r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 09a973de929ab7452edc342c780d3668
3f14f6e0a36f76863c0aea6fb561c266404a7ea3
e82ca5f310e37267fbf792427747e65c2bb35e684d3f629c0aa302f688bc4f80
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E82CA5F310E37267FBF792427747E65C2BB35E684D3F629C0AA302F688BC4F80"
Last-Modified: Fri, 23 Sep 2022 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2540
Expires: Sun, 25 Sep 2022 05:02:44 GMT
Date: Sun, 25 Sep 2022 04:20:24 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
143.204.55.27200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP 143.204.55.27:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 1b3053fa528e28810f8a2cc9284cc921
cca9eb471d941881a6b9a1793aecb6c281908f6a
a2427848ba35575dda8a82cf88f104978234c05389deebc3fc8279d9075eff45
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Alert, Content-Type, Backoff, Content-Length, Retry-After
Cache-Control: max-age=3600
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Sun, 25 Sep 2022 04:14:47 GMT
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 83a23d85c009b0c0e3626072e9f997fe.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: W2i0pPuhzfDMmRFTS-nZM7P2tVOrd7BYr6i7QRDx6cxIi0kNRVPujQ==
Age: 337
premierinvestmentsolutions.live/
199.188.200.223301 Moved Permanently 707 B URL HTTP/1.1 premierinvestmentsolutions.live/
IP 199.188.200.223:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF, LF line terminators
Hash 1304294c0823ca486542ba408ed761e3
b2a70fb2d810ca13985882e6981f33998823e83e
3bbe72f3baa8ec61de17a1d767fca58704769684b7abe9161d0c4eaf4c8f0982
Analyzer Verdict Alert fortinet Phishing
GET / HTTP/1.1
Host: premierinvestmentsolutions.live
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
keep-alive: timeout=5, max=100
content-type: text/html
content-length: 707
date: Sun, 25 Sep 2022 04:20:23 GMT
server: LiteSpeed
location: https://premierinvestmentsolutions.live/
x-turbo-charged-by: LiteSpeed
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
143.204.55.49200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
IP 143.204.55.49:0
File type PEM certificate\012- , ASCII text
Hash 6113f8408c59aebe188d6af273b90743
7398873bf00f99944eaa77ad3ebc0d43c23dba6b
b6e0cc9ad68306208a160f3835fb8da76acc5a82d8fde1da5a98e1de1c11a770
GET /chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Sat, 10 Sep 2022 18:47:45 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Sat, 24 Sep 2022 04:35:15 GMT
etag: "6113f8408c59aebe188d6af273b90743"
x-cache: Hit from cloudfront
via: 1.1 814e8c24454087e83cd261a6cf477166.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: BS62hIBF8VyPYsqdx4YsbAN_93kbxUVPwnooTWH4Sv-uIlLKHGERJw==
age: 85510
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 25 Sep 2022 04:20:24 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.sectigo.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash b0e2de87008bbbeaa3284f5d74469aff
9a23ff7115e412e4a4b9d0d3e8fabfcdc16e994a
e76f6881ba26c8f8e414a7d8c075246a7ea71a95c0172a09fd6e31aa6e033c29
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 04:20:24 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Wed, 21 Sep 2022 21:10:07 GMT
Expires: Wed, 28 Sep 2022 21:10:06 GMT
Etag: "9a23ff7115e412e4a4b9d0d3e8fabfcdc16e994a"
Cache-Control: max-age=319181,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb3
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7500f794e82cb51b-OSL
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
143.204.55.27200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 143.204.55.27:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Date: Sun, 25 Sep 2022 04:04:18 GMT
Cache-Control: max-age=3600, max-age=3600
Expires: Sun, 25 Sep 2022 04:06:16 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 6a757ab2991da716151f94ca00b38098.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: eTVK3fQfVku6UXjjixrLY84ZnTVfeLSWVaMPoINZjXDBMD_jtFnu_Q==
Age: 967
premierinvestmentsolutions.live/
199.188.200.223200 OK 6.9 kB URL HTTP/2 premierinvestmentsolutions.live/
IP 199.188.200.223:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (695)
Hash 36f776704a5b564898ac089f7ef0c0c1
d294c631d30411be3e31049ab6b961644fb5c8c3
8682e6a3862aeeac730b1d07bf85e88bc535c4a61026c8972abd878618d3c103
Analyzer Verdict Alert fortinet Phishing
GET / HTTP/1.1
Host: premierinvestmentsolutions.live
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
x-powered-by: PHP/5.6.40
content-type: text/html; charset=UTF-8
content-length: 6912
content-encoding: br
vary: Accept-Encoding
date: Sun, 25 Sep 2022 04:20:24 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash a7809de115ea73f8b61f3d20a9978493
01fc65a2b694d7aadd5204d21801e87b2b55b73e
72692486033feeb149424c59576c6c75b17228dfc89b4c369d2e17cc4bff3d52
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5679
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 25 Sep 2022 04:20:24 GMT
Last-Modified: Sun, 25 Sep 2022 02:45:46 GMT
Server: ECS (ska/F70E)
X-Cache: HIT
Content-Length: 471
premierinvestmentsolutions.live/css/animate.css
199.188.200.223200 OK 4.4 kB URL HTTP/2 premierinvestmentsolutions.live/css/animate.css
IP 199.188.200.223:0
File type ASCII text, with very long lines (54297), with CRLF line terminators
Hash 11616af75ef64830c764ccea6b9ff578
ad7f4f29c13d57e16b0d3565e35ca8e83c8efc00
a994399ad9b551566b8336c7d301e90a96eb18303dae3b983ca027557dd0b0d1
GET /css/animate.css HTTP/1.1
Host: premierinvestmentsolutions.live
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://premierinvestmentsolutions.live/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 02 Oct 2022 04:20:24 GMT
content-type: text/css
last-modified: Thu, 01 Aug 2019 13:51:16 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 4407
date: Sun, 25 Sep 2022 04:20:24 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
premierinvestmentsolutions.live/css/owl.carousel.css
199.188.200.223200 OK 994 B URL HTTP/2 premierinvestmentsolutions.live/css/owl.carousel.css
IP 199.188.200.223:0
Hash 2193f195f63aca1652286e71031c73fd
cc165fc7991e609c223166b67c52a49785d87eca
3d0cf480885304964f2b8901eec20bdfb72104f95eec221274ff2cb7aadd7fec
GET /css/owl.carousel.css HTTP/1.1
Host: premierinvestmentsolutions.live
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://premierinvestmentsolutions.live/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 02 Oct 2022 04:20:24 GMT
content-type: text/css
last-modified: Thu, 26 Jun 2014 23:51:42 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 994
date: Sun, 25 Sep 2022 04:20:24 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash e325fd0131426663ca7f03263279b50e
f98ba87d80e7d548f9509166567af2eb2cda1449
a8b58ab97ea3f80943bf34c412348e132cf1bbc1074dbf123d4da8aff695d8a7
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5963
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 25 Sep 2022 04:20:25 GMT
Last-Modified: Sun, 25 Sep 2022 02:41:03 GMT
Server: ECS (ska/F70E)
X-Cache: HIT
Content-Length: 279
push.services.mozilla.com/
35.161.230.192101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 35.161.230.192:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 0xmHfEvttAT8/9O+Shg2eA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: 4AZWkzgIbKw5f4b+dn8L0sgAzz0=
premierinvestmentsolutions.live/css/bootstrap.min.css
199.188.200.223200 OK 16 kB URL HTTP/2 premierinvestmentsolutions.live/css/bootstrap.min.css
IP 199.188.200.223:0
File type ASCII text, with very long lines (65009)
Hash 1a8d38522d7bd81676dc68825ed90a11
640e0f326b8d8f78d964985f8b5bcd247a1cfec3
3854f7b758dcf28b23ecbd443a05a4227cd2ece4bd03f16fd13756341161ee08
GET /css/bootstrap.min.css HTTP/1.1
Host: premierinvestmentsolutions.live
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://premierinvestmentsolutions.live/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 02 Oct 2022 04:20:24 GMT
content-type: text/css
last-modified: Tue, 01 Mar 2016 15:05:34 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 16421
date: Sun, 25 Sep 2022 04:20:24 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
premierinvestmentsolutions.live/css/owl.transitions.css
199.188.200.223200 OK 652 B URL HTTP/2 premierinvestmentsolutions.live/css/owl.transitions.css
IP 199.188.200.223:0
Hash 2ed21aa96cf87b0c0284ccc8c32da2a0
24632a081fbdb19ae4962d8aaa720c08f0249acf
5fe9880a5013fa216f1d57c448d657b4beae1ddc74568d8b3d3718633e9c31b3
GET /css/owl.transitions.css HTTP/1.1
Host: premierinvestmentsolutions.live
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://premierinvestmentsolutions.live/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 02 Oct 2022 04:20:24 GMT
content-type: text/css
last-modified: Mon, 14 Apr 2014 23:33:26 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 652
