022 07:26:50 GMT
etag: "33dc-635cd5ba-0;;;"
accept-ranges: bytes
content-length: 13276
date: Sat, 05 Nov 2022 03:47:23 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
access-control-allow-origin: *
pragma: public
x-powered-by: W3 Total Cache/2.2.6
X-Firefox-Spdy: h2
bizuz.com/wp-content/uploads/2021/06/Cambridge-A-Level-Accounting-9706-Past-Papers-May-June_2019.x34259.jpg
35.200.241.195200 OK 59 kB URL HTTP/2 bizuz.com/wp-content/uploads/2021/06/Cambridge-A-Level-Accounting-9706-Past-Papers-May-June_2019.x34259.jpg
IP 35.200.241.195:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1281x720, components 3\012- data
Hash a840fe81b753cbd8622b401faf6722d2
aa92d777a60e68ee18b7d78fe29919bfaba2baf5
92f12d314fd4a703bef0bc5ec2156496384dac67a1eea4e8af24ea68f5e996f6
GET /wp-content/uploads/2021/06/Cambridge-A-Level-Accounting-9706-Past-Papers-May-June_2019.x34259.jpg HTTP/1.1
Host: bizuz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bizuz.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Sun, 05 Nov 2023 03:47:23 GMT
content-type: image/jpeg
last-modified: Thu, 08 Jul 2021 07:22:06 GMT
etag: "e4b6-60e6a79e-0;;;"
accept-ranges: bytes
content-length: 58550
date: Sat, 05 Nov 2022 03:47:23 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
pragma: public
x-powered-by: W3 Total Cache/2.2.6
X-Firefox-Spdy: h2
bizuz.com/wp-content/uploads/2021/06/Cambridge-International-AS-A-Level-Mathematics-9709-Mechanics-Past-Paper-video-october-november-2017-v-42-.x34259.jpg
35.200.241.195200 OK 74 kB URL HTTP/2 bizuz.com/wp-content/uploads/2021/06/Cambridge-International-AS-A-Level-Mathematics-9709-Mechanics-Past-Paper-video-october-november-2017-v-42-.x34259.jpg
IP 35.200.241.195:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type JPEG image data, JFIF standard 1.02, resolution (DPI), density 72x72, segment length 16, progressive, precision 8, 1281x720, components 3\012- data
Hash 7ae0615a138077d0241c5650a7cf55d0
641f2cac3aa75d3e9327e2d72c7d3df8411cc97a
e517192cc6c809d9219108ef2c28ae7dd7a2edf38bfc153d2d4f8ef68e37cc45
GET /wp-content/uploads/2021/06/Cambridge-International-AS-A-Level-Mathematics-9709-Mechanics-Past-Paper-video-october-november-2017-v-42-.x34259.jpg HTTP/1.1
Host: bizuz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bizuz.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Sun, 05 Nov 2023 03:47:23 GMT
content-type: image/jpeg
last-modified: Wed, 04 Aug 2021 07:23:36 GMT
etag: "12250-610a4078-0;;;"
accept-ranges: bytes
content-length: 74320
date: Sat, 05 Nov 2022 03:47:23 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
pragma: public
x-powered-by: W3 Total Cache/2.2.6
X-Firefox-Spdy: h2
bizuz.com/wp-content/uploads/2021/04/May-June-19-V-21.x34259.jpg
35.200.241.195200 OK 108 kB URL HTTP/2 bizuz.com/wp-content/uploads/2021/04/May-June-19-V-21.x34259.jpg
IP 35.200.241.195:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 960x540, components 3\012- data
Size 108 kB (108308 bytes)
Hash 05d777309c12418cd32e3134fbe1d180
7ae813f478f5c5b960a28a5fd09c24ca019827cc
8b29024149774008d767e3213a6614b43d57f4849cb9e9788023bc6c38b0450b
GET /wp-content/uploads/2021/04/May-June-19-V-21.x34259.jpg HTTP/1.1
Host: bizuz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bizuz.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Sun, 05 Nov 2023 03:47:23 GMT
content-type: image/jpeg
last-modified: Sat, 09 Oct 2021 20:10:57 GMT
etag: "1a714-6161f751-0;;;"
accept-ranges: bytes
content-length: 108308
date: Sat, 05 Nov 2022 03:47:23 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
pragma: public
x-powered-by: W3 Total Cache/2.2.6
X-Firefox-Spdy: h2
bizuz.com/wp-content/uploads/2021/04/Feb-March-05-1-1.x34259.jpg
35.200.241.195200 OK 77 kB URL HTTP/2 bizuz.com/wp-content/uploads/2021/04/Feb-March-05-1-1.x34259.jpg
IP 35.200.241.195:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1778x1000, components 3\012- data
Hash b9eb1086f1922372465ad642016ca452
254811bbdeb2962fb0bd23ce84c653735bad5b5e
b32c8b3c26ff191e4b730237beb9fc53b4d04ad7b342a943e524390fb30550d7
GET /wp-content/uploads/2021/04/Feb-March-05-1-1.x34259.jpg HTTP/1.1
Host: bizuz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bizuz.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Sun, 05 Nov 2023 03:47:23 GMT
content-type: image/jpeg
last-modified: Wed, 02 Jun 2021 06:38:30 GMT
etag: "12c9d-60b72766-0;;;"
accept-ranges: bytes
content-length: 76957
date: Sat, 05 Nov 2022 03:47:23 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
pragma: public
x-powered-by: W3 Total Cache/2.2.6
X-Firefox-Spdy: h2
bizuz.com/wp-content/plugins/woocommerce/assets/css/woocommerce-smallscreen.x34259.css
35.200.241.195200 OK 29 kB URL HTTP/2 bizuz.com/wp-content/plugins/woocommerce/assets/css/woocommerce-smallscreen.x34259.css
IP 35.200.241.195:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (58638)
Hash b7acfa5e24f0136d9722e7350db81eb8
4f172f39896d9cae1316c2b5f2be99a49a19520d
a67921aec20611ab6689a92ab5e58a3b933fcbb758d3cedd0902fec8f5de6ddc
GET /wp-content/plugins/woocommerce/assets/css/woocommerce-smallscreen.x34259.css HTTP/1.1
Host: bizuz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bizuz.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Sun, 05 Nov 2023 03:47:24 GMT
content-type: text/css
last-modified: Fri, 04 Mar 2022 17:46:17 GMT
etag: "1b83-62225069-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1058
date: Sat, 05 Nov 2022 03:47:24 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
pragma: public
x-powered-by: W3 Total Cache/2.2.6
X-Firefox-Spdy: h2
npmcdn.com/tether@1.2.4/dist/js/tether.min.js?ver=5.7.8
104.26.11.203302 Found 119 B URL HTTP/2 npmcdn.com/tether@1.2.4/dist/js/tether.min.js?ver=5.7.8
IP 104.26.11.203:0
Hash e99db84bcca0b8391422b2f894855995
0d0522783938be4eaa05cb3afc963e0a5e7ff589
5a156aa589ab8bf336e81d0048e2343f9f96783165e843fd0f60ee7276bfd573
