r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash b7be8442ec1e518ccc80739495f6d047
7a9d24b9d4046262c7753c49afaf9c19f4840626
b93410a9d62da3f219796d753b61a0f730cc272c13596724aa9d20efba298b44
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B93410A9D62DA3F219796D753B61A0F730CC272C13596724AA9D20EFBA298B44"
Last-Modified: Thu, 03 Nov 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13215
Expires: Fri, 04 Nov 2022 18:56:08 GMT
Date: Fri, 04 Nov 2022 15:15:53 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash cd02b32dbc8416dcb10b468af2166c33
503a9c4cabdb19dfde769f5e2d3ef919c818c364
46ca638514d9d4cf252762fdac37a5e7b1da550fcc9911070b0b26a6aa6150a7
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5483
Cache-Control: max-age=157595
Content-Type: application/ocsp-response
Date: Fri, 04 Nov 2022 15:15:53 GMT
Etag: "6364dbd9-1d7"
Expires: Sun, 06 Nov 2022 11:02:28 GMT
Last-Modified: Fri, 04 Nov 2022 09:31:05 GMT
Server: ECS (ska/F719)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash cd02b32dbc8416dcb10b468af2166c33
503a9c4cabdb19dfde769f5e2d3ef919c818c364
46ca638514d9d4cf252762fdac37a5e7b1da550fcc9911070b0b26a6aa6150a7
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5483
Cache-Control: max-age=157595
Content-Type: application/ocsp-response
Date: Fri, 04 Nov 2022 15:15:53 GMT
Etag: "6364dbd9-1d7"
Expires: Sun, 06 Nov 2022 11:02:28 GMT
Last-Modified: Fri, 04 Nov 2022 09:31:05 GMT
Server: ECS (ska/F719)
X-Cache: HIT
Content-Length: 471
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 9f3527f898221f8ba6b5015f6decc100
ead93baa0e9d3a6297be3377dc3a624e5a3f509a
73a068f907cc50dd60af18d545b4264dd44bc4b9f40bf9adfceea157fdc33099
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "73A068F907CC50DD60AF18D545B4264DD44BC4B9F40BF9ADFCEEA157FDC33099"
Last-Modified: Thu, 03 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9823
Expires: Fri, 04 Nov 2022 17:59:37 GMT
Date: Fri, 04 Nov 2022 15:15:54 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 67d5a988edcda47bc3b3b3f65d32b4b6
d4f0e0da8b3690cc7da925026d3414b68c7d954f
55e4848e3ec682e808ce7ee70950f86179c43af4f81926d826a95edfda395a78
GET /chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: le2d+p3Qmg7WVXcbRip3S79qedFOCv80/tjSl01luXKFW8CD+kpZCYF7GzxlRwZNRokXoFuo7N8=
x-amz-request-id: J4QQWE68VXMGACW5
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Fri, 04 Nov 2022 15:09:38 GMT
age: 376
last-modified: Fri, 30 Sep 2022 18:50:55 GMT
etag: "67d5a988edcda47bc3b3b3f65d32b4b6"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
winnerinvestgroup.com/
162.241.253.159200 OK 19 kB IP 162.241.253.159:0
ASN #46606 UNIFIEDLAYER-AS-1
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (2356)
Hash 5b02209b47b4ed1dcd27e126d3452388
b49ea7da3c2e2c7bc8aba78d639fc82ba5b9a357
2f923635e93b164ef32d55f3a8c0d78c1be8ee0bfcafaf492a9f2a837be67124
Analyzer Verdict Alert openphish Crypto/Wallet
fortinet Phishing
GET / HTTP/1.1
Host: winnerinvestgroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Date: Fri, 04 Nov 2022 15:15:53 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Thu, 17 Feb 2022 09:31:30 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
Keep-Alive: timeout=5, max=75
Transfer-Encoding: chunked
Content-Type: text/html
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 04 Nov 2022 15:15:54 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
winnerinvestgroup.com/wp-includes/css/dist/block-library/style.min080f.css?ver=5.8.2
162.241.253.159200 OK 15 kB URL HTTP/1.1 winnerinvestgroup.com/wp-includes/css/dist/block-library/style.min080f.css?ver=5.8.2
IP 162.241.253.159:0
ASN #46606 UNIFIEDLAYER-AS-1
File type Unicode text, UTF-8 text, with very long lines (33376)
Hash 6ebc7a4d773cb1f29a93f605933fba76
b113ca39afc5fd44cbc06dca58945bb5e9fb771e
7a12133f8cb48c1b5b4631ee9e9a0eebe36bbf2bbe1eb792b0f9fc630c18bd76
GET /wp-includes/css/dist/block-library/style.min080f.css?ver=5.8.2 HTTP/1.1
Host: winnerinvestgroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://winnerinvestgroup.com/
HTTP/1.1 200 OK
Date: Fri, 04 Nov 2022 15:15:54 GMT
Server: Apache
Last-Modified: Wed, 30 Mar 2022 11:51:53 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
Content-Length: 14560
Keep-Alive: timeout=5, max=74
Connection: Keep-Alive
Content-Type: text/css
winnerinvestgroup.com/wp-content/plugins/wp-live-chat-software-for-wordpress/plugin_files/css/livechat-icons62d0.css?ver=4.5.3
162.241.253.159200 OK 338 B URL HTTP/1.1 winnerinvestgroup.com/wp-content/plugins/wp-live-chat-software-for-wordpress/plugin_files/css/livechat-icons62d0.css?ver=4.5.3
IP 162.241.253.159:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash 658cd2ab3356e16ad6bb64a1f77cb91a
9fd9cdcc561cd1f96495814c43752c9873e21681
92aab001770e96d1f9d1b3c8273d7e8d053625085c6aa600e2d3012fce9fc9ee
GET /wp-content/plugins/wp-live-chat-software-for-wordpress/plugin_files/css/livechat-icons62d0.css?ver=4.5.3 HTTP/1.1
Host: winnerinvestgroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://winnerinvestgroup.com/
HTTP/1.1 200 OK
Date: Fri, 04 Nov 2022 15:15:54 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Wed, 30 Mar 2022 11:51:52 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
Content-Length: 338
Keep-Alive: timeout=5, max=75
Content-Type: text/css
winnerinvestgroup.com/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-vendors-style5c45.css?ver=6.3.3
162.241.253.159200 OK 1.7 kB URL HTTP/1.1 winnerinvestgroup.com/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-vendors-style5c45.css?ver=6.3.3
IP 162.241.253.159:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (5305), with no line terminators
Hash 0332c949167f256eaeb32063c28950ae
55d38da2c11e1b193de19a9fa3a6a275a4accdfe
1c1dcbb08352422a98b8dd9632753b904e9040eea0a538dc2d169935e7fa5fb3
Analyzer Verdict Alert openphish Crypto/Wallet
fortinet Phishing
GET /wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-vendors-style5c45.css?ver=6.3.3 HTTP/1.1
Host: winnerinvestgroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://winnerinvestgroup.com/
HTTP/1.1 200 OK
Date: Fri, 04 Nov 2022 15:15:54 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Wed, 30 Mar 2022 11:51:52 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
Content-Length: 1723
Keep-Alive: timeout=5, max=75
Content-Type: text/css
winnerinvestgroup.com/wp-content/plugins/formcraft/dist/form3430.css?ver=3.7.5
162.241.253.159200 OK 14 kB URL HTTP/1.1 winnerinvestgroup.com/wp-content/plugins/formcraft/dist/form3430.css?ver=3.7.5
IP 162.241.253.159:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (63972), with no line terminators
Hash 198ff6350423a9bc12fc8e87ac052402
b357b061c50a2265987bfc13272de9274808f87b
6d6f64f8f3ec9c3aab3e7b783c4aa3a378a5361b43e762879bae8b2c99643694
GET /wp-content/plugins/formcraft/dist/form3430.css?ver=3.7.5 HTTP/1.1
Host: winnerinvestgroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://winnerinvestgroup.com/
HTTP/1.1 200 OK
Date: Fri, 04 Nov 2022 15:15:54 GMT
Server: Apache
Last-Modified: Wed, 30 Mar 2022 11:51:52 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
Content-Length: 13458
Keep-Alive: timeout=5, max=73
Connection: Keep-Alive
Content-Type: text/css
winnerinvestgroup.com/wp-content/plugins/revslider/public/assets/css/settings23da.css?ver=5.4.8
162.241.253.159200 OK 12 kB URL HTTP/1.1 winnerinvestgroup.com/wp-content/plugins/revslider/public/assets/css/settings23da.css?ver=5.4.8
IP 162.241.253.159:0
ASN #46606 UNIFIEDLAYER-AS-1
File type Unicode text, UTF-8 text, with very long lines (5178), with CRLF line terminators
Hash 420d3926527788e79d29df1d6d25abb2
04117609e648756b5f601e11c01897d891d40b02
96ab3795c52e1ef8cc82db93ab81508ed2a44a18ea887b3e49f5a01108e2a6d5
Analyzer Verdict Alert openphish Crypto/Wallet
fortinet Phishing
GET /wp-content/plugins/revslider/public/assets/css/settings23da.css?ver=5.4.8 HTTP/1.1
Host: winnerinvestgroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://winnerinvestgroup.com/
HTTP/1.1 200 OK
Date: Fri, 04 Nov 2022 15:15:54 GMT
Server: Apache
Last-Modified: Wed, 30 Mar 2022 11:51:52 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
Content-Length: 12204
Keep-Alive: timeout=5, max=74
Connection: Keep-Alive
Content-Type: text/css
winnerinvestgroup.com/wp-content/plugins/formcraft/dist/formcraft-common3430.css?ver=3.7.5
162.241.253.159200 OK 8.1 kB URL HTTP/1.1 winnerinvestgroup.com/wp-content/plugins/formcraft/dist/formcraft-common3430.css?ver=3.7.5
IP 162.241.253.159:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (28207), with no line terminators
Hash 5b2863f7a32d92a6e2599ccdf8087ca3
364cd39b56a8c7e773b22677aa11fb6359bd12f7
b36261df7fb6eed4a395bd7f8f0cdaf504d91aac9fc12f7f1e2f872b84a0fdfe
GET /wp-content/plugins/formcraft/dist/formcraft-common3430.css?ver=3.7.5 HTTP/1.1
Host: winnerinvestgroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://winnerinvestgroup.com/
HTTP/1.1 200 OK
Date: Fri, 04 Nov 2022 15:15:54 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Wed, 30 Mar 2022 11:51:52 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
Content-Length: 8070
Keep-Alive: timeout=5, max=75
Content-Type: text/css
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 471 B IP 142.250.74.35:0
Hash b88610b42bd507f0ac1700d26db03fbb
073bcc479dfbe62a2691dbdfc3c87a99bcdc2fc4
4e544dd8861a1438b1667462866044f8646dfefb42f3bc6cbac2de324de4b568
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 04 Nov 2022 15:15:54 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 471 B IP 142.250.74.35:0
Hash b88610b42bd507f0ac1700d26db03fbb
073bcc479dfbe62a2691dbdfc3c87a99bcdc2fc4
4e544dd8861a1438b1667462866044f8646dfefb42f3bc6cbac2de324de4b568
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 04 Nov 2022 15:15:54 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
winnerinvestgroup.com/wp-content/themes/suprema/style080f.css?ver=5.8.2
162.241.253.159200 OK 266 B URL HTTP/1.1 winnerinvestgroup.com/wp-content/themes/suprema/style080f.css?ver=5.8.2
IP 162.241.253.159:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash 1bbd43196c4f9f2c694cd69102981d53
b8243fd85d46dba227df6447dbcaa99c9c89bd89
ea801c02e1131579633a750cd67b5812ff23ba9c49d1d17ae84f46863c782f55
Analyzer Verdict Alert openphish Crypto/Wallet
fortinet Phishing
GET /wp-content/themes/suprema/style080f.css?ver=5.8.2 HTTP/1.1
Host: winnerinvestgroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://winnerinvestgroup.com/
HTTP/1.1 200 OK
Date: Fri, 04 Nov 2022 15:15:54 GMT
Server: Apache
Last-Modified: Wed, 30 Mar 2022 11:51:52 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
Content-Length: 266
Keep-Alive: timeout=5, max=74
Connection: Keep-Alive
Content-Type: text/css
winnerinvestgroup.com/wp-content/themes/suprema/assets/css/plugins.min080f.css?ver=5.8.2
162.241.253.159200 OK 12 kB URL HTTP/1.1 winnerinvestgroup.com/wp-content/themes/suprema/assets/css/plugins.min080f.css?ver=5.8.2
IP 162.241.253.159:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (50028), with no line terminators
Hash df0057003c0ac5caffb3d20aa199b45b
ea58364eea08896cc2e4c6d7895d563eda1d7fd1
39a0f4f8888b43c55921723d22b70575287f0bcfcc45749ba21fdab6ba71581d
Analyzer Verdict Alert openphish Crypto/Wallet
fortinet Phishing
GET /wp-content/themes/suprema/assets/css/plugins.min080f.css?ver=5.8.2 HTTP/1.1
Host: winnerinvestgroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://winnerinvestgroup.com/
HTTP/1.1 200 OK
Date: Fri, 04 Nov 2022 15:15:54 GMT
Server: Apache
Last-Modified: Wed, 30 Mar 2022 11:51:52 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
Content-Length: 12156
Keep-Alive: timeout=5, max=72
Connection: Keep-Alive
Content-Type: text/css
winnerinvestgroup.com/wp-content/themes/suprema/assets/css/font-awesome/css/font-awesome.min080f.css?ver=5.8.2
162.241.253.159200 OK 7.1 kB URL HTTP/1.1 winnerinvestgroup.com/wp-content/themes/suprema/assets/css/font-awesome/css/font-awesome.min080f.css?ver=5.8.2
IP 162.241.253.159:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (30861)
Hash 5035fadc46ccb6830038f796315f1c5d
6a411c58194159cb76b34bbab796f23371716a31
c7dc9cc6cd68208b505c17295512889ae0a77aeb1e9989b2ec2076456f3d7291
Analyzer Verdict Alert openphish Crypto/Wallet
fortinet Phishing
GET /wp-content/themes/suprema/assets/css/font-awesome/css/font-awesome.min080f.css?ver=5.8.2 HTTP/1.1
Host: winnerinvestgroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://winnerinvestgroup.com/
HTTP/1.1 200 OK
Date: Fri, 04 Nov 2022 15:15:54 GMT
Server: Apache
Last-Modified: Wed, 30 Mar 2022 11:51:52 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
Content-Length: 7121
Keep-Alive: timeout=5, max=74
Connection: Keep-Alive
Content-Type: text/css
winnerinvestgroup.com/wp-content/plugins/contact-form-7/includes/css/styles5697.css?ver=5.5.3
