Overview

URLapex-investments.co/index.html
IP 66.29.132.83 (United States)
ASN#22612 NAMECHEAP-NET
UserAgentMozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Referer
Report completed2022-11-30 04:52:43 UTC
StatusLoading report..
IDS alerts0
Blocklist alert170
urlquery alerts No alerts detected
Tags None

Domain Summary (29)

Fully Qualifying Domain Name Rank First Seen Last Seen IP Comment
push.services.mozilla.com (1) 2140 2014-10-24 08:27:06 UTC 2020-05-03 10:09:39 UTC 35.163.49.154
widget-v2.smartsuppcdn.com (3) 49903 No data No data 185.76.9.23
assets.coingecko.com (1) 43448 2017-10-11 16:24:34 UTC 2022-11-29 18:10:29 UTC 104.18.30.225
translations.smartsuppcdn.com (1) 0 No data No data 185.76.9.23 Domain (smartsuppcdn.com) ranked at: 191350
content-signature-2.cdn.mozilla.net (1) 1152 No data No data 34.160.144.191
fonts.gstatic.com (4) 0 2014-09-09 00:40:21 UTC 2022-11-29 23:47:40 UTC 142.250.74.163 Domain (gstatic.com) ranked at: 540
3rdparty-apis.coinmarketcap.com (1) 244702 2020-09-29 03:34:53 UTC 2021-11-25 04:08:19 UTC 54.230.111.46
ocsp.digicert.com (4) 86 2012-05-21 07:02:23 UTC 2020-05-02 20:58:10 UTC 93.184.220.29
translate.yandex.net (3) 25346 2017-01-29 10:29:52 UTC 2022-11-29 14:16:21 UTC 213.180.204.194
img-getpocket.cdn.mozilla.net (6) 1631 2018-06-21 23:36:00 UTC 2020-02-19 04:43:25 UTC 34.120.237.76
static.getbutton.io (2) 31869 2019-10-01 09:11:58 UTC 2022-11-29 23:05:21 UTC 176.9.188.20
static.cryptohopper.com (2) 0 2021-05-14 04:16:20 UTC 2022-11-24 23:31:32 UTC 172.66.43.90 Domain (cryptohopper.com) ranked at: 175199
www.smartsuppchat.com (1) 46890 2018-08-31 06:10:27 UTC 2020-04-27 14:06:55 UTC 185.76.9.19
firefox.settings.services.mozilla.com (2) 867 2020-06-04 20:08:41 UTC 2022-11-29 17:14:13 UTC 34.102.187.140
apex-investments.co (64) 0 2022-06-30 10:42:14 UTC 2022-11-29 16:29:45 UTC 66.29.132.83 Unknown ranking
ocsp.globalsign.com (3) 2075 2012-07-20 17:46:16 UTC 2020-05-02 20:58:10 UTC 104.18.20.226
finpress.microtheme.co (1) 0 2021-06-19 07:52:51 UTC 2022-10-17 11:32:43 UTC 185.146.22.240 Domain (microtheme.co) ranked at: 550082
ocsp.sca1b.amazontrust.com (3) 1015 2017-03-03 15:20:51 UTC 2019-03-27 04:05:54 UTC 143.204.42.88
www.cryptohopper.com (2) 529352 2017-12-20 12:36:53 UTC 2022-11-28 10:03:25 UTC 172.66.43.90
r3.o.lencr.org (6) 344 No data No data 23.36.76.226
files.coinmarketcap.com (1) 274184 2015-09-03 05:46:35 UTC 2020-10-21 08:11:12 UTC 54.230.111.76
bootstrap.smartsuppchat.com (1) 43006 2018-01-29 06:10:36 UTC 2022-11-29 17:15:43 UTC 18.157.147.17
contile.services.mozilla.com (1) 1114 2021-05-27 18:32:35 UTC 2022-11-29 17:10:57 UTC 34.117.237.239
ocsp.pki.goog (5) 175 2018-07-01 06:43:07 UTC 2020-05-02 20:58:16 UTC 142.250.74.131
e1.o.lencr.org (1) 6159 No data No data 23.36.76.226
s2.coinmarketcap.com (9) 25737 2018-01-12 04:47:19 UTC 2020-10-15 04:15:46 UTC 143.204.55.80
ocsp.sectigo.com (1) 487 2019-11-29 11:50:24 UTC 2021-09-17 20:05:40 UTC 104.18.32.68
fonts.googleapis.com (1) 8877 2013-06-10 20:14:26 UTC 2022-11-29 19:24:13 UTC 142.250.74.106
yastatic.net (1) 72282 2015-04-09 10:30:00 UTC 2022-11-29 17:13:35 UTC 178.154.131.215

Network Intrusion Detection Systemsinfo

Suricata /w Emerging Threats Pro
 No alerts detected

Blocklists

OpenPhish
 No alerts detected

PhishTank
 No alerts detected

Fortinet's Web Filter
Scan Date Severity Indicator Comment
2022-11-30 2 apex-investments.co/index.html Malware
2022-11-30 2 apex-investments.co/index.html Malware
2022-11-30 2 apex-investments.co/wp-includes/css/dist/block-library/style.minf049.css?ver=6.0 Malware
2022-11-30 2 apex-investments.co/wp-content/plugins/contact-form-7/includes/css/styles76 (...) Malware
2022-11-30 2 apex-investments.co/wp-content/themes/finpress/style8a54.css?ver=1.0.0 Malware
2022-11-30 2 apex-investments.co/wp-content/themes/finpress/assets/css/bootstrap.minf049 (...) Malware
2022-11-30 2 apex-investments.co/wp-content/themes/finpress/assets/css/fontawesome.minf0 (...) Malware
2022-11-30 2 apex-investments.co/wp-content/themes/finpress/assets/icons/flaticonf049.cs (...) Malware
2022-11-30 2 apex-investments.co/wp-content/themes/finpress/assets/css/normalizef049.css (...) Malware
2022-11-30 2 apex-investments.co/wp-content/themes/finpress/assets/css/owl.carousel.minf (...) Malware
2022-11-30 2 apex-investments.co/wp-content/themes/finpress/assets/css/owl.theme.default (...) Malware
2022-11-30 2 apex-investments.co/wp-content/uploads/elementor/css/post-29764265.css?ver= (...) Malware
2022-11-30 2 apex-investments.co/wp-content/uploads/elementor/css/post-53022.css?ver=162 (...) Malware
2022-11-30 2 apex-investments.co/wp-content/uploads/elementor/css/post-3464265.css?ver=1 (...) Malware
2022-11-30 2 apex-investments.co/wp-content/uploads/elementor/css/post-407f4cf.css?ver=1 (...) Malware
2022-11-30 2 apex-investments.co/wp-content/plugins/finpress-core/assets/icons/flaticon8 (...) Malware
2022-11-30 2 apex-investments.co/wp-content/plugins/elementor/assets/lib/font-awesome/cs (...) Malware
2022-11-30 2 apex-investments.co/wp-content/plugins/elementor/assets/lib/font-awesome/cs (...) Malware
2022-11-30 2 apex-investments.co/wp-content/plugins/elementor/assets/lib/font-awesome/cs (...) Malware
2022-11-30 2 apex-investments.co/wp-includes/js/jquery/jquery-migrate.mind617.js?ver=3.3.2 Malware
2022-11-30 2 apex-investments.co/wp-content/plugins/elementor/assets/lib/animations/anim (...) Malware
2022-11-30 2 apex-investments.co/wp-includes/js/dist/vendor/wp-polyfill.min2c7c.js?ver=3.15.0 Malware
2022-11-30 2 apex-investments.co/wp-content/plugins/contact-form-7/includes/js/index7661 (...) Malware
2022-11-30 2 apex-investments.co/wp-content/themes/finpress/assets/js/vendor/modernizr-3 (...) Malware
2022-11-30 2 apex-investments.co/wp-content/themes/finpress/assets/js/vendor/jquery.appe (...) Malware
2022-11-30 2 apex-investments.co/wp-content/themes/finpress/assets/js/vendor/count-to8a5 (...) Malware
2022-11-30 2 apex-investments.co/wp-content/themes/finpress/assets/js/vendor/jquery.magn (...) Malware
2022-11-30 2 apex-investments.co/wp-content/themes/finpress/assets/js/vendor/owl.carouse (...) Malware
2022-11-30 2 apex-investments.co/wp-content/themes/finpress/assets/js/vendor/jquery.nice (...) Malware
2022-11-30 2 apex-investments.co/wp-content/themes/finpress/assets/js/theme-frontend8a54 (...) Malware
2022-11-30 2 apex-investments.co/wp-content/plugins/finpress-core/assets/js/finpress-fro (...) Malware
2022-11-30 2 apex-investments.co/wp-content/plugins/mailchimp-for-wp/assets/js/forms81db (...) Malware
2022-11-30 2 apex-investments.co/wp-content/plugins/elementor/assets/js/webpack.runtime. (...) Malware
2022-11-30 2 apex-investments.co/wp-content/plugins/elementor/assets/lib/waypoints/waypo (...) Malware
2022-11-30 2 apex-investments.co/wp-includes/js/jquery/ui/core.min0028.js?ver=1.13.1 Malware
2022-11-30 2 apex-investments.co/wp-content/plugins/elementor/assets/lib/dialog/dialog.m (...) Malware
2022-11-30 2 apex-investments.co/wp-content/plugins/elementor/assets/js/frontend.min3d36 (...) Malware
2022-11-30 2 apex-investments.co/wp-content/plugins/elementor/assets/js/preloaded-module (...) Malware
2022-11-30 2 apex-investments.co/wp-content/plugins/elementor/assets/lib/swiper/swiper.m (...) Malware
2022-11-30 2 apex-investments.co/wp-content/plugins/elementor/assets/lib/font-awesome/we (...) Malware
2022-11-30 2 apex-investments.co/wp-content/plugins/finpress-core/assets/icons/Flaticon.woff2 Malware
2022-11-30 2 apex-investments.co/wp-content/plugins/elementor/assets/lib/font-awesome/we (...) Malware

mnemonic secure dns
Scan Date Severity Indicator Comment
2022-11-30 2 apex-investments.co Sinkholed
2022-11-30 2 apex-investments.co Sinkholed
2022-11-30 2 apex-investments.co Sinkholed
2022-11-30 2 apex-investments.co Sinkholed
2022-11-30 2 apex-investments.co Sinkholed
2022-11-30 2 apex-investments.co Sinkholed
2022-11-30 2 apex-investments.co Sinkholed
2022-11-30 2 apex-investments.co Sinkholed
2022-11-30 2 apex-investments.co Sinkholed
2022-11-30 2 apex-investments.co Sinkholed
2022-11-30 2 apex-investments.co Sinkholed
2022-11-30 2 apex-investments.co Sinkholed
2022-11-30 2 apex-investments.co Sinkholed
2022-11-30 2 apex-investments.co Sinkholed
2022-11-30 2 apex-investments.co Sinkholed
2022-11-30 2 apex-investments.co Sinkholed
2022-11-30 2 apex-investments.co Sinkholed
2022-11-30 2 apex-investments.co Sinkholed
2022-11-30 2 apex-investments.co Sinkholed
2022-11-30 2 apex-investments.co Sinkholed
2022-11-30 2 apex-investments.co Sinkholed
2022-11-30 2 apex-investments.co Sinkholed
2022-11-30 2 apex-investments.co Sinkholed
2022-11-30 2 apex-investments.co Sinkholed
2022-11-30 2 apex-investments.co Sinkholed
2022-11-30 2 apex-investments.co Sinkholed
2022-11-30 2 apex-investments.co Sinkholed
2022-11-30 2 apex-investments.co Sinkholed
2022-11-30 2 apex-investments.co Sinkholed
2022-11-30 2 apex-investments.co Sinkholed
2022-11-30 2 apex-investments.co Sinkholed
2022-11-30 2 apex-investments.co Sinkholed
2022-11-30 2 apex-investments.co Sinkholed
2022-11-30 2 apex-investments.co Sinkholed
2022-11-30 2 apex-investments.co Sinkholed
2022-11-30 2 apex-investments.co Sinkholed
2022-11-30 2 apex-investments.co Sinkholed
2022-11-30 2 apex-investments.co Sinkholed
2022-11-30 2 apex-investments.co Sinkholed
2022-11-30 2 apex-investments.co Sinkholed
2022-11-30 2 apex-investments.co Sinkholed
2022-11-30 2 apex-investments.co Sinkholed
2022-11-30 2 apex-investments.co Sinkholed
2022-11-30 2 apex-investments.co Sinkholed
2022-11-30 2 apex-investments.co Sinkholed
2022-11-30 2 apex-investments.co Sinkholed
2022-11-30 2 apex-investments.co Sinkholed
2022-11-30 2 apex-investments.co Sinkholed
2022-11-30 2 apex-investments.co Sinkholed
2022-11-30 2 apex-investments.co Sinkholed
2022-11-30 2 apex-investments.co Sinkholed
2022-11-30 2 apex-investments.co Sinkholed
2022-11-30 2 apex-investments.co Sinkholed
2022-11-30 2 apex-investments.co Sinkholed
2022-11-30 2 apex-investments.co Sinkholed
2022-11-30 2 apex-investments.co Sinkholed
2022-11-30 2 apex-investments.co Sinkholed
2022-11-30 2 apex-investments.co Sinkholed
2022-11-30 2 apex-investments.co Sinkholed
2022-11-30 2 apex-investments.co Sinkholed
2022-11-30 2 apex-investments.co Sinkholed
2022-11-30 2 apex-investments.co Sinkholed
2022-11-30 2 apex-investments.co Sinkholed
2022-11-30 2 apex-investments.co Sinkholed