GET /tether@1.2.4/dist/js/tether.min.js?ver=5.7.8 HTTP/1.1
Host: npmcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bizuz.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Sat, 05 Nov 2022 03:47:21 GMT
content-type: text/plain; charset=utf-8
access-control-allow-origin: *
location: /tether@1.2.4/dist/js/tether.min.js
vary: Accept, Accept-Encoding
via: 1.1 fly.io
fly-request-id: 01GH2YCWSBBNEW4VATVRKT7ZMW-fra
cf-cache-status: BYPASS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=pRRZGRjoT57cxC0yPs%2BTaWs2ZCgP%2FATJXFdYoUkG8c0kxmkY6Qux%2BuonC4yZTYz5B8qjr52C5h4DAsE0zGp5iGYJH10tdCIuVYJq%2FbH%2F0KyVTvxQM7dL%2BxU%2FpGE%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 76529b8b39fc0b69-OSL
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 077022401d8540421bf44becb30813d2
557dd02a253b32d9f8a82fe3f0975f28ee86fb19
e098b711056a5cbf52a167c8e845a373c83e849a8b9f202ced2752aa6c205d96
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5625
Cache-Control: max-age=168435
Content-Type: application/ocsp-response
Date: Sat, 05 Nov 2022 03:47:25 GMT
Etag: "6365b5c7-1d7"
Expires: Mon, 07 Nov 2022 02:34:40 GMT
Last-Modified: Sat, 05 Nov 2022 01:00:55 GMT
Server: ECS (ska/F70E)
X-Cache: HIT
Content-Length: 471
connect.facebook.net/en_US/sdk/xfbml.customerchat.js
157.240.240.1200 OK 91 kB URL HTTP/2 connect.facebook.net/en_US/sdk/xfbml.customerchat.js
IP 157.240.240.1:0
File type ASCII text, with very long lines (18722)
Hash 254f7c77fef8c6633946401833b80f05
5a8a4f473435975a3fcca9777de239270345d52a
a6165ecfe9ce79f83252a9e7e7b6958f4b011ca506eb026eb88e21c85e949f9d
GET /en_US/sdk/xfbml.customerchat.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bizuz.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
access-control-expose-headers: X-FB-Content-MD5
x-fb-content-md5: 7c174c373de8f91b4cf79596afd7adde
etag: "7c5cfbed936e7bbeaf33934d7dc9be21"
content-type: application/x-javascript; charset=utf-8
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
expires: Sat, 05 Nov 2022 03:57:38 GMT
cache-control: public,max-age=1200,stale-while-revalidate=3600
document-policy: force-load-at-top
cross-origin-opener-policy: same-origin-allow-popups
x-content-type-options: nosniff
x-fb-rlafr: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
content-md5: JU98d/74xmM5RkAYM7gPBQ==
x-fb-debug: j8/QC6f4+gck/3w9Mfy8y8aW2PL8H1m1dHoebt7GcvwZBNhJgAl7XHsBZJnHn7+tg5axzY02Vwiv/Bx/w8+28A==
content-length: 90913
x-fb-trip-id: 1679558926
date: Sat, 05 Nov 2022 03:47:25 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
bizuz.com/wp-content/uploads/2021/01/cropped-140019296_111491200893107_6490796853115855693_n-1-300x300.x34259.png
35.200.241.195200 OK 11 kB URL HTTP/2 bizuz.com/wp-content/uploads/2021/01/cropped-140019296_111491200893107_6490796853115855693_n-1-300x300.x34259.png
IP 35.200.241.195:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type PNG image data, 300 x 300, 8-bit colormap, non-interlaced\012- data
Hash d183ebea6e59aa1a7c98d99c269a1b4b
c75dc1e1b054366712108325a5c0d4dc0efcba34
386ee3db2b3c3ef52a004a206b77daa45461bb3e1a5f8e259d93512394efc980
GET /wp-content/uploads/2021/01/cropped-140019296_111491200893107_6490796853115855693_n-1-300x300.x34259.png HTTP/1.1
Host: bizuz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bizuz.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Sun, 05 Nov 2023 03:47:25 GMT
content-type: image/png
last-modified: Tue, 11 May 2021 11:30:53 GMT
etag: "2977-609a6aed-0;;;"
accept-ranges: bytes
content-length: 10615
date: Sat, 05 Nov 2022 03:47:25 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
pragma: public
x-powered-by: W3 Total Cache/2.2.6
X-Firefox-Spdy: h2
bizuz.com/wp-content/uploads/2021/01/cropped-140019296_111491200893107_6490796853115855693_n-1-100x100.x34259.png
35.200.241.195200 OK 3.1 kB URL HTTP/2 bizuz.com/wp-content/uploads/2021/01/cropped-140019296_111491200893107_6490796853115855693_n-1-100x100.x34259.png
IP 35.200.241.195:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type PNG image data, 100 x 100, 8-bit colormap, non-interlaced\012- data
Hash a99212a9791dd1f02f77ddad6d746d93
5c00f88051f3f4ddf3080910ce41d1829ad91116
f8a32f5314c4e6b006a0354308268dba809860fcad1bff3b020957a436d99971
GET /wp-content/uploads/2021/01/cropped-140019296_111491200893107_6490796853115855693_n-1-100x100.x34259.png HTTP/1.1
Host: bizuz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bizuz.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Sun, 05 Nov 2023 03:47:25 GMT
content-type: image/png
last-modified: Tue, 11 May 2021 11:30:56 GMT
etag: "c23-609a6af0-0;;;"
accept-ranges: bytes
content-length: 3107
date: Sat, 05 Nov 2022 03:47:25 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
pragma: public
x-powered-by: W3 Total Cache/2.2.6
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash c529f3f6856ef48de1a036dff13e0012
e6aa76377376e8144bb8c7574820c1cb262660c3
5824899ab2efa0129ca31c289db9e4711d44bad6a05251d630bab656092e000c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 05 Nov 2022 03:47:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash a6913d09d2b8cbd80ef370c1997143ec
61873208c5852b9f13b1a60d408ec8b239c48c81
291bfcf11419acdfafebb4a1d789302bcbae25eff3a3a847a251e912ef5854b9
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 05 Nov 2022 03:47:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
static.doubleclick.net/instream/ad_status.js
142.250.74.166200 OK 29 B URL HTTP/2 static.doubleclick.net/instream/ad_status.js
IP 142.250.74.166:0
Hash 1fa71744db23d0f8df9cce6719defcb7
e4be9b7136697942a036f97cf26ebaf703ad2067
eed0dc1fdb5d97ed188ae16fd5e1024a5bb744af47340346be2146300a6c54b9
GET /instream/ad_status.js HTTP/1.1
Host: static.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="ads-doubleclick-media"
report-to: {"group":"ads-doubleclick-media","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-doubleclick-media"}]}
