urlquery - report: winnerinvestgroup.com/

Fully Qualifying Domain Name	Rank	First Seen	Last Seen	IP	Comment
firefox.settings.services.mozilla.com (2)	867	2020-05-25 20:06:39 UTC	2023-01-10 04:09:35 UTC	35.241.9.150
content-signature-2.cdn.mozilla.net (1)	1152	2020-11-03 12:26:46 UTC	2023-01-10 04:10:32 UTC	34.160.144.191
contile.services.mozilla.com (1)	1114	2021-05-27 18:32:35 UTC	2023-01-10 04:10:51 UTC	34.117.237.239
ocsp.digicert.com (1)	86	2012-05-21 07:02:23 UTC	2023-01-10 10:41:19 UTC	93.184.220.29
img-getpocket.cdn.mozilla.net (6)	1631	2017-09-01 03:40:57 UTC	2023-01-10 04:09:28 UTC	34.120.237.76
fonts.googleapis.com (2)	8877	2012-05-23 12:41:44 UTC	2023-01-10 12:59:23 UTC	142.250.74.74
r3.o.lencr.org (8)	344	2020-12-02 08:52:13 UTC	2023-01-10 04:09:11 UTC	23.36.76.226
winnerinvestgroup.com (88)	0	2022-03-29 20:14:56 UTC	2023-01-10 18:41:25 UTC	162.241.253.159	Unknown ranking
ocsp.pki.goog (8)	175	2017-06-14 07:23:31 UTC	2023-01-10 04:10:27 UTC	142.250.74.131
fonts.gstatic.com (4)	0	2014-04-02 10:51:04 UTC	2023-01-10 07:13:11 UTC	142.250.74.35	Domain (gstatic.com) ranked at: 540

Timestamp	Severity	Source IP	Destination IP	Alert
2023-01-11 08:04:45 UTC	1	162.241.253.159	Client IP	ET PHISHING Possible Phish - Mirrored Website Comment Observed
2023-01-11 08:04:49 UTC	1	162.241.253.159	Client IP	ET PHISHING Possible Phish - Mirrored Website Comment Observed

Scan Date	Severity	Indicator	Comment
2023-01-10	2	winnerinvestgroup.com/	Crypto/Wallet
2023-01-10	2	winnerinvestgroup.com/	Crypto/Wallet
2023-01-10	2	winnerinvestgroup.com/	Crypto/Wallet
2023-01-10	2	winnerinvestgroup.com/	Crypto/Wallet
2023-01-10	2	winnerinvestgroup.com/	Crypto/Wallet
2023-01-10	2	winnerinvestgroup.com/	Crypto/Wallet
2023-01-10	2	winnerinvestgroup.com/	Crypto/Wallet
2023-01-10	2	winnerinvestgroup.com/	Crypto/Wallet
2023-01-10	2	winnerinvestgroup.com/	Crypto/Wallet
2023-01-10	2	winnerinvestgroup.com/	Crypto/Wallet
2023-01-10	2	winnerinvestgroup.com/	Crypto/Wallet
2023-01-10	2	winnerinvestgroup.com/	Crypto/Wallet
2023-01-10	2	winnerinvestgroup.com/	Crypto/Wallet
2023-01-10	2	winnerinvestgroup.com/	Crypto/Wallet
2023-01-10	2	winnerinvestgroup.com/	Crypto/Wallet
2023-01-10	2	winnerinvestgroup.com/	Crypto/Wallet
2023-01-10	2	winnerinvestgroup.com/	Crypto/Wallet
2023-01-10	2	winnerinvestgroup.com/	Crypto/Wallet
2023-01-10	2	winnerinvestgroup.com/	Crypto/Wallet
2023-01-10	2	winnerinvestgroup.com/	Crypto/Wallet
2023-01-10	2	winnerinvestgroup.com/	Crypto/Wallet
2023-01-10	2	winnerinvestgroup.com/	Crypto/Wallet
2023-01-10	2	winnerinvestgroup.com/	Crypto/Wallet
2023-01-10	2	winnerinvestgroup.com/	Crypto/Wallet
2023-01-10	2	winnerinvestgroup.com/	Crypto/Wallet
2023-01-10	2	winnerinvestgroup.com/	Crypto/Wallet
2023-01-10	2	winnerinvestgroup.com/	Crypto/Wallet
2023-01-10	2	winnerinvestgroup.com/	Crypto/Wallet
2023-01-10	2	winnerinvestgroup.com/	Crypto/Wallet
2023-01-10	2	winnerinvestgroup.com/	Crypto/Wallet
2023-01-10	2	winnerinvestgroup.com/	Crypto/Wallet
2023-01-10	2	winnerinvestgroup.com/	Crypto/Wallet
2023-01-10	2	winnerinvestgroup.com/	Crypto/Wallet
2023-01-10	2	winnerinvestgroup.com/	Crypto/Wallet
2023-01-10	2	winnerinvestgroup.com/	Crypto/Wallet
2023-01-10	2	winnerinvestgroup.com/	Crypto/Wallet
2023-01-10	2	winnerinvestgroup.com/	Crypto/Wallet
2023-01-10	2	winnerinvestgroup.com/	Crypto/Wallet
2023-01-10	2	winnerinvestgroup.com/	Crypto/Wallet
2023-01-10	2	winnerinvestgroup.com/	Crypto/Wallet
2023-01-10	2	winnerinvestgroup.com/	Crypto/Wallet
2023-01-10	2	winnerinvestgroup.com/	Crypto/Wallet
2023-01-10	2	winnerinvestgroup.com/	Crypto/Wallet
2023-01-10	2	winnerinvestgroup.com/	Crypto/Wallet
2023-01-10	2	winnerinvestgroup.com/	Crypto/Wallet
2023-01-10	2	winnerinvestgroup.com/	Crypto/Wallet
2023-01-10	2	winnerinvestgroup.com/	Crypto/Wallet
2023-01-10	2	winnerinvestgroup.com/	Crypto/Wallet
2023-01-10	2	winnerinvestgroup.com/	Crypto/Wallet
2023-01-10	2	winnerinvestgroup.com/	Crypto/Wallet
2023-01-10	2	winnerinvestgroup.com/	Crypto/Wallet
2023-01-10	2	winnerinvestgroup.com/	Crypto/Wallet
2023-01-10	2	winnerinvestgroup.com/	Crypto/Wallet
2023-01-10	2	winnerinvestgroup.com/	Crypto/Wallet
2023-01-10	2	winnerinvestgroup.com/	Crypto/Wallet
2023-01-10	2	winnerinvestgroup.com/	Crypto/Wallet
2023-01-10	2	winnerinvestgroup.com/	Crypto/Wallet
2023-01-10	2	winnerinvestgroup.com/	Crypto/Wallet
2023-01-10	2	winnerinvestgroup.com/	Crypto/Wallet
2023-01-10	2	winnerinvestgroup.com/	Crypto/Wallet
2023-01-10	2	winnerinvestgroup.com/	Crypto/Wallet
2023-01-10	2	winnerinvestgroup.com/	Crypto/Wallet

Scan Date	Severity	Indicator	Comment
2023-01-11	2	winnerinvestgroup.com/	Phishing
2023-01-11	2	winnerinvestgroup.com/wp-content/plugins/woocommerce/packages/woocommerce-b (...)	Phishing
2023-01-11	2	winnerinvestgroup.com/wp-content/plugins/revslider/public/assets/css/settin (...)	Phishing
2023-01-11	2	winnerinvestgroup.com/wp-content/themes/suprema/style080f.css?ver=5.8.2	Phishing
2023-01-11	2	winnerinvestgroup.com/wp-content/themes/suprema/assets/css/plugins.min080f. (...)	Phishing
2023-01-11	2	winnerinvestgroup.com/wp-content/themes/suprema/assets/css/elegant-icons/st (...)	Phishing
2023-01-11	2	winnerinvestgroup.com/wp-content/themes/suprema/assets/css/font-awesome/css (...)	Phishing
2023-01-11	2	winnerinvestgroup.com/wp-content/themes/suprema/assets/css/ion-icons/css/io (...)	Phishing
2023-01-11	2	winnerinvestgroup.com/wp-content/themes/suprema/assets/css/modules.min080f. (...)	Phishing
2023-01-11	2	winnerinvestgroup.com/wp-content/themes/suprema/assets/css/linea-icons/styl (...)	Phishing
2023-01-11	2	winnerinvestgroup.com/wp-content/themes/suprema/assets/css/linear-icons/sty (...)	Phishing
2023-01-11	2	winnerinvestgroup.com/wp-content/themes/suprema/assets/css/simple-line-icon (...)	Phishing
2023-01-11	2	winnerinvestgroup.com/wp-content/themes/suprema/assets/css/style_dynamic_re (...)	Phishing
2023-01-11	2	winnerinvestgroup.com/wp-content/plugins/elementor/assets/lib/eicons/css/el (...)	Phishing
2023-01-11	2	winnerinvestgroup.com/wp-content/plugins/elementor/assets/css/frontend-lite (...)	Phishing
2023-01-11	2	winnerinvestgroup.com/wp-content/uploads/elementor/css/post-7d36c.css?ver=1 (...)	Phishing
2023-01-11	2	winnerinvestgroup.com/wp-content/plugins/elementor-pro/assets/css/frontend- (...)	Phishing
2023-01-11	2	winnerinvestgroup.com/wp-content/plugins/js_composer/assets/css/js_composer (...)	Phishing
2023-01-11	2	winnerinvestgroup.com/wp-content/uploads/elementor/css/globald36c.css?ver=1 (...)	Phishing
2023-01-11	2	winnerinvestgroup.com/wp-content/uploads/elementor/css/post-1568df.css?ver= (...)	Phishing
2023-01-11	2	winnerinvestgroup.com/wp-content/plugins/wp-live-chat-software-for-wordpres (...)	Phishing
2023-01-11	2	winnerinvestgroup.com/wp-includes/js/jquery/jquery-migrate.mind617.js?ver=3.3.2	Phishing
2023-01-11	2	winnerinvestgroup.com/wp-content/plugins/woocommerce/assets/js/frontend/add (...)	Phishing
2023-01-11	2	winnerinvestgroup.com/wp-includes/js/jquery/jquery.minaf6c.js?ver=3.6.0	Phishing
2023-01-11	2	winnerinvestgroup.com/connect.livechatinc.com/api/v1/script/e808420d-9257-4 (...)	Phishing
2023-01-11	2	winnerinvestgroup.com/wp-content/plugins/woocommerce/assets/js/jquery-block (...)	Phishing
2023-01-11	2	winnerinvestgroup.com/connect.livechatinc.com/api/v1/script/e808420d-9257-4 (...)	Phishing
2023-01-11	2	winnerinvestgroup.com/wp-content/plugins/revslider/public/assets/js/jquery. (...)	Phishing
2023-01-11	2	winnerinvestgroup.com/wp-includes/js/dist/vendor/regenerator-runtime.minb36 (...)	Phishing
2023-01-11	2	winnerinvestgroup.com/wp-content/plugins/woocommerce/assets/js/js-cookie/js (...)	Phishing
2023-01-11	2	winnerinvestgroup.com/wp-content/plugins/woocommerce/assets/js/frontend/woo (...)	Phishing
2023-01-11	2	winnerinvestgroup.com/wp-content/plugins/woocommerce/assets/js/frontend/car (...)	Phishing
2023-01-11	2	winnerinvestgroup.com/wp-includes/js/jquery/ui/accordion.min35d0.js?ver=1.12.1	Phishing
2023-01-11	2	winnerinvestgroup.com/wp-includes/js/mediaelement/mediaelement-migrate.min0 (...)	Phishing
2023-01-11	2	winnerinvestgroup.com/wp-includes/js/mediaelement/wp-mediaelement.min080f.j (...)	Phishing
2023-01-11	2	winnerinvestgroup.com/wp-content/plugins/js_composer/assets/lib/bower/isoto (...)	Phishing
2023-01-11	2	winnerinvestgroup.com/wp-includes/js/mediaelement/mediaelement-and-player.m (...)	Phishing
2023-01-11	2	winnerinvestgroup.com/wp-content/themes/suprema/assets/js/modules.min080f.j (...)	Phishing
2023-01-11	2	winnerinvestgroup.com/wp-includes/js/comment-reply.min080f.js?ver=5.8.2	Phishing
2023-01-11	2	winnerinvestgroup.com/wp-content/plugins/js_composer/assets/js/dist/js_comp (...)	Phishing
2023-01-11	2	winnerinvestgroup.com/wp-content/themes/suprema/assets/js/like.min5152.js?v (...)	Phishing
2023-01-11	2	winnerinvestgroup.com/wp-content/plugins/elementor/assets/js/webpack.runtim (...)	Phishing
2023-01-11	2	winnerinvestgroup.com/wp-content/plugins/elementor/assets/js/frontend-modul (...)	Phishing
2023-01-11	2	winnerinvestgroup.com/wp-content/plugins/elementor-pro/assets/js/frontend.m (...)	Phishing
2023-01-11	2	winnerinvestgroup.com/wp-includes/js/underscore.min0028.js?ver=1.13.1	Phishing
2023-01-11	2	winnerinvestgroup.com/wp-includes/js/wp-util.min080f.js?ver=5.8.2	Phishing
2023-01-11	2	winnerinvestgroup.com/connect.livechatinc.com/api/v1/script/e808420d-9257-4 (...)	Phishing
2023-01-11	2	winnerinvestgroup.com/wp-content/plugins/elementor-pro/assets/js/elements-h (...)	Phishing
2023-01-11	2	winnerinvestgroup.com/connect.livechatinc.com/api/v1/script/e808420d-9257-4 (...)	Phishing
2023-01-11	2	winnerinvestgroup.com/?wc-ajax=get_refreshed_fragments	Phishing

Date	UQ / IDS / BL	URL	IP
2023-01-11 08:05:11 +0000	0 - 2 - 112	winnerinvestgroup.com/	162.241.253.159
2022-12-26 18:52:51 +0000	0 - 2 - 112	winnerinvestgroup.com/	162.241.253.159
2022-11-04 15:16:05 +0000	0 - 0 - 112	winnerinvestgroup.com/	162.241.253.159

Date	UQ / IDS / BL	URL	IP
2023-03-21 14:56:24 +0000	0 - 0 - 3	webcrtva.aleem.pk/s/usps/index5.php	192.185.52.213
2023-03-21 14:55:41 +0000	8 - 8 - 4	pakkokharco.com/Mtbank/login.php?online_id=01 (...)	162.241.123.81
2023-03-21 14:54:21 +0000	0 - 0 - 7	wk1sa.com/americafcu/login.php?online_id=b4a1 (...)	70.40.217.33
2023-03-21 14:54:12 +0000	0 - 0 - 3	deeperlifezambia.org/cic/wellsfargo/wellsfarg (...)	70.40.208.244
2023-03-21 14:50:52 +0000	0 - 0 - 14	upcomingengineer.com/wellsfargo/login?wells_i (...)	162.214.81.26

Date	UQ / IDS / BL	URL	IP
2023-01-11 08:05:11 +0000	0 - 2 - 112	winnerinvestgroup.com/	162.241.253.159
2022-12-26 18:52:51 +0000	0 - 2 - 112	winnerinvestgroup.com/	162.241.253.159
2022-11-04 15:16:05 +0000	0 - 0 - 112	winnerinvestgroup.com/	162.241.253.159

Date	UQ / IDS / BL	URL	IP
2023-02-28 19:15:32 +0000	0 - 2 - 116	validiateconnect.com/	195.179.237.160
2023-02-28 05:16:31 +0000	0 - 2 - 120	validiateconnect.com/	195.179.237.160
2023-02-07 13:47:37 +0000	0 - 2 - 122	validiateconnect.com/	195.179.237.160
2023-01-19 19:47:34 +0000	0 - 0 - 122	validiateconnect.com/	195.179.237.160
2023-01-19 05:43:09 +0000	0 - 2 - 120	validiateconnect.com/	195.179.237.160

HTTP Transactions (121)