Quad9 DNS
Scan Date Severity Indicator Comment
2022-11-30 2 apex-investments.co Sinkholed
2022-11-30 2 apex-investments.co Sinkholed
2022-11-30 2 apex-investments.co Sinkholed
2022-11-30 2 apex-investments.co Sinkholed
2022-11-30 2 apex-investments.co Sinkholed
2022-11-30 2 apex-investments.co Sinkholed
2022-11-30 2 apex-investments.co Sinkholed
2022-11-30 2 apex-investments.co Sinkholed
2022-11-30 2 apex-investments.co Sinkholed
2022-11-30 2 apex-investments.co Sinkholed
2022-11-30 2 apex-investments.co Sinkholed
2022-11-30 2 apex-investments.co Sinkholed
2022-11-30 2 apex-investments.co Sinkholed
2022-11-30 2 apex-investments.co Sinkholed
2022-11-30 2 apex-investments.co Sinkholed
2022-11-30 2 apex-investments.co Sinkholed
2022-11-30 2 apex-investments.co Sinkholed
2022-11-30 2 apex-investments.co Sinkholed
2022-11-30 2 apex-investments.co Sinkholed
2022-11-30 2 apex-investments.co Sinkholed
2022-11-30 2 apex-investments.co Sinkholed
2022-11-30 2 apex-investments.co Sinkholed
2022-11-30 2 apex-investments.co Sinkholed
2022-11-30 2 apex-investments.co Sinkholed
2022-11-30 2 apex-investments.co Sinkholed
2022-11-30 2 apex-investments.co Sinkholed
2022-11-30 2 apex-investments.co Sinkholed
2022-11-30 2 apex-investments.co Sinkholed
2022-11-30 2 apex-investments.co Sinkholed
2022-11-30 2 apex-investments.co Sinkholed
2022-11-30 2 apex-investments.co Sinkholed
2022-11-30 2 apex-investments.co Sinkholed
2022-11-30 2 apex-investments.co Sinkholed
2022-11-30 2 apex-investments.co Sinkholed
2022-11-30 2 apex-investments.co Sinkholed
2022-11-30 2 apex-investments.co Sinkholed
2022-11-30 2 apex-investments.co Sinkholed
2022-11-30 2 apex-investments.co Sinkholed
2022-11-30 2 apex-investments.co Sinkholed
2022-11-30 2 apex-investments.co Sinkholed
2022-11-30 2 apex-investments.co Sinkholed
2022-11-30 2 apex-investments.co Sinkholed
2022-11-30 2 apex-investments.co Sinkholed
2022-11-30 2 apex-investments.co Sinkholed
2022-11-30 2 apex-investments.co Sinkholed
2022-11-30 2 apex-investments.co Sinkholed
2022-11-30 2 apex-investments.co Sinkholed
2022-11-30 2 apex-investments.co Sinkholed
2022-11-30 2 apex-investments.co Sinkholed
2022-11-30 2 apex-investments.co Sinkholed
2022-11-30 2 apex-investments.co Sinkholed
2022-11-30 2 apex-investments.co Sinkholed
2022-11-30 2 apex-investments.co Sinkholed
2022-11-30 2 apex-investments.co Sinkholed
2022-11-30 2 apex-investments.co Sinkholed
2022-11-30 2 apex-investments.co Sinkholed
2022-11-30 2 apex-investments.co Sinkholed
2022-11-30 2 apex-investments.co Sinkholed
2022-11-30 2 apex-investments.co Sinkholed
2022-11-30 2 apex-investments.co Sinkholed
2022-11-30 2 apex-investments.co Sinkholed
2022-11-30 2 apex-investments.co Sinkholed
2022-11-30 2 apex-investments.co Sinkholed
2022-11-30 2 apex-investments.co Sinkholed


Files

No files detected

Recent reports on same IP/ASN/Domain/Screenshot

Last 5 reports on IP: 66.29.132.83
Date UQ / IDS / BL URL IP
2022-11-30 04:52:43 +0000 0 - 0 - 170 apex-investments.co/index.html 66.29.132.83
2022-11-25 05:24:20 +0000 0 - 0 - 3 inmao.xyz/ 66.29.132.83
2022-11-19 21:05:27 +0000 0 - 0 - 5 apex-investments.co/ts/qakbot.zip 66.29.132.83
2022-11-18 22:48:12 +0000 0 - 0 - 5 apex-investments.co/sso/index.php?qbot.zip 66.29.132.83
2022-11-16 22:06:21 +0000 0 - 0 - 5 apex-investments.co/sso/index.php?qbot.zip 66.29.132.83


Last 5 reports on ASN: NAMECHEAP-NET
Date UQ / IDS / BL URL IP
2023-02-05 10:15:43 +0000 0 - 0 - 38 hajjproperties.com/advert/dragon-naturallyspe (...) 162.0.229.222
2023-02-05 09:52:53 +0000 0 - 1 - 0 garlang.com/ 192.64.119.224
2023-02-05 09:44:49 +0000 0 - 1 - 0 hercules-seoservices.com/ 192.64.119.109
2023-02-05 09:44:53 +0000 0 - 1 - 0 soliremodel.com/ 162.255.119.117
2023-02-05 09:44:44 +0000 0 - 1 - 0 edgex.site/ 192.64.119.169


Last 5 reports on domain: apex-investments.co
Date UQ / IDS / BL URL IP
2022-11-30 04:52:43 +0000 0 - 0 - 170 apex-investments.co/index.html 66.29.132.83
2022-11-19 21:05:27 +0000 0 - 0 - 5 apex-investments.co/ts/qakbot.zip 66.29.132.83
2022-11-18 22:48:12 +0000 0 - 0 - 5 apex-investments.co/sso/index.php?qbot.zip 66.29.132.83
2022-11-16 22:06:21 +0000 0 - 0 - 5 apex-investments.co/sso/index.php?qbot.zip 66.29.132.83
2022-11-16 21:54:45 +0000 0 - 0 - 8 apex-investments.co/sso/index.php?qbot.zip 66.29.132.83


No other reports with similar screenshot

JavaScript

Executed Scripts (42)

Executed Evals (0)

Executed Writes (0)


HTTP Transactions (132)


Request Response
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "94FB64C1C826ED7099283C0BEDB3CEA7AC7E1D9526794CB9FAD6E761F5989D32"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2818
Expires: Wed, 30 Nov 2022 05:39:28 GMT
Date: Wed, 30 Nov 2022 04:52:30 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 1836
Cache-Control: max-age=108557
Date: Wed, 30 Nov 2022 04:52:30 GMT
Etag: "6385df6f-1d7"
Expires: Thu, 01 Dec 2022 11:01:47 GMT
Last-Modified: Tue, 29 Nov 2022 10:31:11 GMT
Server: ECS (ska/F713)
X-Cache: HIT
Content-Length: 471

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "A3EC545A8F9364AC9062EDDB41279E1465687A1B60F9C1DEC6B3A3DF8B033EB3"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7824
Expires: Wed, 30 Nov 2022 07:02:54 GMT
Date: Wed, 30 Nov 2022 04:52:30 GMT
Connection: keep-alive

                                        
                                            GET /v1/ HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.102.187.140
HTTP/2 200 OK
content-type: application/json
                                        
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Alert, Backoff, Content-Length, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Wed, 30 Nov 2022 04:19:39 GMT
cache-control: public,max-age=3600
age: 1971
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size:   939
Md5:    14cd9a0afb6ba9a763651d5112760d1e
Sha1:   75d7b104ab9ab11fbb73c3f348b43b0119b5adfa
Sha256: 4e32a117106be587ffcd63239c16a8117eb7840830d4c9decf6527761967532e
                                        
                                            GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1 
Host: content-signature-2.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         34.160.144.191
HTTP/2 200 OK
content-type: binary/octet-stream
                                        
x-amz-id-2: jQC598hArX5UHgL9gdqfX2sPUmPBSrLuoWIPq94K5tqUz6EJZUTSPMiLOK8hdEE+AUzRZqVELlE=
x-amz-request-id: JB7K4C2HE9MN7VPE
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Wed, 30 Nov 2022 04:45:44 GMT
age: 406
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PEM certificate\012- , ASCII text
Size:   5348
Md5:    9ebddc2b260d081ebbefee47c037cb28
Sha1:   492bad62a7ca6a74738921ef5ae6f0be5edebf39
Sha256: 74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5
                                        
                                            GET /index.html HTTP/1.1 
Host: apex-investments.co
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

search
                                         66.29.132.83
HTTP/1.1 301 Moved Permanently
content-type: text/html
                                        
keep-alive: timeout=5, max=100
content-length: 707
date: Wed, 30 Nov 2022 04:52:30 GMT
server: LiteSpeed
location: https://apex-investments.co/index.html
x-turbo-charged-by: LiteSpeed


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF, LF line terminators
Size:   707
Md5:    1304294c0823ca486542ba408ed761e3
Sha1:   b2a70fb2d810ca13985882e6981f33998823e83e
Sha256: 3bbe72f3baa8ec61de17a1d767fca58704769684b7abe9161d0c4eaf4c8f0982

Alerts:
  Blocklists:
    - fortinet: Malware
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            GET /v1/tiles HTTP/1.1 
Host: contile.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.117.237.239
HTTP/2 200 OK
content-type: application/json
                                        
server: nginx
date: Wed, 30 Nov 2022 04:52:30 GMT
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   12
Md5:    23e88fb7b99543fb33315b29b1fad9d6
Sha1:   a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
Sha256: 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
                                        
                                            GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.102.187.140
HTTP/2 200 OK
content-type: application/json
                                        
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Pragma, Last-Modified, ETag, Alert, Expires, Retry-After, Cache-Control, Backoff, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Wed, 30 Nov 2022 04:11:13 GMT
cache-control: public,max-age=3600
age: 2477
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size:   329
Md5:    0333b0655111aa68de771adfcc4db243
Sha1:   63f295a144ac87a7c8e23417626724eeca68a7eb
Sha256: 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 1834
Cache-Control: max-age=103492
Date: Wed, 30 Nov 2022 04:52:30 GMT
Etag: "6385cba8-1d7"
Expires: Thu, 01 Dec 2022 09:37:22 GMT
Last-Modified: Tue, 29 Nov 2022 09:06:48 GMT
Server: ECS (ska/F713)
X-Cache: HIT
Content-Length: 471

                                        
                                            POST / HTTP/1.1 
Host: ocsp.sectigo.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         104.18.32.68
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 30 Nov 2022 04:52:31 GMT
Content-Length: 471
Connection: keep-alive
Last-Modified: Tue, 29 Nov 2022 05:26:14 GMT
Expires: Tue, 06 Dec 2022 05:26:13 GMT
Etag: "869906f79188e2e751f171ae1b45cb19df03ee3d"
Cache-Control: max-age=519822,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7720f95ccfcbb4fd-OSL

                                        
                                            GET / HTTP/1.1 
Host: push.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: nfZyVxTWYUKUHBJC02G83A==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

search
                                         35.163.49.154
HTTP/1.1 101 Switching Protocols
                                        
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: z43X+5hRFbscr3rga8sLNpguHVQ=

                                        
                                            GET /index.html HTTP/1.1 
Host: apex-investments.co
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

search
                                         66.29.132.83
HTTP/2 200 OK
content-type: text/html
                                        
last-modified: Thu, 14 Jul 2022 12:49:31 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 13570
date: Wed, 30 Nov 2022 04:52:31 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (8047)
Size:   13570
Md5:    205042bae0bfba89616b0526d6baac95
Sha1:   7a7f588911dfee37e513a650cc1f13d414cc95a2
Sha256: 5baa1d94547182cb4bb20dbe789bf90dd39c9781827de1dc07f49f9d9c51ab79

Alerts:
  Blocklists:
    - fortinet: Malware
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.131
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 30 Nov 2022 04:52:31 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST / HTTP/1.1 
Host: e1.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 345
ETag: "31237737684AE5C229DF64B4A5CB0B123EFAC3E0388203BF5D4E8E48B4749EFA"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18640
Expires: Wed, 30 Nov 2022 10:03:11 GMT
Date: Wed, 30 Nov 2022 04:52:31 GMT
Connection: keep-alive

                                        
                                            POST /gsrsaovsslca2018 HTTP/1.1 
Host: ocsp.globalsign.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         104.18.20.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 30 Nov 2022 04:52:31 GMT
Content-Length: 1432
Connection: keep-alive
Expires: Sun, 04 Dec 2022 02:47:06 GMT
ETag: "10aaa154bf0de377dfa6e023a18390d04a3787c3"
Last-Modified: Wed, 30 Nov 2022 02:47:07 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 2991
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7720f961adeab524-OSL


--- Additional Info ---
Magic:  data
Size:   1432
Md5:    ca8386f13a79ac99db8f93b2c4b67cb8
Sha1:   10aaa154bf0de377dfa6e023a18390d04a3787c3
Sha256: 15d7f8d8c9b91005058c42d07b4dc6e9fea4f7b40ab0968679a2e15da17ed56f
                                        
                                            GET /wp-includes/css/dist/block-library/style.minf049.css?ver=6.0 HTTP/1.1 
Host: apex-investments.co
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://apex-investments.co/index.html
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         66.29.132.83
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=604800
expires: Wed, 07 Dec 2022 04:52:31 GMT
last-modified: Wed, 25 May 2022 17:20:04 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 10929
date: Wed, 30 Nov 2022 04:52:31 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (43771)
Size:   10929
Md5:    5013de2f619b68401f195339ff13d4b3
Sha1:   79ec290146ea0b1b99dc978a327340f59c9cd24a
Sha256: 1ce4091af50157c7abe3be7a9cb84fad758581015db47102f149deb4625fcddf