timing-allow-origin: *
content-length: 29
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 05 Nov 2022 03:44:05 GMT
expires: Sat, 05 Nov 2022 03:59:05 GMT
cache-control: public, max-age=900
age: 201
last-modified: Thu, 12 Dec 2013 23:40:16 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
googleads.g.doubleclick.net/pagead/id
216.58.207.194302 Found 0 B URL HTTP/2 googleads.g.doubleclick.net/pagead/id
IP 216.58.207.194:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pagead/id HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
location: https://googleads.g.doubleclick.net/pagead/id?slf_rd=1
access-control-allow-credentials: true
access-control-allow-origin: https://www.youtube.com
date: Sat, 05 Nov 2022 03:47:26 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
server: cafe
content-length: 0
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
googleads.g.doubleclick.net/pagead/id
216.58.207.194302 Found 0 B URL HTTP/2 googleads.g.doubleclick.net/pagead/id
IP 216.58.207.194:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pagead/id HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
location: https://googleads.g.doubleclick.net/pagead/id?slf_rd=1
access-control-allow-credentials: true
access-control-allow-origin: https://www.youtube.com
date: Sat, 05 Nov 2022 03:47:26 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
server: cafe
content-length: 0
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash c529f3f6856ef48de1a036dff13e0012
e6aa76377376e8144bb8c7574820c1cb262660c3
5824899ab2efa0129ca31c289db9e4711d44bad6a05251d630bab656092e000c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 05 Nov 2022 03:47:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
bizuz.com/wp-content/uploads/2021/04/Teach-on-Bizuz.x34259.png
35.200.241.195200 OK 471 B URL HTTP/2 bizuz.com/wp-content/uploads/2021/04/Teach-on-Bizuz.x34259.png
IP 35.200.241.195:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
Hash a6913d09d2b8cbd80ef370c1997143ec
61873208c5852b9f13b1a60d408ec8b239c48c81
291bfcf11419acdfafebb4a1d789302bcbae25eff3a3a847a251e912ef5854b9
GET /wp-content/uploads/2021/04/Teach-on-Bizuz.x34259.png HTTP/1.1
Host: bizuz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bizuz.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Sun, 05 Nov 2023 03:47:23 GMT
content-type: image/png
last-modified: Wed, 02 Jun 2021 06:19:51 GMT
etag: "37361d-60b72307-0;;;"
accept-ranges: bytes
content-length: 3618333
date: Sat, 05 Nov 2022 03:47:23 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
pragma: public
x-powered-by: W3 Total Cache/2.2.6
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash b0b8880417d19c1159f5a4cef3d0aa45
d3609cf6dee19df09ff41fcc5e3a9bc828dc26e2
f0b9186d45786a2aceb2577aabb0c9a0bb70da208c46d8c323a88ced9ca296b3
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 05 Nov 2022 03:47:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
216.58.211.10200 OK 0 B URL HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
IP 216.58.211.10:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /$rpc/google.internal.waa.v1.Waa/Create HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,x-goog-api-key,x-user-agent
Referer: https://www.youtube.com/
Origin: https://www.youtube.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://www.youtube.com
vary: origin, referer, x-origin
access-control-allow-credentials: true
access-control-allow-methods: DELETE,GET,HEAD,OPTIONS,PATCH,POST,PUT
access-control-allow-headers: content-type,x-goog-api-key,x-user-agent
access-control-max-age: 3600
date: Sat, 05 Nov 2022 03:47:26 GMT
content-type: text/html
server: ESF
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
216.58.211.10200 OK 31 kB URL HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
IP 216.58.211.10:0
File type JSON data\012- , ASCII text, with very long lines (65536), with no line terminators
Hash 80b77e8b92329764e7cc4cbcc04db50c
d02d9cf1304022d23a7a858b3558b46f3deaf9bc
6f571898e44913781d6b7c9dc736842f76e5ab0734cc4cf426f2dbb79653ca1d
POST /$rpc/google.internal.waa.v1.Waa/Create HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Api-Key: AIzaSyDyT5W0Jh49F30Pqqtyfdf7pDLFKLJoAnw
Content-Type: application/json+protobuf
X-User-Agent: grpc-web-javascript/0.1
Content-Length: 24
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json+protobuf; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Sat, 05 Nov 2022 03:47:26 GMT
server: ESF
cache-control: private
content-length: 30802
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://www.youtube.com
access-control-allow-credentials: true
access-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 5de5a7ee16d3f3164758282fbecef0a3
82fb2ac7d306e1f9724adc0ba2ef9e549baa9100
ad55f91c5fb1f872310a5f5777a65b79a338138d241a674449da2e0edde1f2ed
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 05 Nov 2022 03:47:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.com/js/th/gMsH84TQuiDEVfr1BCtG5xcdN73b4dVBHpnGqNHnahs.js
142.250.74.132200 OK 14 kB URL HTTP/2 www.google.com/js/th/gMsH84TQuiDEVfr1BCtG5xcdN73b4dVBHpnGqNHnahs.js
IP 142.250.74.132:0
File type ASCII text, with very long lines (36070)
Hash 7d6dc2989ad5a0a0590a37f1e0d2fb53
d8a8adcb74248ab834fa21e83d4935dd9a1ff4aa
92dfcdcf42525cfbe070b98ead507fa1cb2db11b4e5d390b64f04fc661c6515c
GET /js/th/gMsH84TQuiDEVfr1BCtG5xcdN73b4dVBHpnGqNHnahs.js HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/botguard-scs
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="botguard-scs"
report-to: {"group":"botguard-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/botguard-scs"}]}
content-length: 14294
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 30 Oct 2022 00:44:53 GMT
expires: Mon, 30 Oct 2023 00:44:53 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 20 Oct 2022 10:30:00 GMT