Request	Response
POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: r3.o.lencr.org/ FQDN: r3.o.lencr.org IP: 23.36.76.226 HASH: d3818afd1493030105341b4cfb91037acbf27085c96068b3ef91c5071277c8e5 23.36.76.226 HTTP/1.1 200 OK Content-Type: application/ocsp-response Server: nginx Content-Length: 503 ETag: "D3818AFD1493030105341B4CFB91037ACBF27085C96068B3EF91C5071277C8E5" Last-Modified: Mon, 09 Jan 2023 19:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=20626 Expires: Wed, 11 Jan 2023 13:48:45 GMT Date: Wed, 11 Jan 2023 08:04:59 GMT Connection: keep-alive --- Additional Info --- Magic: data Size: 503 Md5: e6b7a72139d0ef7688330456e9be9a4c Sha1: e130a94e7d531768300071764dd1e81fee5bbbcb Sha256: d3818afd1493030105341b4cfb91037acbf27085c96068b3ef91c5071277c8e5
POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: r3.o.lencr.org/ FQDN: r3.o.lencr.org IP: 23.36.76.226 HASH: 65e21170242bf41eb529fa422385dbe5af65a61e374e6dd5669e7e5f927948af 23.36.76.226 HTTP/1.1 200 OK Content-Type: application/ocsp-response Server: nginx Content-Length: 503 ETag: "65E21170242BF41EB529FA422385DBE5AF65A61E374E6DD5669E7E5F927948AF" Last-Modified: Mon, 09 Jan 2023 08:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=4322 Expires: Wed, 11 Jan 2023 09:17:01 GMT Date: Wed, 11 Jan 2023 08:04:59 GMT Connection: keep-alive --- Additional Info --- Magic: data Size: 503 Md5: eecebe0566883e33558e8e67beaccb29 Sha1: acdd8fd09e2066ed5ecfbc3f11c4a2d61218ecc7 Sha256: 65e21170242bf41eb529fa422385dbe5af65a61e374e6dd5669e7e5f927948af
POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: r3.o.lencr.org/ FQDN: r3.o.lencr.org IP: 23.36.76.226 HASH: 75fcc3ea090454e3489a131b70ab50798fec6a08664745027d7a1cf62c6aba28 23.36.76.226 HTTP/1.1 200 OK Content-Type: application/ocsp-response Server: nginx Content-Length: 503 ETag: "75FCC3EA090454E3489A131B70AB50798FEC6A08664745027D7A1CF62C6ABA28" Last-Modified: Mon, 09 Jan 2023 08:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=2517 Expires: Wed, 11 Jan 2023 08:46:56 GMT Date: Wed, 11 Jan 2023 08:04:59 GMT Connection: keep-alive --- Additional Info --- Magic: data Size: 503 Md5: d8ccb7b2b89aec333fabc04d37337892 Sha1: c2a13a42c1bd0cf7ce68d9c13b3d6ba1044b5283 Sha256: 75fcc3ea090454e3489a131b70ab50798fec6a08664745027d7a1cf62c6aba28
GET /v1/ HTTP/1.1 Host: firefox.settings.services.mozilla.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	URL: firefox.settings.services.mozilla.com/v1/ FQDN: firefox.settings.services.mozilla.com IP: 35.241.9.150 HASH: b64051a4a8e346e3c72b2aef77f360a5736ab5e16711d8e0bae3876feaa15b6e 35.241.9.150 HTTP/2 200 OK content-type: application/json access-control-allow-origin: * access-control-expose-headers: Retry-After, Content-Length, Alert, Backoff, Content-Type content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none'; strict-transport-security: max-age=31536000 x-content-type-options: nosniff content-length: 939 via: 1.1 google date: Wed, 11 Jan 2023 07:48:35 GMT age: 984 cache-control: max-age=3600,public alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JSON data\012- , ASCII text, with very long lines (939), with no line terminators Size: 939 Md5: 30db107dcf4380cef05efea409c2e6a3 Sha1: 96e6a306fbc07299aba64e5c14e2bfca35872fa9 Sha256: b64051a4a8e346e3c72b2aef77f360a5736ab5e16711d8e0bae3876feaa15b6e
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-08-14-47-57.chain HTTP/1.1 Host: content-signature-2.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: content-signature-2.cdn.mozilla.net/chains/remote-setti (...) FQDN: content-signature-2.cdn.mozilla.net IP: 34.160.144.191 HASH: e059b6d834c06e58494c43fb2ff42acbc27c1a1d8f7f30e2f32ca0e167599e2f 34.160.144.191 HTTP/2 200 OK content-type: binary/octet-stream x-amz-id-2: 9NTNvpoh5mWW7dBA3dwNxQjyiHppl3vFo7awTn++8SmqYUkEzDPopUPoVt2JoAnlh920CeADOaU= x-amz-request-id: KZYATYM6R71XR7P8 content-disposition: attachment accept-ranges: bytes server: AmazonS3 content-length: 5348 via: 1.1 google date: Wed, 11 Jan 2023 08:01:59 GMT age: 180 last-modified: Tue, 20 Dec 2022 14:47:58 GMT etag: "b1fcd419a4245617397846e8d17233f6" cache-control: public,max-age=3600 alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: PEM certificate\012- , ASCII text Size: 5348 Md5: b1fcd419a4245617397846e8d17233f6 Sha1: 2a037ce244587640b27ead9a0ec2af4f862d91b2 Sha256: e059b6d834c06e58494c43fb2ff42acbc27c1a1d8f7f30e2f32ca0e167599e2f
GET / HTTP/1.1 Host: winnerinvestgroup.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Upgrade-Insecure-Requests: 1	URL: winnerinvestgroup.com/ FQDN: winnerinvestgroup.com IP: 162.241.253.159 HASH: 2f923635e93b164ef32d55f3a8c0d78c1be8ee0bfcafaf492a9f2a837be67124 162.241.253.159 HTTP/1.1 200 OK Content-Type: text/html Date: Wed, 11 Jan 2023 08:04:59 GMT Server: Apache Upgrade: h2,h2c Connection: Upgrade, Keep-Alive Last-Modified: Thu, 17 Feb 2022 09:31:30 GMT Accept-Ranges: bytes Vary: Accept-Encoding Content-Encoding: gzip host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ== Keep-Alive: timeout=5, max=75 Transfer-Encoding: chunked --- Additional Info --- Magic: HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (2356) Size: 18846 Md5: 5b02209b47b4ed1dcd27e126d3452388 Sha1: b49ea7da3c2e2c7bc8aba78d639fc82ba5b9a357 Sha256: 2f923635e93b164ef32d55f3a8c0d78c1be8ee0bfcafaf492a9f2a837be67124 Alerts: Blocklists: - openphish: Crypto/Wallet - fortinet: Phishing IDS: - ET PHISHING Possible Phish - Mirrored Website Comment Observed
GET /v1/tiles HTTP/1.1 Host: contile.services.mozilla.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	URL: contile.services.mozilla.com/v1/tiles FQDN: contile.services.mozilla.com IP: 34.117.237.239 HASH: 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3 34.117.237.239 HTTP/2 200 OK content-type: application/json server: nginx date: Wed, 11 Jan 2023 08:04:59 GMT content-length: 12 access-control-allow-credentials: true vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers access-control-expose-headers: content-type strict-transport-security: max-age=31536000 via: 1.1 google alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JSON data\012- , ASCII text, with no line terminators Size: 12 Md5: 23e88fb7b99543fb33315b29b1fad9d6 Sha1: a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce Sha256: 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: ocsp.pki.goog/gts1c3 FQDN: ocsp.pki.goog IP: 142.250.74.131 HASH: 49821c9c4c570ff4e089276c96b05cef53c725e77e34f6c772d2b932e7c81c2d 142.250.74.131 HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Wed, 11 Jan 2023 08:05:00 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN --- Additional Info --- Magic: data Size: 472 Md5: b6814de21e79e28c4a59b9bef50020cb Sha1: 5d6fcbdd6b70933b9367226523ce68364a1f0f1b Sha256: 49821c9c4c570ff4e089276c96b05cef53c725e77e34f6c772d2b932e7c81c2d
GET /wp-content/plugins/wp-live-chat-software-for-wordpress/plugin_files/css/livechat-icons62d0.css?ver=4.5.3 HTTP/1.1 Host: winnerinvestgroup.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://winnerinvestgroup.com/	URL: winnerinvestgroup.com/wp-content/plugins/wp-live-chat-s (...) FQDN: winnerinvestgroup.com IP: 162.241.253.159 HASH: 92aab001770e96d1f9d1b3c8273d7e8d053625085c6aa600e2d3012fce9fc9ee 162.241.253.159 HTTP/1.1 200 OK Content-Type: text/css Date: Wed, 11 Jan 2023 08:05:00 GMT Server: Apache Upgrade: h2,h2c Connection: Upgrade, Keep-Alive Last-Modified: Wed, 30 Mar 2022 11:51:52 GMT Accept-Ranges: bytes Vary: Accept-Encoding Content-Encoding: gzip host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ== Content-Length: 338 Keep-Alive: timeout=5, max=75 --- Additional Info --- Magic: ASCII text Size: 338 Md5: 658cd2ab3356e16ad6bb64a1f77cb91a Sha1: 9fd9cdcc561cd1f96495814c43752c9873e21681 Sha256: 92aab001770e96d1f9d1b3c8273d7e8d053625085c6aa600e2d3012fce9fc9ee
GET /wp-includes/css/dist/block-library/style.min080f.css?ver=5.8.2 HTTP/1.1 Host: winnerinvestgroup.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://winnerinvestgroup.com/	URL: winnerinvestgroup.com/wp-includes/css/dist/block-librar (...) FQDN: winnerinvestgroup.com IP: 162.241.253.159 HASH: 7a12133f8cb48c1b5b4631ee9e9a0eebe36bbf2bbe1eb792b0f9fc630c18bd76 162.241.253.159 HTTP/1.1 200 OK Content-Type: text/css Date: Wed, 11 Jan 2023 08:05:00 GMT Server: Apache Last-Modified: Wed, 30 Mar 2022 11:51:53 GMT Accept-Ranges: bytes Vary: Accept-Encoding Content-Encoding: gzip host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ== Content-Length: 14560 Keep-Alive: timeout=5, max=74 Connection: Keep-Alive --- Additional Info --- Magic: Unicode text, UTF-8 text, with very long lines (33376) Size: 14560 Md5: 6ebc7a4d773cb1f29a93f605933fba76 Sha1: b113ca39afc5fd44cbc06dca58945bb5e9fb771e Sha256: 7a12133f8cb48c1b5b4631ee9e9a0eebe36bbf2bbe1eb792b0f9fc630c18bd76
GET /wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-vendors-style5c45.css?ver=6.3.3 HTTP/1.1 Host: winnerinvestgroup.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://winnerinvestgroup.com/	URL: winnerinvestgroup.com/wp-content/plugins/woocommerce/pa (...) FQDN: winnerinvestgroup.com IP: 162.241.253.159 HASH: 1c1dcbb08352422a98b8dd9632753b904e9040eea0a538dc2d169935e7fa5fb3 162.241.253.159 HTTP/1.1 200 OK Content-Type: text/css Date: Wed, 11 Jan 2023 08:05:00 GMT Server: Apache Upgrade: h2,h2c Connection: Upgrade, Keep-Alive Last-Modified: Wed, 30 Mar 2022 11:51:52 GMT Accept-Ranges: bytes Vary: Accept-Encoding Content-Encoding: gzip host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ== Content-Length: 1723 Keep-Alive: timeout=5, max=75 --- Additional Info --- Magic: ASCII text, with very long lines (5305), with no line terminators Size: 1723 Md5: 0332c949167f256eaeb32063c28950ae Sha1: 55d38da2c11e1b193de19a9fa3a6a275a4accdfe Sha256: 1c1dcbb08352422a98b8dd9632753b904e9040eea0a538dc2d169935e7fa5fb3 Alerts: Blocklists: - openphish: Crypto/Wallet - fortinet: Phishing
GET /wp-content/plugins/formcraft/dist/formcraft-common3430.css?ver=3.7.5 HTTP/1.1 Host: winnerinvestgroup.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://winnerinvestgroup.com/	URL: winnerinvestgroup.com/wp-content/plugins/formcraft/dist (...) FQDN: winnerinvestgroup.com IP: 162.241.253.159 HASH: b36261df7fb6eed4a395bd7f8f0cdaf504d91aac9fc12f7f1e2f872b84a0fdfe 162.241.253.159 HTTP/1.1 200 OK Content-Type: text/css Date: Wed, 11 Jan 2023 08:05:00 GMT Server: Apache Upgrade: h2,h2c Connection: Upgrade, Keep-Alive Last-Modified: Wed, 30 Mar 2022 11:51:52 GMT Accept-Ranges: bytes Vary: Accept-Encoding Content-Encoding: gzip host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ== Content-Length: 8070 Keep-Alive: timeout=5, max=75 --- Additional Info --- Magic: ASCII text, with very long lines (28207), with no line terminators Size: 8070 Md5: 5b2863f7a32d92a6e2599ccdf8087ca3 Sha1: 364cd39b56a8c7e773b22677aa11fb6359bd12f7 Sha256: b36261df7fb6eed4a395bd7f8f0cdaf504d91aac9fc12f7f1e2f872b84a0fdfe
GET /wp-content/plugins/revslider/public/assets/css/settings23da.css?ver=5.4.8 HTTP/1.1 Host: winnerinvestgroup.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://winnerinvestgroup.com/	URL: winnerinvestgroup.com/wp-content/plugins/revslider/publ (...) FQDN: winnerinvestgroup.com IP: 162.241.253.159 HASH: 96ab3795c52e1ef8cc82db93ab81508ed2a44a18ea887b3e49f5a01108e2a6d5 162.241.253.159 HTTP/1.1 200 OK Content-Type: text/css Date: Wed, 11 Jan 2023 08:05:00 GMT Server: Apache Last-Modified: Wed, 30 Mar 2022 11:51:52 GMT Accept-Ranges: bytes Vary: Accept-Encoding Content-Encoding: gzip host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ== Content-Length: 12204 Keep-Alive: timeout=5, max=73 Connection: Keep-Alive --- Additional Info --- Magic: Unicode text, UTF-8 text, with very long lines (5178), with CRLF line terminators Size: 12204 Md5: 420d3926527788e79d29df1d6d25abb2 Sha1: 04117609e648756b5f601e11c01897d891d40b02 Sha256: 96ab3795c52e1ef8cc82db93ab81508ed2a44a18ea887b3e49f5a01108e2a6d5 Alerts: Blocklists: - openphish: Crypto/Wallet - fortinet: Phishing
POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: ocsp.pki.goog/gts1c3 FQDN: ocsp.pki.goog IP: 142.250.74.131 HASH: 49821c9c4c570ff4e089276c96b05cef53c725e77e34f6c772d2b932e7c81c2d 142.250.74.131 HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Wed, 11 Jan 2023 08:05:00 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN --- Additional Info --- Magic: data Size: 472 Md5: b6814de21e79e28c4a59b9bef50020cb Sha1: 5d6fcbdd6b70933b9367226523ce68364a1f0f1b Sha256: 49821c9c4c570ff4e089276c96b05cef53c725e77e34f6c772d2b932e7c81c2d
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 Host: firefox.settings.services.mozilla.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/json Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: application/json Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site TE: trailers	URL: firefox.settings.services.mozilla.com/v1/buckets/main/c (...) FQDN: firefox.settings.services.mozilla.com IP: 35.241.9.150 HASH: 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300 35.241.9.150 HTTP/2 200 OK content-type: application/json access-control-allow-origin: * access-control-expose-headers: Retry-After, Pragma, Content-Length, Alert, Expires, ETag, Last-Modified, Backoff, Content-Type, Cache-Control content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none'; strict-transport-security: max-age=31536000 x-content-type-options: nosniff content-length: 329 via: 1.1 google date: Wed, 11 Jan 2023 07:33:45 GMT age: 1875 last-modified: Fri, 25 Mar 2022 17:45:46 GMT etag: "1648230346554" cache-control: max-age=3600,public alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JSON data\012- , ASCII text, with very long lines (329), with no line terminators Size: 329 Md5: 0333b0655111aa68de771adfcc4db243 Sha1: 63f295a144ac87a7c8e23417626724eeca68a7eb Sha256: 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /wp-content/themes/suprema/style080f.css?ver=5.8.2 HTTP/1.1 Host: winnerinvestgroup.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://winnerinvestgroup.com/	URL: winnerinvestgroup.com/wp-content/themes/suprema/style08 (...) FQDN: winnerinvestgroup.com IP: 162.241.253.159 HASH: ea801c02e1131579633a750cd67b5812ff23ba9c49d1d17ae84f46863c782f55 162.241.253.159 HTTP/1.1 200 OK Content-Type: text/css Date: Wed, 11 Jan 2023 08:05:00 GMT Server: Apache Last-Modified: Wed, 30 Mar 2022 11:51:52 GMT Accept-Ranges: bytes Vary: Accept-Encoding Content-Encoding: gzip host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ== Content-Length: 266 Keep-Alive: timeout=5, max=74 Connection: Keep-Alive --- Additional Info --- Magic: Unicode text, UTF-8 text Size: 266 Md5: 1bbd43196c4f9f2c694cd69102981d53 Sha1: b8243fd85d46dba227df6447dbcaa99c9c89bd89 Sha256: ea801c02e1131579633a750cd67b5812ff23ba9c49d1d17ae84f46863c782f55 Alerts: Blocklists: - openphish: Crypto/Wallet - fortinet: Phishing
GET /wp-content/plugins/formcraft/dist/form3430.css?ver=3.7.5 HTTP/1.1 Host: winnerinvestgroup.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://winnerinvestgroup.com/	URL: winnerinvestgroup.com/wp-content/plugins/formcraft/dist (...) FQDN: winnerinvestgroup.com IP: 162.241.253.159 HASH: 6d6f64f8f3ec9c3aab3e7b783c4aa3a378a5361b43e762879bae8b2c99643694 162.241.253.159 HTTP/1.1 200 OK Content-Type: text/css Date: Wed, 11 Jan 2023 08:05:00 GMT Server: Apache Last-Modified: Wed, 30 Mar 2022 11:51:52 GMT Accept-Ranges: bytes Vary: Accept-Encoding Content-Encoding: gzip host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ== Content-Length: 13458 Keep-Alive: timeout=5, max=74 Connection: Keep-Alive --- Additional Info --- Magic: ASCII text, with very long lines (63972), with no line terminators Size: 13458 Md5: 198ff6350423a9bc12fc8e87ac052402 Sha1: b357b061c50a2265987bfc13272de9274808f87b Sha256: 6d6f64f8f3ec9c3aab3e7b783c4aa3a378a5361b43e762879bae8b2c99643694
GET /wp-content/themes/suprema/assets/css/plugins.min080f.css?ver=5.8.2 HTTP/1.1 Host: winnerinvestgroup.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://winnerinvestgroup.com/	URL: winnerinvestgroup.com/wp-content/themes/suprema/assets/ (...) FQDN: winnerinvestgroup.com IP: 162.241.253.159 HASH: 39a0f4f8888b43c55921723d22b70575287f0bcfcc45749ba21fdab6ba71581d 162.241.253.159 HTTP/1.1 200 OK Content-Type: text/css Date: Wed, 11 Jan 2023 08:05:00 GMT Server: Apache Last-Modified: Wed, 30 Mar 2022 11:51:52 GMT Accept-Ranges: bytes Vary: Accept-Encoding Content-Encoding: gzip host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ== Content-Length: 12156 Keep-Alive: timeout=5, max=74 Connection: Keep-Alive --- Additional Info --- Magic: ASCII text, with very long lines (50028), with no line terminators Size: 12156 Md5: df0057003c0ac5caffb3d20aa199b45b Sha1: ea58364eea08896cc2e4c6d7895d563eda1d7fd1 Sha256: 39a0f4f8888b43c55921723d22b70575287f0bcfcc45749ba21fdab6ba71581d Alerts: Blocklists: - openphish: Crypto/Wallet - fortinet: Phishing
GET /wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-style5c45.css?ver=6.3.3 HTTP/1.1 Host: winnerinvestgroup.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://winnerinvestgroup.com/	URL: winnerinvestgroup.com/wp-content/plugins/woocommerce/pa (...) FQDN: winnerinvestgroup.com IP: 162.241.253.159 HASH: f41a5ef41bd88365d1a5ec57f44fd75116ccaa2460b33f5493036b414e44dc9d 162.241.253.159 HTTP/1.1 200 OK Content-Type: text/css Date: Wed, 11 Jan 2023 08:05:00 GMT Server: Apache Upgrade: h2,h2c Connection: Upgrade, Keep-Alive Last-Modified: Wed, 30 Mar 2022 11:51:52 GMT Accept-Ranges: bytes Vary: Accept-Encoding Content-Encoding: gzip host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ== Keep-Alive: timeout=5, max=75 Transfer-Encoding: chunked --- Additional Info --- Magic: Unicode text, UTF-8 text, with very long lines (65527), with no line terminators Size: 43378 Md5: 1f01e4fcdb4069de3fd921d26ce3602f Sha1: 6a020807d4eb6237aa59b2299ee918d84dcb0a2a Sha256: f41a5ef41bd88365d1a5ec57f44fd75116ccaa2460b33f5493036b414e44dc9d
GET /wp-content/themes/suprema/assets/css/elegant-icons/style.min080f.css?ver=5.8.2 HTTP/1.1 Host: winnerinvestgroup.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://winnerinvestgroup.com/	URL: winnerinvestgroup.com/wp-content/themes/suprema/assets/ (...) FQDN: winnerinvestgroup.com IP: 162.241.253.159 HASH: 33f6995616e85c00811368e58a7784db3dd89339da3a6855398ad7fd3c7ac5da 162.241.253.159 HTTP/1.1 200 OK Content-Type: text/css Date: Wed, 11 Jan 2023 08:05:00 GMT Server: Apache Last-Modified: Wed, 30 Mar 2022 11:51:52 GMT Accept-Ranges: bytes Vary: Accept-Encoding Content-Encoding: gzip host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ== Content-Length: 4851 Keep-Alive: timeout=5, max=73 Connection: Keep-Alive --- Additional Info --- Magic: ASCII text, with very long lines (21773), with no line terminators Size: 4851 Md5: dffd20fd9d5e9811944dfee3e9dfcc58 Sha1: 2bdece6d6983a6f842b58b301d8a75db71e0f744 Sha256: 33f6995616e85c00811368e58a7784db3dd89339da3a6855398ad7fd3c7ac5da Alerts: Blocklists: - openphish: Crypto/Wallet - fortinet: Phishing
GET /wp-content/themes/suprema/assets/css/font-awesome/css/font-awesome.min080f.css?ver=5.8.2 HTTP/1.1 Host: winnerinvestgroup.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://winnerinvestgroup.com/	URL: winnerinvestgroup.com/wp-content/themes/suprema/assets/ (...) FQDN: winnerinvestgroup.com IP: 162.241.253.159 HASH: c7dc9cc6cd68208b505c17295512889ae0a77aeb1e9989b2ec2076456f3d7291 162.241.253.159 HTTP/1.1 200 OK Content-Type: text/css Date: Wed, 11 Jan 2023 08:05:00 GMT Server: Apache Last-Modified: Wed, 30 Mar 2022 11:51:52 GMT Accept-Ranges: bytes Vary: Accept-Encoding Content-Encoding: gzip host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ== Content-Length: 7121 Keep-Alive: timeout=5, max=73 Connection: Keep-Alive --- Additional Info --- Magic: ASCII text, with very long lines (30861) Size: 7121 Md5: 5035fadc46ccb6830038f796315f1c5d Sha1: 6a411c58194159cb76b34bbab796f23371716a31 Sha256: c7dc9cc6cd68208b505c17295512889ae0a77aeb1e9989b2ec2076456f3d7291 Alerts: Blocklists: - openphish: Crypto/Wallet - fortinet: Phishing
