Report - www.bizyo-cafe.com/

Report Overview

Submitted URL
www.bizyo-cafe.com/
IP
133.18.15.25
ASN
#24282 KAGOYA JAPAN Inc.
Submitted
2022-09-24 05:55:54
Access
Website Title
Final URL
Tags
None
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
52

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
ocsp.digicert.com	86	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	329 B	737 B	93.184.220.29
img-getpocket.cdn.mozilla.net	1631	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.2 kB	62 kB	34.120.237.76
bizyo-cafe.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	16 kB	793 kB	133.18.15.25
ocsp.globalsign.com	2075	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	698 B	3.8 kB	104.18.20.226
fonts.googleapis.com	8877	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	403 B	1.7 kB	216.58.211.10
r3.o.lencr.org	344	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.6 kB	9.8 kB	23.36.77.32
content-signature-2.cdn.mozilla.net	1152	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	401 B	5.8 kB	34.160.144.191
www.bizyo-cafe.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	774 B	771 B	133.18.15.25
code.jquery.com	634	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	372 B	5.9 kB	69.16.175.10
ocsp.pki.goog	175	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	331 B	699 B	142.250.74.3
firefox.settings.services.mozilla.com	867	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	758 B	2.7 kB	18.165.201.83
contile.services.mozilla.com	1114	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	321 B	229 B	34.117.237.239
push.services.mozilla.com	2140	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	594 B	127 B	35.165.143.157

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

Scan Date	Severity	Indicator	Alert
2022-09-24	medium	www.bizyo-cafe.com/	Malware
2022-09-24	medium	www.bizyo-cafe.com/	Malware
2022-09-24	medium	bizyo-cafe.com/	Malware
2022-09-24	medium	bizyo-cafe.com/wp/wp-includes/css/dist/block-library/style.min.css?ver=5.1.14	Malware
2022-09-24	medium	bizyo-cafe.com/wp/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=4.2.1	Malware
2022-09-24	medium	bizyo-cafe.com/wp/wp-content/themes/parallax_2014/lib/bxslider/bxslider.css?ver=5.1.14	Malware
2022-09-24	medium	bizyo-cafe.com/wp/wp-content/themes/parallax_2014/lib/colorbox/colorbox.css?ver=5.1.14	Malware
2022-09-24	medium	bizyo-cafe.com/wp/wp-includes/js/mediaelement/mediaelementplayer-legacy.min.css?ver=4.2.6-78496d1	Malware
2022-09-24	medium	bizyo-cafe.com/wp/wp-includes/js/mediaelement/wp-mediaelement.min.css?ver=5.1.14	Malware
2022-09-24	medium	bizyo-cafe.com/wp/wp-content/plugins/revslider/rs-plugin/css/settings.css?ver=4.6.5	Malware
2022-09-24	medium	bizyo-cafe.com/wp/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.4.1	Malware
2022-09-24	medium	bizyo-cafe.com/wp/wp-includes/css/dashicons.min.css?ver=5.1.14	Malware
2022-09-24	medium	bizyo-cafe.com/wp/wp-includes/js/mediaelement/mediaelement-migrate.min.js?ver=5.1.14	Malware
2022-09-24	medium	bizyo-cafe.com/wp/wp-content/plugins/contact-form-7/includes/js/jquery.form.min.js?ver=3.51.0-2014.06.20	Malware
2022-09-24	medium	bizyo-cafe.com/wp/wp-includes/js/jquery/jquery.js?ver=1.12.4	Malware
2022-09-24	medium	bizyo-cafe.com/wp/wp-content/themes/parallax_2014/lib/lazyload/jquery.lazyload.min.js?ver=5.1.14	Malware
2022-09-24	medium	bizyo-cafe.com/wp/wp-content/plugins/revslider/rs-plugin/js/jquery.themepunch.tools.min.js?ver=4.6.5	Malware
2022-09-24	medium	bizyo-cafe.com/wp/wp-content/themes/parallax_2014/lib/photodiary/photodiary.js?ver=5.1.14	Malware
2022-09-24	medium	bizyo-cafe.com/wp/wp-content/themes/parallax_2014/js/jquery.easing.1.3.js?ver=5.1.14	Malware
2022-09-24	medium	bizyo-cafe.com/wp/wp-includes/js/jquery/ui/core.min.js?ver=1.11.4	Malware
2022-09-24	medium	bizyo-cafe.com/wp/wp-content/themes/parallax_2014/lib/bxslider/jquery.bxslider.min.js?ver=5.1.14	Malware
2022-09-24	medium	bizyo-cafe.com/wp/wp-includes/js/jquery/ui/mouse.min.js?ver=1.11.4	Malware
2022-09-24	medium	bizyo-cafe.com/wp/wp-includes/js/jquery/ui/datepicker.min.js?ver=1.11.4	Malware
2022-09-24	medium	bizyo-cafe.com/wp/wp-includes/js/imagesloaded.min.js?ver=3.2.0	Malware
2022-09-24	medium	bizyo-cafe.com/wp/wp-content/themes/parallax_2014/lib/colorbox/jquery.colorbox-min.js?ver=5.1.14	Malware
2022-09-24	medium	bizyo-cafe.com/wp/wp-content/themes/parallax_2014/lib/castpro_timeline/jquery.castpro_timeline.js?ver=5.1.14	Malware

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

JavaScript (17)

	URL	Size	First Seen	Last Seen
	code.jquery.com/jquery-migrate-1.1.0.js?ver=5.1.14	16 kB	2023-03-08	2024-01-12
Pretty URL code.jquery.com/jquery-migrate-1.1.0.js?ver=5.1.14 IP 69.16.175.10 ASN #20446 STACKPATH-CDN Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 00:16:59 Last Seen2024-01-12 22:53:16 Times Seen18 Hash 920fce17e6b9c8d85af8e21c57fdfdeb 453e37def39009b0d772fc12f53158c1445b93b1 89f6e1276ff8e3b85ffaadce17ee1ea2171e2f8f9454c224793d9290ab57060f Loading...

	bizyo-cafe.com/wp/wp-content/plugins/revslider/rs-plugin/js/jquery.themepunch.revolution.min.js?ver=4.6.5	110 kB	2023-03-07	2024-04-09
Pretty URL bizyo-cafe.com/wp/wp-content/plugins/revslider/rs-plugin/js/jquery.themepunch.revolution.min.js?ver=4.6.5 IP 133.18.15.25 ASN #24282 KAGOYA JAPAN Inc. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:07:42 Last Seen2024-04-09 20:35:41 Times Seen348 Hash 190ac18e8ebbb6d319e0811620792098 22cc5c459f89e29ef34c9c0cf252273840f39669 cb8ecd823744c67593a1248fe4202116dffd033b468016a55ebf3a3c5f7bebaf Loading...

	bizyo-cafe.com/wp/wp-includes/js/jquery/ui/datepicker.min.js?ver=1.11.4	36 kB	2023-03-07	2024-03-17
Pretty URL bizyo-cafe.com/wp/wp-includes/js/jquery/ui/datepicker.min.js?ver=1.11.4 IP 133.18.15.25 ASN #24282 KAGOYA JAPAN Inc. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:09:42 Last Seen2024-03-17 11:34:43 Times Seen183 Hash d47e9336b80512e365f71583fdcbd8d1 d1289d2368fb085217cf26e7482b24502ca6d2ef 6629a6e8b1710170fb1331e200308a1a4a1e44d2da9b6e91fdec602b1dd0eb34 Loading...

	bizyo-cafe.com/wp/wp-content/themes/parallax_2014/lib/colorbox/jquery.colorbox-min.js?ver=5.1.14	12 kB	2023-03-07	2024-04-10
Pretty URL bizyo-cafe.com/wp/wp-content/themes/parallax_2014/lib/colorbox/jquery.colorbox-min.js?ver=5.1.14 IP 133.18.15.25 ASN #24282 KAGOYA JAPAN Inc. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:11:47 Last Seen2024-04-10 17:00:15 Times Seen263 Hash 2910ed8ce52b70f2a1f53b64b9c343de f281752f7faa349b3b4c4a165f906684ff164303 efa2ec1d872cdd22f2ca6aedea7b686c7eda3867f5d28c1321891a775edb7ad8 Loading...

	bizyo-cafe.com/wp/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.4.1	10 kB	2023-03-07	2024-04-24
Pretty URL bizyo-cafe.com/wp/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.4.1 IP 133.18.15.25 ASN #24282 KAGOYA JAPAN Inc. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:37 Last Seen2024-04-24 11:43:42 Times Seen37171 Hash 7121994eec5320fbe6586463bf9651c2 90532aff6d4121954254cdf04994d834f7ec169b 48eb8b500ae6a38617b5738d2b3faec481922a7782246e31d2755c034a45cd5d Loading...

	bizyo-cafe.com/wp/wp-content/themes/parallax_2014/js/jquery.easing.1.3.js?ver=5.1.14	8.1 kB	2023-03-07	2024-04-24
Pretty URL bizyo-cafe.com/wp/wp-content/themes/parallax_2014/js/jquery.easing.1.3.js?ver=5.1.14 IP 133.18.15.25 ASN #24282 KAGOYA JAPAN Inc. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:03 Last Seen2024-04-24 11:43:42 Times Seen7078 Hash 6516449ed5089677ed3d7e2f11fc8942 82e40d060bc269a6dde20c3990ca5a4fea6ca754 0757f7ff6e5f6a581922a5e2d42c5e0cf7475d880885a9802e8bdd5e4188dd34 Loading...

	bizyo-cafe.com/wp/wp-content/themes/parallax_2014/lib/bxslider/jquery.bxslider.min.js?ver=5.1.14	19 kB	2023-03-07	2024-04-23
Pretty URL bizyo-cafe.com/wp/wp-content/themes/parallax_2014/lib/bxslider/jquery.bxslider.min.js?ver=5.1.14 IP 133.18.15.25 ASN #24282 KAGOYA JAPAN Inc. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:15:11 Last Seen2024-04-23 13:11:28 Times Seen4407 Hash 697d69a48e5356f7106e38c09f7f19e0 b57160771fa597a5b56c5b12756c693e4829be07 bb9e7dc822c6b7b95a6329932885c72ff2caf74b243fc1c40aca0e858123b83e Loading...

	bizyo-cafe.com/wp/wp-includes/js/jquery/ui/slider.min.js?ver=1.11.4	11 kB	2023-03-07	2024-03-27
Pretty URL bizyo-cafe.com/wp/wp-includes/js/jquery/ui/slider.min.js?ver=1.11.4 IP 133.18.15.25 ASN #24282 KAGOYA JAPAN Inc. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:42:12 Last Seen2024-03-27 18:44:49 Times Seen571 Hash aa205fbfb232b9cb5f104142e7183b36 d73fef1ae7c9fc260dba69e57658793f01590eea bf9d214a2ec4f01d57a72fa4417e1cd8f895800b277b6040eb98c77e4b49e668 Loading...