Alerts:
  Blocklists:
    - fortinet: Malware
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            GET /wp-content/plugins/contact-form-7/includes/css/styles7661.css?ver=5.4.2 HTTP/1.1 
Host: apex-investments.co
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://apex-investments.co/index.html
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         66.29.132.83
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=604800
expires: Wed, 07 Dec 2022 04:52:31 GMT
last-modified: Thu, 22 Jul 2021 10:57:48 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 824
date: Wed, 30 Nov 2022 04:52:31 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text
Size:   824
Md5:    269ed2215d4adf9265132f4135d49185
Sha1:   2e1bf415040627ed8041c1444de11034efe66f89
Sha256: dad114286e260217aae476d3c4f7da41e7356438bb63a4e742787c6463e19963

Alerts:
  Blocklists:
    - fortinet: Malware
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            GET /wp-content/themes/finpress/style8a54.css?ver=1.0.0 HTTP/1.1 
Host: apex-investments.co
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://apex-investments.co/index.html
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         66.29.132.83
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=604800
expires: Wed, 07 Dec 2022 04:52:31 GMT
last-modified: Sat, 19 Jun 2021 13:01:58 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 263
date: Wed, 30 Nov 2022 04:52:31 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text
Size:   263
Md5:    a07a84241f015a0b0b064f165db87aa5
Sha1:   75e3b9c4045b26480920f0acc2aa2554fdd92c2a
Sha256: 39a66fd6a0887dd0f790655bc7cfd7c18cbf551f7a78986eef3295fdcba958e0

Alerts:
  Blocklists:
    - fortinet: Malware
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.131
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 30 Nov 2022 04:52:31 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /wp-includes/js/wp-emoji-release.min.js?ver=6.0 HTTP/1.1 
Host: finpress.microtheme.co
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://apex-investments.co/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         185.146.22.240
HTTP/2 200 OK
content-type: application/javascript
                                        
cache-control: max-age=604800, public
expires: Wed, 07 Dec 2022 04:52:31 GMT
last-modified: Wed, 25 May 2022 12:20:08 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 4619
date: Wed, 30 Nov 2022 04:52:31 GMT
server: LiteSpeed
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (15660)
Size:   4619
Md5:    0232689bd203f330529b36a437f41a68
Sha1:   9046583f7469ad38297969f10a9513eb895d5316
Sha256: feea9f30a6e454579bbeabf236b7abdb0c7de84dd2852422555ad67348c5e886
                                        
                                            GET /website-widget/v1/widget.js?widgetId=ytWidget&pageLang=en&widgetTheme=dark&autoMode=true HTTP/1.1 
Host: translate.yandex.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://apex-investments.co/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         213.180.204.194
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
                                        
content-length: 12562
date: Wed, 30 Nov 2022 04:52:31 GMT
content-language: en
referrer-policy: no-referrer-when-downgrade
set-cookie: _yasc=5QEPac7Nk1uPDUnjGLMjFLFjHeFJ2ZPti9ngS+iK1hM+P9URyje08atODWf7; domain=.yandex.net; path=/; expires=Sat, 27-Nov-2032 04:52:31 GMT; secure
vary: Accept-Language
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text
Size:   12562
Md5:    abd0ce989b84d36a8032a9e3bcf10b87
Sha1:   6d950f9bfd5ddd72be7f6b8fa901181ed9e33afc
Sha256: 5ce04f2660d9dc52d816d5903dd9dcc34b6f007d51672083457999d82e1a9796
                                        
                                            POST / HTTP/1.1 
Host: ocsp.sca1b.amazontrust.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         143.204.42.88
HTTP/1.1 200 OK
Content-Type: text/html
                                        
Content-Length: 55
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=136724
Date: Wed, 30 Nov 2022 04:52:31 GMT
Etag: "638652b5-1d7"
Expires: Thu, 01 Dec 2022 18:51:15 GMT
Last-Modified: Tue, 29 Nov 2022 18:43:01 GMT
Server: ECS (dcb/7EEF)
X-Cache: Miss from cloudfront
Via: 1.1 c9f2a4d2bcd548d1a3cbe1617a22f216.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 739Q1rVf8vzx3u0zYKcnHE2ENTsIlc8DtYw5JE_LusiwSxo2R0mN9g==
Age: 494


--- Additional Info ---
Magic:  HTML document, ASCII text
Size:   55
Md5:    9f073354411bbaf7a319b1519f10b4b7
Sha1:   571498f38548829bf186f49f5be9d5fa6e689a68
Sha256: 4a7aaaa1c093dee8a191d4469c9f701c5e62e88896bc778a13cc4ffedf9be89a
                                        
                                            GET /wp-content/themes/finpress/assets/css/bootstrap.minf049.css?ver=6.0 HTTP/1.1 
Host: apex-investments.co
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://apex-investments.co/index.html
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         66.29.132.83
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=604800
expires: Wed, 07 Dec 2022 04:52:31 GMT
last-modified: Sat, 19 Jun 2021 13:01:58 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 8687
date: Wed, 30 Nov 2022 04:52:31 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (65081)
Size:   8687
Md5:    37be4ca7796b9f27ed16da925ab6f736
Sha1:   97958a53a8f245aa7de9898f4b29bfc4d00dd7c6
Sha256: ffc64c7e57a41ea7a70ac03b9e3d4735e39edbe65d9ca4982e76f834ae47aab4

Alerts:
  Blocklists:
    - fortinet: Malware
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            GET /static/widget/coinMarquee.js HTTP/1.1 
Host: files.coinmarketcap.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://apex-investments.co/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         54.230.111.76
HTTP/2 200 OK
content-type: application/javascript
                                        
content-length: 58991
date: Wed, 30 Nov 2022 04:52:29 GMT
last-modified: Tue, 23 Feb 2021 08:31:52 GMT
etag: "7046f8f1f574e5f2da66f6cb5ba73b61"
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 15d199af49035dc206cb81292fd87de2.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: jSdEN-dtKCVb625__qzCIbg8EJ12AYV-y7SeYp07c1fNL1kvM20jzQ==
age: 3
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (58900), with no line terminators
Size:   58991
Md5:    7046f8f1f574e5f2da66f6cb5ba73b61
Sha1:   f1d4f8820ce85f44bf92f39df949f12142747f94
Sha256: 42ddd8b89cd2f3acae38059fec042e4f4f1d7ef0c5c33fc613f8d1afc9512b6d
                                        
                                            GET /wp-content/themes/finpress/assets/css/fontawesome.minf049.css?ver=6.0 HTTP/1.1 
Host: apex-investments.co
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://apex-investments.co/index.html
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         66.29.132.83
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=604800
expires: Wed, 07 Dec 2022 04:52:31 GMT
last-modified: Sat, 19 Jun 2021 13:01:58 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 32084
date: Wed, 30 Nov 2022 04:52:31 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (65393)
Size:   32084
Md5:    df1590adfaa32b504b84d137fcd1a17e
Sha1:   c59017ae9e2da4f64f32f41af6396be6c56c2190
Sha256: 5de81b0a55041dcb55ebaecdd6bcb52a5ff52881e5c1f900ea404e6d07d68f67

Alerts:
  Blocklists:
    - fortinet: Malware
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            GET /wp-content/themes/finpress/assets/icons/flaticonf049.css?ver=6.0 HTTP/1.1 
Host: apex-investments.co
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://apex-investments.co/index.html
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         66.29.132.83
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=604800
expires: Wed, 07 Dec 2022 04:52:31 GMT
last-modified: Sat, 19 Jun 2021 13:01:58 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 726
date: Wed, 30 Nov 2022 04:52:31 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text
Size:   726
Md5:    44d2ac12e398d6a69c69f0d23abb02f4
Sha1:   2497388794b3f5615a09a994c273bb08279af87f
Sha256: 21deaa8aa33cfb3eb5094e73f823ed994d5ed64b80bbe35be20ecfec4e4b717c

Alerts:
  Blocklists:
    - fortinet: Malware
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            GET /wp-content/themes/finpress/assets/css/animate.minf049.css?ver=6.0 HTTP/1.1 
Host: apex-investments.co
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://apex-investments.co/index.html
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         66.29.132.83
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=604800
expires: Wed, 07 Dec 2022 04:52:31 GMT
last-modified: Sat, 19 Jun 2021 13:01:58 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 4831
date: Wed, 30 Nov 2022 04:52:31 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (65346)
Size:   4831
Md5:    d51d0fabc12d1a05330bcc1c4e1fbf8c
Sha1:   8a054637cb66b0a876c6e44f093d316b883f1910
Sha256: 983f8fb5038225c132ffdb34b83213ad925bfcfa901c76b133ae5f09c451ae13

Alerts:
  Blocklists:
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            GET /wp-content/themes/finpress/assets/css/magnific-popupf049.css?ver=6.0 HTTP/1.1 
Host: apex-investments.co
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://apex-investments.co/index.html
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         66.29.132.83
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=604800
expires: Wed, 07 Dec 2022 04:52:31 GMT
last-modified: Sat, 19 Jun 2021 13:01:58 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1660
date: Wed, 30 Nov 2022 04:52:31 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text
Size:   1660
Md5:    03b0f3835745934343c47a2156262fe1
Sha1:   e99d28783482b3944d07ff3c68e18355c7887ff9
Sha256: 0ebf9903106fcf5bf718fa026aedb96decc0a48a7a9ec2e0dc1cad43119ad9ff

Alerts:
  Blocklists:
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            GET /wp-content/themes/finpress/assets/css/normalizef049.css?ver=6.0 HTTP/1.1 
Host: apex-investments.co
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://apex-investments.co/index.html
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         66.29.132.83
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=604800
expires: Wed, 07 Dec 2022 04:52:31 GMT
last-modified: Sat, 19 Jun 2021 13:01:58 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1554
date: Wed, 30 Nov 2022 04:52:31 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text
Size:   1554
Md5:    c455571a0f0789eee76d0175a4044e47
Sha1:   dc2dc1854e97d39b1c354f94d4cb7ef324fd455d
Sha256: 6a9b193e62431688a030ce646a57edbc535c02f739629634c36b2c0256dd14a8

Alerts:
  Blocklists:
    - fortinet: Malware
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            GET /wp-content/themes/finpress/assets/css/owl.carousel.minf049.css?ver=6.0 HTTP/1.1 
Host: apex-investments.co
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://apex-investments.co/index.html
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         66.29.132.83
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=604800
expires: Wed, 07 Dec 2022 04:52:31 GMT
last-modified: Sat, 19 Jun 2021 13:01:58 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 920
date: Wed, 30 Nov 2022 04:52:31 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (3170)
Size:   920
Md5:    944922d74032f0e26211e7eca0da0340
Sha1:   5f99166e090b75e38a9cef35f9493d0b7746cb01
Sha256: 41491e9b0a7de5b60a6c89e494ce0995ca6f389b4ccef67605a36ffeda6cb059

Alerts:
  Blocklists:
    - fortinet: Malware
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            GET /wp-content/themes/finpress/assets/css/owl.theme.default.minf049.css?ver=6.0 HTTP/1.1 
Host: apex-investments.co
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://apex-investments.co/index.html
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         66.29.132.83
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=604800
expires: Wed, 07 Dec 2022 04:52:31 GMT
last-modified: Sat, 19 Jun 2021 13:01:58 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 351
date: Wed, 30 Nov 2022 04:52:31 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (769)
Size:   351
Md5:    0a6f371b8555e0ca0fc31bb27259cd48
Sha1:   5290539c24b159bcf5f5f21a10a9ce38a34fb3e5
Sha256: 8afe93f3140a57d312f798a37e3d1b13e5fe38c7680f958e48dd95cff976d268

Alerts:
  Blocklists:
    - fortinet: Malware
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            GET /wp-content/themes/finpress/assets/css/nice-selectf049.css?ver=6.0 HTTP/1.1 
Host: apex-investments.co
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://apex-investments.co/index.html
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         66.29.132.83
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=604800
expires: Wed, 07 Dec 2022 04:52:31 GMT
last-modified: Sat, 19 Jun 2021 13:01:58 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 931
date: Wed, 30 Nov 2022 04:52:31 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text
Size:   931
Md5:    4501f90a27aff6ead82146d3bfae1038
Sha1:   9c84c62da5b962d6853342b4b7b5d84360761785
Sha256: a64f01cd3ea9b697065a88335dc4b2f597237cddc8a72cd408829d12da535bbd

Alerts:
  Blocklists:
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            GET /wp-content/themes/finpress/assets/css/theme-frontendf049.css?ver=6.0 HTTP/1.1 
Host: apex-investments.co
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://apex-investments.co/index.html
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         66.29.132.83
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=604800
expires: Wed, 07 Dec 2022 04:52:31 GMT
last-modified: Sat, 19 Jun 2021 13:01:58 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 25204
date: Wed, 30 Nov 2022 04:52:31 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text
Size:   25204
Md5:    795040f418d8eee0b3a939c62e873a06
Sha1:   9d290722b9c295eae4cea68560bea818f51cc3e8
Sha256: 5991f4bb1950a66bcc34a5f70ac28640d1a36e5fcafa9e499fb7c704d2367e36

Alerts:
  Blocklists:
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            GET /wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.minb683.css?ver=5.12.0 HTTP/1.1 
Host: apex-investments.co
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://apex-investments.co/index.html
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         66.29.132.83
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=604800
expires: Wed, 07 Dec 2022 04:52:31 GMT
last-modified: Thu, 22 Jul 2021 10:57:58 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3389
date: Wed, 30 Nov 2022 04:52:31 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (17657)
Size:   3389
Md5:    58ff046620d2f6bf6dbec64135d4540d
Sha1:   1522c3b946d1f6c59fa8f73e829cee6dcc9f5675
Sha256: 60f7762f091fcfef3637e895b09dffc694420874b86fc856749b9e1b714fa588