date: Sun, 25 Sep 2022 04:20:24 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
premierinvestmentsolutions.live/css/flaticon.css
199.188.200.223200 OK 712 B URL HTTP/2 premierinvestmentsolutions.live/css/flaticon.css
IP 199.188.200.223:0
Hash 9eae411831c40f6f733e950a4c9ced68
07a3ce332b06234f2c9f643fa37eb1d56a751efb
d1f928ccd2a6369f3113da337ac9ab8f34d80dd4f82559343a16c107dcded96d
GET /css/flaticon.css HTTP/1.1
Host: premierinvestmentsolutions.live
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://premierinvestmentsolutions.live/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 02 Oct 2022 04:20:24 GMT
content-type: text/css
last-modified: Fri, 17 Jan 2020 17:22:22 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 712
date: Sun, 25 Sep 2022 04:20:24 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
premierinvestmentsolutions.live/css/font-awesome.min.css
199.188.200.223200 OK 5.9 kB URL HTTP/2 premierinvestmentsolutions.live/css/font-awesome.min.css
IP 199.188.200.223:0
File type ASCII text, with very long lines (27303)
Hash 7f91c596474be2ddbf15257459ba8740
83ec6a757f917013c91cb74dedda311764c324a0
c3331deb1b613d0994eb7841bb8019df2f81bbf6a0f51da9d5881f36cd5409f8
GET /css/font-awesome.min.css HTTP/1.1
Host: premierinvestmentsolutions.live
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://premierinvestmentsolutions.live/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 02 Oct 2022 04:20:24 GMT
content-type: text/css
last-modified: Wed, 24 Feb 2016 20:45:24 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 5878
date: Sun, 25 Sep 2022 04:20:24 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
premierinvestmentsolutions.live/css/meanmenu.min.css
199.188.200.223200 OK 771 B URL HTTP/2 premierinvestmentsolutions.live/css/meanmenu.min.css
IP 199.188.200.223:0
File type ASCII text, with CRLF line terminators
Hash 8ad7ec0f4829fe9267073a7411ad4931
cd5cece6522a7652a5aa8d5df8df8bbeee69bd87
17eddfc3f3e141d275ff5ab4c019deda64e171b75f5222226f7bb581c3185fee
GET /css/meanmenu.min.css HTTP/1.1
Host: premierinvestmentsolutions.live
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://premierinvestmentsolutions.live/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 02 Oct 2022 04:20:24 GMT
content-type: text/css
last-modified: Thu, 29 Aug 2019 06:09:20 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 771
date: Sun, 25 Sep 2022 04:20:24 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
premierinvestmentsolutions.live/css/themify-icons.css
199.188.200.223200 OK 2.7 kB URL HTTP/2 premierinvestmentsolutions.live/css/themify-icons.css
IP 199.188.200.223:0
Hash 0e7b25403e1c6ff00203071fcbf518db
26b2f285a1fa1e796cf704726f959eeedcdd3a93
4037010da57023768039da16cf5c543e3dccd2bee04248af4b2b1e2408b277fb
GET /css/themify-icons.css HTTP/1.1
Host: premierinvestmentsolutions.live
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://premierinvestmentsolutions.live/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 02 Oct 2022 04:20:24 GMT
content-type: text/css
last-modified: Wed, 18 May 2016 01:31:00 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2669
date: Sun, 25 Sep 2022 04:20:24 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
premierinvestmentsolutions.live/css/magnific.min.css
199.188.200.223200 OK 1.5 kB URL HTTP/2 premierinvestmentsolutions.live/css/magnific.min.css
IP 199.188.200.223:0
File type ASCII text, with CRLF line terminators
Hash 982320dc260b08b77f00239277753a1e
fdda2255e383803d702ef3c532ad37a34d708a61
bd53f3d090b7ecba4f657f67534c15bdbf6590b5656496005e3de1eed729a605
GET /css/magnific.min.css HTTP/1.1
Host: premierinvestmentsolutions.live
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://premierinvestmentsolutions.live/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 02 Oct 2022 04:20:24 GMT
content-type: text/css
last-modified: Wed, 06 Dec 2017 16:05:16 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1459
date: Sun, 25 Sep 2022 04:20:24 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
premierinvestmentsolutions.live/js/vendor/modernizr-2.8.3.min.js
199.188.200.223200 OK 6.4 kB URL HTTP/2 premierinvestmentsolutions.live/js/vendor/modernizr-2.8.3.min.js
IP 199.188.200.223:0
File type HTML document, ASCII text, with very long lines (14856)
Hash 62799550b8dbb6829fbc763ea3ca7e52
607ba4785f98893153189f4677109b07534511b8
cd0e01eaab4bceb595b70db1bc8e087bef6706fe3b8fa627df915666ffad6897
Analyzer Verdict Alert fortinet Phishing
GET /js/vendor/modernizr-2.8.3.min.js HTTP/1.1
Host: premierinvestmentsolutions.live
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://premierinvestmentsolutions.live/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 02 Oct 2022 04:20:25 GMT
content-type: application/javascript
last-modified: Tue, 12 Jan 2016 13:12:52 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 6405
date: Sun, 25 Sep 2022 04:20:25 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
premierinvestmentsolutions.live/js/vendor/jquery-1.12.4.min.js
199.188.200.223200 OK 33 kB URL HTTP/2 premierinvestmentsolutions.live/js/vendor/jquery-1.12.4.min.js
IP 199.188.200.223:0
File type ASCII text, with very long lines (32060)
Hash 9579eea4edd42bfd7ba53a5c38751486
7501b8e572a27c28958a87a68cf58486e078f4b0
77154cbbbd66f16262843e556a1b735cef13b8d7fd49fb17cd1f4bcc759a589b
Analyzer Verdict Alert fortinet Phishing
GET /js/vendor/jquery-1.12.4.min.js HTTP/1.1
Host: premierinvestmentsolutions.live
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://premierinvestmentsolutions.live/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 02 Oct 2022 04:20:25 GMT
content-type: application/javascript
last-modified: Tue, 12 Jan 2016 13:12:52 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 33331
date: Sun, 25 Sep 2022 04:20:25 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
premierinvestmentsolutions.live/css/responsive.css
199.188.200.223200 OK 1.6 kB URL HTTP/2 premierinvestmentsolutions.live/css/responsive.css
IP 199.188.200.223:0
File type ASCII text, with CRLF line terminators
Hash d032d1fc4d943fdc481dc62c6c65534d
2c7f2b729838537c52be8e86f11071a5e735b138
13efbb6d59b46639a176e63c2957f99b43a910dc786bbc637224e7ed43615c26
GET /css/responsive.css HTTP/1.1
Host: premierinvestmentsolutions.live
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://premierinvestmentsolutions.live/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 02 Oct 2022 04:20:25 GMT
content-type: text/css
last-modified: Sun, 26 Jan 2020 16:00:10 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1569
date: Sun, 25 Sep 2022 04:20:25 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
premierinvestmentsolutions.live/js/jquery.stellar.min.js
199.188.200.223200 OK 3.6 kB URL HTTP/2 premierinvestmentsolutions.live/js/jquery.stellar.min.js
IP 199.188.200.223:0
File type ASCII text, with very long lines (13269), with CRLF line terminators
Hash dc9d40b628e459a7c710fd4b10fa8872
476411512a7d179ca9fe979f2cf057289bfc66b4
fd214b6578f39a734c41ab8f06786d6e5681726c03507555f74742800049476d
Analyzer Verdict Alert fortinet Phishing
GET /js/jquery.stellar.min.js HTTP/1.1
Host: premierinvestmentsolutions.live
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://premierinvestmentsolutions.live/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 02 Oct 2022 04:20:25 GMT
content-type: application/javascript
last-modified: Wed, 04 Oct 2017 00:22:24 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3600
date: Sun, 25 Sep 2022 04:20:25 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
premierinvestmentsolutions.live/img/review/3.jpg
199.188.200.223200 OK 6.4 kB URL HTTP/2 premierinvestmentsolutions.live/img/review/3.jpg
IP 199.188.200.223:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 120x120, components 3\012- data
Hash 1cdb5e270c361cc32a388b5a67471191
e6a6bc26b2fd228d510ef388cd194af9384cce98
a928431aa4e2dcd5d40ff90ed91b45939a08b6a0ef51c5e18fa06cfa65959632
GET /img/review/3.jpg HTTP/1.1
Host: premierinvestmentsolutions.live
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://premierinvestmentsolutions.live/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 02 Oct 2022 04:20:25 GMT
content-type: image/jpeg
last-modified: Thu, 10 Sep 2020 05:06:36 GMT
accept-ranges: bytes
content-length: 6377
date: Sun, 25 Sep 2022 04:20:25 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
premierinvestmentsolutions.live/img/review/4.jpg
199.188.200.223200 OK 5.6 kB URL HTTP/2 premierinvestmentsolutions.live/img/review/4.jpg
IP 199.188.200.223:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 120x120, components 3\012- data
Hash a0c6e4fcf1b05400534764dfdc8e5172
21c57adcf9a7f0b6d024e392c145d8af8ce19f70
34ff42751e278f1059c2155f702df28ca317f27451b26b6a500ecf93cc7e52f9
GET /img/review/4.jpg HTTP/1.1