	bizyo-cafe.com/wp/wp-includes/js/jquery/jquery.js?ver=1.12.4	97 kB	2023-03-07	2024-04-24
Pretty URL bizyo-cafe.com/wp/wp-includes/js/jquery/jquery.js?ver=1.12.4 IP 133.18.15.25 ASN #24282 KAGOYA JAPAN Inc. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:38 Last Seen2024-04-24 11:43:42 Times Seen17733 Hash 49edccea2e7ba985cadc9ba0531cbed1 f8747f8ee704d9af31d0950015e01d3f9635b070 1db21d816296e6939ba1f42962496e4134ae2b0081e26970864c40c6d02bb1df Loading...

	bizyo-cafe.com/wp/wp-content/plugins/revslider/rs-plugin/js/jquery.themepunch.tools.min.js?ver=4.6.5	98 kB	2023-03-07	2024-04-09
Pretty URL bizyo-cafe.com/wp/wp-content/plugins/revslider/rs-plugin/js/jquery.themepunch.tools.min.js?ver=4.6.5 IP 133.18.15.25 ASN #24282 KAGOYA JAPAN Inc. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:07:42 Last Seen2024-04-09 20:35:41 Times Seen354 Hash b6c7f7bbae8ebc854b8b5a24a0edc451 33df38f597edd7595e76f459e263b39dff904767 e5e250b3c477115dc56eebf08795b8eb97f17f0f1998c195707097daf14c0320 Loading...

	bizyo-cafe.com/wp/wp-includes/js/imagesloaded.min.js?ver=3.2.0	8.1 kB	2023-03-07	2024-04-18
Pretty URL bizyo-cafe.com/wp/wp-includes/js/imagesloaded.min.js?ver=3.2.0 IP 133.18.15.25 ASN #24282 KAGOYA JAPAN Inc. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:58 Last Seen2024-04-18 13:51:05 Times Seen1104 Hash 7e97ab52c3df75e9053002bb59f2cdd5 502edaa98677c743246149deb3a76f5ff65272dd 11e15f1d64a63cb498d0d42720a688ed15bf78393d8c460d695a110244c066e3 Loading...

	bizyo-cafe.com/wp/wp-includes/js/masonry.min.js?ver=3.3.2	29 kB	2023-03-07	2024-04-18
Pretty URL bizyo-cafe.com/wp/wp-includes/js/masonry.min.js?ver=3.3.2 IP 133.18.15.25 ASN #24282 KAGOYA JAPAN Inc. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:58 Last Seen2024-04-18 13:51:05 Times Seen882 Hash c54e75edf5cbaf412bc16ba4145f6032 67638430c92c23cedb89db038627876d361135c0 733d7c26a5fb7240e83e8af2c822218b321b5143e28c2dd65ab2492297ac6bd7 Loading...

	bizyo-cafe.com/	2.1 kB	2023-03-08	2023-03-08
Pretty URL bizyo-cafe.com/ IP 133.18.15.25 ASN #24282 KAGOYA JAPAN Inc. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 00:16:59 Last Seen2023-03-08 00:16:59 Times Seen1 Hash f38d135858e8b95ae1d8be4aec7b43a5 db4ed33861f4f5d35e6e89b6a07a044991795051 a261891a0cf7a6159094d5a52067bd94e9452e0d9128eb087ebf56e35c368f1a Loading...

	bizyo-cafe.com/wp/wp-includes/js/wp-emoji-release.min.js?ver=5.1.14	12 kB	2023-03-07	2024-04-24
Pretty URL bizyo-cafe.com/wp/wp-includes/js/wp-emoji-release.min.js?ver=5.1.14 IP 133.18.15.25 ASN #24282 KAGOYA JAPAN Inc. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:16:16 Last Seen2024-04-24 11:43:42 Times Seen2103 Hash 33479c6b333bb34fd771bf50df1fefc3 4869e92709eee1d1a42a697a80879e303aea7572 d9160bf5ee2c9435a62c8b1d991b7f419417cab5d5a37eefcee79767a292b4b7 Loading...

	bizyo-cafe.com/wp/wp-content/plugins/contact-form-7/includes/js/scripts.js?ver=4.2.1	11 kB	2023-03-07	2024-03-03
Pretty URL bizyo-cafe.com/wp/wp-content/plugins/contact-form-7/includes/js/scripts.js?ver=4.2.1 IP 133.18.15.25 ASN #24282 KAGOYA JAPAN Inc. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:07:42 Last Seen2024-03-03 00:17:48 Times Seen230 Hash 1d527f00884c10d039ad419be8179814 2c69685855da5ab49da766318d0eb959da615308 3dbc832de930e5b39820c0fc94f59c8c89b134dbbe02c7e4dc31aeda65d604de Loading...

	bizyo-cafe.com/wp/wp-content/plugins/contact-form-7/includes/js/jquery.form.min.js?ver=3.51.0-2014.06.20	15 kB	2023-03-07	2024-04-21
Pretty URL bizyo-cafe.com/wp/wp-content/plugins/contact-form-7/includes/js/jquery.form.min.js?ver=3.51.0-2014.06.20 IP 133.18.15.25 ASN #24282 KAGOYA JAPAN Inc. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:55 Last Seen2024-04-21 12:57:42 Times Seen3934 Hash f448c593c242d134e9733a84c7a4d26c 374aa1f8db17575b0e35eabc46ad82062e09106c c90f0e501d2948fbc2b61bffd654fa4ab64741fd48923782419eeb14d3816fb8 Loading...

	bizyo-cafe.com/wp/wp-includes/js/jquery/ui/widget.min.js?ver=1.11.4	6.8 kB	2023-03-07	2024-04-15
Pretty URL bizyo-cafe.com/wp/wp-includes/js/jquery/ui/widget.min.js?ver=1.11.4 IP 133.18.15.25 ASN #24282 KAGOYA JAPAN Inc. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:07:28 Last Seen2024-04-15 15:38:28 Times Seen2032 Hash 2fb11e1fba920ce6191aaf65473894ff 858e35ea212ce2c331f6f2b4980b55fa5bac29f5 1b4f1024fa4887b47765e2ad4db9bc1f6ea96335f77fd44c62b8538d75e7190c Loading...

HTTP Transactions (68)

URL IP Response Size

firefox.settings.services.mozilla.com/v1/

18.165.201.83

200 OK

939 B

URL HTTP/1.1
firefox.settings.services.mozilla.com/v1/
IP
18.165.201.83:0
ASN
#0

File type
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
1b3053fa528e28810f8a2cc9284cc921
cca9eb471d941881a6b9a1793aecb6c281908f6a
a2427848ba35575dda8a82cf88f104978234c05389deebc3fc8279d9075eff45

HTTP Headers

GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Alert, Content-Type, Backoff, Content-Length, Retry-After
Cache-Control: max-age=3600
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Sat, 24 Sep 2022 05:05:33 GMT
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 17d60a367e7e38c01f5a3242a9a3e784.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: LHR50-P3
X-Amz-Cf-Id: H3fGwW0BneQzL4G9MVOXtTsFvwumK6yRZw5G6xqnMjuIDSzY3uT-Lg==
Age: 3011

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
09a973de929ab7452edc342c780d3668
3f14f6e0a36f76863c0aea6fb561c266404a7ea3
e82ca5f310e37267fbf792427747e65c2bb35e684d3f629c0aa302f688bc4f80

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E82CA5F310E37267FBF792427747E65C2BB35E684D3F629C0AA302F688BC4F80"
Last-Modified: Fri, 23 Sep 2022 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5458
Expires: Sat, 24 Sep 2022 07:26:42 GMT
Date: Sat, 24 Sep 2022 05:55:44 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
b3e81b5bd7bd8e12288a8159e44ceb3f
977945964ffcbf49ac78f840db9da822c50c82f0
4721814da286852318f7ebf9857bd4bf01f0beea2c9eb7ddb9f290e3fa472232

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4721814DA286852318F7EBF9857BD4BF01F0BEEA2C9EB7DDB9F290E3FA472232"
Last-Modified: Fri, 23 Sep 2022 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8119
Expires: Sat, 24 Sep 2022 08:11:03 GMT
Date: Sat, 24 Sep 2022 05:55:44 GMT
Connection: keep-alive

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain

34.160.144.191

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
IP
34.160.144.191:0
ASN
#15169 GOOGLE

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
6113f8408c59aebe188d6af273b90743
7398873bf00f99944eaa77ad3ebc0d43c23dba6b
b6e0cc9ad68306208a160f3835fb8da76acc5a82d8fde1da5a98e1de1c11a770

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
x-amz-id-2: FIlcwGzqo88r1z5kUgYO+E605KHnXg9o5IWEegOg8oLI4axQ6z5V1eRZ8mkPCp6EnfSJtwgaCTo=
x-amz-request-id: NBNR1JH5YRC9PJ6F
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sat, 24 Sep 2022 05:44:59 GMT
age: 645
last-modified: Sat, 10 Sep 2022 18:47:45 GMT
etag: "6113f8408c59aebe188d6af273b90743"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Sat, 24 Sep 2022 05:55:44 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

www.bizyo-cafe.com/

133.18.15.25

301 Moved Permanently

235 B

URL HTTP/1.1
www.bizyo-cafe.com/
IP
133.18.15.25:0
ASN
#24282 KAGOYA JAPAN Inc.