GET /wp-content/plugins/contact-form-7/includes/css/styles5697.css?ver=5.5.3 HTTP/1.1 Host: winnerinvestgroup.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://winnerinvestgroup.com/	URL: winnerinvestgroup.com/wp-content/plugins/contact-form-7 (...) FQDN: winnerinvestgroup.com IP: 162.241.253.159 HASH: 769e8ab745a0fe4bf811036e75a8630e38c50a18cb3e24d539ce4a0722c7c85e 162.241.253.159 HTTP/1.1 409 Conflict Content-Type: text/html; charset=iso-8859-1 Date: Wed, 11 Jan 2023 08:05:00 GMT Server: Apache Content-Length: 83 Keep-Alive: timeout=5, max=75 Connection: Keep-Alive --- Additional Info --- Magic: HTML document, ASCII text, with no line terminators Size: 83 Md5: 26267cd8990f15d3bbea71684a6d5995 Sha1: ac3b38cf3fe0e112bb6aeb7e05226b7133575d93 Sha256: 769e8ab745a0fe4bf811036e75a8630e38c50a18cb3e24d539ce4a0722c7c85e
GET /wp-content/themes/suprema/assets/css/ion-icons/css/ionicons.min080f.css?ver=5.8.2 HTTP/1.1 Host: winnerinvestgroup.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://winnerinvestgroup.com/	URL: winnerinvestgroup.com/wp-content/themes/suprema/assets/ (...) FQDN: winnerinvestgroup.com IP: 162.241.253.159 HASH: 66444f9ae6768cf7bd574ccd90d6a7ea44a5ff355407485ccec436b77bb25e32 162.241.253.159 HTTP/1.1 200 OK Content-Type: text/css Date: Wed, 11 Jan 2023 08:05:00 GMT Server: Apache Last-Modified: Wed, 30 Mar 2022 11:51:52 GMT Accept-Ranges: bytes Vary: Accept-Encoding Content-Encoding: gzip host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ== Content-Length: 8822 Keep-Alive: timeout=5, max=73 Connection: Keep-Alive --- Additional Info --- Magic: Unicode text, UTF-8 text, with very long lines (50826) Size: 8822 Md5: c829ddea8f5aa971ec978dd14f42ac4e Sha1: 70278f25cb0ead0688980ec98c7c31cc4675d8f9 Sha256: 66444f9ae6768cf7bd574ccd90d6a7ea44a5ff355407485ccec436b77bb25e32 Alerts: Blocklists: - openphish: Crypto/Wallet - fortinet: Phishing
GET /wp-content/themes/suprema/assets/css/modules.min080f.css?ver=5.8.2 HTTP/1.1 Host: winnerinvestgroup.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://winnerinvestgroup.com/	URL: winnerinvestgroup.com/wp-content/themes/suprema/assets/ (...) FQDN: winnerinvestgroup.com IP: 162.241.253.159 HASH: 1365213ada0f6d5dc04dbdd397bc87a48bc72db338e21092ab34d3d825a7561d 162.241.253.159 HTTP/1.1 200 OK Content-Type: text/css Date: Wed, 11 Jan 2023 08:05:00 GMT Server: Apache Last-Modified: Wed, 30 Mar 2022 11:51:52 GMT Accept-Ranges: bytes Vary: Accept-Encoding Content-Encoding: gzip host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ== Keep-Alive: timeout=5, max=72 Connection: Keep-Alive Transfer-Encoding: chunked --- Additional Info --- Magic: ASCII text, with very long lines (65536), with no line terminators Size: 64745 Md5: 06058c990880efce66c707a432e274c7 Sha1: 3196fc3cd13eec178d064a87889300f2585c5d0a Sha256: 1365213ada0f6d5dc04dbdd397bc87a48bc72db338e21092ab34d3d825a7561d Alerts: Blocklists: - openphish: Crypto/Wallet - fortinet: Phishing
GET /wp-content/themes/suprema/assets/css/linea-icons/style080f.css?ver=5.8.2 HTTP/1.1 Host: winnerinvestgroup.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://winnerinvestgroup.com/	URL: winnerinvestgroup.com/wp-content/themes/suprema/assets/ (...) FQDN: winnerinvestgroup.com IP: 162.241.253.159 HASH: c020583ef13d1367b4bb87419cf86dba38a88607601f2ab8804dcffed3c49acd 162.241.253.159 HTTP/1.1 200 OK Content-Type: text/css Date: Wed, 11 Jan 2023 08:05:00 GMT Server: Apache Last-Modified: Wed, 30 Mar 2022 11:51:52 GMT Accept-Ranges: bytes Vary: Accept-Encoding Content-Encoding: gzip host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ== Content-Length: 9355 Keep-Alive: timeout=5, max=74 Connection: Keep-Alive --- Additional Info --- Magic: ASCII text, with very long lines (373) Size: 9355 Md5: 638a0d61050791a224b969b2b85c68b3 Sha1: 758cfe433ae5d74eb5926f30fae34f0da90c488f Sha256: c020583ef13d1367b4bb87419cf86dba38a88607601f2ab8804dcffed3c49acd Alerts: Blocklists: - openphish: Crypto/Wallet - fortinet: Phishing
GET /wp-content/themes/suprema/assets/css/linear-icons/style080f.css?ver=5.8.2 HTTP/1.1 Host: winnerinvestgroup.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://winnerinvestgroup.com/	URL: winnerinvestgroup.com/wp-content/themes/suprema/assets/ (...) FQDN: winnerinvestgroup.com IP: 162.241.253.159 HASH: 76d13128c12ad524b37585db197bd787302ad3ef4bb9082a5ac1815a1ad1970d 162.241.253.159 HTTP/1.1 200 OK Content-Type: text/css Date: Wed, 11 Jan 2023 08:05:00 GMT Server: Apache Last-Modified: Wed, 30 Mar 2022 11:51:52 GMT Accept-Ranges: bytes Vary: Accept-Encoding Content-Encoding: gzip host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ== Content-Length: 1616 Keep-Alive: timeout=5, max=72 Connection: Keep-Alive --- Additional Info --- Magic: ASCII text Size: 1616 Md5: a92661342b41e9f0059a69c69b4f1156 Sha1: a3c996f0de892b10f2753949b7b2aa61ec94caf9 Sha256: 76d13128c12ad524b37585db197bd787302ad3ef4bb9082a5ac1815a1ad1970d Alerts: Blocklists: - openphish: Crypto/Wallet - fortinet: Phishing
GET /wp-content/themes/suprema/assets/css/simple-line-icons/simple-line-icons080f.css?ver=5.8.2 HTTP/1.1 Host: winnerinvestgroup.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://winnerinvestgroup.com/	URL: winnerinvestgroup.com/wp-content/themes/suprema/assets/ (...) FQDN: winnerinvestgroup.com IP: 162.241.253.159 HASH: 55dd153d1e54059d055064683428e0d444ec387311e4e6216b59544056d0001c 162.241.253.159 HTTP/1.1 200 OK Content-Type: text/css Date: Wed, 11 Jan 2023 08:05:00 GMT Server: Apache Last-Modified: Wed, 30 Mar 2022 11:51:52 GMT Accept-Ranges: bytes Vary: Accept-Encoding Content-Encoding: gzip host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ== Content-Length: 2886 Keep-Alive: timeout=5, max=72 Connection: Keep-Alive --- Additional Info --- Magic: ASCII text, with very long lines (364) Size: 2886 Md5: c248c10cb8c51c54d8cdda4264ab335e Sha1: abc16c4927d61ba3ca5e074b90176bd48a55d182 Sha256: 55dd153d1e54059d055064683428e0d444ec387311e4e6216b59544056d0001c Alerts: Blocklists: - openphish: Crypto/Wallet - fortinet: Phishing
POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: ocsp.pki.goog/gts1c3 FQDN: ocsp.pki.goog IP: 142.250.74.131 HASH: 49821c9c4c570ff4e089276c96b05cef53c725e77e34f6c772d2b932e7c81c2d 142.250.74.131 HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Wed, 11 Jan 2023 08:05:00 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN --- Additional Info --- Magic: data Size: 472 Md5: b6814de21e79e28c4a59b9bef50020cb Sha1: 5d6fcbdd6b70933b9367226523ce68364a1f0f1b Sha256: 49821c9c4c570ff4e089276c96b05cef53c725e77e34f6c772d2b932e7c81c2d
POST / HTTP/1.1 Host: ocsp.digicert.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: ocsp.digicert.com/ FQDN: ocsp.digicert.com IP: 93.184.220.29 HASH: cdffa8dd48e75baa98670f82dfac2b3948667ca32dd93f469d2cd49d3a58581c 93.184.220.29 HTTP/1.1 200 OK Content-Type: application/ocsp-response Accept-Ranges: bytes Age: 5452 Cache-Control: max-age=95562 Date: Wed, 11 Jan 2023 08:05:00 GMT Etag: "63bd2aaa-1d7" Expires: Thu, 12 Jan 2023 10:37:42 GMT Last-Modified: Tue, 10 Jan 2023 09:06:50 GMT Server: ECS (ska/F71C) X-Cache: HIT Content-Length: 471 --- Additional Info --- Magic: data Size: 471 Md5: a831a999b5e598b4e9f4e31e8054ca7c Sha1: 9971a4a806f48777ae6d9525085d16d0c6314c51 Sha256: cdffa8dd48e75baa98670f82dfac2b3948667ca32dd93f469d2cd49d3a58581c
GET /wp-content/themes/suprema/assets/css/style_dynamicf3cb.css?ver=1635076614 HTTP/1.1 Host: winnerinvestgroup.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://winnerinvestgroup.com/	URL: winnerinvestgroup.com/wp-content/themes/suprema/assets/ (...) FQDN: winnerinvestgroup.com IP: 162.241.253.159 HASH: 2165fb43e3510c05543594df0eaba340dbfe6aa5d4aa7105f90391c25a731444 162.241.253.159 HTTP/1.1 200 OK Content-Type: text/css Date: Wed, 11 Jan 2023 08:05:00 GMT Server: Apache Last-Modified: Wed, 30 Mar 2022 11:51:52 GMT Accept-Ranges: bytes Vary: Accept-Encoding Content-Encoding: gzip host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ== Content-Length: 571 Keep-Alive: timeout=5, max=72 Connection: Keep-Alive --- Additional Info --- Magic: ASCII text Size: 571 Md5: dbb0ca05f6882adb2a2cc0a81d4f6254 Sha1: 3a2b15683d957e2dbbf3d1cf74eec63b1f6f2471 Sha256: 2165fb43e3510c05543594df0eaba340dbfe6aa5d4aa7105f90391c25a731444
GET /wp-content/themes/suprema/assets/css/modules-responsive.min080f.css?ver=5.8.2 HTTP/1.1 Host: winnerinvestgroup.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://winnerinvestgroup.com/	URL: winnerinvestgroup.com/wp-content/themes/suprema/assets/ (...) FQDN: winnerinvestgroup.com IP: 162.241.253.159 HASH: 53616e16a65e8b33dfeb51b460e86c53603ea1ddf86170279b96f13f167fc04a 162.241.253.159 HTTP/1.1 200 OK Content-Type: text/css Date: Wed, 11 Jan 2023 08:05:00 GMT Server: Apache Last-Modified: Wed, 30 Mar 2022 11:51:52 GMT Accept-Ranges: bytes Vary: Accept-Encoding Content-Encoding: gzip host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ== Content-Length: 4585 Keep-Alive: timeout=5, max=71 Connection: Keep-Alive --- Additional Info --- Magic: ASCII text, with very long lines (28080), with no line terminators Size: 4585 Md5: c36bc7d5566bf39491e8b9d37d9daa4a Sha1: 5cfa43db7e00a5557fab1d6f9e00cd901c79ee94 Sha256: 53616e16a65e8b33dfeb51b460e86c53603ea1ddf86170279b96f13f167fc04a
GET /wp-content/themes/suprema/assets/css/blog-responsive.min080f.css?ver=5.8.2 HTTP/1.1 Host: winnerinvestgroup.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://winnerinvestgroup.com/	URL: winnerinvestgroup.com/wp-content/themes/suprema/assets/ (...) FQDN: winnerinvestgroup.com IP: 162.241.253.159 HASH: dc4996599f2a2782638e56459dade56e04dd422d1409b777f9e3d0356f763874 162.241.253.159 HTTP/1.1 200 OK Content-Type: text/css Date: Wed, 11 Jan 2023 08:05:00 GMT Server: Apache Last-Modified: Wed, 30 Mar 2022 11:51:52 GMT Accept-Ranges: bytes Vary: Accept-Encoding Content-Encoding: gzip host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ== Content-Length: 467 Keep-Alive: timeout=5, max=73 Connection: Keep-Alive --- Additional Info --- Magic: ASCII text, with very long lines (2349), with no line terminators Size: 467 Md5: 0626f867ca948c9fce788562bfade2a8 Sha1: 7aa3549accc3d28a5cfd190b01d5c9cb84c65764 Sha256: dc4996599f2a2782638e56459dade56e04dd422d1409b777f9e3d0356f763874
GET /wp-content/themes/suprema/assets/css/style_dynamic_responsivef3cb.css?ver=1635076614 HTTP/1.1 Host: winnerinvestgroup.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://winnerinvestgroup.com/	URL: winnerinvestgroup.com/wp-content/themes/suprema/assets/ (...) FQDN: winnerinvestgroup.com IP: 162.241.253.159 HASH: e5c0a9e31504507f81c18f5fcec3b37275090cdbf676b4860e3a8cdcff76e454 162.241.253.159 HTTP/1.1 200 OK Content-Type: text/css Date: Wed, 11 Jan 2023 08:05:00 GMT Server: Apache Last-Modified: Wed, 30 Mar 2022 11:51:52 GMT Accept-Ranges: bytes Vary: Accept-Encoding Content-Encoding: gzip host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ== Content-Length: 257 Keep-Alive: timeout=5, max=71 Connection: Keep-Alive --- Additional Info --- Magic: ASCII text Size: 257 Md5: b69b9974ac4564d1b1bc00071d69a7f2 Sha1: ec1761ab929a46e3d408768056f2663952bd754d Sha256: e5c0a9e31504507f81c18f5fcec3b37275090cdbf676b4860e3a8cdcff76e454 Alerts: Blocklists: - openphish: Crypto/Wallet - fortinet: Phishing
GET /wp-content/themes/suprema/assets/css/dripicons/dripicons080f.css?ver=5.8.2 HTTP/1.1 Host: winnerinvestgroup.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://winnerinvestgroup.com/	URL: winnerinvestgroup.com/wp-content/themes/suprema/assets/ (...) FQDN: winnerinvestgroup.com IP: 162.241.253.159 HASH: 5afa74077c9dd3ef2445cf70d05285888ee0dca71cd2f98395dbf3432ec91bcd 162.241.253.159 HTTP/1.1 200 OK Content-Type: text/css Date: Wed, 11 Jan 2023 08:05:00 GMT Server: Apache Upgrade: h2,h2c Connection: Upgrade, Keep-Alive Last-Modified: Wed, 30 Mar 2022 11:51:52 GMT Accept-Ranges: bytes Vary: Accept-Encoding Content-Encoding: gzip host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ== Content-Length: 1128 Keep-Alive: timeout=5, max=75 --- Additional Info --- Magic: ASCII text Size: 1128 Md5: 81803447aaf14289fa1a388753aec45e Sha1: 0bc6b85c5ac981de1156f6723761e3953c897054 Sha256: 5afa74077c9dd3ef2445cf70d05285888ee0dca71cd2f98395dbf3432ec91bcd
GET /wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min05c8.css?ver=5.13.0 HTTP/1.1 Host: winnerinvestgroup.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://winnerinvestgroup.com/	URL: winnerinvestgroup.com/wp-content/plugins/elementor/asse (...) FQDN: winnerinvestgroup.com IP: 162.241.253.159 HASH: 6c8928eb5e25cd2ab7ba29bbc738beef84b186587f699b3121cc09e9e31f5f75 162.241.253.159 HTTP/1.1 200 OK Content-Type: text/css Date: Wed, 11 Jan 2023 08:05:00 GMT Server: Apache Last-Modified: Wed, 30 Mar 2022 11:51:52 GMT Accept-Ranges: bytes Vary: Accept-Encoding Content-Encoding: gzip host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ== Content-Length: 3928 Keep-Alive: timeout=5, max=71 Connection: Keep-Alive --- Additional Info --- Magic: ASCII text, with very long lines (18878) Size: 3928 Md5: 367a096773d48d1c464796147972276b Sha1: 2474963db9a332fe07b14cab78fda5ce3ed33604 Sha256: 6c8928eb5e25cd2ab7ba29bbc738beef84b186587f699b3121cc09e9e31f5f75 Alerts: Blocklists: - openphish: Crypto/Wallet - fortinet: Phishing
GET /wp-content/plugins/elementor/assets/css/frontend-lite.min9d52.css?ver=3.5.1 HTTP/1.1 Host: winnerinvestgroup.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://winnerinvestgroup.com/	URL: winnerinvestgroup.com/wp-content/plugins/elementor/asse (...) FQDN: winnerinvestgroup.com IP: 162.241.253.159 HASH: 5dfebbb8db9f2e239634d2ae4b4a4a0119459d335da2d2b6d17cffc5dcef10fa 162.241.253.159 HTTP/1.1 200 OK Content-Type: text/css Date: Wed, 11 Jan 2023 08:05:00 GMT Server: Apache Last-Modified: Wed, 30 Mar 2022 11:51:52 GMT Accept-Ranges: bytes Vary: Accept-Encoding Content-Encoding: gzip host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ== Keep-Alive: timeout=5, max=70 Connection: Keep-Alive Transfer-Encoding: chunked --- Additional Info --- Magic: ASCII text, with very long lines (65497) Size: 19028 Md5: 8933757801bc90937f96ce2dcefdb57f Sha1: 6dac3f046ef18647384576e30d231134abe659d9 Sha256: 5dfebbb8db9f2e239634d2ae4b4a4a0119459d335da2d2b6d17cffc5dcef10fa Alerts: Blocklists: - openphish: Crypto/Wallet - fortinet: Phishing
GET /wp-content/uploads/elementor/css/post-7d36c.css?ver=1640048428 HTTP/1.1 Host: winnerinvestgroup.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://winnerinvestgroup.com/	URL: winnerinvestgroup.com/wp-content/uploads/elementor/css/ (...) FQDN: winnerinvestgroup.com IP: 162.241.253.159 HASH: 68e84b59f91bbcd3b6ed804c9825f6aa1fcd338100d3ba57cd567cf40edb19ec 162.241.253.159 HTTP/1.1 200 OK Content-Type: text/css Date: Wed, 11 Jan 2023 08:05:00 GMT Server: Apache Last-Modified: Wed, 30 Mar 2022 11:51:52 GMT Accept-Ranges: bytes Vary: Accept-Encoding Content-Encoding: gzip host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ== Content-Length: 328 Keep-Alive: timeout=5, max=72 Connection: Keep-Alive --- Additional Info --- Magic: ASCII text, with very long lines (946), with no line terminators Size: 328 Md5: 0a518f91e70a77d29ecddb02aeb36fb7 Sha1: 2e0c9f13a37a5611b0677dc6355c1a3a26035d47 Sha256: 68e84b59f91bbcd3b6ed804c9825f6aa1fcd338100d3ba57cd567cf40edb19ec Alerts: Blocklists: - openphish: Crypto/Wallet - fortinet: Phishing
GET /wp-content/plugins/elementor-pro/assets/css/frontend-lite.mine485.css?ver=3.3.6 HTTP/1.1 Host: winnerinvestgroup.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://winnerinvestgroup.com/	URL: winnerinvestgroup.com/wp-content/plugins/elementor-pro/ (...) FQDN: winnerinvestgroup.com IP: 162.241.253.159 HASH: a5b1d50d2520f5989609794e998a6c791fd5a416f64192d579060ea76e21fc65 162.241.253.159 HTTP/1.1 200 OK Content-Type: text/css Date: Wed, 11 Jan 2023 08:05:00 GMT Server: Apache Last-Modified: Wed, 30 Mar 2022 11:51:52 GMT Accept-Ranges: bytes Vary: Accept-Encoding Content-Encoding: gzip host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ== Content-Length: 8876 Keep-Alive: timeout=5, max=70 Connection: Keep-Alive --- Additional Info --- Magic: ASCII text, with very long lines (50841) Size: 8876 Md5: 51b78b3a716be44c7ee227088e61bbb3 Sha1: 86e47ce132f2b79a3f6caff63d4a373bcc9d3795 Sha256: a5b1d50d2520f5989609794e998a6c791fd5a416f64192d579060ea76e21fc65 Alerts: Blocklists: - openphish: Crypto/Wallet - fortinet: Phishing
GET /wp-content/plugins/js_composer/assets/css/js_composer.min4245.css?ver=5.5.2 HTTP/1.1 Host: winnerinvestgroup.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://winnerinvestgroup.com/	URL: winnerinvestgroup.com/wp-content/plugins/js_composer/as (...) FQDN: winnerinvestgroup.com IP: 162.241.253.159 HASH: 2c6cf2af6e68f9d792c7fd8554d9909208b100f7eb123a8052dadd7d35f92e81 162.241.253.159 HTTP/1.1 200 OK Content-Type: text/css Date: Wed, 11 Jan 2023 08:05:00 GMT Server: Apache Last-Modified: Wed, 30 Mar 2022 11:51:52 GMT Accept-Ranges: bytes Vary: Accept-Encoding Content-Encoding: gzip host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ== Keep-Alive: timeout=5, max=71 Connection: Keep-Alive Transfer-Encoding: chunked --- Additional Info --- Magic: ASCII text, with very long lines (65536), with no line terminators Size: 61311 Md5: ec70e8267359ed786100384dcf614bd8 Sha1: 1603fb77efd3b2f3df41d581ceb914ee04469e71 Sha256: 2c6cf2af6e68f9d792c7fd8554d9909208b100f7eb123a8052dadd7d35f92e81 Alerts: Blocklists: - openphish: Crypto/Wallet - fortinet: Phishing
GET /wp-content/uploads/elementor/css/globald36c.css?ver=1640048428 HTTP/1.1 Host: winnerinvestgroup.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://winnerinvestgroup.com/	URL: winnerinvestgroup.com/wp-content/uploads/elementor/css/ (...) FQDN: winnerinvestgroup.com IP: 162.241.253.159 HASH: dd4d71a3cbdf6155eb30d139222858d2f1d50ab89b3bf9a283def6b4ec296b11 162.241.253.159 HTTP/1.1 200 OK Content-Type: text/css Date: Wed, 11 Jan 2023 08:05:00 GMT Server: Apache Last-Modified: Wed, 30 Mar 2022 11:51:52 GMT Accept-Ranges: bytes Vary: Accept-Encoding Content-Encoding: gzip host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ== Content-Length: 5067 Keep-Alive: timeout=5, max=74 Connection: Keep-Alive --- Additional Info --- Magic: ASCII text, with very long lines (23067) Size: 5067 Md5: 888f8af79730f28cbfd2c6a09ba3cc88 Sha1: b5cb9e92c7546ab160b051e5616584d702540d0e Sha256: dd4d71a3cbdf6155eb30d139222858d2f1d50ab89b3bf9a283def6b4ec296b11 Alerts: Blocklists: - openphish: Crypto/Wallet - fortinet: Phishing
GET /wp-content/uploads/elementor/css/post-1568df.css?ver=1640057588 HTTP/1.1 Host: winnerinvestgroup.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://winnerinvestgroup.com/	URL: winnerinvestgroup.com/wp-content/uploads/elementor/css/ (...) FQDN: winnerinvestgroup.com IP: 162.241.253.159 HASH: a8bb3aca02aefd96d48a91fda0dddc13470e0ef5e99d67933147336b2c807694 162.241.253.159 HTTP/1.1 200 OK Content-Type: text/css Date: Wed, 11 Jan 2023 08:05:01 GMT Server: Apache Last-Modified: Wed, 30 Mar 2022 11:51:52 GMT Accept-Ranges: bytes Vary: Accept-Encoding Content-Encoding: gzip host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ== Content-Length: 1383 Keep-Alive: timeout=5, max=70 Connection: Keep-Alive --- Additional Info --- Magic: ASCII text, with very long lines (12471), with no line terminators Size: 1383 Md5: 85832a1470f1cd7f39742409ceb7473d Sha1: 17cf879fd6d10eb6f35cbc7320c91831c478ec06 Sha256: a8bb3aca02aefd96d48a91fda0dddc13470e0ef5e99d67933147336b2c807694 Alerts: Blocklists: - openphish: Crypto/Wallet - fortinet: Phishing
