firefox.settings.services.mozilla.com/v1/
18.165.201.83200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP 18.165.201.83:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 1b3053fa528e28810f8a2cc9284cc921
cca9eb471d941881a6b9a1793aecb6c281908f6a
a2427848ba35575dda8a82cf88f104978234c05389deebc3fc8279d9075eff45
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Alert, Content-Type, Backoff, Content-Length, Retry-After
Cache-Control: max-age=3600
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Sat, 24 Sep 2022 05:05:33 GMT
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 17d60a367e7e38c01f5a3242a9a3e784.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: LHR50-P3
X-Amz-Cf-Id: H3fGwW0BneQzL4G9MVOXtTsFvwumK6yRZw5G6xqnMjuIDSzY3uT-Lg==
Age: 3011
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 09a973de929ab7452edc342c780d3668
3f14f6e0a36f76863c0aea6fb561c266404a7ea3
e82ca5f310e37267fbf792427747e65c2bb35e684d3f629c0aa302f688bc4f80
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E82CA5F310E37267FBF792427747E65C2BB35E684D3F629C0AA302F688BC4F80"
Last-Modified: Fri, 23 Sep 2022 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5458
Expires: Sat, 24 Sep 2022 07:26:42 GMT
Date: Sat, 24 Sep 2022 05:55:44 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash b3e81b5bd7bd8e12288a8159e44ceb3f
977945964ffcbf49ac78f840db9da822c50c82f0
4721814da286852318f7ebf9857bd4bf01f0beea2c9eb7ddb9f290e3fa472232
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4721814DA286852318F7EBF9857BD4BF01F0BEEA2C9EB7DDB9F290E3FA472232"
Last-Modified: Fri, 23 Sep 2022 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8119
Expires: Sat, 24 Sep 2022 08:11:03 GMT
Date: Sat, 24 Sep 2022 05:55:44 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 6113f8408c59aebe188d6af273b90743
7398873bf00f99944eaa77ad3ebc0d43c23dba6b
b6e0cc9ad68306208a160f3835fb8da76acc5a82d8fde1da5a98e1de1c11a770
GET /chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: FIlcwGzqo88r1z5kUgYO+E605KHnXg9o5IWEegOg8oLI4axQ6z5V1eRZ8mkPCp6EnfSJtwgaCTo=
x-amz-request-id: NBNR1JH5YRC9PJ6F
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sat, 24 Sep 2022 05:44:59 GMT
age: 645
last-modified: Sat, 10 Sep 2022 18:47:45 GMT
etag: "6113f8408c59aebe188d6af273b90743"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 24 Sep 2022 05:55:44 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
www.bizyo-cafe.com/
133.18.15.25301 Moved Permanently 235 B IP 133.18.15.25:0
ASN #24282 KAGOYA JAPAN Inc.
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 241dd40365ded68fac4c6efce4760f01
36170ec6c30576c6a4a2c3392726a246514098e7
829a7fa74ad28a23b34a884f536b48f81dfd9c25e9f195085a4b1bcb83dede64
Analyzer Verdict Alert fortinet Malware
GET / HTTP/1.1
Host: www.bizyo-cafe.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Sat, 24 Sep 2022 05:55:44 GMT
Server: Apache
Location: https://www.bizyo-cafe.com/
Content-Length: 235
Connection: close
Content-Type: text/html; charset=iso-8859-1
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
18.165.201.83200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 18.165.201.83:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Retry-After, Expires, Alert, Content-Length, ETag, Cache-Control, Content-Type, Backoff, Pragma, Last-Modified
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Cache-Control: max-age=3600, max-age=3600
Date: Sat, 24 Sep 2022 05:20:46 GMT
Expires: Sat, 24 Sep 2022 05:34:48 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 d1187be634e389e2e876be936bba8e74.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: LHR50-P3
X-Amz-Cf-Id: RVfmVBMJKSzUawM3q0F_9dFaOXHYqpmA1AHJAReER-Oh5_i4Fb6NnQ==
Age: 2098
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash f714931cf870bfa33815fd259b7246fd
38e411ef8ca1b31ead8415ee5f21d98bd9653a86
897675130112daff8bdf6fa25b56faa4b9fdb367daca2b2645ed65c83a2e423f
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6340
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 24 Sep 2022 05:55:45 GMT
Last-Modified: Sat, 24 Sep 2022 04:10:05 GMT
Server: ECS (ska/F71C)
X-Cache: HIT
Content-Length: 471
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash ca88540bcb3fbe985028a21cdb8a1569
d8820b5f070fae4718f0457a3fd317f806b87c21
1b6774feecb89f6063465d7862ab9950bdfdcebc5c79cf8bf8ca747f94d74999
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1B6774FEECB89F6063465D7862AB9950BDFDCEBC5C79CF8BF8CA747F94D74999"
Last-Modified: Thu, 22 Sep 2022 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21561
Expires: Sat, 24 Sep 2022 11:55:06 GMT
Date: Sat, 24 Sep 2022 05:55:45 GMT
Connection: keep-alive
push.services.mozilla.com/
35.165.143.157101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 35.165.143.157:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: NcDaXgdGub+2WNwtjy8UqQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: dR0L9JXS3y04trdUZBKDWP/rl8E=
www.bizyo-cafe.com/
133.18.15.25301 Moved Permanently 0 B IP 133.18.15.25:0
ASN #24282 KAGOYA JAPAN Inc.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Malware
GET / HTTP/1.1
Host: www.bizyo-cafe.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/1.1 301 Moved Permanently
Date: Sat, 24 Sep 2022 05:55:45 GMT
Server: Apache
Set-Cookie: multi-device-switcher=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; path=/; secure
X-Redirect-By: WordPress
Location: https://bizyo-cafe.com/
MS-Author-Via: DAV
Content-Length: 0
Connection: close
Content-Type: text/html
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 7038cca95198779d8bb479045eb56652
e9dcf9451e849f4d55b0909b33a51bd0b1a35296
0fc47dba3f2789b7c509a4916b1fe3c7b6b30c6778e5354742256125730310f3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0FC47DBA3F2789B7C509A4916B1FE3C7B6B30C6778E5354742256125730310F3"
Last-Modified: Fri, 23 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2549
Expires: Sat, 24 Sep 2022 06:38:15 GMT
Date: Sat, 24 Sep 2022 05:55:46 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 7038cca95198779d8bb479045eb56652
e9dcf9451e849f4d55b0909b33a51bd0b1a35296
0fc47dba3f2789b7c509a4916b1fe3c7b6b30c6778e5354742256125730310f3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0FC47DBA3F2789B7C509A4916B1FE3C7B6B30C6778E5354742256125730310F3"
Last-Modified: Fri, 23 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2549
Expires: Sat, 24 Sep 2022 06:38:15 GMT
Date: Sat, 24 Sep 2022 05:55:46 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 7038cca95198779d8bb479045eb56652
e9dcf9451e849f4d55b0909b33a51bd0b1a35296
0fc47dba3f2789b7c509a4916b1fe3c7b6b30c6778e5354742256125730310f3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0FC47DBA3F2789B7C509A4916B1FE3C7B6B30C6778E5354742256125730310F3"
Last-Modified: Fri, 23 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2549
Expires: Sat, 24 Sep 2022 06:38:15 GMT
Date: Sat, 24 Sep 2022 05:55:46 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 7038cca95198779d8bb479045eb56652
e9dcf9451e849f4d55b0909b33a51bd0b1a35296
0fc47dba3f2789b7c509a4916b1fe3c7b6b30c6778e5354742256125730310f3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0FC47DBA3F2789B7C509A4916B1FE3C7B6B30C6778E5354742256125730310F3"
Last-Modified: Fri, 23 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2549
Expires: Sat, 24 Sep 2022 06:38:15 GMT
Date: Sat, 24 Sep 2022 05:55:46 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 7038cca95198779d8bb479045eb56652
e9dcf9451e849f4d55b0909b33a51bd0b1a35296
0fc47dba3f2789b7c509a4916b1fe3c7b6b30c6778e5354742256125730310f3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0FC47DBA3F2789B7C509A4916B1FE3C7B6B30C6778E5354742256125730310F3"
Last-Modified: Fri, 23 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2549