Alerts:
  Blocklists:
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            GET /wp-content/plugins/elementor/assets/css/frontend.min3d36.css?ver=3.3.1 HTTP/1.1 
Host: apex-investments.co
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://apex-investments.co/index.html
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         66.29.132.83
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=604800
expires: Wed, 07 Dec 2022 04:52:31 GMT
last-modified: Thu, 22 Jul 2021 10:57:58 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 15755
date: Wed, 30 Nov 2022 04:52:31 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (65497)
Size:   15755
Md5:    bd1e467b64919f0d21c9e622bbfec14b
Sha1:   06c4ea6c07dc04450dfaa9484c799e6ca67b9691
Sha256: c8ffcc287432ab9e09bdf9721f83f183eac57a6b6461ff8235d936547912d2a4

Alerts:
  Blocklists:
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            GET /wp-content/uploads/elementor/css/post-29764265.css?ver=1626933488 HTTP/1.1 
Host: apex-investments.co
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://apex-investments.co/index.html
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         66.29.132.83
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=604800
expires: Wed, 07 Dec 2022 04:52:31 GMT
last-modified: Thu, 22 Jul 2021 10:58:08 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 285
date: Wed, 30 Nov 2022 04:52:31 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (949), with no line terminators
Size:   285
Md5:    4d2e1ee36c3b880d3b3cdf0090398cd8
Sha1:   5178b02089cc6cbbf85f97d23bcbad76a28ffcd3
Sha256: 67f397083ff39b028f049b9f7c9ed4b16056512a3252b400a7b704d87baa3a5c

Alerts:
  Blocklists:
    - fortinet: Malware
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            GET /wp-content/uploads/elementor/css/post-53022.css?ver=1626935236 HTTP/1.1 
Host: apex-investments.co
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://apex-investments.co/index.html
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         66.29.132.83
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=604800
expires: Wed, 07 Dec 2022 04:52:31 GMT
last-modified: Thu, 22 Jul 2021 11:27:16 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 783
date: Wed, 30 Nov 2022 04:52:31 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (6324), with no line terminators
Size:   783
Md5:    a79c1dd0067e91a69860039a7c300194
Sha1:   5d1d08852861e326d274b21519590fc601dc10d9
Sha256: bdda545b1e73e26908833cca02c056ac5c2f4cd6eac1795f2bea3820472ab696

Alerts:
  Blocklists:
    - fortinet: Malware
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            GET /wp-content/uploads/elementor/css/post-3464265.css?ver=1626933488 HTTP/1.1 
Host: apex-investments.co
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://apex-investments.co/index.html
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         66.29.132.83
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=604800
expires: Wed, 07 Dec 2022 04:52:31 GMT
last-modified: Thu, 22 Jul 2021 10:58:08 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 449
date: Wed, 30 Nov 2022 04:52:31 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (2167), with no line terminators
Size:   449
Md5:    256d1bb0ef943b1e7321525ef108d4f4
Sha1:   099af4242e71cbf7224bc14276fdf221b7cf93e4
Sha256: ae4de9c5abffc686a247fc9b91a7c92548eb00e4a075a91566091817ecbf3b52

Alerts:
  Blocklists:
    - fortinet: Malware
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            GET /wp-content/uploads/elementor/css/post-407f4cf.css?ver=1626935350 HTTP/1.1 
Host: apex-investments.co
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://apex-investments.co/index.html
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         66.29.132.83
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=604800
expires: Wed, 07 Dec 2022 04:52:31 GMT
last-modified: Thu, 22 Jul 2021 11:29:10 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 666
date: Wed, 30 Nov 2022 04:52:31 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (4339), with no line terminators
Size:   666
Md5:    a97c8ffc5303351a96e5ae5940077938
Sha1:   8dcff34b0354056e4d2e84cb44c18581d8299361
Sha256: fcb619c9e366d0d19beb8f59d07ce8223fb9b49c5d24956dec6cbd6363f0964e

Alerts:
  Blocklists:
    - fortinet: Malware
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            GET /wp-content/plugins/finpress-core/assets/icons/flaticon8a54.css?ver=1.0.0 HTTP/1.1 
Host: apex-investments.co
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://apex-investments.co/index.html
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         66.29.132.83
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=604800
expires: Wed, 07 Dec 2022 04:52:31 GMT
last-modified: Sat, 19 Jun 2021 13:03:46 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 726
date: Wed, 30 Nov 2022 04:52:31 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text
Size:   726
Md5:    44d2ac12e398d6a69c69f0d23abb02f4
Sha1:   2497388794b3f5615a09a994c273bb08279af87f
Sha256: 21deaa8aa33cfb3eb5094e73f823ed994d5ed64b80bbe35be20ecfec4e4b717c

Alerts:
  Blocklists:
    - fortinet: Malware
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/fontawesome.min52d5.css?ver=5.15.3 HTTP/1.1 
Host: apex-investments.co
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://apex-investments.co/index.html
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         66.29.132.83
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=604800
expires: Wed, 07 Dec 2022 04:52:31 GMT
last-modified: Thu, 22 Jul 2021 10:57:58 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 12133
date: Wed, 30 Nov 2022 04:52:31 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (57726)
Size:   12133
Md5:    f463afd8661ddc733305df1f0cbdaff2
Sha1:   77262f0209e75e340eb7014aba9cd8d69966032f
Sha256: c4b6541be58a0ca61549cd4562850315077880c459c019f01e835cf2d7b764de

Alerts:
  Blocklists:
    - fortinet: Malware
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/solid.min52d5.css?ver=5.15.3 HTTP/1.1 
Host: apex-investments.co
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://apex-investments.co/index.html
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         66.29.132.83
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=604800
expires: Wed, 07 Dec 2022 04:52:31 GMT
last-modified: Thu, 22 Jul 2021 10:57:58 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 291
date: Wed, 30 Nov 2022 04:52:31 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (487)
Size:   291
Md5:    712b8b95bd5a4107bdcd57c769dab11d
Sha1:   2bf69ace6c54b38fee3ee62141def19e506e76fe
Sha256: 808cbe77a57b44f04d9df36203273d6d50dcff6c258f414cad4378c906e7f178

Alerts:
  Blocklists:
    - fortinet: Malware
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/regular.min52d5.css?ver=5.15.3 HTTP/1.1 
Host: apex-investments.co
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://apex-investments.co/index.html
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         66.29.132.83
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=604800
expires: Wed, 07 Dec 2022 04:52:31 GMT
last-modified: Thu, 22 Jul 2021 10:57:58 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 287
date: Wed, 30 Nov 2022 04:52:31 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (495)
Size:   287
Md5:    0ec3f16e7a0d54db324686630ab9784b
Sha1:   74eb76dfd7d98d34846ffa5865596277d38c3dac
Sha256: d6ac28b2220776bace7b1c2afa40fe098dddc8cffc62c409cf588d0ab5cd8592

Alerts:
  Blocklists:
    - fortinet: Malware
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/brands.min52d5.css?ver=5.15.3 HTTP/1.1 
Host: apex-investments.co
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://apex-investments.co/index.html
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         66.29.132.83
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=604800
expires: Wed, 07 Dec 2022 04:52:31 GMT
last-modified: Thu, 22 Jul 2021 10:57:58 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 290
date: Wed, 30 Nov 2022 04:52:31 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (493)
Size:   290
Md5:    00491adee2dae22263dfdd0241b6367a
Sha1:   3a131a29136796a3a6c626ce00cb3f6c10b9691c
Sha256: a7df60e352083f4e83f8c4e28438fe85e485610b1c1e1f206e441604e54d76a9

Alerts:
  Blocklists:
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            GET /wp-includes/js/jquery/jquery.minaf6c.js?ver=3.6.0 HTTP/1.1 
Host: apex-investments.co
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://apex-investments.co/index.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         66.29.132.83
HTTP/2 200 OK
content-type: application/javascript
                                        
cache-control: public, max-age=604800
expires: Wed, 07 Dec 2022 04:52:31 GMT
last-modified: Wed, 21 Jul 2021 02:44:32 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 30273
date: Wed, 30 Nov 2022 04:52:31 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (65447)
Size:   30273
Md5:    34f918ada1fe4f01c5a4b90065bbc37a
Sha1:   a731f6ce2d413805e39ae45994012b1bd5ea1e2b
Sha256: eba158d5ab26a5a54a3dcfcea1072c636f44e92fc2eb30a3f27cd5be3f891dfc

Alerts:
  Blocklists:
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            GET /wp-includes/js/jquery/jquery-migrate.mind617.js?ver=3.3.2 HTTP/1.1 
Host: apex-investments.co
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://apex-investments.co/index.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         66.29.132.83
HTTP/2 200 OK
content-type: application/javascript
                                        
cache-control: public, max-age=604800
expires: Wed, 07 Dec 2022 04:52:31 GMT
last-modified: Wed, 18 Nov 2020 15:06:06 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3995
date: Wed, 30 Nov 2022 04:52:31 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (11126)
Size:   3995
Md5:    7e058b51f939eacfa31cdface14dded5
Sha1:   9d732e5afdeb42edef9e1b9631b7e95e054787cc
Sha256: 4ece5b00423755d8f4121ce382c8ea4dc44c241f28f150abe19caa85d0b0acc1

Alerts:
  Blocklists:
    - fortinet: Malware
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            GET /wp-content/uploads/2021/02/logo.png HTTP/1.1 
Host: apex-investments.co
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://apex-investments.co/index.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         66.29.132.83
HTTP/2 200 OK
content-type: image/png
                                        
cache-control: public, max-age=604800
expires: Wed, 07 Dec 2022 04:52:31 GMT
last-modified: Sun, 10 Jul 2022 14:02:10 GMT
accept-ranges: bytes
content-length: 18415
date: Wed, 30 Nov 2022 04:52:31 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 414 x 134, 8-bit/color RGBA, non-interlaced\012- data
Size:   18415
Md5:    28cbbeecbccb6652ff7bd5598bcaab0c
Sha1:   7d08f01ddc13e6e9bf050d82f95774c218393af8
Sha256: 6b7e189dcb66599f130c0caf25c4a76bba241f20c4e8cd47354bea0dfba8dce5

Alerts:
  Blocklists:
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            GET /website-widget/v1/widget.js?widgetId=ytWidget&pageLang=en&widgetTheme=dark&autoMode=true HTTP/1.1 
Host: translate.yandex.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://apex-investments.co/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         213.180.204.194
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
                                        
content-length: 12562
date: Wed, 30 Nov 2022 04:52:32 GMT
content-language: en
referrer-policy: no-referrer-when-downgrade
set-cookie: _yasc=hPPECbQsK4RVEeJgTmeQi6WMMPCKHhtB2AcwSYuCTFRjOAe6ZYgyVJuEz1Lg; domain=.yandex.net; path=/; expires=Sat, 27-Nov-2032 04:52:32 GMT; secure
vary: Accept-Language
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text
Size:   12562
Md5:    5d9fe81b5e8ed76249f59db35f67cd8a
Sha1:   6b19794af0e4ab3b83753a9ab42747c9f7fc0652
Sha256: 7099c3efd3f28279868acae7dd068f27a4a51c99f4d17fe1974c5e055bb1ca9a
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.131
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 30 Nov 2022 04:52:32 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /wp-content/uploads/2020/09/logo-icon.png HTTP/1.1 
Host: apex-investments.co
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://apex-investments.co/index.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         66.29.132.83
HTTP/2 200 OK
content-type: image/png
                                        
cache-control: public, max-age=604800
expires: Wed, 07 Dec 2022 04:52:31 GMT
last-modified: Sat, 19 Jun 2021 13:04:24 GMT
accept-ranges: bytes
content-length: 1560
date: Wed, 30 Nov 2022 04:52:31 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 140 x 140, 8-bit/color RGBA, non-interlaced\012- data
Size:   1560
Md5:    1df2ad9eb3794904335b96efa1895325
Sha1:   b27bea7bc24d55c3499cbaa41c15257a44e422f6
Sha256: ec0453a513ba796f8e891504011fd5b175f4bc44120990a603b81fa0dc84d6f1

Alerts:
  Blocklists:
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.131
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 30 Nov 2022 04:52:32 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /wp-content/plugins/elementor/assets/lib/animations/animations.min3d36.css?ver=3.3.1 HTTP/1.1 
Host: apex-investments.co
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://apex-investments.co/index.html
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         66.29.132.83
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=604800
expires: Wed, 07 Dec 2022 04:52:31 GMT
last-modified: Thu, 22 Jul 2021 10:57:58 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2442
date: Wed, 30 Nov 2022 04:52:31 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (10019)
Size:   2442
Md5:    d2db71c82a8f672aea59a3e050cd8cd7
Sha1:   af626566f94b3164e4310288cfb142431e8349a6
Sha256: bcd2c9c2ba22a48a8fabf9fbe5e947deb6404367e4be24f48326e302aead1180

Alerts:
  Blocklists:
    - fortinet: Malware
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            GET /wp-includes/js/dist/vendor/regenerator-runtime.min3937.js?ver=0.13.9 HTTP/1.1 
Host: apex-investments.co
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://apex-investments.co/index.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         66.29.132.83
HTTP/2 200 OK
content-type: application/javascript
                                        
cache-control: public, max-age=604800
expires: Wed, 07 Dec 2022 04:52:31 GMT
last-modified: Wed, 25 May 2022 17:20:08 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2354
date: Wed, 30 Nov 2022 04:52:31 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (6475), with no line terminators
Size:   2354
Md5:    4e773d7cec56bacab6d2db420be6f262
Sha1:   c95573d884c1caec0ec9c6f3e2a8c0fbf28d939a
Sha256: 5c8839d0b02f21e8d83d856bbf85a6b87fbedf9ba0b70711b11a1c378d5443e7