Host: premierinvestmentsolutions.live
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://premierinvestmentsolutions.live/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 02 Oct 2022 04:20:25 GMT
content-type: image/jpeg
last-modified: Thu, 10 Sep 2020 05:06:46 GMT
accept-ranges: bytes
content-length: 5625
date: Sun, 25 Sep 2022 04:20:25 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
premierinvestmentsolutions.live/js/plugins.js
199.188.200.223200 OK 1.6 kB URL HTTP/2 premierinvestmentsolutions.live/js/plugins.js
IP 199.188.200.223:0
File type Unicode text, UTF-8 text, with very long lines (1872)
Hash 2f6252273e14326a62a6ebbf528674ed
45bfea5013a714bf3859bbc3eba9b7c7d983cf25
573310db6818e1494652c019f1c9a6a334284e2802e806328babee31eb53e9f5
Analyzer Verdict Alert fortinet Phishing
GET /js/plugins.js HTTP/1.1
Host: premierinvestmentsolutions.live
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://premierinvestmentsolutions.live/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 02 Oct 2022 04:20:25 GMT
content-type: application/javascript
last-modified: Tue, 01 Mar 2016 15:15:16 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1566
date: Sun, 25 Sep 2022 04:20:25 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
premierinvestmentsolutions.live/style.css
199.188.200.223200 OK 9.8 kB URL HTTP/2 premierinvestmentsolutions.live/style.css
IP 199.188.200.223:0
File type ASCII text, with CRLF line terminators
Hash c668d0d57793abf3d1fb1f4d5b3d991a
d80c1a50680792a7ab86dbe68b3d18f1e8bb6db8
9803bc209471a25ead047ae7132cdcc4537f3326107b70b6f1400cd4f96cb573
GET /style.css HTTP/1.1
Host: premierinvestmentsolutions.live
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://premierinvestmentsolutions.live/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 02 Oct 2022 04:20:25 GMT
content-type: text/css
last-modified: Mon, 12 Sep 2022 11:32:45 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 9777
date: Sun, 25 Sep 2022 04:20:25 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash cfbe772bfdcc656e94ceed53256863ca
34055ed3761ab4b69af25a2cb70ca7a337a9f79b
7464464772c70e6a9f1b516b9fc3b60f4e567c10f968c573d5a187f5f22d0722
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 25 Sep 2022 04:20:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 7038cca95198779d8bb479045eb56652
e9dcf9451e849f4d55b0909b33a51bd0b1a35296
0fc47dba3f2789b7c509a4916b1fe3c7b6b30c6778e5354742256125730310f3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0FC47DBA3F2789B7C509A4916B1FE3C7B6B30C6778E5354742256125730310F3"
Last-Modified: Fri, 23 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7483
Expires: Sun, 25 Sep 2022 06:25:09 GMT
Date: Sun, 25 Sep 2022 04:20:26 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 7038cca95198779d8bb479045eb56652
e9dcf9451e849f4d55b0909b33a51bd0b1a35296
0fc47dba3f2789b7c509a4916b1fe3c7b6b30c6778e5354742256125730310f3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0FC47DBA3F2789B7C509A4916B1FE3C7B6B30C6778E5354742256125730310F3"
Last-Modified: Fri, 23 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7483
Expires: Sun, 25 Sep 2022 06:25:09 GMT
Date: Sun, 25 Sep 2022 04:20:26 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 7038cca95198779d8bb479045eb56652
e9dcf9451e849f4d55b0909b33a51bd0b1a35296
0fc47dba3f2789b7c509a4916b1fe3c7b6b30c6778e5354742256125730310f3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0FC47DBA3F2789B7C509A4916B1FE3C7B6B30C6778E5354742256125730310F3"
Last-Modified: Fri, 23 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7483
Expires: Sun, 25 Sep 2022 06:25:09 GMT
Date: Sun, 25 Sep 2022 04:20:26 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 7038cca95198779d8bb479045eb56652
e9dcf9451e849f4d55b0909b33a51bd0b1a35296
0fc47dba3f2789b7c509a4916b1fe3c7b6b30c6778e5354742256125730310f3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0FC47DBA3F2789B7C509A4916B1FE3C7B6B30C6778E5354742256125730310F3"
Last-Modified: Fri, 23 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7483
Expires: Sun, 25 Sep 2022 06:25:09 GMT
Date: Sun, 25 Sep 2022 04:20:26 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1deb918e-bcb0-4629-aaa7-0ae0322969be.jpeg
34.120.237.76200 OK 13 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1deb918e-bcb0-4629-aaa7-0ae0322969be.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3 DIY-Thermocam raw data\012- (Lepton 2.x), scale 3-257, spot sensor temperature 0.000000, unit celsius, color scheme 0, show scale bar, calibration: offset 0.000000, slope 241253891388563521536.000000\012- data
Hash b3a72e81317074689a71dac7059e4b6a
b6d56333d7f1ea7ddc8838d84de498ff913c5464
e665a8821b5e7b2e78787647a08d629bf70cbf4cbfee2057c8601cf0565154a1
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1deb918e-bcb0-4629-aaa7-0ae0322969be.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12826
x-amzn-requestid: f075cf62-acfc-4bc1-be14-7c3dafb7aaed
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YfVRNFP-oAMFgrA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6322cf3a-184b678042d64ac9266b1128;Sampled=0
x-amzn-remapped-date: Thu, 15 Sep 2022 07:07:38 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: W6ZD1652Yn1xqZG7ehDcirlYoG8Hcsrdj11Fzfgj7zb-OiU8xHj1gw==
via: 1.1 7f5e0d3b9ea85d0d75063a66c0ebc840.cloudfront.net (CloudFront), 1.1 91356d2137f5a7345e93da4516c49ec4.cloudfront.net (CloudFront), 1.1 google
date: Sat, 24 Sep 2022 21:37:32 GMT
age: 24174
etag: "b6d56333d7f1ea7ddc8838d84de498ff913c5464"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
code.tidio.co/lcq01ihqnpmtbg9t0m52bazcpc8kljld.js
172.67.72.223302 Found 11 kB URL HTTP/2 code.tidio.co/lcq01ihqnpmtbg9t0m52bazcpc8kljld.js
IP 172.67.72.223:0
Hash b683c3b0d58a50e0e806f96602fdf7fb
cc4957a11bc390bab5b9c1d7a89964788f027bda
278602b7d246127c8b86ea90596a4696a52a6b93bd4ad6b31f7dde3d205bb49e
GET /lcq01ihqnpmtbg9t0m52bazcpc8kljld.js HTTP/1.1
Host: code.tidio.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://premierinvestmentsolutions.live/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Sun, 25 Sep 2022 04:20:25 GMT
content-type: text/html
location: https://widget-v4.tidiochat.com/1_114_0/static/js/render.64874ea49214d2736b46.js
cache-control: private, no-cache, no-store, must-revalidate
widget-cache-status: HIT
cf-cache-status: BYPASS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=wW2MRGgNAM1AUG0hS3wlWeQay5EBPSQ2Eg%2F2HY4sXl6lVJxpABya0tdvFvwMzD7bWlRSGfqBP0lxT%2FdO2RWJhrKTmEU9IWUHLFsm7vl%2FaoDBL4Tq%2F9D91XEo2lfhFxQ%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7500f7975d2e0b45-OSL
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7c48523c-250d-4030-8145-14c8967dc600.jpeg
34.120.237.76200 OK 8.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7c48523c-250d-4030-8145-14c8967dc600.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash dfdacc8edea3c24dad020d7e9c11b3f4
2b6e37596e88b62f288dc8e8c937fd904fae28d5
338a44f3bcc01bdd197f037dd8f8bf58a18dea00127465488efe76fb72a6fdff
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7c48523c-250d-4030-8145-14c8967dc600.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8914
x-amzn-requestid: 8cfdc32e-f04a-4fd6-a1f1-632934a682fd
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y-_EUHqJoAMF7MQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632f7881-14a6d8ef126409964607e0aa;Sampled=0
x-amzn-remapped-date: Sat, 24 Sep 2022 21:37:05 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: kdF6En2vbJhRH1bkYMOuNm5XOIsT1qs3FE281N1SKn1FbyW-oNZsEw==
via: 1.1 470e3fe246a660ba6ace67a79f78d246.cloudfront.net (CloudFront), 1.1 b36bf2c460ac693ce304817aed073112.cloudfront.net (CloudFront), 1.1 google
date: Sat, 24 Sep 2022 21:37:06 GMT
age: 24200
etag: "2b6e37596e88b62f288dc8e8c937fd904fae28d5"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3056f6d6-1a08-46ac-94a1-eb08e1b784e1.jpeg
34.120.237.76200 OK 7.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3056f6d6-1a08-46ac-94a1-eb08e1b784e1.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 9bbdad67489e993cebd23ffb04ebd02c
3a69c08b4d25d1dae1abbabd103d6d295a2f5425
ee3839246f3bada3e3190c240c8ac64d8012a87c062c5e006ed80a7edcd773a5
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3056f6d6-1a08-46ac-94a1-eb08e1b784e1.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7404
x-amzn-requestid: ef623ade-f397-40a9-b88d-0394f22a8d8b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YpOJPGYyoAMFVEA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6326c3d4-2da73ceb54b36ade5bf4ce1a;Sampled=0
x-amzn-remapped-date: Sun, 18 Sep 2022 07:08:04 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: jqPyyJr0H9dHTBuQb9Z8bNBwMXhBz5pz09u_j1R0Qpp-iGUGFXm0VQ==
via: 1.1 2dc111aa3ead15d061e41a423155a53a.cloudfront.net (CloudFront), 1.1 91356d2137f5a7345e93da4516c49ec4.cloudfront.net (CloudFront), 1.1 google