Expires: Sat, 24 Sep 2022 06:38:15 GMT
Date: Sat, 24 Sep 2022 05:55:46 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3cb80186-265b-4b0a-a4b1-38aef341bfc9.jpeg
34.120.237.76200 OK 8.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3cb80186-265b-4b0a-a4b1-38aef341bfc9.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 33edd8fdf7032227386d1514f99b2c4a
9fa34e0e3d456ed38d6e94911bf24990ed33ab0c
1d8ebbea41da3fbb5bd6784635f176bce0697a290635808166d269202bd3defa
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3cb80186-265b-4b0a-a4b1-38aef341bfc9.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8557
x-amzn-requestid: 51f41597-b094-47d7-b372-4c4c0236577f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y7tAXEO3oAMFTWQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632e2868-30ad6e877ee82fcc4d17a7e6;Sampled=0
x-amzn-remapped-date: Fri, 23 Sep 2022 21:43:04 GMT
x-amz-cf-pop: SEA73-P2, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: KfRlAHaZjrBNyxoYsUtQZ0TgMGD99mnrC3GViYCTRcHPtDfgYbLczg==
via: 1.1 bd6f70221217681265382902c6157c76.cloudfront.net (CloudFront), 1.1 e95ec8f1dc02e32f0cb9e113963ceb4e.cloudfront.net (CloudFront), 1.1 google
date: Fri, 23 Sep 2022 22:02:30 GMT
age: 28396
etag: "9fa34e0e3d456ed38d6e94911bf24990ed33ab0c"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd719f7db-20e1-4834-9525-3117f1824f36.webp
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd719f7db-20e1-4834-9525-3117f1824f36.webp
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash aa150280eb113504d61a25935c0f0127
ed04f74fbb4c77b21e2babc51a82857f5e23d169
07df17fffb391aa82efb09e30d97e88fa4dbe6df00e37bb90304f69179f4848e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd719f7db-20e1-4834-9525-3117f1824f36.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10032
x-amzn-requestid: 521c4012-9834-4100-a7ed-30093502f1a9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y7sPBHGYoAMFh-Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632e272c-77b03c321240d76a572d603a;Sampled=0
x-amzn-remapped-date: Fri, 23 Sep 2022 21:37:48 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: lAQOV9_fZ2RFvhRKMtDOeRTWJc-Jo1u-DrtJshcQuCSOUXVbNMjhaw==
via: 1.1 470e3fe246a660ba6ace67a79f78d246.cloudfront.net (CloudFront), 1.1 ee8246c5442dace7525c74f6a799bb46.cloudfront.net (CloudFront), 1.1 google
date: Fri, 23 Sep 2022 21:56:56 GMT
age: 28730
etag: "ed04f74fbb4c77b21e2babc51a82857f5e23d169"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd81dd9e4-90be-4864-999a-d4ef740cdc24.jpeg
34.120.237.76200 OK 8.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd81dd9e4-90be-4864-999a-d4ef740cdc24.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 37139ae1fd49662f05b8e3a0925f31b4
d355033b77ce3f76f800f8c90ddd624f1fda9005
0d76bfa4c37391d08e5f354e7a927b9216f06b8d5e90d7a5cfb3e08df00dcf94
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd81dd9e4-90be-4864-999a-d4ef740cdc24.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8675
x-amzn-requestid: e640ba03-d4f9-48eb-8ff7-39d81cef1eb3
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y7sPBGgYIAMFdKg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632e272c-61d21eb86e987d4367afe3f2;Sampled=0
x-amzn-remapped-date: Fri, 23 Sep 2022 21:37:48 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: eIHnoYMrjnG3jEcxlMy9FkosYv1wl0NotFC8yBSVO_Yh_Gk0sK1Adg==
via: 1.1 5a1753718d8b33365e5f693dd338c510.cloudfront.net (CloudFront), 1.1 89791e6b21b9a30cc51cac1bc51cf098.cloudfront.net (CloudFront), 1.1 google
date: Fri, 23 Sep 2022 21:57:02 GMT
age: 28724
etag: "d355033b77ce3f76f800f8c90ddd624f1fda9005"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8d9363e8-7e74-47d0-b49b-ac648ebf58c9.jpeg
34.120.237.76200 OK 7.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8d9363e8-7e74-47d0-b49b-ac648ebf58c9.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash d84c4ddafb066f0340a6108644e18e6b
058909341bf245c24fd86fc076acf2a3c246a96c
ca9019fab30635e3548e05e088ff5a5d612ffe7c01f29465c4133710a41c0245
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8d9363e8-7e74-47d0-b49b-ac648ebf58c9.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7829
x-amzn-requestid: 18df2f34-f279-4088-8488-76e429fdbb49
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y7tZ4HqsoAMFrgA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632e290b-42270a1556339a3c5a941f89;Sampled=0
x-amzn-remapped-date: Fri, 23 Sep 2022 21:45:47 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: cSHVvtCZq1SkklylzL4DaNV_mrCx3kDp3fMxKlycHID-oPPMlNW7Bg==
via: 1.1 01c28b52813cd0e82f810c492808b142.cloudfront.net (CloudFront), 1.1 ddaf46a95abcfc80e8eae76235e2127c.cloudfront.net (CloudFront), 1.1 google
date: Fri, 23 Sep 2022 21:59:02 GMT
etag: "058909341bf245c24fd86fc076acf2a3c246a96c"
content-type: image/jpeg
age: 28604
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd5039669-74cb-4d54-9208-94257c765b35.jpeg
34.120.237.76200 OK 9.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd5039669-74cb-4d54-9208-94257c765b35.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 55d224ac83a417772c98bc5080fb6689
a30f9044330824e70dde0dcc785890d981e6fdf5
b2ea4dea200109019a65834b98e31e8fac718a199513810a2819858be2b4470a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd5039669-74cb-4d54-9208-94257c765b35.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9935
x-amzn-requestid: 9eb8463d-172a-40a2-8eed-3c97b1260afe
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y7sQ5FARoAMFXQQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632e2738-3709a2f22ecc033532223b26;Sampled=0
x-amzn-remapped-date: Fri, 23 Sep 2022 21:38:00 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: e5eETCL5yFnoG4HPx0Qv8hjGnlXx5vOL4syMx9uato8nuIHkSvMezg==
via: 1.1 8f22423015641505b8c857a37450d6c0.cloudfront.net (CloudFront), 1.1 35575576af8067e30cfb17c6b9fde8e2.cloudfront.net (CloudFront), 1.1 google
date: Fri, 23 Sep 2022 21:53:50 GMT
age: 28916
etag: "a30f9044330824e70dde0dcc785890d981e6fdf5"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb77ad616-c829-40b4-8b70-2be46252d64c.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb77ad616-c829-40b4-8b70-2be46252d64c.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 8ea5f06ad31f0cedd2cb5c6df82f35f4
60a83a1618ffae06e49ca3002bac1db9980dcfe8
5f6a4cb92c016ef0f229b11d727e9680a15b10782b5bfe9e66ad9d100b458d8d
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb77ad616-c829-40b4-8b70-2be46252d64c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10279
x-amzn-requestid: 0f361c26-1f12-421a-9752-7d4fcdf839ac
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y4V65GTXIAMF9-Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632cd045-25677a637307879044de8242;Sampled=0
x-amzn-remapped-date: Thu, 22 Sep 2022 21:14:45 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: NcnEyVD-vG10pOpPCBMjKGqVw-rstkPIt-oqkIc5urAGE934fxL0VQ==
via: 1.1 0aebf3fe433ff96e68d785fad4ea4c0e.cloudfront.net (CloudFront), 1.1 476c2ba6d9f6cd69dbcedbd65688cbc0.cloudfront.net (CloudFront), 1.1 google
date: Sat, 24 Sep 2022 04:12:38 GMT
age: 6188
etag: "60a83a1618ffae06e49ca3002bac1db9980dcfe8"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 60e086fb53adb0c6786bccbef17f7d79
867729756a8c082ba945835a0cee5971637b7aab
4cf0dfa7ab22427e7ee82f473bf946032ecde3a6e98f86e440d81b60a3935676
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4CF0DFA7AB22427E7EE82F473BF946032ECDE3A6E98F86E440D81B60A3935676"
Last-Modified: Thu, 22 Sep 2022 02:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21515
Expires: Sat, 24 Sep 2022 11:54:21 GMT
Date: Sat, 24 Sep 2022 05:55:46 GMT
Connection: keep-alive
bizyo-cafe.com/
133.18.15.25200 OK 45 kB IP 133.18.15.25:0
ASN #24282 KAGOYA JAPAN Inc.