Alerts:
  Blocklists:
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            GET /wp-includes/js/dist/vendor/wp-polyfill.min2c7c.js?ver=3.15.0 HTTP/1.1 
Host: apex-investments.co
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://apex-investments.co/index.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         66.29.132.83
HTTP/2 200 OK
content-type: application/javascript
                                        
cache-control: public, max-age=604800
expires: Wed, 07 Dec 2022 04:52:31 GMT
last-modified: Wed, 25 May 2022 17:20:08 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 6872
date: Wed, 30 Nov 2022 04:52:31 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (19138), with no line terminators
Size:   6872
Md5:    1f5152610686781567fb3008c4429792
Sha1:   d0c0bddf5fb8603ed8e55c32f3093c2207f72471
Sha256: 75806ece853d0d76e655a433bd03548d3be6237ea1e4cacd5963f528bbe0d192

Alerts:
  Blocklists:
    - fortinet: Malware
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            GET /wp-content/plugins/contact-form-7/includes/js/index7661.js?ver=5.4.2 HTTP/1.1 
Host: apex-investments.co
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://apex-investments.co/index.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         66.29.132.83
HTTP/2 200 OK
content-type: application/javascript
                                        
cache-control: public, max-age=604800
expires: Wed, 07 Dec 2022 04:52:31 GMT
last-modified: Thu, 22 Jul 2021 10:57:48 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3837
date: Wed, 30 Nov 2022 04:52:31 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (12987), with no line terminators
Size:   3837
Md5:    aeed4395ecf003f676da91a15c6f480a
Sha1:   7fd4fe08f1fe55d0da4e60dd49384b1fa31ab0fe
Sha256: f5df04123f2022862a56b4a547cf4b0bebb54a6fc1dc6313c460f927d6902919

Alerts:
  Blocklists:
    - fortinet: Malware
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            GET /wp-content/themes/finpress/assets/js/vendor/modernizr-3.11.2.min8a54.js?ver=1.0.0 HTTP/1.1 
Host: apex-investments.co
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://apex-investments.co/index.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         66.29.132.83
HTTP/2 200 OK
content-type: application/javascript
                                        
cache-control: public, max-age=604800
expires: Wed, 07 Dec 2022 04:52:31 GMT
last-modified: Sat, 19 Jun 2021 13:01:58 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3400
date: Wed, 30 Nov 2022 04:52:31 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (8289)
Size:   3400
Md5:    3912488a439942d951173de05a815c3d
Sha1:   d39457b4bfb10293ff01f30e7e177e43bdbb8bfc
Sha256: 73a7f1c9b2ec8c71c8ddd02129545850739dcd9ddb62329fc35a57e248973c0d

Alerts:
  Blocklists:
    - fortinet: Malware
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            GET /wp-content/themes/finpress/assets/js/vendor/jquery.appear8a54.js?ver=1.0.0 HTTP/1.1 
Host: apex-investments.co
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://apex-investments.co/index.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         66.29.132.83
HTTP/2 200 OK
content-type: application/javascript
                                        
cache-control: public, max-age=604800
expires: Wed, 07 Dec 2022 04:52:31 GMT
last-modified: Sat, 19 Jun 2021 13:01:58 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1232
date: Wed, 30 Nov 2022 04:52:31 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with CRLF line terminators
Size:   1232
Md5:    7204453fbee2f5bda6f69174129c4fd0
Sha1:   d881f20a0821cfe051ea460b2e779762e8ff5d30
Sha256: ce0814931a2265fce91072880eb12a67e6fe9f8e9f525435e4ecfef4bf8de80c

Alerts:
  Blocklists:
    - fortinet: Malware
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            GET /wp-content/themes/finpress/assets/js/vendor/count-to8a54.js?ver=1.0.0 HTTP/1.1 
Host: apex-investments.co
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://apex-investments.co/index.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         66.29.132.83
HTTP/2 200 OK
content-type: application/javascript
                                        
cache-control: public, max-age=604800
expires: Wed, 07 Dec 2022 04:52:31 GMT
last-modified: Sat, 19 Jun 2021 13:01:58 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 827
date: Wed, 30 Nov 2022 04:52:31 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with CRLF line terminators
Size:   827
Md5:    6bdd504e872ff14b9a5b74424160f22b
Sha1:   8c07dd1687a6e6f2cbfdf576562a705e5af03baf
Sha256: 5bbdda0e2c2b58b599ba5c0b095b92ee722fa2339ae68ee2ccd4f635beedc3b5

Alerts:
  Blocklists:
    - fortinet: Malware
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            GET /wp-content/themes/finpress/assets/js/vendor/jquery.magnific-popup.min8a54.js?ver=1.0.0 HTTP/1.1 
Host: apex-investments.co
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://apex-investments.co/index.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         66.29.132.83
HTTP/2 200 OK
content-type: application/javascript
                                        
cache-control: public, max-age=604800
expires: Wed, 07 Dec 2022 04:52:31 GMT
last-modified: Sat, 19 Jun 2021 13:01:58 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 7043
date: Wed, 30 Nov 2022 04:52:31 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (20087)
Size:   7043
Md5:    f5e275bd34668dca4972a4cceccd7907
Sha1:   cba188e35681cd77cfcbd026aac16315747fab12
Sha256: 7874f3927ffd30d189723404d3fb9699e728955b083abeccc9a988890b4b2ede

Alerts:
  Blocklists:
    - fortinet: Malware
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            GET /wp-content/themes/finpress/assets/js/vendor/owl.carousel.min8a54.js?ver=1.0.0 HTTP/1.1 
Host: apex-investments.co
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://apex-investments.co/index.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         66.29.132.83
HTTP/2 200 OK
content-type: application/javascript
                                        
cache-control: public, max-age=604800
expires: Wed, 07 Dec 2022 04:52:31 GMT
last-modified: Sat, 19 Jun 2021 13:01:58 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 11139
date: Wed, 30 Nov 2022 04:52:31 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (31997)
Size:   11139
Md5:    3cb10c6c01ef15e7d2c5ef33c6f06ee5
Sha1:   561a0008fd649a946ff6cdba379547c998cb4582
Sha256: 2107b826f18f7f10f78a38641124da03dad389704816a86136488123a0f01f3d

Alerts:
  Blocklists:
    - fortinet: Malware
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            GET /wp-content/themes/finpress/assets/js/vendor/parallax.min8a54.js?ver=1.0.0 HTTP/1.1 
Host: apex-investments.co
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://apex-investments.co/index.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         66.29.132.83
HTTP/2 200 OK
content-type: application/javascript
                                        
cache-control: public, max-age=604800
expires: Wed, 07 Dec 2022 04:52:31 GMT
last-modified: Sat, 19 Jun 2021 13:01:58 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 5029
date: Wed, 30 Nov 2022 04:52:31 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (17272), with CRLF line terminators
Size:   5029
Md5:    a0379a43d4792eeb5b2d835875447808
Sha1:   3423abb57f9d9d5de5eb2978c442a07de9a48567
Sha256: 8d7fd3a4f7ca3cb3bbf0f18a50603d52bf4d0de9c2d6672f934477a67136dd88

Alerts:
  Blocklists:
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            GET /wp-content/themes/finpress/assets/js/vendor/tilt.jquery.min8a54.js?ver=1.0.0 HTTP/1.1 
Host: apex-investments.co
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://apex-investments.co/index.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         66.29.132.83
HTTP/2 200 OK
content-type: application/javascript
                                        
cache-control: public, max-age=604800
expires: Wed, 07 Dec 2022 04:52:31 GMT
last-modified: Sat, 19 Jun 2021 13:01:58 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1681
date: Wed, 30 Nov 2022 04:52:31 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (5640), with no line terminators
Size:   1681
Md5:    1a67266c46f7086e84a0a26220ef2759
Sha1:   bd481008993599553803a98de8bde4d7baf7226e
Sha256: 22343fe722d4f6537e1ce50e54f876e30b4205bb516ad39891edc9947970acc4

Alerts:
  Blocklists:
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            GET /wp-content/themes/finpress/assets/js/vendor/jquery.nice-select.min8a54.js?ver=1.0.0 HTTP/1.1 
Host: apex-investments.co
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://apex-investments.co/index.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         66.29.132.83
HTTP/2 200 OK
content-type: application/javascript
                                        
cache-control: public, max-age=604800
expires: Wed, 07 Dec 2022 04:52:31 GMT
last-modified: Sat, 19 Jun 2021 13:01:58 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 930
date: Wed, 30 Nov 2022 04:52:31 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (2822)
Size:   930
Md5:    7df2a8ed2b80cde0e5e7ca7c26764651
Sha1:   d6065cf9375fa62f0bc89dd8c7b8d39a7299720b
Sha256: 478a6036f21887bd2c4da8d4c1446b7ca247263af66c79056c0b290076c736fe

Alerts:
  Blocklists:
    - fortinet: Malware
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            GET /wp-content/themes/finpress/assets/js/theme-frontend8a54.js?ver=1.0.0 HTTP/1.1 
Host: apex-investments.co
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://apex-investments.co/index.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         66.29.132.83
HTTP/2 200 OK
content-type: application/javascript
                                        
cache-control: public, max-age=604800
expires: Wed, 07 Dec 2022 04:52:31 GMT
last-modified: Sat, 19 Jun 2021 13:01:58 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1246
date: Wed, 30 Nov 2022 04:52:31 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text
Size:   1246
Md5:    299135090fc58eff393abfa5ee46ceb3
Sha1:   e67b93a805866f8d00210bcd6bd4ac9e853b1cae
Sha256: 78c729d9809cc80ae7de372796cc039d07dacb825b7094a9192e8318b6692770

Alerts:
  Blocklists:
    - fortinet: Malware
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            GET /wp-content/plugins/finpress-core/assets/js/finpress-frontendf049.js?ver=6.0 HTTP/1.1 
Host: apex-investments.co
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://apex-investments.co/index.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         66.29.132.83
HTTP/2 200 OK
content-type: application/javascript
                                        
cache-control: public, max-age=604800
expires: Wed, 07 Dec 2022 04:52:31 GMT
last-modified: Sat, 19 Jun 2021 13:03:46 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1816
date: Wed, 30 Nov 2022 04:52:31 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text
Size:   1816
Md5:    2b8d694bcb73d339d4a06e5f10da25a0
Sha1:   c7b39f54470f2d771cc514da0f6bb23375447de3
Sha256: c29104097ad81f19c0d872649110cc644143ce9658135ab9db9c2576ebb2fb19

Alerts:
  Blocklists:
    - fortinet: Malware
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            GET /wp-content/plugins/mailchimp-for-wp/assets/js/forms81db.js?ver=4.8.6 HTTP/1.1 
Host: apex-investments.co
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://apex-investments.co/index.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         66.29.132.83
HTTP/2 200 OK
content-type: application/javascript
                                        
cache-control: public, max-age=604800
expires: Wed, 07 Dec 2022 04:52:31 GMT
last-modified: Thu, 22 Jul 2021 10:58:04 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2382
date: Wed, 30 Nov 2022 04:52:31 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (6210), with no line terminators
Size:   2382
Md5:    3ae6fc384b1793fd65b74cf0429bd599
Sha1:   815dfd84927b9f21d8284a42ee17868a8c901fd5
Sha256: 8bce0abee892785e63bfcf51d5b656e1a0345ed0c3ab34a4dcad3fa0769ab5ef

Alerts:
  Blocklists:
    - fortinet: Malware
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            GET /wp-content/plugins/elementor/assets/js/webpack.runtime.min3d36.js?ver=3.3.1 HTTP/1.1 
Host: apex-investments.co
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://apex-investments.co/index.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         66.29.132.83
HTTP/2 200 OK
content-type: application/javascript
                                        
cache-control: public, max-age=604800
expires: Wed, 07 Dec 2022 04:52:31 GMT
last-modified: Thu, 22 Jul 2021 10:57:58 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1942
date: Wed, 30 Nov 2022 04:52:31 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (4730)
Size:   1942
Md5:    7955e5e906cef88fd0669a2d232c5303
Sha1:   de638fd3d6271cb2ae398e6b210458f741015b6f
Sha256: f8dfa844a6f7911876cd3a761a39f5d32225196fa72217a90e1664287880f649

Alerts:
  Blocklists:
    - fortinet: Malware
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://apex-investments.co
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         142.250.74.163
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 23 Nov 2022 19:34:08 GMT
expires: Thu, 23 Nov 2023 19:34:08 GMT
cache-control: public, max-age=31536000
age: 551904
last-modified: Wed, 11 May 2022 19:24:48 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data
Size:   15744
Md5:    15d9f621c3bd1599f0169dcf0bd5e63e
Sha1:   7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
Sha256: f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615
                                        
                                            GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://apex-investments.co
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         142.250.74.163
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15860
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 23 Nov 2022 18:53:49 GMT
expires: Thu, 23 Nov 2023 18:53:49 GMT
cache-control: public, max-age=31536000
age: 554323
last-modified: Wed, 11 May 2022 19:24:42 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 15860, version 1.0\012- data
Size:   15860
Md5:    e9f5aaf547f165386cd313b995dddd8e
Sha1:   acdef5603c2387b0e5bffd744b679a24a8bc1968
Sha256: f5aebdfea35d1e7656ef4acc5db1f243209755ae3300943ef8fc6280f363c860
                                        
                                            GET /wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min05da.js?ver=4.0.2 HTTP/1.1 
Host: apex-investments.co
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://apex-investments.co/index.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         66.29.132.83
HTTP/2 200 OK
content-type: application/javascript
                                        
cache-control: public, max-age=604800
expires: Wed, 07 Dec 2022 04:52:31 GMT
last-modified: Thu, 22 Jul 2021 10:57:58 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2867
date: Wed, 30 Nov 2022 04:52:31 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (12198), with no line terminators
Size:   2867
Md5:    869caa171b68cbec9fee5abbfb944ee8
Sha1:   f237e485e41f88b77384cfdb880f9d5a8f46eac8
Sha256: 25c2896e2790fb0e52f6b6ba1ce97bd87eb40463b4bb65ba16ad434c1d7a36dc