GET /wp-content/plugins/wp-live-chat-software-for-wordpress/plugin_files/css/livechat-contact-button62d0.css?ver=4.5.3 HTTP/1.1 Host: winnerinvestgroup.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://winnerinvestgroup.com/	URL: winnerinvestgroup.com/wp-content/plugins/wp-live-chat-s (...) FQDN: winnerinvestgroup.com IP: 162.241.253.159 HASH: 769e8ab745a0fe4bf811036e75a8630e38c50a18cb3e24d539ce4a0722c7c85e 162.241.253.159 HTTP/1.1 409 Conflict Content-Type: text/html; charset=iso-8859-1 Date: Wed, 11 Jan 2023 08:05:01 GMT Server: Apache Content-Length: 83 Keep-Alive: timeout=5, max=69 Connection: Keep-Alive --- Additional Info --- Magic: HTML document, ASCII text, with no line terminators Size: 83 Md5: 26267cd8990f15d3bbea71684a6d5995 Sha1: ac3b38cf3fe0e112bb6aeb7e05226b7133575d93 Sha256: 769e8ab745a0fe4bf811036e75a8630e38c50a18cb3e24d539ce4a0722c7c85e
GET /wp-content/plugins/wp-live-chat-software-for-wordpress/plugin_files/css/livechat-quality-badge62d0.css?ver=4.5.3 HTTP/1.1 Host: winnerinvestgroup.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://winnerinvestgroup.com/	URL: winnerinvestgroup.com/wp-content/plugins/wp-live-chat-s (...) FQDN: winnerinvestgroup.com IP: 162.241.253.159 HASH: c96a8ba536b796af787e45fc465b6c3951de8afd427436ce1e0f1340485f5de3 162.241.253.159 HTTP/1.1 200 OK Content-Type: text/css Date: Wed, 11 Jan 2023 08:05:01 GMT Server: Apache Last-Modified: Wed, 30 Mar 2022 11:51:52 GMT Accept-Ranges: bytes Vary: Accept-Encoding Content-Encoding: gzip host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ== Content-Length: 102 Keep-Alive: timeout=5, max=71 Connection: Keep-Alive --- Additional Info --- Magic: ASCII text, with no line terminators Size: 102 Md5: 37b00e19cecec9d175e9292e27c0a576 Sha1: 8b7943be32b27e28c4d08f9c32bfc5cceca72d1e Sha256: c96a8ba536b796af787e45fc465b6c3951de8afd427436ce1e0f1340485f5de3 Alerts: Blocklists: - openphish: Crypto/Wallet - fortinet: Phishing
GET /wp-includes/js/jquery/jquery-migrate.mind617.js?ver=3.3.2 HTTP/1.1 Host: winnerinvestgroup.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://winnerinvestgroup.com/	URL: winnerinvestgroup.com/wp-includes/js/jquery/jquery-migr (...) FQDN: winnerinvestgroup.com IP: 162.241.253.159 HASH: dc4efbc4b704b142b5313588c32e56ea56648068a01d2bc596a4eee06b379b5e 162.241.253.159 HTTP/1.1 200 OK Content-Type: application/javascript Date: Wed, 11 Jan 2023 08:05:01 GMT Server: Apache Last-Modified: Wed, 30 Mar 2022 11:51:53 GMT Accept-Ranges: bytes Vary: Accept-Encoding Content-Encoding: gzip host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ== Content-Length: 4618 Keep-Alive: timeout=5, max=70 Connection: Keep-Alive --- Additional Info --- Magic: ASCII text, with very long lines (11126) Size: 4618 Md5: acdb97105af28a7066790c6748ae2e1e Sha1: 65794d2c5a9d04f747faf370bc8bacd330e69e5a Sha256: dc4efbc4b704b142b5313588c32e56ea56648068a01d2bc596a4eee06b379b5e Alerts: Blocklists: - openphish: Crypto/Wallet - fortinet: Phishing
GET /wp-content/plugins/revslider/public/assets/js/jquery.themepunch.revolution.min23da.js?ver=5.4.8 HTTP/1.1 Host: winnerinvestgroup.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://winnerinvestgroup.com/	URL: winnerinvestgroup.com/wp-content/plugins/revslider/publ (...) FQDN: winnerinvestgroup.com IP: 162.241.253.159 HASH: 35f902457105a106f3708dcb25dae4cd71d44c396333cff2c9347c6c136117b0 162.241.253.159 HTTP/1.1 200 OK Content-Type: application/javascript Date: Wed, 11 Jan 2023 08:05:01 GMT Server: Apache Last-Modified: Wed, 30 Mar 2022 11:51:52 GMT Accept-Ranges: bytes Vary: Accept-Encoding Content-Encoding: gzip host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ== Keep-Alive: timeout=5, max=69 Connection: Keep-Alive Transfer-Encoding: chunked --- Additional Info --- Magic: ASCII text, with very long lines (64653), with CRLF line terminators Size: 24112 Md5: ce01d2625e12d9fa5d59d71514c0e115 Sha1: 4ab9246c1f756bb743b837b654fe5d0a6d1f6ef8 Sha256: 35f902457105a106f3708dcb25dae4cd71d44c396333cff2c9347c6c136117b0
GET /wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.minaf8e.js?ver=6.0.0 HTTP/1.1 Host: winnerinvestgroup.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://winnerinvestgroup.com/	URL: winnerinvestgroup.com/wp-content/plugins/woocommerce/as (...) FQDN: winnerinvestgroup.com IP: 162.241.253.159 HASH: f9d0da987075df31cc4cf8aed46bc193467ce7165568d83c8016e6fe904e72c3 162.241.253.159 HTTP/1.1 200 OK Content-Type: application/javascript Date: Wed, 11 Jan 2023 08:05:01 GMT Server: Apache Last-Modified: Wed, 30 Mar 2022 11:51:52 GMT Accept-Ranges: bytes Vary: Accept-Encoding Content-Encoding: gzip host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ== Content-Length: 1200 Keep-Alive: timeout=5, max=70 Connection: Keep-Alive --- Additional Info --- Magic: HTML document, ASCII text, with very long lines (3037), with no line terminators Size: 1200 Md5: 57b5945094a547e06221f8f949e6d335 Sha1: 76fc7361f00684ea29ffbf4b7d46e5429b8c245a Sha256: f9d0da987075df31cc4cf8aed46bc193467ce7165568d83c8016e6fe904e72c3 Alerts: Blocklists: - openphish: Crypto/Wallet - fortinet: Phishing
GET /wp-includes/js/jquery/jquery.minaf6c.js?ver=3.6.0 HTTP/1.1 Host: winnerinvestgroup.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://winnerinvestgroup.com/	URL: winnerinvestgroup.com/wp-includes/js/jquery/jquery.mina (...) FQDN: winnerinvestgroup.com IP: 162.241.253.159 HASH: 9a525fa92f98fd5ac754d60ea6f3676bcaa3870dd9bf057c8c668399922c9bd0 162.241.253.159 HTTP/1.1 200 OK Content-Type: application/javascript Date: Wed, 11 Jan 2023 08:05:01 GMT Server: Apache Last-Modified: Wed, 30 Mar 2022 11:51:53 GMT Accept-Ranges: bytes Vary: Accept-Encoding Content-Encoding: gzip host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ== Keep-Alive: timeout=5, max=69 Connection: Keep-Alive Transfer-Encoding: chunked --- Additional Info --- Magic: ASCII text, with very long lines (65447) Size: 39066 Md5: feb933ceca72e1d76b471ed9db278b0d Sha1: 6179e8f9c9876a6c4df5e3138e9f8ee2ac25bcd1 Sha256: 9a525fa92f98fd5ac754d60ea6f3676bcaa3870dd9bf057c8c668399922c9bd0 Alerts: Blocklists: - openphish: Crypto/Wallet - fortinet: Phishing
GET /wp-content/plugins/js_composer/assets/js/vendors/woocommerce-add-to-cart4245.js?ver=5.5.2 HTTP/1.1 Host: winnerinvestgroup.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://winnerinvestgroup.com/	URL: winnerinvestgroup.com/wp-content/plugins/js_composer/as (...) FQDN: winnerinvestgroup.com IP: 162.241.253.159 HASH: 0348c562113e315e24967fdc3d6b5939c3d40f29df797bcfad0869779a17c83b 162.241.253.159 HTTP/1.1 200 OK Content-Type: application/javascript Date: Wed, 11 Jan 2023 08:05:01 GMT Server: Apache Last-Modified: Wed, 30 Mar 2022 11:51:52 GMT Accept-Ranges: bytes Vary: Accept-Encoding Content-Encoding: gzip host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ== Content-Length: 319 Keep-Alive: timeout=5, max=69 Connection: Keep-Alive --- Additional Info --- Magic: ASCII text, with very long lines (533) Size: 319 Md5: 9134e46ef62f5577151ba78a38d2408e Sha1: 7d2b83fd2ca075b180b994559643f26637924c8b Sha256: 0348c562113e315e24967fdc3d6b5939c3d40f29df797bcfad0869779a17c83b
GET /connect.livechatinc.com/api/v1/script/e808420d-9257-46ce-9fae-285d34f85c2b/contact-button62d0.js?ver=4.5.3 HTTP/1.1 Host: winnerinvestgroup.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://winnerinvestgroup.com/	URL: winnerinvestgroup.com/connect.livechatinc.com/api/v1/sc (...) FQDN: winnerinvestgroup.com IP: 162.241.253.159 HASH: 769e8ab745a0fe4bf811036e75a8630e38c50a18cb3e24d539ce4a0722c7c85e 162.241.253.159 HTTP/1.1 409 Conflict Content-Type: text/html; charset=iso-8859-1 Date: Wed, 11 Jan 2023 08:05:01 GMT Server: Apache Content-Length: 83 Keep-Alive: timeout=5, max=68 Connection: Keep-Alive --- Additional Info --- Magic: HTML document, ASCII text, with no line terminators Size: 83 Md5: 26267cd8990f15d3bbea71684a6d5995 Sha1: ac3b38cf3fe0e112bb6aeb7e05226b7133575d93 Sha256: 769e8ab745a0fe4bf811036e75a8630e38c50a18cb3e24d539ce4a0722c7c85e Alerts: Blocklists: - openphish: Crypto/Wallet - fortinet: Phishing
GET /wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min8811.js?ver=2.7.0-wc.6.0.0 HTTP/1.1 Host: winnerinvestgroup.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://winnerinvestgroup.com/	URL: winnerinvestgroup.com/wp-content/plugins/woocommerce/as (...) FQDN: winnerinvestgroup.com IP: 162.241.253.159 HASH: a0cea478b83a24f0c90bfaf776ed62fe8747395838a92d8c9f06ceb79b3e5918 162.241.253.159 HTTP/1.1 200 OK Content-Type: application/javascript Date: Wed, 11 Jan 2023 08:05:01 GMT Server: Apache Upgrade: h2,h2c Connection: Upgrade, Keep-Alive Last-Modified: Wed, 30 Mar 2022 11:51:52 GMT Accept-Ranges: bytes Vary: Accept-Encoding Content-Encoding: gzip host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ== Content-Length: 3957 Keep-Alive: timeout=5, max=75 --- Additional Info --- Magic: ASCII text, with very long lines (9139) Size: 3957 Md5: 5f3c95f97f566ce33b859d6b874d116d Sha1: e47be9178d33d8d8eefda83c853b560aaed71413 Sha256: a0cea478b83a24f0c90bfaf776ed62fe8747395838a92d8c9f06ceb79b3e5918 Alerts: Blocklists: - openphish: Crypto/Wallet - fortinet: Phishing
GET /connect.livechatinc.com/api/v1/script/e808420d-9257-46ce-9fae-285d34f85c2b/quality-badge62d0.js?ver=4.5.3 HTTP/1.1 Host: winnerinvestgroup.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://winnerinvestgroup.com/	URL: winnerinvestgroup.com/connect.livechatinc.com/api/v1/sc (...) FQDN: winnerinvestgroup.com IP: 162.241.253.159 HASH: d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3 162.241.253.159 HTTP/1.1 404 Not Found Content-Type: text/html; charset=iso-8859-1 Date: Wed, 11 Jan 2023 08:05:01 GMT Server: Apache Content-Length: 315 Keep-Alive: timeout=5, max=69 Connection: Keep-Alive --- Additional Info --- Magic: HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text Size: 315 Md5: a34ac19f4afae63adc5d2f7bc970c07f Sha1: a82190fc530c265aa40a045c21770d967f4767b8 Sha256: d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3 Alerts: Blocklists: - openphish: Crypto/Wallet - fortinet: Phishing
GET /connect.livechatinc.com/api/v1/script/e808420d-9257-46ce-9fae-285d34f85c2b/widget5ebf.js?lcv=33a73482-4b6e-40fc-8b17-a4949cce2d1b HTTP/1.1 Host: winnerinvestgroup.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://winnerinvestgroup.com/	URL: winnerinvestgroup.com/connect.livechatinc.com/api/v1/sc (...) FQDN: winnerinvestgroup.com IP: 162.241.253.159 HASH: d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3 162.241.253.159 HTTP/1.1 404 Not Found Content-Type: text/html; charset=iso-8859-1 Date: Wed, 11 Jan 2023 08:05:01 GMT Server: Apache Content-Length: 315 Keep-Alive: timeout=5, max=68 Connection: Keep-Alive --- Additional Info --- Magic: HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text Size: 315 Md5: a34ac19f4afae63adc5d2f7bc970c07f Sha1: a82190fc530c265aa40a045c21770d967f4767b8 Sha256: d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3
GET /wp-content/plugins/revslider/public/assets/js/jquery.themepunch.tools.min23da.js?ver=5.4.8 HTTP/1.1 Host: winnerinvestgroup.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://winnerinvestgroup.com/	URL: winnerinvestgroup.com/wp-content/plugins/revslider/publ (...) FQDN: winnerinvestgroup.com IP: 162.241.253.159 HASH: a1750da9d5a0da96696da5df8c1be75eec0fef47f0ded3df4d337a2f34b66e93 162.241.253.159 HTTP/1.1 200 OK Content-Type: application/javascript Date: Wed, 11 Jan 2023 08:05:01 GMT Server: Apache Last-Modified: Wed, 30 Mar 2022 11:51:52 GMT Accept-Ranges: bytes Vary: Accept-Encoding Content-Encoding: gzip host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ== Keep-Alive: timeout=5, max=73 Connection: Keep-Alive Transfer-Encoding: chunked --- Additional Info --- Magic: ASCII text, with very long lines (27287), with CRLF line terminators Size: 47752 Md5: fe66852317d3b1d655047ff6c1ce7e14 Sha1: 8acebb58b1bb5a6b3ff6e6bd82513c013d232958 Sha256: a1750da9d5a0da96696da5df8c1be75eec0fef47f0ded3df4d337a2f34b66e93 Alerts: Blocklists: - openphish: Crypto/Wallet - fortinet: Phishing
GET /wp-includes/js/dist/vendor/regenerator-runtime.minb36a.js?ver=0.13.7 HTTP/1.1 Host: winnerinvestgroup.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://winnerinvestgroup.com/	URL: winnerinvestgroup.com/wp-includes/js/dist/vendor/regene (...) FQDN: winnerinvestgroup.com IP: 162.241.253.159 HASH: 85d0de0d6dbe1f487407829c52413d7e81c7c9ed28bc3ae9079c19303e91f678 162.241.253.159 HTTP/1.1 200 OK Content-Type: application/javascript Date: Wed, 11 Jan 2023 08:05:01 GMT Server: Apache Last-Modified: Wed, 30 Mar 2022 11:51:53 GMT Accept-Ranges: bytes Vary: Accept-Encoding Content-Encoding: gzip host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ== Content-Length: 2635 Keep-Alive: timeout=5, max=68 Connection: Keep-Alive --- Additional Info --- Magic: ASCII text, with very long lines (6406), with no line terminators Size: 2635 Md5: 340db4973d1ee14c5348599f661a3220 Sha1: d4cf31e2af7774c276d7a883733a8392e232df49 Sha256: 85d0de0d6dbe1f487407829c52413d7e81c7c9ed28bc3ae9079c19303e91f678 Alerts: Blocklists: - openphish: Crypto/Wallet - fortinet: Phishing
GET /wp-content/plugins/contact-form-7/includes/js/index5697.js?ver=5.5.3 HTTP/1.1 Host: winnerinvestgroup.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://winnerinvestgroup.com/	URL: winnerinvestgroup.com/wp-content/plugins/contact-form-7 (...) FQDN: winnerinvestgroup.com IP: 162.241.253.159 HASH: 769e8ab745a0fe4bf811036e75a8630e38c50a18cb3e24d539ce4a0722c7c85e 162.241.253.159 HTTP/1.1 409 Conflict Content-Type: text/html; charset=iso-8859-1 Date: Wed, 11 Jan 2023 08:05:01 GMT Server: Apache Content-Length: 83 Keep-Alive: timeout=5, max=74 Connection: Keep-Alive --- Additional Info --- Magic: HTML document, ASCII text, with no line terminators Size: 83 Md5: 26267cd8990f15d3bbea71684a6d5995 Sha1: ac3b38cf3fe0e112bb6aeb7e05226b7133575d93 Sha256: 769e8ab745a0fe4bf811036e75a8630e38c50a18cb3e24d539ce4a0722c7c85e
GET /wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.mineff6.js?ver=2.1.4-wc.6.0.0 HTTP/1.1 Host: winnerinvestgroup.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://winnerinvestgroup.com/	URL: winnerinvestgroup.com/wp-content/plugins/woocommerce/as (...) FQDN: winnerinvestgroup.com IP: 162.241.253.159 HASH: 70d02eabbadbe176455a2bb53d8d567feca69847c067a5274987a8bdc65e3c05 162.241.253.159 HTTP/1.1 200 OK Content-Type: application/javascript Date: Wed, 11 Jan 2023 08:05:01 GMT Server: Apache Last-Modified: Wed, 30 Mar 2022 11:51:52 GMT Accept-Ranges: bytes Vary: Accept-Encoding Content-Encoding: gzip host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ== Content-Length: 1000 Keep-Alive: timeout=5, max=68 Connection: Keep-Alive --- Additional Info --- Magic: ASCII text, with very long lines (1668) Size: 1000 Md5: 0bebfb5722cbc8ac04e62aa40698be49 Sha1: 3bc5e4f29cb19a2d80d46dee242dabf7e42c0fd3 Sha256: 70d02eabbadbe176455a2bb53d8d567feca69847c067a5274987a8bdc65e3c05 Alerts: Blocklists: - openphish: Crypto/Wallet - fortinet: Phishing
GET /wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.minaf8e.js?ver=6.0.0 HTTP/1.1 Host: winnerinvestgroup.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://winnerinvestgroup.com/	URL: winnerinvestgroup.com/wp-content/plugins/woocommerce/as (...) FQDN: winnerinvestgroup.com IP: 162.241.253.159 HASH: d3bc5eaf4c6be9473dbba690825cce9a1a6f4accb6721dae7875efef54942f41 162.241.253.159 HTTP/1.1 200 OK Content-Type: application/javascript Date: Wed, 11 Jan 2023 08:05:01 GMT Server: Apache Last-Modified: Wed, 30 Mar 2022 11:51:52 GMT Accept-Ranges: bytes Vary: Accept-Encoding Content-Encoding: gzip host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ== Content-Length: 792 Keep-Alive: timeout=5, max=67 Connection: Keep-Alive --- Additional Info --- Magic: ASCII text, with very long lines (2139), with no line terminators Size: 792 Md5: 1ca3f41c13e0027acc45f0601f8b640f Sha1: cced34af0c6a59e9cee4229faa66ab39c7031506 Sha256: d3bc5eaf4c6be9473dbba690825cce9a1a6f4accb6721dae7875efef54942f41 Alerts: Blocklists: - openphish: Crypto/Wallet - fortinet: Phishing
GET /wp-content/plugins/woocommerce/assets/js/frontend/cart-fragments.minaf8e.js?ver=6.0.0 HTTP/1.1 Host: winnerinvestgroup.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://winnerinvestgroup.com/	URL: winnerinvestgroup.com/wp-content/plugins/woocommerce/as (...) FQDN: winnerinvestgroup.com IP: 162.241.253.159 HASH: 4636689d57889e984a7a1a1c6e2516b7a2d951407ca826aaf505c50002e2b486 162.241.253.159 HTTP/1.1 200 OK Content-Type: application/javascript Date: Wed, 11 Jan 2023 08:05:01 GMT Server: Apache Last-Modified: Wed, 30 Mar 2022 11:51:52 GMT Accept-Ranges: bytes Vary: Accept-Encoding Content-Encoding: gzip host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ== Content-Length: 1093 Keep-Alive: timeout=5, max=72 Connection: Keep-Alive --- Additional Info --- Magic: ASCII text, with very long lines (2938), with no line terminators Size: 1093 Md5: 769e9d3f7fc383ec1a02024e39730474 Sha1: 4f5a5edf28ed19b48c5e40747ec6896f0df8f09e Sha256: 4636689d57889e984a7a1a1c6e2516b7a2d951407ca826aaf505c50002e2b486 Alerts: Blocklists: - openphish: Crypto/Wallet - fortinet: Phishing
GET /wp-includes/js/jquery/ui/core.min35d0.js?ver=1.12.1 HTTP/1.1 Host: winnerinvestgroup.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://winnerinvestgroup.com/	URL: winnerinvestgroup.com/wp-includes/js/jquery/ui/core.min (...) FQDN: winnerinvestgroup.com IP: 162.241.253.159 HASH: 84520e8f7a292cb992fa9c62932245f598c6fa043fd4e19eadb6ad9a767dca6f 162.241.253.159 HTTP/1.1 200 OK Content-Type: application/javascript Date: Wed, 11 Jan 2023 08:05:01 GMT Server: Apache Last-Modified: Wed, 30 Mar 2022 11:51:53 GMT Accept-Ranges: bytes Vary: Accept-Encoding Content-Encoding: gzip host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ== Content-Length: 8223 Keep-Alive: timeout=5, max=67 Connection: Keep-Alive --- Additional Info --- Magic: ASCII text, with very long lines (7973) Size: 8223 Md5: 6e3b0317803aa9f226979ad7a7e77593 Sha1: c95b4f532fd03f3754bf63139a57aab65fbe8a25 Sha256: 84520e8f7a292cb992fa9c62932245f598c6fa043fd4e19eadb6ad9a767dca6f
GET /wp-includes/js/dist/vendor/wp-polyfill.min2c7c.js?ver=3.15.0 HTTP/1.1 Host: winnerinvestgroup.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://winnerinvestgroup.com/	URL: winnerinvestgroup.com/wp-includes/js/dist/vendor/wp-pol (...) FQDN: winnerinvestgroup.com IP: 162.241.253.159 HASH: 94cb1b0ca86f7f0bb7bcc81b42a06b6199bd37ff77ca88dccf3acc92683f3e24 162.241.253.159 HTTP/1.1 200 OK Content-Type: application/javascript Date: Wed, 11 Jan 2023 08:05:01 GMT Server: Apache Upgrade: h2,h2c Connection: Upgrade, Keep-Alive Last-Modified: Wed, 30 Mar 2022 11:51:53 GMT Accept-Ranges: bytes Vary: Accept-Encoding Content-Encoding: gzip host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ== Content-Length: 6935 Keep-Alive: timeout=5, max=75 --- Additional Info --- Magic: Unicode text, UTF-8 text, with very long lines (16323) Size: 6935 Md5: 122fe79a1d53d10946cded540d2e219f Sha1: 6271fdf889afe8a13d7c69efea9b40cbd0d81939 Sha256: 94cb1b0ca86f7f0bb7bcc81b42a06b6199bd37ff77ca88dccf3acc92683f3e24
GET /wp-includes/js/jquery/ui/accordion.min35d0.js?ver=1.12.1 HTTP/1.1 Host: winnerinvestgroup.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://winnerinvestgroup.com/	URL: winnerinvestgroup.com/wp-includes/js/jquery/ui/accordio (...) FQDN: winnerinvestgroup.com IP: 162.241.253.159 HASH: f1d8fde90617438fea283c1514e9f8ec63b728b2093610e1e270a5a302fb8d6a 162.241.253.159 HTTP/1.1 200 OK Content-Type: application/javascript Date: Wed, 11 Jan 2023 08:05:01 GMT Server: Apache Last-Modified: Wed, 30 Mar 2022 11:51:53 GMT Accept-Ranges: bytes Vary: Accept-Encoding Content-Encoding: gzip host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ== Content-Length: 3247 Keep-Alive: timeout=5, max=67 Connection: Keep-Alive --- Additional Info --- Magic: ASCII text, with very long lines (8481) Size: 3247 Md5: bb60660eb418fb4922e6ceed6028e5ae Sha1: 7256a6f744a9f170fd72e078f0584840a9593e66 Sha256: f1d8fde90617438fea283c1514e9f8ec63b728b2093610e1e270a5a302fb8d6a Alerts: Blocklists: - openphish: Crypto/Wallet - fortinet: Phishing