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (5302), with CRLF, LF line terminators
Hash 0437f19b9598ab5c3ba9d6e2bf20dbdc
599ddba773fd3291640b307639375e385da0708d
0e4066b080ee694f833f817a7c15d0e1a8bec678ed9c53220682b4878b28f3f7
Analyzer Verdict Alert fortinet Malware
GET / HTTP/1.1
Host: bizyo-cafe.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/1.1 200 OK
Date: Sat, 24 Sep 2022 05:55:46 GMT
Server: Apache
Set-Cookie: multi-device-switcher=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; path=/; secure
Link: <https://bizyo-cafe.com/wp-json/>; rel="https://api.w.org/"
MS-Author-Via: DAV
Connection: close
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
bizyo-cafe.com/wp/wp-includes/css/dist/block-library/style.min.css?ver=5.1.14
133.18.15.25200 OK 25 kB URL HTTP/1.1 bizyo-cafe.com/wp/wp-includes/css/dist/block-library/style.min.css?ver=5.1.14
IP 133.18.15.25:0
ASN #24282 KAGOYA JAPAN Inc.
File type ASCII text, with very long lines (25245), with no line terminators
Hash d0b8525a9eff4173fd149a06f341e531
35013c4712d463aa5020f33d3234c4e90f700515
94f80c87390a84a3761860b1ce0764da77bb81d6f11cb3d059339148589aaf5c
Analyzer Verdict Alert fortinet Malware
GET /wp/wp-includes/css/dist/block-library/style.min.css?ver=5.1.14 HTTP/1.1
Host: bizyo-cafe.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bizyo-cafe.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 24 Sep 2022 05:55:47 GMT
Server: Apache
Last-Modified: Thu, 15 Apr 2021 18:57:39 GMT
ETag: "629d-5c0076ff7125b"
Accept-Ranges: bytes
Content-Length: 25245
MS-Author-Via: DAV
Connection: close
Content-Type: text/css
code.jquery.com/jquery-migrate-1.1.0.js?ver=5.1.14
69.16.175.10200 OK 5.5 kB URL HTTP/2 code.jquery.com/jquery-migrate-1.1.0.js?ver=5.1.14
IP 69.16.175.10:0
Hash a12a51650407b55353902bc252aeda07
99e6f4f91c7e595986654571345c87b96ad960ed
fefecf99c6d3d62aa9f288f785fa423e4e75981340422cac3148606674d0c86d
GET /jquery-migrate-1.1.0.js?ver=5.1.14 HTTP/1.1
Host: code.jquery.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bizyo-cafe.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 24 Sep 2022 05:55:48 GMT
content-encoding: gzip
content-length: 5466
content-type: application/javascript; charset=utf-8
last-modified: Fri, 18 Oct 1991 12:00:00 GMT
accept-ranges: bytes
server: nginx
etag: W/"28feccc0-3da0"
cache-control: max-age=315360000, public
access-control-allow-origin: *
vary: Accept-Encoding
x-hw: 1663998948.dop014.sk1.t,1663998948.cds069.sk1.hn,1663998948.cds203.sk1.c
X-Firefox-Spdy: h2
bizyo-cafe.com/wp/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=4.2.1
133.18.15.25200 OK 1.1 kB URL HTTP/1.1 bizyo-cafe.com/wp/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=4.2.1
IP 133.18.15.25:0
ASN #24282 KAGOYA JAPAN Inc.
Hash febbda4768d2fa237c794ce80866d7a7
a94b977b1deae46c31360f8fa06f471036f038d2
96f1810d96a208f1b98ce9ba49368fcb9b8334105e87554602275b978c2c170a
Analyzer Verdict Alert fortinet Malware
GET /wp/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=4.2.1 HTTP/1.1
Host: bizyo-cafe.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bizyo-cafe.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 24 Sep 2022 05:55:48 GMT
Server: Apache
Last-Modified: Fri, 31 Jan 2020 03:29:03 GMT
ETag: "44f-59d672cdd131f"
Accept-Ranges: bytes
Content-Length: 1103
MS-Author-Via: DAV
Connection: close
Content-Type: text/css
bizyo-cafe.com/wp/wp-content/themes/parallax_2014/lib/bxslider/bxslider.css?ver=5.1.14
133.18.15.25200 OK 3.5 kB URL HTTP/1.1 bizyo-cafe.com/wp/wp-content/themes/parallax_2014/lib/bxslider/bxslider.css?ver=5.1.14
IP 133.18.15.25:0
ASN #24282 KAGOYA JAPAN Inc.
Hash dd386440d97871546291f67cad078a9d
ed7d199ea3a1c30edb7579de3da93c0635d426af
77b0f30aa42908289244cd5973d962a43608996a912f2cd7f5c09d15d754579c
Analyzer Verdict Alert fortinet Malware
GET /wp/wp-content/themes/parallax_2014/lib/bxslider/bxslider.css?ver=5.1.14 HTTP/1.1
Host: bizyo-cafe.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bizyo-cafe.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 24 Sep 2022 05:55:48 GMT
Server: Apache
Last-Modified: Tue, 12 May 2015 09:17:47 GMT
ETag: "d9a-515def7c47a5f"
Accept-Ranges: bytes
Content-Length: 3482
MS-Author-Via: DAV
Connection: close
Content-Type: text/css
bizyo-cafe.com/wp/wp-content/themes/parallax_2014/lib/colorbox/colorbox.css?ver=5.1.14
133.18.15.25200 OK 3.2 kB URL HTTP/1.1 bizyo-cafe.com/wp/wp-content/themes/parallax_2014/lib/colorbox/colorbox.css?ver=5.1.14
IP 133.18.15.25:0
ASN #24282 KAGOYA JAPAN Inc.
Hash bf1fe6a11d72d7bc9af79bf641080187
1e4a7e7b3369859b2cb350fa0d3bfd93e1043d76
22de392704cbf9ac216db2d5caf7a84ba97b54956ff1eccb8caf5f4367a177f8
Analyzer Verdict Alert fortinet Malware
GET /wp/wp-content/themes/parallax_2014/lib/colorbox/colorbox.css?ver=5.1.14 HTTP/1.1
Host: bizyo-cafe.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bizyo-cafe.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 24 Sep 2022 05:55:48 GMT
Server: Apache
Last-Modified: Tue, 12 May 2015 09:17:54 GMT
ETag: "ca5-515def82c2d3f"
Accept-Ranges: bytes
Content-Length: 3237
MS-Author-Via: DAV
Connection: close
Content-Type: text/css
bizyo-cafe.com/wp/wp-includes/js/mediaelement/mediaelementplayer-legacy.min.css?ver=4.2.6-78496d1
133.18.15.25200 OK 11 kB URL HTTP/1.1 bizyo-cafe.com/wp/wp-includes/js/mediaelement/mediaelementplayer-legacy.min.css?ver=4.2.6-78496d1
IP 133.18.15.25:0
ASN #24282 KAGOYA JAPAN Inc.
File type ASCII text, with very long lines (11232), with no line terminators
Hash a7f30f0c309921a487640a98569cba90
ea44fea82bbce6e41a85894d81c7466da40cd091
ffa31f5802b20d64a10c71ad93394c1e2b4b16f33e2f479d8274fd02ce0a594f
Analyzer Verdict Alert fortinet Malware
GET /wp/wp-includes/js/mediaelement/mediaelementplayer-legacy.min.css?ver=4.2.6-78496d1 HTTP/1.1
Host: bizyo-cafe.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bizyo-cafe.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 24 Sep 2022 05:55:48 GMT
Server: Apache
Last-Modified: Thu, 21 Nov 2019 04:04:05 GMT
ETag: "2be0-597d3636c1e40"
Accept-Ranges: bytes
Content-Length: 11232
MS-Author-Via: DAV
Connection: close
Content-Type: text/css
bizyo-cafe.com/wp/wp-includes/js/mediaelement/wp-mediaelement.min.css?ver=5.1.14
133.18.15.25200 OK 4.2 kB URL HTTP/1.1 bizyo-cafe.com/wp/wp-includes/js/mediaelement/wp-mediaelement.min.css?ver=5.1.14
IP 133.18.15.25:0
ASN #24282 KAGOYA JAPAN Inc.