content-type: text/javascript
age: 529353
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash c849af827d6fb5966450475d3bc7c180
555a2af46685566d647090060a47f45e2410a2f0
e51a885db5e01667e1c33002c621d273f9a1fde5386f583eccdcf539c6be3d3e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 05 Nov 2022 03:47:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
216.58.211.10200 OK 31 kB URL HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
IP 216.58.211.10:0
File type JSON data\012- , ASCII text, with very long lines (65536), with no line terminators
Hash c91ccbacfe96e4741de842093426487b
3350837e1cf8be0c16940738f2fc01c146408e23
3ef6702335b4ed1b3a96a4ef2dbafa915f874b38177b347a267800369be33c71
POST /$rpc/google.internal.waa.v1.Waa/Create HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Api-Key: AIzaSyDyT5W0Jh49F30Pqqtyfdf7pDLFKLJoAnw
Content-Type: application/json+protobuf
X-User-Agent: grpc-web-javascript/0.1
Content-Length: 24
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json+protobuf; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Sat, 05 Nov 2022 03:47:26 GMT
server: ESF
cache-control: private
content-length: 30834
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://www.youtube.com
access-control-allow-credentials: true
access-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
i.ytimg.com/vi/CtHR_ae2K8s/sddefault.jpg?sqp=-oaymwEmCIAFEOAD8quKqQMa8AEB-AHUBoAC4AOKAgwIABABGDEgKih_MA8=&rs=AOn4CLByHASymTxBbiqePx1ux_3nPzRPZA
142.250.74.118200 OK 25 kB URL HTTP/2 i.ytimg.com/vi/CtHR_ae2K8s/sddefault.jpg?sqp=-oaymwEmCIAFEOAD8quKqQMa8AEB-AHUBoAC4AOKAgwIABABGDEgKih_MA8=&rs=AOn4CLByHASymTxBbiqePx1ux_3nPzRPZA
IP 142.250.74.118:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 640x480, components 3\012- data
Hash df3a43a57ad6c50f165d7b6579c0a7c3
b6b30df43badecfca9033ee202ed2f0687ffd497
6c59ab830c2177f3ffb04b8947838f07ca0b8b04691a5131bdb25061838dddf2
GET /vi/CtHR_ae2K8s/sddefault.jpg?sqp=-oaymwEmCIAFEOAD8quKqQMa8AEB-AHUBoAC4AOKAgwIABABGDEgKih_MA8=&rs=AOn4CLByHASymTxBbiqePx1ux_3nPzRPZA HTTP/1.1
Host: i.ytimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
content-type: image/jpeg
vary: Origin
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
timing-allow-origin: *
content-length: 25010
date: Sat, 05 Nov 2022 03:47:26 GMT
expires: Sat, 05 Nov 2022 05:47:26 GMT
cache-control: public, max-age=7200
etag: "1623252587"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash c849af827d6fb5966450475d3bc7c180
555a2af46685566d647090060a47f45e2410a2f0
e51a885db5e01667e1c33002c621d273f9a1fde5386f583eccdcf539c6be3d3e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 05 Nov 2022 03:47:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash c3e5d58427eacbf85efaa80becf42008
0ece2b4978596624c49ea661ea36915db8fcd8d4
ef138bbfa2ef9fd69c04c4ae0bff50c69b3723ee8cf2fc262f5711e307915330
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 05 Nov 2022 03:47:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
i.ytimg.com/vi/CM2gkG23M8E/sddefault.jpg
142.250.74.118200 OK 59 kB URL HTTP/2 i.ytimg.com/vi/CM2gkG23M8E/sddefault.jpg
IP 142.250.74.118:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 640x480, components 3\012- data
Hash 42813b45c30293bbd4b2d71b24491026
86d722690c0c98344c3c4b755cefb0d3c8872225
13d8ba7161b7fcd0d1005d8cfea55ff7b39bc83ca1ee9ea762ca9dd82869e4df
GET /vi/CM2gkG23M8E/sddefault.jpg HTTP/1.1
Host: i.ytimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
content-type: image/jpeg
vary: Origin
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
timing-allow-origin: *
content-length: 59397
date: Sat, 05 Nov 2022 03:47:26 GMT
expires: Sat, 05 Nov 2022 05:47:26 GMT
cache-control: public, max-age=7200
etag: "1623356941"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
yt3.ggpht.com/ytc/AMLnZu_wDL2GLQsWnP6-lBNyplgCxv4AjqPz05ZfUVca=s68-c-k-c0x00ffffff-no-rj
142.250.74.161200 OK 3.1 kB URL HTTP/2 yt3.ggpht.com/ytc/AMLnZu_wDL2GLQsWnP6-lBNyplgCxv4AjqPz05ZfUVca=s68-c-k-c0x00ffffff-no-rj
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 68x68, components 3\012- data
Hash 2fb28397714e0cf2a134a4e6f57b0fa6
e7ddb9fdd2d615a7e6df3ebedd6ce7823dc270e4
79d2ed6a43073817af2b890582fb9797f74a621d39f9a7bbc50d072110b40b94
GET /ytc/AMLnZu_wDL2GLQsWnP6-lBNyplgCxv4AjqPz05ZfUVca=s68-c-k-c0x00ffffff-no-rj HTTP/1.1
Host: yt3.ggpht.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-expose-headers: Content-Length
content-disposition: inline;filename="unnamed.jpg"
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
server: fife
content-length: 3146
x-xss-protection: 0
date: Sat, 05 Nov 2022 03:47:26 GMT
expires: Sat, 05 Nov 2022 21:30:19 GMT
cache-control: public, max-age=86400, no-transform
etag: "vb"
content-type: image/jpeg
age: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
216.58.211.10200 OK 31 kB URL HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
IP 216.58.211.10:0
File type JSON data\012- , ASCII text, with very long lines (65536), with no line terminators
Hash ff88aee32a374f8e1b81fdaa58811908
40172495170e0880f03768c559940a3eee4c3b32
f03eeb58ce79f22982c66ffbed2375f1f76e5df72d5853ce4db06c9758a818e3
POST /$rpc/google.internal.waa.v1.Waa/Create HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Api-Key: AIzaSyDyT5W0Jh49F30Pqqtyfdf7pDLFKLJoAnw
Content-Type: application/json+protobuf
X-User-Agent: grpc-web-javascript/0.1
Content-Length: 24
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json+protobuf; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Sat, 05 Nov 2022 03:47:26 GMT
server: ESF
cache-control: private
content-length: 30929
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://www.youtube.com
access-control-allow-credentials: true
access-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash c3e5d58427eacbf85efaa80becf42008