162.241.253.159409 Conflict 83 B URL HTTP/1.1 winnerinvestgroup.com/wp-content/plugins/contact-form-7/includes/css/styles5697.css?ver=5.5.3
IP 162.241.253.159:0
ASN #46606 UNIFIEDLAYER-AS-1
File type HTML document, ASCII text, with no line terminators
Hash 26267cd8990f15d3bbea71684a6d5995
ac3b38cf3fe0e112bb6aeb7e05226b7133575d93
769e8ab745a0fe4bf811036e75a8630e38c50a18cb3e24d539ce4a0722c7c85e
GET /wp-content/plugins/contact-form-7/includes/css/styles5697.css?ver=5.5.3 HTTP/1.1
Host: winnerinvestgroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://winnerinvestgroup.com/
HTTP/1.1 409 Conflict
Date: Fri, 04 Nov 2022 15:15:54 GMT
Server: Apache
Content-Length: 83
Keep-Alive: timeout=5, max=75
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
winnerinvestgroup.com/wp-content/themes/suprema/assets/css/elegant-icons/style.min080f.css?ver=5.8.2
162.241.253.159200 OK 4.9 kB URL HTTP/1.1 winnerinvestgroup.com/wp-content/themes/suprema/assets/css/elegant-icons/style.min080f.css?ver=5.8.2
IP 162.241.253.159:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (21773), with no line terminators
Hash dffd20fd9d5e9811944dfee3e9dfcc58
2bdece6d6983a6f842b58b301d8a75db71e0f744
33f6995616e85c00811368e58a7784db3dd89339da3a6855398ad7fd3c7ac5da
Analyzer Verdict Alert openphish Crypto/Wallet
fortinet Phishing
GET /wp-content/themes/suprema/assets/css/elegant-icons/style.min080f.css?ver=5.8.2 HTTP/1.1
Host: winnerinvestgroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://winnerinvestgroup.com/
HTTP/1.1 200 OK
Date: Fri, 04 Nov 2022 15:15:54 GMT
Server: Apache
Last-Modified: Wed, 30 Mar 2022 11:51:52 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
Content-Length: 4851
Keep-Alive: timeout=5, max=73
Connection: Keep-Alive
Content-Type: text/css
winnerinvestgroup.com/wp-content/themes/suprema/assets/css/ion-icons/css/ionicons.min080f.css?ver=5.8.2
162.241.253.159200 OK 8.8 kB URL HTTP/1.1 winnerinvestgroup.com/wp-content/themes/suprema/assets/css/ion-icons/css/ionicons.min080f.css?ver=5.8.2
IP 162.241.253.159:0
ASN #46606 UNIFIEDLAYER-AS-1
File type Unicode text, UTF-8 text, with very long lines (50826)
Hash c829ddea8f5aa971ec978dd14f42ac4e
70278f25cb0ead0688980ec98c7c31cc4675d8f9
66444f9ae6768cf7bd574ccd90d6a7ea44a5ff355407485ccec436b77bb25e32
Analyzer Verdict Alert openphish Crypto/Wallet
fortinet Phishing
GET /wp-content/themes/suprema/assets/css/ion-icons/css/ionicons.min080f.css?ver=5.8.2 HTTP/1.1
Host: winnerinvestgroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://winnerinvestgroup.com/
HTTP/1.1 200 OK
Date: Fri, 04 Nov 2022 15:15:54 GMT
Server: Apache
Last-Modified: Wed, 30 Mar 2022 11:51:52 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
Content-Length: 8822
Keep-Alive: timeout=5, max=71
Connection: Keep-Alive
Content-Type: text/css
winnerinvestgroup.com/wp-content/themes/suprema/assets/css/modules.min080f.css?ver=5.8.2
162.241.253.159200 OK 65 kB URL HTTP/1.1 winnerinvestgroup.com/wp-content/themes/suprema/assets/css/modules.min080f.css?ver=5.8.2
IP 162.241.253.159:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (65536), with no line terminators
Hash 06058c990880efce66c707a432e274c7
3196fc3cd13eec178d064a87889300f2585c5d0a
1365213ada0f6d5dc04dbdd397bc87a48bc72db338e21092ab34d3d825a7561d
Analyzer Verdict Alert openphish Crypto/Wallet
fortinet Phishing
GET /wp-content/themes/suprema/assets/css/modules.min080f.css?ver=5.8.2 HTTP/1.1
Host: winnerinvestgroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://winnerinvestgroup.com/
HTTP/1.1 200 OK
Date: Fri, 04 Nov 2022 15:15:54 GMT
Server: Apache
Last-Modified: Wed, 30 Mar 2022 11:51:52 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
Keep-Alive: timeout=5, max=73
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/css
winnerinvestgroup.com/wp-content/themes/suprema/assets/css/linea-icons/style080f.css?ver=5.8.2
162.241.253.159200 OK 9.4 kB URL HTTP/1.1 winnerinvestgroup.com/wp-content/themes/suprema/assets/css/linea-icons/style080f.css?ver=5.8.2
IP 162.241.253.159:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (373)
Hash 638a0d61050791a224b969b2b85c68b3
758cfe433ae5d74eb5926f30fae34f0da90c488f
c020583ef13d1367b4bb87419cf86dba38a88607601f2ab8804dcffed3c49acd
Analyzer Verdict Alert openphish Crypto/Wallet
fortinet Phishing
GET /wp-content/themes/suprema/assets/css/linea-icons/style080f.css?ver=5.8.2 HTTP/1.1
Host: winnerinvestgroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://winnerinvestgroup.com/
HTTP/1.1 200 OK
Date: Fri, 04 Nov 2022 15:15:54 GMT
Server: Apache
Last-Modified: Wed, 30 Mar 2022 11:51:52 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
Content-Length: 9355
Keep-Alive: timeout=5, max=73
Connection: Keep-Alive
Content-Type: text/css
winnerinvestgroup.com/wp-content/themes/suprema/assets/css/simple-line-icons/simple-line-icons080f.css?ver=5.8.2
162.241.253.159200 OK 2.9 kB URL HTTP/1.1 winnerinvestgroup.com/wp-content/themes/suprema/assets/css/simple-line-icons/simple-line-icons080f.css?ver=5.8.2
IP 162.241.253.159:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (364)
Hash c248c10cb8c51c54d8cdda4264ab335e
abc16c4927d61ba3ca5e074b90176bd48a55d182
55dd153d1e54059d055064683428e0d444ec387311e4e6216b59544056d0001c
Analyzer Verdict Alert openphish Crypto/Wallet
fortinet Phishing
GET /wp-content/themes/suprema/assets/css/simple-line-icons/simple-line-icons080f.css?ver=5.8.2 HTTP/1.1
Host: winnerinvestgroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://winnerinvestgroup.com/
HTTP/1.1 200 OK
Date: Fri, 04 Nov 2022 15:15:54 GMT
Server: Apache
Last-Modified: Wed, 30 Mar 2022 11:51:52 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
Content-Length: 2886
Keep-Alive: timeout=5, max=72
Connection: Keep-Alive
Content-Type: text/css
winnerinvestgroup.com/wp-content/themes/suprema/assets/css/dripicons/dripicons080f.css?ver=5.8.2
162.241.253.159200 OK 1.1 kB URL HTTP/1.1 winnerinvestgroup.com/wp-content/themes/suprema/assets/css/dripicons/dripicons080f.css?ver=5.8.2
IP 162.241.253.159:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash 81803447aaf14289fa1a388753aec45e
0bc6b85c5ac981de1156f6723761e3953c897054
5afa74077c9dd3ef2445cf70d05285888ee0dca71cd2f98395dbf3432ec91bcd
GET /wp-content/themes/suprema/assets/css/dripicons/dripicons080f.css?ver=5.8.2 HTTP/1.1
Host: winnerinvestgroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://winnerinvestgroup.com/
HTTP/1.1 200 OK
Date: Fri, 04 Nov 2022 15:15:54 GMT
Server: Apache
Last-Modified: Wed, 30 Mar 2022 11:51:52 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
Content-Length: 1128
Keep-Alive: timeout=5, max=70
Connection: Keep-Alive
Content-Type: text/css
winnerinvestgroup.com/wp-content/themes/suprema/assets/css/style_dynamicf3cb.css?ver=1635076614
162.241.253.159200 OK 571 B URL HTTP/1.1 winnerinvestgroup.com/wp-content/themes/suprema/assets/css/style_dynamicf3cb.css?ver=1635076614
IP 162.241.253.159:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash dbb0ca05f6882adb2a2cc0a81d4f6254
3a2b15683d957e2dbbf3d1cf74eec63b1f6f2471
2165fb43e3510c05543594df0eaba340dbfe6aa5d4aa7105f90391c25a731444
GET /wp-content/themes/suprema/assets/css/style_dynamicf3cb.css?ver=1635076614 HTTP/1.1
Host: winnerinvestgroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://winnerinvestgroup.com/
HTTP/1.1 200 OK
Date: Fri, 04 Nov 2022 15:15:54 GMT
Server: Apache
Last-Modified: Wed, 30 Mar 2022 11:51:52 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
Content-Length: 571
Keep-Alive: timeout=5, max=72
Connection: Keep-Alive
Content-Type: text/css
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 42a0adacced30df52cf7cad3e200036d
f7b4114defc61f806dbb74fd228bca155d52362a
e4928481739a2a75dce86c03b355c6dff507426e8d851cba5ca8537b1be87c20
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2865
Cache-Control: max-age=149917
Content-Type: application/ocsp-response
Date: Fri, 04 Nov 2022 15:15:55 GMT
Etag: "6364c817-1d7"
Expires: Sun, 06 Nov 2022 08:54:32 GMT
Last-Modified: Fri, 04 Nov 2022 08:06:47 GMT
Server: ECS (ska/F719)
X-Cache: HIT
Content-Length: 471
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 471 B IP 142.250.74.35:0
Hash b88610b42bd507f0ac1700d26db03fbb
073bcc479dfbe62a2691dbdfc3c87a99bcdc2fc4
4e544dd8861a1438b1667462866044f8646dfefb42f3bc6cbac2de324de4b568
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 04 Nov 2022 15:15:55 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
winnerinvestgroup.com/wp-content/themes/suprema/assets/css/modules-responsive.min080f.css?ver=5.8.2
162.241.253.159200 OK 4.6 kB URL HTTP/1.1 winnerinvestgroup.com/wp-content/themes/suprema/assets/css/modules-responsive.min080f.css?ver=5.8.2
IP 162.241.253.159:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (28080), with no line terminators
Hash c36bc7d5566bf39491e8b9d37d9daa4a
5cfa43db7e00a5557fab1d6f9e00cd901c79ee94
53616e16a65e8b33dfeb51b460e86c53603ea1ddf86170279b96f13f167fc04a
GET /wp-content/themes/suprema/assets/css/modules-responsive.min080f.css?ver=5.8.2 HTTP/1.1
Host: winnerinvestgroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://winnerinvestgroup.com/
HTTP/1.1 200 OK
Date: Fri, 04 Nov 2022 15:15:54 GMT
Server: Apache
Last-Modified: Wed, 30 Mar 2022 11:51:52 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
Content-Length: 4585
Keep-Alive: timeout=5, max=72
Connection: Keep-Alive
Content-Type: text/css
winnerinvestgroup.com/wp-content/themes/suprema/assets/css/linear-icons/style080f.css?ver=5.8.2
162.241.253.159200 OK 1.6 kB URL HTTP/1.1 winnerinvestgroup.com/wp-content/themes/suprema/assets/css/linear-icons/style080f.css?ver=5.8.2
IP 162.241.253.159:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash a92661342b41e9f0059a69c69b4f1156
a3c996f0de892b10f2753949b7b2aa61ec94caf9
76d13128c12ad524b37585db197bd787302ad3ef4bb9082a5ac1815a1ad1970d
Analyzer Verdict Alert openphish Crypto/Wallet
fortinet Phishing
GET /wp-content/themes/suprema/assets/css/linear-icons/style080f.css?ver=5.8.2 HTTP/1.1
Host: winnerinvestgroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://winnerinvestgroup.com/
HTTP/1.1 200 OK
Date: Fri, 04 Nov 2022 15:15:55 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Wed, 30 Mar 2022 11:51:52 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
Content-Length: 1616
Keep-Alive: timeout=5, max=75
Content-Type: text/css
winnerinvestgroup.com/wp-content/themes/suprema/assets/css/blog-responsive.min080f.css?ver=5.8.2
162.241.253.159200 OK 467 B URL HTTP/1.1 winnerinvestgroup.com/wp-content/themes/suprema/assets/css/blog-responsive.min080f.css?ver=5.8.2
IP 162.241.253.159:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (2349), with no line terminators
Hash 0626f867ca948c9fce788562bfade2a8
7aa3549accc3d28a5cfd190b01d5c9cb84c65764
dc4996599f2a2782638e56459dade56e04dd422d1409b777f9e3d0356f763874
GET /wp-content/themes/suprema/assets/css/blog-responsive.min080f.css?ver=5.8.2 HTTP/1.1
Host: winnerinvestgroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://winnerinvestgroup.com/
HTTP/1.1 200 OK
Date: Fri, 04 Nov 2022 15:15:55 GMT
Server: Apache
Last-Modified: Wed, 30 Mar 2022 11:51:52 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
Content-Length: 467
Keep-Alive: timeout=5, max=71
Connection: Keep-Alive
Content-Type: text/css
winnerinvestgroup.com/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-style5c45.css?ver=6.3.3
162.241.253.159200 OK 43 kB URL HTTP/1.1 winnerinvestgroup.com/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-style5c45.css?ver=6.3.3
IP 162.241.253.159:0
ASN #46606 UNIFIEDLAYER-AS-1
File type Unicode text, UTF-8 text, with very long lines (65527), with no line terminators
Hash 1f01e4fcdb4069de3fd921d26ce3602f
6a020807d4eb6237aa59b2299ee918d84dcb0a2a
f41a5ef41bd88365d1a5ec57f44fd75116ccaa2460b33f5493036b414e44dc9d
GET /wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-style5c45.css?ver=6.3.3 HTTP/1.1
Host: winnerinvestgroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://winnerinvestgroup.com/
HTTP/1.1 200 OK
Date: Fri, 04 Nov 2022 15:15:54 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Wed, 30 Mar 2022 11:51:52 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
Keep-Alive: timeout=5, max=75
Transfer-Encoding: chunked
Content-Type: text/css
winnerinvestgroup.com/wp-content/themes/suprema/assets/css/style_dynamic_responsivef3cb.css?ver=1635076614
162.241.253.159200 OK 257 B URL HTTP/1.1 winnerinvestgroup.com/wp-content/themes/suprema/assets/css/style_dynamic_responsivef3cb.css?ver=1635076614
IP 162.241.253.159:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash b69b9974ac4564d1b1bc00071d69a7f2
ec1761ab929a46e3d408768056f2663952bd754d
e5c0a9e31504507f81c18f5fcec3b37275090cdbf676b4860e3a8cdcff76e454
Analyzer Verdict Alert openphish Crypto/Wallet
fortinet Phishing
GET /wp-content/themes/suprema/assets/css/style_dynamic_responsivef3cb.css?ver=1635076614 HTTP/1.1