date: Sat, 24 Sep 2022 13:56:57 GMT
age: 51809
etag: "3a69c08b4d25d1dae1abbabd103d6d295a2f5425"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9c4875ff-4140-470a-943a-bc27f68957a5.jpeg
34.120.237.76200 OK 7.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9c4875ff-4140-470a-943a-bc27f68957a5.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 00c09f267aacde9465a329542463b9e5
1534aa8a5158dfa9592d65e6fb761b41c0852c58
276ff24598159f62fd7333992575834f901eea7c75a228b9c12d1c049f1df558
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9c4875ff-4140-470a-943a-bc27f68957a5.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7642
x-amzn-requestid: b0fc9bea-7735-43c0-a176-eae4d5000a6e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y2ZPtHajIAMF8zQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632c08ca-391092bd30ae5bf9692e93ba;Sampled=0
x-amzn-remapped-date: Thu, 22 Sep 2022 07:03:38 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: JHbRgCQOZp244YWkU4o78m9HhC77v7LOWAvwnc2eRTW2vHnv99ygaA==
via: 1.1 7f5e0d3b9ea85d0d75063a66c0ebc840.cloudfront.net (CloudFront), 1.1 989017835f43d594873bde5a7ee7fe5e.cloudfront.net (CloudFront), 1.1 google
date: Sat, 24 Sep 2022 07:31:45 GMT
age: 74921
etag: "1534aa8a5158dfa9592d65e6fb761b41c0852c58"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F30df3bb6-8eae-49ae-ba75-f6dd462463ac.jpeg
34.120.237.76200 OK 4.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F30df3bb6-8eae-49ae-ba75-f6dd462463ac.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 8abddb2cad9c262667f358ecb9b084ae
2d97861b35e3d0ffe6a614037e4ff7946018b4ef
9b4878cf451b7bc5c7467d1e35e2fa12f54e516c878dd54d0293a4ef4947ba5b
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F30df3bb6-8eae-49ae-ba75-f6dd462463ac.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4237
x-amzn-requestid: ae2729cb-a956-4214-b3be-b510a3f62698
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y9FNDGu7oAMF7oQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632eb586-097d52637dc131002d4ac57d;Sampled=0
x-amzn-remapped-date: Sat, 24 Sep 2022 07:45:10 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: TUT-wNEcMOArWarvrWvtkVVf4ZfrTv6CtG7a_aBZN9mZ6L-GawZkZA==
via: 1.1 00f0a41f749793b9dd653153037c957e.cloudfront.net (CloudFront), 1.1 324a68a6c25ee50d774953f3e15a611c.cloudfront.net (CloudFront), 1.1 google
date: Sun, 25 Sep 2022 01:14:25 GMT
age: 11161
etag: "2d97861b35e3d0ffe6a614037e4ff7946018b4ef"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Nunito:300,400,600,700,800&display=swap
142.250.74.10200 OK 1.1 kB URL HTTP/2 fonts.googleapis.com/css?family=Nunito:300,400,600,700,800&display=swap
IP 142.250.74.10:0
Hash b61788e60ef594587dbd0f1d4ddfc86b
4685f238d62090ef54ef875bf10dd30d3a01dae6
5d4916185f689eb25f5ee2004438172785dac2304438c03958583203b22026e1
GET /css?family=Nunito:300,400,600,700,800&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://premierinvestmentsolutions.live/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sun, 25 Sep 2022 04:20:26 GMT
date: Sun, 25 Sep 2022 04:20:26 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
premierinvestmentsolutions.live/img/review/2.jpg
199.188.200.223200 OK 5.8 kB URL HTTP/2 premierinvestmentsolutions.live/img/review/2.jpg
IP 199.188.200.223:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 120x120, components 3\012- data
Hash 1955dae5f30f6a5ac1553d9d5d3ff8e6
7746930760968c6b347e1b67cd30013d319c00c1
2f5073b9982011edb0d367400c4ae5a41a638ac5fd72dc64fda30dc855023956
GET /img/review/2.jpg HTTP/1.1
Host: premierinvestmentsolutions.live
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://premierinvestmentsolutions.live/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 02 Oct 2022 04:20:25 GMT
content-type: image/jpeg
last-modified: Thu, 10 Sep 2020 05:06:26 GMT
accept-ranges: bytes
content-length: 5835
date: Sun, 25 Sep 2022 04:20:25 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
premierinvestmentsolutions.live/img/review/1.jpg
199.188.200.223200 OK 7.0 kB URL HTTP/2 premierinvestmentsolutions.live/img/review/1.jpg
IP 199.188.200.223:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 120x120, components 3\012- data
Hash 53811e58f65b350d243d0f0c681bbbf4
b816dde37237d07bb0f2904c5b376b2d691763b4
43467899166568d9929b00b670b88b074d807ce54c431941e11dc458bcc67f4b
GET /img/review/1.jpg HTTP/1.1
Host: premierinvestmentsolutions.live
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://premierinvestmentsolutions.live/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 02 Oct 2022 04:20:25 GMT
content-type: image/jpeg
last-modified: Thu, 10 Sep 2020 05:06:18 GMT
accept-ranges: bytes
content-length: 7010
date: Sun, 25 Sep 2022 04:20:25 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
premierinvestmentsolutions.live/js/main.js
199.188.200.223200 OK 1.8 kB URL HTTP/2 premierinvestmentsolutions.live/js/main.js
IP 199.188.200.223:0
File type ASCII text, with very long lines (789), with CRLF line terminators
Hash a57b07e36847a52fee5d8c07e92ddbab
f6c89f0fbc02334f897096ce6c5ee0ae2d90ad58
1005508ba72c325733fd661901bf2fa5c8129f8727589aff5048775b987cc194
Analyzer Verdict Alert fortinet Phishing
GET /js/main.js HTTP/1.1
Host: premierinvestmentsolutions.live
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://premierinvestmentsolutions.live/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 02 Oct 2022 04:20:25 GMT
content-type: application/javascript
last-modified: Tue, 28 Jan 2020 06:24:46 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1751
date: Sun, 25 Sep 2022 04:20:25 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
premierinvestmentsolutions.live/js/magnific.min.js
199.188.200.223200 OK 7.5 kB URL HTTP/2 premierinvestmentsolutions.live/js/magnific.min.js
IP 199.188.200.223:0
File type ASCII text, with very long lines (20869), with CRLF line terminators
Hash 679b5f340f1f21d5324cf48333915b3f
a67cee700016a13f4be85ccf653cf976e4a74fc0
570dea748341c9d790d6f9dd8d614bdb8922d9e23baa1e189342271e8d4a63db
Analyzer Verdict Alert fortinet Phishing
GET /js/magnific.min.js HTTP/1.1
Host: premierinvestmentsolutions.live
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://premierinvestmentsolutions.live/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 02 Oct 2022 04:20:25 GMT
content-type: application/javascript
last-modified: Wed, 04 Oct 2017 00:37:28 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 7456
date: Sun, 25 Sep 2022 04:20:25 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
premierinvestmentsolutions.live/js/bootstrap.min.js
199.188.200.223200 OK 9.9 kB URL HTTP/2 premierinvestmentsolutions.live/js/bootstrap.min.js
IP 199.188.200.223:0
File type ASCII text, with very long lines (32056)
Hash ea0af1d465a3f3f91fcd9bd34afb35a3
b245c2d44c12a2de877a866d1682c44988d58241
f8e28f5af6d14aee2e60e607eaf24d84f63d3d37c2af1e32c23b34d5c00d5e22
Analyzer Verdict Alert fortinet Phishing
GET /js/bootstrap.min.js HTTP/1.1
Host: premierinvestmentsolutions.live
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://premierinvestmentsolutions.live/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 02 Oct 2022 04:20:25 GMT
content-type: application/javascript
last-modified: Tue, 01 Mar 2016 15:05:34 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 9940
date: Sun, 25 Sep 2022 04:20:25 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
premierinvestmentsolutions.live/js/owl.carousel.min.js
199.188.200.223200 OK 11 kB URL HTTP/2 premierinvestmentsolutions.live/js/owl.carousel.min.js
IP 199.188.200.223:0
File type ASCII text, with very long lines (32068)
Hash ead8a2f7a373c83b1d9a7b2ced42a1f8
cb9bce97ad9899c9dc8063eebc6c5b8b9bb1a317
84369ad62bd90fafa5deb8bc6e5d32fd86a98bf3dd2c1c5340cbb59e8509e46a
Analyzer Verdict Alert fortinet Phishing
GET /js/owl.carousel.min.js HTTP/1.1
Host: premierinvestmentsolutions.live
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://premierinvestmentsolutions.live/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 02 Oct 2022 04:20:25 GMT
content-type: application/javascript
last-modified: Thu, 26 Jun 2014 23:51:42 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 10728
date: Sun, 25 Sep 2022 04:20:25 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash da681c2f112645651e5b32be2cfcd052
2e57e4163b8ed8ceebe8c6dde5ff1aa5efc7b946
302a7e1f8156051b7c793c61fbe3e81096374431e22bd9821b4aa38e1a5772f7
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 25 Sep 2022 04:20:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/nunito/v25/XRXV3I6Li01BKofINeaB.woff2
142.250.74.163200 OK 36 kB URL HTTP/2 fonts.gstatic.com/s/nunito/v25/XRXV3I6Li01BKofINeaB.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 35904, version 1.0\012- data