File type ASCII text, with very long lines (4163), with no line terminators
Hash 2b5b1702953af1d79db2e16f477fc709
b24a39ffc5ef7e1917e0c088458ff91c37ae26c1
245dba3be6a1b10208f628f21377fc998b5384dc303bdef6954df3910e4f36b5
Analyzer Verdict Alert fortinet Malware
GET /wp/wp-includes/js/mediaelement/wp-mediaelement.min.css?ver=5.1.14 HTTP/1.1
Host: bizyo-cafe.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bizyo-cafe.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 24 Sep 2022 05:55:48 GMT
Server: Apache
Last-Modified: Thu, 21 Nov 2019 04:04:06 GMT
ETag: "1043-597d36380f630"
Accept-Ranges: bytes
Content-Length: 4163
MS-Author-Via: DAV
Connection: close
Content-Type: text/css
bizyo-cafe.com/wp/wp-content/themes/parallax_2014/lib/ui-datepicker.css?ver=5.1.14
133.18.15.25200 OK 4.0 kB URL HTTP/1.1 bizyo-cafe.com/wp/wp-content/themes/parallax_2014/lib/ui-datepicker.css?ver=5.1.14
IP 133.18.15.25:0
ASN #24282 KAGOYA JAPAN Inc.
Hash 2514c308b7c4f09a7828da1a7ceb5f56
877b11d5321416100c037040fa066a299f423c0f
a161a7e054c04eac8e454b038f1c9e9b55616ef8cd88ebd71a52045ee4c470e4
GET /wp/wp-content/themes/parallax_2014/lib/ui-datepicker.css?ver=5.1.14 HTTP/1.1
Host: bizyo-cafe.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bizyo-cafe.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 24 Sep 2022 05:55:48 GMT
Server: Apache
Last-Modified: Tue, 12 May 2015 09:17:44 GMT
ETag: "fc7-515def79aeda7"
Accept-Ranges: bytes
Content-Length: 4039
MS-Author-Via: DAV
Connection: close
Content-Type: text/css
bizyo-cafe.com/wp/wp-content/themes/parallax_2014/lib/gridnav/gridnavigation.css?ver=5.1.14
133.18.15.25200 OK 1.3 kB URL HTTP/1.1 bizyo-cafe.com/wp/wp-content/themes/parallax_2014/lib/gridnav/gridnavigation.css?ver=5.1.14
IP 133.18.15.25:0
ASN #24282 KAGOYA JAPAN Inc.
Hash 9b58d72004d4a55f92cbf07afa104971
b241644434d61d7653453b94cbecf0dd860064a6
a0c859e034d4d8510d5ebb77df8243bb42583d3dba22c54eaf3acc710da6b0a0
GET /wp/wp-content/themes/parallax_2014/lib/gridnav/gridnavigation.css?ver=5.1.14 HTTP/1.1
Host: bizyo-cafe.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bizyo-cafe.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 24 Sep 2022 05:55:48 GMT
Server: Apache
Last-Modified: Tue, 12 May 2015 09:18:09 GMT
ETag: "4ee-515def9197f27"
Accept-Ranges: bytes
Content-Length: 1262
MS-Author-Via: DAV
Connection: close
Content-Type: text/css
bizyo-cafe.com/wp/wp-content/plugins/revslider/rs-plugin/css/settings.css?ver=4.6.5
133.18.15.25200 OK 55 kB URL HTTP/1.1 bizyo-cafe.com/wp/wp-content/plugins/revslider/rs-plugin/css/settings.css?ver=4.6.5
IP 133.18.15.25:0
ASN #24282 KAGOYA JAPAN Inc.
File type Unicode text, UTF-8 text, with very long lines (374)
Hash ffa119bf493b223d825e2218804e4c22
290de7892e7e8a3ab636b90560abc3d28800c646
8cf272f71df4c1da72cc6cac3e29e1099160a69a96825a6491783b41ed68e217
Analyzer Verdict Alert fortinet Malware
GET /wp/wp-content/plugins/revslider/rs-plugin/css/settings.css?ver=4.6.5 HTTP/1.1
Host: bizyo-cafe.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bizyo-cafe.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 24 Sep 2022 05:55:48 GMT
Server: Apache
Last-Modified: Wed, 13 May 2015 10:33:02 GMT
ETag: "d789-515f422b70925"
Accept-Ranges: bytes
Content-Length: 55177
MS-Author-Via: DAV
Connection: close
Content-Type: text/css
bizyo-cafe.com/wp/wp-content/themes/parallax_2014/style.css?ver=5.1.14
133.18.15.25200 OK 8.2 kB URL HTTP/1.1 bizyo-cafe.com/wp/wp-content/themes/parallax_2014/style.css?ver=5.1.14
IP 133.18.15.25:0
ASN #24282 KAGOYA JAPAN Inc.
Hash 8e65da23f8fbc4ca6004566eb8ce00ee
366a119546f5f6e707fbb04dbc875cc706d44a8e
3c87da26cb223f1dbeaafe3a62bd7669682e25662c782ac96c20fbeda4fc98d5
GET /wp/wp-content/themes/parallax_2014/style.css?ver=5.1.14 HTTP/1.1
Host: bizyo-cafe.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bizyo-cafe.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 24 Sep 2022 05:55:48 GMT
Server: Apache
Last-Modified: Tue, 08 Mar 2022 10:59:38 GMT
ETag: "2017-5d9b2e0933678"
Accept-Ranges: bytes
Content-Length: 8215
MS-Author-Via: DAV
Connection: close
Content-Type: text/css
bizyo-cafe.com/wp/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.4.1
133.18.15.25200 OK 10 kB URL HTTP/1.1 bizyo-cafe.com/wp/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.4.1
IP 133.18.15.25:0
ASN #24282 KAGOYA JAPAN Inc.
File type ASCII text, with very long lines (9959)
Hash 7121994eec5320fbe6586463bf9651c2
90532aff6d4121954254cdf04994d834f7ec169b
48eb8b500ae6a38617b5738d2b3faec481922a7782246e31d2755c034a45cd5d
Analyzer Verdict Alert fortinet Malware
GET /wp/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.4.1 HTTP/1.1
Host: bizyo-cafe.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bizyo-cafe.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 24 Sep 2022 05:55:49 GMT
Server: Apache
Last-Modified: Thu, 21 Nov 2019 04:03:50 GMT
ETag: "2748-597d36282f2d8"
Accept-Ranges: bytes
Content-Length: 10056
MS-Author-Via: DAV
Connection: close
Content-Type: application/javascript
bizyo-cafe.com/wp/wp-includes/css/dashicons.min.css?ver=5.1.14
133.18.15.25200 OK 46 kB URL HTTP/1.1 bizyo-cafe.com/wp/wp-includes/css/dashicons.min.css?ver=5.1.14
IP 133.18.15.25:0
ASN #24282 KAGOYA JAPAN Inc.