Host: winnerinvestgroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://winnerinvestgroup.com/
HTTP/1.1 200 OK
Date: Fri, 04 Nov 2022 15:15:55 GMT
Server: Apache
Last-Modified: Wed, 30 Mar 2022 11:51:52 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
Content-Length: 257
Keep-Alive: timeout=5, max=69
Connection: Keep-Alive
Content-Type: text/css
winnerinvestgroup.com/wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min05c8.css?ver=5.13.0
162.241.253.159200 OK 3.9 kB URL HTTP/1.1 winnerinvestgroup.com/wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min05c8.css?ver=5.13.0
IP 162.241.253.159:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (18878)
Hash 367a096773d48d1c464796147972276b
2474963db9a332fe07b14cab78fda5ce3ed33604
6c8928eb5e25cd2ab7ba29bbc738beef84b186587f699b3121cc09e9e31f5f75
Analyzer Verdict Alert openphish Crypto/Wallet
fortinet Phishing
GET /wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min05c8.css?ver=5.13.0 HTTP/1.1
Host: winnerinvestgroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://winnerinvestgroup.com/
HTTP/1.1 200 OK
Date: Fri, 04 Nov 2022 15:15:55 GMT
Server: Apache
Last-Modified: Wed, 30 Mar 2022 11:51:52 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
Content-Length: 3928
Keep-Alive: timeout=5, max=71
Connection: Keep-Alive
Content-Type: text/css
winnerinvestgroup.com/wp-content/plugins/js_composer/assets/css/js_composer.min4245.css?ver=5.5.2
162.241.253.159200 OK 61 kB URL HTTP/1.1 winnerinvestgroup.com/wp-content/plugins/js_composer/assets/css/js_composer.min4245.css?ver=5.5.2
IP 162.241.253.159:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (65536), with no line terminators
Hash ec70e8267359ed786100384dcf614bd8
1603fb77efd3b2f3df41d581ceb914ee04469e71
2c6cf2af6e68f9d792c7fd8554d9909208b100f7eb123a8052dadd7d35f92e81
Analyzer Verdict Alert openphish Crypto/Wallet
fortinet Phishing
GET /wp-content/plugins/js_composer/assets/css/js_composer.min4245.css?ver=5.5.2 HTTP/1.1
Host: winnerinvestgroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://winnerinvestgroup.com/
HTTP/1.1 200 OK
Date: Fri, 04 Nov 2022 15:15:55 GMT
Server: Apache
Last-Modified: Wed, 30 Mar 2022 11:51:52 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
Keep-Alive: timeout=5, max=71
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/css
push.services.mozilla.com/
54.186.209.73101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 54.186.209.73:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: f2I6zgBnrGS9rL+sLCeemQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: YNMl4YhyqSjm7s50KFUWyLy+JN4=
winnerinvestgroup.com/wp-content/uploads/elementor/css/post-7d36c.css?ver=1640048428
162.241.253.159200 OK 328 B URL HTTP/1.1 winnerinvestgroup.com/wp-content/uploads/elementor/css/post-7d36c.css?ver=1640048428
IP 162.241.253.159:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (946), with no line terminators
Hash 0a518f91e70a77d29ecddb02aeb36fb7
2e0c9f13a37a5611b0677dc6355c1a3a26035d47
68e84b59f91bbcd3b6ed804c9825f6aa1fcd338100d3ba57cd567cf40edb19ec
Analyzer Verdict Alert openphish Crypto/Wallet
fortinet Phishing
GET /wp-content/uploads/elementor/css/post-7d36c.css?ver=1640048428 HTTP/1.1
Host: winnerinvestgroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://winnerinvestgroup.com/
HTTP/1.1 200 OK
Date: Fri, 04 Nov 2022 15:15:55 GMT
Server: Apache
Last-Modified: Wed, 30 Mar 2022 11:51:52 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
Content-Length: 328
Keep-Alive: timeout=5, max=70
Connection: Keep-Alive
Content-Type: text/css
winnerinvestgroup.com/wp-content/plugins/elementor-pro/assets/css/frontend-lite.mine485.css?ver=3.3.6
162.241.253.159200 OK 8.9 kB URL HTTP/1.1 winnerinvestgroup.com/wp-content/plugins/elementor-pro/assets/css/frontend-lite.mine485.css?ver=3.3.6
IP 162.241.253.159:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (50841)
Hash 51b78b3a716be44c7ee227088e61bbb3
86e47ce132f2b79a3f6caff63d4a373bcc9d3795
a5b1d50d2520f5989609794e998a6c791fd5a416f64192d579060ea76e21fc65
Analyzer Verdict Alert openphish Crypto/Wallet
fortinet Phishing
GET /wp-content/plugins/elementor-pro/assets/css/frontend-lite.mine485.css?ver=3.3.6 HTTP/1.1
Host: winnerinvestgroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://winnerinvestgroup.com/
HTTP/1.1 200 OK
Date: Fri, 04 Nov 2022 15:15:55 GMT
Server: Apache
Last-Modified: Wed, 30 Mar 2022 11:51:52 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
Content-Length: 8876
Keep-Alive: timeout=5, max=74
Connection: Keep-Alive
Content-Type: text/css
winnerinvestgroup.com/wp-content/uploads/elementor/css/globald36c.css?ver=1640048428
162.241.253.159200 OK 5.1 kB URL HTTP/1.1 winnerinvestgroup.com/wp-content/uploads/elementor/css/globald36c.css?ver=1640048428
IP 162.241.253.159:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (23067)
Hash 888f8af79730f28cbfd2c6a09ba3cc88
b5cb9e92c7546ab160b051e5616584d702540d0e
dd4d71a3cbdf6155eb30d139222858d2f1d50ab89b3bf9a283def6b4ec296b11
Analyzer Verdict Alert openphish Crypto/Wallet
fortinet Phishing
GET /wp-content/uploads/elementor/css/globald36c.css?ver=1640048428 HTTP/1.1
Host: winnerinvestgroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://winnerinvestgroup.com/
HTTP/1.1 200 OK
Date: Fri, 04 Nov 2022 15:15:55 GMT
Server: Apache
Last-Modified: Wed, 30 Mar 2022 11:51:52 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
Content-Length: 5067
Keep-Alive: timeout=5, max=68
Connection: Keep-Alive
Content-Type: text/css
winnerinvestgroup.com/wp-content/uploads/elementor/css/post-1568df.css?ver=1640057588
162.241.253.159200 OK 1.4 kB URL HTTP/1.1 winnerinvestgroup.com/wp-content/uploads/elementor/css/post-1568df.css?ver=1640057588
IP 162.241.253.159:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (12471), with no line terminators
Hash 85832a1470f1cd7f39742409ceb7473d
17cf879fd6d10eb6f35cbc7320c91831c478ec06
a8bb3aca02aefd96d48a91fda0dddc13470e0ef5e99d67933147336b2c807694
Analyzer Verdict Alert openphish Crypto/Wallet
fortinet Phishing
GET /wp-content/uploads/elementor/css/post-1568df.css?ver=1640057588 HTTP/1.1
Host: winnerinvestgroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://winnerinvestgroup.com/
HTTP/1.1 200 OK
Date: Fri, 04 Nov 2022 15:15:55 GMT
Server: Apache
Last-Modified: Wed, 30 Mar 2022 11:51:52 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
Content-Length: 1383
Keep-Alive: timeout=5, max=70
Connection: Keep-Alive
Content-Type: text/css
winnerinvestgroup.com/wp-content/plugins/wp-live-chat-software-for-wordpress/plugin_files/css/livechat-contact-button62d0.css?ver=4.5.3
162.241.253.159409 Conflict 83 B URL HTTP/1.1 winnerinvestgroup.com/wp-content/plugins/wp-live-chat-software-for-wordpress/plugin_files/css/livechat-contact-button62d0.css?ver=4.5.3
IP 162.241.253.159:0
ASN #46606 UNIFIEDLAYER-AS-1
File type HTML document, ASCII text, with no line terminators
Hash 26267cd8990f15d3bbea71684a6d5995
ac3b38cf3fe0e112bb6aeb7e05226b7133575d93
769e8ab745a0fe4bf811036e75a8630e38c50a18cb3e24d539ce4a0722c7c85e
GET /wp-content/plugins/wp-live-chat-software-for-wordpress/plugin_files/css/livechat-contact-button62d0.css?ver=4.5.3 HTTP/1.1
Host: winnerinvestgroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://winnerinvestgroup.com/
HTTP/1.1 409 Conflict
Date: Fri, 04 Nov 2022 15:15:55 GMT
Server: Apache
Content-Length: 83
Keep-Alive: timeout=5, max=70
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
winnerinvestgroup.com/wp-content/plugins/elementor/assets/css/frontend-lite.min9d52.css?ver=3.5.1
162.241.253.159200 OK 19 kB URL HTTP/1.1 winnerinvestgroup.com/wp-content/plugins/elementor/assets/css/frontend-lite.min9d52.css?ver=3.5.1
IP 162.241.253.159:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (65497)
Hash 8933757801bc90937f96ce2dcefdb57f
6dac3f046ef18647384576e30d231134abe659d9
5dfebbb8db9f2e239634d2ae4b4a4a0119459d335da2d2b6d17cffc5dcef10fa
Analyzer Verdict Alert openphish Crypto/Wallet
fortinet Phishing
GET /wp-content/plugins/elementor/assets/css/frontend-lite.min9d52.css?ver=3.5.1 HTTP/1.1
Host: winnerinvestgroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://winnerinvestgroup.com/
HTTP/1.1 200 OK
Date: Fri, 04 Nov 2022 15:15:55 GMT
Server: Apache
Last-Modified: Wed, 30 Mar 2022 11:51:52 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
Keep-Alive: timeout=5, max=74
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/css
winnerinvestgroup.com/wp-content/plugins/wp-live-chat-software-for-wordpress/plugin_files/css/livechat-quality-badge62d0.css?ver=4.5.3
162.241.253.159200 OK 102 B URL HTTP/1.1 winnerinvestgroup.com/wp-content/plugins/wp-live-chat-software-for-wordpress/plugin_files/css/livechat-quality-badge62d0.css?ver=4.5.3
IP 162.241.253.159:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with no line terminators
Hash 37b00e19cecec9d175e9292e27c0a576
8b7943be32b27e28c4d08f9c32bfc5cceca72d1e
c96a8ba536b796af787e45fc465b6c3951de8afd427436ce1e0f1340485f5de3
Analyzer Verdict Alert openphish Crypto/Wallet
fortinet Phishing
GET /wp-content/plugins/wp-live-chat-software-for-wordpress/plugin_files/css/livechat-quality-badge62d0.css?ver=4.5.3 HTTP/1.1
Host: winnerinvestgroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://winnerinvestgroup.com/
HTTP/1.1 200 OK
Date: Fri, 04 Nov 2022 15:15:55 GMT
Server: Apache
Last-Modified: Wed, 30 Mar 2022 11:51:52 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
Content-Length: 102
Keep-Alive: timeout=5, max=69
Connection: Keep-Alive
Content-Type: text/css
winnerinvestgroup.com/wp-includes/js/jquery/jquery-migrate.mind617.js?ver=3.3.2
162.241.253.159200 OK 4.6 kB URL HTTP/1.1 winnerinvestgroup.com/wp-includes/js/jquery/jquery-migrate.mind617.js?ver=3.3.2
IP 162.241.253.159:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (11126)
Hash acdb97105af28a7066790c6748ae2e1e
65794d2c5a9d04f747faf370bc8bacd330e69e5a
dc4efbc4b704b142b5313588c32e56ea56648068a01d2bc596a4eee06b379b5e
Analyzer Verdict Alert openphish Crypto/Wallet
fortinet Phishing
GET /wp-includes/js/jquery/jquery-migrate.mind617.js?ver=3.3.2 HTTP/1.1
Host: winnerinvestgroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://winnerinvestgroup.com/
HTTP/1.1 200 OK
Date: Fri, 04 Nov 2022 15:15:55 GMT
Server: Apache
Last-Modified: Wed, 30 Mar 2022 11:51:53 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
Content-Length: 4618
Keep-Alive: timeout=5, max=67
Connection: Keep-Alive
Content-Type: application/javascript
winnerinvestgroup.com/wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min8811.js?ver=2.7.0-wc.6.0.0
162.241.253.159200 OK 4.0 kB URL HTTP/1.1 winnerinvestgroup.com/wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min8811.js?ver=2.7.0-wc.6.0.0
IP 162.241.253.159:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (9139)
Hash 5f3c95f97f566ce33b859d6b874d116d
e47be9178d33d8d8eefda83c853b560aaed71413
a0cea478b83a24f0c90bfaf776ed62fe8747395838a92d8c9f06ceb79b3e5918
Analyzer Verdict Alert openphish Crypto/Wallet
fortinet Phishing
GET /wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min8811.js?ver=2.7.0-wc.6.0.0 HTTP/1.1
Host: winnerinvestgroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://winnerinvestgroup.com/
HTTP/1.1 200 OK
Date: Fri, 04 Nov 2022 15:15:55 GMT
Server: Apache
Last-Modified: Wed, 30 Mar 2022 11:51:52 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
Content-Length: 3957
Keep-Alive: timeout=5, max=73
Connection: Keep-Alive
Content-Type: application/javascript
winnerinvestgroup.com/wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.minaf8e.js?ver=6.0.0
162.241.253.159200 OK 1.2 kB URL HTTP/1.1 winnerinvestgroup.com/wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.minaf8e.js?ver=6.0.0
IP 162.241.253.159:0
ASN #46606 UNIFIEDLAYER-AS-1
File type HTML document, ASCII text, with very long lines (3037), with no line terminators
Hash 57b5945094a547e06221f8f949e6d335
76fc7361f00684ea29ffbf4b7d46e5429b8c245a
f9d0da987075df31cc4cf8aed46bc193467ce7165568d83c8016e6fe904e72c3
Analyzer Verdict Alert openphish Crypto/Wallet
fortinet Phishing
GET /wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.minaf8e.js?ver=6.0.0 HTTP/1.1
Host: winnerinvestgroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://winnerinvestgroup.com/
HTTP/1.1 200 OK
Date: Fri, 04 Nov 2022 15:15:55 GMT
Server: Apache
Last-Modified: Wed, 30 Mar 2022 11:51:52 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
Content-Length: 1200
Keep-Alive: timeout=5, max=68
Connection: Keep-Alive
Content-Type: application/javascript
winnerinvestgroup.com/wp-includes/js/jquery/jquery.minaf6c.js?ver=3.6.0
162.241.253.159200 OK 39 kB URL HTTP/1.1 winnerinvestgroup.com/wp-includes/js/jquery/jquery.minaf6c.js?ver=3.6.0
IP 162.241.253.159:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (65447)