Hash c26b97e7f5bb7a34d190703522d75e16
69d9e5aea0544dbaf9b78c1b65139c03eceece8f
96217f1d27fb909f92b4a6b35a0d3d6775f2f0b4d136d27aee88547d3ed87357
GET /s/nunito/v25/XRXV3I6Li01BKofINeaB.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://premierinvestmentsolutions.live
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 35904
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 19 Sep 2022 21:11:04 GMT
expires: Tue, 19 Sep 2023 21:11:04 GMT
cache-control: public, max-age=31536000
age: 457762
last-modified: Mon, 18 Jul 2022 19:34:47 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash da681c2f112645651e5b32be2cfcd052
2e57e4163b8ed8ceebe8c6dde5ff1aa5efc7b946
302a7e1f8156051b7c793c61fbe3e81096374431e22bd9821b4aa38e1a5772f7
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 25 Sep 2022 04:20:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
premierinvestmentsolutions.live/js/wow.min.js
199.188.200.223200 OK 3.0 kB URL HTTP/2 premierinvestmentsolutions.live/js/wow.min.js
IP 199.188.200.223:0
File type ASCII text, with very long lines (9162), with CRLF line terminators
Hash 8aaf5a6b53da26a8f89389ea17335193
02be317fce1e9f3a3fdb95d830a8072367c0e9e9
aa568f6fbe7a8be4e2ed7a7ac4ed43d6a202ce12f1a0fdc3da0f8f064d411630
Analyzer Verdict Alert fortinet Phishing
GET /js/wow.min.js HTTP/1.1
Host: premierinvestmentsolutions.live
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://premierinvestmentsolutions.live/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 02 Oct 2022 04:20:25 GMT
content-type: application/javascript
last-modified: Sun, 18 Aug 2019 13:43:18 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2972
date: Sun, 25 Sep 2022 04:20:25 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
premierinvestmentsolutions.live/js/jquery.meanmenu.js
199.188.200.223200 OK 3.7 kB URL HTTP/2 premierinvestmentsolutions.live/js/jquery.meanmenu.js
IP 199.188.200.223:0
File type ASCII text, with very long lines (777), with CRLF line terminators
Hash 915a0ad8041e3d6abcf0ca4582cc250d
4b3a84affb142bf8016d203ad70d0d20b4ce3647
eabd09c98cc9a3286587aec1ce450caf5aea4b7d8c142bace6087811d545d26c
Analyzer Verdict Alert fortinet Phishing
GET /js/jquery.meanmenu.js HTTP/1.1
Host: premierinvestmentsolutions.live
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://premierinvestmentsolutions.live/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 02 Oct 2022 04:20:25 GMT
content-type: application/javascript
last-modified: Fri, 28 Aug 2015 20:28:10 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3707
date: Sun, 25 Sep 2022 04:20:25 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
premierinvestmentsolutions.live/js/form-validator.min.js
199.188.200.223200 OK 2.3 kB URL HTTP/2 premierinvestmentsolutions.live/js/form-validator.min.js
IP 199.188.200.223:0
File type ASCII text, with very long lines (6639)
Hash 07a94425c01fe10a0623e0fbdb7e33d4
f4c41f6b628ff226a5b556e3da04beda46e185f4
a5aa66260771736cbd39271abab42428126d4021c8b4a709d3412d6a9c96532b
Analyzer Verdict Alert fortinet Phishing
GET /js/form-validator.min.js HTTP/1.1
Host: premierinvestmentsolutions.live
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://premierinvestmentsolutions.live/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 02 Oct 2022 04:20:25 GMT
content-type: application/javascript
last-modified: Sun, 06 Dec 2015 05:36:28 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2320
date: Sun, 25 Sep 2022 04:20:25 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
premierinvestmentsolutions.live/img/logo/pisblack-header.png
199.188.200.223200 OK 38 kB URL HTTP/2 premierinvestmentsolutions.live/img/logo/pisblack-header.png
IP 199.188.200.223:0
File type PNG image data, 1191 x 383, 8-bit/color RGBA, non-interlaced\012- data
Hash 180080e31c175733a7a3da3e3a3b17ca
74b43cc453de5ad1a2b834de9ef5a8e57e1c8f22
c21849cef9fbd5cf023fd752655369d1aacb16f6b18879f8954e877512f7c9b0
GET /img/logo/pisblack-header.png HTTP/1.1
Host: premierinvestmentsolutions.live
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://premierinvestmentsolutions.live/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 02 Oct 2022 04:20:25 GMT
content-type: image/png
last-modified: Mon, 31 May 2021 17:56:16 GMT
accept-ranges: bytes
content-length: 38345
date: Sun, 25 Sep 2022 04:20:25 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
premierinvestmentsolutions.live/img/blog/b5.jpg
199.188.200.223200 OK 33 kB URL HTTP/2 premierinvestmentsolutions.live/img/blog/b5.jpg
IP 199.188.200.223:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1000x680, components 3\012- data
Hash 761856b31af4995d1de4f90239366210
8e39947d2fcd58f0768b22016683d5cffe728c54
9c104987a891fd8d71cf785c6bfce886d4323d3885de2b9e4ff3be7db7f24138
GET /img/blog/b5.jpg HTTP/1.1
Host: premierinvestmentsolutions.live
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://premierinvestmentsolutions.live/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 02 Oct 2022 04:20:25 GMT
content-type: image/jpeg
last-modified: Thu, 10 Sep 2020 05:04:04 GMT
accept-ranges: bytes
content-length: 32591
date: Sun, 25 Sep 2022 04:20:25 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
cdnjs.cloudflare.com/ajax/libs/flag-icon-css/3.4.6/css/flag-icon.min.css
104.17.25.14200 OK 1.5 kB URL HTTP/2 cdnjs.cloudflare.com/ajax/libs/flag-icon-css/3.4.6/css/flag-icon.min.css
IP 104.17.25.14:0
File type ASCII text, with very long lines (33818), with no line terminators
Hash ace45ec47d030b7e8c38be4e50ba2358
d45c49a3ae9e566756dd9e7ed23efc0bcdf91a05
8c06f7e1303963f8e28bceebb35d1c2a4dea11a565733e22240699be7e58ef20
GET /ajax/libs/flag-icon-css/3.4.6/css/flag-icon.min.css HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://widget.coinlib.io/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 25 Sep 2022 04:20:26 GMT
content-type: text/css; charset=utf-8
content-length: 1466
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03e5d-841a"
last-modified: Mon, 04 May 2020 16:10:05 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
expect-ct: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
vary: Accept-Encoding
cf-cache-status: HIT
age: 2715049
expires: Fri, 15 Sep 2023 04:20:26 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=fezXFvTnpDn%2FPwaE1%2BPmTFmt0Z6JsW4Vl9%2FCg471NPxSAicYEiia1xjVNO2cyQmP1fJGs9jx2bOrd4QdF9EFllebok0xnWN5%2BoJmpWCG1ENsmbrIjF%2BDATUsSA19UdTJJJaxGu6O"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 7500f7a32c8ab505-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
widget.coinlib.io/widget?type=horizontal_v2&theme=light&pref_coin_id=1505&invert_hover=no
104.21.65.85200 OK 7.6 kB URL HTTP/2 widget.coinlib.io/widget?type=horizontal_v2&theme=light&pref_coin_id=1505&invert_hover=no
IP 104.21.65.85:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (23746)
Hash 7da570b7c7fb30211960d1a4ba7f9606
cde1d5b9f8819ac4ebde3f41e4d8541ae06d3a0a
23ec9d5e69625c647f4e96354f8843223e64121b54b8e234ebcc809297d95ba0
GET /widget?type=horizontal_v2&theme=light&pref_coin_id=1505&invert_hover=no HTTP/1.1
Host: widget.coinlib.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://premierinvestmentsolutions.live/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 25 Sep 2022 04:20:26 GMT
content-type: text/html; charset=UTF-8
x-xss-protection: 1
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: must-revalidate
vary: User-Agent,Accept-Encoding
set-cookie: IDENTITY=c2998cb08ce955c6925bcc5597f58a6fdf016073
x-cached: MISS
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=auGjCRjp4y5G6Lv%2F2tDSiWXp0pkWWZ4xm%2B54U79RNfa10v72y1DLaPlHHs9L9RMn91%2BUGEMtonIgY8QSdVQmQF3R0RmVecE1Ug7sTuU6hce5MfNRYkvc5SxpdvACqMuAjNOTFQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7500f7a11b6a0b4d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
premierinvestmentsolutions.live/img/blog/b6.jpg
199.188.200.223200 OK 58 kB URL HTTP/2 premierinvestmentsolutions.live/img/blog/b6.jpg
IP 199.188.200.223:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1000x680, components 3\012- data
Hash d32c1882481b96370c5832083c522de2
713d78fae2708fd871298e3480264152ad945d73
793a140d5dbad5089414e21e4f7f74e682059e6e6a5271f6ff133dbccd96da1f
GET /img/blog/b6.jpg HTTP/1.1
Host: premierinvestmentsolutions.live
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://premierinvestmentsolutions.live/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 02 Oct 2022 04:20:25 GMT
content-type: image/jpeg
last-modified: Thu, 10 Sep 2020 05:04:12 GMT
accept-ranges: bytes
content-length: 58107
date: Sun, 25 Sep 2022 04:20:25 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
premierinvestmentsolutions.live/img/blog/b4.jpg
199.188.200.223200 OK 39 kB URL HTTP/2 premierinvestmentsolutions.live/img/blog/b4.jpg
