{"report_id":"e8f2eebc-4d94-451a-8435-507e809a00e7","version":6,"status":"done","tags":[],"date":"2026-03-24T10:57:09Z","url":{"schema":"https","addr":"winidnvip5.com","fqdn":"winidnvip5.com","domain":"winidnvip5.com","tld":"com"},"ip":{"addr":"52.84.50.85","port":0,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"final":{"url":{"schema":"https","addr":"winidnvip5.com/","fqdn":"winidnvip5.com","domain":"winidnvip5.com","tld":"com"},"title":"Bergabunglah dalam Winidnbet!","dom":{"size":0,"mime_type":"text/plain; charset=utf-8","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","dom_hash":"domhash1f07f384c75181c66badb60ab1ec770b","first_seen":"","last_seen":"","times_seen":0,"resource_available":false,"data":null}},"submit":{"url":{"schema":"https","addr":"winidnvip5.com","fqdn":"winidnvip5.com","domain":"winidnvip5.com","tld":"com"},"ip":{"addr":"52.84.50.85","port":0,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2027-04-28T10:57:09Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":0}},"detection":{"ids":null,"analyzer":null,"urlquery":null},"summary":[{"fqdn":"winidnvip5.com","ip":{"addr":"108.157.229.25","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"domain_registered":"2025-07-11","domain_rank":0,"first_seen":"2025-09-01T17:21:30.326613Z","last_seen":"2025-09-01T17:21:30.326613Z","alert_count":0,"request_count":37,"received_data":1072880,"sent_data":16143,"comment":"","tags":null,"fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"OpenResty","description":"OpenResty is a web platform based on nginx which can run Lua scripts using its LuaJIT engine.","website":"https://openresty.org","common_platform_enumeration":"","icon":"OpenResty.svg","categories":["Web servers"]},{"name":"jQuery","description":"jQuery is a JavaScript library which is a free, open-source software designed to simplify HTML DOM tree traversal and manipulation, as well as event handling, CSS animation, and Ajax.","website":"https://jquery.com","common_platform_enumeration":"cpe:2.3:a:jquery:jquery:*:*:*:*:*:*:*:*","icon":"jQuery.svg","categories":["JavaScript libraries"]}]}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":null,"analyzer":null,"urlquery":null},"javascript":{"script":[{"url":{"schema":"https","addr":"winidnvip5.com/src/js/index.js?t=2342342","fqdn":"winidnvip5.com","domain":"winidnvip5.com","tld":"com"},"ip":{"addr":"108.157.229.25","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"cafe725380e64a3b8278ff03a94be405","sha1":"74cc318288f2826fadcc3edd34769d8f74a3adbf","sha256":"f17224a209bbe393df9c088d1a22e6e7ba983d3150664e50cee9e4083a602bdc","sha512":"7206265460dd46805a4f1b8d6af1449ec4e5cdc52e3c98ea16ebe2772a59cdd8ff11a3aa37df429364692adc375a06992662cb4dae2c377a3e94f31cb6c00698","ssdeep":"","tlshash":"6041429ef606325e63a96b6c567f400cfcba94636a09c541f19de8c06f309386367dec","size":2203,"data":"","first_seen":"2025-04-20T23:31:04.083847Z","last_seen":"2026-06-08T08:50:58.947207Z","times_seen":163,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"winidnvip5.com/src/js/index.umd.js?t=1232","fqdn":"winidnvip5.com","domain":"winidnvip5.com","tld":"com"},"ip":{"addr":"108.157.229.25","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"76d0bacef2bc8e43607399918498e56d","sha1":"11a1c9f5073a796597194d052ef8e0451755c776","sha256":"072807b11c292ca0a47baf3b2d2f160edb45e3769f5810de5fc7342bee2709a2","sha512":"a538627f470402b582d6c9abe0821b7134658857c1e55c0a8baed23b7a3663642a5b8d8ef5b8037b19708c86742a74f34d205543e80d0acb763429ba61e46425","ssdeep":"192:1K99PYDBZ/vYQ+BRd6n7jRKBcjlz/Xv8GXoSTwx7HfzG+l2kj01qxCCv4A1HoYgN:g99PgBd+3d+UFRNv3NoY3i4NY","tlshash":"1862649d8d9361a215b7b374cf2e6209f73a46730214c601b95ce7949f7081983beeec","size":14827,"data":"","first_seen":"2025-04-20T23:31:04.063636Z","last_seen":"2026-06-08T08:50:58.940128Z","times_seen":164,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"winidnvip5.com/src/js/fingerprintjs.js","fqdn":"winidnvip5.com","domain":"winidnvip5.com","tld":"com"},"ip":{"addr":"108.157.229.25","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"1c1801c5ffbc78909042b832a3d3d00e","sha1":"d4562702d8960d7d5211d18ea9d022302e0901b2","sha256":"a121a1f4cde1917bbc9cda61fedea60cb8de8d86c8841c1485ea98c69bcbfdef","sha512":"b6265668ca292b2bd3399fecb47a14788fdc4b5e2b6cd3a7fc42e649ae1b1f707788cc15a033a18092555a3094b135beea191a2d6b38c8496b4cd356664e9472","ssdeep":"384:ygxcWzK90doKKEEFXAmKvo8cKm/Hf6cKC3WQKRHKVYLwMzKiDCmRKN6OKt5+pCq9:yjwB50v49Tc9NwlJV6dzWdddho","tlshash":"e80317d8b3c3b06d627368ba457f6006b23e7d51641e8842d427c5c17ca8e5a923bfbd","size":39873,"data":"","first_seen":"2024-01-31T14:24:57Z","last_seen":"2026-06-08T08:50:58.941057Z","times_seen":450,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"winidnvip5.com/","fqdn":"winidnvip5.com","domain":"winidnvip5.com","tld":"com"},"ip":{"addr":"108.157.229.25","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":true,"md5":"5d483b978ba3b8599d7428d55f5b699b","sha1":"71efaf9e14cbcc189dc60baae2650c5a12059678","sha256":"da08b5918c7ef0cccd9f2d6b5663695ab3cce651cb4c76a2ed818b5b364aca80","sha512":"848297469904f687bf2633528210b8abcdf7d49a5aa6b438db2dcca7651695bb8fb686793b6171ddf4bc8862e39b1d03ce0923a0474fac6752dda5b38c17856d","ssdeep":"","tlshash":"5341f12765d640b00e8f35e9979e934d3832f04f3942d6147d0c53a0af21776d06abe6","size":2231,"data":"","first_seen":"2025-04-20T23:31:04.114519Z","last_seen":"2026-05-27T01:43:41.652081Z","times_seen":66,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"winidnvip5.com/src/js/jquery.min.js","fqdn":"winidnvip5.com","domain":"winidnvip5.com","tld":"com"},"ip":{"addr":"108.157.229.25","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"b61aa6e2d68d21b3546b5b418bf0e9c3","sha1":"9c1398f0de4c869dacb1c9ab1a8cc327f5421ff7","sha256":"f36844906ad2309877aae3121b87fb15b9e09803cb4c333adc7e1e35ac92e14b","sha512":"5882735d9a0239c5c63c5c87b81618e3c8dc09d7d743c3444c535b9547b9b65defa509d7804552c581cb84b61dd1225e2add5dca6b120868ec201fa979504f4b","ssdeep":"1536:/jExXUqrnxDjoXEZxkMV4SYSt0zvDD6ip3h8cApwEjOPrBeU6QLiTFbc0QlQvaks:/Yh8eip3huuf6IidlrvakdtQ47GK8","tlshash":"3193f9ddb2c6702257a720ba007f510bf236199d6c4d8450f265d8e9bcb8a4e827bf7d","size":89478,"data":"","first_seen":"2023-03-07T01:03:09Z","last_seen":"2026-06-13T16:10:07.550176Z","times_seen":16855,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":null,"console":null},"http":[{"url":{"schema":"https","addr":"winidnvip5.com/06Starlight_Princess.png","fqdn":"winidnvip5.com","domain":"winidnvip5.com","tld":"com"},"ip":{"addr":"108.157.229.25","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://winidnvip5.com/","date":"2026-03-24T10:56:47.898Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"winidnnet11.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M03","organization":"Amazon"},"validity":{"start":"Wed, 03 Sep 2025 00:00:00 GMT","end":"Fri, 02 Oct 2026 23:59:59 GMT"},"fingerprint":{"sha1":"69:95:80:C1:56:06:77:F2:B3:36:67:CC:BA:CE:88:25:6E:BC:BA:E5","sha256":"92:E5:9D:F8:B5:17:11:43:33:06:66:75:28:B9:3D:54:9A:3A:4E:06:B2:CD:C0:05:C4:A9:E9:9C:3C:C1:88:52"}}},"request":{"raw":"GET /06Starlight_Princess.png HTTP/1.1\r\nHost: winidnvip5.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://winidnvip5.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: image/png\r\ncontent-length: 44425\r\nserver: openresty\r\ndate: Sun, 22 Mar 2026 22:42:46 GMT\r\nlast-modified: Tue, 01 Apr 2025 02:39:40 GMT\r\naccept-ranges: bytes\r\netag: \"67eb51ec-ad89\"\r\nexpires: Tue, 21 Apr 2026 22:42:46 GMT\r\ncache-control: max-age=2592000, public, max-age=86400, must-revalidate, no-transform\r\nx-cache: Hit from cloudfront\r\nvia: 1.1 a1883601a786b7317faec0d94ef154f2.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: ARN56-P2\r\nx-amz-cf-id: FmI2pFDK6YxhzZqY0cr9nd6pYBngigizStoO7eiGctGhtAYpfIVW1Q==\r\nage: 130441\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"OpenResty","description":"OpenResty is a web platform based on nginx which can run Lua scripts using its LuaJIT engine.","website":"https://openresty.org","common_platform_enumeration":"","icon":"OpenResty.svg","categories":["Web servers"]}],"data":{"size":44425,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 330 x 330, 8-bit colormap, non-interlaced","md5":"7be900043ef8675f251128aae6713ed0","sha1":"58ccb3525bca501bc5caca2166cbff6fa9d13308","sha256":"aebcb2f85c66b9dc6761a1b66dbdb62513bf1ec8e7b2fd0467671886dee85b20","sha512":"c16bf7631c021bc09a77ad8d53e516fc00e033314a87aa6c72288cd877f5cb8e41d4381c573d30ba51fa4fc863a47163f4cd4084fccd83aae0f3018f07e26ff4","ssdeep":"768:+0FgoQLMuQuyzfgzCWmSf3QkvU9nhGxd96Filvv0pwwe:+0ULMuXyzfgzC7iQkm0xd96+viwwe","tlshash":"5f13f12aecf5c1e85386cd32856ec65f1a99305f665e45b8781c8f0efca533672e210b","first_seen":"2025-04-20T23:31:04.085475Z","last_seen":"2026-05-27T01:43:41.647942Z","times_seen":74,"resource_available":false,"data":null}},"time_used":46,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":38,"receive":8,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"winidnvip5.com/H51.jpg","fqdn":"winidnvip5.com","domain":"winidnvip5.com","tld":"com"},"ip":{"addr":"108.157.229.25","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://winidnvip5.com/","date":"2026-03-24T10:56:48.290Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"winidnnet11.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M03","organization":"Amazon"},"validity":{"start":"Wed, 03 Sep 2025 00:00:00 GMT","end":"Fri, 02 Oct 2026 23:59:59 GMT"},"fingerprint":{"sha1":"69:95:80:C1:56:06:77:F2:B3:36:67:CC:BA:CE:88:25:6E:BC:BA:E5","sha256":"92:E5:9D:F8:B5:17:11:43:33:06:66:75:28:B9:3D:54:9A:3A:4E:06:B2:CD:C0:05:C4:A9:E9:9C:3C:C1:88:52"}}},"request":{"raw":"GET /H51.jpg HTTP/1.1\r\nHost: winidnvip5.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://winidnvip5.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: image/jpeg\r\ncontent-length: 196670\r\nserver: openresty\r\ndate: Sun, 22 Mar 2026 22:42:46 GMT\r\nlast-modified: Wed, 02 Apr 2025 02:59:48 GMT\r\naccept-ranges: bytes\r\netag: \"67eca824-3003e\"\r\nexpires: Tue, 21 Apr 2026 22:42:46 GMT\r\ncache-control: max-age=2592000, public, max-age=86400, must-revalidate, no-transform\r\nx-cache: Hit from cloudfront\r\nvia: 1.1 a1883601a786b7317faec0d94ef154f2.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: ARN56-P2\r\nx-amz-cf-id: 0QmAml1S4otXo1J-xw_-r-8JsOGIXTFc8RUJHJOh7k0NsLyeYJU-og==\r\nage: 130442\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"OpenResty","description":"OpenResty is a web platform based on nginx which can run Lua scripts using its LuaJIT engine.","website":"https://openresty.org","common_platform_enumeration":"","icon":"OpenResty.svg","categories":["Web servers"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":196670,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1080x3000, components 3","md5":"deacf84ed7a991c795eaf34ae938e28a","sha1":"94443d33360fd6e0c8efdf93174611307ef836f4","sha256":"164099b46403dbce0be9b47247b8b559d859c72af8aa814726fcd946ac52ac87","sha512":"08ca9b16ad5f75aae951071e48c6beac72a609d9c9ad8abbfde5b1582e7ad11a59435ea0a8c2ec4ed9f1a5df8c0e85769de6e7145b9d2f7ace669c2a5a17f58f","ssdeep":"6144:eDFYnOeVagAGHKjTeqCuG8RUAyKE/XPTK8:wYOekgjOTCPCyfTJ","tlshash":"fd14136cdb884097cdad0b7e00cb276c27e96599c60f3c107e8e19b5e5e37245e78b94","first_seen":"2026-03-24T10:56:24.253394Z","last_seen":"2026-03-24T11:01:35.408422Z","times_seen":4,"resource_available":false,"data":null}},"time_used":41,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":33,"receive":8,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"winidnvip5.com/img/chat2.png","fqdn":"winidnvip5.com","domain":"winidnvip5.com","tld":"com"},"ip":{"addr":"108.157.229.25","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://winidnvip5.com/","date":"2026-03-24T10:56:47.886Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"winidnnet11.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M03","organization":"Amazon"},"validity":{"start":"Wed, 03 Sep 2025 00:00:00 GMT","end":"Fri, 02 Oct 2026 23:59:59 GMT"},"fingerprint":{"sha1":"69:95:80:C1:56:06:77:F2:B3:36:67:CC:BA:CE:88:25:6E:BC:BA:E5","sha256":"92:E5:9D:F8:B5:17:11:43:33:06:66:75:28:B9:3D:54:9A:3A:4E:06:B2:CD:C0:05:C4:A9:E9:9C:3C:C1:88:52"}}},"request":{"raw":"GET /img/chat2.png HTTP/1.1\r\nHost: winidnvip5.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://winidnvip5.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: image/png\r\ncontent-length: 4351\r\nserver: openresty\r\ndate: Sun, 22 Mar 2026 22:42:46 GMT\r\nlast-modified: Tue, 05 Aug 2025 09:16:44 GMT\r\naccept-ranges: bytes\r\netag: \"6891cbfc-10ff\"\r\nexpires: Tue, 21 Apr 2026 22:42:46 GMT\r\ncache-control: max-age=2592000, public, max-age=86400, must-revalidate, no-transform\r\nx-cache: Hit from cloudfront\r\nvia: 1.1 a1883601a786b7317faec0d94ef154f2.