Hash feb933ceca72e1d76b471ed9db278b0d
6179e8f9c9876a6c4df5e3138e9f8ee2ac25bcd1
9a525fa92f98fd5ac754d60ea6f3676bcaa3870dd9bf057c8c668399922c9bd0
Analyzer Verdict Alert openphish Crypto/Wallet
fortinet Phishing
GET /wp-includes/js/jquery/jquery.minaf6c.js?ver=3.6.0 HTTP/1.1
Host: winnerinvestgroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://winnerinvestgroup.com/
HTTP/1.1 200 OK
Date: Fri, 04 Nov 2022 15:15:55 GMT
Server: Apache
Last-Modified: Wed, 30 Mar 2022 11:51:53 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
Keep-Alive: timeout=5, max=73
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: application/javascript
winnerinvestgroup.com/wp-content/plugins/js_composer/assets/js/vendors/woocommerce-add-to-cart4245.js?ver=5.5.2
162.241.253.159200 OK 319 B URL HTTP/1.1 winnerinvestgroup.com/wp-content/plugins/js_composer/assets/js/vendors/woocommerce-add-to-cart4245.js?ver=5.5.2
IP 162.241.253.159:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (533)
Hash 9134e46ef62f5577151ba78a38d2408e
7d2b83fd2ca075b180b994559643f26637924c8b
0348c562113e315e24967fdc3d6b5939c3d40f29df797bcfad0869779a17c83b
GET /wp-content/plugins/js_composer/assets/js/vendors/woocommerce-add-to-cart4245.js?ver=5.5.2 HTTP/1.1
Host: winnerinvestgroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://winnerinvestgroup.com/
HTTP/1.1 200 OK
Date: Fri, 04 Nov 2022 15:15:55 GMT
Server: Apache
Last-Modified: Wed, 30 Mar 2022 11:51:52 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
Content-Length: 319
Keep-Alive: timeout=5, max=66
Connection: Keep-Alive
Content-Type: application/javascript
winnerinvestgroup.com/wp-content/plugins/revslider/public/assets/js/jquery.themepunch.tools.min23da.js?ver=5.4.8
162.241.253.159200 OK 48 kB URL HTTP/1.1 winnerinvestgroup.com/wp-content/plugins/revslider/public/assets/js/jquery.themepunch.tools.min23da.js?ver=5.4.8
IP 162.241.253.159:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (27287), with CRLF line terminators
Hash fe66852317d3b1d655047ff6c1ce7e14
8acebb58b1bb5a6b3ff6e6bd82513c013d232958
a1750da9d5a0da96696da5df8c1be75eec0fef47f0ded3df4d337a2f34b66e93
Analyzer Verdict Alert openphish Crypto/Wallet
fortinet Phishing
GET /wp-content/plugins/revslider/public/assets/js/jquery.themepunch.tools.min23da.js?ver=5.4.8 HTTP/1.1
Host: winnerinvestgroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://winnerinvestgroup.com/
HTTP/1.1 200 OK
Date: Fri, 04 Nov 2022 15:15:55 GMT
Server: Apache
Last-Modified: Wed, 30 Mar 2022 11:51:52 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
Keep-Alive: timeout=5, max=69
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: application/javascript
winnerinvestgroup.com/connect.livechatinc.com/api/v1/script/e808420d-9257-46ce-9fae-285d34f85c2b/contact-button62d0.js?ver=4.5.3
162.241.253.159409 Conflict 83 B URL HTTP/1.1 winnerinvestgroup.com/connect.livechatinc.com/api/v1/script/e808420d-9257-46ce-9fae-285d34f85c2b/contact-button62d0.js?ver=4.5.3
IP 162.241.253.159:0
ASN #46606 UNIFIEDLAYER-AS-1
File type HTML document, ASCII text, with no line terminators
Hash 26267cd8990f15d3bbea71684a6d5995
ac3b38cf3fe0e112bb6aeb7e05226b7133575d93
769e8ab745a0fe4bf811036e75a8630e38c50a18cb3e24d539ce4a0722c7c85e
Analyzer Verdict Alert openphish Crypto/Wallet
fortinet Phishing
GET /connect.livechatinc.com/api/v1/script/e808420d-9257-46ce-9fae-285d34f85c2b/contact-button62d0.js?ver=4.5.3 HTTP/1.1
Host: winnerinvestgroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://winnerinvestgroup.com/
HTTP/1.1 409 Conflict
Date: Fri, 04 Nov 2022 15:15:55 GMT
Server: Apache
Content-Length: 83
Keep-Alive: timeout=5, max=72
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
winnerinvestgroup.com/connect.livechatinc.com/api/v1/script/e808420d-9257-46ce-9fae-285d34f85c2b/quality-badge62d0.js?ver=4.5.3
162.241.253.159404 Not Found 315 B URL HTTP/1.1 winnerinvestgroup.com/connect.livechatinc.com/api/v1/script/e808420d-9257-46ce-9fae-285d34f85c2b/quality-badge62d0.js?ver=4.5.3
IP 162.241.253.159:0
ASN #46606 UNIFIEDLAYER-AS-1
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3
Analyzer Verdict Alert openphish Crypto/Wallet
fortinet Phishing
GET /connect.livechatinc.com/api/v1/script/e808420d-9257-46ce-9fae-285d34f85c2b/quality-badge62d0.js?ver=4.5.3 HTTP/1.1
Host: winnerinvestgroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://winnerinvestgroup.com/
HTTP/1.1 404 Not Found
Date: Fri, 04 Nov 2022 15:15:55 GMT
Server: Apache
Content-Length: 315
Keep-Alive: timeout=5, max=67
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
winnerinvestgroup.com/connect.livechatinc.com/api/v1/script/e808420d-9257-46ce-9fae-285d34f85c2b/widget5ebf.js?lcv=33a73482-4b6e-40fc-8b17-a4949cce2d1b
162.241.253.159404 Not Found 315 B URL HTTP/1.1 winnerinvestgroup.com/connect.livechatinc.com/api/v1/script/e808420d-9257-46ce-9fae-285d34f85c2b/widget5ebf.js?lcv=33a73482-4b6e-40fc-8b17-a4949cce2d1b
IP 162.241.253.159:0
ASN #46606 UNIFIEDLAYER-AS-1
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3
GET /connect.livechatinc.com/api/v1/script/e808420d-9257-46ce-9fae-285d34f85c2b/widget5ebf.js?lcv=33a73482-4b6e-40fc-8b17-a4949cce2d1b HTTP/1.1
Host: winnerinvestgroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://winnerinvestgroup.com/
HTTP/1.1 404 Not Found
Date: Fri, 04 Nov 2022 15:15:55 GMT
Server: Apache
Content-Length: 315
Keep-Alive: timeout=5, max=72
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
winnerinvestgroup.com/wp-includes/js/dist/vendor/regenerator-runtime.minb36a.js?ver=0.13.7
162.241.253.159200 OK 2.6 kB URL HTTP/1.1 winnerinvestgroup.com/wp-includes/js/dist/vendor/regenerator-runtime.minb36a.js?ver=0.13.7
IP 162.241.253.159:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (6406), with no line terminators
Hash 340db4973d1ee14c5348599f661a3220
d4cf31e2af7774c276d7a883733a8392e232df49
85d0de0d6dbe1f487407829c52413d7e81c7c9ed28bc3ae9079c19303e91f678
Analyzer Verdict Alert openphish Crypto/Wallet
fortinet Phishing
GET /wp-includes/js/dist/vendor/regenerator-runtime.minb36a.js?ver=0.13.7 HTTP/1.1
Host: winnerinvestgroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://winnerinvestgroup.com/
HTTP/1.1 200 OK
Date: Fri, 04 Nov 2022 15:15:55 GMT
Server: Apache
Last-Modified: Wed, 30 Mar 2022 11:51:53 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
Content-Length: 2635
Keep-Alive: timeout=5, max=65
Connection: Keep-Alive
Content-Type: application/javascript
winnerinvestgroup.com/wp-includes/js/dist/vendor/wp-polyfill.min2c7c.js?ver=3.15.0
162.241.253.159200 OK 6.9 kB URL HTTP/1.1 winnerinvestgroup.com/wp-includes/js/dist/vendor/wp-polyfill.min2c7c.js?ver=3.15.0
IP 162.241.253.159:0
ASN #46606 UNIFIEDLAYER-AS-1
File type Unicode text, UTF-8 text, with very long lines (16323)
Hash 122fe79a1d53d10946cded540d2e219f
6271fdf889afe8a13d7c69efea9b40cbd0d81939
94cb1b0ca86f7f0bb7bcc81b42a06b6199bd37ff77ca88dccf3acc92683f3e24
GET /wp-includes/js/dist/vendor/wp-polyfill.min2c7c.js?ver=3.15.0 HTTP/1.1
Host: winnerinvestgroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://winnerinvestgroup.com/
HTTP/1.1 200 OK
Date: Fri, 04 Nov 2022 15:15:55 GMT
Server: Apache
Last-Modified: Wed, 30 Mar 2022 11:51:53 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
Content-Length: 6935
Keep-Alive: timeout=5, max=68
Connection: Keep-Alive
Content-Type: application/javascript
winnerinvestgroup.com/wp-content/plugins/revslider/public/assets/js/jquery.themepunch.revolution.min23da.js?ver=5.4.8
162.241.253.159200 OK 24 kB URL HTTP/1.1 winnerinvestgroup.com/wp-content/plugins/revslider/public/assets/js/jquery.themepunch.revolution.min23da.js?ver=5.4.8
IP 162.241.253.159:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (64653), with CRLF line terminators
Hash ce01d2625e12d9fa5d59d71514c0e115
4ab9246c1f756bb743b837b654fe5d0a6d1f6ef8
35f902457105a106f3708dcb25dae4cd71d44c396333cff2c9347c6c136117b0
GET /wp-content/plugins/revslider/public/assets/js/jquery.themepunch.revolution.min23da.js?ver=5.4.8 HTTP/1.1
Host: winnerinvestgroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://winnerinvestgroup.com/
HTTP/1.1 200 OK
Date: Fri, 04 Nov 2022 15:15:55 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Wed, 30 Mar 2022 11:51:52 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
Keep-Alive: timeout=5, max=75
Transfer-Encoding: chunked
Content-Type: application/javascript
winnerinvestgroup.com/wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.mineff6.js?ver=2.1.4-wc.6.0.0
162.241.253.159200 OK 1.0 kB URL HTTP/1.1 winnerinvestgroup.com/wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.mineff6.js?ver=2.1.4-wc.6.0.0
IP 162.241.253.159:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (1668)
Hash 0bebfb5722cbc8ac04e62aa40698be49
3bc5e4f29cb19a2d80d46dee242dabf7e42c0fd3
70d02eabbadbe176455a2bb53d8d567feca69847c067a5274987a8bdc65e3c05
Analyzer Verdict Alert openphish Crypto/Wallet
fortinet Phishing
GET /wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.mineff6.js?ver=2.1.4-wc.6.0.0 HTTP/1.1
Host: winnerinvestgroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://winnerinvestgroup.com/
HTTP/1.1 200 OK
Date: Fri, 04 Nov 2022 15:15:55 GMT
Server: Apache
Last-Modified: Wed, 30 Mar 2022 11:51:52 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
Content-Length: 1000
Keep-Alive: timeout=5, max=66
Connection: Keep-Alive
Content-Type: application/javascript
winnerinvestgroup.com/wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.minaf8e.js?ver=6.0.0
162.241.253.159200 OK 792 B URL HTTP/1.1 winnerinvestgroup.com/wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.minaf8e.js?ver=6.0.0
IP 162.241.253.159:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (2139), with no line terminators
Hash 1ca3f41c13e0027acc45f0601f8b640f
cced34af0c6a59e9cee4229faa66ab39c7031506
d3bc5eaf4c6be9473dbba690825cce9a1a6f4accb6721dae7875efef54942f41
Analyzer Verdict Alert openphish Crypto/Wallet
fortinet Phishing
GET /wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.minaf8e.js?ver=6.0.0 HTTP/1.1
Host: winnerinvestgroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://winnerinvestgroup.com/
HTTP/1.1 200 OK
Date: Fri, 04 Nov 2022 15:15:55 GMT
Server: Apache
Last-Modified: Wed, 30 Mar 2022 11:51:52 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
Content-Length: 792
Keep-Alive: timeout=5, max=71
Connection: Keep-Alive
Content-Type: application/javascript
winnerinvestgroup.com/wp-content/plugins/woocommerce/assets/js/frontend/cart-fragments.minaf8e.js?ver=6.0.0
162.241.253.159200 OK 1.1 kB URL HTTP/1.1 winnerinvestgroup.com/wp-content/plugins/woocommerce/assets/js/frontend/cart-fragments.minaf8e.js?ver=6.0.0
IP 162.241.253.159:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (2938), with no line terminators
Hash 769e9d3f7fc383ec1a02024e39730474
4f5a5edf28ed19b48c5e40747ec6896f0df8f09e
4636689d57889e984a7a1a1c6e2516b7a2d951407ca826aaf505c50002e2b486
Analyzer Verdict Alert openphish Crypto/Wallet
fortinet Phishing
GET /wp-content/plugins/woocommerce/assets/js/frontend/cart-fragments.minaf8e.js?ver=6.0.0 HTTP/1.1
Host: winnerinvestgroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://winnerinvestgroup.com/
HTTP/1.1 200 OK
Date: Fri, 04 Nov 2022 15:15:55 GMT
Server: Apache
Last-Modified: Wed, 30 Mar 2022 11:51:52 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
Content-Length: 1093
Keep-Alive: timeout=5, max=64
Connection: Keep-Alive
Content-Type: application/javascript
winnerinvestgroup.com/wp-includes/js/jquery/ui/core.min35d0.js?ver=1.12.1
162.241.253.159200 OK 8.2 kB URL HTTP/1.1 winnerinvestgroup.com/wp-includes/js/jquery/ui/core.min35d0.js?ver=1.12.1
IP 162.241.253.159:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (7973)
Hash 6e3b0317803aa9f226979ad7a7e77593
c95b4f532fd03f3754bf63139a57aab65fbe8a25
84520e8f7a292cb992fa9c62932245f598c6fa043fd4e19eadb6ad9a767dca6f
GET /wp-includes/js/jquery/ui/core.min35d0.js?ver=1.12.1 HTTP/1.1
Host: winnerinvestgroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://winnerinvestgroup.com/
HTTP/1.1 200 OK
Date: Fri, 04 Nov 2022 15:15:55 GMT
Server: Apache
Last-Modified: Wed, 30 Mar 2022 11:51:53 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
Content-Length: 8223
Keep-Alive: timeout=5, max=67
Connection: Keep-Alive
Content-Type: application/javascript
winnerinvestgroup.com/wp-includes/js/jquery/ui/tabs.min35d0.js?ver=1.12.1
162.241.253.159200 OK 4.7 kB URL HTTP/1.1 winnerinvestgroup.com/wp-includes/js/jquery/ui/tabs.min35d0.js?ver=1.12.1
IP 162.241.253.159:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (11738)
Hash e75316d4188ff262734321ba233f94d9
7dcac4408194b7e1faa68a94938111059820fc6b
06af2a413b8586dda3634d04e439fff7045855ca680fdf724e38e77fcba05257
GET /wp-includes/js/jquery/ui/tabs.min35d0.js?ver=1.12.1 HTTP/1.1