IP 199.188.200.223:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1000x680, components 3\012- data
Hash 91bba1921b7579935c4d2aecd80a3b98
c75670dcd2576b6079c2d79828d463d0a703e2eb
758cd9af6acb864b41d4c84b112a1f0826231df8f1c15b351422f18b309ed50b
GET /img/blog/b4.jpg HTTP/1.1
Host: premierinvestmentsolutions.live
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://premierinvestmentsolutions.live/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 02 Oct 2022 04:20:25 GMT
content-type: image/jpeg
last-modified: Thu, 10 Sep 2020 05:03:40 GMT
accept-ranges: bytes
content-length: 39281
date: Sun, 25 Sep 2022 04:20:25 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
premierinvestmentsolutions.live/img/blog/b3.jpg
199.188.200.223200 OK 54 kB URL HTTP/2 premierinvestmentsolutions.live/img/blog/b3.jpg
IP 199.188.200.223:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1000x680, components 3\012- data
Hash 3675c60429ccee2ef7f69ae021978e84
94fcf2dad6edcce24759820047d9626416ec5735
fd0b7e8eccf7c09c1cb7fee4d2dc8a75317e36d496f221ccd04ed1d9aa559683
GET /img/blog/b3.jpg HTTP/1.1
Host: premierinvestmentsolutions.live
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://premierinvestmentsolutions.live/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 02 Oct 2022 04:20:25 GMT
content-type: image/jpeg
last-modified: Thu, 10 Sep 2020 05:03:26 GMT
accept-ranges: bytes
content-length: 54398
date: Sun, 25 Sep 2022 04:20:25 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
premierinvestmentsolutions.live/img/logo/piswhite-header.png
199.188.200.223200 OK 41 kB URL HTTP/2 premierinvestmentsolutions.live/img/logo/piswhite-header.png
IP 199.188.200.223:0
File type PNG image data, 1188 x 388, 8-bit/color RGBA, non-interlaced\012- data
Hash e886e2d03d81e3822958659692ce3847
931bf542fed6923d67e61959bd0b4515acdf2130
a2a48a755dad2988de309146d8540926862f556495d8d819e2d88aa00a7a5602
GET /img/logo/piswhite-header.png HTTP/1.1
Host: premierinvestmentsolutions.live
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://premierinvestmentsolutions.live/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 02 Oct 2022 04:20:25 GMT
content-type: image/png
last-modified: Mon, 31 May 2021 17:50:38 GMT
accept-ranges: bytes
content-length: 40629
date: Sun, 25 Sep 2022 04:20:25 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
premierinvestmentsolutions.live/img/blog/b2.jpg
199.188.200.223200 OK 44 kB URL HTTP/2 premierinvestmentsolutions.live/img/blog/b2.jpg
IP 199.188.200.223:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1000x680, components 3\012- data
Hash 79c87b85d54ac9ebf1bec2328bb9fbb9
0252436969683ba48f0916e0aeec7dbac1361118
8b8f2fcd2d7046664adbd8169c51a21e9b89f7549612d1954050824ef2c0cc22
GET /img/blog/b2.jpg HTTP/1.1
Host: premierinvestmentsolutions.live
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://premierinvestmentsolutions.live/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 02 Oct 2022 04:20:25 GMT
content-type: image/jpeg
last-modified: Thu, 10 Sep 2020 05:03:18 GMT
accept-ranges: bytes
content-length: 44117
date: Sun, 25 Sep 2022 04:20:25 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 7dd07120dd491d11c659684179064f27
d998b22d95d424bf7029da24feb4301e6dff4f69
df17d79e89489f4cee2d1f643d604e0e1e4d1ba6193a6f162e8de178b2bbd383
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DF17D79E89489F4CEE2D1F643D604E0E1E4D1BA6193A6F162E8DE178B2BBD383"
Last-Modified: Sat, 24 Sep 2022 07:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17317
Expires: Sun, 25 Sep 2022 09:09:03 GMT
Date: Sun, 25 Sep 2022 04:20:26 GMT
Connection: keep-alive
www.googletagmanager.com/gtag/js?id=UA-109558606-2
142.250.74.72200 OK 42 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=UA-109558606-2
IP 142.250.74.72:0
File type ASCII text, with very long lines (1720)
Hash 3ebda53bffb3f9a2616fc9f7b19e6701
a55e2158259a1cbad03c81bb06995d2c057de77f
7d1be119a002a2ede0ef35e7020c04ce0b32defd3d84d7780683a8d737431220
GET /gtag/js?id=UA-109558606-2 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://widget.coinlib.io/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sun, 25 Sep 2022 04:20:26 GMT
expires: Sun, 25 Sep 2022 04:20:26 GMT
cache-control: private, max-age=900
last-modified: Sun, 25 Sep 2022 03:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 42258
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
premierinvestmentsolutions.live/img/blog/b1.jpg
199.188.200.223200 OK 62 kB URL HTTP/2 premierinvestmentsolutions.live/img/blog/b1.jpg
IP 199.188.200.223:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1000x680, components 3\012- data
Hash 460b6cdf5dff0ea4b3a8c78484d48f8e
ccc5a0ca3e3088614ebbebd449f4b4690914c40d
0ab53e6bc2428eba248052228027787129837174dcd62e99c1d3010860509f02
GET /img/blog/b1.jpg HTTP/1.1
Host: premierinvestmentsolutions.live
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://premierinvestmentsolutions.live/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 02 Oct 2022 04:20:25 GMT
content-type: image/jpeg
last-modified: Thu, 10 Sep 2020 05:02:54 GMT
accept-ranges: bytes
content-length: 61995
date: Sun, 25 Sep 2022 04:20:25 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
premierinvestmentsolutions.live/img/slider/h2.jpg
199.188.200.223200 OK 92 kB URL HTTP/2 premierinvestmentsolutions.live/img/slider/h2.jpg
IP 199.188.200.223:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1920x1080, components 3\012- data
Hash f800f24426e14a9305326b09088003ac
d8107e85b3cf40167007102a30cc738ba3a7d5ef
29c2278f3c644b9e0da3e6cca8ed59b05e43c217837817e8d7f03d3880008b90
GET /img/slider/h2.jpg HTTP/1.1
Host: premierinvestmentsolutions.live
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://premierinvestmentsolutions.live/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 02 Oct 2022 04:20:25 GMT
content-type: image/jpeg
last-modified: Thu, 10 Sep 2020 05:07:42 GMT
accept-ranges: bytes
content-length: 92455
date: Sun, 25 Sep 2022 04:20:25 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
widget-v4.tidiochat.com//tururu.mp3
104.26.9.139206 Partial Content 7.2 kB URL HTTP/2 widget-v4.tidiochat.com//tururu.mp3
IP 104.26.9.139:0
File type MPEG ADTS, layer III, v1, 64 kbps, 44.1 kHz, Monaural\012- data
Hash 5061b4d134a7b4d5d744f9a127b757a8
c5e240ac60d3914cb3836ba6652105c67720b845
12c7687514ca85ba2157ed61914ac526bb9dd15cb5a2a2d9e4d88f919349284f
GET //tururu.mp3 HTTP/1.1
Host: widget-v4.tidiochat.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: audio/webm,audio/ogg,audio/wav,audio/*;q=0.9,application/ogg;q=0.7,video/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
Connection: keep-alive
Sec-Fetch-Dest: audio
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 206 Partial Content
date: Sun, 25 Sep 2022 04:20:27 GMT
content-type: audio/mpeg
content-length: 7224
last-modified: Tue, 13 Sep 2022 07:44:17 GMT
etag: "632034d1-1c38"
expires: Thu, 29 Sep 2022 02:08:19 GMT
cache-control: public, max-age=31536000
pragma: public
cf-cache-status: HIT
age: 871928
content-range: bytes 0-7223/7224
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=h7VLesrH14itv8Ih1mLgjKb13blT4UogTfOOC0ZHOxr7io6boKMDtfseRQpSx7gawalKBHGgPbPJ1zjmgVXQfDuh%2FYPNo1N3UlvHe%2BhNjRUpFJUwNCt4SY31i7ahYLjBKCsTld2%2Bg5eX"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7500f7a52fe1b524-OSL
X-Firefox-Spdy: h2
widget-v4.tidiochat.com/1_114_0/static/js/chunk-WidgetIframe-64874ea49214d2736b46.js
104.26.9.139200 OK 90 kB URL HTTP/2 widget-v4.tidiochat.com/1_114_0/static/js/chunk-WidgetIframe-64874ea49214d2736b46.js
IP 104.26.9.139:0
File type ASCII text, with very long lines (65439)
Hash 06301b6cd4bf669418d57963e6405d98
c6bdf151de205e1a316b8282ce9a042d47013e9d
464ef520a39c6f60f9d1c0c9578ac66ad3ec3b66406d83bca10d066858b7ece8
GET /1_114_0/static/js/chunk-WidgetIframe-64874ea49214d2736b46.js HTTP/1.1
Host: widget-v4.tidiochat.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 25 Sep 2022 04:20:27 GMT
content-type: application/javascript
last-modified: Thu, 15 Sep 2022 11:25:23 GMT
vary: Accept-Encoding
etag: W/"63230ba3-5575e"
cache-control: max-age=691200
cf-cache-status: HIT
age: 2059
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=a3RMnjGKV9gn3iSkaNWWFDpYg0LbYNafRdgwarIR6%2F13%2BJrrNos29%2BsqUBwGlkW78yEqyHYlcToam1zbW67OngvbVQVBTy0bfJRrcFKxF6BLwhQ15mMxz4Jo74thGXQCKxywBSaMVq1u"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7500f7a52fddb524-OSL
content-encoding: br
X-Firefox-Spdy: h2
www.googletagmanager.com/gtm.js?id=GTM-K638SKQ
142.250.74.72200 OK 36 kB URL HTTP/2 www.googletagmanager.com/gtm.js?id=GTM-K638SKQ
IP 142.250.74.72:0
File type ASCII text, with very long lines (1720)
Hash 8f8bb55830d480b93b37fa420b9e5962
337126ffbce78b91e518ba6320dee49f25d74d3d
9b794fb28e19cceb64d3b4d9dcc9e84aca7898e90da6993c21aaf002b3c6ae84