GET /wp-includes/js/mediaelement/mediaelement-migrate.min080f.js?ver=5.8.2 HTTP/1.1 Host: winnerinvestgroup.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://winnerinvestgroup.com/	URL: winnerinvestgroup.com/wp-includes/js/mediaelement/media (...) FQDN: winnerinvestgroup.com IP: 162.241.253.159 HASH: c91bcf01aa9b5858ce368bdf176b93ebe701ce72ee09f4ef132e7fa3df1b1d98 162.241.253.159 HTTP/1.1 200 OK Content-Type: application/javascript Date: Wed, 11 Jan 2023 08:05:01 GMT Server: Apache Last-Modified: Wed, 30 Mar 2022 11:51:53 GMT Accept-Ranges: bytes Vary: Accept-Encoding Content-Encoding: gzip host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ== Content-Length: 544 Keep-Alive: timeout=5, max=71 Connection: Keep-Alive --- Additional Info --- Magic: ASCII text, with very long lines (1193), with no line terminators Size: 544 Md5: f5a258ea9f1581ecbb0e72cc6665c1c3 Sha1: a85af53230df5278128438f9dd3539356d65b92f Sha256: c91bcf01aa9b5858ce368bdf176b93ebe701ce72ee09f4ef132e7fa3df1b1d98 Alerts: Blocklists: - openphish: Crypto/Wallet - fortinet: Phishing
GET /wp-includes/js/mediaelement/wp-mediaelement.min080f.js?ver=5.8.2 HTTP/1.1 Host: winnerinvestgroup.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://winnerinvestgroup.com/	URL: winnerinvestgroup.com/wp-includes/js/mediaelement/wp-me (...) FQDN: winnerinvestgroup.com IP: 162.241.253.159 HASH: a9c17b0e5a9c12428c6ed8d0c4622ddbae112a9ac19bccf451f125972cd91935 162.241.253.159 HTTP/1.1 200 OK Content-Type: application/javascript Date: Wed, 11 Jan 2023 08:05:01 GMT Server: Apache Last-Modified: Wed, 30 Mar 2022 11:51:53 GMT Accept-Ranges: bytes Vary: Accept-Encoding Content-Encoding: gzip host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ== Content-Length: 483 Keep-Alive: timeout=5, max=66 Connection: Keep-Alive --- Additional Info --- Magic: HTML document, ASCII text, with very long lines (906), with no line terminators Size: 483 Md5: 961b384bf5b28ac673051be024563f79 Sha1: 606ebba9fa8aec74cf413098b084500c8b16b85c Sha256: a9c17b0e5a9c12428c6ed8d0c4622ddbae112a9ac19bccf451f125972cd91935 Alerts: Blocklists: - openphish: Crypto/Wallet - fortinet: Phishing
GET /wp-includes/js/jquery/ui/tabs.min35d0.js?ver=1.12.1 HTTP/1.1 Host: winnerinvestgroup.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://winnerinvestgroup.com/	URL: winnerinvestgroup.com/wp-includes/js/jquery/ui/tabs.min (...) FQDN: winnerinvestgroup.com IP: 162.241.253.159 HASH: 06af2a413b8586dda3634d04e439fff7045855ca680fdf724e38e77fcba05257 162.241.253.159 HTTP/1.1 200 OK Content-Type: application/javascript Date: Wed, 11 Jan 2023 08:05:01 GMT Server: Apache Upgrade: h2,h2c Connection: Upgrade, Keep-Alive Last-Modified: Wed, 30 Mar 2022 11:51:53 GMT Accept-Ranges: bytes Vary: Accept-Encoding Content-Encoding: gzip host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ== Content-Length: 4746 Keep-Alive: timeout=5, max=75 --- Additional Info --- Magic: ASCII text, with very long lines (11738) Size: 4746 Md5: e75316d4188ff262734321ba233f94d9 Sha1: 7dcac4408194b7e1faa68a94938111059820fc6b Sha256: 06af2a413b8586dda3634d04e439fff7045855ca680fdf724e38e77fcba05257
GET /wp-content/plugins/js_composer/assets/lib/bower/isotope/dist/isotope.pkgd.min4245.js?ver=5.5.2 HTTP/1.1 Host: winnerinvestgroup.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://winnerinvestgroup.com/	URL: winnerinvestgroup.com/wp-content/plugins/js_composer/as (...) FQDN: winnerinvestgroup.com IP: 162.241.253.159 HASH: 8be1d18337874c4b9a76de6b95e69c92ddc2063d779cd79e673ee8fb068087c4 162.241.253.159 HTTP/1.1 200 OK Content-Type: application/javascript Date: Wed, 11 Jan 2023 08:05:01 GMT Server: Apache Last-Modified: Wed, 30 Mar 2022 11:51:52 GMT Accept-Ranges: bytes Vary: Accept-Encoding Content-Encoding: gzip host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ== Content-Length: 13109 Keep-Alive: timeout=5, max=66 Connection: Keep-Alive --- Additional Info --- Magic: ASCII text, with very long lines (32004) Size: 13109 Md5: 9dcdc4e813ceb6f7dfcf8ff917556033 Sha1: 8ccb6e59a5919728dd495afbf172f3d576e69aa9 Sha256: 8be1d18337874c4b9a76de6b95e69c92ddc2063d779cd79e673ee8fb068087c4 Alerts: Blocklists: - openphish: Crypto/Wallet - fortinet: Phishing
GET /wp-includes/js/mediaelement/mediaelement-and-player.min08e1.js?ver=4.2.16 HTTP/1.1 Host: winnerinvestgroup.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://winnerinvestgroup.com/	URL: winnerinvestgroup.com/wp-includes/js/mediaelement/media (...) FQDN: winnerinvestgroup.com IP: 162.241.253.159 HASH: 99aa2aab21a779e0e91431ee0a78efe4e620cef0650507256ba240d52ba9ea3c 162.241.253.159 HTTP/1.1 200 OK Content-Type: application/javascript Date: Wed, 11 Jan 2023 08:05:01 GMT Server: Apache Last-Modified: Wed, 30 Mar 2022 11:51:53 GMT Accept-Ranges: bytes Vary: Accept-Encoding Content-Encoding: gzip host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ== Keep-Alive: timeout=5, max=66 Connection: Keep-Alive Transfer-Encoding: chunked --- Additional Info --- Magic: ASCII text, with very long lines (65266) Size: 56939 Md5: fe45d699c39cfe0d6d8c1796c6b7b54a Sha1: 2a47a68ce601acbddfbc25ceab2f4af1adbad289 Sha256: 99aa2aab21a779e0e91431ee0a78efe4e620cef0650507256ba240d52ba9ea3c Alerts: Blocklists: - openphish: Crypto/Wallet - fortinet: Phishing
GET /wp-content/themes/suprema/assets/js/modules.min080f.js?ver=5.8.2 HTTP/1.1 Host: winnerinvestgroup.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://winnerinvestgroup.com/	URL: winnerinvestgroup.com/wp-content/themes/suprema/assets/ (...) FQDN: winnerinvestgroup.com IP: 162.241.253.159 HASH: db0125981cac6a8382456a7cdf9c7fc8a2c39aff8b2ebbc2ad1b373ae265837d 162.241.253.159 HTTP/1.1 200 OK Content-Type: application/javascript Date: Wed, 11 Jan 2023 08:05:01 GMT Server: Apache Last-Modified: Wed, 30 Mar 2022 11:51:52 GMT Accept-Ranges: bytes Vary: Accept-Encoding Content-Encoding: gzip host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ== Keep-Alive: timeout=5, max=65 Connection: Keep-Alive Transfer-Encoding: chunked --- Additional Info --- Magic: ASCII text, with very long lines (31967) Size: 25970 Md5: 571885b1d6d75080dc5edc837d1eaaf3 Sha1: 5b809ffbf0317d1e34272e58886128cca1a9aa51 Sha256: db0125981cac6a8382456a7cdf9c7fc8a2c39aff8b2ebbc2ad1b373ae265837d Alerts: Blocklists: - openphish: Crypto/Wallet - fortinet: Phishing
GET /wp-includes/js/comment-reply.min080f.js?ver=5.8.2 HTTP/1.1 Host: winnerinvestgroup.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://winnerinvestgroup.com/	URL: winnerinvestgroup.com/wp-includes/js/comment-reply.min0 (...) FQDN: winnerinvestgroup.com IP: 162.241.253.159 HASH: 8f0191fcced17d7eb5cee3633bb87e74f496a045ba1038ab7a2ef14a08cf1b4c 162.241.253.159 HTTP/1.1 200 OK Content-Type: application/javascript Date: Wed, 11 Jan 2023 08:05:01 GMT Server: Apache Last-Modified: Wed, 30 Mar 2022 11:51:53 GMT Accept-Ranges: bytes Vary: Accept-Encoding Content-Encoding: gzip host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ== Content-Length: 1472 Keep-Alive: timeout=5, max=74 Connection: Keep-Alive --- Additional Info --- Magic: ASCII text, with very long lines (2949) Size: 1472 Md5: 2758412411a9bec9055c038b049ebf3b Sha1: 7dfd2d35de1e8c1c5b21bc8523b108c691ee7d76 Sha256: 8f0191fcced17d7eb5cee3633bb87e74f496a045ba1038ab7a2ef14a08cf1b4c Alerts: Blocklists: - openphish: Crypto/Wallet - fortinet: Phishing
POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: r3.o.lencr.org/ FQDN: r3.o.lencr.org IP: 23.36.76.226 HASH: c82b794c471d79568f5eee05529ceddbefc383ac0d035578da7bc3866062e5cc 23.36.76.226 HTTP/1.1 200 OK Content-Type: application/ocsp-response Server: nginx Content-Length: 503 ETag: "C82B794C471D79568F5EEE05529CEDDBEFC383AC0D035578DA7BC3866062E5CC" Last-Modified: Tue, 10 Jan 2023 01:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=8232 Expires: Wed, 11 Jan 2023 10:22:14 GMT Date: Wed, 11 Jan 2023 08:05:02 GMT Connection: keep-alive --- Additional Info --- Magic: data Size: 503 Md5: 385fbe651dc747111b979f40f9583702 Sha1: a69fa58ffc6e2b15222f17ad6345b2bec9d75106 Sha256: c82b794c471d79568f5eee05529ceddbefc383ac0d035578da7bc3866062e5cc
POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: r3.o.lencr.org/ FQDN: r3.o.lencr.org IP: 23.36.76.226 HASH: c82b794c471d79568f5eee05529ceddbefc383ac0d035578da7bc3866062e5cc 23.36.76.226 HTTP/1.1 200 OK Content-Type: application/ocsp-response Server: nginx Content-Length: 503 ETag: "C82B794C471D79568F5EEE05529CEDDBEFC383AC0D035578DA7BC3866062E5CC" Last-Modified: Tue, 10 Jan 2023 01:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=8232 Expires: Wed, 11 Jan 2023 10:22:14 GMT Date: Wed, 11 Jan 2023 08:05:02 GMT Connection: keep-alive --- Additional Info --- Magic: data Size: 503 Md5: 385fbe651dc747111b979f40f9583702 Sha1: a69fa58ffc6e2b15222f17ad6345b2bec9d75106 Sha256: c82b794c471d79568f5eee05529ceddbefc383ac0d035578da7bc3866062e5cc
POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: r3.o.lencr.org/ FQDN: r3.o.lencr.org IP: 23.36.76.226 HASH: c82b794c471d79568f5eee05529ceddbefc383ac0d035578da7bc3866062e5cc 23.36.76.226 HTTP/1.1 200 OK Content-Type: application/ocsp-response Server: nginx Content-Length: 503 ETag: "C82B794C471D79568F5EEE05529CEDDBEFC383AC0D035578DA7BC3866062E5CC" Last-Modified: Tue, 10 Jan 2023 01:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=8232 Expires: Wed, 11 Jan 2023 10:22:14 GMT Date: Wed, 11 Jan 2023 08:05:02 GMT Connection: keep-alive --- Additional Info --- Magic: data Size: 503 Md5: 385fbe651dc747111b979f40f9583702 Sha1: a69fa58ffc6e2b15222f17ad6345b2bec9d75106 Sha256: c82b794c471d79568f5eee05529ceddbefc383ac0d035578da7bc3866062e5cc
POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: r3.o.lencr.org/ FQDN: r3.o.lencr.org IP: 23.36.76.226 HASH: c82b794c471d79568f5eee05529ceddbefc383ac0d035578da7bc3866062e5cc 23.36.76.226 HTTP/1.1 200 OK Content-Type: application/ocsp-response Server: nginx Content-Length: 503 ETag: "C82B794C471D79568F5EEE05529CEDDBEFC383AC0D035578DA7BC3866062E5CC" Last-Modified: Tue, 10 Jan 2023 01:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=8232 Expires: Wed, 11 Jan 2023 10:22:14 GMT Date: Wed, 11 Jan 2023 08:05:02 GMT Connection: keep-alive --- Additional Info --- Magic: data Size: 503 Md5: 385fbe651dc747111b979f40f9583702 Sha1: a69fa58ffc6e2b15222f17ad6345b2bec9d75106 Sha256: c82b794c471d79568f5eee05529ceddbefc383ac0d035578da7bc3866062e5cc
POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: r3.o.lencr.org/ FQDN: r3.o.lencr.org IP: 23.36.76.226 HASH: c82b794c471d79568f5eee05529ceddbefc383ac0d035578da7bc3866062e5cc 23.36.76.226 HTTP/1.1 200 OK Content-Type: application/ocsp-response Server: nginx Content-Length: 503 ETag: "C82B794C471D79568F5EEE05529CEDDBEFC383AC0D035578DA7BC3866062E5CC" Last-Modified: Tue, 10 Jan 2023 01:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=8232 Expires: Wed, 11 Jan 2023 10:22:14 GMT Date: Wed, 11 Jan 2023 08:05:02 GMT Connection: keep-alive --- Additional Info --- Magic: data Size: 503 Md5: 385fbe651dc747111b979f40f9583702 Sha1: a69fa58ffc6e2b15222f17ad6345b2bec9d75106 Sha256: c82b794c471d79568f5eee05529ceddbefc383ac0d035578da7bc3866062e5cc
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fad96383c-d707-4b10-ad6c-110acc0ed5e3.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	URL: img-getpocket.cdn.mozilla.net/296x148/filters:format(jp (...) FQDN: img-getpocket.cdn.mozilla.net IP: 34.120.237.76 HASH: 6cedd3770eb8879c837799d36ebca9d631789d972d3631d730829fc5d64abb25 34.120.237.76 HTTP/2 200 OK content-type: image/jpeg server: nginx content-length: 8024 x-amzn-requestid: b331ee66-c166-4fa6-b950-287134d07fa2 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: eWhZ6EM0oAMFQFg= x-content-type-options: nosniff x-amzn-trace-id: Root=1-63b8e2a5-39ff669b44e3dd9339daa56b;Sampled=0 x-amzn-remapped-date: Sat, 07 Jan 2023 03:10:29 GMT x-amz-cf-pop: SEA19-C2 x-cache: Hit from cloudfront x-amz-cf-id: Fk214iXw9pGVhIOu0uwvDOrqHR-pOjicJOttxjMb0JDhxXbfpyRncg== via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 5565a51537c689d1d16f6b4d41f40082.cloudfront.net (CloudFront), 1.1 google date: Wed, 11 Jan 2023 07:54:43 GMT age: 619 etag: "6ec36e85e464004c5e6255739e962e6dcc4c24c6" cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 8024 Md5: 35ee3a36f2d56adfa27324f734f8f7fc Sha1: 6ec36e85e464004c5e6255739e962e6dcc4c24c6 Sha256: 6cedd3770eb8879c837799d36ebca9d631789d972d3631d730829fc5d64abb25
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F15770463-febf-46fb-8a4d-1a4f297b5a7b.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	URL: img-getpocket.cdn.mozilla.net/296x148/filters:format(jp (...) FQDN: img-getpocket.cdn.mozilla.net IP: 34.120.237.76 HASH: 66b01e33e1bc18d18e187632738f8ff49ef58a2d054367173c0570b7caa76260 34.120.237.76 HTTP/2 200 OK content-type: image/jpeg server: nginx content-length: 4116 x-amzn-requestid: 64c7b71c-74a5-4304-bab5-305de0e4c9d1 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: eON3PHCaoAMF_Zg= x-content-type-options: nosniff x-amzn-trace-id: Root=1-63b5902e-72ada40c0419baa7763c2441;Sampled=0 x-amzn-remapped-date: Wed, 04 Jan 2023 14:41:50 GMT x-amz-cf-pop: SEA19-C2 x-cache: Hit from cloudfront x-amz-cf-id: wrpetZbXyS3pCR4ZBK2XXJRHbg652psant3gpl9ALVEZcfPE1ez8xw== via: 1.1 7f5e0d3b9ea85d0d75063a66c0ebc840.cloudfront.net (CloudFront), 1.1 6172bb1a5d00a3b06ae3700570ebe116.cloudfront.net (CloudFront), 1.1 google date: Wed, 11 Jan 2023 04:40:23 GMT age: 12279 etag: "eb6c7b73b80d2d41e6e4801a0b671e2a5c1cdf5b" cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 4116 Md5: 1d11194f94b91e55e976fc5d704afa55 Sha1: eb6c7b73b80d2d41e6e4801a0b671e2a5c1cdf5b Sha256: 66b01e33e1bc18d18e187632738f8ff49ef58a2d054367173c0570b7caa76260
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Febe61553-0d3d-4c00-8e9b-da1405590a9b.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	URL: img-getpocket.cdn.mozilla.net/296x148/filters:format(jp (...) FQDN: img-getpocket.cdn.mozilla.net IP: 34.120.237.76 HASH: b4e17cfdee53b56ac33cb5a86253e4839ed7bd9bb1604209834bb22d881472f1 34.120.237.76 HTTP/2 200 OK content-type: image/jpeg server: nginx content-length: 7140 x-amzn-requestid: 96450c55-6068-4946-9e5f-650c19d2772a x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: ei739GoJIAMF0lA= x-content-type-options: nosniff x-amzn-trace-id: Root=1-63bdd9cc-2bf965d47a10fd61619d945f;Sampled=0 x-amzn-remapped-date: Tue, 10 Jan 2023 21:34:04 GMT x-amz-cf-pop: HIO50-C1, SEA19-C2 x-cache: Hit from cloudfront x-amz-cf-id: t5mK-tl3WskwkQLUXPKR2ljEW32-Yo6_BHwqP2dNVUr09WoMyxYeZw== via: 1.1 c7c3cdef911c9ee3c1a83a78f425dc5a.cloudfront.net (CloudFront), 1.1 61bc723adb3b1884ed759711e84e13a8.cloudfront.net (CloudFront), 1.1 google date: Tue, 10 Jan 2023 21:42:06 GMT age: 37376 etag: "59f9b06ee8e4c9608e29e7b19832fb925789f373" cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 7140 Md5: a708649e0d6b128eb599b221445a8e06 Sha1: 59f9b06ee8e4c9608e29e7b19832fb925789f373 Sha256: b4e17cfdee53b56ac33cb5a86253e4839ed7bd9bb1604209834bb22d881472f1
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F29a4e5f8-90d2-4932-b687-e827f7b75a6b.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	URL: img-getpocket.cdn.mozilla.net/296x148/filters:format(jp (...) FQDN: img-getpocket.cdn.mozilla.net IP: 34.120.237.76 HASH: 5955b48e68572fd477fbb1bf172c3d590320b7408668a7fc586022362dd7447d 34.120.237.76 HTTP/2 200 OK content-type: image/jpeg server: nginx content-length: 8395 x-amzn-requestid: 13f52de6-c624-4005-8c98-b8299ce3d156 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: ei75DGBwIAMFU3g= x-content-type-options: nosniff x-amzn-trace-id: Root=1-63bdd9d3-278ee7ad4b30336e2ada7970;Sampled=0 x-amzn-remapped-date: Tue, 10 Jan 2023 21:34:11 GMT x-amz-cf-pop: HIO50-C1, SEA19-C2 x-cache: Miss from cloudfront x-amz-cf-id: GgE9t2dma-Vdolh6eOwjqtNz-rLzDCflksYIj1mcogunBV8dxgCIkQ== via: 1.1 446313511980eb02f28ff5a9a4147c0a.cloudfront.net (CloudFront), 1.1 64f86ae1c24221f3a2e4d653d6dbc416.cloudfront.net (CloudFront), 1.1 google date: Tue, 10 Jan 2023 21:51:12 GMT age: 36830 etag: "254f8d0a30d61afe871b7d603d4f0669bfb59808" cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 8395 Md5: 82b10434cd29773d0f2f05a9904bd8d7 Sha1: 254f8d0a30d61afe871b7d603d4f0669bfb59808 Sha256: 5955b48e68572fd477fbb1bf172c3d590320b7408668a7fc586022362dd7447d
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe834a7de-1ed4-4b8b-a3be-fce3151bd1b1.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	URL: img-getpocket.cdn.mozilla.net/296x148/filters:format(jp (...) FQDN: img-getpocket.cdn.mozilla.net IP: 34.120.237.76 HASH: 1ae2e194f6bb20166d326002b39a4e3f44a9a97046e77ffd2a186eae384b7ce1 34.120.237.76 HTTP/2 200 OK content-type: image/jpeg server: nginx content-length: 10640 x-amzn-requestid: 0b0b6732-7692-4b35-9625-154dc39386dd x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: ei745GEooAMFafA= x-content-type-options: nosniff x-amzn-trace-id: Root=1-63bdd9d2-314dad90600e9d8c737adf05;Sampled=0 x-amzn-remapped-date: Tue, 10 Jan 2023 21:34:10 GMT x-amz-cf-pop: HIO50-C1, SEA19-C2 x-cache: Hit from cloudfront x-amz-cf-id: rr9hTjSynlIWtcOCn7hv3-rRhhGEl0A0_uV1jC2ljrpr8ybnZP72Zw== via: 1.1 49b94a8674d6e86a841d6523f7dbaf14.cloudfront.net (CloudFront), 1.1 d6b180eb367f7de26d67a9f3901b96a6.cloudfront.net (CloudFront), 1.1 google date: Tue, 10 Jan 2023 21:42:10 GMT age: 37372 etag: "d3c0b7fa6ab4f421835acd595a75b5035d1ff9ee" cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 10640 Md5: 68af9d9acdc08345ac38ae59f83a9a24 Sha1: d3c0b7fa6ab4f421835acd595a75b5035d1ff9ee Sha256: 1ae2e194f6bb20166d326002b39a4e3f44a9a97046e77ffd2a186eae384b7ce1
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Faabf1f2c-deb1-4d58-9ee6-5dd522512882.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	URL: img-getpocket.cdn.mozilla.net/296x148/filters:format(jp (...) FQDN: img-getpocket.cdn.mozilla.net IP: 34.120.237.76 HASH: 357db338b2f6fcf434bdd9c2561f91d3fc7e5d42a92e5068402ce3eeb6fba412 34.120.237.76 HTTP/2 200 OK content-type: image/jpeg server: nginx content-length: 6400 x-amzn-requestid: f76c3961-a118-4639-a943-2ffbd3d28537 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: eaD7hEEdoAMFs5A= x-content-type-options: nosniff x-amzn-trace-id: Root=1-63ba4d16-3881379864dcae085aa4fd4d;Sampled=0 x-amzn-remapped-date: Sun, 08 Jan 2023 04:56:54 GMT x-amz-cf-pop: SEA19-C2 x-cache: Hit from cloudfront x-amz-cf-id: DmS2bnkBSYTi7rEZuQ_frZ6GwU-PHrD3GfDXv7rDkp_ytjR7c9FhWw== via: 1.1 0c96ded7ff282d2dbcf47c918b6bb500.cloudfront.net (CloudFront), 1.1 98aedae6661e3904540676966998ed88.cloudfront.net (CloudFront), 1.1 google date: Tue, 10 Jan 2023 09:21:14 GMT age: 81828 etag: "438999ac8d0853e235a2c0e0f404291961c891ab" cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 6400 Md5: 56de8a53fb494855ff7717eeb39c1fed Sha1: 438999ac8d0853e235a2c0e0f404291961c891ab Sha256: 357db338b2f6fcf434bdd9c2561f91d3fc7e5d42a92e5068402ce3eeb6fba412
GET /wp-content/plugins/js_composer/assets/js/dist/js_composer_front.min4245.js?ver=5.5.2 HTTP/1.1 Host: winnerinvestgroup.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://winnerinvestgroup.com/	URL: winnerinvestgroup.com/wp-content/plugins/js_composer/as (...) FQDN: winnerinvestgroup.com IP: 162.241.253.159 HASH: d45d52b998b6c00c8cb29758c0a97ddc95c410ee726052c0b691bf10964514b6 162.241.253.159 HTTP/1.1 200 OK Content-Type: application/javascript Date: Wed, 11 Jan 2023 08:05:02 GMT Server: Apache Last-Modified: Wed, 30 Mar 2022 11:51:52 GMT Accept-Ranges: bytes Vary: Accept-Encoding Content-Encoding: gzip host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ== Content-Length: 7130 Keep-Alive: timeout=5, max=65 Connection: Keep-Alive --- Additional Info --- Magic: ASCII text, with very long lines (19712), with no line terminators Size: 7130 Md5: 98b9972bbeffd8cf58a31a5ba6350603 Sha1: 40f6aec95e201bec88970f30514c958075e1abbb Sha256: d45d52b998b6c00c8cb29758c0a97ddc95c410ee726052c0b691bf10964514b6 Alerts: Blocklists: - openphish: Crypto/Wallet - fortinet: Phishing