Host: winnerinvestgroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://winnerinvestgroup.com/
HTTP/1.1 200 OK
Date: Fri, 04 Nov 2022 15:15:55 GMT
Server: Apache
Last-Modified: Wed, 30 Mar 2022 11:51:53 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
Content-Length: 4746
Keep-Alive: timeout=5, max=74
Connection: Keep-Alive
Content-Type: application/javascript
winnerinvestgroup.com/wp-content/plugins/contact-form-7/includes/js/index5697.js?ver=5.5.3
162.241.253.159409 Conflict 83 B URL HTTP/1.1 winnerinvestgroup.com/wp-content/plugins/contact-form-7/includes/js/index5697.js?ver=5.5.3
IP 162.241.253.159:0
ASN #46606 UNIFIEDLAYER-AS-1
File type HTML document, ASCII text, with no line terminators
Hash 26267cd8990f15d3bbea71684a6d5995
ac3b38cf3fe0e112bb6aeb7e05226b7133575d93
769e8ab745a0fe4bf811036e75a8630e38c50a18cb3e24d539ce4a0722c7c85e
GET /wp-content/plugins/contact-form-7/includes/js/index5697.js?ver=5.5.3 HTTP/1.1
Host: winnerinvestgroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://winnerinvestgroup.com/
HTTP/1.1 409 Conflict
Date: Fri, 04 Nov 2022 15:15:55 GMT
Server: Apache
Content-Length: 83
Keep-Alive: timeout=5, max=75
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
winnerinvestgroup.com/wp-includes/js/jquery/ui/accordion.min35d0.js?ver=1.12.1
162.241.253.159200 OK 3.2 kB URL HTTP/1.1 winnerinvestgroup.com/wp-includes/js/jquery/ui/accordion.min35d0.js?ver=1.12.1
IP 162.241.253.159:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (8481)
Hash bb60660eb418fb4922e6ceed6028e5ae
7256a6f744a9f170fd72e078f0584840a9593e66
f1d8fde90617438fea283c1514e9f8ec63b728b2093610e1e270a5a302fb8d6a
Analyzer Verdict Alert openphish Crypto/Wallet
fortinet Phishing
GET /wp-includes/js/jquery/ui/accordion.min35d0.js?ver=1.12.1 HTTP/1.1
Host: winnerinvestgroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://winnerinvestgroup.com/
HTTP/1.1 200 OK
Date: Fri, 04 Nov 2022 15:15:56 GMT
Server: Apache
Last-Modified: Wed, 30 Mar 2022 11:51:53 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
Content-Length: 3247
Keep-Alive: timeout=5, max=65
Connection: Keep-Alive
Content-Type: application/javascript
winnerinvestgroup.com/wp-includes/js/mediaelement/mediaelement-migrate.min080f.js?ver=5.8.2
162.241.253.159200 OK 544 B URL HTTP/1.1 winnerinvestgroup.com/wp-includes/js/mediaelement/mediaelement-migrate.min080f.js?ver=5.8.2
IP 162.241.253.159:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (1193), with no line terminators
Hash f5a258ea9f1581ecbb0e72cc6665c1c3
a85af53230df5278128438f9dd3539356d65b92f
c91bcf01aa9b5858ce368bdf176b93ebe701ce72ee09f4ef132e7fa3df1b1d98
Analyzer Verdict Alert openphish Crypto/Wallet
fortinet Phishing
GET /wp-includes/js/mediaelement/mediaelement-migrate.min080f.js?ver=5.8.2 HTTP/1.1
Host: winnerinvestgroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://winnerinvestgroup.com/
HTTP/1.1 200 OK
Date: Fri, 04 Nov 2022 15:15:56 GMT
Server: Apache
Last-Modified: Wed, 30 Mar 2022 11:51:53 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
Content-Length: 544
Keep-Alive: timeout=5, max=63
Connection: Keep-Alive
Content-Type: application/javascript
winnerinvestgroup.com/wp-includes/js/mediaelement/wp-mediaelement.min080f.js?ver=5.8.2
162.241.253.159200 OK 483 B URL HTTP/1.1 winnerinvestgroup.com/wp-includes/js/mediaelement/wp-mediaelement.min080f.js?ver=5.8.2
IP 162.241.253.159:0
ASN #46606 UNIFIEDLAYER-AS-1
File type HTML document, ASCII text, with very long lines (906), with no line terminators
Hash 961b384bf5b28ac673051be024563f79
606ebba9fa8aec74cf413098b084500c8b16b85c
a9c17b0e5a9c12428c6ed8d0c4622ddbae112a9ac19bccf451f125972cd91935
Analyzer Verdict Alert openphish Crypto/Wallet
fortinet Phishing
GET /wp-includes/js/mediaelement/wp-mediaelement.min080f.js?ver=5.8.2 HTTP/1.1
Host: winnerinvestgroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://winnerinvestgroup.com/
HTTP/1.1 200 OK
Date: Fri, 04 Nov 2022 15:15:56 GMT
Server: Apache
Last-Modified: Wed, 30 Mar 2022 11:51:53 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
Content-Length: 483
Keep-Alive: timeout=5, max=66
Connection: Keep-Alive
Content-Type: application/javascript
winnerinvestgroup.com/wp-includes/js/mediaelement/mediaelement-and-player.min08e1.js?ver=4.2.16
162.241.253.159200 OK 57 kB URL HTTP/1.1 winnerinvestgroup.com/wp-includes/js/mediaelement/mediaelement-and-player.min08e1.js?ver=4.2.16
IP 162.241.253.159:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (65266)
Hash fe45d699c39cfe0d6d8c1796c6b7b54a
2a47a68ce601acbddfbc25ceab2f4af1adbad289
99aa2aab21a779e0e91431ee0a78efe4e620cef0650507256ba240d52ba9ea3c
Analyzer Verdict Alert openphish Crypto/Wallet
fortinet Phishing
GET /wp-includes/js/mediaelement/mediaelement-and-player.min08e1.js?ver=4.2.16 HTTP/1.1
Host: winnerinvestgroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://winnerinvestgroup.com/
HTTP/1.1 200 OK
Date: Fri, 04 Nov 2022 15:15:56 GMT
Server: Apache
Last-Modified: Wed, 30 Mar 2022 11:51:53 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
Keep-Alive: timeout=5, max=70
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: application/javascript
winnerinvestgroup.com/wp-includes/js/comment-reply.min080f.js?ver=5.8.2
162.241.253.159200 OK 1.5 kB URL HTTP/1.1 winnerinvestgroup.com/wp-includes/js/comment-reply.min080f.js?ver=5.8.2
IP 162.241.253.159:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (2949)
Hash 2758412411a9bec9055c038b049ebf3b
7dfd2d35de1e8c1c5b21bc8523b108c691ee7d76
8f0191fcced17d7eb5cee3633bb87e74f496a045ba1038ab7a2ef14a08cf1b4c
Analyzer Verdict Alert openphish Crypto/Wallet
fortinet Phishing
GET /wp-includes/js/comment-reply.min080f.js?ver=5.8.2 HTTP/1.1
Host: winnerinvestgroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://winnerinvestgroup.com/
HTTP/1.1 200 OK
Date: Fri, 04 Nov 2022 15:15:56 GMT
Server: Apache
Last-Modified: Wed, 30 Mar 2022 11:51:53 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
Content-Length: 1472
Keep-Alive: timeout=5, max=65
Connection: Keep-Alive
Content-Type: application/javascript
winnerinvestgroup.com/wp-content/plugins/woocommerce/assets/js/select2/select2.full.minae68.js?ver=4.0.3-wc.6.0.0
162.241.253.159200 OK 27 kB URL HTTP/1.1 winnerinvestgroup.com/wp-content/plugins/woocommerce/assets/js/select2/select2.full.minae68.js?ver=4.0.3-wc.6.0.0
IP 162.241.253.159:0
ASN #46606 UNIFIEDLAYER-AS-1
File type Unicode text, UTF-8 text, with very long lines (64065)
Hash 3c1bb0faee42c0c5b161089e2f47b940
671c384c81f91af681ce45f9d5250ae939001190
57e965ed60cec5b8ab345f286e3d2c9b1147adcc384d0676f22914d951d2e64f
Analyzer Verdict Alert openphish Crypto/Wallet
fortinet Phishing
GET /wp-content/plugins/woocommerce/assets/js/select2/select2.full.minae68.js?ver=4.0.3-wc.6.0.0 HTTP/1.1
Host: winnerinvestgroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://winnerinvestgroup.com/
HTTP/1.1 200 OK
Date: Fri, 04 Nov 2022 15:15:56 GMT
Server: Apache
Last-Modified: Wed, 30 Mar 2022 11:51:52 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
Keep-Alive: timeout=5, max=64
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: application/javascript
winnerinvestgroup.com/wp-content/plugins/js_composer/assets/js/dist/js_composer_front.min4245.js?ver=5.5.2
162.241.253.159200 OK 7.1 kB URL HTTP/1.1 winnerinvestgroup.com/wp-content/plugins/js_composer/assets/js/dist/js_composer_front.min4245.js?ver=5.5.2
IP 162.241.253.159:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (19712), with no line terminators
Hash 98b9972bbeffd8cf58a31a5ba6350603
40f6aec95e201bec88970f30514c958075e1abbb
d45d52b998b6c00c8cb29758c0a97ddc95c410ee726052c0b691bf10964514b6
Analyzer Verdict Alert openphish Crypto/Wallet
fortinet Phishing
GET /wp-content/plugins/js_composer/assets/js/dist/js_composer_front.min4245.js?ver=5.5.2 HTTP/1.1
Host: winnerinvestgroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://winnerinvestgroup.com/
HTTP/1.1 200 OK
Date: Fri, 04 Nov 2022 15:15:56 GMT
Server: Apache
Last-Modified: Wed, 30 Mar 2022 11:51:52 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
Content-Length: 7130
Keep-Alive: timeout=5, max=69
Connection: Keep-Alive
Content-Type: application/javascript
winnerinvestgroup.com/wp-content/themes/suprema/assets/js/like.min5152.js?ver=1.0
162.241.253.159200 OK 411 B URL HTTP/1.1 winnerinvestgroup.com/wp-content/themes/suprema/assets/js/like.min5152.js?ver=1.0
IP 162.241.253.159:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (712), with no line terminators
Hash f059f63b17aaed7797d3495bed44af45
33dccf09fabdf589a40658bf76854e0679e83569
729277743b91072665384f59ac6965364943a024a2f5e4fa42996f2fb91f4bc8
Analyzer Verdict Alert openphish Crypto/Wallet
fortinet Phishing
GET /wp-content/themes/suprema/assets/js/like.min5152.js?ver=1.0 HTTP/1.1
Host: winnerinvestgroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://winnerinvestgroup.com/
HTTP/1.1 200 OK
Date: Fri, 04 Nov 2022 15:15:56 GMT
Server: Apache
Last-Modified: Wed, 30 Mar 2022 11:51:52 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
Content-Length: 411
Keep-Alive: timeout=5, max=61
Connection: Keep-Alive
Content-Type: application/javascript
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 8ee5640e4bbe5e2c0dd4aa0698a3ce62
a175340e4e1a0a2e3d33fa5b113e3990e5a6dfef
938899f21fdf4e477f02c6f7f32cbed05bb1df35e3b221c3a37e8c214b2dc946
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "938899F21FDF4E477F02C6F7F32CBED05BB1DF35E3B221C3A37E8C214B2DC946"
Last-Modified: Thu, 03 Nov 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3229
Expires: Fri, 04 Nov 2022 16:09:45 GMT
Date: Fri, 04 Nov 2022 15:15:56 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 8ee5640e4bbe5e2c0dd4aa0698a3ce62
a175340e4e1a0a2e3d33fa5b113e3990e5a6dfef
938899f21fdf4e477f02c6f7f32cbed05bb1df35e3b221c3a37e8c214b2dc946
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "938899F21FDF4E477F02C6F7F32CBED05BB1DF35E3B221C3A37E8C214B2DC946"
Last-Modified: Thu, 03 Nov 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3229
Expires: Fri, 04 Nov 2022 16:09:45 GMT
Date: Fri, 04 Nov 2022 15:15:56 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 8ee5640e4bbe5e2c0dd4aa0698a3ce62
a175340e4e1a0a2e3d33fa5b113e3990e5a6dfef
938899f21fdf4e477f02c6f7f32cbed05bb1df35e3b221c3a37e8c214b2dc946
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "938899F21FDF4E477F02C6F7F32CBED05BB1DF35E3B221C3A37E8C214B2DC946"
Last-Modified: Thu, 03 Nov 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3229
Expires: Fri, 04 Nov 2022 16:09:45 GMT
Date: Fri, 04 Nov 2022 15:15:56 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 8ee5640e4bbe5e2c0dd4aa0698a3ce62
a175340e4e1a0a2e3d33fa5b113e3990e5a6dfef
938899f21fdf4e477f02c6f7f32cbed05bb1df35e3b221c3a37e8c214b2dc946
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "938899F21FDF4E477F02C6F7F32CBED05BB1DF35E3B221C3A37E8C214B2DC946"
Last-Modified: Thu, 03 Nov 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3229
Expires: Fri, 04 Nov 2022 16:09:45 GMT
Date: Fri, 04 Nov 2022 15:15:56 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 8ee5640e4bbe5e2c0dd4aa0698a3ce62
a175340e4e1a0a2e3d33fa5b113e3990e5a6dfef
938899f21fdf4e477f02c6f7f32cbed05bb1df35e3b221c3a37e8c214b2dc946
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "938899F21FDF4E477F02C6F7F32CBED05BB1DF35E3B221C3A37E8C214B2DC946"
Last-Modified: Thu, 03 Nov 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3229
Expires: Fri, 04 Nov 2022 16:09:45 GMT
Date: Fri, 04 Nov 2022 15:15:56 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3494b1e3-ddc8-454c-8b43-e70e2d8f07b8.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3494b1e3-ddc8-454c-8b43-e70e2d8f07b8.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 2ae2b8d827fb2c8bef64febcd36f1645
f7705fcd2d91ce90c58e79324cce1e3abba6c1c8
2dc55e97ef3a85fccb104b80161a8bac16b12d37527c336563677432584c7ad5
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3494b1e3-ddc8-454c-8b43-e70e2d8f07b8.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11421
x-amzn-requestid: 80f2a46c-6682-4160-b896-eeaa366dbab7
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: aUsKNF4SoAMFn5g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6351c0a7-5a5517d005ec7a7d1507b58e;Sampled=0
x-amzn-remapped-date: Thu, 20 Oct 2022 21:41:59 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: gdqoswTMqjrfyzzY-103agxLH8ak-rFsCId29eoLOF6WHgFmd04K7g==
via: 1.1 86b676273517904f44af31586adb06ae.cloudfront.net (CloudFront), 1.1 2ab6211e66998c8b58132661a7e3cade.cloudfront.net (CloudFront), 1.1 google
date: Fri, 04 Nov 2022 08:24:41 GMT
age: 24675
etag: "f7705fcd2d91ce90c58e79324cce1e3abba6c1c8"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
winnerinvestgroup.com/wp-content/themes/suprema/assets/js/third-party.min080f.js?ver=5.8.2