GET /gtm.js?id=GTM-K638SKQ HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://widget.coinlib.io/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sun, 25 Sep 2022 04:20:27 GMT
expires: Sun, 25 Sep 2022 04:20:27 GMT
cache-control: private, max-age=900
last-modified: Sun, 25 Sep 2022 03:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 36344
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
premierinvestmentsolutions.live/img/slider/h1.jpg
199.188.200.223200 OK 146 kB URL HTTP/2 premierinvestmentsolutions.live/img/slider/h1.jpg
IP 199.188.200.223:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1920x1080, components 3\012- data
Size 146 kB (146430 bytes)
Hash 0f12524933b9ffb8faa537c45f743535
037ceca4be3c8be4735bf9a823723011934896a7
ef109e04cff8a10235936e32ee9bc41c661eeb29f3e9140aa2a779116050a7d9
GET /img/slider/h1.jpg HTTP/1.1
Host: premierinvestmentsolutions.live
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://premierinvestmentsolutions.live/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 02 Oct 2022 04:20:25 GMT
content-type: image/jpeg
last-modified: Thu, 10 Sep 2020 05:07:34 GMT
accept-ranges: bytes
content-length: 146430
date: Sun, 25 Sep 2022 04:20:25 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
premierinvestmentsolutions.live/img/background/bg3.jpg
199.188.200.223200 OK 49 kB URL HTTP/2 premierinvestmentsolutions.live/img/background/bg3.jpg
IP 199.188.200.223:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1920x1080, components 3\012- data
Hash fb2b8caa23a42b94554ad03b885fade6
4c815e42f47a3e9e6efb73c2414789f9d263051b
e80fddf043942032d59dbf7477c93d3fbeacc64684fb8a6b71c70e80a4ad9de1
GET /img/background/bg3.jpg HTTP/1.1
Host: premierinvestmentsolutions.live
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://premierinvestmentsolutions.live/style.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 02 Oct 2022 04:20:26 GMT
content-type: image/jpeg
last-modified: Thu, 10 Sep 2020 05:01:26 GMT
accept-ranges: bytes
content-length: 49246
date: Sun, 25 Sep 2022 04:20:26 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
premierinvestmentsolutions.live/img/logo/preloader.gif
199.188.200.223200 OK 40 kB URL HTTP/2 premierinvestmentsolutions.live/img/logo/preloader.gif
IP 199.188.200.223:0
File type GIF image data, version 89a, 400 x 300\012- data
Hash bf31f0d5b8850082be100ba6fabef2c1
bf6f131cb86f17f60152ffd1ff006fbbc7173c42
0019eb6d708f6da9d77bfc62f704f0d70ea7a8fb14bcffa9672061fe89654f13
GET /img/logo/preloader.gif HTTP/1.1
Host: premierinvestmentsolutions.live
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://premierinvestmentsolutions.live/style.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 02 Oct 2022 04:20:26 GMT
content-type: image/gif
last-modified: Fri, 05 Oct 2018 12:53:52 GMT
accept-ranges: bytes
content-length: 39472
date: Sun, 25 Sep 2022 04:20:26 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
premierinvestmentsolutions.live/fonts/Flaticon.woff
199.188.200.223200 OK 18 kB URL HTTP/2 premierinvestmentsolutions.live/fonts/Flaticon.woff
IP 199.188.200.223:0
File type Web Open Font Format, TrueType, length 17464, version 0.0\012- data
Hash 29b27b2dd1d35e14442b912c73c5cce6
f11f7f40df22af1327c2eefc70c1c16994d02152
b6fd5dbdaa263bbd04e840a35d652f426b0afffe914fbd55924081f476225802
Analyzer Verdict Alert fortinet Phishing
GET /fonts/Flaticon.woff HTTP/1.1
Host: premierinvestmentsolutions.live
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://premierinvestmentsolutions.live/css/flaticon.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 02 Oct 2022 04:20:26 GMT
content-type: font/woff
last-modified: Fri, 14 Jun 2019 10:11:36 GMT
accept-ranges: bytes
content-length: 17464
date: Sun, 25 Sep 2022 04:20:26 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
widget-ws.coinlib.io/socket.io/?EIO=4&transport=websocket&sid=XDJKDwdAVQ0CdogwF_wb
172.67.160.162101 Switching Protocols 0 B URL HTTP/1.1 widget-ws.coinlib.io/socket.io/?EIO=4&transport=websocket&sid=XDJKDwdAVQ0CdogwF_wb
IP 172.67.160.162:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /socket.io/?EIO=4&transport=websocket&sid=XDJKDwdAVQ0CdogwF_wb HTTP/1.1
Host: widget-ws.coinlib.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: https://widget.coinlib.io
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: ybfgHJrxbDcOUCvrI3C9RA==
Connection: keep-alive, Upgrade
Cookie: __cf_bm=loYxyugalbO2b3tf141NAQmJMghIwnQnRg7Fb1Cz5Ls-1664079627-0-AUJIu7dFTgQNL+c/bfZCzJ2xUEM3x/7gSXsU97qpW2gvqazN7MzB3VXZNDyVaN5eGUPPJXN0zGBAbp4iCJOtRMj/erqsoGxrynudqmBhl6jHMwe8E2t3oieyNzSmG5xkcJr736s23RIge/B11iLTiH8=
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Date: Sun, 25 Sep 2022 04:20:27 GMT
Connection: upgrade
Upgrade: websocket
Sec-WebSocket-Accept: YdOtk3VfiUZJmskldCYTtJYC+eY=
Sec-WebSocket-Extensions: permessage-deflate
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=3kYDk9Pv310SkpAUTPfuJN1bHQY8euYBzDrn8th0IXWK%2FbghsyBfTtRYgaz9quua6%2B6Y1Rc3h0%2BlMMEKs4ehWbZ91wCfldR0zyrNUB7weseYRUAo3RaH70QRYWOQFiyDOUd6qssxBA%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7500f7a7be1db505-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
ocsp.sca1b.amazontrust.com/
54.230.245.110200 OK 22 kB URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.110:0
Hash 9c0557be026c467ef5c335f73aaaf638
4bf4fbb692d64aea4e17ad4e7852c175fdd0642a
12878938e1eba5d7e8f3251d64868b7f35c8002c78ff422d657d86caf4795a31
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Sun, 25 Sep 2022 04:20:27 GMT
Last-Modified: Sun, 25 Sep 2022 04:04:15 GMT
Server: ECS (nyb/1D2C)
X-Cache: Miss from cloudfront
Via: 1.1 193a8c13b6e0a6b90db7172f6358335e.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: RQWzFkIGaZ2E-NMrxiFp6oNm4FwwuWn9iQXovfY3XHgjLepSDWCBSA==
Age: 972
www.google-analytics.com/analytics.js
142.250.74.174200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP 142.250.74.174:0
File type ASCII text, with very long lines (1325)
Hash cae538dcce82598fbe43c0bf443e62dd
cc68ac6be9c5e0087a0000e5735b83270ace30f5
954b9e9d9744e1319c51760780a35de2dec353afffac705c2cca6d836a5e056d
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://widget.coinlib.io/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 19826
date: Sun, 25 Sep 2022 02:41:09 GMT
expires: Sun, 25 Sep 2022 04:41:09 GMT
cache-control: public, max-age=7200
age: 5958
last-modified: Sun, 11 Sep 2022 13:50:09 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
premierinvestmentsolutions.live/fonts/themify.woff
199.188.200.223200 OK 56 kB URL HTTP/2 premierinvestmentsolutions.live/fonts/themify.woff
IP 199.188.200.223:0
File type Web Open Font Format, CFF, length 56108, version 1.0\012- data
Hash a1ecc3b826d01251edddf29c3e4e1e97
9394f35bd2addd24666b79bfc36d4f9d247cb01d
0db5c5a1475eb7a3e5028983ea1e642d1b2c00faff6a250a37502b0f3832a4a7
Analyzer Verdict Alert fortinet Phishing
GET /fonts/themify.woff HTTP/1.1
Host: premierinvestmentsolutions.live
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://premierinvestmentsolutions.live/css/themify-icons.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 02 Oct 2022 04:20:26 GMT
content-type: font/woff
last-modified: Wed, 18 May 2016 01:31:00 GMT
accept-ranges: bytes
content-length: 56108
date: Sun, 25 Sep 2022 04:20:26 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
premierinvestmentsolutions.live/img/background/ag1.jpg
199.188.200.223200 OK 123 kB URL HTTP/2 premierinvestmentsolutions.live/img/background/ag1.jpg
IP 199.188.200.223:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1920x1080, components 3\012- data
Size 123 kB (122639 bytes)
Hash ecc53cce73b030301ba9158d5a06eb91
7d4a0fa0cdd4cf8e8d5e9ac1858f6f7aed6b0f94
a6406be097fb9109ba770eff05ee8a0f992606e9fe453151dba10fd81ba9ce94
GET /img/background/ag1.jpg HTTP/1.1
Host: premierinvestmentsolutions.live
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://premierinvestmentsolutions.live/style.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 02 Oct 2022 04:20:26 GMT
content-type: image/jpeg
last-modified: Thu, 10 Sep 2020 04:59:02 GMT
accept-ranges: bytes
content-length: 122639
date: Sun, 25 Sep 2022 04:20:26 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
premierinvestmentsolutions.live/fonts/fontawesome-webfont.woff2?v=4.5.0
199.188.200.223200 OK 77 kB URL HTTP/2 premierinvestmentsolutions.live/fonts/fontawesome-webfont.woff2?v=4.5.0
IP 199.188.200.223:0
File type Web Open Font Format (Version 2), TrueType, length 77160, version 4.459\012- data
Hash af7ae505a9eed503f8b8e6982036873e
d6f48cba7d076fb6f2fd6ba993a75b9dc1ecbf0c
2adefcbc041e7d18fcf2d417879dc5a09997aa64d675b7a3c4b6ce33da13f3fe
Analyzer Verdict Alert fortinet Phishing
GET /fonts/fontawesome-webfont.woff2?v=4.5.0 HTTP/1.1
Host: premierinvestmentsolutions.live