0ece2b4978596624c49ea661ea36915db8fcd8d4
ef138bbfa2ef9fd69c04c4ae0bff50c69b3723ee8cf2fc262f5711e307915330
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 05 Nov 2022 03:47:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
216.58.211.10200 OK 31 kB URL HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
IP 216.58.211.10:0
File type JSON data\012- , ASCII text, with very long lines (65536), with no line terminators
Hash 8e78c3df688b44e59718f74ff785afb0
c2a78e5d3d0a475f1f03db245ad0877d8df9ec0b
fa2460d80e0df69abb613befc69b6256462a91a4c9b072887418a8e0006483ee
POST /$rpc/google.internal.waa.v1.Waa/Create HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Api-Key: AIzaSyDyT5W0Jh49F30Pqqtyfdf7pDLFKLJoAnw
Content-Type: application/json+protobuf
X-User-Agent: grpc-web-javascript/0.1
Content-Length: 24
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json+protobuf; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Sat, 05 Nov 2022 03:47:26 GMT
server: ESF
cache-control: private
content-length: 30795
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://www.youtube.com
access-control-allow-credentials: true
access-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
216.58.211.10200 OK 31 kB URL HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
IP 216.58.211.10:0
File type JSON data\012- , ASCII text, with very long lines (65536), with no line terminators
Hash adc5eea62eb130ee7e28350d0a25c07c
99a54f9bbd2b782e078aa2ebccbb4fb664a46db0
7b347d080539115ba908fc3ebad498da673f1f0a716fd67b6f2b6132249ebf06
POST /$rpc/google.internal.waa.v1.Waa/Create HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Api-Key: AIzaSyDyT5W0Jh49F30Pqqtyfdf7pDLFKLJoAnw
Content-Type: application/json+protobuf
X-User-Agent: grpc-web-javascript/0.1
Content-Length: 24
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json+protobuf; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Sat, 05 Nov 2022 03:47:27 GMT
server: ESF
cache-control: private
content-length: 30914
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://www.youtube.com
access-control-allow-credentials: true
access-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
redirector.googlevideo.com/initplayback?source=youtube&oeis=1&ip=91.90.42.154&c=WEB_EMBEDDED_PLAYER&oad=3200&ovd=3200&oaad=3200&oavd=3200&ocs=700&oewis=1&oputc=1&ofpcc=1&msp=1&odeak=1&odepv=1&osfc=1&pxtags=Cg4KAnR4EggyNDI4NzM3MQ&rxtags=Cg4KAnR4EggyNDI4NzM3MA%2CCg4KAnR4EggyNDI4NzM3MQ%2CCg4KAnR4EggyNDI4NzM3Mg&alr=yes&id=99313
142.250.74.78200 OK 284 B URL HTTP/2 redirector.googlevideo.com/initplayback?source=youtube&oeis=1&ip=91.90.42.154&c=WEB_EMBEDDED_PLAYER&oad=3200&ovd=3200&oaad=3200&oavd=3200&ocs=700&oewis=1&oputc=1&ofpcc=1&msp=1&odeak=1&odepv=1&osfc=1&pxtags=Cg4KAnR4EggyNDI4NzM3MQ&rxtags=Cg4KAnR4EggyNDI4NzM3MA%2CCg4KAnR4EggyNDI4NzM3MQ%2CCg4KAnR4EggyNDI4NzM3Mg&alr=yes&id=99313
IP 142.250.74.78:0
File type ASCII text, with very long lines (422), with no line terminators
Hash 83f7c0dc51343a6d297db4c61c936a7c
635faf775fe0ab32404971c4e41166100bd27f75
a33d0c4b274e41eb410b038864aaba320ace64fff7e496f1ecb26afb9e232266
GET /initplayback?source=youtube&oeis=1&ip=91.90.42.154&c=WEB_EMBEDDED_PLAYER&oad=3200&ovd=3200&oaad=3200&oavd=3200&ocs=700&oewis=1&oputc=1&ofpcc=1&msp=1&odeak=1&odepv=1&osfc=1&pxtags=Cg4KAnR4EggyNDI4NzM3MQ&rxtags=Cg4KAnR4EggyNDI4NzM3MA%2CCg4KAnR4EggyNDI4NzM3MQ%2CCg4KAnR4EggyNDI4NzM3Mg&alr=yes&id=99313 HTTP/1.1
Host: redirector.googlevideo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 05 Nov 2022 03:47:27 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
x-content-type-options: nosniff
access-control-allow-origin: https://www.youtube.com
access-control-allow-credentials: true
timing-allow-origin: https://www.youtube.com
access-control-expose-headers: Client-Protocol, Content-Length, Content-Type, X-Bandwidth-Est, X-Bandwidth-Est2, X-Bandwidth-Est3, X-Bandwidth-App-Limited, X-Bandwidth-Est-App-Limited, X-Bandwidth-Est-Comp, X-Bandwidth-Avg, X-Head-Time-Millis, X-Head-Time-Sec, X-Head-Seqnum, X-Response-Itag, X-Restrict-Formats-Hint, X-Sequence-Num, X-Segment-Lmt, X-Walltime-Ms
content-type: text/plain; charset=UTF-8
content-encoding: gzip
server: ClientMapServer
content-length: 284
x-xss-protection: 0
x-frame-options: SAMEORIGIN
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
216.58.211.10200 OK 31 kB URL HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
IP 216.58.211.10:0
File type JSON data\012- , ASCII text, with very long lines (65536), with no line terminators
Hash 8dd0f3f10279690f6668dfe138403fd6
43855bcefb5b9da79dfe0a745cfa59568c4dcd5a
4d06fb3cfffa56753ba46586fe6d955b25f0088745b71f3cba22327f19cb6f11
POST /$rpc/google.internal.waa.v1.Waa/Create HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Api-Key: AIzaSyDyT5W0Jh49F30Pqqtyfdf7pDLFKLJoAnw
Content-Type: application/json+protobuf
X-User-Agent: grpc-web-javascript/0.1
Content-Length: 24
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json+protobuf; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Sat, 05 Nov 2022 03:47:27 GMT
server: ESF
cache-control: private
content-length: 30898
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://www.youtube.com
access-control-allow-credentials: true
access-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
216.58.211.10200 OK 31 kB URL HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
IP 216.58.211.10:0
File type JSON data\012- , ASCII text, with very long lines (65536), with no line terminators
Hash ffefedd960f9dec32e52e03845af1982
a83aed93328cfb51b383bbf4200cf1373751fca8
d9e5f1144b6562a8721010b643731ce6006b9ed616b4d72def830b63978a5212
POST /$rpc/google.internal.waa.v1.Waa/Create HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Api-Key: AIzaSyDyT5W0Jh49F30Pqqtyfdf7pDLFKLJoAnw
Content-Type: application/json+protobuf
X-User-Agent: grpc-web-javascript/0.1
Content-Length: 24