162.241.253.159200 OK 134 kB URL HTTP/1.1 winnerinvestgroup.com/wp-content/themes/suprema/assets/js/third-party.min080f.js?ver=5.8.2
IP 162.241.253.159:0
ASN #46606 UNIFIEDLAYER-AS-1
File type HTML document, ASCII text, with very long lines (31998)
Size 134 kB (133576 bytes)
Hash f3d2b8dea3b8ce7d2b80e8b8206078dd
e547048d3561efad541a8ad8c25061303b024f3d
25bbcae9bcd8847c01b8f4b45195ee992fd6934e4b417c99f194cea8ec5cd627
GET /wp-content/themes/suprema/assets/js/third-party.min080f.js?ver=5.8.2 HTTP/1.1
Host: winnerinvestgroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://winnerinvestgroup.com/
HTTP/1.1 200 OK
Date: Fri, 04 Nov 2022 15:15:56 GMT
Server: Apache
Last-Modified: Wed, 30 Mar 2022 11:51:52 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
Keep-Alive: timeout=5, max=73
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: application/javascript
winnerinvestgroup.com/wp-includes/js/wp-embed.min080f.js?ver=5.8.2
162.241.253.159200 OK 777 B URL HTTP/1.1 winnerinvestgroup.com/wp-includes/js/wp-embed.min080f.js?ver=5.8.2
IP 162.241.253.159:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (1391)
Hash 06ece4d01ee88297957c9f4cdcaa4df5
2b3321654a8ead1e1493eac9b5f1fdfb65e2037f
0b17eb6ab02e69f50ac52ca157375bd69853ae4f4796eb48a35eb4a12fc7af8b
GET /wp-includes/js/wp-embed.min080f.js?ver=5.8.2 HTTP/1.1
Host: winnerinvestgroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://winnerinvestgroup.com/
HTTP/1.1 200 OK
Date: Fri, 04 Nov 2022 15:15:56 GMT
Server: Apache
Last-Modified: Wed, 30 Mar 2022 11:51:53 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
Content-Length: 777
Keep-Alive: timeout=5, max=64
Connection: Keep-Alive
Content-Type: application/javascript
winnerinvestgroup.com/wp-content/plugins/js_composer/assets/lib/bower/isotope/dist/isotope.pkgd.min4245.js?ver=5.5.2
162.241.253.159200 OK 13 kB URL HTTP/1.1 winnerinvestgroup.com/wp-content/plugins/js_composer/assets/lib/bower/isotope/dist/isotope.pkgd.min4245.js?ver=5.5.2
IP 162.241.253.159:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (32004)
Hash 9dcdc4e813ceb6f7dfcf8ff917556033
8ccb6e59a5919728dd495afbf172f3d576e69aa9
8be1d18337874c4b9a76de6b95e69c92ddc2063d779cd79e673ee8fb068087c4
Analyzer Verdict Alert openphish Crypto/Wallet
fortinet Phishing
GET /wp-content/plugins/js_composer/assets/lib/bower/isotope/dist/isotope.pkgd.min4245.js?ver=5.5.2 HTTP/1.1
Host: winnerinvestgroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://winnerinvestgroup.com/
HTTP/1.1 200 OK
Date: Fri, 04 Nov 2022 15:15:56 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Wed, 30 Mar 2022 11:51:52 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
Content-Length: 13109
Keep-Alive: timeout=5, max=75
Content-Type: application/javascript
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F08eaa5d0-649d-4568-ac8b-ca60d91ab718.jpeg
34.120.237.76200 OK 7.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F08eaa5d0-649d-4568-ac8b-ca60d91ab718.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 9a763d44e05fa357713a41ab1388974a
d4d2ee1aa9beb5bbd19aaaf590c8a0832fb180cd
f351b7e90e5435af071892b62af3ac591bc553281b3ea63b1ae067a3d03f572d
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F08eaa5d0-649d-4568-ac8b-ca60d91ab718.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7703
x-amzn-requestid: 4f835957-6df6-4001-9c34-ed9749000b46
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bC0RpFGwoAMF0-g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6364340a-3f7b7dd36cb07d057b64ec2f;Sampled=0
x-amzn-remapped-date: Thu, 03 Nov 2022 21:35:06 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: 5_POzz6quaFlv3R4djTMvwuiLWqmvHLCrZ58DtyQPJG8yWQoxV0LjQ==
via: 1.1 0c96ded7ff282d2dbcf47c918b6bb500.cloudfront.net (CloudFront), 1.1 707e733794d52100fde0ab21bf0b1462.cloudfront.net (CloudFront), 1.1 google
date: Thu, 03 Nov 2022 21:53:11 GMT
etag: "d4d2ee1aa9beb5bbd19aaaf590c8a0832fb180cd"
content-type: image/jpeg
age: 62565
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3a631333-54a4-458c-b54b-2dd96d4ede5a.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3a631333-54a4-458c-b54b-2dd96d4ede5a.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 5aedde5b1d003651d773c89833460868
29ca25963b777fd7463c65d8cde6d65172c996e1
04b95b954d7d992e6547d05d052c6f3f8a4cfb4a5988f9e6c6629969053bf7b3
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3a631333-54a4-458c-b54b-2dd96d4ede5a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11188
x-amzn-requestid: 72e0a128-e0c4-4a93-8e29-01a574b2d1c3
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bC0XNHPcoAMFkNQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6364342d-341a40d37b7bcc9153749d67;Sampled=0
x-amzn-remapped-date: Thu, 03 Nov 2022 21:35:41 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: eo3FBGjoivBN1-4xP1UiTocKbLd87acRtOX2AQrPr1a4yDboDrXYRA==
via: 1.1 da5952aa802df39905ceb16592e9698a.cloudfront.net (CloudFront), 1.1 01147dcc35d57fc0238a3c1700c13f16.cloudfront.net (CloudFront), 1.1 google
date: Thu, 03 Nov 2022 21:53:19 GMT
age: 62557
etag: "29ca25963b777fd7463c65d8cde6d65172c996e1"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3d05e3a2-b178-419f-90de-a1985765ff09.jpeg
34.120.237.76200 OK 6.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3d05e3a2-b178-419f-90de-a1985765ff09.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash ca6c7517d7015fbc35fa290c1c2d6afd
594e5a82ce82fb4cd76548b6d2d6b4cc419b7e4c
a746b36be50209915a0e5657abd219aab382eee4b7556142aa1316daf3a9f5a4
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3d05e3a2-b178-419f-90de-a1985765ff09.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6557
x-amzn-requestid: f2e39db1-fb8a-4a9b-8a1d-ee08000ddeb6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bC1VyFHuIAMF5Eg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-636435be-7a03ef677f8dbd680f72de90;Sampled=0
x-amzn-remapped-date: Thu, 03 Nov 2022 21:42:22 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: I6mALhsUwtQqMP_p_HxFaiCyfRDTtVzPIJjeDrKSEq7Tc_d5EcNw3Q==
via: 1.1 0c96ded7ff282d2dbcf47c918b6bb500.cloudfront.net (CloudFront), 1.1 73cb83fe6699afc2791b5c690c1ff8c6.cloudfront.net (CloudFront), 1.1 google
date: Thu, 03 Nov 2022 21:53:00 GMT
age: 62576
etag: "594e5a82ce82fb4cd76548b6d2d6b4cc419b7e4c"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
winnerinvestgroup.com/wp-content/plugins/elementor-pro/assets/js/webpack-pro.runtime.mine485.js?ver=3.3.6
162.241.253.159200 OK 2.6 kB URL HTTP/1.1 winnerinvestgroup.com/wp-content/plugins/elementor-pro/assets/js/webpack-pro.runtime.mine485.js?ver=3.3.6
IP 162.241.253.159:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (5419)
Hash b917e6724841ce7329d3bef5e83b5873
e9ab2e871978bd8247aa67af81cb6d92e0522e32
aac1715a742a36031e0e74422b42ffa15d43087c2fd9d7e098049d1bdf3deb17
GET /wp-content/plugins/elementor-pro/assets/js/webpack-pro.runtime.mine485.js?ver=3.3.6 HTTP/1.1
Host: winnerinvestgroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://winnerinvestgroup.com/
HTTP/1.1 200 OK
Date: Fri, 04 Nov 2022 15:15:56 GMT
Server: Apache
Last-Modified: Wed, 30 Mar 2022 11:51:52 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
Content-Length: 2578
Keep-Alive: timeout=5, max=63
Connection: Keep-Alive
Content-Type: application/javascript
winnerinvestgroup.com/wp-content/plugins/elementor/assets/js/webpack.runtime.min9d52.js?ver=3.5.1
162.241.253.159200 OK 2.3 kB URL HTTP/1.1 winnerinvestgroup.com/wp-content/plugins/elementor/assets/js/webpack.runtime.min9d52.js?ver=3.5.1
IP 162.241.253.159:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (4866)
Hash 33a62888c5d1cbbb4a46c492568bea5d
3cc55ff75dde60b415a2b9537f53f51cb105a54a
b3c4cf3c8913c3cc69b0518b050bd4edced2949ddcbb00d1d796b45c841a3cd6
Analyzer Verdict Alert openphish Crypto/Wallet
fortinet Phishing
GET /wp-content/plugins/elementor/assets/js/webpack.runtime.min9d52.js?ver=3.5.1 HTTP/1.1
Host: winnerinvestgroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://winnerinvestgroup.com/
HTTP/1.1 200 OK
Date: Fri, 04 Nov 2022 15:15:56 GMT
Server: Apache
Last-Modified: Wed, 30 Mar 2022 11:51:52 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
Content-Length: 2287
Keep-Alive: timeout=5, max=68
Connection: Keep-Alive
Content-Type: application/javascript
winnerinvestgroup.com/wp-content/plugins/elementor/assets/js/frontend-modules.min9d52.js?ver=3.5.1
162.241.253.159200 OK 5.6 kB URL HTTP/1.1 winnerinvestgroup.com/wp-content/plugins/elementor/assets/js/frontend-modules.min9d52.js?ver=3.5.1
IP 162.241.253.159:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (14196)
Hash db9b887828ad1612ca5d41e33286e82f
994e84a58f0fdff2b40f1df8447afb77f643b8e1
8265e213ba1f8f3a11616d589fae7874ef52459f5dbaa1fcf46c307f4aefd42a
Analyzer Verdict Alert openphish Crypto/Wallet
fortinet Phishing
GET /wp-content/plugins/elementor/assets/js/frontend-modules.min9d52.js?ver=3.5.1 HTTP/1.1
Host: winnerinvestgroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://winnerinvestgroup.com/
HTTP/1.1 200 OK
Date: Fri, 04 Nov 2022 15:15:56 GMT
Server: Apache
Last-Modified: Wed, 30 Mar 2022 11:51:52 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
Content-Length: 5628
Keep-Alive: timeout=5, max=60
Connection: Keep-Alive
Content-Type: application/javascript
winnerinvestgroup.com/wp-content/plugins/elementor/assets/js/frontend.min9d52.js?ver=3.5.1
162.241.253.159200 OK 14 kB URL HTTP/1.1 winnerinvestgroup.com/wp-content/plugins/elementor/assets/js/frontend.min9d52.js?ver=3.5.1
IP 162.241.253.159:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (36853)
Hash abd0e339b23fee4dcec0a3eaeb61bdd5
9bdd0737790133c611ba58bcfa5fba897c5a192b
1d4e0b5c11ca6a8ccfa4bea0ccb1e8bb549681107cc092fc3d266d524237a3d2
GET /wp-content/plugins/elementor/assets/js/frontend.min9d52.js?ver=3.5.1 HTTP/1.1
Host: winnerinvestgroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://winnerinvestgroup.com/
HTTP/1.1 200 OK
Date: Fri, 04 Nov 2022 15:15:56 GMT
Server: Apache
Last-Modified: Wed, 30 Mar 2022 11:51:52 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
Content-Length: 14427
Keep-Alive: timeout=5, max=74
Connection: Keep-Alive
Content-Type: application/javascript
winnerinvestgroup.com/wp-content/plugins/elementor-pro/assets/js/frontend.mine485.js?ver=3.3.6
162.241.253.159200 OK 23 kB URL HTTP/1.1 winnerinvestgroup.com/wp-content/plugins/elementor-pro/assets/js/frontend.mine485.js?ver=3.3.6
IP 162.241.253.159:0
ASN #46606 UNIFIEDLAYER-AS-1
File type Unicode text, UTF-8 text, with very long lines (58848)
Hash 9e37eb383b7c451453874019f869e706
87c2e1e4d6c49c318350b21ed1c83583c6d3a16d
1031d0a8856db8fe437f8f5d268efa02532005c96348ab819838a60e558b2437
Analyzer Verdict Alert openphish Crypto/Wallet
fortinet Phishing
GET /wp-content/plugins/elementor-pro/assets/js/frontend.mine485.js?ver=3.3.6 HTTP/1.1
Host: winnerinvestgroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://winnerinvestgroup.com/
HTTP/1.1 200 OK
Date: Fri, 04 Nov 2022 15:15:56 GMT
Server: Apache
Last-Modified: Wed, 30 Mar 2022 11:51:52 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
Keep-Alive: timeout=5, max=72
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: application/javascript
winnerinvestgroup.com/wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min05da.js?ver=4.0.2
162.241.253.159200 OK 3.7 kB URL HTTP/1.1 winnerinvestgroup.com/wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min05da.js?ver=4.0.2
IP 162.241.253.159:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (12198), with no line terminators
Hash e2a8decccf4d0a6b925af707a36077a9
26a0febc9c3d91e75410f74b9ec62099ba1cbe90
09e0e638a6f53c0fdcfeeb8ae91f3a404bef47b471324e335e29be14a2aa87f7
GET /wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min05da.js?ver=4.0.2 HTTP/1.1
Host: winnerinvestgroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://winnerinvestgroup.com/
HTTP/1.1 200 OK
Date: Fri, 04 Nov 2022 15:15:56 GMT
Server: Apache
Last-Modified: Wed, 30 Mar 2022 11:51:52 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
Content-Length: 3747
Keep-Alive: timeout=5, max=63
Connection: Keep-Alive
Content-Type: application/javascript
winnerinvestgroup.com/wp-content/plugins/elementor-pro/assets/js/elements-handlers.mine485.js?ver=3.3.6
162.241.253.159200 OK 18 kB URL HTTP/1.1 winnerinvestgroup.com/wp-content/plugins/elementor-pro/assets/js/elements-handlers.mine485.js?ver=3.3.6
IP 162.241.253.159:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (52456)
Hash ec43212e854aa843cdecc4f74b82ec42
3fd5bb8e68322c164ed4250b0e6bec742fb74b51
76df7ed132c6816cae71150743347e9128bd41f32e8a7b472e281f556e2eb487
Analyzer Verdict Alert openphish Crypto/Wallet
fortinet Phishing
GET /wp-content/plugins/elementor-pro/assets/js/elements-handlers.mine485.js?ver=3.3.6 HTTP/1.1
Host: winnerinvestgroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://winnerinvestgroup.com/