Alerts:
  Blocklists:
    - fortinet: Malware
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            GET /s/roboto/v30/KFOkCnqEu92Fr1Mu51xIIzI.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://apex-investments.co
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         142.250.74.163
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 17368
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 23 Nov 2022 18:56:18 GMT
expires: Thu, 23 Nov 2023 18:56:18 GMT
cache-control: public, max-age=31536000
age: 554174
last-modified: Wed, 11 May 2022 19:24:42 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 17368, version 1.0\012- data
Size:   17368
Md5:    abe083d96b58eb02ada8b7c30d7b09f2
Sha1:   61447d66d13a8c8f4335696777a85c438c46f749
Sha256: db0424fb67fb52e7e538490240cc7fb9c05aa076333a4968f3dee30b825dabf9
                                        
                                            GET /wp-includes/js/jquery/ui/core.min0028.js?ver=1.13.1 HTTP/1.1 
Host: apex-investments.co
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://apex-investments.co/index.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         66.29.132.83
HTTP/2 200 OK
content-type: application/javascript
                                        
cache-control: public, max-age=604800
expires: Wed, 07 Dec 2022 04:52:31 GMT
last-modified: Wed, 25 May 2022 17:20:08 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 6637
date: Wed, 30 Nov 2022 04:52:31 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (8189)
Size:   6637
Md5:    139a41f01d192d239e7dce15ca307983
Sha1:   62a3e7c0c77209832dc649bc5583e5e0b4918bf5
Sha256: d796462a5d212cd93b315b43dafb6e77dbe1c3aa567964dc40c1ab0e2c28f405

Alerts:
  Blocklists:
    - fortinet: Malware
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            GET /wp-content/plugins/elementor/assets/lib/share-link/share-link.min3d36.js?ver=3.3.1 HTTP/1.1 
Host: apex-investments.co
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://apex-investments.co/index.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         66.29.132.83
HTTP/2 200 OK
content-type: application/javascript
                                        
cache-control: public, max-age=604800
expires: Wed, 07 Dec 2022 04:52:31 GMT
last-modified: Thu, 22 Jul 2021 10:57:58 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1023
date: Wed, 30 Nov 2022 04:52:31 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (2577)
Size:   1023
Md5:    f5c8273175207966436fe071db580974
Sha1:   643680fc9a1703cb3bc469bfbb3dbcbf6425e38a
Sha256: 8b0897055f6baa5de94adb95e824af4afd1dced496711c905c8b7c09738aa4de

Alerts:
  Blocklists:
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            GET /wp-content/plugins/elementor/assets/lib/dialog/dialog.mina288.js?ver=4.8.1 HTTP/1.1 
Host: apex-investments.co
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://apex-investments.co/index.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         66.29.132.83
HTTP/2 200 OK
content-type: application/javascript
                                        
cache-control: public, max-age=604800
expires: Wed, 07 Dec 2022 04:52:31 GMT
last-modified: Thu, 22 Jul 2021 10:57:58 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3331
date: Wed, 30 Nov 2022 04:52:31 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (10725)
Size:   3331
Md5:    8c5a95ea30259ea6dc50f9f1357dc31a
Sha1:   be1fd6dc96f6ba018bbfa49a058390700ead5bf0
Sha256: 914c938c132cd311967ed71676397704bf8d95abf2c51c79937f43be35030a70

Alerts:
  Blocklists:
    - fortinet: Malware
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            GET /wp-content/plugins/elementor/assets/js/frontend.min3d36.js?ver=3.3.1 HTTP/1.1 
Host: apex-investments.co
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://apex-investments.co/index.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         66.29.132.83
HTTP/2 200 OK
content-type: application/javascript
                                        
cache-control: public, max-age=604800
expires: Wed, 07 Dec 2022 04:52:31 GMT
last-modified: Thu, 22 Jul 2021 10:57:58 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 19057
date: Wed, 30 Nov 2022 04:52:31 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (65497)
Size:   19057
Md5:    a9d7e0fee46e0844f03b93943c5aa3d9
Sha1:   eea7a74fed5aef21628d0a735e0ac3fd742b4f7a
Sha256: 7cfb2d670762a908b05ca78e00e3e9d06e72d62edafba972a24cdd42aec8a001

Alerts:
  Blocklists:
    - fortinet: Malware
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            GET /wp-content/uploads/2021/02/logo-light.png HTTP/1.1 
Host: apex-investments.co
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://apex-investments.co/index.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         66.29.132.83
HTTP/2 200 OK
content-type: image/png
                                        
cache-control: public, max-age=604800
expires: Wed, 07 Dec 2022 04:52:31 GMT
last-modified: Sun, 10 Jul 2022 14:00:06 GMT
accept-ranges: bytes
content-length: 18418
date: Wed, 30 Nov 2022 04:52:31 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 414 x 134, 8-bit/color RGBA, non-interlaced\012- data
Size:   18418
Md5:    96353887eeb00a8e22d7d4e9e2e20463
Sha1:   01557f84a3a1e0de7fa096423977ab8846f04166
Sha256: 0b770401dce09cef0e6c0e5136c684f8b41ec14858b92234b88ff73a79d89dfa

Alerts:
  Blocklists:
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            GET /wp-content/uploads/2020/09/map.png HTTP/1.1 
Host: apex-investments.co
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://apex-investments.co/index.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         66.29.132.83
HTTP/2 200 OK
content-type: image/png
                                        
cache-control: public, max-age=604800
expires: Wed, 07 Dec 2022 04:52:31 GMT
last-modified: Sat, 19 Jun 2021 13:04:22 GMT
accept-ranges: bytes
content-length: 54452
date: Wed, 30 Nov 2022 04:52:31 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 1493 x 757, 4-bit colormap, non-interlaced\012- data
Size:   54452
Md5:    15d4400f78ab42296d2f59377936f2dd
Sha1:   5bebe472c0aa1a57cb81d3ef07e2ccd6053e03b0
Sha256: 5718e1c17337fb6242cd3e918c73f52dbb3d41d8e62425d292bdd1ccabbefa9c

Alerts:
  Blocklists:
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "C5DBD471D178AE4505B28E30AEE1E8EED77FFFD81B9F7815AD2BDA1A0D09A02C"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8626
Expires: Wed, 30 Nov 2022 07:16:18 GMT
Date: Wed, 30 Nov 2022 04:52:32 GMT
Connection: keep-alive

                                        
                                            GET /s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://apex-investments.co
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         142.250.74.163
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15920
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 23 Nov 2022 14:07:32 GMT
expires: Thu, 23 Nov 2023 14:07:32 GMT
cache-control: public, max-age=31536000
age: 571500
last-modified: Wed, 11 May 2022 19:24:45 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 15920, version 1.0\012- data
Size:   15920
Md5:    3a44e06eb954b96aa043227f3534189d
Sha1:   23cef6993ddb2b2979e8e7647fc3763694e2ba7d
Sha256: b019538234514166ec7665359d097403358f8a4c991901983922fb4d56989f1e
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "C5DBD471D178AE4505B28E30AEE1E8EED77FFFD81B9F7815AD2BDA1A0D09A02C"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8626
Expires: Wed, 30 Nov 2022 07:16:18 GMT
Date: Wed, 30 Nov 2022 04:52:32 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "C5DBD471D178AE4505B28E30AEE1E8EED77FFFD81B9F7815AD2BDA1A0D09A02C"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8626
Expires: Wed, 30 Nov 2022 07:16:18 GMT
Date: Wed, 30 Nov 2022 04:52:32 GMT
Connection: keep-alive

                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F37883a10-064d-451d-9dd4-bca0a5594e96.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 11466
x-amzn-requestid: 40ae63d3-397e-4118-90b2-d48b1f4014c4
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cYgDaHUxIAMFxWA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63867a15-2b309a0a5e93f68312a26fa1;Sampled=0
x-amzn-remapped-date: Tue, 29 Nov 2022 21:31:01 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: s1eFJ0mtTFv3DFwwZ52JWOCDJWFA9IRiJ54L0JSkxzxFLnFIgts2CA==
via: 1.1 e291f351a18746d40754b367095a2872.cloudfront.net (CloudFront), 1.1 7022a5bbf9872d4a09d63e6cdb457dfe.cloudfront.net (CloudFront), 1.1 google
date: Tue, 29 Nov 2022 21:44:35 GMT
etag: "49a82390cbf2139bf681d896f9467ab736e0b337"
age: 25677
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   11466
Md5:    0c14828912decf19c9d95fee93e92f00
Sha1:   49a82390cbf2139bf681d896f9467ab736e0b337
Sha256: bbafc9bd160a30c6a31954bdf66655e1decc59dead3bb94c6fa21cad1cd56fe3
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F52cf4797-5177-4859-9523-faeb4e38f224.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 9812
x-amzn-requestid: 70bfeb68-0703-44bf-8550-50c759d52d86
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cYgDbFolIAMFYBQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63867a15-73fb65ee2b9161372819207f;Sampled=0
x-amzn-remapped-date: Tue, 29 Nov 2022 21:31:01 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: jpQ-1qUf3ysXSe_j4z4PIc5e1zj0MaDF9qliEVxU_4RR66yWHwCWzg==
via: 1.1 f13aef0c4b52f6f681401f232d03eb68.cloudfront.net (CloudFront), 1.1 be082a2326b7d49643607b097f1e7180.cloudfront.net (CloudFront), 1.1 google
date: Tue, 29 Nov 2022 21:44:35 GMT
etag: "ce411cc5b0a37bbd89551d06d7d0349f45734e97"
age: 25677
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   9812
Md5:    5c5277610f3a542571abb53ffb3d4df1
Sha1:   ce411cc5b0a37bbd89551d06d7d0349f45734e97
Sha256: 3bf1105631ef7fda0249a46390ca90f904ea73b0a4f017c2db85326550a80a3f
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe74cbd5b-36b7-497f-97d1-4e7073a47375.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 4706
x-amzn-requestid: ce0b287a-7242-402b-8261-c519a1310309
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cYhHxETjoAMFcTw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63867bcb-7a69d6d14ad0fd707ede2882;Sampled=0
x-amzn-remapped-date: Tue, 29 Nov 2022 21:38:19 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: YOLFLV-a93jrA__gtWEzu2Vz8fpQJgvYGDk5fVsjhKVULRHdnKmfHw==
via: 1.1 4d7fa73f804f1c93f20cfc24c4b1266e.cloudfront.net (CloudFront), 1.1 6a9b42e38e76b7d4a4044ebe0e0eca08.cloudfront.net (CloudFront), 1.1 google
date: Tue, 29 Nov 2022 21:44:35 GMT
age: 25677
etag: "5991d60e238558f9fe4e1759fe18dde628cb7be4"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   4706
Md5:    9b96b63164d7dc37268951510afb359f
Sha1:   5991d60e238558f9fe4e1759fe18dde628cb7be4
Sha256: cd7a88b3173bae9ad466d41b9ae9a2ed9e18157660697f1f1b070043194c3db4
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa44c8657-c62c-4dd0-8688-d6b89a767fb4.png HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 8337
x-amzn-requestid: 88e6ec5a-6b04-4787-91e4-02f316d0d6e2
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cYhgYHViIAMFZrA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63867c68-10f0d81a09c0ae930f6be726;Sampled=0
x-amzn-remapped-date: Tue, 29 Nov 2022 21:40:56 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 8XATm-S2y3wzXWzJxgof2GIbXx_7WzuEMKrhI5By_tGaB8EiYeGkLg==
via: 1.1 eece508272520f70691e4eebdc5a6dea.cloudfront.net (CloudFront), 1.1 82ea95080f526df99896343fb7269b06.cloudfront.net (CloudFront), 1.1 google
date: Tue, 29 Nov 2022 21:59:07 GMT
age: 24805
etag: "71e4307194ea9fb15d29c8a5e35f9bfd3cb0c6e0"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   8337
Md5:    2cb669522a324cd5d9ba1b1743138d38
Sha1:   71e4307194ea9fb15d29c8a5e35f9bfd3cb0c6e0
Sha256: a997731964710b80affb001f7f2e2f05a93550b06c1626279516d78b11332803
                                        