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: ARN56-P2\r\nx-amz-cf-id: JhB6KIL52Svh8EZQo7569yroKEgJB-1lEnFu_HRscFvlVMg5i2NY6g==\r\nage: 130441\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"OpenResty","description":"OpenResty is a web platform based on nginx which can run Lua scripts using its LuaJIT engine.","website":"https://openresty.org","common_platform_enumeration":"","icon":"OpenResty.svg","categories":["Web servers"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":4351,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 84 x 84, 8-bit colormap, non-interlaced","md5":"88cc20f65b9f1ca373d137a5a88af031","sha1":"7ecb944b95943633ac595735f10a20a69011ae6d","sha256":"65e846c784ad7281b28411899eed8f2091f5ddb71b85aa485906683889e76e78","sha512":"19bda015347fce0b326abf517bcbd5dd88bbcbe537b4f52593dbc239832540fa10576124008232c654e74c86074b33a5f590cbcff1bebfc663ee7af866717138","ssdeep":"96:sW5HDgHOzI+0Pi7GtN4ofWprmAalatUh3qwNYA2I0ZStWBJ:fgHOzIBLtNDwmfha4x2HZKCJ","tlshash":"07915db2be72a4d0dfcd83f6424a087e55f98aa31b74df47d0bc5557c014ab60aa20c5","first_seen":"2024-08-19T15:39:49.10267Z","last_seen":"2026-06-08T08:50:58.92998Z","times_seen":349,"resource_available":false,"data":null}},"time_used":72,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":72,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"winidnvip5.com/100.png","fqdn":"winidnvip5.com","domain":"winidnvip5.com","tld":"com"},"ip":{"addr":"108.157.229.25","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://winidnvip5.com/","date":"2026-03-24T10:56:47.889Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"winidnnet11.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M03","organization":"Amazon"},"validity":{"start":"Wed, 03 Sep 2025 00:00:00 GMT","end":"Fri, 02 Oct 2026 23:59:59 GMT"},"fingerprint":{"sha1":"69:95:80:C1:56:06:77:F2:B3:36:67:CC:BA:CE:88:25:6E:BC:BA:E5","sha256":"92:E5:9D:F8:B5:17:11:43:33:06:66:75:28:B9:3D:54:9A:3A:4E:06:B2:CD:C0:05:C4:A9:E9:9C:3C:C1:88:52"}}},"request":{"raw":"GET /100.png HTTP/1.1\r\nHost: winidnvip5.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://winidnvip5.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: image/png\r\ncontent-length: 7178\r\nserver: openresty\r\ndate: Sun, 22 Mar 2026 22:42:46 GMT\r\nlast-modified: Wed, 12 Feb 2025 01:41:24 GMT\r\naccept-ranges: bytes\r\netag: \"67abfc44-1c0a\"\r\nexpires: Tue, 21 Apr 2026 22:42:46 GMT\r\ncache-control: max-age=2592000, public, max-age=86400, must-revalidate, no-transform\r\nx-cache: Hit from cloudfront\r\nvia: 1.1 a1883601a786b7317faec0d94ef154f2.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: ARN56-P2\r\nx-amz-cf-id: PolQuZUc26TmQRVKurJR21LV4svaLD5HmBYGghM9CP5qnVrzLw0s2w==\r\nage: 130441\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"OpenResty","description":"OpenResty is a web platform based on nginx which can run Lua scripts using its LuaJIT engine.","website":"https://openresty.org","common_platform_enumeration":"","icon":"OpenResty.svg","categories":["Web servers"]}],"data":{"size":7178,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 120 x 108, 8-bit colormap, non-interlaced","md5":"abce09b44a1c88830ea7958ff932fe2e","sha1":"01c230787c8b48d605eb4d0d5e05e96f1fa3f21d","sha256":"e7c25ae4ac4a86f76b50fcfc14aa358878eb38c40b01818bcea6c63e8fa39cbe","sha512":"1a6760c04e1b4dac42f128b34f2098cbf6f150aa570a697cc51800a4204c6c165c05efbeb527748376396d7ff399237e9834495c57c4b5d468735b102d4bdf4c","ssdeep":"192:VYB85eg8JIafQ4Qq44bpYnZw4jJS6RtCX1cEeuQUoyHdf:iRg8JIao4a4uZwCJfRt0hYyh","tlshash":"5de18ed4e4a74a46d1611da7ae2ac2f978ae414ca0203e754aa1e5c7ca4760003fe76d","first_seen":"2025-04-20T23:31:04.089243Z","last_seen":"2026-06-08T08:50:58.948272Z","times_seen":129,"resource_available":false,"data":null}},"time_used":35,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":35,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"winidnvip5.com/1rp.png","fqdn":"winidnvip5.com","domain":"winidnvip5.com","tld":"com"},"ip":{"addr":"108.157.229.25","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://winidnvip5.com/","date":"2026-03-24T10:56:47.903Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"winidnnet11.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M03","organization":"Amazon"},"validity":{"start":"Wed, 03 Sep 2025 00:00:00 GMT","end":"Fri, 02 Oct 2026 23:59:59 GMT"},"fingerprint":{"sha1":"69:95:80:C1:56:06:77:F2:B3:36:67:CC:BA:CE:88:25:6E:BC:BA:E5","sha256":"92:E5:9D:F8:B5:17:11:43:33:06:66:75:28:B9:3D:54:9A:3A:4E:06:B2:CD:C0:05:C4:A9:E9:9C:3C:C1:88:52"}}},"request":{"raw":"GET /1rp.png HTTP/1.1\r\nHost: winidnvip5.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://winidnvip5.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: image/png\r\ncontent-length: 6099\r\nserver: openresty\r\ndate: Sun, 22 Mar 2026 22:42:47 GMT\r\nlast-modified: Tue, 01 Apr 2025 02:39:40 GMT\r\naccept-ranges: bytes\r\netag: \"67eb51ec-17d3\"\r\nexpires: Tue, 21 Apr 2026 22:42:47 GMT\r\ncache-control: max-age=2592000, public, max-age=86400, must-revalidate, no-transform\r\nx-cache: Hit from cloudfront\r\nvia: 1.1 a1883601a786b7317faec0d94ef154f2.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: ARN56-P2\r\nx-amz-cf-id: i-0C-r3Hur-st6ApKMkf8cRIRZjJmna9EEIGxcMf5xIU2Kohb52UOQ==\r\nage: 130440\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"OpenResty","description":"OpenResty is a web platform based on nginx which can run Lua scripts using its LuaJIT engine.","website":"https://openresty.org","common_platform_enumeration":"","icon":"OpenResty.svg","categories":["Web servers"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":6099,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 150 x 150, 8-bit/color RGBA, non-interlaced","md5":"38717eda2b82cd05dacc865e24adf291","sha1":"2f17008f5a822a2fc75fe26341dc17b17b0416bc","sha256":"4e3a2f8f856e4b592fce22cc53acb312cc3877519b9a6ccfb20193d9af6c9e77","sha512":"79b56d71a5deed0055ca69eaa166a998055440dec5cb821291c2113c9ee84fbd9a9ec41976dc02847cace531b0858ed3d26c1145f7b02a5a0ee54460a15760a0","ssdeep":"96:g2j4xIUwK62NMQZz4L+Tt5mIpWx17blrvb+Zd4F1u1Da2keKN:kxJtj6ibmIpWx17blrvsKu1DCeKN","tlshash":"58c18feb85a9a58266c5f35102fd501f4e9702018af0b0afc52a98e5fffd1b54c710f2","first_seen":"2025-04-20T23:31:04.108479Z","last_seen":"2026-05-27T01:43:41.635547Z","times_seen":70,"resource_available":false,"data":null}},"time_used":45,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":44,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"winidnvip5.com/src/js/jquery.min.js","fqdn":"winidnvip5.com","domain":"winidnvip5.com","tld":"com"},"ip":{"addr":"108.157.229.25","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://winidnvip5.com/","date":"2026-03-24T10:56:47.876Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"winidnnet11.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M03","organization":"Amazon"},"validity":{"start":"Wed, 03 Sep 2025 00:00:00 GMT","end":"Fri, 02 Oct 2026 23:59:59 GMT"},"fingerprint":{"sha1":"69:95:80:C1:56:06:77:F2:B3:36:67:CC:BA:CE:88:25:6E:BC:BA:E5","sha256":"92:E5:9D:F8:B5:17:11:43:33:06:66:75:28:B9:3D:54:9A:3A:4E:06:B2:CD:C0:05:C4:A9:E9:9C:3C:C1:88:52"}}},"request":{"raw":"GET /src/js/jquery.min.js HTTP/1.1\r\nHost: winidnvip5.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://winidnvip5.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: application/javascript\r\nserver: openresty\r\ndate: Sun, 22 Mar 2026 11:35:27 GMT\r\ncontent-encoding: gzip\r\nlast-modified: Tue, 01 Apr 2025 02:39:40 GMT\r\netag: W/\"67eb51ec-15d86\"\r\naccess-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization\r\naccess-control-allow-origin: *\r\naccess-control-allow-methods: GET, POST, OPTIONS\r\nvary: Accept-Encoding\r\nx-cache: Hit from cloudfront\r\nvia: 1.1 a1883601a786b7317faec0d94ef154f2.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: ARN56-P2\r\nx-amz-cf-id: xjaT791YRDZobog6XRTuIsdEdHWq6Os_pzeVkHXKdLw25tvR0_rr_Q==\r\nage: 170480\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"OpenResty","description":"OpenResty is a web platform based on nginx which can run Lua scripts using its LuaJIT engine.","website":"https://openresty.org","common_platform_enumeration":"","icon":"OpenResty.svg","categories":["Web servers"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":89478,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (65450), with CRLF line terminators","md5":"b61aa6e2d68d21b3546b5b418bf0e9c3","sha1":"9c1398f0de4c869dacb1c9ab1a8cc327f5421ff7","sha256":"f36844906ad2309877aae3121b87fb15b9e09803cb4c333adc7e1e35ac92e14b","sha512":"5882735d9a0239c5c63c5c87b81618e3c8dc09d7d743c3444c535b9547b9b65defa509d7804552c581cb84b61dd1225e2add5dca6b120868ec201fa979504f4b","ssdeep":"1536:/jExXUqrnxDjoXEZxkMV4SYSt0zvDD6ip3h8cApwEjOPrBeU6QLiTFbc0QlQvaks:/Yh8eip3huuf6IidlrvakdtQ47GK8","tlshash":"3193f9ddb2c6702257a720ba007f510bf236199d6c4d8450f265d8e9bcb8a4e827bf7d","first_seen":"2023-03-07T01:03:09Z","last_seen":"2026-06-13T16:10:07.550176Z","times_seen":16855,"resource_available":true,"data":null}},"time_used":31,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":31,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"winidnvip5.com/heitao.png","fqdn":"winidnvip5.com","domain":"winidnvip5.com","tld":"com"},"ip":{"addr":"108.157.229.25","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://winidnvip5.com/","date":"2026-03-24T10:56:47.902Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"winidnnet11.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M03","organization":"Amazon"},"validity":{"start":"Wed, 03 Sep 2025 00:00:00 GMT","end":"Fri, 02 Oct 2026 23:59:59 GMT"},"fingerprint":{"sha1":"69:95:80:C1:56:06:77:F2:B3:36:67:CC:BA:CE:88:25:6E:BC:BA:E5","sha256":"92:E5:9D:F8:B5:17:11:43:33:06:66:75:28:B9:3D:54:9A:3A:4E:06:B2:CD:C0:05:C4:A9:E9:9C:3C:C1:88:52"}}},"request":{"raw":"GET /heitao.png HTTP/1.1\r\nHost: winidnvip5.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://winidnvip5.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: image/png\r\ncontent-length: 6666\r\nserver: openresty\r\ndate: Sun, 22 Mar 2026 22:42:47 GMT\r\nlast-modified: Wed, 12 Feb 2025 01:41:24 GMT\r\naccept-ranges: bytes\r\netag: \"67abfc44-1a0a\"\r\nexpires: Tue, 21 Apr 2026 22:42:47 GMT\r\ncache-control: max-age=2592000, public, max-age=86400, must-revalidate, no-transform\r\nx-cache: Hit from cloudfront\r\nvia: 1.1 a1883601a786b7317faec0d94ef154f2.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: ARN56-P2\r\nx-amz-cf-id: DL1MDytu3MbfFFM0gvj8-hyqWuRtBo_cMpeegAHCydD9PIjg1knphw==\r\nage: 130440\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"OpenResty","description":"OpenResty is a web platform based on nginx which can run Lua scripts using its LuaJIT engine.","website":"https://openresty.org","common_platform_enumeration":"","icon":"OpenResty.svg","categories":["Web servers"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":6666,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 139 x 156, 8-bit colormap, non-interlaced","md5":"e9960855e64cd27ab22418a6259e81ab","sha1":"5a43109d9bf7631a9ee100d677a7cc96cffac9a5","sha256":"3e5316ce807d2c9dfae39bcc72701a0bbc4535851fe60f6765198387c130e9a6","sha512":"578e861c405b2be13d0f186e13661a73c9a01e59cb7c0a3b16010895b13ee5fb52c8cf9d5fc0bee7368c39bd2a19da2f281e77af1fd3bbb2fc7eb4b76adc8eda","ssdeep":"96:IH4w4z9nVZSjjZQGL9npslikmtCOl1Juld21V+YmDsgvZOQUXOeKsR97:eZy9/SZFLjAik3I1JukHm4cLUXT77","tlshash":"2cd17eae81a33bb4728a03d8430c47b30f7395ad6d46175a60a3a6d7ad77d180514636","first_seen":"2025-04-20T23:31:04.060569Z","last_seen":"2026-06-08T08:50:58.943838Z","times_seen":156,"resource_available":false,"data":null}},"time_used":44,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":44,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"winidnvip5.com/bottom.png","fqdn":"winidnvip5.com","domain":"winidnvip5.com","tld":"com"},"ip":{"addr":"108.157.229.25","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://winidnvip5.com/","date":"2026-03-24T10:56:48.293Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"winidnnet11.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M03","organization":"Amazon"},"validity":{"start":"Wed, 03 Sep 2025 00:00:00 GMT","end":"Fri, 02 Oct 2026 23:59:59 GMT"},"fingerprint":{"sha1":"69:95:80:C1:56:06:77:F2:B3:36:67:CC:BA:CE:88:25:6E:BC:BA:E5","sha256":"92:E5:9D:F8:B5:17:11:43:33:06:66:75:28:B9:3D:54:9A:3A:4E:06:B2:CD:C0:05:C4:A9:E9:9C:3C:C1:88:52"}}},"request":{"raw":"GET /bottom.png HTTP/1.1\r\nHost: winidnvip5.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://winidnvip5.