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json+protobuf; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Sat, 05 Nov 2022 03:47:27 GMT
server: ESF
cache-control: private
content-length: 31021
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://www.youtube.com
access-control-allow-credentials: true
access-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.gstatic.com/_/mss/boq-identity/_/js/k=boq-identity.IdpIFrameHttp.en_US.QHvqBhO_7eU.es5.O/d=1/rs=AOaEmlEPl-ftxDc9mIfeHvoNISzwqLIdew/m=base
142.250.74.163200 OK 35 kB URL HTTP/2 www.gstatic.com/_/mss/boq-identity/_/js/k=boq-identity.IdpIFrameHttp.en_US.QHvqBhO_7eU.es5.O/d=1/rs=AOaEmlEPl-ftxDc9mIfeHvoNISzwqLIdew/m=base
IP 142.250.74.163:0
File type ASCII text, with very long lines (868)
Hash ee70d53045ea0c90be5212b97fc9c17b
a1235d2044f9e2d6ef4c80af1d4c42604958d8a3
45bf77db15338c0e9959e685bccc60ff4a0c1aa6042f304e7d4c65bfcdad404f
GET /_/mss/boq-identity/_/js/k=boq-identity.IdpIFrameHttp.en_US.QHvqBhO_7eU.es5.O/d=1/rs=AOaEmlEPl-ftxDc9mIfeHvoNISzwqLIdew/m=base HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://accounts.google.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding, Origin
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/boq-infra/identity-boq-js-css-signers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="boq-infra/identity-boq-js-css-signers"
report-to: {"group":"boq-infra/identity-boq-js-css-signers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/boq-infra/identity-boq-js-css-signers"}]}
content-length: 34807
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 31 Oct 2022 19:47:16 GMT
expires: Tue, 31 Oct 2023 19:47:16 GMT
cache-control: public, immutable, max-age=31536000
last-modified: Sun, 30 Oct 2022 14:40:37 GMT
content-type: text/javascript; charset=UTF-8
age: 374411
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
216.58.211.10200 OK 31 kB URL HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
IP 216.58.211.10:0
File type JSON data\012- , ASCII text, with very long lines (65536), with no line terminators
Hash bcfe29c863e75e75d799e3dd479f6023
5aa2a2e2383da4669dc06ef8a9faa7f80bf1a3bc
15e0a5990871beb76dce7f10bbbeb6599f694f1d3ef212e4efb864151a07c16c
POST /$rpc/google.internal.waa.v1.Waa/Create HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Api-Key: AIzaSyDyT5W0Jh49F30Pqqtyfdf7pDLFKLJoAnw
Content-Type: application/json+protobuf
X-User-Agent: grpc-web-javascript/0.1
Content-Length: 24
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json+protobuf; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Sat, 05 Nov 2022 03:47:27 GMT
server: ESF
cache-control: private
content-length: 31050
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://www.youtube.com
access-control-allow-credentials: true
access-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT
216.58.211.10200 OK 0 B URL HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT
IP 216.58.211.10:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /$rpc/google.internal.waa.v1.Waa/GenerateIT HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,x-goog-api-key,x-user-agent
Referer: https://www.youtube.com/
Origin: https://www.youtube.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: https://www.youtube.com
vary: origin, referer, x-origin
access-control-allow-credentials: true
access-control-allow-methods: DELETE,GET,HEAD,OPTIONS,PATCH,POST,PUT
access-control-allow-headers: content-type,x-goog-api-key,x-user-agent
access-control-max-age: 3600
date: Sat, 05 Nov 2022 03:47:28 GMT
content-type: text/html
server: ESF
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT
216.58.211.10200 OK 114 B URL HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT
IP 216.58.211.10:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 245277e735bef29b334148e72f626085
adb14e435b07a4f58148c6ffe145229c7c99aa55
ce6f4347c7406d49ba700613755b7677aebcf26f983675bdfcdb1ee4dce18c52
POST /$rpc/google.internal.waa.v1.Waa/GenerateIT HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Api-Key: AIzaSyDyT5W0Jh49F30Pqqtyfdf7pDLFKLJoAnw
Content-Type: application/json+protobuf
X-User-Agent: grpc-web-javascript/0.1
Content-Length: 1308
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json+protobuf; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Sat, 05 Nov 2022 03:47:28 GMT
server: ESF
cache-control: private
content-length: 114
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://www.youtube.com
access-control-allow-credentials: true
access-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT
216.58.211.10200 OK 114 B URL HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT
IP 216.58.211.10:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 8c8c2fa5df34eca9bca2be00bcac9211
f75a478904bb9a2dfd0dd9ae19adb3254eabcbd8
7156a9428f449c0a96eb0398807f0216068aee48e9665e0aca50913bfc479d44
POST /$rpc/google.internal.waa.v1.Waa/GenerateIT HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Api-Key: AIzaSyDyT5W0Jh49F30Pqqtyfdf7pDLFKLJoAnw
Content-Type: application/json+protobuf
X-User-Agent: grpc-web-javascript/0.1
Content-Length: 832
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json+protobuf; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Sat, 05 Nov 2022 03:47:28 GMT
server: ESF
cache-control: private
content-length: 114
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://www.youtube.com
access-control-allow-credentials: true
access-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT
216.58.211.10200 OK 110 B URL HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT
IP 216.58.211.10:0
File type JSON data\012- , ASCII text, with no line terminators
Hash d323f739e66ea31258c30687f5e0efcc
2ee4a3e14c7dda6b377b56e39774ffacfc6dc708
abe0ac19e85629a73915162ce758dc810bdbbd573743d3393b54e147d2614f87