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
235 B (235 bytes)
Hash
241dd40365ded68fac4c6efce4760f01
36170ec6c30576c6a4a2c3392726a246514098e7
829a7fa74ad28a23b34a884f536b48f81dfd9c25e9f195085a4b1bcb83dede64

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET / HTTP/1.1
Host: www.bizyo-cafe.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 301 Moved Permanently
Date: Sat, 24 Sep 2022 05:55:44 GMT
Server: Apache
Location: https://www.bizyo-cafe.com/
Content-Length: 235
Connection: close
Content-Type: text/html; charset=iso-8859-1

firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US

18.165.201.83

200 OK

329 B

URL HTTP/1.1
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
18.165.201.83:0
ASN
#0

File type
JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size
329 B (329 bytes)
Hash
0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

HTTP Headers

GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Retry-After, Expires, Alert, Content-Length, ETag, Cache-Control, Content-Type, Backoff, Pragma, Last-Modified
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Cache-Control: max-age=3600, max-age=3600
Date: Sat, 24 Sep 2022 05:20:46 GMT
Expires: Sat, 24 Sep 2022 05:34:48 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 d1187be634e389e2e876be936bba8e74.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: LHR50-P3
X-Amz-Cf-Id: RVfmVBMJKSzUawM3q0F_9dFaOXHYqpmA1AHJAReER-Oh5_i4Fb6NnQ==
Age: 2098

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
f714931cf870bfa33815fd259b7246fd
38e411ef8ca1b31ead8415ee5f21d98bd9653a86
897675130112daff8bdf6fa25b56faa4b9fdb367daca2b2645ed65c83a2e423f

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6340
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 24 Sep 2022 05:55:45 GMT
Last-Modified: Sat, 24 Sep 2022 04:10:05 GMT
Server: ECS (ska/F71C)
X-Cache: HIT
Content-Length: 471

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
ca88540bcb3fbe985028a21cdb8a1569
d8820b5f070fae4718f0457a3fd317f806b87c21
1b6774feecb89f6063465d7862ab9950bdfdcebc5c79cf8bf8ca747f94d74999

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1B6774FEECB89F6063465D7862AB9950BDFDCEBC5C79CF8BF8CA747F94D74999"
Last-Modified: Thu, 22 Sep 2022 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21561
Expires: Sat, 24 Sep 2022 11:55:06 GMT
Date: Sat, 24 Sep 2022 05:55:45 GMT
Connection: keep-alive

push.services.mozilla.com/

35.165.143.157

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
35.165.143.157:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: NcDaXgdGub+2WNwtjy8UqQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: dR0L9JXS3y04trdUZBKDWP/rl8E=

www.bizyo-cafe.com/

133.18.15.25

301 Moved Permanently

0 B

URL HTTP/1.1
www.bizyo-cafe.com/
IP
133.18.15.25:0
ASN
#24282 KAGOYA JAPAN Inc.

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET / HTTP/1.1
Host: www.bizyo-cafe.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

HTTP/1.1 301 Moved Permanently
Date: Sat, 24 Sep 2022 05:55:45 GMT
Server: Apache
Set-Cookie: multi-device-switcher=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; path=/; secure
X-Redirect-By: WordPress
Location: https://bizyo-cafe.com/
MS-Author-Via: DAV
Content-Length: 0
Connection: close
Content-Type: text/html

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
7038cca95198779d8bb479045eb56652
e9dcf9451e849f4d55b0909b33a51bd0b1a35296
0fc47dba3f2789b7c509a4916b1fe3c7b6b30c6778e5354742256125730310f3

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0FC47DBA3F2789B7C509A4916B1FE3C7B6B30C6778E5354742256125730310F3"
Last-Modified: Fri, 23 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2549
Expires: Sat, 24 Sep 2022 06:38:15 GMT
Date: Sat, 24 Sep 2022 05:55:46 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
7038cca95198779d8bb479045eb56652
e9dcf9451e849f4d55b0909b33a51bd0b1a35296
0fc47dba3f2789b7c509a4916b1fe3c7b6b30c6778e5354742256125730310f3

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0FC47DBA3F2789B7C509A4916B1FE3C7B6B30C6778E5354742256125730310F3"
Last-Modified: Fri, 23 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2549
Expires: Sat, 24 Sep 2022 06:38:15 GMT
Date: Sat, 24 Sep 2022 05:55:46 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
7038cca95198779d8bb479045eb56652
e9dcf9451e849f4d55b0909b33a51bd0b1a35296
0fc47dba3f2789b7c509a4916b1fe3c7b6b30c6778e5354742256125730310f3

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0FC47DBA3F2789B7C509A4916B1FE3C7B6B30C6778E5354742256125730310F3"
Last-Modified: Fri, 23 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2549
Expires: Sat, 24 Sep 2022 06:38:15 GMT
Date: Sat, 24 Sep 2022 05:55:46 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
7038cca95198779d8bb479045eb56652
e9dcf9451e849f4d55b0909b33a51bd0b1a35296
0fc47dba3f2789b7c509a4916b1fe3c7b6b30c6778e5354742256125730310f3

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0FC47DBA3F2789B7C509A4916B1FE3C7B6B30C6778E5354742256125730310F3"
Last-Modified: Fri, 23 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2549
Expires: Sat, 24 Sep 2022 06:38:15 GMT
Date: Sat, 24 Sep 2022 05:55:46 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
7038cca95198779d8bb479045eb56652
e9dcf9451e849f4d55b0909b33a51bd0b1a35296
0fc47dba3f2789b7c509a4916b1fe3c7b6b30c6778e5354742256125730310f3

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0FC47DBA3F2789B7C509A4916B1FE3C7B6B30C6778E5354742256125730310F3"
Last-Modified: Fri, 23 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2549
Expires: Sat, 24 Sep 2022 06:38:15 GMT
Date: Sat, 24 Sep 2022 05:55:46 GMT
Connection: keep-alive

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3cb80186-265b-4b0a-a4b1-38aef341bfc9.jpeg

34.120.237.76

200 OK

8.6 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3cb80186-265b-4b0a-a4b1-38aef341bfc9.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
8.6 kB (8557 bytes)
Hash
33edd8fdf7032227386d1514f99b2c4a
9fa34e0e3d456ed38d6e94911bf24990ed33ab0c
1d8ebbea41da3fbb5bd6784635f176bce0697a290635808166d269202bd3defa

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3cb80186-265b-4b0a-a4b1-38aef341bfc9.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 8557
x-amzn-requestid: 51f41597-b094-47d7-b372-4c4c0236577f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y7tAXEO3oAMFTWQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632e2868-30ad6e877ee82fcc4d17a7e6;Sampled=0
x-amzn-remapped-date: Fri, 23 Sep 2022 21:43:04 GMT
x-amz-cf-pop: SEA73-P2, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: KfRlAHaZjrBNyxoYsUtQZ0TgMGD99mnrC3GViYCTRcHPtDfgYbLczg==
via: 1.1 bd6f70221217681265382902c6157c76.cloudfront.net (CloudFront), 1.1 e95ec8f1dc02e32f0cb9e113963ceb4e.cloudfront.net (CloudFront), 1.1 google
date: Fri, 23 Sep 2022 22:02:30 GMT
age: 28396
etag: "9fa34e0e3d456ed38d6e94911bf24990ed33ab0c"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

10 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd719f7db-20e1-4834-9525-3117f1824f36.webp
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
10 kB (10032 bytes)
Hash
aa150280eb113504d61a25935c0f0127
ed04f74fbb4c77b21e2babc51a82857f5e23d169
07df17fffb391aa82efb09e30d97e88fa4dbe6df00e37bb90304f69179f4848e

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd719f7db-20e1-4834-9525-3117f1824f36.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 10032
x-amzn-requestid: 521c4012-9834-4100-a7ed-30093502f1a9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y7sPBHGYoAMFh-Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632e272c-77b03c321240d76a572d603a;Sampled=0
x-amzn-remapped-date: Fri, 23 Sep 2022 21:37:48 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: lAQOV9_fZ2RFvhRKMtDOeRTWJc-Jo1u-DrtJshcQuCSOUXVbNMjhaw==
via: 1.1 470e3fe246a660ba6ace67a79f78d246.cloudfront.net (CloudFront), 1.1 ee8246c5442dace7525c74f6a799bb46.cloudfront.net (CloudFront), 1.1 google
date: Fri, 23 Sep 2022 21:56:56 GMT
age: 28730
etag: "ed04f74fbb4c77b21e2babc51a82857f5e23d169"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

8.7 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd81dd9e4-90be-4864-999a-d4ef740cdc24.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
8.7 kB (8675 bytes)
Hash
37139ae1fd49662f05b8e3a0925f31b4
d355033b77ce3f76f800f8c90ddd624f1fda9005
0d76bfa4c37391d08e5f354e7a927b9216f06b8d5e90d7a5cfb3e08df00dcf94

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd81dd9e4-90be-4864-999a-d4ef740cdc24.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 8675
x-amzn-requestid: e640ba03-d4f9-48eb-8ff7-39d81cef1eb3
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y7sPBGgYIAMFdKg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632e272c-61d21eb86e987d4367afe3f2;Sampled=0
x-amzn-remapped-date: Fri, 23 Sep 2022 21:37:48 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: eIHnoYMrjnG3jEcxlMy9FkosYv1wl0NotFC8yBSVO_Yh_Gk0sK1Adg==
via: 1.1 5a1753718d8b33365e5f693dd338c510.cloudfront.net (CloudFront), 1.1 89791e6b21b9a30cc51cac1bc51cf098.cloudfront.net (CloudFront), 1.1 google
date: Fri, 23 Sep 2022 21:57:02 GMT
age: 28724
etag: "d355033b77ce3f76f800f8c90ddd624f1fda9005"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

7.8 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8d9363e8-7e74-47d0-b49b-ac648ebf58c9.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
7.8 kB (7829 bytes)
Hash
d84c4ddafb066f0340a6108644e18e6b
058909341bf245c24fd86fc076acf2a3c246a96c
ca9019fab30635e3548e05e088ff5a5d612ffe7c01f29465c4133710a41c0245

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8d9363e8-7e74-47d0-b49b-ac648ebf58c9.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 7829
x-amzn-requestid: 18df2f34-f279-4088-8488-76e429fdbb49
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y7tZ4HqsoAMFrgA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632e290b-42270a1556339a3c5a941f89;Sampled=0
x-amzn-remapped-date: Fri, 23 Sep 2022 21:45:47 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: cSHVvtCZq1SkklylzL4DaNV_mrCx3kDp3fMxKlycHID-oPPMlNW7Bg==
via: 1.1 01c28b52813cd0e82f810c492808b142.cloudfront.net (CloudFront), 1.1 ddaf46a95abcfc80e8eae76235e2127c.cloudfront.net (CloudFront), 1.1 google
date: Fri, 23 Sep 2022 21:59:02 GMT
etag: "058909341bf245c24fd86fc076acf2a3c246a96c"
content-type: image/jpeg
age: 28604
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

9.9 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd5039669-74cb-4d54-9208-94257c765b35.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
9.9 kB (9935 bytes)
Hash
55d224ac83a417772c98bc5080fb6689
a30f9044330824e70dde0dcc785890d981e6fdf5
b2ea4dea200109019a65834b98e31e8fac718a199513810a2819858be2b4470a

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd5039669-74cb-4d54-9208-94257c765b35.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 9935
x-amzn-requestid: 9eb8463d-172a-40a2-8eed-3c97b1260afe
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y7sQ5FARoAMFXQQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632e2738-3709a2f22ecc033532223b26;Sampled=0
x-amzn-remapped-date: Fri, 23 Sep 2022 21:38:00 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: e5eETCL5yFnoG4HPx0Qv8hjGnlXx5vOL4syMx9uato8nuIHkSvMezg==
via: 1.1 8f22423015641505b8c857a37450d6c0.cloudfront.net (CloudFront), 1.1 35575576af8067e30cfb17c6b9fde8e2.cloudfront.net (CloudFront), 1.1 google
date: Fri, 23 Sep 2022 21:53:50 GMT
age: 28916
etag: "a30f9044330824e70dde0dcc785890d981e6fdf5"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