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: image/png\r\ncontent-length: 13121\r\nserver: openresty\r\ndate: Fri, 20 Mar 2026 21:34:18 GMT\r\nlast-modified: Wed, 12 Feb 2025 01:41:24 GMT\r\naccept-ranges: bytes\r\netag: \"67abfc44-3341\"\r\nexpires: Sun, 19 Apr 2026 21:34:18 GMT\r\ncache-control: max-age=2592000, public, max-age=86400, must-revalidate, no-transform\r\nx-cache: Hit from cloudfront\r\nvia: 1.1 a1883601a786b7317faec0d94ef154f2.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: ARN56-P2\r\nx-amz-cf-id: m1C4-ZOMSTZA2Unk8jx_AxCG0OMwi0FmgKl_tBERPIeMKP51CtZ8Jw==\r\nage: 307350\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"OpenResty","description":"OpenResty is a web platform based on nginx which can run Lua scripts using its LuaJIT engine.","website":"https://openresty.org","common_platform_enumeration":"","icon":"OpenResty.svg","categories":["Web servers"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":13121,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 1080 x 259, 8-bit colormap, non-interlaced","md5":"a552e12152b1d47b2224a93d8eb34280","sha1":"bbe664570782901653e51b868309158c8d1ece5a","sha256":"e73fa38d5a880c846d22d09b6e40a5874b85b8a9765385e0559cab09fc360c9d","sha512":"c58bbbeba2b5325b80981f0f5b59f5165a1a55a5c8d4b757db8f5d2c4f1644af8016b2b90fdafb0ab5d3e17953a80ee5405170773d788f275af51bc176e642b0","ssdeep":"384:qQ+XoRfE77HiPfasaVTGBWJ3Jmj1K7AK0l:qQcoS7uPf4VphJmp","tlshash":"5e42cf2fbe9650a10f967370594027e7c722bc7e07d098cba429d4b86b66fcc44b79e1","first_seen":"2025-04-20T23:31:04.104266Z","last_seen":"2026-06-08T08:50:58.938711Z","times_seen":156,"resource_available":false,"data":null}},"time_used":32,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":32,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"winidnvip5.com/favicon.png","fqdn":"winidnvip5.com","domain":"winidnvip5.com","tld":"com"},"ip":{"addr":"108.157.229.25","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://winidnvip5.com/","date":"2026-03-24T10:56:48.586Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"winidnnet11.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M03","organization":"Amazon"},"validity":{"start":"Wed, 03 Sep 2025 00:00:00 GMT","end":"Fri, 02 Oct 2026 23:59:59 GMT"},"fingerprint":{"sha1":"69:95:80:C1:56:06:77:F2:B3:36:67:CC:BA:CE:88:25:6E:BC:BA:E5","sha256":"92:E5:9D:F8:B5:17:11:43:33:06:66:75:28:B9:3D:54:9A:3A:4E:06:B2:CD:C0:05:C4:A9:E9:9C:3C:C1:88:52"}}},"request":{"raw":"GET /favicon.png HTTP/1.1\r\nHost: winidnvip5.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://winidnvip5.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: image/png\r\ncontent-length: 3347\r\nserver: openresty\r\ndate: Tue, 24 Mar 2026 10:56:48 GMT\r\nlast-modified: Wed, 02 Apr 2025 02:59:26 GMT\r\naccept-ranges: bytes\r\netag: \"67eca80e-d13\"\r\nexpires: Thu, 23 Apr 2026 10:56:48 GMT\r\ncache-control: max-age=2592000, public, max-age=86400, must-revalidate, no-transform\r\nx-cache: Miss from cloudfront\r\nvia: 1.1 a1883601a786b7317faec0d94ef154f2.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: ARN56-P2\r\nx-amz-cf-id: VBTZHz4H8EbrjFzpQ-0UDudLK-Ub7lE0N-LF5X2axAuzPH9CO6ZoNA==\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"OpenResty","description":"OpenResty is a web platform based on nginx which can run Lua scripts using its LuaJIT engine.","website":"https://openresty.org","common_platform_enumeration":"","icon":"OpenResty.svg","categories":["Web servers"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":3347,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 60 x 60, 8-bit colormap, non-interlaced","md5":"529fe18788e6ba54f6757092e1cf1b18","sha1":"2f9b78f33bd808c9a37d49d91a02214315149c32","sha256":"7e335a2a283c0841e03d0fbe69c04522aea1aea25ec0b80c4935db8edf231cf9","sha512":"2a5a1f29984cb6772bde2b899e0319d22f06673f61bf236fd94e8cd1a09a003cf5d3d408dcb267db794002b5e2b2c5a1001b0b8db6fbf97e124439ba3f30c705","ssdeep":"","tlshash":"1f612adf87199f3bcf0a9a26a0ec14aab947810d1c77c50908c5b63d143abf56e38167","first_seen":"2026-03-24T10:56:24.201974Z","last_seen":"2026-03-24T11:01:35.4236Z","times_seen":4,"resource_available":false,"data":null}},"time_used":219,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":218,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"winidnvip5.com/03Jade_Empress.png","fqdn":"winidnvip5.com","domain":"winidnvip5.com","tld":"com"},"ip":{"addr":"108.157.229.25","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://winidnvip5.com/","date":"2026-03-24T10:56:47.895Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"winidnnet11.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M03","organization":"Amazon"},"validity":{"start":"Wed, 03 Sep 2025 00:00:00 GMT","end":"Fri, 02 Oct 2026 23:59:59 GMT"},"fingerprint":{"sha1":"69:95:80:C1:56:06:77:F2:B3:36:67:CC:BA:CE:88:25:6E:BC:BA:E5","sha256":"92:E5:9D:F8:B5:17:11:43:33:06:66:75:28:B9:3D:54:9A:3A:4E:06:B2:CD:C0:05:C4:A9:E9:9C:3C:C1:88:52"}}},"request":{"raw":"GET /03Jade_Empress.png HTTP/1.1\r\nHost: winidnvip5.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://winidnvip5.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: image/png\r\ncontent-length: 39123\r\nserver: openresty\r\ndate: Sun, 22 Mar 2026 22:42:46 GMT\r\nlast-modified: Tue, 01 Apr 2025 02:39:40 GMT\r\naccept-ranges: bytes\r\netag: \"67eb51ec-98d3\"\r\nexpires: Tue, 21 Apr 2026 22:42:46 GMT\r\ncache-control: max-age=2592000, public, max-age=86400, must-revalidate, no-transform\r\nx-cache: Hit from cloudfront\r\nvia: 1.1 a1883601a786b7317faec0d94ef154f2.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: ARN56-P2\r\nx-amz-cf-id: 8AUppj2WVL1B9I6tCLtJ8unVmDzY1KB9klF27YmfUUFxXHXTiPONjw==\r\nage: 130441\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"OpenResty","description":"OpenResty is a web platform based on nginx which can run Lua scripts using its LuaJIT engine.","website":"https://openresty.org","common_platform_enumeration":"","icon":"OpenResty.svg","categories":["Web servers"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":39123,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 330 x 330, 8-bit colormap, non-interlaced","md5":"45378ffff988f153491cfc045948892b","sha1":"9c398c453a230e86c8fd72f36f29b1646888b36d","sha256":"040b14ae80f138f8f487d0aa728586abcaeffefeca9202d8f73e7105e049b95a","sha512":"d3d57663a1a561d076c6213c4fc1a0b55ea3da590d5a1701abc82118db278e865678f466207d4bf0e6aa292c37ede140362295b8eb615ae486e19b275a63f93c","ssdeep":"768:6rWjoltWDKjyA9P1lGZSMQJSx452dIscGlthSE9Xbdmv0uEkE/7Wx/W:IC4WDKjyA9tZJ0IJGlL9Jy03kIWx/W","tlshash":"af03f147990f3364c584d72d7fb676a453a162f8eae3d1e0dc204714499ad9e3228a3d","first_seen":"2025-04-20T23:31:04.077322Z","last_seen":"2026-05-27T01:43:41.637602Z","times_seen":74,"resource_available":false,"data":null}},"time_used":46,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":41,"receive":5,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"winidnvip5.com/img/tel.png","fqdn":"winidnvip5.com","domain":"winidnvip5.com","tld":"com"},"ip":{"addr":"108.157.229.25","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://winidnvip5.com/","date":"2026-03-24T10:56:47.880Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"winidnnet11.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M03","organization":"Amazon"},"validity":{"start":"Wed, 03 Sep 2025 00:00:00 GMT","end":"Fri, 02 Oct 2026 23:59:59 GMT"},"fingerprint":{"sha1":"69:95:80:C1:56:06:77:F2:B3:36:67:CC:BA:CE:88:25:6E:BC:BA:E5","sha256":"92:E5:9D:F8:B5:17:11:43:33:06:66:75:28:B9:3D:54:9A:3A:4E:06:B2:CD:C0:05:C4:A9:E9:9C:3C:C1:88:52"}}},"request":{"raw":"GET /img/tel.png HTTP/1.1\r\nHost: winidnvip5.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://winidnvip5.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: image/png\r\ncontent-length: 4344\r\nserver: openresty\r\ndate: Sun, 22 Mar 2026 22:42:46 GMT\r\nlast-modified: Tue, 01 Apr 2025 02:39:40 GMT\r\naccept-ranges: bytes\r\netag: \"67eb51ec-10f8\"\r\nexpires: Tue, 21 Apr 2026 22:42:46 GMT\r\ncache-control: max-age=2592000, public, max-age=86400, must-revalidate, no-transform\r\nx-cache: Hit from cloudfront\r\nvia: 1.1 a1883601a786b7317faec0d94ef154f2.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: ARN56-P2\r\nx-amz-cf-id: avHZAAYjY71I86KaFwBXVU0gR-R5IvyrM5h0CdEZU_td8aN2v2WNnA==\r\nage: 130441\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"OpenResty","description":"OpenResty is a web platform based on nginx which can run Lua scripts using its LuaJIT engine.","website":"https://openresty.org","common_platform_enumeration":"","icon":"OpenResty.svg","categories":["Web servers"]}],"data":{"size":4344,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 80 x 80, 8-bit/color RGBA, non-interlaced","md5":"40da8bbf8ab01f8dc0a73dc9ec48cc91","sha1":"b39b52784dbc4ca762a53ff825e40b94547d5658","sha256":"361d179d7d58e885268ef88e9e26155af2460fd43fe4d7a26d3e07be997b7696","sha512":"8f0b3f0187956554878d4123a77180dcf8942fabc25cd3a69b64eed6f6ad7159c0dc26eb8ff3a67955d8d8e9106739919d4a989e569d685ca37107ae39b2747c","ssdeep":"96:I2FXkbWQYz/+paoTTWG6i9dXS2oOaCCBkd/r61:U8+MoTTxVXS2ozBM/Q","tlshash":"8d914b046b80f6c2d98c75290c2d066bf86a8f8464d8b2d2bcca901b56e2fa55d7fcc5","first_seen":"2024-08-19T15:39:49.107982Z","last_seen":"2026-06-08T08:50:58.928071Z","times_seen":379,"resource_available":false,"data":null}},"time_used":32,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":32,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"winidnvip5.com/getbonus.png","fqdn":"winidnvip5.com","domain":"winidnvip5.com","tld":"com"},"ip":{"addr":"108.157.229.25","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://winidnvip5.com/","date":"2026-03-24T10:56:48.294Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"winidnnet11.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M03","organization":"Amazon"},"validity":{"start":"Wed, 03 Sep 2025 00:00:00 GMT","end":"Fri, 02 Oct 2026 23:59:59 GMT"},"fingerprint":{"sha1":"69:95:80:C1:56:06:77:F2:B3:36:67:CC:BA:CE:88:25:6E:BC:BA:E5","sha256":"92:E5:9D:F8:B5:17:11:43:33:06:66:75:28:B9:3D:54:9A:3A:4E:06:B2:CD:C0:05:C4:A9:E9:9C:3C:C1:88:52"}}},"request":{"raw":"GET /getbonus.png HTTP/1.1\r\nHost: winidnvip5.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://winidnvip5.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: image/png\r\ncontent-length: 21068\r\nserver: openresty\r\ndate: Sun, 22 Mar 2026 22:42:46 GMT\r\nlast-modified: Tue, 01 Apr 2025 02:39:40 GMT\r\naccept-ranges: bytes\r\netag: \"67eb51ec-524c\"\r\nexpires: Tue, 21 Apr 2026 22:42:46 GMT\r\ncache-control: max-age=2592000, public, max-age=86400, must-revalidate, no-transform\r\nx-cache: Hit from cloudfront\r\nvia: 1.1 a1883601a786b7317faec0d94ef154f2.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: ARN56-P2\r\nx-amz-cf-id: N70bgeHvD39XTkdNFhThHB0a1aOBNqp7SBez_IGlJxR_NVaABdg2Bg==\r\nage: 130442\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"OpenResty","description":"OpenResty is a web platform based on nginx which can run Lua scripts using its LuaJIT engine.","website":"https://openresty.org","common_platform_enumeration":"","icon":"OpenResty.svg","categories":["Web servers"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":21068,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 596 x 67, 8-bit/color RGBA, non-interlaced","md5":"4f4bb1c69bad1f7e997b15da7a33499d","sha1":"617456805dfae149686f1d57004b86b5090f1f38","sha256":"8623a840f199666deecb998e173027ec1625082899fca2328bd81e350f168743","sha512":"bf867a76be687d86050f9c45e419eb2975a16097480e0f0d83ddf4da231cd3836bcc05a95e6379391a482d1533c5a560b0744fe49ead9652992a961d269776a4","ssdeep":"192:mSHIIHUCD4waX5kEb5E2oM4pV5yVU2Lac:J50wjEb5E2oM4fUWYj","tlshash":"3c923b15fcf1b66d100da2b63ad625014d3347c3d2806d48fadec92a6f21bed8c9fa56","first_seen":"2024-10-22T03:16:18.412934Z","last_seen":"2026-06-08T08:50:58.945527Z","times_seen":163,"resource_available":false,"data":null}},"time_used":41,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":39,"receive":2,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"winidnvip5.com/02Mythic_Deep.png","fqdn":"winidnvip5.com","domain":"winidnvip5.com","tld":"com"},"ip":{"addr":"108.157.229.25","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://winidnvip5.com/","date":"2026-03-24T10:56:47.894Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"winidnnet11.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M03","organization":"Amazon"},"validity":{"start":"Wed, 03 Sep 2025 00:00:00 GMT","end":"Fri, 02 Oct 2026 23:59:59 GMT"},"fingerprint":{"sha1":"69:95:80:C1:56:06:77:F2:B3:36:67:CC:BA:CE:88:25:6E:BC:BA:E5","sha256":"92:E5:9D:F8:B5:17:11:43:33:06:66:75:28:B9:3D:54:9A:3A:4E:06:B2:CD:C0:05:C4:A9:E9:9C:3C:C1:88:52"}}},"request":{"raw":"GET /02Mythic_Deep.png HTTP/1.1\r\nHost: winidnvip5.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://winidnvip5.