HTTP/1.1 200 OK
Date: Fri, 04 Nov 2022 15:15:56 GMT
Server: Apache
Last-Modified: Wed, 30 Mar 2022 11:51:52 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
Keep-Alive: timeout=5, max=62
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: application/javascript
winnerinvestgroup.com/wp-includes/js/underscore.min0028.js?ver=1.13.1
162.241.253.159200 OK 8.3 kB URL HTTP/1.1 winnerinvestgroup.com/wp-includes/js/underscore.min0028.js?ver=1.13.1
IP 162.241.253.159:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (19041)
Hash e45e83fd86a608f36eed8d8178c0c218
84cbfc05d78d37a27374bb30ac9b933a8d4ce3e6
0e64084fe2aa346fffd15ce84b27ac3a62f7b8e555f563a4d919766a777f5262
Analyzer Verdict Alert openphish Crypto/Wallet
fortinet Phishing
GET /wp-includes/js/underscore.min0028.js?ver=1.13.1 HTTP/1.1
Host: winnerinvestgroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://winnerinvestgroup.com/
HTTP/1.1 200 OK
Date: Fri, 04 Nov 2022 15:15:56 GMT
Server: Apache
Last-Modified: Wed, 30 Mar 2022 11:51:53 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
Content-Length: 8329
Keep-Alive: timeout=5, max=67
Connection: Keep-Alive
Content-Type: application/javascript
winnerinvestgroup.com/wp-includes/js/wp-util.min080f.js?ver=5.8.2
162.241.253.159200 OK 709 B URL HTTP/1.1 winnerinvestgroup.com/wp-includes/js/wp-util.min080f.js?ver=5.8.2
IP 162.241.253.159:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (1305)
Hash e9edb7bac979409cf7dbc48d7ab8aca7
ed3f941a8fe41e3994a3ca5e620219328628f532
2a0742cad9937c742b2f51c1ea2ae48359ce8d88d8b56f6d8910c0a267d631b5
Analyzer Verdict Alert openphish Crypto/Wallet
fortinet Phishing
GET /wp-includes/js/wp-util.min080f.js?ver=5.8.2 HTTP/1.1
Host: winnerinvestgroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://winnerinvestgroup.com/
HTTP/1.1 200 OK
Date: Fri, 04 Nov 2022 15:15:56 GMT
Server: Apache
Last-Modified: Wed, 30 Mar 2022 11:51:53 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
Content-Length: 709
Keep-Alive: timeout=5, max=59
Connection: Keep-Alive
Content-Type: application/javascript
winnerinvestgroup.com/wp-content/plugins/wpforms/assets/js/integrations/elementor/frontend.min7514.js?ver=1.6.6
162.241.253.159200 OK 374 B URL HTTP/1.1 winnerinvestgroup.com/wp-content/plugins/wpforms/assets/js/integrations/elementor/frontend.min7514.js?ver=1.6.6
IP 162.241.253.159:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (754), with no line terminators
Hash ef785f463505633971eae5c08ad626d4
624e22257f386801822229db3a4bbd2e24b25e2f
b2a0dc77f0f79d81698a7e3893e16ecba7b0d980b80a5233656d9b11f1d8160d
GET /wp-content/plugins/wpforms/assets/js/integrations/elementor/frontend.min7514.js?ver=1.6.6 HTTP/1.1
Host: winnerinvestgroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://winnerinvestgroup.com/
HTTP/1.1 200 OK
Date: Fri, 04 Nov 2022 15:15:56 GMT
Server: Apache
Last-Modified: Wed, 30 Mar 2022 11:51:52 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
Content-Length: 374
Keep-Alive: timeout=5, max=73
Connection: Keep-Alive
Content-Type: application/javascript
winnerinvestgroup.com/connect.livechatinc.com/api/v1/script/e808420d-9257-46ce-9fae-285d34f85c2b/contact-button62d0.js?ver=4.5.3
162.241.253.159409 Conflict 83 B URL HTTP/1.1 winnerinvestgroup.com/connect.livechatinc.com/api/v1/script/e808420d-9257-46ce-9fae-285d34f85c2b/contact-button62d0.js?ver=4.5.3
IP 162.241.253.159:0
ASN #46606 UNIFIEDLAYER-AS-1
File type HTML document, ASCII text, with no line terminators
Hash 26267cd8990f15d3bbea71684a6d5995
ac3b38cf3fe0e112bb6aeb7e05226b7133575d93
769e8ab745a0fe4bf811036e75a8630e38c50a18cb3e24d539ce4a0722c7c85e
Analyzer Verdict Alert openphish Crypto/Wallet
fortinet Phishing
GET /connect.livechatinc.com/api/v1/script/e808420d-9257-46ce-9fae-285d34f85c2b/contact-button62d0.js?ver=4.5.3 HTTP/1.1
Host: winnerinvestgroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://winnerinvestgroup.com/
HTTP/1.1 409 Conflict
Date: Fri, 04 Nov 2022 15:15:56 GMT
Server: Apache
Content-Length: 83
Keep-Alive: timeout=5, max=71
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
winnerinvestgroup.com/wp-content/uploads/elementor/thumbs/spaces_-LJJeCjcLrr53DcT1Ml7_avatar-pf1amykdwxealgfl3u2krxudgrgjzujazs5xsqoag8.png
162.241.253.159200 OK 4.4 kB URL HTTP/1.1 winnerinvestgroup.com/wp-content/uploads/elementor/thumbs/spaces_-LJJeCjcLrr53DcT1Ml7_avatar-pf1amykdwxealgfl3u2krxudgrgjzujazs5xsqoag8.png
IP 162.241.253.159:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash 27242a5387179912b4e004f60b95300e
3146d8ecdd50e58bf05bfca7890c11a744b9fd03
6fe5d61f4bb14f390f7ea3104e1ed4829cbbf4f6adbc2333c660469130e228d4
Analyzer Verdict Alert openphish Crypto/Wallet
GET /wp-content/uploads/elementor/thumbs/spaces_-LJJeCjcLrr53DcT1Ml7_avatar-pf1amykdwxealgfl3u2krxudgrgjzujazs5xsqoag8.png HTTP/1.1
Host: winnerinvestgroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://winnerinvestgroup.com/
HTTP/1.1 200 OK
Date: Fri, 04 Nov 2022 15:15:56 GMT
Server: Apache
Last-Modified: Wed, 30 Mar 2022 11:51:52 GMT
Accept-Ranges: bytes
Content-Length: 4385
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
Keep-Alive: timeout=5, max=62
Connection: Keep-Alive
Content-Type: image/png
winnerinvestgroup.com/wp-content/uploads/elementor/thumbs/rainbow-pf1an558r84q7iwj9ukhwyn97ivh10z4zyw9p47n88.png
162.241.253.159200 OK 3.4 kB URL HTTP/1.1 winnerinvestgroup.com/wp-content/uploads/elementor/thumbs/rainbow-pf1an558r84q7iwj9ukhwyn97ivh10z4zyw9p47n88.png
IP 162.241.253.159:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 60 x 60, 8-bit/color RGBA, non-interlaced\012- data
Hash 61193bf4c70e8e7cd4073e80a94f54f3
21b287e53c9271efb0561368739d70561e77186c
1dacdc5790ac412c1f41e0dc8c1b0c14788e2789b14ad4b139d59f8ba41d1d19
Analyzer Verdict Alert openphish Crypto/Wallet
GET /wp-content/uploads/elementor/thumbs/rainbow-pf1an558r84q7iwj9ukhwyn97ivh10z4zyw9p47n88.png HTTP/1.1
Host: winnerinvestgroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://winnerinvestgroup.com/
HTTP/1.1 200 OK
Date: Fri, 04 Nov 2022 15:15:56 GMT
Server: Apache
Last-Modified: Wed, 30 Mar 2022 11:51:52 GMT
Accept-Ranges: bytes
Content-Length: 3401
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
Keep-Alive: timeout=5, max=61
Connection: Keep-Alive
Content-Type: image/png
winnerinvestgroup.com/wp-content/uploads/elementor/thumbs/trust-wallet-pf1an1dw49v82vvdbp13ulh8xpt61evs8mque5exx8.png
162.241.253.159200 OK 3.4 kB URL HTTP/1.1 winnerinvestgroup.com/wp-content/uploads/elementor/thumbs/trust-wallet-pf1an1dw49v82vvdbp13ulh8xpt61evs8mque5exx8.png
IP 162.241.253.159:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 70 x 70, 8-bit/color RGBA, non-interlaced\012- data
Hash 6fbea54797eebdc28e949d88b0fb2f48
d6057140a8aa100b02398d0c10c8acc9abeba491
036fa824533b826b30222d48388385c0ef73deb61e69bd1f4ba249026e438bd2
Analyzer Verdict Alert openphish Crypto/Wallet
GET /wp-content/uploads/elementor/thumbs/trust-wallet-pf1an1dw49v82vvdbp13ulh8xpt61evs8mque5exx8.png HTTP/1.1
Host: winnerinvestgroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://winnerinvestgroup.com/
HTTP/1.1 200 OK
Date: Fri, 04 Nov 2022 15:15:56 GMT
Server: Apache
Last-Modified: Wed, 30 Mar 2022 11:51:52 GMT
Accept-Ranges: bytes
Content-Length: 3405
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
Keep-Alive: timeout=5, max=66
Connection: Keep-Alive
Content-Type: image/png
winnerinvestgroup.com/wp-content/uploads/elementor/thumbs/argent-pf1an47eorz31pr9v88zk2rmpvf9oi6z90patzarek.jpg
162.241.253.159200 OK 1.3 kB URL HTTP/1.1 winnerinvestgroup.com/wp-content/uploads/elementor/thumbs/argent-pf1an47eorz31pr9v88zk2rmpvf9oi6z90patzarek.jpg
IP 162.241.253.159:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 70x70, components 3\012- data
Hash 12df6a387b03c3414970564b7dc17a08
27f8be48df8845bb49fbf1ca992f2dace72200bb
6d32ecb44584a3ea6a570aa36dbc0459ca50bbbb0ee1450ca7b84de29539c65e
Analyzer Verdict Alert openphish Crypto/Wallet
GET /wp-content/uploads/elementor/thumbs/argent-pf1an47eorz31pr9v88zk2rmpvf9oi6z90patzarek.jpg HTTP/1.1
Host: winnerinvestgroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://winnerinvestgroup.com/
HTTP/1.1 200 OK
Date: Fri, 04 Nov 2022 15:15:56 GMT
Server: Apache
Last-Modified: Wed, 30 Mar 2022 11:51:52 GMT
Accept-Ranges: bytes
Content-Length: 1304
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
Keep-Alive: timeout=5, max=58
Connection: Keep-Alive
Content-Type: image/jpeg
winnerinvestgroup.com/wp-content/uploads/elementor/thumbs/83f26999937cbc2e2014655796da4b05f77c1de9413a0ee6d0c6178ebcfc3168-pf1aokud9b1biz84lwyjbwjixl08pyu5to08eeluq2.jpg
162.241.253.159200 OK 1.6 kB URL HTTP/1.1 winnerinvestgroup.com/wp-content/uploads/elementor/thumbs/83f26999937cbc2e2014655796da4b05f77c1de9413a0ee6d0c6178ebcfc3168-pf1aokud9b1biz84lwyjbwjixl08pyu5to08eeluq2.jpg
IP 162.241.253.159:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 65x65, components 3\012- data
Hash d4f0c40f392576e1ff117aeaef9f8f0b
636924ad5b79e39a8ce7536d0a9781ddec393b8f
97c6bfa6d069e46ed9faae7dc70d33d4a45c7fc199aa60351811b86df6d056e1
Analyzer Verdict Alert openphish Crypto/Wallet
GET /wp-content/uploads/elementor/thumbs/83f26999937cbc2e2014655796da4b05f77c1de9413a0ee6d0c6178ebcfc3168-pf1aokud9b1biz84lwyjbwjixl08pyu5to08eeluq2.jpg HTTP/1.1
Host: winnerinvestgroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://winnerinvestgroup.com/
HTTP/1.1 200 OK
Date: Fri, 04 Nov 2022 15:15:56 GMT
Server: Apache
Last-Modified: Wed, 30 Mar 2022 11:51:52 GMT
Accept-Ranges: bytes
Content-Length: 1578
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
Keep-Alive: timeout=5, max=72
Connection: Keep-Alive
Content-Type: image/jpeg
winnerinvestgroup.com/connect.livechatinc.com/api/v1/script/e808420d-9257-46ce-9fae-285d34f85c2b/quality-badge62d0.js?ver=4.5.3
162.241.253.159404 Not Found 315 B URL HTTP/1.1 winnerinvestgroup.com/connect.livechatinc.com/api/v1/script/e808420d-9257-46ce-9fae-285d34f85c2b/quality-badge62d0.js?ver=4.5.3
IP 162.241.253.159:0
ASN #46606 UNIFIEDLAYER-AS-1
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3
Analyzer Verdict Alert openphish Crypto/Wallet
fortinet Phishing
GET /connect.livechatinc.com/api/v1/script/e808420d-9257-46ce-9fae-285d34f85c2b/quality-badge62d0.js?ver=4.5.3 HTTP/1.1
Host: winnerinvestgroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://winnerinvestgroup.com/
HTTP/1.1 404 Not Found
Date: Fri, 04 Nov 2022 15:15:56 GMT
Server: Apache
Content-Length: 315
Keep-Alive: timeout=5, max=61
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
winnerinvestgroup.com/wp-content/uploads/elementor/thumbs/gnosis-safe-pf1ank6nwykyj3429x5n8gqgtf8ibcyez7sjzon2gs.jpg
162.241.253.159200 OK 2.0 kB URL HTTP/1.1 winnerinvestgroup.com/wp-content/uploads/elementor/thumbs/gnosis-safe-pf1ank6nwykyj3429x5n8gqgtf8ibcyez7sjzon2gs.jpg
IP 162.241.253.159:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 70x70, components 3\012- data
Hash a0a46c1dfa315fb6d61b0c173a39898a
b8f0cc23c7982588bc38f9cf3fa2c8d03f2cf42a
b5f6f3e14bc6302fc4bd820933ad9cccee1375e4b1d21026cb37b4c0e6014b84
Analyzer Verdict Alert openphish Crypto/Wallet
GET /wp-content/uploads/elementor/thumbs/gnosis-safe-pf1ank6nwykyj3429x5n8gqgtf8ibcyez7sjzon2gs.jpg HTTP/1.1
Host: winnerinvestgroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://winnerinvestgroup.com/
HTTP/1.1 200 OK
Date: Fri, 04 Nov 2022 15:15:56 GMT
Server: Apache
Last-Modified: Wed, 30 Mar 2022 11:51:52 GMT
Accept-Ranges: bytes
Content-Length: 1966
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
Keep-Alive: timeout=5, max=60
Connection: Keep-Alive
Content-Type: image/jpeg
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 471 B IP 142.250.74.35:0
Hash f62b37b31acd5a1918c3a4453a7b39c5
95ca904e055cb2646e0194e429cf6374213cabe6
94533502a038fc926fb0f25dbf72be12fdf6d868c0e836d855ef195d63d1ecbf
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 04 Nov 2022 15:15:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 471 B IP 142.250.74.35:0
Hash 656a355c6cb333c5554fa65748d3d165
15e6dc206e412e258ca49e2eec46e67b831ea4a6
3bdcb16737f73a6985f7cfe3b221882d91b27ab3ec6f940f14477f94a0e40720
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 04 Nov 2022 15:15:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 471 B IP 142.250.74.35:0
Hash 656a355c6cb333c5554fa65748d3d165
15e6dc206e412e258ca49e2eec46e67b831ea4a6
3bdcb16737f73a6985f7cfe3b221882d91b27ab3ec6f940f14477f94a0e40720
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 04 Nov 2022 15:15:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 471 B IP 142.250.74.35:0
Hash f62b37b31acd5a1918c3a4453a7b39c5
95ca904e055cb2646e0194e429cf6374213cabe6
94533502a038fc926fb0f25dbf72be12fdf6d868c0e836d855ef195d63d1ecbf
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 04 Nov 2022 15:15:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