                                            GET /widgets/js/script HTTP/1.1 
Host: www.cryptohopper.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://apex-investments.co/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         172.66.43.90
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
                                        
date: Wed, 30 Nov 2022 04:52:31 GMT
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=63072000; includeSubDomains
access-control-allow-origin: *
set-cookie: widgets_csrf_cookie_name=708abfaacddb24f3b4f2f0ca85edaeaa; expires=Wed, 30-Nov-2022 06:52:31 GMT; Max-Age=7200; path=/; domain=.cryptohopper.com; secure ci_session=d2lijg3e43eq3tiqjqsr5km0bhrp7h0p; expires=Wed, 30-Nov-2022 06:52:31 GMT; Max-Age=7200; path=/; domain=.cryptohopper.com; secure; HttpOnly
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
content-encoding: gzip
content-security-policy: default-src 'self' *.cryptohopper.com; object-src 'self' *.cryptohopper.com partners.liquid.com widget.changelly.com cdn.paddle.com; script-src 'self' 'unsafe-inline' 'unsafe-eval' *.cryptohopper.com cdn.paddle.com www.googletagmanager.com twemoji.maxcdn.com optimize.google.com partners.liquid.com widget.changelly.com s0.2mdn.net unpkg.com wchat.freshchat.com cryptohopper.webchat.freshchat.com script.hotjar.com static.hotjar.com cdn.plyr.io cointelegraph.com s3.tradingview.com connect.facebook.net d.adroll.mgr.consensu.org d.adroll.com s.adroll.com cdn4.mxpnl.com ssl.google-analytics.com bat.bing.com s3.amazonaws.com platform.twitter.com cdn.syndication.twimg.com cryptohopper.us17.list-manage.com ajax.cloudflare.com www.gstatic.com js.stripe.com www.google-analytics.com www.googleadservices.com oss.maxcdn.com www.youtube.com www.google.com googleads.g.doubleclick.net static.doubleclick.net cdn.segment.com fast.appcues.com www.googleanalytics.com www.googleoptimize.com; connect-src 'self' www.tradingview.com *.cryptohopper.tech ws: *.cryptohopper.com stats.g.doubleclick.net cdn.paddle.com api.appcues.net fast.appcues.com api.segment.io *.google-analytics.com *.analytics.google.com widget.changelly.com api.cointelegraph.com wchat.freshchat.com *.hotjar.com vc.hotjar.io saveload.tradingview.com cdn.plyr.io cdn4.mxpnl.com; img-src 'self' *.cryptohopper.com www.google.ie cdn.paddle.com twemoji.maxcdn.com img.youtube.com *.giphy.com res.cloudinary.com appleid.apple.com sync.taboola.com script.hotjar.com widget.changelly.com assets.coingecko.com stats.g.doubleclick.net www.google.nl dsum-sec.casalemedia.com ups.analytics.yahoo.com pixel.advertising.com pixel.rubiconproject.com sync.outbrain.com image2.pubmatic.com ads.yahoo.com trc.taboola.com eb2.3lift.com x.bidswitch.net idsync.rlcdn.com cm.g.doubleclick.net us-u.openx.net assetscdn-wchat.freshchat.com s.adroll.com d.adroll.com ib.adnxs.com cdn-images.mailchimp.com cdn4.mxpnl.com s3.tradingview.com bat.bing.com chart.googleapis.com pbs.twimg.com abs.twimg.com syndication.twitter.com q.stripe.com www.google.com googleads.g.doubleclick.net i.ytimg.com cdn.plyr.io *.google-analytics.com *.analytics.google.com www.facebook.com maxcdn.bootstrapcdn.com www.googletagmanager.com optimize.google.com data:; style-src 'self' 'unsafe-inline' *.cryptohopper.com fast.appcues.com cdn.paddle.com unpkg.com cdnjs.cloudflare.com widget.changelly.com assetscdn-wchat.freshchat.com wchat.freshchat.com stats.g.doubleclick.net cdn-images.mailchimp.com s3.tradingview.com cdn.plyr.io fonts.googleapis.com maxcdn.bootstrapcdn.com platform.twitter.com www.youtube.com optimize.google.com fonts.googleapis.com; font-src 'self' *.cryptohopper.com cdn.paddle.com cdn-images.mailchimp.com widget.changelly.com *.hotjar.com s3.tradingview.com fonts.googleapis.com maxcdn.bootstrapcdn.com fonts.gstatic.com; frame-src 'self' static.cryptohopper.com buy.paddle.com cdn.paddle.com create-checkout.paddle.com widget.changelly.com plugin.partners.liquid.com vars.hotjar.com cryptohopper.webpush.freshchat.com wchat.freshchat.com js.stripe.com data: *.cryptohopper.com coin360.com coins.gourl.io platform.twitter.com www.emjcd.com cj.dotomi.com www.facebook.com cdn4.mxpnl.com www.youtube.com www.tradingview.com discordapp.com s3.tradingview.com s.tradingview.com googleads.g.doubleclick.net www.google.com www.google.nl optimize.google.com; media-src 'self' *.cryptohopper.com res.cloudinary.com cdn.paddle.com widget.changelly.com s3.tradingview.com cdn.plyr.io; child-src 'self' *.cryptohopper.com cdn.paddle.com widget.changelly.com plugin.partners.liquid.com www.youtube.com; form-action *;
vary: Accept-Encoding
x-cache: Miss from cloudfront
via: 1.1 8ac66e1d6983a0f44cf391b1ec3b1cce.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: exh9495S9KRaHF5uS8zACIpsvlVzBwjQZJsE773VspOMRpzzVCCocw==
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7720f9619a34b4ff-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   20275
Md5:    b57a647373a5b39b9fd42076db6e1374
Sha1:   21f380393a41d9ce713da47d480f724f58e5b06c
Sha256: 182b8e9f0f4c726b760f30bd2e88b5c249a9793d64278cccc9b50fb3527c7ab9
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8af12b89-c1a0-4a2a-aa29-cd6dea02f435.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 8288
x-amzn-requestid: 8b48ce45-1c30-4ea3-8cef-bf3b2e7f106f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cYgEgFcUIAMFkSg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63867a1c-20e896a62338c6dc45c1ca2a;Sampled=0
x-amzn-remapped-date: Tue, 29 Nov 2022 21:31:08 GMT
x-amz-cf-pop: SEA19-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 0bNBjOUnEjVgDrhXO2wYnfemT_030w9kk747Zk9-DTeI0UB-lV073g==
via: 1.1 1570d93226c1bbca2ebaad510cff3e0c.cloudfront.net (CloudFront), 1.1 36810aa1793ee589dc8c194860296078.cloudfront.net (CloudFront), 1.1 google
date: Tue, 29 Nov 2022 21:44:26 GMT
age: 25686
etag: "268e6202466941e612ff503835de9091ef4d5b38"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   8288
Md5:    2cd563ab005d968185c8d000e38b88c2
Sha1:   268e6202466941e612ff503835de9091ef4d5b38
Sha256: 272c867dcc37d97f8682e8f3aa11a567a401b4d4d78e890b0eb94a3c77ea5000
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.131
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 30 Nov 2022 04:52:32 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /wp-content/plugins/elementor/assets/js/frontend-modules.min3d36.js?ver=3.3.1 HTTP/1.1 
Host: apex-investments.co
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://apex-investments.co/index.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         66.29.132.83
HTTP/2 200 OK
content-type: application/javascript
                                        
cache-control: public, max-age=604800
expires: Wed, 07 Dec 2022 04:52:31 GMT
last-modified: Thu, 22 Jul 2021 10:57:58 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 18831
date: Wed, 30 Nov 2022 04:52:31 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (43289), with LF, NEL line terminators
Size:   18831
Md5:    e9752626decbcc517cc17c55e5d6eed0
Sha1:   7b20d502b821859d7c135ef664f13030a72902ad
Sha256: 96119cfcf8fb28c5add6bcbde2eb032613b6017abca232a4cc9bde560789b7d2

Alerts:
  Blocklists:
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            GET /wp-content/plugins/elementor/assets/js/preloaded-modules.min3d36.js?ver=3.3.1 HTTP/1.1 
Host: apex-investments.co
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://apex-investments.co/index.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         66.29.132.83
HTTP/2 200 OK
content-type: application/javascript
                                        
cache-control: public, max-age=604800
expires: Wed, 07 Dec 2022 04:52:31 GMT
last-modified: Thu, 22 Jul 2021 10:57:58 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 16401
date: Wed, 30 Nov 2022 04:52:31 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (58041)
Size:   16401
Md5:    7b8f775a361ec1d1ea8130acf562bcba
Sha1:   3049bf7fb1f747197cabbbc519299da9c64772e3
Sha256: 6e7d570f6bdf8735666e698673646c16cacf529edcb62f9919189e579d64c0da

Alerts:
  Blocklists:
    - fortinet: Malware
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            GET /wp-content/plugins/elementor/assets/lib/swiper/swiper.min48f5.js?ver=5.3.6 HTTP/1.1 
Host: apex-investments.co
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://apex-investments.co/index.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         66.29.132.83
HTTP/2 200 OK
content-type: application/javascript
                                        
cache-control: public, max-age=604800
expires: Wed, 07 Dec 2022 04:52:31 GMT
last-modified: Thu, 22 Jul 2021 10:57:58 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 34004
date: Wed, 30 Nov 2022 04:52:31 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (65280)
Size:   34004
Md5:    83a90323ac82b98062b4b2c8ac8c5051
Sha1:   d7d376677e3546b756b4fec6219be72b85c4f8f5
Sha256: 7fd68e9ea0ebd35958da46d7373113d1a3646a671217cf2cf471c65c3d710613

Alerts:
  Blocklists:
    - fortinet: Malware
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            GET /wp-content/uploads/2020/09/about-photo.jpg HTTP/1.1 
Host: apex-investments.co
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://apex-investments.co/index.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         66.29.132.83
HTTP/2 200 OK
content-type: image/jpeg
                                        
cache-control: public, max-age=604800
expires: Wed, 07 Dec 2022 04:52:31 GMT
last-modified: Sat, 19 Jun 2021 13:04:22 GMT
accept-ranges: bytes
content-length: 66511
date: Wed, 30 Nov 2022 04:52:31 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 800x1106, components 3\012- data
Size:   66511
Md5:    6d4cd99fde45e3ab7d1c35fdb2bdbcaf
Sha1:   edcac0b6c42e2bd6bfac33fa790f35d4055c1a47
Sha256: a49e4811708d23b2956d1c5f75565faabcdce154d4c5404cd2e9257a9b7ad8fc

Alerts:
  Blocklists:
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            POST /gseccovsslca2018 HTTP/1.1 
Host: ocsp.globalsign.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         104.18.20.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 30 Nov 2022 04:52:32 GMT
Content-Length: 938
Connection: keep-alive
Expires: Sun, 04 Dec 2022 01:20:07 GMT
ETag: "9b75aaa6fbaa2719cb91268af6b1baa1adabecd2"
Last-Modified: Wed, 30 Nov 2022 01:20:08 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 3530
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7720f96a29f6b524-OSL

                                        
                                            POST /gseccovsslca2018 HTTP/1.1 
Host: ocsp.globalsign.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         104.18.20.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 30 Nov 2022 04:52:33 GMT
Content-Length: 938
Connection: keep-alive
Expires: Sun, 04 Dec 2022 01:20:07 GMT
ETag: "9b75aaa6fbaa2719cb91268af6b1baa1adabecd2"
Last-Modified: Wed, 30 Nov 2022 01:20:08 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 3530
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7720f96a3d86fabc-OSL

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "CD400E3788096655A47A0805FB0550E7DA38BF3730483BAC6E125F306F3B5969"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12013
Expires: Wed, 30 Nov 2022 08:12:46 GMT
Date: Wed, 30 Nov 2022 04:52:33 GMT
Connection: keep-alive

                                        
                                            GET /widget-send-button/js/init.js HTTP/1.1 
Host: static.getbutton.io
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://apex-investments.co/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         176.9.188.20
HTTP/1.1 302 Moved Temporarily
Content-Type: text/html
                                        
Server: nginx/1.23.1
Date: Wed, 30 Nov 2022 04:52:33 GMT
Content-Length: 145
Connection: keep-alive
Location: https://static.getbutton.io/widget/bundle.js


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size:   145
Md5:    0e0a408f3009ae4498e7f3ffc9c5fa7b
Sha1:   113078a9c13645b225d88d5e306709f8994ea817
Sha256: e3a16c76764dacf8ea25637976a03595564530a9fce185c2145f7c1903f2707b
                                        
                                            GET /website-widget/v1/widget.html HTTP/1.1 
Host: translate.yandex.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://apex-investments.co
Connection: keep-alive
Referer: https://apex-investments.co/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         213.180.204.194
HTTP/2 200 OK
content-type: text/html
                                        
content-length: 43439
vary: Accept-Language
date: Wed, 30 Nov 2022 04:52:33 GMT
referrer-policy: no-referrer-when-downgrade
access-control-allow-origin: https://apex-investments.co
set-cookie: _yasc=Epj5WtU8ww36xUxg4g6Uq6EsMJElPd83mngHcWqDigENktzpV4I4TygAG3qE; domain=.yandex.net; path=/; expires=Sat, 27-Nov-2032 04:52:33 GMT; secure
content-language: en
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document, ASCII text, with very long lines (2660)
Size:   43439
Md5:    cf3cf70ecc0588651f78aadf9e93fdfc
Sha1:   1a10c0eee097d46106b85a109591e86fe0e34a10
Sha256: 055ffa9d470e88a4066b19c6d43ea4adb06414c2d36d5fb53d0f2f1b8f241a59
                                        
                                            GET /v1/cryptocurrency/widget?id=1,1027,825,1958,1839,3513,74,2,5805,1831&convert_id=2781 HTTP/1.1 
Host: 3rdparty-apis.coinmarketcap.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://apex-investments.co
Connection: keep-alive
Referer: https://apex-investments.co/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         54.230.111.46
HTTP/2 200 OK
content-type: application/json; charset=utf-8
                                        
date: Wed, 30 Nov 2022 04:52:29 GMT
server: Tengine
access-control-allow-credentials: false
access-control-allow-origin: *
access-control-expose-headers: WWW-Authenticate,Server-Authorization
cache-control: max-age=30, must-revalidate
content-encoding: gzip
x-envoy-decorator-operation: coinmarketcap-thirdparty-apis.cmc-api.svc.cluster.local:80/*
x-envoy-upstream-service-time: 19
x-traefik-route: coinmarketcap-thirdparty-apis
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: origin-when-cross-origin
strict-transport-security: max-age=31536000; includeSubdomains
vary: accept-encoding
x-cache: Hit from cloudfront
via: 1.1 98794c1dec0d4e7b10ddf0faa094cf94.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: YayyuPGoIBdwY5JKMRDjn17zHR5g-4TFgVo2DvKOzN9YJHq4A3f3sg==
age: 4
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   45571
Md5:    ad0dbaf7ce0e6ed4a452f5865ff115bd
Sha1:   ae37e26011bd3c0421a2a003003b0c826a8f4a6f
Sha256: f4500f7b4e6d812ce23b8829966e82318d816137934b2934d59ec6f2e3ef7955
                                        