10 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb77ad616-c829-40b4-8b70-2be46252d64c.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
10 kB (10279 bytes)
Hash
8ea5f06ad31f0cedd2cb5c6df82f35f4
60a83a1618ffae06e49ca3002bac1db9980dcfe8
5f6a4cb92c016ef0f229b11d727e9680a15b10782b5bfe9e66ad9d100b458d8d

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb77ad616-c829-40b4-8b70-2be46252d64c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 10279
x-amzn-requestid: 0f361c26-1f12-421a-9752-7d4fcdf839ac
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y4V65GTXIAMF9-Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632cd045-25677a637307879044de8242;Sampled=0
x-amzn-remapped-date: Thu, 22 Sep 2022 21:14:45 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: NcnEyVD-vG10pOpPCBMjKGqVw-rstkPIt-oqkIc5urAGE934fxL0VQ==
via: 1.1 0aebf3fe433ff96e68d785fad4ea4c0e.cloudfront.net (CloudFront), 1.1 476c2ba6d9f6cd69dbcedbd65688cbc0.cloudfront.net (CloudFront), 1.1 google
date: Sat, 24 Sep 2022 04:12:38 GMT
age: 6188
etag: "60a83a1618ffae06e49ca3002bac1db9980dcfe8"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
60e086fb53adb0c6786bccbef17f7d79
867729756a8c082ba945835a0cee5971637b7aab
4cf0dfa7ab22427e7ee82f473bf946032ecde3a6e98f86e440d81b60a3935676

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4CF0DFA7AB22427E7EE82F473BF946032ECDE3A6E98F86E440D81B60A3935676"
Last-Modified: Thu, 22 Sep 2022 02:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21515
Expires: Sat, 24 Sep 2022 11:54:21 GMT
Date: Sat, 24 Sep 2022 05:55:46 GMT
Connection: keep-alive

bizyo-cafe.com/

133.18.15.25

200 OK

45 kB

URL HTTP/1.1
bizyo-cafe.com/
IP
133.18.15.25:0
ASN
#24282 KAGOYA JAPAN Inc.

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (5302), with CRLF, LF line terminators
Size
45 kB (44566 bytes)
Hash
0437f19b9598ab5c3ba9d6e2bf20dbdc
599ddba773fd3291640b307639375e385da0708d
0e4066b080ee694f833f817a7c15d0e1a8bec678ed9c53220682b4878b28f3f7

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET / HTTP/1.1
Host: bizyo-cafe.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

HTTP/1.1 200 OK
Date: Sat, 24 Sep 2022 05:55:46 GMT
Server: Apache
Set-Cookie: multi-device-switcher=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; path=/; secure
Link: <https://bizyo-cafe.com/wp-json/>; rel="https://api.w.org/"
MS-Author-Via: DAV
Connection: close
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8

bizyo-cafe.com/wp/wp-includes/css/dist/block-library/style.min.css?ver=5.1.14

133.18.15.25

200 OK

25 kB

URL HTTP/1.1
bizyo-cafe.com/wp/wp-includes/css/dist/block-library/style.min.css?ver=5.1.14
IP
133.18.15.25:0
ASN
#24282 KAGOYA JAPAN Inc.

File type
ASCII text, with very long lines (25245), with no line terminators
Size
25 kB (25245 bytes)
Hash
d0b8525a9eff4173fd149a06f341e531
35013c4712d463aa5020f33d3234c4e90f700515
94f80c87390a84a3761860b1ce0764da77bb81d6f11cb3d059339148589aaf5c

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp/wp-includes/css/dist/block-library/style.min.css?ver=5.1.14 HTTP/1.1
Host: bizyo-cafe.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bizyo-cafe.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sat, 24 Sep 2022 05:55:47 GMT
Server: Apache
Last-Modified: Thu, 15 Apr 2021 18:57:39 GMT
ETag: "629d-5c0076ff7125b"
Accept-Ranges: bytes
Content-Length: 25245
MS-Author-Via: DAV
Connection: close
Content-Type: text/css

code.jquery.com/jquery-migrate-1.1.0.js?ver=5.1.14

69.16.175.10

200 OK

5.5 kB

URL HTTP/2
code.jquery.com/jquery-migrate-1.1.0.js?ver=5.1.14
IP
69.16.175.10:0
ASN
#20446 STACKPATH-CDN

File type
ASCII text
Size
5.5 kB (5466 bytes)
Hash
a12a51650407b55353902bc252aeda07
99e6f4f91c7e595986654571345c87b96ad960ed
fefecf99c6d3d62aa9f288f785fa423e4e75981340422cac3148606674d0c86d

HTTP Headers

GET /jquery-migrate-1.1.0.js?ver=5.1.14 HTTP/1.1
Host: code.jquery.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bizyo-cafe.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Sat, 24 Sep 2022 05:55:48 GMT
content-encoding: gzip
content-length: 5466
content-type: application/javascript; charset=utf-8
last-modified: Fri, 18 Oct 1991 12:00:00 GMT
accept-ranges: bytes
server: nginx
etag: W/"28feccc0-3da0"
cache-control: max-age=315360000, public
access-control-allow-origin: *
vary: Accept-Encoding
x-hw: 1663998948.dop014.sk1.t,1663998948.cds069.sk1.hn,1663998948.cds203.sk1.c
X-Firefox-Spdy: h2

bizyo-cafe.com/wp/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=4.2.1

133.18.15.25

200 OK

1.1 kB

URL HTTP/1.1
bizyo-cafe.com/wp/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=4.2.1
IP
133.18.15.25:0
ASN
#24282 KAGOYA JAPAN Inc.

File type
ASCII text
Size
1.1 kB (1103 bytes)
Hash
febbda4768d2fa237c794ce80866d7a7
a94b977b1deae46c31360f8fa06f471036f038d2
96f1810d96a208f1b98ce9ba49368fcb9b8334105e87554602275b978c2c170a

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=4.2.1 HTTP/1.1
Host: bizyo-cafe.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bizyo-cafe.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sat, 24 Sep 2022 05:55:48 GMT
Server: Apache
Last-Modified: Fri, 31 Jan 2020 03:29:03 GMT
ETag: "44f-59d672cdd131f"
Accept-Ranges: bytes
Content-Length: 1103
MS-Author-Via: DAV
Connection: close
Content-Type: text/css

bizyo-cafe.com/wp/wp-content/themes/parallax_2014/lib/bxslider/bxslider.css?ver=5.1.14

133.18.15.25

200 OK

3.5 kB

URL HTTP/1.1
bizyo-cafe.com/wp/wp-content/themes/parallax_2014/lib/bxslider/bxslider.css?ver=5.1.14
IP
133.18.15.25:0
ASN
#24282 KAGOYA JAPAN Inc.

File type
ASCII text
Size
3.5 kB (3482 bytes)
Hash
dd386440d97871546291f67cad078a9d
ed7d199ea3a1c30edb7579de3da93c0635d426af
77b0f30aa42908289244cd5973d962a43608996a912f2cd7f5c09d15d754579c

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp/wp-content/themes/parallax_2014/lib/bxslider/bxslider.css?ver=5.1.14 HTTP/1.1
Host: bizyo-cafe.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bizyo-cafe.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sat, 24 Sep 2022 05:55:48 GMT
Server: Apache
Last-Modified: Tue, 12 May 2015 09:17:47 GMT
ETag: "d9a-515def7c47a5f"
Accept-Ranges: bytes
Content-Length: 3482
MS-Author-Via: DAV
Connection: close
Content-Type: text/css

bizyo-cafe.com/wp/wp-content/themes/parallax_2014/lib/colorbox/colorbox.css?ver=5.1.14

133.18.15.25

200 OK

3.2 kB

URL HTTP/1.1
bizyo-cafe.com/wp/wp-content/themes/parallax_2014/lib/colorbox/colorbox.css?ver=5.1.14
IP
133.18.15.25:0
ASN
#24282 KAGOYA JAPAN Inc.

File type
ASCII text
Size
3.2 kB (3237 bytes)
Hash
bf1fe6a11d72d7bc9af79bf641080187
1e4a7e7b3369859b2cb350fa0d3bfd93e1043d76
22de392704cbf9ac216db2d5caf7a84ba97b54956ff1eccb8caf5f4367a177f8

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp/wp-content/themes/parallax_2014/lib/colorbox/colorbox.css?ver=5.1.14 HTTP/1.1
Host: bizyo-cafe.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bizyo-cafe.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sat, 24 Sep 2022 05:55:48 GMT
Server: Apache
Last-Modified: Tue, 12 May 2015 09:17:54 GMT
ETag: "ca5-515def82c2d3f"
Accept-Ranges: bytes
Content-Length: 3237
MS-Author-Via: DAV
Connection: close
Content-Type: text/css

bizyo-cafe.com/wp/wp-includes/js/mediaelement/mediaelementplayer-legacy.min.css?ver=4.2.6-78496d1

133.18.15.25

200 OK

11 kB

URL HTTP/1.1
bizyo-cafe.com/wp/wp-includes/js/mediaelement/mediaelementplayer-legacy.min.css?ver=4.2.6-78496d1
IP
133.18.15.25:0
ASN
#24282 KAGOYA JAPAN Inc.

File type
ASCII text, with very long lines (11232), with no line terminators
Size
11 kB (11232 bytes)
Hash
a7f30f0c309921a487640a98569cba90
ea44fea82bbce6e41a85894d81c7466da40cd091
ffa31f5802b20d64a10c71ad93394c1e2b4b16f33e2f479d8274fd02ce0a594f

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp/wp-includes/js/mediaelement/mediaelementplayer-legacy.min.css?ver=4.2.6-78496d1 HTTP/1.1
Host: bizyo-cafe.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bizyo-cafe.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sat, 24 Sep 2022 05:55:48 GMT
Server: Apache
Last-Modified: Thu, 21 Nov 2019 04:04:05 GMT
ETag: "2be0-597d3636c1e40"
Accept-Ranges: bytes
Content-Length: 11232
MS-Author-Via: DAV
Connection: close
Content-Type: text/css

bizyo-cafe.com/wp/wp-includes/js/mediaelement/wp-mediaelement.min.css?ver=5.1.14

133.18.15.25

200 OK

4.2 kB

URL HTTP/1.1
bizyo-cafe.com/wp/wp-includes/js/mediaelement/wp-mediaelement.min.css?ver=5.1.14
IP
133.18.15.25:0
ASN
#24282 KAGOYA JAPAN Inc.