216.58.207.195200 OK 45 kB URL HTTP/2 fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 44856, version 1.0\012- data
Hash 565ce506190ad3af920b40baf1794cec
ad3cba5d06100e09449a864d3b5e58403b478b3d
8778e9af2422858d7052ff9a0f3c12c08ae976bdd6e0316db144cd5579cd97db
GET /s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://winnerinvestgroup.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 44856
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 03 Nov 2022 05:42:51 GMT
expires: Fri, 03 Nov 2023 05:42:51 GMT
cache-control: public, max-age=31536000
age: 120786
last-modified: Mon, 15 Aug 2022 18:20:18 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
216.58.207.195200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data
Hash 15d9f621c3bd1599f0169dcf0bd5e63e
7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://winnerinvestgroup.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 02 Nov 2022 19:34:08 GMT
expires: Thu, 02 Nov 2023 19:34:08 GMT
cache-control: public, max-age=31536000
age: 157309
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
216.58.207.195200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 15860, version 1.0\012- data
Hash e9f5aaf547f165386cd313b995dddd8e
acdef5603c2387b0e5bffd744b679a24a8bc1968
f5aebdfea35d1e7656ef4acc5db1f243209755ae3300943ef8fc6280f363c860
GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://winnerinvestgroup.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15860
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 02 Nov 2022 19:34:08 GMT
expires: Thu, 02 Nov 2023 19:34:08 GMT
cache-control: public, max-age=31536000
age: 157309
last-modified: Wed, 11 May 2022 19:24:42 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
216.58.207.195200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 15920, version 1.0\012- data
Hash 3a44e06eb954b96aa043227f3534189d
23cef6993ddb2b2979e8e7647fc3763694e2ba7d
b019538234514166ec7665359d097403358f8a4c991901983922fb4d56989f1e
GET /s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://winnerinvestgroup.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15920
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 02 Nov 2022 14:07:32 GMT
expires: Thu, 02 Nov 2023 14:07:32 GMT
cache-control: public, max-age=31536000
age: 176905
last-modified: Wed, 11 May 2022 19:24:45 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
winnerinvestgroup.com/connect.livechatinc.com/api/v1/script/e808420d-9257-46ce-9fae-285d34f85c2b/widget5ebf.js?lcv=33a73482-4b6e-40fc-8b17-a4949cce2d1b
162.241.253.159404 Not Found 315 B URL HTTP/1.1 winnerinvestgroup.com/connect.livechatinc.com/api/v1/script/e808420d-9257-46ce-9fae-285d34f85c2b/widget5ebf.js?lcv=33a73482-4b6e-40fc-8b17-a4949cce2d1b
IP 162.241.253.159:0
ASN #46606 UNIFIEDLAYER-AS-1
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3
GET /connect.livechatinc.com/api/v1/script/e808420d-9257-46ce-9fae-285d34f85c2b/widget5ebf.js?lcv=33a73482-4b6e-40fc-8b17-a4949cce2d1b HTTP/1.1
Host: winnerinvestgroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://winnerinvestgroup.com/
HTTP/1.1 404 Not Found
Date: Fri, 04 Nov 2022 15:15:57 GMT
Server: Apache
Content-Length: 315
Keep-Alive: timeout=5, max=65
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 471 B IP 142.250.74.35:0
Hash f62b37b31acd5a1918c3a4453a7b39c5
95ca904e055cb2646e0194e429cf6374213cabe6
94533502a038fc926fb0f25dbf72be12fdf6d868c0e836d855ef195d63d1ecbf
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 04 Nov 2022 15:15:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
winnerinvestgroup.com/wp-content/plugins/contact-form-7/includes/js/index5697.js?ver=5.5.3
162.241.253.159409 Conflict 83 B URL HTTP/1.1 winnerinvestgroup.com/wp-content/plugins/contact-form-7/includes/js/index5697.js?ver=5.5.3
IP 162.241.253.159:0
ASN #46606 UNIFIEDLAYER-AS-1
File type HTML document, ASCII text, with no line terminators
Hash 26267cd8990f15d3bbea71684a6d5995
ac3b38cf3fe0e112bb6aeb7e05226b7133575d93
769e8ab745a0fe4bf811036e75a8630e38c50a18cb3e24d539ce4a0722c7c85e
GET /wp-content/plugins/contact-form-7/includes/js/index5697.js?ver=5.5.3 HTTP/1.1
Host: winnerinvestgroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://winnerinvestgroup.com/
HTTP/1.1 409 Conflict
Date: Fri, 04 Nov 2022 15:15:57 GMT
Server: Apache
Content-Length: 83
Keep-Alive: timeout=5, max=60
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
winnerinvestgroup.com/wp-content/uploads/2021/10/gitcoin-grants-1024x370.png
162.241.253.159200 OK 44 kB URL HTTP/1.1 winnerinvestgroup.com/wp-content/uploads/2021/10/gitcoin-grants-1024x370.png
IP 162.241.253.159:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 1024 x 370, 8-bit/color RGBA, non-interlaced\012- data
Hash b89cc804f61130194346319c6a35dde7
d555bb23d43b66b0c4a47e7430e7713764d2d733
1552d8ff356d29b363eca82bddfb2a468a0d9f6fac109c17cd1909e95ba869fd
Analyzer Verdict Alert openphish Crypto/Wallet
GET /wp-content/uploads/2021/10/gitcoin-grants-1024x370.png HTTP/1.1
Host: winnerinvestgroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://winnerinvestgroup.com/
HTTP/1.1 200 OK
Date: Fri, 04 Nov 2022 15:15:57 GMT
Server: Apache
Last-Modified: Wed, 30 Mar 2022 11:51:52 GMT
Accept-Ranges: bytes
Content-Length: 43842
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
Keep-Alive: timeout=5, max=57
Connection: Keep-Alive
Content-Type: image/png
winnerinvestgroup.com/wp-content/uploads/2021/10/ethereum-foundation.png
162.241.253.159200 OK 20 kB URL HTTP/1.1 winnerinvestgroup.com/wp-content/uploads/2021/10/ethereum-foundation.png
IP 162.241.253.159:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 473 x 166, 8-bit/color RGBA, non-interlaced\012- data
Hash e0a72f64e573d3bdbe482a88c31997fe
c2db6c4615db2e7305d0046154b5be634d1315a7
091f983d60a974aed32480ebabc5b1be40ee4fd37ae4891535e6ca1add80727d
Analyzer Verdict Alert openphish Crypto/Wallet
GET /wp-content/uploads/2021/10/ethereum-foundation.png HTTP/1.1
Host: winnerinvestgroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://winnerinvestgroup.com/
HTTP/1.1 200 OK
Date: Fri, 04 Nov 2022 15:15:57 GMT
Server: Apache
Last-Modified: Wed, 30 Mar 2022 11:51:52 GMT
Accept-Ranges: bytes
Content-Length: 19600
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
Keep-Alive: timeout=5, max=71
Connection: Keep-Alive
Content-Type: image/png
winnerinvestgroup.com/wp-content/uploads/2021/10/walletconnect-social.png
162.241.253.159200 OK 118 kB URL HTTP/1.1 winnerinvestgroup.com/wp-content/uploads/2021/10/walletconnect-social.png
IP 162.241.253.159:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 726 x 240, 8-bit/color RGBA, non-interlaced\012- data
Size 118 kB (118312 bytes)
Hash 19006a455d235265e21df2178ad38154
b86c4db7c37b90b1d906344dfe91184beb038d1b
1a0f5108cef46225811363484debf1164f0880e643789a72fae27c132c154c4a
Analyzer Verdict Alert openphish Crypto/Wallet
GET /wp-content/uploads/2021/10/walletconnect-social.png HTTP/1.1
Host: winnerinvestgroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://winnerinvestgroup.com/
HTTP/1.1 200 OK
Date: Fri, 04 Nov 2022 15:15:57 GMT
Server: Apache
Last-Modified: Wed, 30 Mar 2022 11:51:52 GMT
Accept-Ranges: bytes
Content-Length: 118312
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
Keep-Alive: timeout=5, max=59
Connection: Keep-Alive
Content-Type: image/png
winnerinvestgroup.com/wp-content/uploads/2021/10/consensys-labs-1024x369.png
162.241.253.159200 OK 25 kB URL HTTP/1.1 winnerinvestgroup.com/wp-content/uploads/2021/10/consensys-labs-1024x369.png
IP 162.241.253.159:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 1024 x 369, 8-bit/color RGBA, non-interlaced\012- data
Hash cb039f6ff6927d09c89b11301410f602
0a338763c46e9739a5fd692c42da258bd822e886
71cb3a738ad142ec9fb10b71ddde13bc841a89738f0526d2c6be5f9ac8cf803d
Analyzer Verdict Alert openphish Crypto/Wallet
GET /wp-content/uploads/2021/10/consensys-labs-1024x369.png HTTP/1.1
Host: winnerinvestgroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://winnerinvestgroup.com/
HTTP/1.1 200 OK
Date: Fri, 04 Nov 2022 15:15:57 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Wed, 30 Mar 2022 11:51:52 GMT
Accept-Ranges: bytes
Content-Length: 24778
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
Keep-Alive: timeout=5, max=75
Content-Type: image/png
winnerinvestgroup.com/wp-content/uploads/2021/10/spaces_-LJJeCjcLrr53DcT1Ml7_avatar.png
162.241.253.159200 OK 15 kB URL HTTP/1.1 winnerinvestgroup.com/wp-content/uploads/2021/10/spaces_-LJJeCjcLrr53DcT1Ml7_avatar.png
IP 162.241.253.159:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 256 x 256, 8-bit/color RGBA, non-interlaced\012- data
Hash 67b9c88b63853487c8aecf0786f775e8
405a77eb97c6d08b2f1a6a793e128a607ea2e881
398063548241aa249f2fe8fbb4dbc43808376f14109e25e88bea1aee117b2d3b
Analyzer Verdict Alert openphish Crypto/Wallet
GET /wp-content/uploads/2021/10/spaces_-LJJeCjcLrr53DcT1Ml7_avatar.png HTTP/1.1
Host: winnerinvestgroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://winnerinvestgroup.com/
HTTP/1.1 200 OK
Date: Fri, 04 Nov 2022 15:15:57 GMT
Server: Apache
Last-Modified: Wed, 30 Mar 2022 11:51:52 GMT
Accept-Ranges: bytes
Content-Length: 15089
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
Keep-Alive: timeout=5, max=58
Connection: Keep-Alive
Content-Type: image/png
winnerinvestgroup.com/wp-content/uploads/2021/10/spaces_-LJJeCjcLrr53DcT1Ml7_avatar-100x100.png
162.241.253.159200 OK 4.1 kB URL HTTP/1.1 winnerinvestgroup.com/wp-content/uploads/2021/10/spaces_-LJJeCjcLrr53DcT1Ml7_avatar-100x100.png
IP 162.241.253.159:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash 08b14cf4e543b1e102fb9f6e52a23567
3c46aee2cfb2c346f8c2a7f37cd13fc3dd08ad30
b9c34080dc3d97c4854b18890efd326465ec4cdb5ae3f72c832f2f6013997a1a
Analyzer Verdict Alert openphish Crypto/Wallet
GET /wp-content/uploads/2021/10/spaces_-LJJeCjcLrr53DcT1Ml7_avatar-100x100.png HTTP/1.1
Host: winnerinvestgroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://winnerinvestgroup.com/
HTTP/1.1 200 OK
Date: Fri, 04 Nov 2022 15:15:57 GMT
Server: Apache
Last-Modified: Wed, 30 Mar 2022 11:51:52 GMT
Accept-Ranges: bytes
Content-Length: 4128
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
Keep-Alive: timeout=5, max=64
Connection: Keep-Alive
Content-Type: image/png
winnerinvestgroup.com/?wc-ajax=get_refreshed_fragments
162.241.253.159200 OK 19 kB URL HTTP/1.1 winnerinvestgroup.com/?wc-ajax=get_refreshed_fragments
IP 162.241.253.159:0
ASN #46606 UNIFIEDLAYER-AS-1
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (2356)
Hash 5b02209b47b4ed1dcd27e126d3452388
b49ea7da3c2e2c7bc8aba78d639fc82ba5b9a357
2f923635e93b164ef32d55f3a8c0d78c1be8ee0bfcafaf492a9f2a837be67124
Analyzer Verdict Alert openphish Crypto/Wallet
fortinet Phishing
POST /?wc-ajax=get_refreshed_fragments HTTP/1.1
Host: winnerinvestgroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 18
Origin: http://winnerinvestgroup.com
Connection: keep-alive
Referer: http://winnerinvestgroup.com/
HTTP/1.1 200 OK
Date: Fri, 04 Nov 2022 15:15:57 GMT
Server: Apache
Last-Modified: Thu, 17 Feb 2022 09:31:30 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
Keep-Alive: timeout=5, max=74
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html
fonts.googleapis.com/css?family=Open+Sans%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CPoppins%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&subset=latin%2Clatin-ext&ver=1.0.0
142.250.74.10200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Open+Sans%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CPoppins%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&subset=latin%2Clatin-ext&ver=1.0.0
IP 142.250.74.10:0
GET /css?family=Open+Sans%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CPoppins%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&subset=latin%2Clatin-ext&ver=1.0.0 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://winnerinvestgroup.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 04 Nov 2022 15:15:54 GMT
date: Fri, 04 Nov 2022 15:15:54 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Roboto%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto+Slab%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=auto&ver=5.8.2
142.250.74.10200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Roboto%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto+Slab%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=auto&ver=5.8.2
IP 142.250.74.10:0
GET /css?family=Roboto%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto+Slab%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=auto&ver=5.8.2 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://winnerinvestgroup.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 04 Nov 2022 15:15:54 GMT
date: Fri, 04 Nov 2022 15:15:54 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2