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: image/png\r\ncontent-length: 43984\r\nserver: openresty\r\ndate: Sun, 22 Mar 2026 22:42:46 GMT\r\nlast-modified: Tue, 01 Apr 2025 02:39:40 GMT\r\naccept-ranges: bytes\r\netag: \"67eb51ec-abd0\"\r\nexpires: Tue, 21 Apr 2026 22:42:46 GMT\r\ncache-control: max-age=2592000, public, max-age=86400, must-revalidate, no-transform\r\nx-cache: Hit from cloudfront\r\nvia: 1.1 a1883601a786b7317faec0d94ef154f2.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: ARN56-P2\r\nx-amz-cf-id: Uw3OykYeWqFZrSnzjBnJFhj3vQzd31wdMAsl3knPWLaDtFK0GcVUFA==\r\nage: 130441\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"OpenResty","description":"OpenResty is a web platform based on nginx which can run Lua scripts using its LuaJIT engine.","website":"https://openresty.org","common_platform_enumeration":"","icon":"OpenResty.svg","categories":["Web servers"]}],"data":{"size":43984,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 330 x 330, 8-bit colormap, non-interlaced","md5":"0748cde5ee8aa0747113f796b57274a6","sha1":"7ba4c30f528c1305d0057abf6dcf8b8ae2bcb9e3","sha256":"923e9e89f99f756fa3bfbf3ed43d7d79aeff8893a47dbc6081b8b90d9140cc5d","sha512":"175e3763a61c512752479856e5fff318f5cb3307b782e2dba9926dd4fbfe3861a60b16a90f764ef14064d0550d6bc065abd8ae64804b3bc5a127b2794d6109b7","ssdeep":"768:tilBEf1ryVkH5WSvW3FEdkDxtnlJ+e65v9h2wcSYg+cRCGbWbg2y8O:yY1rdXvWjxh+Th9A3E+K2G","tlshash":"7013f11565786cb7931cfbb786eea6c22093be81e1fd9041badc7233ad3e9296143011","first_seen":"2025-04-20T23:31:04.076075Z","last_seen":"2026-05-27T01:43:41.637254Z","times_seen":74,"resource_available":false,"data":null}},"time_used":42,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":39,"receive":3,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"winidnvip5.com/4.png","fqdn":"winidnvip5.com","domain":"winidnvip5.com","tld":"com"},"ip":{"addr":"108.157.229.25","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://winidnvip5.com/","date":"2026-03-24T10:56:47.907Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"winidnnet11.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M03","organization":"Amazon"},"validity":{"start":"Wed, 03 Sep 2025 00:00:00 GMT","end":"Fri, 02 Oct 2026 23:59:59 GMT"},"fingerprint":{"sha1":"69:95:80:C1:56:06:77:F2:B3:36:67:CC:BA:CE:88:25:6E:BC:BA:E5","sha256":"92:E5:9D:F8:B5:17:11:43:33:06:66:75:28:B9:3D:54:9A:3A:4E:06:B2:CD:C0:05:C4:A9:E9:9C:3C:C1:88:52"}}},"request":{"raw":"GET /4.png HTTP/1.1\r\nHost: winidnvip5.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://winidnvip5.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: image/png\r\ncontent-length: 3115\r\nserver: openresty\r\ndate: Tue, 24 Mar 2026 10:56:48 GMT\r\nlast-modified: Wed, 12 Feb 2025 01:41:24 GMT\r\naccept-ranges: bytes\r\netag: \"67abfc44-c2b\"\r\nexpires: Thu, 23 Apr 2026 10:56:48 GMT\r\ncache-control: max-age=2592000, public, max-age=86400, must-revalidate, no-transform\r\nx-cache: Miss from cloudfront\r\nvia: 1.1 a1883601a786b7317faec0d94ef154f2.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: ARN56-P2\r\nx-amz-cf-id: vCsRE1Xmp-YUK6vJLoAUrU18VhGwgvxojkBxriW-Xzf6HD7ayzeKUA==\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"OpenResty","description":"OpenResty is a web platform based on nginx which can run Lua scripts using its LuaJIT engine.","website":"https://openresty.org","common_platform_enumeration":"","icon":"OpenResty.svg","categories":["Web servers"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":3115,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 151 x 150, 8-bit colormap, non-interlaced","md5":"bd0e23ffdc2f1d6c2ee020bc14cf415f","sha1":"dc3cbeefcd9f3a93f2fcb7a6c3bbe5c59b677525","sha256":"7fcabfca69924c7b23d2ebc4a5465e1d721a30fd26041b34471dbe42a5b03e91","sha512":"26f9c6095c6cbf5845736440171979a7285b64c8a6d949d8eadb7dcb911a720ea0caf6c09dfe856a23282e627114266555ecee428dda9e08bdf1e5119c4b3c88","ssdeep":"","tlshash":"66514ddff5e605dfd35fe21a5e6402368df0163162a19187d1858728ef811908fbf01b","first_seen":"2025-04-20T23:31:04.093994Z","last_seen":"2026-06-08T08:50:58.926266Z","times_seen":156,"resource_available":false,"data":null}},"time_used":409,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":408,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"winidnvip5.com/img/ins.png","fqdn":"winidnvip5.com","domain":"winidnvip5.com","tld":"com"},"ip":{"addr":"108.157.229.25","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://winidnvip5.com/","date":"2026-03-24T10:56:47.884Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"winidnnet11.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M03","organization":"Amazon"},"validity":{"start":"Wed, 03 Sep 2025 00:00:00 GMT","end":"Fri, 02 Oct 2026 23:59:59 GMT"},"fingerprint":{"sha1":"69:95:80:C1:56:06:77:F2:B3:36:67:CC:BA:CE:88:25:6E:BC:BA:E5","sha256":"92:E5:9D:F8:B5:17:11:43:33:06:66:75:28:B9:3D:54:9A:3A:4E:06:B2:CD:C0:05:C4:A9:E9:9C:3C:C1:88:52"}}},"request":{"raw":"GET /img/ins.png HTTP/1.1\r\nHost: winidnvip5.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://winidnvip5.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: image/png\r\ncontent-length: 14584\r\nserver: openresty\r\ndate: Tue, 24 Mar 2026 02:59:56 GMT\r\nlast-modified: Tue, 01 Apr 2025 02:39:40 GMT\r\naccept-ranges: bytes\r\netag: \"67eb51ec-38f8\"\r\nexpires: Thu, 23 Apr 2026 02:59:56 GMT\r\ncache-control: max-age=2592000, public, max-age=86400, must-revalidate, no-transform\r\nx-cache: Hit from cloudfront\r\nvia: 1.1 a1883601a786b7317faec0d94ef154f2.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: ARN56-P2\r\nx-amz-cf-id: 2WjsjFp-QRLpYh4vdZRT_KeOgDwV79DIFub2YcNkBu4kS50O5x52PA==\r\nage: 28611\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"OpenResty","description":"OpenResty is a web platform based on nginx which can run Lua scripts using its LuaJIT engine.","website":"https://openresty.org","common_platform_enumeration":"","icon":"OpenResty.svg","categories":["Web servers"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":14584,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 80 x 80, 8-bit/color RGBA, non-interlaced","md5":"c3a403345934098ae27ac0b24b015446","sha1":"fccad98bb0f8241e2fd674cd3b26c73ec8b48538","sha256":"eb0d8784d568bc358b6000b5f935c1c747622b364ef709d736ffbf775ce152a0","sha512":"6ec823b299c53f9cf410c12105c93d4a08e5a98553c1815e0d3ec795dc8a929c72b8f157651e515e65cea91eb88fbf33d67ccc20b36a54b467ca779c46803f3b","ssdeep":"384:AT7an5c9Kbg9ieyur2mcnWLUh8FoKw8cg9H:Ai4Ks9vfe3Kb","tlshash":"1862df35ab524c4084e5d98b22af65bac342e312cb88f0859037d51b6c20ce9d98f9fa","first_seen":"2024-08-19T15:39:49.111069Z","last_seen":"2026-06-08T08:50:58.935555Z","times_seen":100,"resource_available":false,"data":null}},"time_used":34,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":31,"receive":3,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"winidnvip5.com/midhua.png","fqdn":"winidnvip5.com","domain":"winidnvip5.com","tld":"com"},"ip":{"addr":"108.157.229.25","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://winidnvip5.com/","date":"2026-03-24T10:56:47.892Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"winidnnet11.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M03","organization":"Amazon"},"validity":{"start":"Wed, 03 Sep 2025 00:00:00 GMT","end":"Fri, 02 Oct 2026 23:59:59 GMT"},"fingerprint":{"sha1":"69:95:80:C1:56:06:77:F2:B3:36:67:CC:BA:CE:88:25:6E:BC:BA:E5","sha256":"92:E5:9D:F8:B5:17:11:43:33:06:66:75:28:B9:3D:54:9A:3A:4E:06:B2:CD:C0:05:C4:A9:E9:9C:3C:C1:88:52"}}},"request":{"raw":"GET /midhua.png HTTP/1.1\r\nHost: winidnvip5.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://winidnvip5.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: image/png\r\ncontent-length: 33640\r\nserver: openresty\r\ndate: Tue, 24 Mar 2026 02:59:56 GMT\r\nlast-modified: Tue, 01 Apr 2025 02:39:40 GMT\r\naccept-ranges: bytes\r\netag: \"67eb51ec-8368\"\r\nexpires: Thu, 23 Apr 2026 02:59:56 GMT\r\ncache-control: max-age=2592000, public, max-age=86400, must-revalidate, no-transform\r\nx-cache: Hit from cloudfront\r\nvia: 1.1 a1883601a786b7317faec0d94ef154f2.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: ARN56-P2\r\nx-amz-cf-id: U93ItlpnGVqzD9BV2EV0IdgZjtAlD5MC-DGSzKeoW5bBB5PaxU_FqA==\r\nage: 28611\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"OpenResty","description":"OpenResty is a web platform based on nginx which can run Lua scripts using its LuaJIT engine.","website":"https://openresty.org","common_platform_enumeration":"","icon":"OpenResty.svg","categories":["Web servers"]}],"data":{"size":33640,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 37 x 98, 8-bit/color RGBA, non-interlaced","md5":"063cc97cf95a24edf7cf56be0091a18c","sha1":"f3288019f74a20d33841f052418495d7dc675c18","sha256":"05455a514735b66235bf7e214082912319e2e0c08d8961d90a6054fda57b2aa9","sha512":"7985c5bf755c1812d0a8e5647064e6eaf5eda6d65cae9d85a68805f6249e178708853073daab7b92de83afb913e343e6d0931b5c7350f910126d70906be199fa","ssdeep":"384:e50wvEz5z2ozg34Ba4c6vsKjtQUm6IuU1KUOpNu:EdEtg74c6hM","tlshash":"4ce21010b7b26a17c146a3352fd2e7602732ed4a87638b0776dd8e172f4cb932d466e4","first_seen":"2024-10-22T03:16:18.332137Z","last_seen":"2026-06-08T08:50:58.942714Z","times_seen":167,"resource_available":false,"data":null}},"time_used":79,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":76,"receive":3,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"winidnvip5.com/wait_download.gif","fqdn":"winidnvip5.com","domain":"winidnvip5.com","tld":"com"},"ip":{"addr":"108.157.229.25","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://winidnvip5.com/","date":"2026-03-24T10:56:47.908Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"winidnnet11.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M03","organization":"Amazon"},"validity":{"start":"Wed, 03 Sep 2025 00:00:00 GMT","end":"Fri, 02 Oct 2026 23:59:59 GMT"},"fingerprint":{"sha1":"69:95:80:C1:56:06:77:F2:B3:36:67:CC:BA:CE:88:25:6E:BC:BA:E5","sha256":"92:E5:9D:F8:B5:17:11:43:33:06:66:75:28:B9:3D:54:9A:3A:4E:06:B2:CD:C0:05:C4:A9:E9:9C:3C:C1:88:52"}}},"request":{"raw":"GET /wait_download.gif HTTP/1.1\r\nHost: winidnvip5.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://winidnvip5.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: image/gif\r\ncontent-length: 75952\r\nserver: openresty\r\ndate: Sun, 22 Mar 2026 22:42:46 GMT\r\nlast-modified: Tue, 01 Apr 2025 02:39:40 GMT\r\naccept-ranges: bytes\r\netag: \"67eb51ec-128b0\"\r\nexpires: Tue, 21 Apr 2026 22:42:46 GMT\r\ncache-control: max-age=2592000, public, max-age=86400, must-revalidate, no-transform\r\nx-cache: Hit from cloudfront\r\nvia: 1.1 a1883601a786b7317faec0d94ef154f2.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: ARN56-P2\r\nx-amz-cf-id: xm2yKvoTSFzY5MKiNXsC5IN45cbmKCekX6FAKYZEdkdTOHMaHddocg==\r\nage: 130441\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"OpenResty","description":"OpenResty is a web platform based on nginx which can run Lua scripts using its LuaJIT engine.","website":"https://openresty.org","common_platform_enumeration":"","icon":"OpenResty.svg","categories":["Web servers"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":75952,"size_decoded":0,"mime_type":"image/gif","magic":"GIF image data, version 89a, 941 x 196","md5":"ea6ace6c68cd962eb705b845e26f3c80","sha1":"0151c7f41e0a7b93d41e52afecef068f3aa80d67","sha256":"9bdcf97e01e9c7da27f92c1afefe0f388b308d6b06a2f8d77058848f20a1f287","sha512":"05a34992da878b1e68e615578fc037b672f016e6b145c5724a756b30b172ce40ba7c12633b226fc97d789a5bcab797caa0439143aa0ade37db89fe2f1ee1548e","ssdeep":"1536:+VVqR0RKPprgYXNh4wz6Apk1RCQZDGgY4p30I4l:KVqRwKPFZXkAG1Q0D+I4l","tlshash":"7873b07e817acc81ee0a1134262d1a710daa50fcdef9ba2239c4be0dd35d519bdf0e56","first_seen":"2025-04-20T23:31:04.082439Z","last_seen":"2026-05-27T01:43:41.638102Z","times_seen":70,"resource_available":false,"data":null}},"time_used":45,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":43,"receive":2,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"winidnvip5.com/logo.png","fqdn":"winidnvip5.com","domain":"winidnvip5.com","tld":"com"},"ip":{"addr":"108.157.229.25","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://winidnvip5.com/","date":"2026-03-24T10:56:47.888Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"winidnnet11.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M03","organization":"Amazon"},"validity":{"start":"Wed, 03 Sep 2025 00:00:00 GMT","end":"Fri, 02 Oct 2026 23:59:59 GMT"},"fingerprint":{"sha1":"69:95:80:C1:56:06:77:F2:B3:36:67:CC:BA:CE:88:25:6E:BC:BA:E5","sha256":"92:E5:9D:F8:B5:17:11:43:33:06:66:75:28:B9:3D:54:9A:3A:4E:06:B2:CD:C0:05:C4:A9:E9:9C:3C:C1:88:52"}}},"request":{"raw":"GET /logo.png HTTP/1.1\r\nHost: winidnvip5.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://winidnvip5.