File type
ASCII text, with very long lines (4163), with no line terminators
Size
4.2 kB (4163 bytes)
Hash
2b5b1702953af1d79db2e16f477fc709
b24a39ffc5ef7e1917e0c088458ff91c37ae26c1
245dba3be6a1b10208f628f21377fc998b5384dc303bdef6954df3910e4f36b5

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp/wp-includes/js/mediaelement/wp-mediaelement.min.css?ver=5.1.14 HTTP/1.1
Host: bizyo-cafe.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bizyo-cafe.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sat, 24 Sep 2022 05:55:48 GMT
Server: Apache
Last-Modified: Thu, 21 Nov 2019 04:04:06 GMT
ETag: "1043-597d36380f630"
Accept-Ranges: bytes
Content-Length: 4163
MS-Author-Via: DAV
Connection: close
Content-Type: text/css

bizyo-cafe.com/wp/wp-content/themes/parallax_2014/lib/ui-datepicker.css?ver=5.1.14

133.18.15.25

200 OK

4.0 kB

URL HTTP/1.1
bizyo-cafe.com/wp/wp-content/themes/parallax_2014/lib/ui-datepicker.css?ver=5.1.14
IP
133.18.15.25:0
ASN
#24282 KAGOYA JAPAN Inc.

File type
ASCII text
Size
4.0 kB (4039 bytes)
Hash
2514c308b7c4f09a7828da1a7ceb5f56
877b11d5321416100c037040fa066a299f423c0f
a161a7e054c04eac8e454b038f1c9e9b55616ef8cd88ebd71a52045ee4c470e4

HTTP Headers

GET /wp/wp-content/themes/parallax_2014/lib/ui-datepicker.css?ver=5.1.14 HTTP/1.1
Host: bizyo-cafe.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bizyo-cafe.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sat, 24 Sep 2022 05:55:48 GMT
Server: Apache
Last-Modified: Tue, 12 May 2015 09:17:44 GMT
ETag: "fc7-515def79aeda7"
Accept-Ranges: bytes
Content-Length: 4039
MS-Author-Via: DAV
Connection: close
Content-Type: text/css

bizyo-cafe.com/wp/wp-content/themes/parallax_2014/lib/gridnav/gridnavigation.css?ver=5.1.14

133.18.15.25

200 OK

1.3 kB

URL HTTP/1.1
bizyo-cafe.com/wp/wp-content/themes/parallax_2014/lib/gridnav/gridnavigation.css?ver=5.1.14
IP
133.18.15.25:0
ASN
#24282 KAGOYA JAPAN Inc.

File type
ASCII text
Size
1.3 kB (1262 bytes)
Hash
9b58d72004d4a55f92cbf07afa104971
b241644434d61d7653453b94cbecf0dd860064a6
a0c859e034d4d8510d5ebb77df8243bb42583d3dba22c54eaf3acc710da6b0a0

HTTP Headers

GET /wp/wp-content/themes/parallax_2014/lib/gridnav/gridnavigation.css?ver=5.1.14 HTTP/1.1
Host: bizyo-cafe.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bizyo-cafe.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sat, 24 Sep 2022 05:55:48 GMT
Server: Apache
Last-Modified: Tue, 12 May 2015 09:18:09 GMT
ETag: "4ee-515def9197f27"
Accept-Ranges: bytes
Content-Length: 1262
MS-Author-Via: DAV
Connection: close
Content-Type: text/css

bizyo-cafe.com/wp/wp-content/plugins/revslider/rs-plugin/css/settings.css?ver=4.6.5

133.18.15.25

200 OK

55 kB

URL HTTP/1.1
bizyo-cafe.com/wp/wp-content/plugins/revslider/rs-plugin/css/settings.css?ver=4.6.5
IP
133.18.15.25:0
ASN
#24282 KAGOYA JAPAN Inc.

File type
Unicode text, UTF-8 text, with very long lines (374)
Size
55 kB (55177 bytes)
Hash
ffa119bf493b223d825e2218804e4c22
290de7892e7e8a3ab636b90560abc3d28800c646
8cf272f71df4c1da72cc6cac3e29e1099160a69a96825a6491783b41ed68e217

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp/wp-content/plugins/revslider/rs-plugin/css/settings.css?ver=4.6.5 HTTP/1.1
Host: bizyo-cafe.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bizyo-cafe.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sat, 24 Sep 2022 05:55:48 GMT
Server: Apache
Last-Modified: Wed, 13 May 2015 10:33:02 GMT
ETag: "d789-515f422b70925"
Accept-Ranges: bytes
Content-Length: 55177
MS-Author-Via: DAV
Connection: close
Content-Type: text/css

bizyo-cafe.com/wp/wp-content/themes/parallax_2014/style.css?ver=5.1.14

133.18.15.25

200 OK

8.2 kB

URL HTTP/1.1
bizyo-cafe.com/wp/wp-content/themes/parallax_2014/style.css?ver=5.1.14
IP
133.18.15.25:0
ASN
#24282 KAGOYA JAPAN Inc.

File type
Unicode text, UTF-8 text
Size
8.2 kB (8215 bytes)
Hash
8e65da23f8fbc4ca6004566eb8ce00ee
366a119546f5f6e707fbb04dbc875cc706d44a8e
3c87da26cb223f1dbeaafe3a62bd7669682e25662c782ac96c20fbeda4fc98d5

HTTP Headers

GET /wp/wp-content/themes/parallax_2014/style.css?ver=5.1.14 HTTP/1.1
Host: bizyo-cafe.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bizyo-cafe.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sat, 24 Sep 2022 05:55:48 GMT
Server: Apache
Last-Modified: Tue, 08 Mar 2022 10:59:38 GMT
ETag: "2017-5d9b2e0933678"
Accept-Ranges: bytes
Content-Length: 8215
MS-Author-Via: DAV
Connection: close
Content-Type: text/css

bizyo-cafe.com/wp/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.4.1

133.18.15.25

200 OK

10 kB

URL HTTP/1.1
bizyo-cafe.com/wp/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.4.1
IP
133.18.15.25:0
ASN
#24282 KAGOYA JAPAN Inc.

File type
ASCII text, with very long lines (9959)
Size
10 kB (10056 bytes)
Hash
7121994eec5320fbe6586463bf9651c2
90532aff6d4121954254cdf04994d834f7ec169b
48eb8b500ae6a38617b5738d2b3faec481922a7782246e31d2755c034a45cd5d

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.4.1 HTTP/1.1
Host: bizyo-cafe.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bizyo-cafe.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sat, 24 Sep 2022 05:55:49 GMT
Server: Apache
Last-Modified: Thu, 21 Nov 2019 04:03:50 GMT
ETag: "2748-597d36282f2d8"
Accept-Ranges: bytes
Content-Length: 10056
MS-Author-Via: DAV
Connection: close
Content-Type: application/javascript

bizyo-cafe.com/wp/wp-includes/css/dashicons.min.css?ver=5.1.14

133.18.15.25

200 OK

46 kB

URL HTTP/1.1
bizyo-cafe.com/wp/wp-includes/css/dashicons.min.css?ver=5.1.14
IP
133.18.15.25:0
ASN
#24282 KAGOYA JAPAN Inc.

File type
ASCII text, with very long lines (46323)
Size
46 kB (46358 bytes)
Hash
800e28274109388380449140e310f8bb
1d8ec71aef1676aee228ce0a430b26b6ca1402fd
b81e56d299eb9260c65af214751e6dab1e591f1b979ec154ccfdf7c53d7581e5

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp/wp-includes/css/dashicons.min.css?ver=5.1.14 HTTP/1.1
Host: bizyo-cafe.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bizyo-cafe.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sat, 24 Sep 2022 05:55:48 GMT
Server: Apache
Last-Modified: Thu, 21 Nov 2019 04:02:03 GMT
ETag: "b516-597d35c29ebb1"
Accept-Ranges: bytes
Content-Length: 46358
MS-Author-Via: DAV
Connection: close
Content-Type: text/css

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
ea9de0d781463e195b477b036503407f
1ad95d29ee96c73ec44053046d9becada7a8941e
f306f8d19017f7e2b5fa1ff6fdc7ceccd8092689138521f588b56a98eb1b6488

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F306F8D19017F7E2B5FA1FF6FDC7CECCD8092689138521F588B56A98EB1B6488"
Last-Modified: Wed, 21 Sep 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21546
Expires: Sat, 24 Sep 2022 11:54:55 GMT
Date: Sat, 24 Sep 2022 05:55:49 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
b1ae1d22f32451c3c59fe16ab74e26f3
f2adac9388fdd26d210b9fa124e0283f946356b5
a5b020716cc7689aba0365fdd086ed53145916e89f1dd6276231233945821173

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A5B020716CC7689ABA0365FDD086ED53145916E89F1DD6276231233945821173"
Last-Modified: Fri, 23 Sep 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21561
Expires: Sat, 24 Sep 2022 11:55:10 GMT
Date: Sat, 24 Sep 2022 05:55:49 GMT
Connection: keep-alive

ocsp.globalsign.com/gsgccr3dvtlsca2020

104.18.20.226

200 OK

1.4 kB

URL HTTP/1.1
ocsp.globalsign.com/gsgccr3dvtlsca2020
IP
104.18.20.226:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
1.4 kB (1414 bytes)
Hash
ef32d2adc1e99df09c0bca2e6369aa84
4daa3da73edf680b4050883612b8bf27dffc0378
0adfdb06c6875541c8838de2f68dd2907d2d4d09851fc43b04f2e290db89e2ea

HTTP Headers

POST /gsgccr3dvtlsca2020 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sat, 24 Sep 2022 05:55:49 GMT
Content-Type: application/ocsp-response
Content-Length: 1414
Connection: keep-alive
Expires: Wed, 28 Sep 2022 04:27:06 GMT
ETag: "4daa3da73edf680b4050883612b8bf27dffc0378"
Last-Modified: Sat, 24 Sep 2022 04:27:07 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: REVALIDATED
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74f945f8ab4d0b3d-OSL

ocsp.globalsign.com/gsgccr3dvtlsca2020

104.18.20.226

200 OK

1.4 kB

URL HTTP/1.1
ocsp.globalsign.com/gsgccr3dvtlsca2020
IP
104.18.20.226:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
1.4 kB (1414 bytes)
Hash
ef32d2adc1e99df09c0bca2e6369aa84
4daa3da73edf680b4050883612b8bf27dffc0378
0adfdb06c6875541c8838de2f68dd2907d2d4d09851fc43b04f2e290db89e2ea

HTTP Headers

POST /gsgccr3dvtlsca2020 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sat, 24 Sep 2022 05:55:49 GMT
Content-Type: application/ocsp-response
Content-Length: 1414
Connection: keep-alive
Expires: Wed, 28 Sep 2022 04:27:06 GMT
ETag: "4daa3da73edf680b4050883612b8bf27dffc0378"
Last-Modified: Sat, 24 Sep 2022 04:27:07 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 0
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74f945f8b8310b41-OSL

bizyo-cafe.com/wp/wp-includes/js/wp-emoji-release.min.js?ver=5.1.14

133.18.15.25

200 OK

12 kB

URL HTTP/1.1
bizyo-cafe.com/wp/wp-includes/js/wp-emoji-release.min.js?ver=5.1.14
IP
133.18.15.25:0
ASN
#24282 KAGOYA JAPAN Inc.