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://premierinvestmentsolutions.live/css/font-awesome.min.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 02 Oct 2022 04:20:26 GMT
content-type: font/woff2
last-modified: Thu, 22 Dec 2016 21:50:34 GMT
accept-ranges: bytes
content-length: 77160
date: Sun, 25 Sep 2022 04:20:26 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
premierinvestmentsolutions.live/img/background/fg.jpg
199.188.200.223200 OK 210 kB URL HTTP/2 premierinvestmentsolutions.live/img/background/fg.jpg
IP 199.188.200.223:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1920x1000, components 3\012- data
Size 210 kB (210523 bytes)
Hash 8fd0300e0ed02094ccd7b10d892f8168
fe882f9fe1b36d0c654f328dcedd43dcbf43ca2d
9b77fa7b574a064a942464cc61772aa3601a612d4f95a091d4e9ff44f1c383b5
GET /img/background/fg.jpg HTTP/1.1
Host: premierinvestmentsolutions.live
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://premierinvestmentsolutions.live/style.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 02 Oct 2022 04:20:26 GMT
content-type: image/jpeg
last-modified: Thu, 10 Sep 2020 05:01:40 GMT
accept-ranges: bytes
content-length: 210523
date: Sun, 25 Sep 2022 04:20:26 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
socket.tidio.co/socket.io/?ppk=lcq01ihqnpmtbg9t0m52bazcpc8kljld&device=desktop&EIO=3&transport=websocket
52.50.206.206101 Switching Protocols 6 B URL HTTP/1.1 socket.tidio.co/socket.io/?ppk=lcq01ihqnpmtbg9t0m52bazcpc8kljld&device=desktop&EIO=3&transport=websocket
IP 52.50.206.206:0
Hash 7d14c6d06a6075d413d43d381c992eba
49bdfc1145f7c7a7bf870f069b9d23a97966cb30
f48bd14f1f30b485d99a2904d06cbd9fa03ccaa5779105a3d3cf963edb2ac385
GET /socket.io/?ppk=lcq01ihqnpmtbg9t0m52bazcpc8kljld&device=desktop&EIO=3&transport=websocket HTTP/1.1
Host: socket.tidio.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: https://premierinvestmentsolutions.live
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: wBvjuOrVlfa41NGN5hCUjw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Date: Sun, 25 Sep 2022 04:20:27 GMT
Connection: upgrade
Upgrade: websocket
Sec-WebSocket-Accept: JM8xe2s63l/OeC3cq391Hg8keyM=
Sec-WebSocket-Extensions: permessage-deflate
premierinvestmentsolutions.live/img/logo/favicon.ico
199.188.200.223200 OK 1.2 kB URL HTTP/2 premierinvestmentsolutions.live/img/logo/favicon.ico
IP 199.188.200.223:0
File type MS Windows icon resource - 1 icon, 16x16, 32 bits/pixel\012- data
Hash a8f2ceab612cb047b3a7e1c0ec56ae3e
f7646203eaa175afd02607d7c15d4a6f3d620f36
62e7c20a215e39c0daafd72b6e1eae555735d54647c2002004e3f970068dd94c
GET /img/logo/favicon.ico HTTP/1.1
Host: premierinvestmentsolutions.live
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://premierinvestmentsolutions.live/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 02 Oct 2022 04:20:27 GMT
content-type: image/x-icon
last-modified: Sat, 18 Jan 2020 00:39:18 GMT
accept-ranges: bytes
content-length: 1150
date: Sun, 25 Sep 2022 04:20:27 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
fonts.gstatic.com/s/mulish/v12/1Ptvg83HX_SGhgqk3wot.woff2
142.250.74.163200 OK 44 kB URL HTTP/2 fonts.gstatic.com/s/mulish/v12/1Ptvg83HX_SGhgqk3wot.woff2
IP 142.250.74.163:0
Hash f9734eff26026cf99ac3db2710eb3c8c
ef7124df1cc1c4757be30f336110ccb3f86179c8
4f4e49a8f24a98367a97e5c72948ace3f4a066be48d6f8952926e4c262fdaced
GET /s/mulish/v12/1Ptvg83HX_SGhgqk3wot.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://premierinvestmentsolutions.live
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 27428
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 24 Sep 2022 04:28:39 GMT
expires: Sun, 24 Sep 2023 04:28:39 GMT
cache-control: public, max-age=31536000
age: 85909
last-modified: Mon, 11 Jul 2022 18:57:51 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 3f0d967e8433987129783acaeedb8c86
1dfaea7748b478b85d74fa9c1ced3744fff92ea8
d66691142dc5af427dffc96647fc426d28a9b2fa5efb74b62ea6c19087ca520f
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5854
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 25 Sep 2022 04:20:29 GMT
Last-Modified: Sun, 25 Sep 2022 02:42:55 GMT
Server: ECS (ska/F70E)
X-Cache: HIT
Content-Length: 471
twemoji.maxcdn.com/v/13.0.1/72x72/1f44b.png
23.111.9.57200 OK 17 kB URL HTTP/2 twemoji.maxcdn.com/v/13.0.1/72x72/1f44b.png
IP 23.111.9.57:0
Hash 40aff00ebb18bcd4ea33aa25d7d17291
5d6e4672dd2e1119e43c0b5ffb5aef5a8f00ef92
7c955c95fe0d5eb8c3035a601d005588e7a0da4d9cb2afc7c6d5ac66e2ab9a13
GET /v/13.0.1/72x72/1f44b.png HTTP/1.1
Host: twemoji.maxcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://premierinvestmentsolutions.live/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 25 Sep 2022 04:20:29 GMT
content-type: image/png
content-length: 1285
permissions-policy: interest-cohort=()
x-origin-cache: HIT
last-modified: Thu, 31 Mar 2022 03:24:17 GMT
access-control-allow-origin: *
etag: "62451ee1-505"
expires: Tue, 25 Oct 2022 04:20:29 GMT
cache-control: max-age=2592000
x-proxy-cache: MISS
x-github-request-id: 080A:ADCD:1984B7C:1A59E20:632D95C1
vary: Accept-Encoding
x-fastly-request-id: e7de65f21a7c001acfc206d3a5bb82af2db56e91
server: NetDNA-cache/2.2
powered-by: MaxCDN
x-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc0027ff5-ed5d-4cf9-9ef4-847dbda3f91b.jpeg
34.120.237.76200 OK 13 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc0027ff5-ed5d-4cf9-9ef4-847dbda3f91b.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash e8a0d2b8beddf9f866a2bfe96ac21c2e
dfe5c93dc1637162a0b6ac174dcd7107af80763a
0e4bf30611043a171485c6fa054d6102a6cfd7f8a4153daa34eba1b72f455a77
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc0027ff5-ed5d-4cf9-9ef4-847dbda3f91b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 12552
x-amzn-requestid: 71161d44-4c3a-459e-bf76-5bf3deafcafe
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YlYTrHz0oAMF2eA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63253a7d-39dd0e2a7045128024086375;Sampled=0
x-amzn-remapped-date: Sat, 17 Sep 2022 03:09:49 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: EGtjExnYcmDEP9a540mHhZ7EjGlvLIDLK65Phs9MsAVdEpwNI4avTQ==
via: 1.1 0aebf3fe433ff96e68d785fad4ea4c0e.cloudfront.net (CloudFront), 1.1 ebe4011a81a36e2bf678f69ce1711330.cloudfront.net (CloudFront), 1.1 google
date: Sat, 24 Sep 2022 21:37:32 GMT
age: 24181
etag: "dfe5c93dc1637162a0b6ac174dcd7107af80763a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
widget-v4.tidiochat.com/1_114_0/static/js/render.64874ea49214d2736b46.js
104.26.9.139200 OK 0 B URL HTTP/2 widget-v4.tidiochat.com/1_114_0/static/js/render.64874ea49214d2736b46.js
IP 104.26.9.139:0
GET /1_114_0/static/js/render.64874ea49214d2736b46.js HTTP/1.1
Host: widget-v4.tidiochat.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://premierinvestmentsolutions.live/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 25 Sep 2022 04:20:25 GMT
content-type: application/javascript
last-modified: Thu, 15 Sep 2022 11:25:23 GMT
vary: Accept-Encoding
etag: W/"63230ba3-4311"
cache-control: max-age=691200
cf-cache-status: HIT
age: 2181
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=xR8zGAusI8x0M1DGvlH5G2b5lR%2B7t92p3lUfjA%2FXSYyv%2BgKu5l%2BTeItYe%2BNg5CaeaXEaiBNZ2%2BomwMkE5QyNBNN4dfOlZY4wziAHpL5s1fQpT0x7fRYiH3t3QbtrUX0gQY0cAAYVGghg"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7500f798aac5b524-OSL
content-encoding: br
X-Firefox-Spdy: h2
serving.stat-rock.com/player.js
78.140.185.31200 OK 0 B URL HTTP/2 serving.stat-rock.com/player.js
IP 78.140.185.31:0
GET /player.js HTTP/1.1
Host: serving.stat-rock.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://widget.coinlib.io/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 25 Sep 2022 04:20:27 GMT
content-type: application/javascript
last-modified: Mon, 19 Sep 2022 09:00:42 GMT
vary: Accept-Encoding
etag: W/"63282fba-4dee2"
cache-control: public, max-age=600
content-encoding: gzip
X-Firefox-Spdy: h2
widget-v4.tidiochat.com//1_114_0/static/js/widget.64874ea49214d2736b46.js
104.26.9.139200 OK 0 B URL HTTP/2 widget-v4.tidiochat.com//1_114_0/static/js/widget.64874ea49214d2736b46.js
IP 104.26.9.139:0
GET //1_114_0/static/js/widget.64874ea49214d2736b46.js HTTP/1.1
Host: widget-v4.tidiochat.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 25 Sep 2022 04:20:27 GMT
content-type: application/javascript
last-modified: Thu, 15 Sep 2022 11:25:23 GMT
vary: Accept-Encoding
etag: W/"63230ba3-826dd"
cache-control: max-age=691200
cf-cache-status: HIT
age: 2118
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=RQRz8oLousIR6gdpJ39nLdoV4Im99hCCqxZGabrG%2BFQNi0EGtCxxHC4mfNFjIXSmg6kFtB%2Bf5%2FK1%2BxpxvAse6miy8oKA9CrEjSmppftQZMB1mDACFo%2B56%2F2JuqEfZXYDx%2FcZwXAJCUIt"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7500f7a53febb524-OSL
content-encoding: br
X-Firefox-Spdy: h2