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: image/png\r\ncontent-length: 11975\r\nserver: openresty\r\ndate: Fri, 20 Mar 2026 21:34:18 GMT\r\nlast-modified: Wed, 02 Apr 2025 02:59:27 GMT\r\naccept-ranges: bytes\r\netag: \"67eca80f-2ec7\"\r\nexpires: Sun, 19 Apr 2026 21:34:18 GMT\r\ncache-control: max-age=2592000, public, max-age=86400, must-revalidate, no-transform\r\nx-cache: Hit from cloudfront\r\nvia: 1.1 a1883601a786b7317faec0d94ef154f2.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: ARN56-P2\r\nx-amz-cf-id: 7ZMgO9gLnR_7BY0wJ8F6s3DRmC_UNlLNO6fYzeX3zU8WXfM-Co_Z4w==\r\nage: 307349\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"OpenResty","description":"OpenResty is a web platform based on nginx which can run Lua scripts using its LuaJIT engine.","website":"https://openresty.org","common_platform_enumeration":"","icon":"OpenResty.svg","categories":["Web servers"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]}],"data":{"size":11975,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 190 x 190, 8-bit colormap, non-interlaced","md5":"a2b3a954e67f245610f9d3c0e0283385","sha1":"fb555e1af595483459e7a705b771ee9e6ee35e3d","sha256":"3442eed4af56e7b5ddf2eaeac1c442d2827ac515da3507168d1654dec10b2d04","sha512":"e04c4baaaf55afc9e740b081309e60bf22a717d683ff685eec4c5081896e9653c734ef27a0b3835c17b2a4a5e79763fef85ca55060c9d5c6fdf5e3f049c318ac","ssdeep":"192:SiVqDyI1/qyA3K+mbWinTlRlDUoKDhl8FKG8lS+QPWEbH+d20f2Z+mnmMG94Q6R:SdDyIhqbXxkKoWAQl6eEb90+0mnmXSPR","tlshash":"a632d0fdf292946c9c251655cedab400658e092a49987c474c8bf3ade4af00762dc3dc","first_seen":"2026-03-24T10:56:24.222662Z","last_seen":"2026-03-24T11:01:35.407874Z","times_seen":4,"resource_available":false,"data":null}},"time_used":35,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":35,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"winidnvip5.com/01Potk.png","fqdn":"winidnvip5.com","domain":"winidnvip5.com","tld":"com"},"ip":{"addr":"108.157.229.25","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://winidnvip5.com/","date":"2026-03-24T10:56:47.893Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"winidnnet11.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M03","organization":"Amazon"},"validity":{"start":"Wed, 03 Sep 2025 00:00:00 GMT","end":"Fri, 02 Oct 2026 23:59:59 GMT"},"fingerprint":{"sha1":"69:95:80:C1:56:06:77:F2:B3:36:67:CC:BA:CE:88:25:6E:BC:BA:E5","sha256":"92:E5:9D:F8:B5:17:11:43:33:06:66:75:28:B9:3D:54:9A:3A:4E:06:B2:CD:C0:05:C4:A9:E9:9C:3C:C1:88:52"}}},"request":{"raw":"GET /01Potk.png HTTP/1.1\r\nHost: winidnvip5.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://winidnvip5.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: image/png\r\ncontent-length: 45411\r\nserver: openresty\r\ndate: Sun, 22 Mar 2026 22:42:46 GMT\r\nlast-modified: Tue, 01 Apr 2025 02:39:40 GMT\r\naccept-ranges: bytes\r\netag: \"67eb51ec-b163\"\r\nexpires: Tue, 21 Apr 2026 22:42:46 GMT\r\ncache-control: max-age=2592000, public, max-age=86400, must-revalidate, no-transform\r\nx-cache: Hit from cloudfront\r\nvia: 1.1 a1883601a786b7317faec0d94ef154f2.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: ARN56-P2\r\nx-amz-cf-id: J2mNMa-F60sd1tg_ctsfG0P6A0-tBeALhouvNq7l2Luc3y-0VELiJw==\r\nage: 130441\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"OpenResty","description":"OpenResty is a web platform based on nginx which can run Lua scripts using its LuaJIT engine.","website":"https://openresty.org","common_platform_enumeration":"","icon":"OpenResty.svg","categories":["Web servers"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":45411,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 340 x 340, 8-bit colormap, non-interlaced","md5":"95269ea7ea480b3ab677b3006018e517","sha1":"74ce1daa01dd967e82c30b9b2bc77f1d79104732","sha256":"4487c9937230829d753a9616e26d2ec0854eb11702c0c77191c43e85217c3e41","sha512":"b86dfaa3e05cb4705c4785c3f735cd020974878423efcac1c889e6504de1aa3824efbf0f45c486d62ea38d173f2b135e3cf97adf89fdd5721c61ad7173566d78","ssdeep":"768:N/994dW42fB3V1sxF2y3rPC+d1fvIC5eqsl4nSdWk14q1BswJOEPRQ:J+WPB3VubzrPFvp6Jpm","tlshash":"0c13f1fa08ee2d1ad0b177ebe116348461760463dc27fb076a621472c8519bf488f18b","first_seen":"2025-04-20T23:31:04.081143Z","last_seen":"2026-05-27T01:43:41.651024Z","times_seen":74,"resource_available":false,"data":null}},"time_used":36,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":33,"receive":3,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"winidnvip5.com/src/js/fingerprintjs.js","fqdn":"winidnvip5.com","domain":"winidnvip5.com","tld":"com"},"ip":{"addr":"108.157.229.25","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://winidnvip5.com/","date":"2026-03-24T10:56:47.922Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"winidnnet11.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M03","organization":"Amazon"},"validity":{"start":"Wed, 03 Sep 2025 00:00:00 GMT","end":"Fri, 02 Oct 2026 23:59:59 GMT"},"fingerprint":{"sha1":"69:95:80:C1:56:06:77:F2:B3:36:67:CC:BA:CE:88:25:6E:BC:BA:E5","sha256":"92:E5:9D:F8:B5:17:11:43:33:06:66:75:28:B9:3D:54:9A:3A:4E:06:B2:CD:C0:05:C4:A9:E9:9C:3C:C1:88:52"}}},"request":{"raw":"GET /src/js/fingerprintjs.js HTTP/1.1\r\nHost: winidnvip5.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://winidnvip5.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: application/javascript\r\nserver: openresty\r\ndate: Tue, 24 Mar 2026 10:56:48 GMT\r\naccess-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization\r\nlast-modified: Wed, 12 Feb 2025 01:41:24 GMT\r\ncontent-encoding: br\r\naccess-control-allow-methods: GET, POST, OPTIONS\r\naccess-control-allow-origin: *\r\netag: W/\"67abfc44-9bc1\"\r\nvary: Accept-Encoding\r\nx-cache: Miss from cloudfront\r\nvia: 1.1 a1883601a786b7317faec0d94ef154f2.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: ARN56-P2\r\nx-amz-cf-id: MuqqQOtULKc3ZlchdWLW6FL7J49iFJ6aEymsjJOUS_4O_MEGPBqFFg==\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"OpenResty","description":"OpenResty is a web platform based on nginx which can run Lua scripts using its LuaJIT engine.","website":"https://openresty.org","common_platform_enumeration":"","icon":"OpenResty.svg","categories":["Web servers"]}],"data":{"size":39873,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (39341)","md5":"1c1801c5ffbc78909042b832a3d3d00e","sha1":"d4562702d8960d7d5211d18ea9d022302e0901b2","sha256":"a121a1f4cde1917bbc9cda61fedea60cb8de8d86c8841c1485ea98c69bcbfdef","sha512":"b6265668ca292b2bd3399fecb47a14788fdc4b5e2b6cd3a7fc42e649ae1b1f707788cc15a033a18092555a3094b135beea191a2d6b38c8496b4cd356664e9472","ssdeep":"384:ygxcWzK90doKKEEFXAmKvo8cKm/Hf6cKC3WQKRHKVYLwMzKiDCmRKN6OKt5+pCq9:yjwB50v49Tc9NwlJV6dzWdddho","tlshash":"e80317d8b3c3b06d627368ba457f6006b23e7d51641e8842d427c5c17ca8e5a923bfbd","first_seen":"2024-01-31T14:24:57Z","last_seen":"2026-06-08T08:50:58.941057Z","times_seen":450,"resource_available":true,"data":null}},"time_used":428,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":428,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"winidnvip5.com/bgheader.png","fqdn":"winidnvip5.com","domain":"winidnvip5.com","tld":"com"},"ip":{"addr":"108.157.229.25","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://winidnvip5.com/","date":"2026-03-24T10:56:48.292Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"winidnnet11.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M03","organization":"Amazon"},"validity":{"start":"Wed, 03 Sep 2025 00:00:00 GMT","end":"Fri, 02 Oct 2026 23:59:59 GMT"},"fingerprint":{"sha1":"69:95:80:C1:56:06:77:F2:B3:36:67:CC:BA:CE:88:25:6E:BC:BA:E5","sha256":"92:E5:9D:F8:B5:17:11:43:33:06:66:75:28:B9:3D:54:9A:3A:4E:06:B2:CD:C0:05:C4:A9:E9:9C:3C:C1:88:52"}}},"request":{"raw":"GET /bgheader.png HTTP/1.1\r\nHost: winidnvip5.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://winidnvip5.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: image/png\r\ncontent-length: 19493\r\nserver: openresty\r\ndate: Sun, 22 Mar 2026 22:42:46 GMT\r\nlast-modified: Tue, 01 Apr 2025 02:39:40 GMT\r\naccept-ranges: bytes\r\netag: \"67eb51ec-4c25\"\r\nexpires: Tue, 21 Apr 2026 22:42:46 GMT\r\ncache-control: max-age=2592000, public, max-age=86400, must-revalidate, no-transform\r\nx-cache: Hit from cloudfront\r\nvia: 1.1 a1883601a786b7317faec0d94ef154f2.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: ARN56-P2\r\nx-amz-cf-id: GOOSApibaxDEHGawvP2hpPNxq0GpZZKKT5GB8K5JKgZ6ELI4VcpRmQ==\r\nage: 130442\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"OpenResty","description":"OpenResty is a web platform based on nginx which can run Lua scripts using its LuaJIT engine.","website":"https://openresty.org","common_platform_enumeration":"","icon":"OpenResty.svg","categories":["Web servers"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":19493,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 1 x 200, 8-bit/color RGBA, non-interlaced","md5":"9b977c0802b047b03ccc3882178e4dfa","sha1":"88ace5bb7ffe03d4b26036c2f0f600ede1aa92a6","sha256":"cf7413f6a33f48249397f03a19829fe24ffed69150647e18cc0ddfb0fd5763e4","sha512":"95d9e5a791960a18eece277e897f434fb94d778e73541954bed6e700438b681e3d39e4b1cd083f3363580672b58d3c4cdbd8d4e8c038ad55fd220e046777f2da","ssdeep":"96:TSMllcHitlIxv9vk7C1+I4wWHLihk/x1S5kEWMrxRdxNXrNXdvbyvbIvb9epZnvM:TSHIIHUCD4waK5kEr5/2om4h","tlshash":"0092f824fcf1b66d110da2b73ad625414d3307c3d681ad48b9df890eaf20bd98c9fa46","first_seen":"2024-10-22T03:16:18.392629Z","last_seen":"2026-06-08T08:50:58.932255Z","times_seen":160,"resource_available":false,"data":null}},"time_used":41,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":32,"receive":9,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"winidnvip5.com/mid.png","fqdn":"winidnvip5.com","domain":"winidnvip5.com","tld":"com"},"ip":{"addr":"108.157.229.25","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://winidnvip5.com/","date":"2026-03-24T10:56:48.293Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"winidnnet11.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M03","organization":"Amazon"},"validity":{"start":"Wed, 03 Sep 2025 00:00:00 GMT","end":"Fri, 02 Oct 2026 23:59:59 GMT"},"fingerprint":{"sha1":"69:95:80:C1:56:06:77:F2:B3:36:67:CC:BA:CE:88:25:6E:BC:BA:E5","sha256":"92:E5:9D:F8:B5:17:11:43:33:06:66:75:28:B9:3D:54:9A:3A:4E:06:B2:CD:C0:05:C4:A9:E9:9C:3C:C1:88:52"}}},"request":{"raw":"GET /mid.png HTTP/1.1\r\nHost: winidnvip5.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://winidnvip5.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: image/png\r\ncontent-length: 19493\r\nserver: openresty\r\ndate: Sun, 22 Mar 2026 13:43:24 GMT\r\nlast-modified: Tue, 01 Apr 2025 02:39:40 GMT\r\naccept-ranges: bytes\r\netag: \"67eb51ec-4c25\"\r\nexpires: Tue, 21 Apr 2026 13:43:24 GMT\r\ncache-control: max-age=2592000, public, max-age=86400, must-revalidate, no-transform\r\nx-cache: Hit from cloudfront\r\nvia: 1.1 a1883601a786b7317faec0d94ef154f2.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: ARN56-P2\r\nx-amz-cf-id: 8zUEGqnitlugRDbjsl5Es28llur47JLs6HqIf51iMLVeWDt2Q-jxXA==\r\nage: 162804\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"OpenResty","description":"OpenResty is a web platform based on nginx which can run Lua scripts using its LuaJIT engine.","website":"https://openresty.org","common_platform_enumeration":"","icon":"OpenResty.svg","categories":["Web servers"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]}],"data":{"size":19493,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 1 x 160, 8-bit/color RGBA, non-interlaced","md5":"5113c08dcfb77c68a4a22c14ad28271f","sha1":"d0d1a11e221b56193151878175b43827a5ed7143","sha256":"0b2942899ce736503d2796f9d9fa219aa181c833821b55e7f448ec0064ac6f2a","sha512":"6e5d0dae34ec7d7d8a3159ed4d0b6d59837d4f3909b9907baa2ff24fe18396eb41d5419336b81f9ff4de7cb6d710382ef65d227219cd23ce52539f928ac2ec91","ssdeep":"96:8SMllcHitlIxv9vk7C1+I4wWHLihk/x1S5kEWMrlxNXrNXevbyvbIvbV7pMucKvq:8SHIIHUCD4waK5kEf5E2okuj4v","tlshash":"9092e724fdf1766d410da27739c625024d3307c3e681ad48b9ce891aaf20bed9c9ba46","first_seen":"2024-10-22T03:16:18.376979Z","last_seen":"2026-06-08T08:50:58.932826Z","times_seen":160,"resource_available":false,"data":null}},"time_used":42,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":41,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"winidnvip5.com/","fqdn":"winidnvip5.com","domain":"winidnvip5.com","tld":"com"},"ip":{"addr":"108.157.229.25","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-03-24T10:56:46.575Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"winidnnet11.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M03","organization":"Amazon"},"validity":{"start":"Wed, 03 Sep 2025 00:00:00 GMT","end":"Fri, 02 Oct 2026 23:59:59 GMT"},"fingerprint":{"sha1":"69:95:80:C1:56:06:77:F2:B3:36:67:CC:BA:CE:88:25:6E:BC:BA:E5","sha256":"92:E5:9D:F8:B5:17:11:43:33:06:66:75:28:B9:3D:54:9A:3A:4E:06:B2:CD:C0:05:C4:A9:E9:9C:3C:C1:88:52"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: winidnvip5.