GET /wp-content/themes/suprema/assets/js/like.min5152.js?ver=1.0 HTTP/1.1 Host: winnerinvestgroup.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://winnerinvestgroup.com/	URL: winnerinvestgroup.com/wp-content/themes/suprema/assets/ (...) FQDN: winnerinvestgroup.com IP: 162.241.253.159 HASH: 729277743b91072665384f59ac6965364943a024a2f5e4fa42996f2fb91f4bc8 162.241.253.159 HTTP/1.1 200 OK Content-Type: application/javascript Date: Wed, 11 Jan 2023 08:05:02 GMT Server: Apache Last-Modified: Wed, 30 Mar 2022 11:51:52 GMT Accept-Ranges: bytes Vary: Accept-Encoding Content-Encoding: gzip host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ== Content-Length: 411 Keep-Alive: timeout=5, max=65 Connection: Keep-Alive --- Additional Info --- Magic: ASCII text, with very long lines (712), with no line terminators Size: 411 Md5: f059f63b17aaed7797d3495bed44af45 Sha1: 33dccf09fabdf589a40658bf76854e0679e83569 Sha256: 729277743b91072665384f59ac6965364943a024a2f5e4fa42996f2fb91f4bc8 Alerts: Blocklists: - openphish: Crypto/Wallet - fortinet: Phishing
GET /wp-includes/js/wp-embed.min080f.js?ver=5.8.2 HTTP/1.1 Host: winnerinvestgroup.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://winnerinvestgroup.com/	URL: winnerinvestgroup.com/wp-includes/js/wp-embed.min080f.j (...) FQDN: winnerinvestgroup.com IP: 162.241.253.159 HASH: 0b17eb6ab02e69f50ac52ca157375bd69853ae4f4796eb48a35eb4a12fc7af8b 162.241.253.159 HTTP/1.1 200 OK Content-Type: application/javascript Date: Wed, 11 Jan 2023 08:05:02 GMT Server: Apache Last-Modified: Wed, 30 Mar 2022 11:51:53 GMT Accept-Ranges: bytes Vary: Accept-Encoding Content-Encoding: gzip host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ== Content-Length: 777 Keep-Alive: timeout=5, max=69 Connection: Keep-Alive --- Additional Info --- Magic: ASCII text, with very long lines (1391) Size: 777 Md5: 06ece4d01ee88297957c9f4cdcaa4df5 Sha1: 2b3321654a8ead1e1493eac9b5f1fdfb65e2037f Sha256: 0b17eb6ab02e69f50ac52ca157375bd69853ae4f4796eb48a35eb4a12fc7af8b
GET /wp-content/plugins/elementor-pro/assets/js/webpack-pro.runtime.mine485.js?ver=3.3.6 HTTP/1.1 Host: winnerinvestgroup.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://winnerinvestgroup.com/	URL: winnerinvestgroup.com/wp-content/plugins/elementor-pro/ (...) FQDN: winnerinvestgroup.com IP: 162.241.253.159 HASH: aac1715a742a36031e0e74422b42ffa15d43087c2fd9d7e098049d1bdf3deb17 162.241.253.159 HTTP/1.1 200 OK Content-Type: application/javascript Date: Wed, 11 Jan 2023 08:05:02 GMT Server: Apache Last-Modified: Wed, 30 Mar 2022 11:51:52 GMT Accept-Ranges: bytes Vary: Accept-Encoding Content-Encoding: gzip host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ== Content-Length: 2578 Keep-Alive: timeout=5, max=64 Connection: Keep-Alive --- Additional Info --- Magic: ASCII text, with very long lines (5419) Size: 2578 Md5: b917e6724841ce7329d3bef5e83b5873 Sha1: e9ab2e871978bd8247aa67af81cb6d92e0522e32 Sha256: aac1715a742a36031e0e74422b42ffa15d43087c2fd9d7e098049d1bdf3deb17
GET /wp-content/plugins/elementor/assets/js/webpack.runtime.min9d52.js?ver=3.5.1 HTTP/1.1 Host: winnerinvestgroup.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://winnerinvestgroup.com/	URL: winnerinvestgroup.com/wp-content/plugins/elementor/asse (...) FQDN: winnerinvestgroup.com IP: 162.241.253.159 HASH: b3c4cf3c8913c3cc69b0518b050bd4edced2949ddcbb00d1d796b45c841a3cd6 162.241.253.159 HTTP/1.1 200 OK Content-Type: application/javascript Date: Wed, 11 Jan 2023 08:05:02 GMT Server: Apache Last-Modified: Wed, 30 Mar 2022 11:51:52 GMT Accept-Ranges: bytes Vary: Accept-Encoding Content-Encoding: gzip host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ== Content-Length: 2287 Keep-Alive: timeout=5, max=73 Connection: Keep-Alive --- Additional Info --- Magic: ASCII text, with very long lines (4866) Size: 2287 Md5: 33a62888c5d1cbbb4a46c492568bea5d Sha1: 3cc55ff75dde60b415a2b9537f53f51cb105a54a Sha256: b3c4cf3c8913c3cc69b0518b050bd4edced2949ddcbb00d1d796b45c841a3cd6 Alerts: Blocklists: - openphish: Crypto/Wallet - fortinet: Phishing
GET /wp-content/plugins/elementor/assets/js/frontend-modules.min9d52.js?ver=3.5.1 HTTP/1.1 Host: winnerinvestgroup.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://winnerinvestgroup.com/	URL: winnerinvestgroup.com/wp-content/plugins/elementor/asse (...) FQDN: winnerinvestgroup.com IP: 162.241.253.159 HASH: 8265e213ba1f8f3a11616d589fae7874ef52459f5dbaa1fcf46c307f4aefd42a 162.241.253.159 HTTP/1.1 200 OK Content-Type: application/javascript Date: Wed, 11 Jan 2023 08:05:02 GMT Server: Apache Last-Modified: Wed, 30 Mar 2022 11:51:52 GMT Accept-Ranges: bytes Vary: Accept-Encoding Content-Encoding: gzip host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ== Content-Length: 5628 Keep-Alive: timeout=5, max=64 Connection: Keep-Alive --- Additional Info --- Magic: ASCII text, with very long lines (14196) Size: 5628 Md5: db9b887828ad1612ca5d41e33286e82f Sha1: 994e84a58f0fdff2b40f1df8447afb77f643b8e1 Sha256: 8265e213ba1f8f3a11616d589fae7874ef52459f5dbaa1fcf46c307f4aefd42a Alerts: Blocklists: - openphish: Crypto/Wallet - fortinet: Phishing
GET /wp-content/plugins/elementor-pro/assets/js/frontend.mine485.js?ver=3.3.6 HTTP/1.1 Host: winnerinvestgroup.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://winnerinvestgroup.com/	URL: winnerinvestgroup.com/wp-content/plugins/elementor-pro/ (...) FQDN: winnerinvestgroup.com IP: 162.241.253.159 HASH: 1031d0a8856db8fe437f8f5d268efa02532005c96348ab819838a60e558b2437 162.241.253.159 HTTP/1.1 200 OK Content-Type: application/javascript Date: Wed, 11 Jan 2023 08:05:02 GMT Server: Apache Last-Modified: Wed, 30 Mar 2022 11:51:52 GMT Accept-Ranges: bytes Vary: Accept-Encoding Content-Encoding: gzip host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ== Keep-Alive: timeout=5, max=64 Connection: Keep-Alive Transfer-Encoding: chunked --- Additional Info --- Magic: Unicode text, UTF-8 text, with very long lines (58848) Size: 22802 Md5: 9e37eb383b7c451453874019f869e706 Sha1: 87c2e1e4d6c49c318350b21ed1c83583c6d3a16d Sha256: 1031d0a8856db8fe437f8f5d268efa02532005c96348ab819838a60e558b2437 Alerts: Blocklists: - openphish: Crypto/Wallet - fortinet: Phishing
GET /wp-content/themes/suprema/assets/js/third-party.min080f.js?ver=5.8.2 HTTP/1.1 Host: winnerinvestgroup.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://winnerinvestgroup.com/	URL: winnerinvestgroup.com/wp-content/themes/suprema/assets/ (...) FQDN: winnerinvestgroup.com IP: 162.241.253.159 HASH: 25bbcae9bcd8847c01b8f4b45195ee992fd6934e4b417c99f194cea8ec5cd627 162.241.253.159 HTTP/1.1 200 OK Content-Type: application/javascript Date: Wed, 11 Jan 2023 08:05:01 GMT Server: Apache Last-Modified: Wed, 30 Mar 2022 11:51:52 GMT Accept-Ranges: bytes Vary: Accept-Encoding Content-Encoding: gzip host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ== Keep-Alive: timeout=5, max=74 Connection: Keep-Alive Transfer-Encoding: chunked --- Additional Info --- Magic: HTML document, ASCII text, with very long lines (31998) Size: 133576 Md5: f3d2b8dea3b8ce7d2b80e8b8206078dd Sha1: e547048d3561efad541a8ad8c25061303b024f3d Sha256: 25bbcae9bcd8847c01b8f4b45195ee992fd6934e4b417c99f194cea8ec5cd627
GET /wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min05da.js?ver=4.0.2 HTTP/1.1 Host: winnerinvestgroup.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://winnerinvestgroup.com/	URL: winnerinvestgroup.com/wp-content/plugins/elementor/asse (...) FQDN: winnerinvestgroup.com IP: 162.241.253.159 HASH: 09e0e638a6f53c0fdcfeeb8ae91f3a404bef47b471324e335e29be14a2aa87f7 162.241.253.159 HTTP/1.1 200 OK Content-Type: application/javascript Date: Wed, 11 Jan 2023 08:05:02 GMT Server: Apache Last-Modified: Wed, 30 Mar 2022 11:51:52 GMT Accept-Ranges: bytes Vary: Accept-Encoding Content-Encoding: gzip host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ== Content-Length: 3747 Keep-Alive: timeout=5, max=68 Connection: Keep-Alive --- Additional Info --- Magic: ASCII text, with very long lines (12198), with no line terminators Size: 3747 Md5: e2a8decccf4d0a6b925af707a36077a9 Sha1: 26a0febc9c3d91e75410f74b9ec62099ba1cbe90 Sha256: 09e0e638a6f53c0fdcfeeb8ae91f3a404bef47b471324e335e29be14a2aa87f7
GET /wp-content/plugins/elementor/assets/js/frontend.min9d52.js?ver=3.5.1 HTTP/1.1 Host: winnerinvestgroup.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://winnerinvestgroup.com/	URL: winnerinvestgroup.com/wp-content/plugins/elementor/asse (...) FQDN: winnerinvestgroup.com IP: 162.241.253.159 HASH: 1d4e0b5c11ca6a8ccfa4bea0ccb1e8bb549681107cc092fc3d266d524237a3d2 162.241.253.159 HTTP/1.1 200 OK Content-Type: application/javascript Date: Wed, 11 Jan 2023 08:05:02 GMT Server: Apache Last-Modified: Wed, 30 Mar 2022 11:51:52 GMT Accept-Ranges: bytes Vary: Accept-Encoding Content-Encoding: gzip host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ== Content-Length: 14427 Keep-Alive: timeout=5, max=63 Connection: Keep-Alive --- Additional Info --- Magic: ASCII text, with very long lines (36853) Size: 14427 Md5: abd0e339b23fee4dcec0a3eaeb61bdd5 Sha1: 9bdd0737790133c611ba58bcfa5fba897c5a192b Sha256: 1d4e0b5c11ca6a8ccfa4bea0ccb1e8bb549681107cc092fc3d266d524237a3d2
GET /wp-includes/js/underscore.min0028.js?ver=1.13.1 HTTP/1.1 Host: winnerinvestgroup.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://winnerinvestgroup.com/	URL: winnerinvestgroup.com/wp-includes/js/underscore.min0028 (...) FQDN: winnerinvestgroup.com IP: 162.241.253.159 HASH: 0e64084fe2aa346fffd15ce84b27ac3a62f7b8e555f563a4d919766a777f5262 162.241.253.159 HTTP/1.1 200 OK Content-Type: application/javascript Date: Wed, 11 Jan 2023 08:05:02 GMT Server: Apache Last-Modified: Wed, 30 Mar 2022 11:51:53 GMT Accept-Ranges: bytes Vary: Accept-Encoding Content-Encoding: gzip host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ== Content-Length: 8329 Keep-Alive: timeout=5, max=63 Connection: Keep-Alive --- Additional Info --- Magic: ASCII text, with very long lines (19041) Size: 8329 Md5: e45e83fd86a608f36eed8d8178c0c218 Sha1: 84cbfc05d78d37a27374bb30ac9b933a8d4ce3e6 Sha256: 0e64084fe2aa346fffd15ce84b27ac3a62f7b8e555f563a4d919766a777f5262 Alerts: Blocklists: - openphish: Crypto/Wallet - fortinet: Phishing
GET /wp-includes/js/wp-util.min080f.js?ver=5.8.2 HTTP/1.1 Host: winnerinvestgroup.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://winnerinvestgroup.com/	URL: winnerinvestgroup.com/wp-includes/js/wp-util.min080f.js (...) FQDN: winnerinvestgroup.com IP: 162.241.253.159 HASH: 2a0742cad9937c742b2f51c1ea2ae48359ce8d88d8b56f6d8910c0a267d631b5 162.241.253.159 HTTP/1.1 200 OK Content-Type: application/javascript Date: Wed, 11 Jan 2023 08:05:02 GMT Server: Apache Last-Modified: Wed, 30 Mar 2022 11:51:53 GMT Accept-Ranges: bytes Vary: Accept-Encoding Content-Encoding: gzip host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ== Content-Length: 709 Keep-Alive: timeout=5, max=63 Connection: Keep-Alive --- Additional Info --- Magic: ASCII text, with very long lines (1305) Size: 709 Md5: e9edb7bac979409cf7dbc48d7ab8aca7 Sha1: ed3f941a8fe41e3994a3ca5e620219328628f532 Sha256: 2a0742cad9937c742b2f51c1ea2ae48359ce8d88d8b56f6d8910c0a267d631b5 Alerts: Blocklists: - openphish: Crypto/Wallet - fortinet: Phishing
GET /connect.livechatinc.com/api/v1/script/e808420d-9257-46ce-9fae-285d34f85c2b/contact-button62d0.js?ver=4.5.3 HTTP/1.1 Host: winnerinvestgroup.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://winnerinvestgroup.com/	URL: winnerinvestgroup.com/connect.livechatinc.com/api/v1/sc (...) FQDN: winnerinvestgroup.com IP: 162.241.253.159 HASH: 769e8ab745a0fe4bf811036e75a8630e38c50a18cb3e24d539ce4a0722c7c85e 162.241.253.159 HTTP/1.1 409 Conflict Content-Type: text/html; charset=iso-8859-1 Date: Wed, 11 Jan 2023 08:05:02 GMT Server: Apache Content-Length: 83 Keep-Alive: timeout=5, max=67 Connection: Keep-Alive --- Additional Info --- Magic: HTML document, ASCII text, with no line terminators Size: 83 Md5: 26267cd8990f15d3bbea71684a6d5995 Sha1: ac3b38cf3fe0e112bb6aeb7e05226b7133575d93 Sha256: 769e8ab745a0fe4bf811036e75a8630e38c50a18cb3e24d539ce4a0722c7c85e Alerts: Blocklists: - openphish: Crypto/Wallet - fortinet: Phishing
GET /wp-content/plugins/wpforms/assets/js/integrations/elementor/frontend.min7514.js?ver=1.6.6 HTTP/1.1 Host: winnerinvestgroup.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://winnerinvestgroup.com/	URL: winnerinvestgroup.com/wp-content/plugins/wpforms/assets (...) FQDN: winnerinvestgroup.com IP: 162.241.253.159 HASH: b2a0dc77f0f79d81698a7e3893e16ecba7b0d980b80a5233656d9b11f1d8160d 162.241.253.159 HTTP/1.1 200 OK Content-Type: application/javascript Date: Wed, 11 Jan 2023 08:05:02 GMT Server: Apache Last-Modified: Wed, 30 Mar 2022 11:51:52 GMT Accept-Ranges: bytes Vary: Accept-Encoding Content-Encoding: gzip host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ== Content-Length: 374 Keep-Alive: timeout=5, max=73 Connection: Keep-Alive --- Additional Info --- Magic: ASCII text, with very long lines (754), with no line terminators Size: 374 Md5: ef785f463505633971eae5c08ad626d4 Sha1: 624e22257f386801822229db3a4bbd2e24b25e2f Sha256: b2a0dc77f0f79d81698a7e3893e16ecba7b0d980b80a5233656d9b11f1d8160d
GET /wp-content/uploads/elementor/thumbs/spaces_-LJJeCjcLrr53DcT1Ml7_avatar-pf1amykdwxealgfl3u2krxudgrgjzujazs5xsqoag8.png HTTP/1.1 Host: winnerinvestgroup.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://winnerinvestgroup.com/	URL: winnerinvestgroup.com/wp-content/uploads/elementor/thum (...) FQDN: winnerinvestgroup.com IP: 162.241.253.159 HASH: 6fe5d61f4bb14f390f7ea3104e1ed4829cbbf4f6adbc2333c660469130e228d4 162.241.253.159 HTTP/1.1 200 OK Content-Type: image/png Date: Wed, 11 Jan 2023 08:05:02 GMT Server: Apache Last-Modified: Wed, 30 Mar 2022 11:51:52 GMT Accept-Ranges: bytes Content-Length: 4385 host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ== Keep-Alive: timeout=5, max=62 Connection: Keep-Alive --- Additional Info --- Magic: PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data Size: 4385 Md5: 27242a5387179912b4e004f60b95300e Sha1: 3146d8ecdd50e58bf05bfca7890c11a744b9fd03 Sha256: 6fe5d61f4bb14f390f7ea3104e1ed4829cbbf4f6adbc2333c660469130e228d4 Alerts: Blocklists: - openphish: Crypto/Wallet
GET /wp-content/plugins/elementor-pro/assets/js/elements-handlers.mine485.js?ver=3.3.6 HTTP/1.1 Host: winnerinvestgroup.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://winnerinvestgroup.com/	URL: winnerinvestgroup.com/wp-content/plugins/elementor-pro/ (...) FQDN: winnerinvestgroup.com IP: 162.241.253.159 HASH: 76df7ed132c6816cae71150743347e9128bd41f32e8a7b472e281f556e2eb487 162.241.253.159 HTTP/1.1 200 OK Content-Type: application/javascript Date: Wed, 11 Jan 2023 08:05:02 GMT Server: Apache Last-Modified: Wed, 30 Mar 2022 11:51:52 GMT Accept-Ranges: bytes Vary: Accept-Encoding Content-Encoding: gzip host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ== Keep-Alive: timeout=5, max=72 Connection: Keep-Alive Transfer-Encoding: chunked --- Additional Info --- Magic: ASCII text, with very long lines (52456) Size: 17618 Md5: ec43212e854aa843cdecc4f74b82ec42 Sha1: 3fd5bb8e68322c164ed4250b0e6bec742fb74b51 Sha256: 76df7ed132c6816cae71150743347e9128bd41f32e8a7b472e281f556e2eb487 Alerts: Blocklists: - openphish: Crypto/Wallet - fortinet: Phishing
GET /wp-content/uploads/elementor/thumbs/rainbow-pf1an558r84q7iwj9ukhwyn97ivh10z4zyw9p47n88.png HTTP/1.1 Host: winnerinvestgroup.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://winnerinvestgroup.com/	URL: winnerinvestgroup.com/wp-content/uploads/elementor/thum (...) FQDN: winnerinvestgroup.com IP: 162.241.253.159 HASH: 1dacdc5790ac412c1f41e0dc8c1b0c14788e2789b14ad4b139d59f8ba41d1d19 162.241.253.159 HTTP/1.1 200 OK Content-Type: image/png Date: Wed, 11 Jan 2023 08:05:02 GMT Server: Apache Last-Modified: Wed, 30 Mar 2022 11:51:52 GMT Accept-Ranges: bytes Content-Length: 3401 host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ== Keep-Alive: timeout=5, max=62 Connection: Keep-Alive --- Additional Info --- Magic: PNG image data, 60 x 60, 8-bit/color RGBA, non-interlaced\012- data Size: 3401 Md5: 61193bf4c70e8e7cd4073e80a94f54f3 Sha1: 21b287e53c9271efb0561368739d70561e77186c Sha256: 1dacdc5790ac412c1f41e0dc8c1b0c14788e2789b14ad4b139d59f8ba41d1d19 Alerts: Blocklists: - openphish: Crypto/Wallet
GET /wp-content/uploads/elementor/thumbs/trust-wallet-pf1an1dw49v82vvdbp13ulh8xpt61evs8mque5exx8.png HTTP/1.1 Host: winnerinvestgroup.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://winnerinvestgroup.com/	URL: winnerinvestgroup.com/wp-content/uploads/elementor/thum (...) FQDN: winnerinvestgroup.com IP: 162.241.253.159 HASH: 036fa824533b826b30222d48388385c0ef73deb61e69bd1f4ba249026e438bd2 162.241.253.159 HTTP/1.1 200 OK Content-Type: image/png Date: Wed, 11 Jan 2023 08:05:02 GMT Server: Apache Last-Modified: Wed, 30 Mar 2022 11:51:52 GMT Accept-Ranges: bytes Content-Length: 3405 host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ== Keep-Alive: timeout=5, max=62 Connection: Keep-Alive --- Additional Info --- Magic: PNG image data, 70 x 70, 8-bit/color RGBA, non-interlaced\012- data Size: 3405 Md5: 6fbea54797eebdc28e949d88b0fb2f48 Sha1: d6057140a8aa100b02398d0c10c8acc9abeba491 Sha256: 036fa824533b826b30222d48388385c0ef73deb61e69bd1f4ba249026e438bd2 Alerts: Blocklists: - openphish: Crypto/Wallet
GET /wp-content/uploads/elementor/thumbs/83f26999937cbc2e2014655796da4b05f77c1de9413a0ee6d0c6178ebcfc3168-pf1aokud9b1biz84lwyjbwjixl08pyu5to08eeluq2.jpg HTTP/1.1 Host: winnerinvestgroup.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://winnerinvestgroup.com/	URL: winnerinvestgroup.com/wp-content/uploads/elementor/thum (...) FQDN: winnerinvestgroup.com IP: 162.241.253.159 HASH: 97c6bfa6d069e46ed9faae7dc70d33d4a45c7fc199aa60351811b86df6d056e1 162.241.253.159 HTTP/1.1 200 OK Content-Type: image/jpeg Date: Wed, 11 Jan 2023 08:05:02 GMT Server: Apache Last-Modified: Wed, 30 Mar 2022 11:51:52 GMT Accept-Ranges: bytes Content-Length: 1578 host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ== Keep-Alive: timeout=5, max=72 Connection: Keep-Alive --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 65x65, components 3\012- data Size: 1578 Md5: d4f0c40f392576e1ff117aeaef9f8f0b Sha1: 636924ad5b79e39a8ce7536d0a9781ddec393b8f Sha256: 97c6bfa6d069e46ed9faae7dc70d33d4a45c7fc199aa60351811b86df6d056e1 Alerts: Blocklists: - openphish: Crypto/Wallet
GET /connect.livechatinc.com/api/v1/script/e808420d-9257-46ce-9fae-285d34f85c2b/quality-badge62d0.js?ver=4.5.3 HTTP/1.1 Host: winnerinvestgroup.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://winnerinvestgroup.com/	URL: winnerinvestgroup.com/connect.livechatinc.com/api/v1/sc (...) FQDN: winnerinvestgroup.com IP: 162.241.253.159 HASH: d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3 162.241.253.159 HTTP/1.1 404 Not Found Content-Type: text/html; charset=iso-8859-1 Date: Wed, 11 Jan 2023 08:05:02 GMT Server: Apache Content-Length: 315 Keep-Alive: timeout=5, max=61 Connection: Keep-Alive --- Additional Info --- Magic: HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text Size: 315 Md5: a34ac19f4afae63adc5d2f7bc970c07f Sha1: a82190fc530c265aa40a045c21770d967f4767b8 Sha256: d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3 Alerts: Blocklists: - openphish: Crypto/Wallet - fortinet: Phishing
GET /wp-content/uploads/elementor/thumbs/gnosis-safe-pf1ank6nwykyj3429x5n8gqgtf8ibcyez7sjzon2gs.jpg HTTP/1.1 Host: winnerinvestgroup.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://winnerinvestgroup.com/	URL: winnerinvestgroup.com/wp-content/uploads/elementor/thum (...) FQDN: winnerinvestgroup.com IP: 162.241.253.159 HASH: b5f6f3e14bc6302fc4bd820933ad9cccee1375e4b1d21026cb37b4c0e6014b84 162.241.253.159 HTTP/1.1 200 OK Content-Type: image/jpeg Date: Wed, 11 Jan 2023 08:05:02 GMT Server: Apache Last-Modified: Wed, 30 Mar 2022 11:51:52 GMT Accept-Ranges: bytes Content-Length: 1966 host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ== Keep-Alive: timeout=5, max=71 Connection: Keep-Alive --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 70x70, components 3\012- data Size: 1966 Md5: a0a46c1dfa315fb6d61b0c173a39898a Sha1: b8f0cc23c7982588bc38f9cf3fa2c8d03f2cf42a Sha256: b5f6f3e14bc6302fc4bd820933ad9cccee1375e4b1d21026cb37b4c0e6014b84 Alerts: Blocklists: - openphish: Crypto/Wallet
POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: ocsp.pki.goog/gts1c3 FQDN: ocsp.pki.goog IP: 142.250.74.131 HASH: 8c0178a28c92e029ad04c5dbb4b8515117303e64cb3df9f3902a10f151ee1aab 142.250.74.131 HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Wed, 11 Jan 2023 08:05:02 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN --- Additional Info --- Magic: data Size: 471 Md5: 9a4ba4ab27cd47ead09d38283f795198 Sha1: cf1d1e13fa427879530cb912e495012a42312b7d Sha256: 8c0178a28c92e029ad04c5dbb4b8515117303e64cb3df9f3902a10f151ee1aab
POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: ocsp.pki.goog/gts1c3 FQDN: ocsp.pki.goog IP: 142.250.74.131 HASH: 8c0178a28c92e029ad04c5dbb4b8515117303e64cb3df9f3902a10f151ee1aab 142.250.74.131 HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Wed, 11 Jan 2023 08:05:02 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN --- Additional Info --- Magic: data Size: 471 Md5: 9a4ba4ab27cd47ead09d38283f795198 Sha1: cf1d1e13fa427879530cb912e495012a42312b7d Sha256: 8c0178a28c92e029ad04c5dbb4b8515117303e64cb3df9f3902a10f151ee1aab
POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: ocsp.pki.goog/gts1c3 FQDN: ocsp.pki.goog IP: 142.250.74.131 HASH: 8c0178a28c92e029ad04c5dbb4b8515117303e64cb3df9f3902a10f151ee1aab 142.250.74.131 HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Wed, 11 Jan 2023 08:05:02 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN --- Additional Info --- Magic: data Size: 471 Md5: 9a4ba4ab27cd47ead09d38283f795198 Sha1: cf1d1e13fa427879530cb912e495012a42312b7d Sha256: 8c0178a28c92e029ad04c5dbb4b8515117303e64cb3df9f3902a10f151ee1aab
POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: ocsp.pki.goog/gts1c3 FQDN: ocsp.pki.goog IP: 142.250.74.131 HASH: 8c0178a28c92e029ad04c5dbb4b8515117303e64cb3df9f3902a10f151ee1aab 142.250.74.131 HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Wed, 11 Jan 2023 08:05:02 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN --- Additional Info --- Magic: data Size: 471 Md5: 9a4ba4ab27cd47ead09d38283f795198 Sha1: cf1d1e13fa427879530cb912e495012a42312b7d Sha256: 8c0178a28c92e029ad04c5dbb4b8515117303e64cb3df9f3902a10f151ee1aab
GET /s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1 Host: fonts.gstatic.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Origin: http://winnerinvestgroup.com Connection: keep-alive Referer: https://fonts.googleapis.com/ Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	URL: fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWb (...) FQDN: fonts.gstatic.com IP: 142.250.74.35 HASH: 8778e9af2422858d7052ff9a0f3c12c08ae976bdd6e0316db144cd5579cd97db 142.250.74.35 HTTP/2 200 OK content-type: font/woff2 accept-ranges: bytes access-control-allow-origin: * content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="apps-themes" report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]} timing-allow-origin: * content-length: 44856 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Mon, 09 Jan 2023 18:52:41 GMT expires: Tue, 09 Jan 2024 18:52:41 GMT cache-control: public, max-age=31536000 age: 133941 last-modified: Mon, 15 Aug 2022 18:20:18 GMT alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" X-Firefox-Spdy: h2 --- Additional Info --- Magic: Web Open Font Format (Version 2), TrueType, length 44856, version 1.0\012- data Size: 44856 Md5: 565ce506190ad3af920b40baf1794cec Sha1: ad3cba5d06100e09449a864d3b5e58403b478b3d Sha256: 8778e9af2422858d7052ff9a0f3c12c08ae976bdd6e0316db144cd5579cd97db
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1 Host: fonts.gstatic.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Origin: http://winnerinvestgroup.com Connection: keep-alive Referer: https://fonts.googleapis.com/ Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	URL: fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 FQDN: fonts.gstatic.com IP: 142.250.74.35 HASH: f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615 142.250.74.35 HTTP/2 200 OK content-type: font/woff2 accept-ranges: bytes access-control-allow-origin: * content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="apps-themes" report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]} timing-allow-origin: * content-length: 15744 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Wed, 04 Jan 2023 19:33:54 GMT expires: Thu, 04 Jan 2024 19:33:54 GMT cache-control: public, max-age=31536000 age: 563468 last-modified: Wed, 11 May 2022 19:24:48 GMT alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" X-Firefox-Spdy: h2 --- Additional Info --- Magic: Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data Size: 15744 Md5: 15d9f621c3bd1599f0169dcf0bd5e63e Sha1: 7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52 Sha256: f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615
GET /wp-content/uploads/elementor/thumbs/argent-pf1an47eorz31pr9v88zk2rmpvf9oi6z90patzarek.jpg HTTP/1.1 Host: winnerinvestgroup.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://winnerinvestgroup.com/	URL: winnerinvestgroup.com/wp-content/uploads/elementor/thum (...) FQDN: winnerinvestgroup.com IP: 162.241.253.159 HASH: 6d32ecb44584a3ea6a570aa36dbc0459ca50bbbb0ee1450ca7b84de29539c65e 162.241.253.159 HTTP/1.1 200 OK Content-Type: image/jpeg Date: Wed, 11 Jan 2023 08:05:02 GMT Server: Apache Last-Modified: Wed, 30 Mar 2022 11:51:52 GMT Accept-Ranges: bytes Content-Length: 1304 host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ== Keep-Alive: timeout=5, max=61 Connection: Keep-Alive --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 70x70, components 3\012- data Size: 1304 Md5: 12df6a387b03c3414970564b7dc17a08 Sha1: 27f8be48df8845bb49fbf1ca992f2dace72200bb Sha256: 6d32ecb44584a3ea6a570aa36dbc0459ca50bbbb0ee1450ca7b84de29539c65e Alerts: Blocklists: - openphish: Crypto/Wallet
GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 HTTP/1.1 Host: fonts.gstatic.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Origin: http://winnerinvestgroup.com Connection: keep-alive Referer: https://fonts.googleapis.com/ Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	URL: fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4 (...) FQDN: fonts.gstatic.com IP: 142.250.74.35 HASH: f5aebdfea35d1e7656ef4acc5db1f243209755ae3300943ef8fc6280f363c860 142.250.74.35 HTTP/2 200 OK content-type: font/woff2 accept-ranges: bytes access-control-allow-origin: * content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="apps-themes" report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]} timing-allow-origin: * content-length: 15860 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Fri, 06 Jan 2023 13:33:13 GMT expires: Sat, 06 Jan 2024 13:33:13 GMT cache-control: public, max-age=31536000 age: 412309 last-modified: Wed, 11 May 2022 19:24:42 GMT alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" X-Firefox-Spdy: h2 --- Additional Info --- Magic: Web Open Font Format (Version 2), TrueType, length 15860, version 1.0\012- data Size: 15860 Md5: e9f5aaf547f165386cd313b995dddd8e Sha1: acdef5603c2387b0e5bffd744b679a24a8bc1968 Sha256: f5aebdfea35d1e7656ef4acc5db1f243209755ae3300943ef8fc6280f363c860
GET /s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1 Host: fonts.gstatic.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Origin: http://winnerinvestgroup.com Connection: keep-alive Referer: https://fonts.googleapis.com/ Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	URL: fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4 (...) FQDN: fonts.gstatic.com IP: 142.250.74.35 HASH: b019538234514166ec7665359d097403358f8a4c991901983922fb4d56989f1e 142.250.74.35 HTTP/2 200 OK content-type: font/woff2 accept-ranges: bytes access-control-allow-origin: * content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="apps-themes" report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]} timing-allow-origin: * content-length: 15920 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Wed, 11 Jan 2023 07:51:59 GMT expires: Thu, 11 Jan 2024 07:51:59 GMT cache-control: public, max-age=31536000 last-modified: Wed, 11 May 2022 19:24:45 GMT age: 783 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" X-Firefox-Spdy: h2 --- Additional Info --- Magic: Web Open Font Format (Version 2), TrueType, length 15920, version 1.0\012- data Size: 15920 Md5: 3a44e06eb954b96aa043227f3534189d Sha1: 23cef6993ddb2b2979e8e7647fc3763694e2ba7d Sha256: b019538234514166ec7665359d097403358f8a4c991901983922fb4d56989f1e
POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: ocsp.pki.goog/gts1c3 FQDN: ocsp.pki.goog IP: 142.250.74.131 HASH: 8c0178a28c92e029ad04c5dbb4b8515117303e64cb3df9f3902a10f151ee1aab 142.250.74.131 HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Wed, 11 Jan 2023 08:05:02 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN --- Additional Info --- Magic: data Size: 471 Md5: 9a4ba4ab27cd47ead09d38283f795198 Sha1: cf1d1e13fa427879530cb912e495012a42312b7d Sha256: 8c0178a28c92e029ad04c5dbb4b8515117303e64cb3df9f3902a10f151ee1aab
GET /wp-content/plugins/contact-form-7/includes/js/index5697.js?ver=5.5.3 HTTP/1.1 Host: winnerinvestgroup.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://winnerinvestgroup.com/	URL: winnerinvestgroup.com/wp-content/plugins/contact-form-7 (...) FQDN: winnerinvestgroup.com IP: 162.241.253.159 HASH: 769e8ab745a0fe4bf811036e75a8630e38c50a18cb3e24d539ce4a0722c7c85e 162.241.253.159 HTTP/1.1 409 Conflict Content-Type: text/html; charset=iso-8859-1 Date: Wed, 11 Jan 2023 08:05:02 GMT Server: Apache Content-Length: 83 Keep-Alive: timeout=5, max=60 Connection: Keep-Alive --- Additional Info --- Magic: HTML document, ASCII text, with no line terminators Size: 83 Md5: 26267cd8990f15d3bbea71684a6d5995 Sha1: ac3b38cf3fe0e112bb6aeb7e05226b7133575d93 Sha256: 769e8ab745a0fe4bf811036e75a8630e38c50a18cb3e24d539ce4a0722c7c85e
GET /connect.livechatinc.com/api/v1/script/e808420d-9257-46ce-9fae-285d34f85c2b/widget5ebf.js?lcv=33a73482-4b6e-40fc-8b17-a4949cce2d1b HTTP/1.1 Host: winnerinvestgroup.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://winnerinvestgroup.com/	URL: winnerinvestgroup.com/connect.livechatinc.com/api/v1/sc (...) FQDN: winnerinvestgroup.com IP: 162.241.253.159 HASH: d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3 162.241.253.159 HTTP/1.1 404 Not Found Content-Type: text/html; charset=iso-8859-1 Date: Wed, 11 Jan 2023 08:05:02 GMT Server: Apache Content-Length: 315 Keep-Alive: timeout=5, max=71 Connection: Keep-Alive --- Additional Info --- Magic: HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text Size: 315 Md5: a34ac19f4afae63adc5d2f7bc970c07f Sha1: a82190fc530c265aa40a045c21770d967f4767b8 Sha256: d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3
GET /wp-content/uploads/2021/10/ethereum-foundation.png HTTP/1.1 Host: winnerinvestgroup.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://winnerinvestgroup.com/	URL: winnerinvestgroup.com/wp-content/uploads/2021/10/ethere (...) FQDN: winnerinvestgroup.com IP: 162.241.253.159 HASH: 091f983d60a974aed32480ebabc5b1be40ee4fd37ae4891535e6ca1add80727d 162.241.253.159 HTTP/1.1 200 OK Content-Type: image/png Date: Wed, 11 Jan 2023 08:05:02 GMT Server: Apache Last-Modified: Wed, 30 Mar 2022 11:51:52 GMT Accept-Ranges: bytes Content-Length: 19600 host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ== Keep-Alive: timeout=5, max=70 Connection: Keep-Alive --- Additional Info --- Magic: PNG image data, 473 x 166, 8-bit/color RGBA, non-interlaced\012- data Size: 19600 Md5: e0a72f64e573d3bdbe482a88c31997fe Sha1: c2db6c4615db2e7305d0046154b5be634d1315a7 Sha256: 091f983d60a974aed32480ebabc5b1be40ee4fd37ae4891535e6ca1add80727d Alerts: Blocklists: - openphish: Crypto/Wallet
GET /wp-content/uploads/2021/10/walletconnect-social.png HTTP/1.1 Host: winnerinvestgroup.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://winnerinvestgroup.com/	URL: winnerinvestgroup.com/wp-content/uploads/2021/10/wallet (...) FQDN: winnerinvestgroup.com IP: 162.241.253.159 HASH: 1a0f5108cef46225811363484debf1164f0880e643789a72fae27c132c154c4a 162.241.253.159 HTTP/1.1 200 OK Content-Type: image/png Date: Wed, 11 Jan 2023 08:05:02 GMT Server: Apache Last-Modified: Wed, 30 Mar 2022 11:51:52 GMT Accept-Ranges: bytes Content-Length: 118312 host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ== Keep-Alive: timeout=5, max=61 Connection: Keep-Alive --- Additional Info --- Magic: PNG image data, 726 x 240, 8-bit/color RGBA, non-interlaced\012- data Size: 118312 Md5: 19006a455d235265e21df2178ad38154 Sha1: b86c4db7c37b90b1d906344dfe91184beb038d1b Sha256: 1a0f5108cef46225811363484debf1164f0880e643789a72fae27c132c154c4a Alerts: Blocklists: - openphish: Crypto/Wallet
GET /wp-content/uploads/2021/10/gitcoin-grants-1024x370.png HTTP/1.1 Host: winnerinvestgroup.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://winnerinvestgroup.com/	URL: winnerinvestgroup.com/wp-content/uploads/2021/10/gitcoi (...) FQDN: winnerinvestgroup.com IP: 162.241.253.159 HASH: 1552d8ff356d29b363eca82bddfb2a468a0d9f6fac109c17cd1909e95ba869fd 162.241.253.159 HTTP/1.1 200 OK Content-Type: image/png Date: Wed, 11 Jan 2023 08:05:02 GMT Server: Apache Last-Modified: Wed, 30 Mar 2022 11:51:52 GMT Accept-Ranges: bytes Content-Length: 43842 host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ== Keep-Alive: timeout=5, max=60 Connection: Keep-Alive --- Additional Info --- Magic: PNG image data, 1024 x 370, 8-bit/color RGBA, non-interlaced\012- data Size: 43842 Md5: b89cc804f61130194346319c6a35dde7 Sha1: d555bb23d43b66b0c4a47e7430e7713764d2d733 Sha256: 1552d8ff356d29b363eca82bddfb2a468a0d9f6fac109c17cd1909e95ba869fd Alerts: Blocklists: - openphish: Crypto/Wallet
GET /wp-content/uploads/2021/10/consensys-labs-1024x369.png HTTP/1.1 Host: winnerinvestgroup.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://winnerinvestgroup.com/	URL: winnerinvestgroup.com/wp-content/uploads/2021/10/consen (...) FQDN: winnerinvestgroup.com IP: 162.241.253.159 HASH: 71cb3a738ad142ec9fb10b71ddde13bc841a89738f0526d2c6be5f9ac8cf803d 162.241.253.159 HTTP/1.1 200 OK Content-Type: image/png Date: Wed, 11 Jan 2023 08:05:02 GMT Server: Apache Upgrade: h2,h2c Connection: Upgrade, Keep-Alive Last-Modified: Wed, 30 Mar 2022 11:51:52 GMT Accept-Ranges: bytes Content-Length: 24778 host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ== Keep-Alive: timeout=5, max=75 --- Additional Info --- Magic: PNG image data, 1024 x 369, 8-bit/color RGBA, non-interlaced\012- data Size: 24778 Md5: cb039f6ff6927d09c89b11301410f602 Sha1: 0a338763c46e9739a5fd692c42da258bd822e886 Sha256: 71cb3a738ad142ec9fb10b71ddde13bc841a89738f0526d2c6be5f9ac8cf803d Alerts: Blocklists: - openphish: Crypto/Wallet
GET /wp-content/uploads/2021/10/spaces_-LJJeCjcLrr53DcT1Ml7_avatar.png HTTP/1.1 Host: winnerinvestgroup.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://winnerinvestgroup.com/	URL: winnerinvestgroup.com/wp-content/uploads/2021/10/spaces (...) FQDN: winnerinvestgroup.com IP: 162.241.253.159 HASH: 398063548241aa249f2fe8fbb4dbc43808376f14109e25e88bea1aee117b2d3b 162.241.253.159 HTTP/1.1 200 OK Content-Type: image/png Date: Wed, 11 Jan 2023 08:05:03 GMT Server: Apache Last-Modified: Wed, 30 Mar 2022 11:51:52 GMT Accept-Ranges: bytes Content-Length: 15089 host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ== Keep-Alive: timeout=5, max=70 Connection: Keep-Alive --- Additional Info --- Magic: PNG image data, 256 x 256, 8-bit/color RGBA, non-interlaced\012- data Size: 15089 Md5: 67b9c88b63853487c8aecf0786f775e8 Sha1: 405a77eb97c6d08b2f1a6a793e128a607ea2e881 Sha256: 398063548241aa249f2fe8fbb4dbc43808376f14109e25e88bea1aee117b2d3b Alerts: Blocklists: - openphish: Crypto/Wallet
GET /wp-content/uploads/2021/10/spaces_-LJJeCjcLrr53DcT1Ml7_avatar-100x100.png HTTP/1.1 Host: winnerinvestgroup.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://winnerinvestgroup.com/	URL: winnerinvestgroup.com/wp-content/uploads/2021/10/spaces (...) FQDN: winnerinvestgroup.com IP: 162.241.253.159 HASH: b9c34080dc3d97c4854b18890efd326465ec4cdb5ae3f72c832f2f6013997a1a 162.241.253.159 HTTP/1.1 200 OK Content-Type: image/png Date: Wed, 11 Jan 2023 08:05:03 GMT Server: Apache Last-Modified: Wed, 30 Mar 2022 11:51:52 GMT Accept-Ranges: bytes Content-Length: 4128 host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ== Keep-Alive: timeout=5, max=60 Connection: Keep-Alive --- Additional Info --- Magic: PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data Size: 4128 Md5: 08b14cf4e543b1e102fb9f6e52a23567 Sha1: 3c46aee2cfb2c346f8c2a7f37cd13fc3dd08ad30 Sha256: b9c34080dc3d97c4854b18890efd326465ec4cdb5ae3f72c832f2f6013997a1a Alerts: Blocklists: - openphish: Crypto/Wallet
POST /?wc-ajax=get_refreshed_fragments HTTP/1.1 Host: winnerinvestgroup.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/x-www-form-urlencoded; charset=UTF-8 X-Requested-With: XMLHttpRequest Content-Length: 18 Origin: http://winnerinvestgroup.com Connection: keep-alive Referer: http://winnerinvestgroup.com/	URL: winnerinvestgroup.com/?wc-ajax=get_refreshed_fragments FQDN: winnerinvestgroup.com IP: 162.241.253.159 HASH: 2f923635e93b164ef32d55f3a8c0d78c1be8ee0bfcafaf492a9f2a837be67124 162.241.253.159 HTTP/1.1 200 OK Content-Type: text/html Date: Wed, 11 Jan 2023 08:05:03 GMT Server: Apache Last-Modified: Thu, 17 Feb 2022 09:31:30 GMT Accept-Ranges: bytes Vary: Accept-Encoding Content-Encoding: gzip host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ== Keep-Alive: timeout=5, max=59 Connection: Keep-Alive Transfer-Encoding: chunked --- Additional Info --- Magic: HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (2356) Size: 18846 Md5: 5b02209b47b4ed1dcd27e126d3452388 Sha1: b49ea7da3c2e2c7bc8aba78d639fc82ba5b9a357 Sha256: 2f923635e93b164ef32d55f3a8c0d78c1be8ee0bfcafaf492a9f2a837be67124 Alerts: Blocklists: - openphish: Crypto/Wallet - fortinet: Phishing IDS: - ET PHISHING Possible Phish - Mirrored Website Comment Observed
GET /css?family=Roboto%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto+Slab%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=auto&ver=5.8.2 HTTP/1.1 Host: fonts.googleapis.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: http://winnerinvestgroup.com/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: fonts.googleapis.com/css?family=Roboto%3A100%2C100itali (...) FQDN: fonts.googleapis.com IP: 142.250.74.74 142.250.74.74 HTTP/2 200 OK content-type: text/css; charset=utf-8 access-control-allow-origin: * timing-allow-origin: * link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin strict-transport-security: max-age=31536000 expires: Wed, 11 Jan 2023 08:05:00 GMT date: Wed, 11 Jan 2023 08:05:00 GMT cache-control: private, max-age=86400 cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin-allow-popups content-encoding: gzip server: ESF x-xss-protection: 0 x-frame-options: SAMEORIGIN x-content-type-options: nosniff alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" X-Firefox-Spdy: h2 --- Additional Info ---
GET /css?family=Open+Sans%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CPoppins%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&subset=latin%2Clatin-ext&ver=1.0.0 HTTP/1.1 Host: fonts.googleapis.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: http://winnerinvestgroup.com/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: fonts.googleapis.com/css?family=Open+Sans%3A100%2C100it (...) FQDN: fonts.googleapis.com IP: 142.250.74.74 142.250.74.74 HTTP/2 200 OK content-type: text/css; charset=utf-8 access-control-allow-origin: * timing-allow-origin: * link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin strict-transport-security: max-age=31536000 expires: Wed, 11 Jan 2023 08:05:00 GMT date: Wed, 11 Jan 2023 08:05:00 GMT cache-control: private, max-age=86400 cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin-allow-popups content-encoding: gzip server: ESF x-xss-protection: 0 x-frame-options: SAMEORIGIN x-content-type-options: nosniff alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" X-Firefox-Spdy: h2 --- Additional Info ---