File type ASCII text, with very long lines (46323)
Hash 800e28274109388380449140e310f8bb
1d8ec71aef1676aee228ce0a430b26b6ca1402fd
b81e56d299eb9260c65af214751e6dab1e591f1b979ec154ccfdf7c53d7581e5
Analyzer Verdict Alert fortinet Malware
GET /wp/wp-includes/css/dashicons.min.css?ver=5.1.14 HTTP/1.1
Host: bizyo-cafe.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bizyo-cafe.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 24 Sep 2022 05:55:48 GMT
Server: Apache
Last-Modified: Thu, 21 Nov 2019 04:02:03 GMT
ETag: "b516-597d35c29ebb1"
Accept-Ranges: bytes
Content-Length: 46358
MS-Author-Via: DAV
Connection: close
Content-Type: text/css
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash ea9de0d781463e195b477b036503407f
1ad95d29ee96c73ec44053046d9becada7a8941e
f306f8d19017f7e2b5fa1ff6fdc7ceccd8092689138521f588b56a98eb1b6488
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F306F8D19017F7E2B5FA1FF6FDC7CECCD8092689138521F588B56A98EB1B6488"
Last-Modified: Wed, 21 Sep 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21546
Expires: Sat, 24 Sep 2022 11:54:55 GMT
Date: Sat, 24 Sep 2022 05:55:49 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash b1ae1d22f32451c3c59fe16ab74e26f3
f2adac9388fdd26d210b9fa124e0283f946356b5
a5b020716cc7689aba0365fdd086ed53145916e89f1dd6276231233945821173
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A5B020716CC7689ABA0365FDD086ED53145916E89F1DD6276231233945821173"
Last-Modified: Fri, 23 Sep 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21561
Expires: Sat, 24 Sep 2022 11:55:10 GMT
Date: Sat, 24 Sep 2022 05:55:49 GMT
Connection: keep-alive
ocsp.globalsign.com/gsgccr3dvtlsca2020
104.18.20.226200 OK 1.4 kB URL HTTP/1.1 ocsp.globalsign.com/gsgccr3dvtlsca2020
IP 104.18.20.226:0
Hash ef32d2adc1e99df09c0bca2e6369aa84
4daa3da73edf680b4050883612b8bf27dffc0378
0adfdb06c6875541c8838de2f68dd2907d2d4d09851fc43b04f2e290db89e2ea
POST /gsgccr3dvtlsca2020 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 24 Sep 2022 05:55:49 GMT
Content-Type: application/ocsp-response
Content-Length: 1414
Connection: keep-alive
Expires: Wed, 28 Sep 2022 04:27:06 GMT
ETag: "4daa3da73edf680b4050883612b8bf27dffc0378"
Last-Modified: Sat, 24 Sep 2022 04:27:07 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: REVALIDATED
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74f945f8ab4d0b3d-OSL
ocsp.globalsign.com/gsgccr3dvtlsca2020
104.18.20.226200 OK 1.4 kB URL HTTP/1.1 ocsp.globalsign.com/gsgccr3dvtlsca2020
IP 104.18.20.226:0
Hash ef32d2adc1e99df09c0bca2e6369aa84
4daa3da73edf680b4050883612b8bf27dffc0378
0adfdb06c6875541c8838de2f68dd2907d2d4d09851fc43b04f2e290db89e2ea
POST /gsgccr3dvtlsca2020 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 24 Sep 2022 05:55:49 GMT
Content-Type: application/ocsp-response
Content-Length: 1414
Connection: keep-alive
Expires: Wed, 28 Sep 2022 04:27:06 GMT
ETag: "4daa3da73edf680b4050883612b8bf27dffc0378"
Last-Modified: Sat, 24 Sep 2022 04:27:07 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 0
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74f945f8b8310b41-OSL
bizyo-cafe.com/wp/wp-includes/js/wp-emoji-release.min.js?ver=5.1.14
133.18.15.25200 OK 12 kB URL HTTP/1.1 bizyo-cafe.com/wp/wp-includes/js/wp-emoji-release.min.js?ver=5.1.14
IP 133.18.15.25:0
ASN #24282 KAGOYA JAPAN Inc.
File type ASCII text, with very long lines (9071)
Hash 33479c6b333bb34fd771bf50df1fefc3
4869e92709eee1d1a42a697a80879e303aea7572
d9160bf5ee2c9435a62c8b1d991b7f419417cab5d5a37eefcee79767a292b4b7
GET /wp/wp-includes/js/wp-emoji-release.min.js?ver=5.1.14 HTTP/1.1
Host: bizyo-cafe.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bizyo-cafe.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 24 Sep 2022 05:55:49 GMT
Server: Apache
Last-Modified: Thu, 15 Apr 2021 18:57:39 GMT
ETag: "2eaf-5c0076ff70a8b"
Accept-Ranges: bytes
Content-Length: 11951
MS-Author-Via: DAV
Connection: close
Content-Type: application/javascript
bizyo-cafe.com/wp/wp-content/themes/parallax_2014/style.css
133.18.15.25200 OK 8.2 kB URL HTTP/1.1 bizyo-cafe.com/wp/wp-content/themes/parallax_2014/style.css
IP 133.18.15.25:0
ASN #24282 KAGOYA JAPAN Inc.
Hash 8e65da23f8fbc4ca6004566eb8ce00ee
366a119546f5f6e707fbb04dbc875cc706d44a8e
3c87da26cb223f1dbeaafe3a62bd7669682e25662c782ac96c20fbeda4fc98d5
GET /wp/wp-content/themes/parallax_2014/style.css HTTP/1.1
Host: bizyo-cafe.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bizyo-cafe.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 24 Sep 2022 05:55:49 GMT
Server: Apache
Last-Modified: Tue, 08 Mar 2022 10:59:38 GMT
ETag: "2017-5d9b2e0933678"
Accept-Ranges: bytes
Content-Length: 8215
MS-Author-Via: DAV
Connection: close
Content-Type: text/css
bizyo-cafe.com/wp/wp-includes/js/mediaelement/mediaelement-migrate.min.js?ver=5.1.14
133.18.15.25200 OK 1.2 kB URL HTTP/1.1 bizyo-cafe.com/wp/wp-includes/js/mediaelement/mediaelement-migrate.min.js?ver=5.1.14
IP 133.18.15.25:0
ASN #24282 KAGOYA JAPAN Inc.
File type ASCII text, with very long lines (1193), with no line terminators
Hash f34f415aa56ed900eecf3f212adb57e2
352dfeec21817198c07ab11705b53d813420cea3
7f34b768792b90cf0b04fced2470e43d8fab7644f6565d5178fbfb49c4859cee
Analyzer Verdict Alert fortinet Malware
GET /wp/wp-includes/js/mediaelement/mediaelement-migrate.min.js?ver=5.1.14 HTTP/1.1
Host: bizyo-cafe.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bizyo-cafe.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 24 Sep 2022 05:55:49 GMT
Server: Apache
Last-Modified: Thu, 15 Apr 2021 18:57:39 GMT
ETag: "4a9-5c0076ff6a4fb"
Accept-Ranges: bytes
Content-Length: 1193
MS-Author-Via: DAV
Connection: close
Content-Type: application/javascript
bizyo-cafe.com/wp/wp-content/themes/parallax_2014/style_ui.css
133.18.15.25200 OK 2.3 kB URL HTTP/1.1 bizyo-cafe.com/wp/wp-content/themes/parallax_2014/style_ui.css
IP 133.18.15.25:0
ASN #24282 KAGOYA JAPAN Inc.
Hash c645412e390c3455526645f0008021d9
cf1eba3a4cf6ad2d34032317152553df684e0bd6
9802ce438501153cdd5ed991f4993c0ca2b6fff89e151996e0bd81200b05decf
GET /wp/wp-content/themes/parallax_2014/style_ui.css HTTP/1.1
Host: bizyo-cafe.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bizyo-cafe.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 24 Sep 2022 05:55:50 GMT
Server: Apache
Last-Modified: Tue, 12 May 2015 09:16:25 GMT
ETag: "91b-515def2de4440"
Accept-Ranges: bytes
Content-Length: 2331
MS-Author-Via: DAV
Connection: close
Content-Type: text/css
bizyo-cafe.com/wp/wp-content/plugins/contact-form-7/includes/js/scripts.js?ver=4.2.1
133.18.15.25200 OK 11 kB URL HTTP/1.1 bizyo-cafe.com/wp/wp-content/plugins/contact-form-7/includes/js/scripts.js?ver=4.2.1
IP 133.18.15.25:0
ASN #24282 KAGOYA JAPAN Inc.
Hash 1d527f00884c10d039ad419be8179814
2c69685855da5ab49da766318d0eb959da615308
3dbc832de930e5b39820c0fc94f59c8c89b134dbbe02c7e4dc31aeda65d604de
GET /wp/wp-content/plugins/contact-form-7/includes/js/scripts.js?ver=4.2.1 HTTP/1.1
Host: bizyo-cafe.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bizyo-cafe.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 24 Sep 2022 05:55:50 GMT
Server: Apache
Last-Modified: Fri, 31 Jan 2020 03:29:05 GMT
ETag: "2bc0-59d672cfaf38f"
Accept-Ranges: bytes
Content-Length: 11200
MS-Author-Via: DAV
Connection: close
Content-Type: application/javascript
bizyo-cafe.com/wp/wp-content/plugins/contact-form-7/includes/js/jquery.form.min.js?ver=3.51.0-2014.06.20
133.18.15.25200 OK 15 kB URL HTTP/1.1 bizyo-cafe.com/wp/wp-content/plugins/contact-form-7/includes/js/jquery.form.min.js?ver=3.51.0-2014.06.20
IP 133.18.15.25:0
ASN #24282 KAGOYA JAPAN Inc.