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: text/html; charset=UTF-8\r\nserver: openresty\r\ndate: Tue, 24 Mar 2026 10:56:47 GMT\r\naccess-control-allow-origin: *\r\naccess-control-allow-credentials: true\r\nvary: Accept-Encoding\r\nx-cache: Miss from cloudfront\r\nvia: 1.1 a1883601a786b7317faec0d94ef154f2.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: ARN56-P2\r\nx-amz-cf-id: mgzOFLjU-etSLoIB2QSWV15ZiMCj--LHWN2cDr_czC8O1_wknvNNSw==\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"OpenResty","description":"OpenResty is a web platform based on nginx which can run Lua scripts using its LuaJIT engine.","website":"https://openresty.org","common_platform_enumeration":"","icon":"OpenResty.svg","categories":["Web servers"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"jQuery","description":"jQuery is a JavaScript library which is a free, open-source software designed to simplify HTML DOM tree traversal and manipulation, as well as event handling, CSS animation, and Ajax.","website":"https://jquery.com","common_platform_enumeration":"cpe:2.3:a:jquery:jquery:*:*:*:*:*:*:*:*","icon":"jQuery.svg","categories":["JavaScript libraries"]}],"data":{"size":15543,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"HTML document, ASCII text, with very long lines (497)","md5":"aa7f4a131de6a662f7b34cc8d2558513","sha1":"25542af2740d98ed3ccc0672d29490aa42fddb93","sha256":"6d063d4234b87a80c57134d314489770d8e03b55d2fe2e754bd6f855e6849c39","sha512":"a2b852aa4a5ccdc9a0042e513afb8ee111a4dcf9577b6d75ae1abfd0b8884e4bc7f5a39ae07f2a053376a5a2bfb42847bc14d677ada66b986db141cd9c533955","ssdeep":"192:h+d4nN2MUy/RqRyidojKuwvxMRF7vZbQr9vi2PcbK3rFMMeEtg7RoW8Ek8JrRCOm:h+d4nMMUy/uW9CmrlhIEHtQG4/","tlshash":"16625366c1e3505a181391b46fb5a7192a26c003d70bca187f6d27a9ef839d5cc633dc","first_seen":"2026-03-24T10:56:24.24968Z","last_seen":"2026-03-24T11:01:35.415311Z","times_seen":4,"resource_available":false,"data":null}},"time_used":1614,"timings":{"blocked":576,"dns":50,"connect":11,"send":0,"wait":457,"receive":0,"ssl":517},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"winidnvip5.com/img/fb.png","fqdn":"winidnvip5.com","domain":"winidnvip5.com","tld":"com"},"ip":{"addr":"108.157.229.25","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://winidnvip5.com/","date":"2026-03-24T10:56:47.883Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"winidnnet11.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M03","organization":"Amazon"},"validity":{"start":"Wed, 03 Sep 2025 00:00:00 GMT","end":"Fri, 02 Oct 2026 23:59:59 GMT"},"fingerprint":{"sha1":"69:95:80:C1:56:06:77:F2:B3:36:67:CC:BA:CE:88:25:6E:BC:BA:E5","sha256":"92:E5:9D:F8:B5:17:11:43:33:06:66:75:28:B9:3D:54:9A:3A:4E:06:B2:CD:C0:05:C4:A9:E9:9C:3C:C1:88:52"}}},"request":{"raw":"GET /img/fb.png HTTP/1.1\r\nHost: winidnvip5.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://winidnvip5.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: image/png\r\ncontent-length: 3177\r\nserver: openresty\r\ndate: Sun, 22 Mar 2026 22:42:46 GMT\r\nlast-modified: Tue, 01 Apr 2025 02:39:40 GMT\r\naccept-ranges: bytes\r\netag: \"67eb51ec-c69\"\r\nexpires: Tue, 21 Apr 2026 22:42:46 GMT\r\ncache-control: max-age=2592000, public, max-age=86400, must-revalidate, no-transform\r\nx-cache: Hit from cloudfront\r\nvia: 1.1 a1883601a786b7317faec0d94ef154f2.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: ARN56-P2\r\nx-amz-cf-id: IUohNCZ6GuOV-BnogTjUingixfWDXPoJ_DzMA99ZJi89PQI4_HOfaQ==\r\nage: 130441\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"OpenResty","description":"OpenResty is a web platform based on nginx which can run Lua scripts using its LuaJIT engine.","website":"https://openresty.org","common_platform_enumeration":"","icon":"OpenResty.svg","categories":["Web servers"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":3177,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 80 x 80, 8-bit/color RGBA, non-interlaced","md5":"d433b728602ed0329789a2f750f43d09","sha1":"94e077cff1bdbf92607dfdbc0e6e9d2335db2f1a","sha256":"34d8672dfc9916d2abf1381541f90dc4e00ecc28f0a171eaac8c941b7cba527c","sha512":"50a60399f02cde42e5f81f5c095cb9e25e101328023000081c28b18cd11050922ed8876df9c3da2b37d6f9a767a6424c322b4da436c7cbcaced3d0bda5676eb2","ssdeep":"","tlshash":"cc615c8a6d704d618251dd4194bd6031b5290c82a370fad7b5c5445e1d693f9da236cb","first_seen":"2024-08-19T15:39:49.09858Z","last_seen":"2026-06-08T08:50:58.934425Z","times_seen":316,"resource_available":false,"data":null}},"time_used":37,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":37,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"winidnvip5.com/bdownload.png","fqdn":"winidnvip5.com","domain":"winidnvip5.com","tld":"com"},"ip":{"addr":"108.157.229.25","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://winidnvip5.com/","date":"2026-03-24T10:56:47.909Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"winidnnet11.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M03","organization":"Amazon"},"validity":{"start":"Wed, 03 Sep 2025 00:00:00 GMT","end":"Fri, 02 Oct 2026 23:59:59 GMT"},"fingerprint":{"sha1":"69:95:80:C1:56:06:77:F2:B3:36:67:CC:BA:CE:88:25:6E:BC:BA:E5","sha256":"92:E5:9D:F8:B5:17:11:43:33:06:66:75:28:B9:3D:54:9A:3A:4E:06:B2:CD:C0:05:C4:A9:E9:9C:3C:C1:88:52"}}},"request":{"raw":"GET /bdownload.png HTTP/1.1\r\nHost: winidnvip5.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://winidnvip5.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: image/png\r\ncontent-length: 34843\r\nserver: openresty\r\ndate: Sun, 22 Mar 2026 22:42:48 GMT\r\nlast-modified: Tue, 01 Apr 2025 02:39:40 GMT\r\naccept-ranges: bytes\r\netag: \"67eb51ec-881b\"\r\nexpires: Tue, 21 Apr 2026 22:42:48 GMT\r\ncache-control: max-age=2592000, public, max-age=86400, must-revalidate, no-transform\r\nx-cache: Hit from cloudfront\r\nvia: 1.1 a1883601a786b7317faec0d94ef154f2.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: ARN56-P2\r\nx-amz-cf-id: 8wc6FR6cDG5TjKdMQhikuImtUH-QWlc_NuPLMnpeoUgBcFF7fSq7FA==\r\nage: 130439\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"OpenResty","description":"OpenResty is a web platform based on nginx which can run Lua scripts using its LuaJIT engine.","website":"https://openresty.org","common_platform_enumeration":"","icon":"OpenResty.svg","categories":["Web servers"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":34843,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 940 x 132, 8-bit/color RGBA, non-interlaced","md5":"1c1ef1bfc53461b806cb3dd4de2aabf8","sha1":"09fa012429db12bc2d1fcc6ae4bd02f258e333c8","sha256":"175613c6345fa3f0db892ec805103e3c89805366826f50ddbeefc00ead970589","sha512":"ae902cafd33e2bdc0b860167982d71cc785ffe8d068983311dc811ad7b0078cfb9d5512d9e9fd38cc1524764eeb8d7eb513d7ba3d7ddc98c7be110dc12a2ff64","ssdeep":"768:/mGgG3s6K5jqfigck8HmS+B/I5c50wQC5JIKOOHrBxYWxc:/mGV3kRqv95Ie5/JLBxVa","tlshash":"93f2e17bf2b996a15df3eeb4d192e4138b725da882b8c51f6101cc4e3de889c0e424d6","first_seen":"2025-04-20T23:31:04.113049Z","last_seen":"2026-05-27T01:43:41.632513Z","times_seen":70,"resource_available":false,"data":null}},"time_used":44,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":41,"receive":3,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"winidnvip5.com/src/js/index.umd.js?t=1232","fqdn":"winidnvip5.com","domain":"winidnvip5.com","tld":"com"},"ip":{"addr":"108.157.229.25","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://winidnvip5.com/","date":"2026-03-24T10:56:47.879Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"winidnnet11.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M03","organization":"Amazon"},"validity":{"start":"Wed, 03 Sep 2025 00:00:00 GMT","end":"Fri, 02 Oct 2026 23:59:59 GMT"},"fingerprint":{"sha1":"69:95:80:C1:56:06:77:F2:B3:36:67:CC:BA:CE:88:25:6E:BC:BA:E5","sha256":"92:E5:9D:F8:B5:17:11:43:33:06:66:75:28:B9:3D:54:9A:3A:4E:06:B2:CD:C0:05:C4:A9:E9:9C:3C:C1:88:52"}}},"request":{"raw":"GET /src/js/index.umd.js?t=1232 HTTP/1.1\r\nHost: winidnvip5.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://winidnvip5.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: application/javascript\r\nserver: openresty\r\ndate: Sun, 22 Mar 2026 11:35:27 GMT\r\ncontent-encoding: gzip\r\nlast-modified: Tue, 01 Apr 2025 02:39:40 GMT\r\netag: W/\"67eb51ec-39eb\"\r\naccess-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization\r\naccess-control-allow-origin: *\r\naccess-control-allow-methods: GET, POST, OPTIONS\r\nvary: Accept-Encoding\r\nx-cache: Hit from cloudfront\r\nvia: 1.1 a1883601a786b7317faec0d94ef154f2.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: ARN56-P2\r\nx-amz-cf-id: 7ZWDd4oySfJ4dIobADmqOHURJIoVPjYqQHZC3xLviHijmayiIgZQeQ==\r\nage: 170480\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"OpenResty","description":"OpenResty is a web platform based on nginx which can run Lua scripts using its LuaJIT engine.","website":"https://openresty.org","common_platform_enumeration":"","icon":"OpenResty.svg","categories":["Web servers"]}],"data":{"size":14827,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, Unicode text, UTF-8 text, with CRLF line terminators","md5":"76d0bacef2bc8e43607399918498e56d","sha1":"11a1c9f5073a796597194d052ef8e0451755c776","sha256":"072807b11c292ca0a47baf3b2d2f160edb45e3769f5810de5fc7342bee2709a2","sha512":"a538627f470402b582d6c9abe0821b7134658857c1e55c0a8baed23b7a3663642a5b8d8ef5b8037b19708c86742a74f34d205543e80d0acb763429ba61e46425","ssdeep":"192:1K99PYDBZ/vYQ+BRd6n7jRKBcjlz/Xv8GXoSTwx7HfzG+l2kj01qxCCv4A1HoYgN:g99PgBd+3d+UFRNv3NoY3i4NY","tlshash":"1862649d8d9361a215b7b374cf2e6209f73a46730214c601b95ce7949f7081983beeec","first_seen":"2025-04-20T23:31:04.063636Z","last_seen":"2026-06-08T08:50:58.940128Z","times_seen":164,"resource_available":true,"data":null}},"time_used":33,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":33,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"winidnvip5.com/img/wapp.png","fqdn":"winidnvip5.com","domain":"winidnvip5.com","tld":"com"},"ip":{"addr":"108.157.229.25","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://winidnvip5.com/","date":"2026-03-24T10:56:47.881Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"winidnnet11.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M03","organization":"Amazon"},"validity":{"start":"Wed, 03 Sep 2025 00:00:00 GMT","end":"Fri, 02 Oct 2026 23:59:59 GMT"},"fingerprint":{"sha1":"69:95:80:C1:56:06:77:F2:B3:36:67:CC:BA:CE:88:25:6E:BC:BA:E5","sha256":"92:E5:9D:F8:B5:17:11:43:33:06:66:75:28:B9:3D:54:9A:3A:4E:06:B2:CD:C0:05:C4:A9:E9:9C:3C:C1:88:52"}}},"request":{"raw":"GET /img/wapp.png HTTP/1.1\r\nHost: winidnvip5.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://winidnvip5.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: image/png\r\ncontent-length: 3354\r\nserver: openresty\r\ndate: Sun, 22 Mar 2026 22:42:46 GMT\r\nlast-modified: Tue, 01 Apr 2025 02:39:40 GMT\r\naccept-ranges: bytes\r\netag: \"67eb51ec-d1a\"\r\nexpires: Tue, 21 Apr 2026 22:42:46 GMT\r\ncache-control: max-age=2592000, public, max-age=86400, must-revalidate, no-transform\r\nx-cache: Hit from cloudfront\r\nvia: 1.1 a1883601a786b7317faec0d94ef154f2.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: ARN56-P2\r\nx-amz-cf-id: ano1F1wcU2HdCYEj8ijUhElpP0XwbTjQzYoKogeVFkIyXAIUS3ho5Q==\r\nage: 130441\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"OpenResty","description":"OpenResty is a web platform based on nginx which can run Lua scripts using its LuaJIT engine.","website":"https://openresty.org","common_platform_enumeration":"","icon":"OpenResty.svg","categories":["Web servers"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":3354,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 80 x 80, 8-bit colormap, non-interlaced","md5":"8cdc8e534bbfe4f4a0596168f42a2e2f","sha1":"7b96b5312cd42d369ffd667cca3d127cea643281","sha256":"f378b5cb91bb1f32e92dc8d02b83a7ddd97b35595a0a1b16c1ff5b9d35dc3e39","sha512":"77220dce64d17e77f48fc46c554ab7f17af4d92cfd2cea8a04c8fb36d3a9e8b969f6ed4da7a1038dd6ec7b2a50966b549ca355774eb4a1e1026f1ae37abf1cb9","ssdeep":"","tlshash":"94616c0b68e305b5e1fa63a1d293aefbb484bd18030107f7331eb8580344a336d4d325","first_seen":"2025-03-04T02:41:04.830016Z","last_seen":"2026-06-08T08:50:58.929394Z","times_seen":355,"resource_available":false,"data":null}},"time_used":37,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":37,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"winidnvip5.com/midchou.png","fqdn":"winidnvip5.com","domain":"winidnvip5.com","tld":"com"},"ip":{"addr":"108.157.229.25","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://winidnvip5.com/","date":"2026-03-24T10:56:47.890Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"winidnnet11.