POST /$rpc/google.internal.waa.v1.Waa/GenerateIT HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Api-Key: AIzaSyDyT5W0Jh49F30Pqqtyfdf7pDLFKLJoAnw
Content-Type: application/json+protobuf
X-User-Agent: grpc-web-javascript/0.1
Content-Length: 844
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json+protobuf; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Sat, 05 Nov 2022 03:47:28 GMT
server: ESF
cache-control: private
content-length: 110
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://www.youtube.com
access-control-allow-credentials: true
access-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT
216.58.211.10200 OK 114 B URL HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT
IP 216.58.211.10:0
File type JSON data\012- , ASCII text, with no line terminators
Hash e910771033b6a3b5670c0fe86b8d6340
35d93ed8f544a32aaa3321277a57551550afb16b
91d486ab74cb18ccb475c916ec5c487550ddd1657f4e856f2377a32fb57cd2d1
POST /$rpc/google.internal.waa.v1.Waa/GenerateIT HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Api-Key: AIzaSyDyT5W0Jh49F30Pqqtyfdf7pDLFKLJoAnw
Content-Type: application/json+protobuf
X-User-Agent: grpc-web-javascript/0.1
Content-Length: 862
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json+protobuf; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Sat, 05 Nov 2022 03:47:28 GMT
server: ESF
cache-control: private
content-length: 114
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://www.youtube.com
access-control-allow-credentials: true
access-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT
216.58.211.10200 OK 110 B URL HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT
IP 216.58.211.10:0
File type JSON data\012- , ASCII text, with no line terminators
Hash e195598384f8d597e8a21fbd7a44e18c
c6318970eaa327d22fe63575002642b40cfd9e39
e4644b89f83e6f58f29327f208fb7a5e6c2df18425a0a7d5d401dbea6ec1632e
POST /$rpc/google.internal.waa.v1.Waa/GenerateIT HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Api-Key: AIzaSyDyT5W0Jh49F30Pqqtyfdf7pDLFKLJoAnw
Content-Type: application/json+protobuf
X-User-Agent: grpc-web-javascript/0.1
Content-Length: 1194
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json+protobuf; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Sat, 05 Nov 2022 03:47:28 GMT
server: ESF
cache-control: private
content-length: 110
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://www.youtube.com
access-control-allow-credentials: true
access-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT
216.58.211.10200 OK 114 B URL HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT
IP 216.58.211.10:0
File type JSON data\012- , ASCII text, with no line terminators
Hash a14d04d3875f976e678237fb96490544
d1fa200bdd33b00abeaa0c47563fb9ddc100d250
1898ce1f619d862eeb26343d326c0bf48314d78c4ffa475c2c196259713361d8
POST /$rpc/google.internal.waa.v1.Waa/GenerateIT HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Api-Key: AIzaSyDyT5W0Jh49F30Pqqtyfdf7pDLFKLJoAnw
Content-Type: application/json+protobuf
X-User-Agent: grpc-web-javascript/0.1
Content-Length: 1000
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json+protobuf; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Sat, 05 Nov 2022 03:47:28 GMT
server: ESF
cache-control: private
content-length: 114
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://www.youtube.com
access-control-allow-credentials: true
access-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT
216.58.211.10200 OK 114 B URL HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT
IP 216.58.211.10:0
File type JSON data\012- , ASCII text, with no line terminators
Hash bff585101b40f48d6fa41eb1ec09cdd4
1d76c5791fc0e94a7b5cfb4ab9c8b9e5417ba80e
335ccb1d0f355fc9144efc05d2d25f42d0de76d273f7cde56f9fae584810f96f
POST /$rpc/google.internal.waa.v1.Waa/GenerateIT HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Api-Key: AIzaSyDyT5W0Jh49F30Pqqtyfdf7pDLFKLJoAnw
Content-Type: application/json+protobuf
X-User-Agent: grpc-web-javascript/0.1
Content-Length: 1136
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json+protobuf; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Sat, 05 Nov 2022 03:47:28 GMT
server: ESF
cache-control: private
content-length: 114
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://www.youtube.com
access-control-allow-credentials: true
access-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F005dcb42-4824-4232-94cb-b73713f73375.jpeg
34.120.237.76200 OK 3.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F005dcb42-4824-4232-94cb-b73713f73375.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 7c1182def5cf59cf834fc33853c55d15
15ac708f7d9fdf2136c980afcd844e8fff6fb7aa
2e0b597618655aa5649787b034e18e8d7a47e03404233a516a68ee6e98a8ad43
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F005dcb42-4824-4232-94cb-b73713f73375.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 3921
x-amzn-requestid: 7b68d999-a1c6-4889-bf79-e1f0abfc1d1d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: apTueHLRoAMFjyw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6359fff6-679b214454c013587af76689;Sampled=0
x-amzn-remapped-date: Thu, 27 Oct 2022 03:50:14 GMT
x-amz-cf-pop: SFO5-P2, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: lEDQvyTIRNKTT7J-oz-Rb2PcayFmw0ybRFFrvjMKXJYLwy45Oaun_g==
via: 1.1 c07670802688417c8b871124c547eb0a.cloudfront.net (CloudFront), 1.1 5397b304713f6301c7c94ac084b6ed08.cloudfront.net (CloudFront), 1.1 google
date: Fri, 04 Nov 2022 14:39:29 GMT
age: 47279
etag: "15ac708f7d9fdf2136c980afcd844e8fff6fb7aa"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT
216.58.211.10200 OK 110 B URL HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT
IP 216.58.211.10:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 210fa3bd6e975df3fd559a73f248698f
a3debfd16b5aa0da2198ed7936ba1e544ddb035c
1982734efcacefd92fe7091d8dd58a8d05a6e82a9848254715301472ecdf6b5f