File type ASCII text, with very long lines (14900)
Hash f448c593c242d134e9733a84c7a4d26c
374aa1f8db17575b0e35eabc46ad82062e09106c
c90f0e501d2948fbc2b61bffd654fa4ab64741fd48923782419eeb14d3816fb8
Analyzer Verdict Alert fortinet Malware
GET /wp/wp-content/plugins/contact-form-7/includes/js/jquery.form.min.js?ver=3.51.0-2014.06.20 HTTP/1.1
Host: bizyo-cafe.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bizyo-cafe.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 24 Sep 2022 05:55:50 GMT
Server: Apache
Last-Modified: Fri, 31 Jan 2020 03:29:04 GMT
ETag: "3b90-59d672cf4aa2f"
Accept-Ranges: bytes
Content-Length: 15248
MS-Author-Via: DAV
Connection: close
Content-Type: application/javascript
bizyo-cafe.com/wp/wp-includes/js/jquery/jquery.js?ver=1.12.4
133.18.15.25200 OK 97 kB URL HTTP/1.1 bizyo-cafe.com/wp/wp-includes/js/jquery/jquery.js?ver=1.12.4
IP 133.18.15.25:0
ASN #24282 KAGOYA JAPAN Inc.
File type ASCII text, with very long lines (31997)
Hash 49edccea2e7ba985cadc9ba0531cbed1
f8747f8ee704d9af31d0950015e01d3f9635b070
1db21d816296e6939ba1f42962496e4134ae2b0081e26970864c40c6d02bb1df
Analyzer Verdict Alert fortinet Malware
GET /wp/wp-includes/js/jquery/jquery.js?ver=1.12.4 HTTP/1.1
Host: bizyo-cafe.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bizyo-cafe.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 24 Sep 2022 05:55:49 GMT
Server: Apache
Last-Modified: Thu, 21 Nov 2019 04:03:51 GMT
ETag: "17a69-597d3629aef78"
Accept-Ranges: bytes
Content-Length: 96873
MS-Author-Via: DAV
Connection: close
Content-Type: application/javascript
bizyo-cafe.com/wp/wp-content/themes/parallax_2014/lib/lazyload/jquery.lazyload.min.js?ver=5.1.14
133.18.15.25200 OK 3.4 kB URL HTTP/1.1 bizyo-cafe.com/wp/wp-content/themes/parallax_2014/lib/lazyload/jquery.lazyload.min.js?ver=5.1.14
IP 133.18.15.25:0
ASN #24282 KAGOYA JAPAN Inc.
File type ASCII text, with very long lines (3309)
Hash 89c45121934ed4664ff3ca811a008226
848216f1d67cc7c6c6214db1a771f8c4653f06d6
e576f12e82c468567e420386b68476ff7045815976395bc6baad1a822c7368a7
Analyzer Verdict Alert fortinet Malware
GET /wp/wp-content/themes/parallax_2014/lib/lazyload/jquery.lazyload.min.js?ver=5.1.14 HTTP/1.1
Host: bizyo-cafe.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bizyo-cafe.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 24 Sep 2022 05:55:50 GMT
Server: Apache
Last-Modified: Tue, 12 May 2015 09:17:58 GMT
ETag: "d35-515def873485f"
Accept-Ranges: bytes
Content-Length: 3381
MS-Author-Via: DAV
Connection: close
Content-Type: application/javascript
bizyo-cafe.com/wp/wp-content/themes/parallax_2014/style_fullsize.css
133.18.15.25200 OK 65 kB URL HTTP/1.1 bizyo-cafe.com/wp/wp-content/themes/parallax_2014/style_fullsize.css
IP 133.18.15.25:0
ASN #24282 KAGOYA JAPAN Inc.
File type Unicode text, UTF-8 text, with very long lines (352)
Hash ae319f10989b7c56cc7e5fc5640f0854
bd9e44aa1d62945918522b97eef6cd1ab5c8b5ce
e5b4b9e7824e86680a31fd14c72f6bfec5f4da56fb6ea3b8a37cbc529d4ea6e3
GET /wp/wp-content/themes/parallax_2014/style_fullsize.css HTTP/1.1
Host: bizyo-cafe.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bizyo-cafe.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 24 Sep 2022 05:55:50 GMT
Server: Apache
Last-Modified: Tue, 08 Mar 2022 10:59:39 GMT
ETag: "fc4e-5d9b2e0a1a5c8"
Accept-Ranges: bytes
Content-Length: 64590
MS-Author-Via: DAV
Connection: close
Content-Type: text/css
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 4fb51016b82f43bc6ee9f5ace001690c
5390a86aa0a7b82f5d09605b10812567b309d27a
73283fa4b416ee80d2ac87c30d2183afa1ae487a8650563b79adc1f001030f73
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 24 Sep 2022 05:55:51 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.googleapis.com/css?family=Libre+Baskerville:400,400italic,700
216.58.211.10200 OK 906 B URL HTTP/2 fonts.googleapis.com/css?family=Libre+Baskerville:400,400italic,700
IP 216.58.211.10:0
Hash e590907cf00268f4dd48a11b1e82de09
d4b8abccadaf22fd1f5f0f2ae1095abb8a8e15b2
6ce849ea591694d45123a3d8074f0a6e222d3297522db44d15d26a5a66e4c6e1
GET /css?family=Libre+Baskerville:400,400italic,700 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bizyo-cafe.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sat, 24 Sep 2022 05:55:51 GMT
date: Sat, 24 Sep 2022 05:55:51 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
bizyo-cafe.com/wp/wp-content/plugins/revslider/rs-plugin/js/jquery.themepunch.tools.min.js?ver=4.6.5
133.18.15.25200 OK 98 kB URL HTTP/1.1 bizyo-cafe.com/wp/wp-content/plugins/revslider/rs-plugin/js/jquery.themepunch.tools.min.js?ver=4.6.5
IP 133.18.15.25:0
ASN #24282 KAGOYA JAPAN Inc.
File type ASCII text, with very long lines (25522)
Hash b6c7f7bbae8ebc854b8b5a24a0edc451
33df38f597edd7595e76f459e263b39dff904767
e5e250b3c477115dc56eebf08795b8eb97f17f0f1998c195707097daf14c0320
Analyzer Verdict Alert fortinet Malware
GET /wp/wp-content/plugins/revslider/rs-plugin/js/jquery.themepunch.tools.min.js?ver=4.6.5 HTTP/1.1
Host: bizyo-cafe.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bizyo-cafe.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 24 Sep 2022 05:55:49 GMT
Server: Apache
Last-Modified: Wed, 13 May 2015 10:33:04 GMT
ETag: "180d1-515f422dc82e5"
Accept-Ranges: bytes
Content-Length: 98513
MS-Author-Via: DAV
Connection: close
Content-Type: application/javascript
bizyo-cafe.com/wp/wp-content/themes/parallax_2014/lib/photodiary/photodiary.js?ver=5.1.14
133.18.15.25200 OK 2.2 kB URL HTTP/1.1 bizyo-cafe.com/wp/wp-content/themes/parallax_2014/lib/photodiary/photodiary.js?ver=5.1.14
IP 133.18.15.25:0
ASN #24282 KAGOYA JAPAN Inc.
Hash 27b80d4994f17e9cef1c59386ab2ab08
29d4b7eb0068adcb0e75a661b3f4b82d5607aadc
be4156278831f4bde58c0c52aa9217245802d261416807b6b1a2380c2250c029
Analyzer Verdict Alert fortinet Malware
GET /wp/wp-content/themes/parallax_2014/lib/photodiary/photodiary.js?ver=5.1.14 HTTP/1.1
Host: bizyo-cafe.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bizyo-cafe.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 24 Sep 2022 05:55:51 GMT
Server: Apache
Last-Modified: Tue, 10 Oct 2017 11:30:53 GMT
ETag: "8bb-55b2fa3ccb5b2"
Accept-Ranges: bytes
Content-Length: 2235
MS-Author-Via: DAV
Connection: close
Content-Type: application/javascript
bizyo-cafe.com/wp/wp-content/plugins/revslider/rs-plugin/js/jquery.themepunch.revolution.min.js?ver=4.6.5
133.18.15.25200 OK 110 kB URL HTTP/1.1 bizyo-cafe.com/wp/wp-content/plugins/revslider/rs-plugin/js/jquery.themepunch.revolution.min.js?ver=4.6.5
IP 133.18.15.25:0
ASN #24282 KAGOYA JAPAN Inc.