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M03","organization":"Amazon"},"validity":{"start":"Wed, 03 Sep 2025 00:00:00 GMT","end":"Fri, 02 Oct 2026 23:59:59 GMT"},"fingerprint":{"sha1":"69:95:80:C1:56:06:77:F2:B3:36:67:CC:BA:CE:88:25:6E:BC:BA:E5","sha256":"92:E5:9D:F8:B5:17:11:43:33:06:66:75:28:B9:3D:54:9A:3A:4E:06:B2:CD:C0:05:C4:A9:E9:9C:3C:C1:88:52"}}},"request":{"raw":"GET /midchou.png HTTP/1.1\r\nHost: winidnvip5.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://winidnvip5.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: image/png\r\ncontent-length: 51982\r\nserver: openresty\r\ndate: Sun, 22 Mar 2026 22:42:47 GMT\r\nlast-modified: Tue, 01 Apr 2025 02:39:40 GMT\r\naccept-ranges: bytes\r\netag: \"67eb51ec-cb0e\"\r\nexpires: Tue, 21 Apr 2026 22:42:47 GMT\r\ncache-control: max-age=2592000, public, max-age=86400, must-revalidate, no-transform\r\nx-cache: Hit from cloudfront\r\nvia: 1.1 a1883601a786b7317faec0d94ef154f2.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: ARN56-P2\r\nx-amz-cf-id: bTkuWrY69VIPJjz7BPNMHvfkc37ensCETPxJwbshvCQ-08ftO10uRw==\r\nage: 130440\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"OpenResty","description":"OpenResty is a web platform based on nginx which can run Lua scripts using its LuaJIT engine.","website":"https://openresty.org","common_platform_enumeration":"","icon":"OpenResty.svg","categories":["Web servers"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":51982,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 104 x 79, 8-bit/color RGBA, non-interlaced","md5":"2bd30dcafc3e23d2bfb965a20d50288b","sha1":"18ce1b48e17a2884b23b55496be8f816dc3d91d6","sha256":"895acdf247eda9e2dc85316a6f83f0879ddd20f91cb846fc43ac759ca7c219dd","sha512":"a9ce6ff6f438ae75407e7770b8ca9210b8dc358d22ff96b4553b915e71b61690bcfc35e883a8f54548971f86aff33727a6e387b7f85f72a91a8c7c6a192e1822","ssdeep":"768:ggEUFbISXmQnv+qOyaMPSc1Lddt4S+er5RcEFe/qJ:ffnjv+XwvLdwwFd","tlshash":"37335f12bfa1ba02d02a35355c928b745326fd8d9b31c64779cdae9b7f8dbd31d12280","first_seen":"2024-10-22T03:16:18.339033Z","last_seen":"2026-06-08T08:50:58.948826Z","times_seen":167,"resource_available":false,"data":null}},"time_used":43,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":36,"receive":7,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"winidnvip5.com/05Mahjong_Ways.png","fqdn":"winidnvip5.com","domain":"winidnvip5.com","tld":"com"},"ip":{"addr":"108.157.229.25","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://winidnvip5.com/","date":"2026-03-24T10:56:47.897Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"winidnnet11.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M03","organization":"Amazon"},"validity":{"start":"Wed, 03 Sep 2025 00:00:00 GMT","end":"Fri, 02 Oct 2026 23:59:59 GMT"},"fingerprint":{"sha1":"69:95:80:C1:56:06:77:F2:B3:36:67:CC:BA:CE:88:25:6E:BC:BA:E5","sha256":"92:E5:9D:F8:B5:17:11:43:33:06:66:75:28:B9:3D:54:9A:3A:4E:06:B2:CD:C0:05:C4:A9:E9:9C:3C:C1:88:52"}}},"request":{"raw":"GET /05Mahjong_Ways.png HTTP/1.1\r\nHost: winidnvip5.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://winidnvip5.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: image/png\r\ncontent-length: 52727\r\nserver: openresty\r\ndate: Sun, 22 Mar 2026 22:42:46 GMT\r\nlast-modified: Tue, 01 Apr 2025 02:39:40 GMT\r\naccept-ranges: bytes\r\netag: \"67eb51ec-cdf7\"\r\nexpires: Tue, 21 Apr 2026 22:42:46 GMT\r\ncache-control: max-age=2592000, public, max-age=86400, must-revalidate, no-transform\r\nx-cache: Hit from cloudfront\r\nvia: 1.1 a1883601a786b7317faec0d94ef154f2.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: ARN56-P2\r\nx-amz-cf-id: 7j-zfZyPRCiNSnugNTPN_F3GXfNGOVELhUCDi3UdR3fsNHn0714CNg==\r\nage: 130441\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"OpenResty","description":"OpenResty is a web platform based on nginx which can run Lua scripts using its LuaJIT engine.","website":"https://openresty.org","common_platform_enumeration":"","icon":"OpenResty.svg","categories":["Web servers"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]}],"data":{"size":52727,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 330 x 330, 8-bit colormap, non-interlaced","md5":"af4f1a5e6dcce4b9bc8a2067eb27abe4","sha1":"56ab80d6830d4141259f4a12d095d780c5d4eb0a","sha256":"1ec0862717974419a4e96c836ae579845b99ccc06e9fed550caa2fdb076b1308","sha512":"77f3912807880ada4800c2296a247f9ff2c58407c34c56fd1d19eb588bdde707167866cd1c4a0f27ace3fdff4c1d4bd20e6ba050b4f36df49e5846fae722b511","ssdeep":"1536:q/odcik2xSIM47pCMPXFJx6no55tJWQZOaJpd3m82:VkPvmLPXFJx6nGtJWQZl3m82","tlshash":"823302e574d10e2c80fb253c197eb2882fe528e0c1559a536779fe37821ec9659f20fa","first_seen":"2025-04-20T23:31:04.097588Z","last_seen":"2026-05-27T01:43:41.630418Z","times_seen":74,"resource_available":false,"data":null}},"time_used":49,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":44,"receive":5,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"winidnvip5.com/2.png","fqdn":"winidnvip5.com","domain":"winidnvip5.com","tld":"com"},"ip":{"addr":"108.157.229.25","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://winidnvip5.com/","date":"2026-03-24T10:56:47.905Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"winidnnet11.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M03","organization":"Amazon"},"validity":{"start":"Wed, 03 Sep 2025 00:00:00 GMT","end":"Fri, 02 Oct 2026 23:59:59 GMT"},"fingerprint":{"sha1":"69:95:80:C1:56:06:77:F2:B3:36:67:CC:BA:CE:88:25:6E:BC:BA:E5","sha256":"92:E5:9D:F8:B5:17:11:43:33:06:66:75:28:B9:3D:54:9A:3A:4E:06:B2:CD:C0:05:C4:A9:E9:9C:3C:C1:88:52"}}},"request":{"raw":"GET /2.png HTTP/1.1\r\nHost: winidnvip5.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://winidnvip5.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: image/png\r\ncontent-length: 3080\r\nserver: openresty\r\ndate: Sat, 21 Mar 2026 20:31:25 GMT\r\nlast-modified: Wed, 12 Feb 2025 01:41:24 GMT\r\naccept-ranges: bytes\r\netag: \"67abfc44-c08\"\r\nexpires: Mon, 20 Apr 2026 20:31:25 GMT\r\ncache-control: max-age=2592000, public, max-age=86400, must-revalidate, no-transform\r\nx-cache: Hit from cloudfront\r\nvia: 1.1 a1883601a786b7317faec0d94ef154f2.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: ARN56-P2\r\nx-amz-cf-id: xgiqn7jw0bl_UvHBh8eNYcwtyq9WhbKK764Ds-IP9stPlP-1KkVHXQ==\r\nage: 224722\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"OpenResty","description":"OpenResty is a web platform based on nginx which can run Lua scripts using its LuaJIT engine.","website":"https://openresty.org","common_platform_enumeration":"","icon":"OpenResty.svg","categories":["Web servers"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":3080,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 150 x 150, 8-bit colormap, non-interlaced","md5":"02ddf73f9a8f356a4d580ecf11dc3901","sha1":"077ca80b55d7c5d64d9184598e66c53338e97a58","sha256":"001ef5efe0ffd0a74721304dcbe75cda405afd0d807b91fec2178e5cec8b8923","sha512":"c5725e3248beef919828695cfd0e8f7aaa4e16343bb304bc1d6580cb86617f18548cb7cb1fcd3b5c7d5e52e67dd125c4d753bf9a188ee14ccd4e7c5b038579bd","ssdeep":"","tlshash":"05518edf2b2629e0db5af2e3c423da3cef716404a70d65e89412647e71480ac4106ae8","first_seen":"2025-04-20T23:31:04.103138Z","last_seen":"2026-06-08T08:50:58.94439Z","times_seen":156,"resource_available":false,"data":null}},"time_used":41,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":40,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"winidnvip5.com/getapk.php?vid=db355a637207e6384604ec21067393ba\u0026code=\u0026mb=","fqdn":"winidnvip5.com","domain":"winidnvip5.com","tld":"com"},"ip":{"addr":"108.157.229.25","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://winidnvip5.com/","date":"2026-03-24T10:56:48.962Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"winidnnet11.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M03","organization":"Amazon"},"validity":{"start":"Wed, 03 Sep 2025 00:00:00 GMT","end":"Fri, 02 Oct 2026 23:59:59 GMT"},"fingerprint":{"sha1":"69:95:80:C1:56:06:77:F2:B3:36:67:CC:BA:CE:88:25:6E:BC:BA:E5","sha256":"92:E5:9D:F8:B5:17:11:43:33:06:66:75:28:B9:3D:54:9A:3A:4E:06:B2:CD:C0:05:C4:A9:E9:9C:3C:C1:88:52"}}},"request":{"raw":"GET /getapk.php?vid=db355a637207e6384604ec21067393ba\u0026code=\u0026mb= HTTP/1.1\r\nHost: winidnvip5.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://winidnvip5.com/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: text/html; charset=UTF-8\r\nserver: openresty\r\ndate: Tue, 24 Mar 2026 10:56:49 GMT\r\naccess-control-allow-origin: *\r\naccess-control-allow-credentials: true\r\nvary: Accept-Encoding\r\nx-cache: Miss from cloudfront\r\nvia: 1.1 a1883601a786b7317faec0d94ef154f2.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: ARN56-P2\r\nx-amz-cf-id: yFw80KVZGqBziQOC6Zz3ScRfQ_pfhz38Jno65HLHG2zSqqVoQ7ZQsA==\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"OpenResty","description":"OpenResty is a web platform based on nginx which can run Lua scripts using its LuaJIT engine.","website":"https://openresty.org","common_platform_enumeration":"","icon":"OpenResty.svg","categories":["Web servers"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":75,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"ASCII text, with no line terminators","md5":"6ba275b8d06c6f5749c43cb234691d04","sha1":"107c811e04009798d28c6c01c23df23bd6b6a51a","sha256":"e0ac92ec3bac7cf4dc4086db9e338dd9471b93908508810ac9410eaacbdf25d3","sha512":"d2fe0fd60805cc0117a7b0b6c8a0bcf6a36c74e01c15bbaff0836da2e745c9c705829be635482d5caf53b4dfa07e00c5aa24367dba8f7460df47210035f31474","ssdeep":"","tlshash":"6da022c20a8aef30eea00000ec002b2c208f0abc2ea028b0a0b30c8ac80300000003bc","first_seen":"2026-03-24T10:56:24.203416Z","last_seen":"2026-03-24T11:01:35.407329Z","times_seen":4,"resource_available":false,"data":null}},"time_used":216,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":216,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"winidnvip5.com/src/js/index.js?t=2342342","fqdn":"winidnvip5.com","domain":"winidnvip5.com","tld":"com"},"ip":{"addr":"108.157.229.25","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://winidnvip5.com/","date":"2026-03-24T10:56:47.877Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"winidnnet11.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M03","organization":"Amazon"},"validity":{"start":"Wed, 03 Sep 2025 00:00:00 GMT","end":"Fri, 02 Oct 2026 23:59:59 GMT"},"fingerprint":{"sha1":"69:95:80:C1:56:06:77:F2:B3:36:67:CC:BA:CE:88:25:6E:BC:BA:E5","sha256":"92:E5:9D:F8:B5:17:11:43:33:06:66:75:28:B9:3D:54:9A:3A:4E:06:B2:CD:C0:05:C4:A9:E9:9C:3C:C1:88:52"}}},"request":{"raw":"GET /src/js/index.js?t=2342342 HTTP/1.1\r\nHost: winidnvip5.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://winidnvip5.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: application/javascript\r\nserver: openresty\r\ndate: Tue, 24 Mar 2026 10:56:48 GMT\r\ncontent-encoding: br\r\nlast-modified: Tue, 01 Apr 2025 02:39:40 GMT\r\netag: W/\"67eb51ec-89b\"\r\naccess-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization\r\naccess-control-allow-origin: *\r\naccess-control-allow-methods: GET, POST, OPTIONS\r\nvary: Accept-Encoding\r\nx-cache: Miss from cloudfront\r\nvia: 1.1 a1883601a786b7317faec0d94ef154f2.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: ARN56-P2\r\nx-amz-cf-id: GuIBtIpYV85_f3tc1LRO8q-fvEkj0l0ncyDcIsqmj-AIrZsGy7VnEQ==\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"OpenResty","description":"OpenResty is a web platform based on nginx which can run Lua scripts using its LuaJIT engine.","website":"https://openresty.org","common_platform_enumeration":"","icon":"OpenResty.svg","categories":["Web servers"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":2203,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, Unicode text, UTF-8 text, with CRLF line terminators","md5":"cafe725380e64a3b8278ff03a94be405","sha1":"74cc318288f2826fadcc3edd34769d8f74a3adbf","sha256":"f17224a209bbe393df9c088d1a22e6e7ba983d3150664e50cee9e4083a602bdc","sha512":"7206265460dd46805a4f1b8d6af1449ec4e5cdc52e3c98ea16ebe2772a59cdd8ff11a3aa37df429364692adc375a06992662cb4dae2c377a3e94f31cb6c00698","ssdeep":"","tlshash":"6041429ef606325e63a96b6c567f400cfcba94636a09c541f19de8c06f309386367dec","first_seen":"2025-04-20T23:31:04.083847Z","last_seen":"2026-06-08T08:50:58.947207Z","times_seen":163,"resource_available":true,"data":null}},"time_used":378,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":378,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"winidnvip5.com/04Gates_of_Olympus.png","fqdn":"winidnvip5.com","domain":"winidnvip5.com","tld":"com"},"ip":{"addr":"108.157.229.25","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://winidnvip5.com/","date":"2026-03-24T10:56:47.896Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"winidnnet11.