POST /$rpc/google.internal.waa.v1.Waa/GenerateIT HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Api-Key: AIzaSyDyT5W0Jh49F30Pqqtyfdf7pDLFKLJoAnw
Content-Type: application/json+protobuf
X-User-Agent: grpc-web-javascript/0.1
Content-Length: 868
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json+protobuf; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Sat, 05 Nov 2022 03:47:28 GMT
server: ESF
cache-control: private
content-length: 110
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://www.youtube.com
access-control-allow-credentials: true
access-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
bizuz.com/wp-includes/js/mediaelement/mediaelement-and-player.min.x34259.js
35.200.241.195200 OK 0 B URL HTTP/2 bizuz.com/wp-includes/js/mediaelement/mediaelement-and-player.min.x34259.js
IP 35.200.241.195:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/mediaelement/mediaelement-and-player.min.x34259.js HTTP/1.1
Host: bizuz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bizuz.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Sun, 05 Nov 2023 03:47:22 GMT
content-type: application/x-javascript
last-modified: Wed, 07 Apr 2021 11:14:03 GMT
etag: "267aa-606d93fb-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 36311
date: Sat, 05 Nov 2022 03:47:22 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
access-control-allow-origin: *
pragma: public
x-powered-by: W3 Total Cache/2.2.6
X-Firefox-Spdy: h2
bizuz.com/wp-includes/js/jquery/ui/slider.min.x34259.js
35.200.241.195200 OK 0 B URL HTTP/2 bizuz.com/wp-includes/js/jquery/ui/slider.min.x34259.js
IP 35.200.241.195:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/jquery/ui/slider.min.x34259.js HTTP/1.1
Host: bizuz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bizuz.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Sun, 05 Nov 2023 03:47:23 GMT
content-type: application/x-javascript
last-modified: Fri, 16 Apr 2021 04:36:24 GMT
etag: "29d8-60791448-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2984
date: Sat, 05 Nov 2022 03:47:23 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
access-control-allow-origin: *
pragma: public
x-powered-by: W3 Total Cache/2.2.6
X-Firefox-Spdy: h2
npmcdn.com/tether@1.2.4/dist/js/tether.min.js
104.26.11.203200 OK 0 B URL HTTP/2 npmcdn.com/tether@1.2.4/dist/js/tether.min.js
IP 104.26.11.203:0
GET /tether@1.2.4/dist/js/tether.min.js HTTP/1.1
Host: npmcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bizuz.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 05 Nov 2022 03:47:21 GMT
content-type: application/javascript; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=31536000
last-modified: Wed, 20 Apr 2016 14:30:18 GMT
etag: W/"5b57-YU4/LM87aoEbNVZlg/GdUADKGmk"
via: 1.1 fly.io
fly-request-id: 01F3YGWVYZT5XBPWE5N6PAD00G
cf-cache-status: HIT
age: 16930743
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=N6lPAt6KimKlmlO5%2FIBSfXSMYW%2BPodBsui5k%2FH3a1sVqz%2F8FZOQRLqq2HPEkBRFi4e9adLuzupB%2BNVRhT2GAKJLA6lvmMpTTwqdKJ6GDTUh0Ao1YORgmxtC8XLk%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 76529b8c4a2c0b69-OSL
content-encoding: br
X-Firefox-Spdy: h2
bizuz.com/wp-content/plugins/tutor/assets/js/tutor.min.x34259.js
35.200.241.195200 OK 0 B URL HTTP/2 bizuz.com/wp-content/plugins/tutor/assets/js/tutor.min.x34259.js
IP 35.200.241.195:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/tutor/assets/js/tutor.min.x34259.js HTTP/1.1
Host: bizuz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bizuz.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Sun, 05 Nov 2023 03:47:23 GMT
content-type: application/x-javascript
last-modified: Sat, 29 Oct 2022 07:29:13 GMT
etag: "6388c-635cd649-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 101949
date: Sat, 05 Nov 2022 03:47:23 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
access-control-allow-origin: *
pragma: public
x-powered-by: W3 Total Cache/2.2.6
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Muli%3A300%2C300i%2C400%2C400i%2C600%2C600i%2C700%2C700i%2C800%2C800i%2C900%7CQuicksand%3A300%2C400%2C500%2C700&ver=all
142.250.74.10200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Muli%3A300%2C300i%2C400%2C400i%2C600%2C600i%2C700%2C700i%2C800%2C800i%2C900%7CQuicksand%3A300%2C400%2C500%2C700&ver=all
IP 142.250.74.10:0
GET /css?family=Muli%3A300%2C300i%2C400%2C400i%2C600%2C600i%2C700%2C700i%2C800%2C800i%2C900%7CQuicksand%3A300%2C400%2C500%2C700&ver=all HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bizuz.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sat, 05 Nov 2022 03:47:21 GMT
date: Sat, 05 Nov 2022 03:47:21 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
accounts.google.com/o/oauth2/iframe
216.58.207.237200 OK 0 B URL HTTP/2 accounts.google.com/o/oauth2/iframe
IP 216.58.207.237:0
GET /o/oauth2/iframe HTTP/1.1
Host: accounts.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bizuz.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html; charset=utf-8
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Sat, 05 Nov 2022 03:47:26 GMT
strict-transport-security: max-age=31536000; includeSubDomains
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-WoW64, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-platform=*, ch-ua-platform-version=*
content-security-policy: script-src 'nonce-YYRvXCDJCMWQkED-60KNRw' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /_/IdpIFrameHttp/cspreport;worker-src 'self', script-src 'unsafe-inline' 'self' https://apis.google.com https://ssl.gstatic.com https://www.google.com https://www.gstatic.com https://www.google-analytics.com;report-uri /_/IdpIFrameHttp/cspreport/allowlist, require-trusted-types-for 'script';report-uri /_/IdpIFrameHttp/cspreport
cross-origin-opener-policy: same-origin
cross-origin-embedder-policy: require-corp
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2