URL	winnerinvestgroup.com/
IP	162.241.253.159 (United States)
ASN	#46606 UNIFIEDLAYER-AS-1
UserAgent	Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Referer
Report completed	2023-01-11 08:05:11 UTC
Status	Loading report..
IDS alerts	2
Blocklist alert	112
urlquery alerts	No alerts detected
Tags	None

Overview

Domain Summary (10)

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Blocklists

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

Files

No files detected

Recent reports on same IP/ASN/Domain/Screenshot

Last 3 reports on IP: 162.241.253.159

Last 5 reports on ASN: UNIFIEDLAYER-AS-1

Last 3 reports on domain: winnerinvestgroup.com

Last 5 reports with similar screenshot

JavaScript

Executed Scripts (54)

Executed Evals (0)

Executed Writes (0)

HTTP Transactions (121)

Overview

Domain Summary (10)

Network Intrusion Detection Systemsinfo

Suricata /w Emerging Threats Pro

Blocklists

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

Files

No files detected

Recent reports on same IP/ASN/Domain/Screenshot

Last 3 reports on IP: 162.241.253.159

Last 5 reports on ASN: UNIFIEDLAYER-AS-1

Last 3 reports on domain: winnerinvestgroup.com

Last 5 reports with similar screenshot

JavaScript

Executed Scripts (54)

Executed Evals (0)

Executed Writes (0)

HTTP Transactions (121)

Network Intrusion Detection Systems