File type ASCII text, with very long lines (32741)
Size 110 kB (109886 bytes)
Hash 190ac18e8ebbb6d319e0811620792098
22cc5c459f89e29ef34c9c0cf252273840f39669
cb8ecd823744c67593a1248fe4202116dffd033b468016a55ebf3a3c5f7bebaf
GET /wp/wp-content/plugins/revslider/rs-plugin/js/jquery.themepunch.revolution.min.js?ver=4.6.5 HTTP/1.1
Host: bizyo-cafe.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bizyo-cafe.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 24 Sep 2022 05:55:49 GMT
Server: Apache
Last-Modified: Wed, 13 May 2015 10:33:04 GMT
ETag: "1ad3e-515f422d9df1d"
Accept-Ranges: bytes
Content-Length: 109886
MS-Author-Via: DAV
Connection: close
Content-Type: application/javascript
bizyo-cafe.com/wp/wp-content/themes/parallax_2014/js/jquery.easing.1.3.js?ver=5.1.14
133.18.15.25200 OK 8.1 kB URL HTTP/1.1 bizyo-cafe.com/wp/wp-content/themes/parallax_2014/js/jquery.easing.1.3.js?ver=5.1.14
IP 133.18.15.25:0
ASN #24282 KAGOYA JAPAN Inc.
Hash 6516449ed5089677ed3d7e2f11fc8942
82e40d060bc269a6dde20c3990ca5a4fea6ca754
0757f7ff6e5f6a581922a5e2d42c5e0cf7475d880885a9802e8bdd5e4188dd34
Analyzer Verdict Alert fortinet Malware
GET /wp/wp-content/themes/parallax_2014/js/jquery.easing.1.3.js?ver=5.1.14 HTTP/1.1
Host: bizyo-cafe.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bizyo-cafe.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 24 Sep 2022 05:55:51 GMT
Server: Apache
Last-Modified: Tue, 12 May 2015 09:17:41 GMT
ETag: "1fa1-515def76efba7"
Accept-Ranges: bytes
Content-Length: 8097
MS-Author-Via: DAV
Connection: close
Content-Type: application/javascript
bizyo-cafe.com/wp/wp-includes/js/jquery/ui/core.min.js?ver=1.11.4
133.18.15.25200 OK 3.9 kB URL HTTP/1.1 bizyo-cafe.com/wp/wp-includes/js/jquery/ui/core.min.js?ver=1.11.4
IP 133.18.15.25:0
ASN #24282 KAGOYA JAPAN Inc.
File type ASCII text, with very long lines (3704)
Hash 4465b90ef439b67caeedd504a82af68c
6b88b224a0da4525df2375f0caab58678edf3433
c8509588d94b47c1b1be041388997dd8ce06f9302b20679203005da08fbcc2c0
Analyzer Verdict Alert fortinet Malware
GET /wp/wp-includes/js/jquery/ui/core.min.js?ver=1.11.4 HTTP/1.1
Host: bizyo-cafe.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bizyo-cafe.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 24 Sep 2022 05:55:51 GMT
Server: Apache
Last-Modified: Thu, 15 Apr 2021 18:57:39 GMT
ETag: "f59-5c0076ff6955b"
Accept-Ranges: bytes
Content-Length: 3929
MS-Author-Via: DAV
Connection: close
Content-Type: application/javascript
bizyo-cafe.com/wp/wp-content/themes/parallax_2014/lib/bxslider/jquery.bxslider.min.js?ver=5.1.14
133.18.15.25200 OK 19 kB URL HTTP/1.1 bizyo-cafe.com/wp/wp-content/themes/parallax_2014/lib/bxslider/jquery.bxslider.min.js?ver=5.1.14
IP 133.18.15.25:0
ASN #24282 KAGOYA JAPAN Inc.
File type ASCII text, with very long lines (19040)
Hash 697d69a48e5356f7106e38c09f7f19e0
b57160771fa597a5b56c5b12756c693e4829be07
bb9e7dc822c6b7b95a6329932885c72ff2caf74b243fc1c40aca0e858123b83e
Analyzer Verdict Alert fortinet Malware
GET /wp/wp-content/themes/parallax_2014/lib/bxslider/jquery.bxslider.min.js?ver=5.1.14 HTTP/1.1
Host: bizyo-cafe.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bizyo-cafe.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 24 Sep 2022 05:55:51 GMT
Server: Apache
Last-Modified: Tue, 12 May 2015 09:17:47 GMT
ETag: "4b9f-515def7c9ba1f"
Accept-Ranges: bytes
Content-Length: 19359
MS-Author-Via: DAV
Connection: close
Content-Type: application/javascript
bizyo-cafe.com/wp/wp-includes/js/jquery/ui/widget.min.js?ver=1.11.4
133.18.15.25200 OK 6.8 kB URL HTTP/1.1 bizyo-cafe.com/wp/wp-includes/js/jquery/ui/widget.min.js?ver=1.11.4
IP 133.18.15.25:0
ASN #24282 KAGOYA JAPAN Inc.
File type ASCII text, with very long lines (6603)
Hash 2fb11e1fba920ce6191aaf65473894ff
858e35ea212ce2c331f6f2b4980b55fa5bac29f5
1b4f1024fa4887b47765e2ad4db9bc1f6ea96335f77fd44c62b8538d75e7190c
GET /wp/wp-includes/js/jquery/ui/widget.min.js?ver=1.11.4 HTTP/1.1
Host: bizyo-cafe.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bizyo-cafe.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 24 Sep 2022 05:55:51 GMT
Server: Apache
Last-Modified: Thu, 15 Apr 2021 18:57:39 GMT
ETag: "1aab-5c0076ff69d2b"
Accept-Ranges: bytes
Content-Length: 6827
MS-Author-Via: DAV
Connection: close
Content-Type: application/javascript
bizyo-cafe.com/wp/wp-includes/js/jquery/ui/mouse.min.js?ver=1.11.4
133.18.15.25200 OK 3.1 kB URL HTTP/1.1 bizyo-cafe.com/wp/wp-includes/js/jquery/ui/mouse.min.js?ver=1.11.4
IP 133.18.15.25:0
ASN #24282 KAGOYA JAPAN Inc.
File type ASCII text, with very long lines (2927)
Hash 412416b5df69805b1e084e50d4283c2f
b8c47463c0793854638a8981cfad35503f393297
7e8d54d6c6a4ebd0237786d41ff5d205096eda696f2a5b591e074fe94ba3b3af
Analyzer Verdict Alert fortinet Malware
GET /wp/wp-includes/js/jquery/ui/mouse.min.js?ver=1.11.4 HTTP/1.1
Host: bizyo-cafe.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bizyo-cafe.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 24 Sep 2022 05:55:52 GMT
Server: Apache
Last-Modified: Thu, 15 Apr 2021 18:57:39 GMT
ETag: "c46-5c0076ff69943"
Accept-Ranges: bytes
Content-Length: 3142
MS-Author-Via: DAV
Connection: close
Content-Type: application/javascript
bizyo-cafe.com/wp/wp-includes/js/jquery/ui/slider.min.js?ver=1.11.4
133.18.15.25200 OK 11 kB URL HTTP/1.1 bizyo-cafe.com/wp/wp-includes/js/jquery/ui/slider.min.js?ver=1.11.4
IP 133.18.15.25:0
ASN #24282 KAGOYA JAPAN Inc.
File type ASCII text, with very long lines (10694)
Hash aa205fbfb232b9cb5f104142e7183b36
d73fef1ae7c9fc260dba69e57658793f01590eea
bf9d214a2ec4f01d57a72fa4417e1cd8f895800b277b6040eb98c77e4b49e668
GET /wp/wp-includes/js/jquery/ui/slider.min.js?ver=1.11.4 HTTP/1.1
Host: bizyo-cafe.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bizyo-cafe.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 24 Sep 2022 05:55:52 GMT
Server: Apache
Last-Modified: Thu, 15 Apr 2021 18:57:39 GMT
ETag: "2a9f-5c0076ff69943"
Accept-Ranges: bytes
Content-Length: 10911
MS-Author-Via: DAV
Connection: close
Content-Type: application/javascript
bizyo-cafe.com/wp/wp-includes/js/jquery/ui/datepicker.min.js?ver=1.11.4
133.18.15.25200 OK 36 kB URL HTTP/1.1 bizyo-cafe.com/wp/wp-includes/js/jquery/ui/datepicker.min.js?ver=1.11.4
IP 133.18.15.25:0
ASN #24282 KAGOYA JAPAN Inc.