File type
ASCII text, with very long lines (9071)
Size
12 kB (11951 bytes)
Hash
33479c6b333bb34fd771bf50df1fefc3
4869e92709eee1d1a42a697a80879e303aea7572
d9160bf5ee2c9435a62c8b1d991b7f419417cab5d5a37eefcee79767a292b4b7

HTTP Headers

GET /wp/wp-includes/js/wp-emoji-release.min.js?ver=5.1.14 HTTP/1.1
Host: bizyo-cafe.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bizyo-cafe.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sat, 24 Sep 2022 05:55:49 GMT
Server: Apache
Last-Modified: Thu, 15 Apr 2021 18:57:39 GMT
ETag: "2eaf-5c0076ff70a8b"
Accept-Ranges: bytes
Content-Length: 11951
MS-Author-Via: DAV
Connection: close
Content-Type: application/javascript

bizyo-cafe.com/wp/wp-content/themes/parallax_2014/style.css

133.18.15.25

200 OK

8.2 kB

URL HTTP/1.1
bizyo-cafe.com/wp/wp-content/themes/parallax_2014/style.css
IP
133.18.15.25:0
ASN
#24282 KAGOYA JAPAN Inc.

File type
Unicode text, UTF-8 text
Size
8.2 kB (8215 bytes)
Hash
8e65da23f8fbc4ca6004566eb8ce00ee
366a119546f5f6e707fbb04dbc875cc706d44a8e
3c87da26cb223f1dbeaafe3a62bd7669682e25662c782ac96c20fbeda4fc98d5

HTTP Headers

GET /wp/wp-content/themes/parallax_2014/style.css HTTP/1.1
Host: bizyo-cafe.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bizyo-cafe.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sat, 24 Sep 2022 05:55:49 GMT
Server: Apache
Last-Modified: Tue, 08 Mar 2022 10:59:38 GMT
ETag: "2017-5d9b2e0933678"
Accept-Ranges: bytes
Content-Length: 8215
MS-Author-Via: DAV
Connection: close
Content-Type: text/css

bizyo-cafe.com/wp/wp-includes/js/mediaelement/mediaelement-migrate.min.js?ver=5.1.14

133.18.15.25

200 OK

1.2 kB

URL HTTP/1.1
bizyo-cafe.com/wp/wp-includes/js/mediaelement/mediaelement-migrate.min.js?ver=5.1.14
IP
133.18.15.25:0
ASN
#24282 KAGOYA JAPAN Inc.

File type
ASCII text, with very long lines (1193), with no line terminators
Size
1.2 kB (1193 bytes)
Hash
f34f415aa56ed900eecf3f212adb57e2
352dfeec21817198c07ab11705b53d813420cea3
7f34b768792b90cf0b04fced2470e43d8fab7644f6565d5178fbfb49c4859cee

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp/wp-includes/js/mediaelement/mediaelement-migrate.min.js?ver=5.1.14 HTTP/1.1
Host: bizyo-cafe.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bizyo-cafe.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sat, 24 Sep 2022 05:55:49 GMT
Server: Apache
Last-Modified: Thu, 15 Apr 2021 18:57:39 GMT
ETag: "4a9-5c0076ff6a4fb"
Accept-Ranges: bytes
Content-Length: 1193
MS-Author-Via: DAV
Connection: close
Content-Type: application/javascript

bizyo-cafe.com/wp/wp-content/themes/parallax_2014/style_ui.css

133.18.15.25

200 OK

2.3 kB

URL HTTP/1.1
bizyo-cafe.com/wp/wp-content/themes/parallax_2014/style_ui.css
IP
133.18.15.25:0
ASN
#24282 KAGOYA JAPAN Inc.

File type
ASCII text
Size
2.3 kB (2331 bytes)
Hash
c645412e390c3455526645f0008021d9
cf1eba3a4cf6ad2d34032317152553df684e0bd6
9802ce438501153cdd5ed991f4993c0ca2b6fff89e151996e0bd81200b05decf

HTTP Headers

GET /wp/wp-content/themes/parallax_2014/style_ui.css HTTP/1.1
Host: bizyo-cafe.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bizyo-cafe.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sat, 24 Sep 2022 05:55:50 GMT
Server: Apache
Last-Modified: Tue, 12 May 2015 09:16:25 GMT
ETag: "91b-515def2de4440"
Accept-Ranges: bytes
Content-Length: 2331
MS-Author-Via: DAV
Connection: close
Content-Type: text/css

bizyo-cafe.com/wp/wp-content/plugins/contact-form-7/includes/js/scripts.js?ver=4.2.1

133.18.15.25

200 OK

11 kB

URL HTTP/1.1
bizyo-cafe.com/wp/wp-content/plugins/contact-form-7/includes/js/scripts.js?ver=4.2.1
IP
133.18.15.25:0
ASN
#24282 KAGOYA JAPAN Inc.

File type
ASCII text
Size
11 kB (11200 bytes)
Hash
1d527f00884c10d039ad419be8179814
2c69685855da5ab49da766318d0eb959da615308
3dbc832de930e5b39820c0fc94f59c8c89b134dbbe02c7e4dc31aeda65d604de

HTTP Headers

GET /wp/wp-content/plugins/contact-form-7/includes/js/scripts.js?ver=4.2.1 HTTP/1.1
Host: bizyo-cafe.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bizyo-cafe.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sat, 24 Sep 2022 05:55:50 GMT
Server: Apache
Last-Modified: Fri, 31 Jan 2020 03:29:05 GMT
ETag: "2bc0-59d672cfaf38f"
Accept-Ranges: bytes
Content-Length: 11200
MS-Author-Via: DAV
Connection: close
Content-Type: application/javascript

bizyo-cafe.com/wp/wp-content/plugins/contact-form-7/includes/js/jquery.form.min.js?ver=3.51.0-2014.06.20

133.18.15.25

200 OK

15 kB

URL HTTP/1.1
bizyo-cafe.com/wp/wp-content/plugins/contact-form-7/includes/js/jquery.form.min.js?ver=3.51.0-2014.06.20
IP
133.18.15.25:0
ASN
#24282 KAGOYA JAPAN Inc.

File type
ASCII text, with very long lines (14900)
Size
15 kB (15248 bytes)
Hash
f448c593c242d134e9733a84c7a4d26c
374aa1f8db17575b0e35eabc46ad82062e09106c
c90f0e501d2948fbc2b61bffd654fa4ab64741fd48923782419eeb14d3816fb8

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp/wp-content/plugins/contact-form-7/includes/js/jquery.form.min.js?ver=3.51.0-2014.06.20 HTTP/1.1
Host: bizyo-cafe.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bizyo-cafe.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sat, 24 Sep 2022 05:55:50 GMT
Server: Apache
Last-Modified: Fri, 31 Jan 2020 03:29:04 GMT
ETag: "3b90-59d672cf4aa2f"
Accept-Ranges: bytes
Content-Length: 15248
MS-Author-Via: DAV
Connection: close
Content-Type: application/javascript

bizyo-cafe.com/wp/wp-includes/js/jquery/jquery.js?ver=1.12.4

133.18.15.25

200 OK

97 kB

URL HTTP/1.1
bizyo-cafe.com/wp/wp-includes/js/jquery/jquery.js?ver=1.12.4
IP
133.18.15.25:0
ASN
#24282 KAGOYA JAPAN Inc.

File type
ASCII text, with very long lines (31997)
Size
97 kB (96873 bytes)
Hash
49edccea2e7ba985cadc9ba0531cbed1
f8747f8ee704d9af31d0950015e01d3f9635b070
1db21d816296e6939ba1f42962496e4134ae2b0081e26970864c40c6d02bb1df

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp/wp-includes/js/jquery/jquery.js?ver=1.12.4 HTTP/1.1
Host: bizyo-cafe.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bizyo-cafe.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sat, 24 Sep 2022 05:55:49 GMT
Server: Apache
Last-Modified: Thu, 21 Nov 2019 04:03:51 GMT
ETag: "17a69-597d3629aef78"
Accept-Ranges: bytes
Content-Length: 96873
MS-Author-Via: DAV
Connection: close
Content-Type: application/javascript

bizyo-cafe.com/wp/wp-content/themes/parallax_2014/lib/lazyload/jquery.lazyload.min.js?ver=5.1.14

133.18.15.25

200 OK

3.4 kB

URL HTTP/1.1
bizyo-cafe.com/wp/wp-content/themes/parallax_2014/lib/lazyload/jquery.lazyload.min.js?ver=5.1.14
IP
133.18.15.25:0
ASN
#24282 KAGOYA JAPAN Inc.

File type
ASCII text, with very long lines (3309)
Size
3.4 kB (3381 bytes)
Hash
89c45121934ed4664ff3ca811a008226
848216f1d67cc7c6c6214db1a771f8c4653f06d6
e576f12e82c468567e420386b68476ff7045815976395bc6baad1a822c7368a7

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp/wp-content/themes/parallax_2014/lib/lazyload/jquery.lazyload.min.js?ver=5.1.14 HTTP/1.1
Host: bizyo-cafe.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bizyo-cafe.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sat, 24 Sep 2022 05:55:50 GMT
Server: Apache
Last-Modified: Tue, 12 May 2015 09:17:58 GMT
ETag: "d35-515def873485f"
Accept-Ranges: bytes
Content-Length: 3381
MS-Author-Via: DAV
Connection: close
Content-Type: application/javascript

bizyo-cafe.com/wp/wp-content/themes/parallax_2014/style_fullsize.css

133.18.15.25

200 OK

65 kB

URL HTTP/1.1
bizyo-cafe.com/wp/wp-content/themes/parallax_2014/style_fullsize.css
IP
133.18.15.25:0
ASN
#24282 KAGOYA JAPAN Inc.