                                            POST / HTTP/1.1 
Host: ocsp.sca1b.amazontrust.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         143.204.42.88
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=134823
Date: Wed, 30 Nov 2022 04:52:33 GMT
Etag: "63864617-1d7"
Expires: Thu, 01 Dec 2022 18:19:36 GMT
Last-Modified: Tue, 29 Nov 2022 17:49:11 GMT
Server: ECS (bsa/EB1B)
X-Cache: Miss from cloudfront
Via: 1.1 c9f2a4d2bcd548d1a3cbe1617a22f216.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: O9s3PIjrkRs1xoWIep5GoUDylDSlKQN8yH9A_7z5jNUz40o8NFpx-w==
Age: 1825

                                        
                                            GET /widget/bundle.js HTTP/1.1 
Host: static.getbutton.io
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://apex-investments.co/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         176.9.188.20
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx/1.23.1
Date: Wed, 30 Nov 2022 04:52:33 GMT
Last-Modified: Wed, 16 Nov 2022 07:07:30 GMT
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"63748c32-4a576"
Expires: Wed, 30 Nov 2022 07:52:33 GMT
Cache-Control: max-age=10800
Access-Control-Allow-Origin: *
Content-Encoding: gzip


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (65475)
Size:   94215
Md5:    d8cd247eabac0219996f3e07e4a9a211
Sha1:   bf8835bf60ec200dbdb7498c9c0e68d42f1c6030
Sha256: 7ba300201e1d30489a65dda4a1c35e25d6281b47d064d37a843892e138849b3e
                                        
                                            GET /static/img/coins/32x32/74.png HTTP/1.1 
Host: s2.coinmarketcap.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://apex-investments.co/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         143.204.55.80
HTTP/2 200 OK
content-type: image/png
                                        
content-length: 1513
last-modified: Fri, 14 May 2021 01:41:04 GMT
accept-ranges: bytes
server: AmazonS3
date: Wed, 30 Nov 2022 04:47:28 GMT
etag: "ad8faf0475a17ef069e1d7536e44a561"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 76c917e0bb0ba45eb834d25d76ee125e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: ZiptO2q5h15RR2spEjKVDLIgQ5Zk-dR88uzvfcpdyRyANWzQf_ZKMw==
age: 6781
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced\012- data
Size:   1513
Md5:    ad8faf0475a17ef069e1d7536e44a561
Sha1:   eeb366c51cd2e47d736e2b392cef82a9b4b5a34b
Sha256: 89d53a240127fb371f01855b2ca02c0fc46f4f9be520229eb414b1ed1f3489af
                                        
                                            GET /static/img/coins/32x32/1958.png HTTP/1.1 
Host: s2.coinmarketcap.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://apex-investments.co/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         143.204.55.80
HTTP/2 200 OK
content-type: image/png
                                        
content-length: 1478
last-modified: Mon, 07 Dec 2020 19:07:51 GMT
accept-ranges: bytes
server: AmazonS3
date: Wed, 30 Nov 2022 04:47:28 GMT
etag: "6378a7bd4ec1056f91c3fd783b22263b"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 76c917e0bb0ba45eb834d25d76ee125e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: CrU_oetNekOQ7ATp4XteC0_JclSlQCnr9lQBnrN63eIL0Gfqb-fEWA==
age: 7437
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 32 x 32, 8-bit colormap, non-interlaced\012- data
Size:   1478
Md5:    6378a7bd4ec1056f91c3fd783b22263b
Sha1:   a29c560d9eda5099bb1643569dca56728d80e991
Sha256: 376da0eee16f85a651360f09bff6ad6b135520c4298c0ae8012e1bd70c920caf
                                        
                                            GET /static/img/coins/32x32/1839.png HTTP/1.1 
Host: s2.coinmarketcap.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://apex-investments.co/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         143.204.55.80
HTTP/2 200 OK
content-type: image/png
                                        
content-length: 619
last-modified: Thu, 17 Feb 2022 08:19:34 GMT
accept-ranges: bytes
server: AmazonS3
date: Wed, 30 Nov 2022 04:01:06 GMT
etag: "b0abdaee81de6fc0c1fb3bbb150d752f"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 76c917e0bb0ba45eb834d25d76ee125e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: m9kCrX166bPFpZKZISTilMF_gOTPhkBVQTfgijB9a848fhhaXgYrUA==
age: 6280
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced\012- data
Size:   619
Md5:    b0abdaee81de6fc0c1fb3bbb150d752f
Sha1:   e090189b43a9be7cacc2873045e0ab41dfcc5bc7
Sha256: 1cddd83c4a977e459b4294d3fc77c28f77e51bfdfb6f468528d56f487a26e6a8
                                        
                                            GET /static/img/coins/32x32/3513.png HTTP/1.1 
Host: s2.coinmarketcap.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://apex-investments.co/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         143.204.55.80
HTTP/2 200 OK
content-type: image/png
                                        
content-length: 333
last-modified: Wed, 27 Jan 2021 20:22:04 GMT
accept-ranges: bytes
server: AmazonS3
date: Tue, 29 Nov 2022 09:38:10 GMT
etag: "cacf5b5e0fa116a97c90371b63b39c85"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 76c917e0bb0ba45eb834d25d76ee125e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: LvhUyXz83ZQ1zoxOYeurlFtcjWECAOI83Ft67lwX6lG7eQ-h76f4jw==
age: 69264
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced\012- data
Size:   333
Md5:    cacf5b5e0fa116a97c90371b63b39c85
Sha1:   2012a0c1f08075302e8f97e91f8d520cbdb4bab0
Sha256: 55fe92b8de0d1af2a4902c0b6b43202f3907b49bd4539574b98bf650be5b7bbe
                                        
                                            GET /static/img/coins/32x32/5805.png HTTP/1.1 
Host: s2.coinmarketcap.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://apex-investments.co/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         143.204.55.80
HTTP/2 200 OK
content-type: image/png
                                        
content-length: 284
last-modified: Wed, 27 Apr 2022 07:39:01 GMT
accept-ranges: bytes
server: AmazonS3
date: Wed, 30 Nov 2022 01:59:18 GMT
etag: "6457f213b884cb60d09f48aee9b780e0"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 76c917e0bb0ba45eb834d25d76ee125e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: h4sbzDmMsF1KZ0im6Un8k4FPy8j7oOtCTasjQZjiBp8TjLaWgU7iug==
age: 14021
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced\012- data
Size:   284
Md5:    6457f213b884cb60d09f48aee9b780e0
Sha1:   b0e70548e6d1face42f0acfbeae51c91292f7a53
Sha256: 46fdf9db3469ac1a9d5b599e386fbeacf1b062bb357490c90fe09c6af782bacd
                                        
                                            GET /static/img/coins/32x32/1027.png HTTP/1.1 
Host: s2.coinmarketcap.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://apex-investments.co/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         143.204.55.80
HTTP/2 200 OK
content-type: image/png
                                        
content-length: 1759
last-modified: Mon, 07 Dec 2020 19:06:44 GMT
accept-ranges: bytes
server: AmazonS3
date: Tue, 29 Nov 2022 06:20:08 GMT
etag: "260aeac4b1626aecd0e88471a14ad8d9"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 76c917e0bb0ba45eb834d25d76ee125e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: OKiI6oaXn8cCV8J1kD533Ut5CAp5VnNR7k0vHnuqvZseetGY-c8ATg==
age: 81607
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 32 x 32, 8-bit colormap, non-interlaced\012- data
Size:   1759
Md5:    260aeac4b1626aecd0e88471a14ad8d9
Sha1:   c575ce19a2a34cfacf9c84c04ff896827c65d933
Sha256: 51a9972c6f13b5510730dff6c349f812510c778b2f7722f00426c287246c50cf
                                        
                                            GET /wp-content/uploads/2021/01/subscribe-bg.jpg HTTP/1.1 
Host: apex-investments.co
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://apex-investments.co/wp-content/uploads/elementor/css/post-53022.css?ver=1626935236
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         66.29.132.83
HTTP/2 200 OK
content-type: image/jpeg
                                        
cache-control: public, max-age=604800
expires: Wed, 07 Dec 2022 04:52:32 GMT
last-modified: Sat, 19 Jun 2021 13:04:40 GMT
accept-ranges: bytes
content-length: 47713
date: Wed, 30 Nov 2022 04:52:32 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, baseline, precision 8, 1920x544, components 3\012- data
Size:   47713
Md5:    b04406d68f1376005c36c5eec73031b8
Sha1:   09a535627012fd9bd6c6ed3f1edad72c7834acab
Sha256: f619dee2410ac9e109c09175549d32bcbf4e3400e87bbb4fd2fa094ef9b487b0

Alerts:
  Blocklists:
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            GET /static/img/coins/32x32/1.png HTTP/1.1 
Host: s2.coinmarketcap.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://apex-investments.co/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         143.204.55.80
HTTP/2 200 OK
content-type: image/png
                                        
content-length: 1573
last-modified: Mon, 07 Dec 2020 19:06:42 GMT
accept-ranges: bytes
server: AmazonS3
date: Tue, 29 Nov 2022 05:25:40 GMT
etag: "9b9545b0e6a87b4aa1009f10f35c37d2"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 76c917e0bb0ba45eb834d25d76ee125e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: HGL5uGtSatSU2zM82rfEBWnRc1gwHoDubj8DYfhHE7-dDif-gy4t4Q==
age: 84953
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 32 x 32, 8-bit colormap, non-interlaced\012- data
Size:   1573
Md5:    9b9545b0e6a87b4aa1009f10f35c37d2
Sha1:   f5f942a5ea3a33ffcfb3d1d6e64233571bf843b5
Sha256: 2b6064887ef3e3f56b479f8ea7f09711dd735504e5ba4f937ca2243eed79ca08
                                        
                                            GET /wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-solid-900.woff2 HTTP/1.1 
Host: apex-investments.co
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://apex-investments.co/wp-content/plugins/elementor/assets/lib/font-awesome/css/solid.min52d5.css?ver=5.15.3
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         66.29.132.83
HTTP/2 200 OK
content-type: font/woff2
                                        
cache-control: public, max-age=604800
expires: Wed, 07 Dec 2022 04:52:32 GMT
last-modified: Thu, 22 Jul 2021 10:57:58 GMT
accept-ranges: bytes
content-length: 78196
date: Wed, 30 Nov 2022 04:52:32 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 78196, version 331.-31261\012- data
Size:   78196
Md5:    e8a427e15cc502bef99cfd722b37ea98
Sha1:   a9922842a120a7f1eaced667480c5e185a106d69
Sha256: d0b4256abed72481585662971262eabee345c19f837af00d7ce24239d3b40eef

Alerts:
  Blocklists:
    - fortinet: Malware
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            GET /wp-content/plugins/finpress-core/assets/icons/Flaticon.woff2 HTTP/1.1 
Host: apex-investments.co
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://apex-investments.co/wp-content/plugins/finpress-core/assets/icons/flaticon8a54.css?ver=1.0.0
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         66.29.132.83
HTTP/2 200 OK
content-type: font/woff2
                                        
cache-control: public, max-age=604800
expires: Wed, 07 Dec 2022 04:52:32 GMT
last-modified: Sat, 19 Jun 2021 13:03:46 GMT
accept-ranges: bytes
content-length: 15412
date: Wed, 30 Nov 2022 04:52:32 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 15412, version 1.0\012- data
Size:   15412
Md5:    ec9b64240367817c6e1d36210a611a00
Sha1:   8fcc7146eb918d26501014e0e8f5832d6998f328
Sha256: bdde1fc52ff5ccb4f6de948c5cb3ce0008a490b64ef6b038be483fbf5d80df3f

Alerts:
  Blocklists:
    - fortinet: Malware
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            GET /wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-regular-400.woff2 HTTP/1.1 
Host: apex-investments.co
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://apex-investments.co/wp-content/plugins/elementor/assets/lib/font-awesome/css/regular.min52d5.css?ver=5.15.3
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         66.29.132.83
HTTP/2 200 OK
content-type: font/woff2
                                        
cache-control: public, max-age=604800
expires: Wed, 07 Dec 2022 04:52:32 GMT
last-modified: Thu, 22 Jul 2021 10:57:58 GMT
accept-ranges: bytes
content-length: 13276
date: Wed, 30 Nov 2022 04:52:32 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 13276, version 331.-31261\012- data
Size:   13276
Md5:    f0f8230116992e521526097a28f54066
Sha1:   0447c6b10bbf73f97b23dcfd6e6a48510822cb6e
Sha256: 8afc6e5e842baab16010c2ce6fcf48ec4ded8e1579a37c1f1bc027e120d04951

Alerts:
  Blocklists:
    - fortinet: Malware
    - mnemonic_dns: Sinkholed
    - quad9: Sinkholed
                                        
                                            GET /static/img/coins/32x32/1831.png HTTP/1.1 
Host: s2.coinmarketcap.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://apex-investments.co/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         143.204.55.80
HTTP/2 200 OK
content-type: image/png
                                        
content-length: 1619
last-modified: Mon, 07 Dec 2020 19:07:42 GMT
accept-ranges: bytes
server: AmazonS3
date: Tue, 29 Nov 2022 10:53:42 GMT
etag: "b070198faee6189cfd60d94afbaceb34"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 76c917e0bb0ba45eb834d25d76ee125e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: WZ_Dw6IIXWOm9XFGRI6CVLztKkA_0AF9FkbjSF95QHc3_Zwinqir1Q==
age: 64732
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 32 x 32, 8-bit colormap, non-interlaced\012- data
Size:   1619
Md5:    b070198faee6189cfd60d94afbaceb34
Sha1:   df3cee56df2c7b69edccb47153522b350df898c5
Sha256: a22ab0ba139cafae893ff456ebc3fad13d456074d669db029f011cf0a8b531cd
                                        
                                            GET /static/img/coins/32x32/2.png HTTP/1.1 
Host: s2.coinmarketcap.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://apex-investments.co/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         143.204.55.80
HTTP/2 200 OK
content-type: image/png
                                        
content-length: 1507
last-modified: Mon, 07 Dec 2020 19:07:54 GMT