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M03","organization":"Amazon"},"validity":{"start":"Wed, 03 Sep 2025 00:00:00 GMT","end":"Fri, 02 Oct 2026 23:59:59 GMT"},"fingerprint":{"sha1":"69:95:80:C1:56:06:77:F2:B3:36:67:CC:BA:CE:88:25:6E:BC:BA:E5","sha256":"92:E5:9D:F8:B5:17:11:43:33:06:66:75:28:B9:3D:54:9A:3A:4E:06:B2:CD:C0:05:C4:A9:E9:9C:3C:C1:88:52"}}},"request":{"raw":"GET /04Gates_of_Olympus.png HTTP/1.1\r\nHost: winidnvip5.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://winidnvip5.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: image/png\r\ncontent-length: 44319\r\nserver: openresty\r\ndate: Tue, 24 Mar 2026 10:56:48 GMT\r\nlast-modified: Tue, 01 Apr 2025 02:39:40 GMT\r\naccept-ranges: bytes\r\netag: \"67eb51ec-ad1f\"\r\nexpires: Thu, 23 Apr 2026 10:56:48 GMT\r\ncache-control: max-age=2592000, public, max-age=86400, must-revalidate, no-transform\r\nx-cache: Miss from cloudfront\r\nvia: 1.1 a1883601a786b7317faec0d94ef154f2.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: ARN56-P2\r\nx-amz-cf-id: 8Bew7y9dnwzr4cSNek4yn0lrCoMERFZBLRqakWxqB7enI21CMaYa2g==\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"OpenResty","description":"OpenResty is a web platform based on nginx which can run Lua scripts using its LuaJIT engine.","website":"https://openresty.org","common_platform_enumeration":"","icon":"OpenResty.svg","categories":["Web servers"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":44319,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 330 x 330, 8-bit colormap, non-interlaced","md5":"fa7e4caa64c61ddf99e3933e7abf397d","sha1":"201a0781afd2d2ec377d979b7e8a52cbe7ea3964","sha256":"696a61663c69e281de24206754ef859f6938f495deb14344748c37bf3e7dd884","sha512":"fde84a7d0d53268372fc5b53cb74f84e50d3538c1cd96a436f76de76cc99f31015ad290bcf6d156af85d94c8776ca91cbd11a431edc04d09b052657a9e252451","ssdeep":"768:VyyWOhOpcJL+hXnDVvmQDf/TwiuQl7Wm1duLlKzuD5A21qDr6Im1YjWQifyv9B9F:VyLOhM++hXnDBxL/UiRCm1duLl8IqlyK","tlshash":"9413023df5cf3e85bdbb953562806eacdf9e0ad7404d6802343196cbecc861870e8660","first_seen":"2025-04-20T23:31:04.06675Z","last_seen":"2026-05-27T01:43:41.647401Z","times_seen":74,"resource_available":false,"data":null}},"time_used":730,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":383,"receive":347,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"winidnvip5.com/08Domino.png","fqdn":"winidnvip5.com","domain":"winidnvip5.com","tld":"com"},"ip":{"addr":"108.157.229.25","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://winidnvip5.com/","date":"2026-03-24T10:56:47.901Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"winidnnet11.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M03","organization":"Amazon"},"validity":{"start":"Wed, 03 Sep 2025 00:00:00 GMT","end":"Fri, 02 Oct 2026 23:59:59 GMT"},"fingerprint":{"sha1":"69:95:80:C1:56:06:77:F2:B3:36:67:CC:BA:CE:88:25:6E:BC:BA:E5","sha256":"92:E5:9D:F8:B5:17:11:43:33:06:66:75:28:B9:3D:54:9A:3A:4E:06:B2:CD:C0:05:C4:A9:E9:9C:3C:C1:88:52"}}},"request":{"raw":"GET /08Domino.png HTTP/1.1\r\nHost: winidnvip5.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://winidnvip5.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: image/png\r\ncontent-length: 35190\r\nserver: openresty\r\ndate: Sun, 22 Mar 2026 22:42:46 GMT\r\nlast-modified: Tue, 01 Apr 2025 02:39:40 GMT\r\naccept-ranges: bytes\r\netag: \"67eb51ec-8976\"\r\nexpires: Tue, 21 Apr 2026 22:42:46 GMT\r\ncache-control: max-age=2592000, public, max-age=86400, must-revalidate, no-transform\r\nx-cache: Hit from cloudfront\r\nvia: 1.1 a1883601a786b7317faec0d94ef154f2.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: ARN56-P2\r\nx-amz-cf-id: S1KE3bP2nf7_0HybjX6PfoYyukvn9r6TUKER7vIlF5ac-EUGVpp5rg==\r\nage: 130441\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"OpenResty","description":"OpenResty is a web platform based on nginx which can run Lua scripts using its LuaJIT engine.","website":"https://openresty.org","common_platform_enumeration":"","icon":"OpenResty.svg","categories":["Web servers"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]}],"data":{"size":35190,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 330 x 331, 8-bit colormap, non-interlaced","md5":"f7e129589f58f31c763ffec041e117e7","sha1":"9b63422fbfa1a5d58ca61a8052fcd08610c0bf5c","sha256":"69386b4c8cf436b81e9245e3054a5eb2bd081852ea32c3dfcc4e11d6bbf0f612","sha512":"25dfffd8c1ebd8a51c005c8e9c24c4473a6780a85476988a51b4949c63c55b6106377660ebd3b3c822eaca6d5b466b45ea971cff40d29b39a9c9537345f305d2","ssdeep":"768:7nuAs9cVZsoB21VQTaBW87S17n+yRiC87YAvwGrZrSvYKk:6As9cVZsosMTMW8Od8SGrck","tlshash":"02f2f24bd69304044df519c5fb362cf80e026a786ea31ba051aff22968486df7ec2f12","first_seen":"2025-04-20T23:31:04.071817Z","last_seen":"2026-05-27T01:43:41.634559Z","times_seen":74,"resource_available":false,"data":null}},"time_used":42,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":41,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"winidnvip5.com/img/ytb.png","fqdn":"winidnvip5.com","domain":"winidnvip5.com","tld":"com"},"ip":{"addr":"108.157.229.25","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://winidnvip5.com/","date":"2026-03-24T10:56:47.885Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"winidnnet11.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M03","organization":"Amazon"},"validity":{"start":"Wed, 03 Sep 2025 00:00:00 GMT","end":"Fri, 02 Oct 2026 23:59:59 GMT"},"fingerprint":{"sha1":"69:95:80:C1:56:06:77:F2:B3:36:67:CC:BA:CE:88:25:6E:BC:BA:E5","sha256":"92:E5:9D:F8:B5:17:11:43:33:06:66:75:28:B9:3D:54:9A:3A:4E:06:B2:CD:C0:05:C4:A9:E9:9C:3C:C1:88:52"}}},"request":{"raw":"GET /img/ytb.png HTTP/1.1\r\nHost: winidnvip5.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://winidnvip5.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: image/png\r\ncontent-length: 2749\r\nserver: openresty\r\ndate: Sun, 22 Mar 2026 22:42:46 GMT\r\nlast-modified: Tue, 01 Apr 2025 02:39:40 GMT\r\naccept-ranges: bytes\r\netag: \"67eb51ec-abd\"\r\nexpires: Tue, 21 Apr 2026 22:42:46 GMT\r\ncache-control: max-age=2592000, public, max-age=86400, must-revalidate, no-transform\r\nx-cache: Hit from cloudfront\r\nvia: 1.1 a1883601a786b7317faec0d94ef154f2.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: ARN56-P2\r\nx-amz-cf-id: boaD9BBEvrVZzDTPDZInjAcqdQIQsvVr4mJHgYcrkX-jfn_JhjXxfw==\r\nage: 130441\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"OpenResty","description":"OpenResty is a web platform based on nginx which can run Lua scripts using its LuaJIT engine.","website":"https://openresty.org","common_platform_enumeration":"","icon":"OpenResty.svg","categories":["Web servers"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":2749,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 80 x 80, 8-bit/color RGBA, non-interlaced","md5":"a470f34e1919456fd8a274f62e1abb8a","sha1":"e24ce1ed5585d892b6d90929fa84eec1e900d34f","sha256":"c68317e2d83aa88c6c0cf4b69d6e397ee13a177a4e60a1ed2cac1bad496f6d92","sha512":"107c22fc7b4dc7873c17b5de84e7e28741f3b8679787d2e61030afdadc966937f11882735b4664fb4bb424471b1399167869a85f01dbe80cad224a32d8e7e18d","ssdeep":"","tlshash":"f6512c2a6f51c065e1484be44ddec53ba139464547e09af128cbdc39077a3f70429bbf","first_seen":"2024-08-19T15:39:49.099362Z","last_seen":"2026-06-06T14:03:28.230098Z","times_seen":299,"resource_available":false,"data":null}},"time_used":35,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":35,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"winidnvip5.com/07Poker.png","fqdn":"winidnvip5.com","domain":"winidnvip5.com","tld":"com"},"ip":{"addr":"108.157.229.25","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://winidnvip5.com/","date":"2026-03-24T10:56:47.900Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"winidnnet11.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M03","organization":"Amazon"},"validity":{"start":"Wed, 03 Sep 2025 00:00:00 GMT","end":"Fri, 02 Oct 2026 23:59:59 GMT"},"fingerprint":{"sha1":"69:95:80:C1:56:06:77:F2:B3:36:67:CC:BA:CE:88:25:6E:BC:BA:E5","sha256":"92:E5:9D:F8:B5:17:11:43:33:06:66:75:28:B9:3D:54:9A:3A:4E:06:B2:CD:C0:05:C4:A9:E9:9C:3C:C1:88:52"}}},"request":{"raw":"GET /07Poker.png HTTP/1.1\r\nHost: winidnvip5.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://winidnvip5.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: image/png\r\ncontent-length: 41045\r\nserver: openresty\r\ndate: Sun, 22 Mar 2026 22:42:46 GMT\r\nlast-modified: Tue, 01 Apr 2025 02:39:40 GMT\r\naccept-ranges: bytes\r\netag: \"67eb51ec-a055\"\r\nexpires: Tue, 21 Apr 2026 22:42:46 GMT\r\ncache-control: max-age=2592000, public, max-age=86400, must-revalidate, no-transform\r\nx-cache: Hit from cloudfront\r\nvia: 1.1 a1883601a786b7317faec0d94ef154f2.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: ARN56-P2\r\nx-amz-cf-id: OloILtE-kMvWuRkV7AH8c9CMlgiQNr8CbAF5DTeVGp1zvZSFXSX9sg==\r\nage: 130441\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"OpenResty","description":"OpenResty is a web platform based on nginx which can run Lua scripts using its LuaJIT engine.","website":"https://openresty.org","common_platform_enumeration":"","icon":"OpenResty.svg","categories":["Web servers"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":41045,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 330 x 330, 8-bit colormap, non-interlaced","md5":"bcc915bfb35a122c5ea92b823628295e","sha1":"359b5ce09d94277b6673ae1ee169e5c6e29285de","sha256":"aa08c167b314d2fd287cda93c6df6374524936e51cab268f70422ed9e480086a","sha512":"6f3cfe02b3c3379958a73c08bf00c0d86e247065d8240ee8ee200aa4e24538a3c95c0b31d616be0e960abc37f47147af790b3e804ee76a23c07530bc05f74616","ssdeep":"768:w1yRA5j5O+MWxG3TK/Fgeb0HC9pXIFnccpqVNUnZ5GIY/FdYBIMNxSDPN:ww+5jhMWYm2g0i95IRiNUnZ5GIwFdYSP","tlshash":"d403f10de44e9e44809b0854f7c43961ae07acf6d1ca93f686b562eb08b7d6f1914bbc","first_seen":"2025-04-20T23:31:04.078394Z","last_seen":"2026-05-27T01:43:41.631046Z","times_seen":74,"resource_available":false,"data":null}},"time_used":39,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":37,"receive":2,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"winidnvip5.com/3.png","fqdn":"winidnvip5.com","domain":"winidnvip5.com","tld":"com"},"ip":{"addr":"108.157.229.25","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://winidnvip5.com/","date":"2026-03-24T10:56:47.906Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"winidnnet11.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M03","organization":"Amazon"},"validity":{"start":"Wed, 03 Sep 2025 00:00:00 GMT","end":"Fri, 02 Oct 2026 23:59:59 GMT"},"fingerprint":{"sha1":"69:95:80:C1:56:06:77:F2:B3:36:67:CC:BA:CE:88:25:6E:BC:BA:E5","sha256":"92:E5:9D:F8:B5:17:11:43:33:06:66:75:28:B9:3D:54:9A:3A:4E:06:B2:CD:C0:05:C4:A9:E9:9C:3C:C1:88:52"}}},"request":{"raw":"GET /3.png HTTP/1.1\r\nHost: winidnvip5.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://winidnvip5.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: image/png\r\ncontent-length: 3282\r\nserver: openresty\r\ndate: Sun, 22 Mar 2026 22:42:47 GMT\r\nlast-modified: Wed, 12 Feb 2025 01:41:24 GMT\r\naccept-ranges: bytes\r\netag: \"67abfc44-cd2\"\r\nexpires: Tue, 21 Apr 2026 22:42:47 GMT\r\ncache-control: max-age=2592000, public, max-age=86400, must-revalidate, no-transform\r\nx-cache: Hit from cloudfront\r\nvia: 1.1 a1883601a786b7317faec0d94ef154f2.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: ARN56-P2\r\nx-amz-cf-id: vXWKAff4OJq7DZwShPl2Ea9kefQnHpYjjN11hNS2xVYWr7xKNid5JA==\r\nage: 130440\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"OpenResty","description":"OpenResty is a web platform based on nginx which can run Lua scripts using its LuaJIT engine.","website":"https://openresty.org","common_platform_enumeration":"","icon":"OpenResty.svg","categories":["Web servers"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":3282,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 151 x 150, 8-bit colormap, non-interlaced","md5":"870ae4b0a83dc63372f9280776b98cd0","sha1":"354d6b4b8571f348e77f50e12238d5b933395b67","sha256":"39b7b1485e17b46a6bc94d3a7d96a7fb94c2858be5bf700260228478d807771a","sha512":"5b1de61dc34da47151fefc399c621b124506005b3964e1abe7c66ebfb875f7ee92c328fb6a9bcb49d05fcd452023e8be5e59cad79ab07f42a326d46824cf6402","ssdeep":"","tlshash":"f6618d7bbfad1e66e3c710e72d098997ce9050be5403568ae0136e52d28f24b3bb8301","first_seen":"2025-04-20T23:31:04.065352Z","last_seen":"2026-06-08T08:50:58.931642Z","times_seen":156,"resource_available":false,"data":null}},"time_used":42,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":42,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}}]}