File type
Unicode text, UTF-8 text, with very long lines (352)
Size
65 kB (64590 bytes)
Hash
ae319f10989b7c56cc7e5fc5640f0854
bd9e44aa1d62945918522b97eef6cd1ab5c8b5ce
e5b4b9e7824e86680a31fd14c72f6bfec5f4da56fb6ea3b8a37cbc529d4ea6e3

HTTP Headers

GET /wp/wp-content/themes/parallax_2014/style_fullsize.css HTTP/1.1
Host: bizyo-cafe.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bizyo-cafe.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sat, 24 Sep 2022 05:55:50 GMT
Server: Apache
Last-Modified: Tue, 08 Mar 2022 10:59:39 GMT
ETag: "fc4e-5d9b2e0a1a5c8"
Accept-Ranges: bytes
Content-Length: 64590
MS-Author-Via: DAV
Connection: close
Content-Type: text/css

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
4fb51016b82f43bc6ee9f5ace001690c
5390a86aa0a7b82f5d09605b10812567b309d27a
73283fa4b416ee80d2ac87c30d2183afa1ae487a8650563b79adc1f001030f73

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 24 Sep 2022 05:55:51 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

fonts.googleapis.com/css?family=Libre+Baskerville:400,400italic,700

216.58.211.10

200 OK

906 B

URL HTTP/2
fonts.googleapis.com/css?family=Libre+Baskerville:400,400italic,700
IP
216.58.211.10:0
ASN
#15169 GOOGLE

File type
data
Size
906 B (906 bytes)
Hash
e590907cf00268f4dd48a11b1e82de09
d4b8abccadaf22fd1f5f0f2ae1095abb8a8e15b2
6ce849ea591694d45123a3d8074f0a6e222d3297522db44d15d26a5a66e4c6e1

HTTP Headers

GET /css?family=Libre+Baskerville:400,400italic,700 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bizyo-cafe.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sat, 24 Sep 2022 05:55:51 GMT
date: Sat, 24 Sep 2022 05:55:51 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

bizyo-cafe.com/wp/wp-content/plugins/revslider/rs-plugin/js/jquery.themepunch.tools.min.js?ver=4.6.5

133.18.15.25

200 OK

98 kB

URL HTTP/1.1
bizyo-cafe.com/wp/wp-content/plugins/revslider/rs-plugin/js/jquery.themepunch.tools.min.js?ver=4.6.5
IP
133.18.15.25:0
ASN
#24282 KAGOYA JAPAN Inc.

File type
ASCII text, with very long lines (25522)
Size
98 kB (98513 bytes)
Hash
b6c7f7bbae8ebc854b8b5a24a0edc451
33df38f597edd7595e76f459e263b39dff904767
e5e250b3c477115dc56eebf08795b8eb97f17f0f1998c195707097daf14c0320

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp/wp-content/plugins/revslider/rs-plugin/js/jquery.themepunch.tools.min.js?ver=4.6.5 HTTP/1.1
Host: bizyo-cafe.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bizyo-cafe.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sat, 24 Sep 2022 05:55:49 GMT
Server: Apache
Last-Modified: Wed, 13 May 2015 10:33:04 GMT
ETag: "180d1-515f422dc82e5"
Accept-Ranges: bytes
Content-Length: 98513
MS-Author-Via: DAV
Connection: close
Content-Type: application/javascript

bizyo-cafe.com/wp/wp-content/themes/parallax_2014/lib/photodiary/photodiary.js?ver=5.1.14

133.18.15.25

200 OK

2.2 kB

URL HTTP/1.1
bizyo-cafe.com/wp/wp-content/themes/parallax_2014/lib/photodiary/photodiary.js?ver=5.1.14
IP
133.18.15.25:0
ASN
#24282 KAGOYA JAPAN Inc.

File type
Unicode text, UTF-8 text
Size
2.2 kB (2235 bytes)
Hash
27b80d4994f17e9cef1c59386ab2ab08
29d4b7eb0068adcb0e75a661b3f4b82d5607aadc
be4156278831f4bde58c0c52aa9217245802d261416807b6b1a2380c2250c029

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp/wp-content/themes/parallax_2014/lib/photodiary/photodiary.js?ver=5.1.14 HTTP/1.1
Host: bizyo-cafe.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bizyo-cafe.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sat, 24 Sep 2022 05:55:51 GMT
Server: Apache
Last-Modified: Tue, 10 Oct 2017 11:30:53 GMT
ETag: "8bb-55b2fa3ccb5b2"
Accept-Ranges: bytes
Content-Length: 2235
MS-Author-Via: DAV
Connection: close
Content-Type: application/javascript

bizyo-cafe.com/wp/wp-content/plugins/revslider/rs-plugin/js/jquery.themepunch.revolution.min.js?ver=4.6.5

133.18.15.25

200 OK

110 kB

URL HTTP/1.1
bizyo-cafe.com/wp/wp-content/plugins/revslider/rs-plugin/js/jquery.themepunch.revolution.min.js?ver=4.6.5
IP
133.18.15.25:0
ASN
#24282 KAGOYA JAPAN Inc.

File type
ASCII text, with very long lines (32741)
Size
110 kB (109886 bytes)
Hash
190ac18e8ebbb6d319e0811620792098
22cc5c459f89e29ef34c9c0cf252273840f39669
cb8ecd823744c67593a1248fe4202116dffd033b468016a55ebf3a3c5f7bebaf

HTTP Headers

GET /wp/wp-content/plugins/revslider/rs-plugin/js/jquery.themepunch.revolution.min.js?ver=4.6.5 HTTP/1.1
Host: bizyo-cafe.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bizyo-cafe.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sat, 24 Sep 2022 05:55:49 GMT
Server: Apache
Last-Modified: Wed, 13 May 2015 10:33:04 GMT
ETag: "1ad3e-515f422d9df1d"
Accept-Ranges: bytes
Content-Length: 109886
MS-Author-Via: DAV
Connection: close
Content-Type: application/javascript

bizyo-cafe.com/wp/wp-content/themes/parallax_2014/js/jquery.easing.1.3.js?ver=5.1.14

133.18.15.25

200 OK

8.1 kB

URL HTTP/1.1
bizyo-cafe.com/wp/wp-content/themes/parallax_2014/js/jquery.easing.1.3.js?ver=5.1.14
IP
133.18.15.25:0
ASN
#24282 KAGOYA JAPAN Inc.

File type
Unicode text, UTF-8 text
Size
8.1 kB (8097 bytes)
Hash
6516449ed5089677ed3d7e2f11fc8942
82e40d060bc269a6dde20c3990ca5a4fea6ca754
0757f7ff6e5f6a581922a5e2d42c5e0cf7475d880885a9802e8bdd5e4188dd34

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp/wp-content/themes/parallax_2014/js/jquery.easing.1.3.js?ver=5.1.14 HTTP/1.1
Host: bizyo-cafe.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bizyo-cafe.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sat, 24 Sep 2022 05:55:51 GMT
Server: Apache
Last-Modified: Tue, 12 May 2015 09:17:41 GMT
ETag: "1fa1-515def76efba7"
Accept-Ranges: bytes
Content-Length: 8097
MS-Author-Via: DAV
Connection: close
Content-Type: application/javascript

bizyo-cafe.com/wp/wp-includes/js/jquery/ui/core.min.js?ver=1.11.4

133.18.15.25

200 OK

3.9 kB

URL HTTP/1.1
bizyo-cafe.com/wp/wp-includes/js/jquery/ui/core.min.js?ver=1.11.4
IP
133.18.15.25:0
ASN
#24282 KAGOYA JAPAN Inc.

File type
ASCII text, with very long lines (3704)
Size
3.9 kB (3929 bytes)
Hash
4465b90ef439b67caeedd504a82af68c
6b88b224a0da4525df2375f0caab58678edf3433
c8509588d94b47c1b1be041388997dd8ce06f9302b20679203005da08fbcc2c0

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp/wp-includes/js/jquery/ui/core.min.js?ver=1.11.4 HTTP/1.1
Host: bizyo-cafe.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bizyo-cafe.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sat, 24 Sep 2022 05:55:51 GMT
Server: Apache
Last-Modified: Thu, 15 Apr 2021 18:57:39 GMT
ETag: "f59-5c0076ff6955b"
Accept-Ranges: bytes
Content-Length: 3929
MS-Author-Via: DAV
Connection: close
Content-Type: application/javascript

bizyo-cafe.com/wp/wp-content/themes/parallax_2014/lib/bxslider/jquery.bxslider.min.js?ver=5.1.14

133.18.15.25

200 OK

19 kB

URL HTTP/1.1
bizyo-cafe.com/wp/wp-content/themes/parallax_2014/lib/bxslider/jquery.bxslider.min.js?ver=5.1.14
IP
133.18.15.25:0
ASN
#24282 KAGOYA JAPAN Inc.

File type
ASCII text, with very long lines (19040)
Size
19 kB (19359 bytes)
Hash
697d69a48e5356f7106e38c09f7f19e0
b57160771fa597a5b56c5b12756c693e4829be07
bb9e7dc822c6b7b95a6329932885c72ff2caf74b243fc1c40aca0e858123b83e

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp/wp-content/themes/parallax_2014/lib/bxslider/jquery.bxslider.min.js?ver=5.1.14 HTTP/1.1
Host: bizyo-cafe.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bizyo-cafe.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sat, 24 Sep 2022 05:55:51 GMT
Server: Apache
Last-Modified: Tue, 12 May 2015 09:17:47 GMT
ETag: "4b9f-515def7c9ba1f"
Accept-Ranges: bytes
Content-Length: 19359
MS-Author-Via: DAV
Connection: close
Content-Type: application/javascript

bizyo-cafe.com/wp/wp-includes/js/jquery/ui/widget.min.js?ver=1.11.4

133.18.15.25

200 OK

6.8 kB

URL HTTP/1.1
bizyo-cafe.com/wp/wp-includes/js/jquery/ui/widget.min.js?ver=1.11.4
IP
133.18.15.25:0
ASN
#24282 KAGOYA JAPAN Inc.

File type
ASCII text, with very long lines (6603)
Size
6.8 kB (6827 bytes)
Hash
2fb11e1fba920ce6191aaf65473894ff
858e35ea212ce2c331f6f2b4980b55fa5bac29f5
1b4f1024fa4887b47765e2ad4db9bc1f6ea96335f77fd44c62b8538d75e7190c

HTTP Headers

GET /wp/wp-includes/js/jquery/ui/widget.min.js?ver=1.11.4 HTTP/1.1
Host: bizyo-cafe.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bizyo-cafe.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sat, 24 Sep 2022 05:55:51 GMT
Server: Apache
Last-Modified: Thu, 15 Apr 2021 18:57:39 GMT
ETag: "1aab-5c0076ff69d2b"
Accept-Ranges: bytes
Content-Length: 6827
MS-Author-Via: DAV
Connection: close
Content-Type: application/javascript

bizyo-cafe.com/wp/wp-includes/js/jquery/ui/mouse.min.js?ver=1.11.4

133.18.15.25

200 OK

3.1 kB

URL HTTP/1.1
bizyo-cafe.com/wp/wp-includes/js/jquery/ui/mouse.min.js?ver=1.11.4
IP
133.18.15.25:0
ASN
#24282 KAGOYA JAPAN Inc.