File type ASCII text, with very long lines (35947)
Hash d47e9336b80512e365f71583fdcbd8d1
d1289d2368fb085217cf26e7482b24502ca6d2ef
6629a6e8b1710170fb1331e200308a1a4a1e44d2da9b6e91fdec602b1dd0eb34
Analyzer Verdict Alert fortinet Malware
GET /wp/wp-includes/js/jquery/ui/datepicker.min.js?ver=1.11.4 HTTP/1.1
Host: bizyo-cafe.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bizyo-cafe.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 24 Sep 2022 05:55:51 GMT
Server: Apache
Last-Modified: Thu, 15 Apr 2021 18:57:39 GMT
ETag: "8d4c-5c0076ff69d2b"
Accept-Ranges: bytes
Content-Length: 36172
MS-Author-Via: DAV
Connection: close
Content-Type: application/javascript
bizyo-cafe.com/wp/wp-includes/js/mediaelement/wp-mediaelement.min.js?ver=5.1.14
133.18.15.25200 OK 907 B URL HTTP/1.1 bizyo-cafe.com/wp/wp-includes/js/mediaelement/wp-mediaelement.min.js?ver=5.1.14
IP 133.18.15.25:0
ASN #24282 KAGOYA JAPAN Inc.
File type HTML document, ASCII text, with very long lines (907), with no line terminators
Hash 45b5fdfa92b3e7fa6eb36bc5cdc0a074
20f96c4ea76edc117fbb3423dde9bc8fa27ff820
0b2c979f1afdb9624c1565ef8fcb2b9ac6595712ce4b7bdc0e428c6082967419
GET /wp/wp-includes/js/mediaelement/wp-mediaelement.min.js?ver=5.1.14 HTTP/1.1
Host: bizyo-cafe.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bizyo-cafe.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 24 Sep 2022 05:55:52 GMT
Server: Apache
Last-Modified: Thu, 15 Apr 2021 18:57:39 GMT
ETag: "38b-5c0076ff6a4fb"
Accept-Ranges: bytes
Content-Length: 907
MS-Author-Via: DAV
Connection: close
Content-Type: application/javascript
bizyo-cafe.com/wp/wp-includes/js/imagesloaded.min.js?ver=3.2.0
133.18.15.25200 OK 8.1 kB URL HTTP/1.1 bizyo-cafe.com/wp/wp-includes/js/imagesloaded.min.js?ver=3.2.0
IP 133.18.15.25:0
ASN #24282 KAGOYA JAPAN Inc.
File type ASCII text, with very long lines (7996)
Hash 7e97ab52c3df75e9053002bb59f2cdd5
502edaa98677c743246149deb3a76f5ff65272dd
11e15f1d64a63cb498d0d42720a688ed15bf78393d8c460d695a110244c066e3
Analyzer Verdict Alert fortinet Malware
GET /wp/wp-includes/js/imagesloaded.min.js?ver=3.2.0 HTTP/1.1
Host: bizyo-cafe.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bizyo-cafe.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 24 Sep 2022 05:55:52 GMT
Server: Apache
Last-Modified: Thu, 21 Nov 2019 04:02:58 GMT
ETag: "1fb1-597d35f69cbf8"
Accept-Ranges: bytes
Content-Length: 8113
MS-Author-Via: DAV
Connection: close
Content-Type: application/javascript
bizyo-cafe.com/wp/wp-content/themes/parallax_2014/lib/colorbox/jquery.colorbox-min.js?ver=5.1.14
133.18.15.25200 OK 12 kB URL HTTP/1.1 bizyo-cafe.com/wp/wp-content/themes/parallax_2014/lib/colorbox/jquery.colorbox-min.js?ver=5.1.14
IP 133.18.15.25:0
ASN #24282 KAGOYA JAPAN Inc.
File type ASCII text, with very long lines (11673)
Hash 2910ed8ce52b70f2a1f53b64b9c343de
f281752f7faa349b3b4c4a165f906684ff164303
efa2ec1d872cdd22f2ca6aedea7b686c7eda3867f5d28c1321891a775edb7ad8
Analyzer Verdict Alert fortinet Malware
GET /wp/wp-content/themes/parallax_2014/lib/colorbox/jquery.colorbox-min.js?ver=5.1.14 HTTP/1.1
Host: bizyo-cafe.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bizyo-cafe.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 24 Sep 2022 05:55:52 GMT
Server: Apache
Last-Modified: Tue, 12 May 2015 09:17:53 GMT
ETag: "2de3-515def8287807"
Accept-Ranges: bytes
Content-Length: 11747
MS-Author-Via: DAV
Connection: close
Content-Type: application/javascript
bizyo-cafe.com/wp/wp-content/themes/parallax_2014/lib/castpro_timeline/jquery.castpro_timeline.js?ver=5.1.14
133.18.15.25200 OK 751 B URL HTTP/1.1 bizyo-cafe.com/wp/wp-content/themes/parallax_2014/lib/castpro_timeline/jquery.castpro_timeline.js?ver=5.1.14
IP 133.18.15.25:0
ASN #24282 KAGOYA JAPAN Inc.
Hash 3871e94e23943117060e4481693b7946
f083b6b1dfda3bac32dfc9e313bed5abd4cdfd21
1d8c846dcd07bd228373bc3868cdc0d56efc5dcdef3b02b625ac7018f2bdebd8
Analyzer Verdict Alert fortinet Malware
GET /wp/wp-content/themes/parallax_2014/lib/castpro_timeline/jquery.castpro_timeline.js?ver=5.1.14 HTTP/1.1
Host: bizyo-cafe.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bizyo-cafe.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 24 Sep 2022 05:55:52 GMT
Server: Apache
Last-Modified: Tue, 12 May 2015 09:17:52 GMT
ETag: "2ef-515def80c83c7"
Accept-Ranges: bytes
Content-Length: 751
MS-Author-Via: DAV
Connection: close
Content-Type: application/javascript
bizyo-cafe.com/wp/wp-includes/js/masonry.min.js?ver=3.3.2
133.18.15.25200 OK 29 kB URL HTTP/1.1 bizyo-cafe.com/wp/wp-includes/js/masonry.min.js?ver=3.3.2
IP 133.18.15.25:0
ASN #24282 KAGOYA JAPAN Inc.
File type ASCII text, with very long lines (28817)
Hash c54e75edf5cbaf412bc16ba4145f6032
67638430c92c23cedb89db038627876d361135c0
733d7c26a5fb7240e83e8af2c822218b321b5143e28c2dd65ab2492297ac6bd7
GET /wp/wp-includes/js/masonry.min.js?ver=3.3.2 HTTP/1.1
Host: bizyo-cafe.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bizyo-cafe.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 24 Sep 2022 05:55:52 GMT
Server: Apache
Last-Modified: Thu, 21 Nov 2019 04:02:58 GMT
ETag: "7119-597d35f75b2d8"
Accept-Ranges: bytes
Content-Length: 28953
MS-Author-Via: DAV
Connection: close
Content-Type: application/javascript
bizyo-cafe.com/wp/wp-content/themes/parallax_2014/lib/nicescroll/jquery.nicescroll.min.js?ver=5.1.14
133.18.15.25200 OK 0 B URL HTTP/1.1 bizyo-cafe.com/wp/wp-content/themes/parallax_2014/lib/nicescroll/jquery.nicescroll.min.js?ver=5.1.14
IP 133.18.15.25:0
ASN #24282 KAGOYA JAPAN Inc.
GET /wp/wp-content/themes/parallax_2014/lib/nicescroll/jquery.nicescroll.min.js?ver=5.1.14 HTTP/1.1
Host: bizyo-cafe.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bizyo-cafe.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 24 Sep 2022 05:55:52 GMT
Server: Apache
Last-Modified: Fri, 22 May 2015 08:22:48 GMT
ETag: "eaf9-516a75d8be928"
Accept-Ranges: bytes
Content-Length: 60153
MS-Author-Via: DAV
Connection: close
Content-Type: application/javascript