File type
ASCII text, with very long lines (2927)
Size
3.1 kB (3142 bytes)
Hash
412416b5df69805b1e084e50d4283c2f
b8c47463c0793854638a8981cfad35503f393297
7e8d54d6c6a4ebd0237786d41ff5d205096eda696f2a5b591e074fe94ba3b3af

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp/wp-includes/js/jquery/ui/mouse.min.js?ver=1.11.4 HTTP/1.1
Host: bizyo-cafe.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bizyo-cafe.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sat, 24 Sep 2022 05:55:52 GMT
Server: Apache
Last-Modified: Thu, 15 Apr 2021 18:57:39 GMT
ETag: "c46-5c0076ff69943"
Accept-Ranges: bytes
Content-Length: 3142
MS-Author-Via: DAV
Connection: close
Content-Type: application/javascript

bizyo-cafe.com/wp/wp-includes/js/jquery/ui/slider.min.js?ver=1.11.4

133.18.15.25

200 OK

11 kB

URL HTTP/1.1
bizyo-cafe.com/wp/wp-includes/js/jquery/ui/slider.min.js?ver=1.11.4
IP
133.18.15.25:0
ASN
#24282 KAGOYA JAPAN Inc.

File type
ASCII text, with very long lines (10694)
Size
11 kB (10911 bytes)
Hash
aa205fbfb232b9cb5f104142e7183b36
d73fef1ae7c9fc260dba69e57658793f01590eea
bf9d214a2ec4f01d57a72fa4417e1cd8f895800b277b6040eb98c77e4b49e668

HTTP Headers

GET /wp/wp-includes/js/jquery/ui/slider.min.js?ver=1.11.4 HTTP/1.1
Host: bizyo-cafe.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bizyo-cafe.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sat, 24 Sep 2022 05:55:52 GMT
Server: Apache
Last-Modified: Thu, 15 Apr 2021 18:57:39 GMT
ETag: "2a9f-5c0076ff69943"
Accept-Ranges: bytes
Content-Length: 10911
MS-Author-Via: DAV
Connection: close
Content-Type: application/javascript

bizyo-cafe.com/wp/wp-includes/js/jquery/ui/datepicker.min.js?ver=1.11.4

133.18.15.25

200 OK

36 kB

URL HTTP/1.1
bizyo-cafe.com/wp/wp-includes/js/jquery/ui/datepicker.min.js?ver=1.11.4
IP
133.18.15.25:0
ASN
#24282 KAGOYA JAPAN Inc.

File type
ASCII text, with very long lines (35947)
Size
36 kB (36172 bytes)
Hash
d47e9336b80512e365f71583fdcbd8d1
d1289d2368fb085217cf26e7482b24502ca6d2ef
6629a6e8b1710170fb1331e200308a1a4a1e44d2da9b6e91fdec602b1dd0eb34

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp/wp-includes/js/jquery/ui/datepicker.min.js?ver=1.11.4 HTTP/1.1
Host: bizyo-cafe.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bizyo-cafe.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sat, 24 Sep 2022 05:55:51 GMT
Server: Apache
Last-Modified: Thu, 15 Apr 2021 18:57:39 GMT
ETag: "8d4c-5c0076ff69d2b"
Accept-Ranges: bytes
Content-Length: 36172
MS-Author-Via: DAV
Connection: close
Content-Type: application/javascript

bizyo-cafe.com/wp/wp-includes/js/mediaelement/wp-mediaelement.min.js?ver=5.1.14

133.18.15.25

200 OK

907 B

URL HTTP/1.1
bizyo-cafe.com/wp/wp-includes/js/mediaelement/wp-mediaelement.min.js?ver=5.1.14
IP
133.18.15.25:0
ASN
#24282 KAGOYA JAPAN Inc.

File type
HTML document, ASCII text, with very long lines (907), with no line terminators
Size
907 B (907 bytes)
Hash
45b5fdfa92b3e7fa6eb36bc5cdc0a074
20f96c4ea76edc117fbb3423dde9bc8fa27ff820
0b2c979f1afdb9624c1565ef8fcb2b9ac6595712ce4b7bdc0e428c6082967419

HTTP Headers

GET /wp/wp-includes/js/mediaelement/wp-mediaelement.min.js?ver=5.1.14 HTTP/1.1
Host: bizyo-cafe.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bizyo-cafe.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sat, 24 Sep 2022 05:55:52 GMT
Server: Apache
Last-Modified: Thu, 15 Apr 2021 18:57:39 GMT
ETag: "38b-5c0076ff6a4fb"
Accept-Ranges: bytes
Content-Length: 907
MS-Author-Via: DAV
Connection: close
Content-Type: application/javascript

bizyo-cafe.com/wp/wp-includes/js/imagesloaded.min.js?ver=3.2.0

133.18.15.25

200 OK

8.1 kB

URL HTTP/1.1
bizyo-cafe.com/wp/wp-includes/js/imagesloaded.min.js?ver=3.2.0
IP
133.18.15.25:0
ASN
#24282 KAGOYA JAPAN Inc.

File type
ASCII text, with very long lines (7996)
Size
8.1 kB (8113 bytes)
Hash
7e97ab52c3df75e9053002bb59f2cdd5
502edaa98677c743246149deb3a76f5ff65272dd
11e15f1d64a63cb498d0d42720a688ed15bf78393d8c460d695a110244c066e3

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp/wp-includes/js/imagesloaded.min.js?ver=3.2.0 HTTP/1.1
Host: bizyo-cafe.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bizyo-cafe.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sat, 24 Sep 2022 05:55:52 GMT
Server: Apache
Last-Modified: Thu, 21 Nov 2019 04:02:58 GMT
ETag: "1fb1-597d35f69cbf8"
Accept-Ranges: bytes
Content-Length: 8113
MS-Author-Via: DAV
Connection: close
Content-Type: application/javascript

bizyo-cafe.com/wp/wp-content/themes/parallax_2014/lib/colorbox/jquery.colorbox-min.js?ver=5.1.14

133.18.15.25

200 OK

12 kB

URL HTTP/1.1
bizyo-cafe.com/wp/wp-content/themes/parallax_2014/lib/colorbox/jquery.colorbox-min.js?ver=5.1.14
IP
133.18.15.25:0
ASN
#24282 KAGOYA JAPAN Inc.

File type
ASCII text, with very long lines (11673)
Size
12 kB (11747 bytes)
Hash
2910ed8ce52b70f2a1f53b64b9c343de
f281752f7faa349b3b4c4a165f906684ff164303
efa2ec1d872cdd22f2ca6aedea7b686c7eda3867f5d28c1321891a775edb7ad8

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp/wp-content/themes/parallax_2014/lib/colorbox/jquery.colorbox-min.js?ver=5.1.14 HTTP/1.1
Host: bizyo-cafe.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bizyo-cafe.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sat, 24 Sep 2022 05:55:52 GMT
Server: Apache
Last-Modified: Tue, 12 May 2015 09:17:53 GMT
ETag: "2de3-515def8287807"
Accept-Ranges: bytes
Content-Length: 11747
MS-Author-Via: DAV
Connection: close
Content-Type: application/javascript

bizyo-cafe.com/wp/wp-content/themes/parallax_2014/lib/castpro_timeline/jquery.castpro_timeline.js?ver=5.1.14

133.18.15.25

200 OK

751 B

URL HTTP/1.1
bizyo-cafe.com/wp/wp-content/themes/parallax_2014/lib/castpro_timeline/jquery.castpro_timeline.js?ver=5.1.14
IP
133.18.15.25:0
ASN
#24282 KAGOYA JAPAN Inc.

File type
Unicode text, UTF-8 text
Size
751 B (751 bytes)
Hash
3871e94e23943117060e4481693b7946
f083b6b1dfda3bac32dfc9e313bed5abd4cdfd21
1d8c846dcd07bd228373bc3868cdc0d56efc5dcdef3b02b625ac7018f2bdebd8

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp/wp-content/themes/parallax_2014/lib/castpro_timeline/jquery.castpro_timeline.js?ver=5.1.14 HTTP/1.1
Host: bizyo-cafe.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bizyo-cafe.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sat, 24 Sep 2022 05:55:52 GMT
Server: Apache
Last-Modified: Tue, 12 May 2015 09:17:52 GMT
ETag: "2ef-515def80c83c7"
Accept-Ranges: bytes
Content-Length: 751
MS-Author-Via: DAV
Connection: close
Content-Type: application/javascript

bizyo-cafe.com/wp/wp-includes/js/masonry.min.js?ver=3.3.2

133.18.15.25

200 OK

29 kB

URL HTTP/1.1
bizyo-cafe.com/wp/wp-includes/js/masonry.min.js?ver=3.3.2
IP
133.18.15.25:0
ASN
#24282 KAGOYA JAPAN Inc.

File type
ASCII text, with very long lines (28817)
Size
29 kB (28953 bytes)
Hash
c54e75edf5cbaf412bc16ba4145f6032
67638430c92c23cedb89db038627876d361135c0
733d7c26a5fb7240e83e8af2c822218b321b5143e28c2dd65ab2492297ac6bd7

HTTP Headers

GET /wp/wp-includes/js/masonry.min.js?ver=3.3.2 HTTP/1.1
Host: bizyo-cafe.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bizyo-cafe.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sat, 24 Sep 2022 05:55:52 GMT
Server: Apache
Last-Modified: Thu, 21 Nov 2019 04:02:58 GMT
ETag: "7119-597d35f75b2d8"
Accept-Ranges: bytes
Content-Length: 28953
MS-Author-Via: DAV
Connection: close
Content-Type: application/javascript

bizyo-cafe.com/wp/wp-content/themes/parallax_2014/lib/nicescroll/jquery.nicescroll.min.js?ver=5.1.14

133.18.15.25

200 OK

0 B

URL HTTP/1.1
bizyo-cafe.com/wp/wp-content/themes/parallax_2014/lib/nicescroll/jquery.nicescroll.min.js?ver=5.1.14
IP
133.18.15.25:0
ASN
#24282 KAGOYA JAPAN Inc.

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /wp/wp-content/themes/parallax_2014/lib/nicescroll/jquery.nicescroll.min.js?ver=5.1.14 HTTP/1.1
Host: bizyo-cafe.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bizyo-cafe.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sat, 24 Sep 2022 05:55:52 GMT
Server: Apache
Last-Modified: Fri, 22 May 2015 08:22:48 GMT
ETag: "eaf9-516a75d8be928"
Accept-Ranges: bytes
Content-Length: 60153
MS-Author-Via: DAV
Connection: close
Content-Type: application/javascript

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

JavaScript (17)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations