Overview

URL walltowalldiving.netcluesdemo.com/zee/CHASE/assets/saved_resource.php?amp;SERVID=Service_Login_&_Authentication=f7c59e9e317b8b4a09f663fdfb27d3ba2efadcf0&SERVID=Service_Login_&_Authentication=e256f27e39488de54aa6e9ccf9cfc0656f9e4821
IP147.135.97.220
ASNOVH SAS
Location United States
Report completed2022-11-24 20:38:32 UTC
StatusLoading report..
urlquery Alerts No alerts detected


Settings

UserAgentMozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Referer


Intrusion Detection Systems

Suricata /w Emerging Threats Pro  No alerts detected


Blocklists

OpenPhish  No alerts detected
PhishTank  No alerts detected
Fortinet's Web Filter
Scan Date Severity Indicator Comment
2022-11-24 2 walltowalldiving.netcluesdemo.com/zee/CHASE/assets/boot.js.download Phishing
2022-11-24 2 walltowalldiving.netcluesdemo.com/zee/CHASE/assets/main-ver.js.download Phishing
2022-11-24 2 walltowalldiving.netcluesdemo.com/zee/CHASE/assets/main_e8d9e40e9c1b95b5265 (...) Phishing
2022-11-24 2 walltowalldiving.netcluesdemo.com/zee/CHASE/assets/locationAPI.js.download Phishing
2022-11-24 2 walltowalldiving.netcluesdemo.com/zee/CHASE/assets/settings.js(1).download Phishing
2022-11-24 2 walltowalldiving.netcluesdemo.com/zee/CHASE/assets/main.js.download Phishing
2022-11-24 2 walltowalldiving.netcluesdemo.com/zee/CHASE/assets/main.js(2).download Phishing
2022-11-24 2 walltowalldiving.netcluesdemo.com/zee/CHASE/assets/appConfig.js(1).download Phishing
2022-11-24 2 walltowalldiving.netcluesdemo.com/zee/CHASE/assets/main.js(2).download Phishing
2022-11-24 2 walltowalldiving.netcluesdemo.com/zee/CHASE/assets/domManagement.js.download Phishing
2022-11-24 2 walltowalldiving.netcluesdemo.com/zee/CHASE/assets/main.js(3).download Phishing
2022-11-24 2 walltowalldiving.netcluesdemo.com/zee/CHASE/assets/main.js(4).download Phishing
2022-11-24 2 walltowalldiving.netcluesdemo.com/zee/CHASE/assets/main.js(1).download Phishing
2022-11-24 2 walltowalldiving.netcluesdemo.com/zee/CHASE/assets/ZIP_CODE_REGEX.js.download Phishing
2022-11-24 2 walltowalldiving.netcluesdemo.com/zee/CHASE/assets/main.js(3).download Phishing
2022-11-24 2 walltowalldiving.netcluesdemo.com/zee/CHASE/assets/view.js.download Phishing
2022-11-24 2 walltowalldiving.netcluesdemo.com/zee/CHASE/assets/main_e8d9e40e9c1b95b5265 (...) Phishing
2022-11-24 2 walltowalldiving.netcluesdemo.com/zee/CHASE/assets/view.js.download Phishing
2022-11-24 2 walltowalldiving.netcluesdemo.com/zee/CHASE/assets/ZIP_CODE_REGEX.js.download Phishing
2022-11-24 2 walltowalldiving.netcluesdemo.com/zee/CHASE/assets/main.js(4).download Phishing
2022-11-24 2 walltowalldiving.netcluesdemo.com/zee/CHASE/assets/main_5c479e1cc5c88f75e13 (...) Phishing
2022-11-24 2 walltowalldiving.netcluesdemo.com/zee/CHASE/assets/main_5c479e1cc5c88f75e13 (...) Phishing
mnemonic secure dns  No alerts detected
Quad9 DNS  No alerts detected


Files

No files detected



Passive DNS (10)

Passive DNS Source Fully Qualifying Domain Name Rank First Seen Last Seen IP Comment
mnemonic passive DNS firefox.settings.services.mozilla.com (2) 867 2020-06-04 20:08:41 UTC 2022-11-24 05:36:55 UTC 34.102.187.140
mnemonic passive DNS content-signature-2.cdn.mozilla.net (1) 1152 No data No data 34.160.144.191
mnemonic passive DNS walltowalldiving.netcluesdemo.com (25) 0 2021-08-06 15:34:17 UTC 2022-11-24 05:23:08 UTC 147.135.97.220 Unknown ranking
mnemonic passive DNS push.services.mozilla.com (1) 2140 2014-10-24 08:27:06 UTC 2020-05-03 10:09:39 UTC 52.39.96.8
mnemonic passive DNS img-getpocket.cdn.mozilla.net (4) 1631 2018-06-21 23:36:00 UTC 2020-02-19 04:43:25 UTC 34.120.237.76
mnemonic passive DNS ocsp.entrust.net (3) 1208 2014-01-10 02:18:45 UTC 2020-04-24 21:44:37 UTC 104.110.10.32
mnemonic passive DNS static.chasecdn.com (3) 8638 2018-09-28 09:25:32 UTC 2019-11-25 08:47:58 UTC 23.72.139.66
mnemonic passive DNS r3.o.lencr.org (7) 344 No data No data 23.36.76.226
mnemonic passive DNS contile.services.mozilla.com (1) 1114 2021-05-27 18:32:35 UTC 2022-11-24 05:30:55 UTC 34.117.237.239
mnemonic passive DNS ocsp.digicert.com (2) 86 2012-05-21 07:02:23 UTC 2020-05-02 20:58:10 UTC 93.184.220.29


Recent reports on same IP/ASN/Domain/Screenshot

Last 5 reports on IP: 147.135.97.220

Date UQ / IDS / BL URL IP
2022-11-29 03:38:24 +0000
0 - 0 - 21 walltowalldiving.netcluesdemo.com/zee/CHASE/a (...) 147.135.97.220
2022-11-27 00:38:32 +0000
0 - 0 - 27 walltowalldiving.netcluesdemo.com/zee/CHASE/a (...) 147.135.97.220
2022-11-26 12:08:49 +0000
0 - 0 - 6 walltowalldiving.netcluesdemo.com/zee/CHASE/a (...) 147.135.97.220
2022-11-26 11:08:26 +0000
0 - 0 - 22 walltowalldiving.netcluesdemo.com/zee/CHASE/a (...) 147.135.97.220
2022-11-25 05:08:25 +0000
0 - 0 - 16 walltowalldiving.netcluesdemo.com/zee/CHASE/a (...) 147.135.97.220

Last 5 reports on ASN: OVH SAS

Date UQ / IDS / BL URL IP
2022-12-02 02:52:53 +0000
0 - 0 - 3 netsecure24.com/eeee 79.137.5.88
2022-12-02 02:49:46 +0000
0 - 0 - 18 mon-evenement.live/ 141.94.170.170
2022-12-02 02:34:45 +0000
0 - 0 - 20 clinicenterodonto.com.br/ 51.68.183.220
2022-12-02 02:26:38 +0000
0 - 0 - 7 habeb-alroh.forumfa.net/t8271-topic 94.23.73.212
2022-12-02 02:15:18 +0000
0 - 0 - 5 medicopharmacy.co.uk/ 51.68.198.241

Last 5 reports on domain: netcluesdemo.com

Date UQ / IDS / BL URL IP
2022-11-29 03:38:24 +0000
0 - 0 - 21 walltowalldiving.netcluesdemo.com/zee/CHASE/a (...) 147.135.97.220
2022-11-27 00:38:32 +0000
0 - 0 - 27 walltowalldiving.netcluesdemo.com/zee/CHASE/a (...) 147.135.97.220
2022-11-26 12:08:49 +0000
0 - 0 - 6 walltowalldiving.netcluesdemo.com/zee/CHASE/a (...) 147.135.97.220
2022-11-26 11:08:26 +0000
0 - 0 - 22 walltowalldiving.netcluesdemo.com/zee/CHASE/a (...) 147.135.97.220
2022-11-25 05:08:25 +0000
0 - 0 - 16 walltowalldiving.netcluesdemo.com/zee/CHASE/a (...) 147.135.97.220

Last 5 reports with similar screenshot

Date UQ / IDS / BL URL IP
2022-11-29 03:38:24 +0000
0 - 0 - 21 walltowalldiving.netcluesdemo.com/zee/CHASE/a (...) 147.135.97.220
2022-11-26 11:08:26 +0000
0 - 0 - 22 walltowalldiving.netcluesdemo.com/zee/CHASE/a (...) 147.135.97.220
2022-11-25 05:08:25 +0000
0 - 0 - 16 walltowalldiving.netcluesdemo.com/zee/CHASE/a (...) 147.135.97.220
2022-11-24 21:23:32 +0000
0 - 0 - 27 walltowalldiving.netcluesdemo.com/zee/CHASE/a (...) 147.135.97.220
2022-11-24 08:38:36 +0000
0 - 0 - 23 walltowalldiving.netcluesdemo.com/zee/CHASE/a (...) 147.135.97.220


JavaScript

Executed Scripts (6)


Executed Evals (0)


Executed Writes (0)



HTTP Transactions (49)


Request Response
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "12AF026999398F4976749E320667D43DA3F99B7A2E8254ACA7A410A964A106AA"
Last-Modified: Thu, 24 Nov 2022 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12585
Expires: Fri, 25 Nov 2022 00:08:06 GMT
Date: Thu, 24 Nov 2022 20:38:21 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 3164
Cache-Control: max-age=139534
Date: Thu, 24 Nov 2022 20:38:21 GMT
Etag: "637f47ef-1d7"
Expires: Sat, 26 Nov 2022 11:23:55 GMT
Last-Modified: Thu, 24 Nov 2022 10:31:11 GMT
Server: ECS (ska/F70B)
X-Cache: HIT
Content-Length: 471

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "C9951A909F354174F0075A01C01C3C3AA6960983040E328BFBBBEA81AEB405C2"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3455
Expires: Thu, 24 Nov 2022 21:35:56 GMT
Date: Thu, 24 Nov 2022 20:38:21 GMT
Connection: keep-alive

                                        
                                            GET /v1/ HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.102.187.140
HTTP/2 200 OK
content-type: application/json
                                        
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Content-Length, Alert, Backoff, Retry-After
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Thu, 24 Nov 2022 20:17:20 GMT
cache-control: public,max-age=3600
age: 1261
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size:   939
Md5:    4d7e4eed097b9c4e5d509419f1cfc85a
Sha1:   290bb3d428a7c6330e2e3d73a952b16f820896c8
Sha256: 0dc9ca0f57af15adcd416035e92794711434e3d53a1feff21d8481d6d500986c
                                        
                                            GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1 
Host: content-signature-2.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         34.160.144.191
HTTP/2 200 OK
content-type: binary/octet-stream
                                        
x-amz-id-2: yWWlgjxYiQLavpmdFcIuyAnrvppnumoPjoKR0qpftiijQMP/qLhkkOqfDH+mGvmreMU/ZUqkqiI=
x-amz-request-id: CQ8VQYJ2YCYBBAAT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Thu, 24 Nov 2022 19:43:31 GMT
age: 3290
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PEM certificate\012- , ASCII text
Size:   5348
Md5:    9ebddc2b260d081ebbefee47c037cb28
Sha1:   492bad62a7ca6a74738921ef5ae6f0be5edebf39
Sha256: 74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5
                                        
                                            GET /v1/tiles HTTP/1.1 
Host: contile.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.117.237.239
HTTP/2 200 OK
content-type: application/json
                                        
server: nginx
date: Thu, 24 Nov 2022 20:38:21 GMT
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   12
Md5:    23e88fb7b99543fb33315b29b1fad9d6
Sha1:   a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
Sha256: 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
                                        
                                            GET /zee/CHASE/assets/saved_resource.php?amp;SERVID=Service_Login_&_Authentication=f7c59e9e317b8b4a09f663fdfb27d3ba2efadcf0&SERVID=Service_Login_&_Authentication=e256f27e39488de54aa6e9ccf9cfc0656f9e4821 HTTP/1.1 
Host: walltowalldiving.netcluesdemo.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

                                         
                                         147.135.97.220
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
                                        
Server: nginx
Date: Thu, 24 Nov 2022 20:38:21 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
Set-Cookie: PHPSESSID=e4fd9475cc46c4ff0f4f950a9483dac0; path=/
Referrer-Policy: no-referrer-when-downgrade
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: MISS
X-Server-Powered-By: Engintron
Content-Encoding: gzip


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (59046)
Size:   121118
Md5:    3ba3ce79edf00c28f41ebbfb9cebcdaa
Sha1:   cb2fb2e92245c2abdd9a9db6618e4e3a58a2ce64
Sha256: cd90e1ad9bae20329a62e34a9358260d922469c9ef77afb0d1ea52b9f85e3bf7
                                        
                                            GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.102.187.140
HTTP/2 200 OK
content-type: application/json
                                        
access-control-allow-origin: *
access-control-expose-headers: Backoff, Pragma, Alert, Content-Type, ETag, Retry-After, Last-Modified, Content-Length, Cache-Control, Expires
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Thu, 24 Nov 2022 20:08:53 GMT
cache-control: public,max-age=3600
age: 1768
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size:   329
Md5:    0333b0655111aa68de771adfcc4db243
Sha1:   63f295a144ac87a7c8e23417626724eeca68a7eb
Sha256: 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
                                        
                                            GET /zee/CHASE/assets/logon.css HTTP/1.1 
Host: walltowalldiving.netcluesdemo.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://walltowalldiving.netcluesdemo.com/zee/CHASE/assets/saved_resource.php?amp;SERVID=Service_Login_&_Authentication=f7c59e9e317b8b4a09f663fdfb27d3ba2efadcf0&SERVID=Service_Login_&_Authentication=e256f27e39488de54aa6e9ccf9cfc0656f9e4821
Connection: keep-alive
Cookie: PHPSESSID=e4fd9475cc46c4ff0f4f950a9483dac0

                                         
                                         147.135.97.220
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Server: nginx
Date: Thu, 24 Nov 2022 20:38:22 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Wed, 17 Jul 2019 07:41:08 GMT
ETag: W/"1b2b3-58ddb9dc76d00"
Referrer-Policy: no-referrer-when-downgrade
Expires: Sat, 24 Dec 2022 20:38:22 GMT
Cache-Control: max-age=2592000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: STALE
X-Server-Powered-By: Engintron
Content-Encoding: gzip


--- Additional Info ---
Magic:  ASCII text, with very long lines (65536), with no line terminators
Size:   16381
Md5:    768374b07b943c7adf39675cbe88371c
Sha1:   ac2946cf37e75e1f8b56ab9dbabaec8e000f16a5
Sha256: 3df837b68ad6f9c8e70fcbb4c0235c713fb155be2b8491825d8c757e392529ee
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 5010
Cache-Control: max-age=136317
Date: Thu, 24 Nov 2022 20:38:22 GMT
Etag: "637f3429-1d7"
Expires: Sat, 26 Nov 2022 10:30:19 GMT
Last-Modified: Thu, 24 Nov 2022 09:06:49 GMT
Server: ECS (ska/F70B)
X-Cache: HIT
Content-Length: 471

                                        
                                            GET / HTTP/1.1 
Host: push.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: LPCKmBTOZrEVFZPGKtg7ng==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

                                         
                                         52.39.96.8
HTTP/1.1 101 Switching Protocols
                                        
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: lwiHV/ZzWRjD1/twsRS0tBibw/4=

                                        
                                            GET /zee/CHASE/assets/blue-ui.css HTTP/1.1 
Host: walltowalldiving.netcluesdemo.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://walltowalldiving.netcluesdemo.com/zee/CHASE/assets/saved_resource.php?amp;SERVID=Service_Login_&_Authentication=f7c59e9e317b8b4a09f663fdfb27d3ba2efadcf0&SERVID=Service_Login_&_Authentication=e256f27e39488de54aa6e9ccf9cfc0656f9e4821
Connection: keep-alive
Cookie: PHPSESSID=e4fd9475cc46c4ff0f4f950a9483dac0

                                         
                                         147.135.97.220
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Server: nginx
Date: Thu, 24 Nov 2022 20:38:22 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Wed, 17 Jul 2019 07:31:40 GMT
ETag: W/"74a33-58ddb7bec6f00"
Referrer-Policy: no-referrer-when-downgrade
Expires: Sat, 24 Dec 2022 20:38:22 GMT
Cache-Control: max-age=2592000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: STALE
X-Server-Powered-By: Engintron
Content-Encoding: gzip


--- Additional Info ---
Magic:  ASCII text, with very long lines (65536), with no line terminators
Size:   62161
Md5:    10c945c209201103348b282bc6173dff
Sha1:   ac2eb61e3394a3577a3624c689a2f212b3c959b2
Sha256: 402e71a168f70ece6e8e436d27fe5473d4fe9c053fef096209fd714a098f3787
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "0E4EF6DDEF97EC03D43DF4C0BADA61D792B9F030E4D9FAB5BD3CF904AEAA3BC9"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12176
Expires: Fri, 25 Nov 2022 00:01:19 GMT
Date: Thu, 24 Nov 2022 20:38:23 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "0E4EF6DDEF97EC03D43DF4C0BADA61D792B9F030E4D9FAB5BD3CF904AEAA3BC9"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12176
Expires: Fri, 25 Nov 2022 00:01:19 GMT
Date: Thu, 24 Nov 2022 20:38:23 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "0E4EF6DDEF97EC03D43DF4C0BADA61D792B9F030E4D9FAB5BD3CF904AEAA3BC9"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12176
Expires: Fri, 25 Nov 2022 00:01:19 GMT
Date: Thu, 24 Nov 2022 20:38:23 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "0E4EF6DDEF97EC03D43DF4C0BADA61D792B9F030E4D9FAB5BD3CF904AEAA3BC9"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12176
Expires: Fri, 25 Nov 2022 00:01:19 GMT
Date: Thu, 24 Nov 2022 20:38:23 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "0E4EF6DDEF97EC03D43DF4C0BADA61D792B9F030E4D9FAB5BD3CF904AEAA3BC9"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12176
Expires: Fri, 25 Nov 2022 00:01:19 GMT
Date: Thu, 24 Nov 2022 20:38:23 GMT
Connection: keep-alive

                                        
                                            GET /zee/CHASE/assets/boot.js.download HTTP/1.1 
Host: walltowalldiving.netcluesdemo.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://walltowalldiving.netcluesdemo.com/zee/CHASE/assets/saved_resource.php?amp;SERVID=Service_Login_&_Authentication=f7c59e9e317b8b4a09f663fdfb27d3ba2efadcf0&SERVID=Service_Login_&_Authentication=e256f27e39488de54aa6e9ccf9cfc0656f9e4821
Connection: keep-alive
Cookie: PHPSESSID=e4fd9475cc46c4ff0f4f950a9483dac0

                                         
                                         147.135.97.220
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=UTF-8
                                        
Server: nginx
Date: Thu, 24 Nov 2022 20:38:23 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0, no-store
Link: <https://walltowalldiving.netcluesdemo.com/wp-json/>; rel="https://api.w.org/"
Referrer-Policy: no-referrer-when-downgrade
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Content-Encoding: gzip


--- Additional Info ---
Magic:  data
Size:   20746
Md5:    7f94ec408c2710695de20a0909f6cf86
Sha1:   91b06e5d8834862fc013660f34093f4253c5f71a
Sha256: 380fa066d0c98765c2eecbd9143d72dffe2d81912b00eec7c1d908512fb52e15

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /zee/CHASE/assets/main-ver.js.download HTTP/1.1 
Host: walltowalldiving.netcluesdemo.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://walltowalldiving.netcluesdemo.com/zee/CHASE/assets/saved_resource.php?amp;SERVID=Service_Login_&_Authentication=f7c59e9e317b8b4a09f663fdfb27d3ba2efadcf0&SERVID=Service_Login_&_Authentication=e256f27e39488de54aa6e9ccf9cfc0656f9e4821
Connection: keep-alive
Cookie: PHPSESSID=e4fd9475cc46c4ff0f4f950a9483dac0

                                         
                                         147.135.97.220
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=UTF-8
                                        
Server: nginx
Date: Thu, 24 Nov 2022 20:38:23 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0, no-store
Link: <https://walltowalldiving.netcluesdemo.com/wp-json/>; rel="https://api.w.org/"
Referrer-Policy: no-referrer-when-downgrade
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Content-Encoding: gzip


--- Additional Info ---
Magic:  data
Size:   21419
Md5:    5a58fd328ee19fc877e9c7931d8802a6
Sha1:   6d1581d1df6101d2335a32b069772db77043d45d
Sha256: f9cbd1c9bb10694a3eaeaf4b455b29dda792a03b6756c2cd86f1b4974a5d0223

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F433fbaf5-7c54-485b-af70-542e1e788832.webp HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 5070
x-amzn-requestid: d86d95ad-9b78-4047-82e7-04e83a97e330
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cEwViF1GIAMF_PQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637e9423-10809ba1634776171cf79cb8;Sampled=0
x-amzn-remapped-date: Wed, 23 Nov 2022 21:44:03 GMT
x-amz-cf-pop: SFO5-P2, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 8rbsN9OVJmneT9ov-Q7V4RB8DP5UWhhn-7cnukHiBpl06zmMM0zJTg==
via: 1.1 0dc4feb22bb4657ce2bb95fd05ec7122.cloudfront.net (CloudFront), 1.1 d6a002c70d55f415107618b0750d493c.cloudfront.net (CloudFront), 1.1 google
date: Wed, 23 Nov 2022 21:57:20 GMT
age: 81663
etag: "89accd230fba95fe0049678070817b36ead015fa"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   5070
Md5:    0856fdb55f19f03a1bec38b3d6e0ac77
Sha1:   89accd230fba95fe0049678070817b36ead015fa
Sha256: 17c6e6f9bb8f4261fff2dc2a43ed994986418761624b8afead768e89927594f2
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F81517ad5-7c1b-49aa-9ba9-dbfa36fbb071.webp HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 13882
x-amzn-requestid: 9022b0b3-31d5-4149-a969-02514f11b95a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cEvzNHjMoAMFWMg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637e9347-0e8354a02bef623644714e31;Sampled=0
x-amzn-remapped-date: Wed, 23 Nov 2022 21:40:23 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: ve4q5FDkwMGhPK6ZVVVCZtoBTaGaz43r_PwINzwS5Nx5tcZeQkVIfw==
via: 1.1 000f4a2f631bace380a0afa747a82482.cloudfront.net (CloudFront), 1.1 ce71f64ad5dca81beca846466f2d5008.cloudfront.net (CloudFront), 1.1 google
date: Wed, 23 Nov 2022 21:49:47 GMT
age: 82116
etag: "1102dbdcbcabf5c25d17840f8f00d5b55b9b8f0a"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   13882
Md5:    64d79191f005c9876b952c5f948aa0f7
Sha1:   1102dbdcbcabf5c25d17840f8f00d5b55b9b8f0a
Sha256: 00fb36c3d322e8302c5ce202d6d4119d637510cd6f3b63e1347781ec3bb9d7fc
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fca5cb469-21a0-420a-875c-a81635b33f53.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 7993
x-amzn-requestid: 9f0ff853-4819-47cd-959d-658401ea5748
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cEvCsG5mIAMFqAQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637e9211-1c48b9223684f2942f8dd42d;Sampled=0
x-amzn-remapped-date: Wed, 23 Nov 2022 21:35:13 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 7YSXUV-LZpsI7vciFhuqt1EVr6YRkhxcOgMg8z8bxLcOE01_baf6Gg==
via: 1.1 d1151317ba32afe0e6370fd69fed222e.cloudfront.net (CloudFront), 1.1 1b74ccf4cb51eacf97a0e6d60ae46a3e.cloudfront.net (CloudFront), 1.1 google
date: Wed, 23 Nov 2022 21:47:06 GMT
etag: "43d1dec7fc06879988c9c3cadd800cc8145df988"
age: 82277
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   7993
Md5:    92c78302bcce1568eb6a5563100b932c
Sha1:   43d1dec7fc06879988c9c3cadd800cc8145df988
Sha256: 0dda9914306c8e3a7ea75eade8e762652d93907dd6c5a8cc81707d6d8098b60a
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1dd98515-d0af-440a-8f3d-4c9986928081.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 4309
x-amzn-requestid: a22b4d7e-e208-4bda-81c2-d13e6463380e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: blE0hGNioAMF_Tg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6371e81c-1b13846866f56a0e47675e56;Sampled=0
x-amzn-remapped-date: Mon, 14 Nov 2022 07:02:52 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 0sYKpJWi2Tv9Atz3PYXm5j7kmncAOxjcLcK4hgAkJ5b4pNMDmjdB6g==
via: 1.1 ddd913fbbe7367d44af4ac06097e7a2a.cloudfront.net (CloudFront), 1.1 28390a4d24ed4fdccd685d99cd06cf4e.cloudfront.net (CloudFront), 1.1 google
date: Thu, 24 Nov 2022 07:14:07 GMT
age: 48256
etag: "126771b86638108050cf57c0d12faa27f80f0edb"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   4309
Md5:    841a4b110022a99ddea6f7bf66df0fa1
Sha1:   126771b86638108050cf57c0d12faa27f80f0edb
Sha256: 240fbffc1f9104433297d3ff7afba2d0b58d7f1b13d9a9260a1bad25216665db
                                        
                                            POST / HTTP/1.1 
Host: ocsp.entrust.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         104.110.10.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
ETag: "549E13670BEC310D8244B2FF3BD5FCF5CD792AB1725BB7BE865AD9F967424EFC"
Last-Modified: Thu, 24 Nov 2022 11:00:00 UTC
Content-Length: 1588
Cache-Control: public, no-transform, must-revalidate, max-age=1354
Expires: Thu, 24 Nov 2022 21:01:02 GMT
Date: Thu, 24 Nov 2022 20:38:28 GMT
Connection: keep-alive


--- Additional Info ---
Magic:  data
Size:   1588
Md5:    aa0696b2f77d8e0ad06d1b4bf0609765
Sha1:   58a8a6a455c47f072c13d73422b42395f0b04d57
Sha256: 549e13670bec310d8244b2ff3bd5fcf5cd792ab1725bb7be865ad9f967424efc
                                        
                                            GET /zee/CHASE/assets/main_e8d9e40e9c1b95b5265f5d41029f7c5c.js.download HTTP/1.1 
Host: walltowalldiving.netcluesdemo.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://walltowalldiving.netcluesdemo.com/zee/CHASE/assets/saved_resource.php?amp;SERVID=Service_Login_&_Authentication=f7c59e9e317b8b4a09f663fdfb27d3ba2efadcf0&SERVID=Service_Login_&_Authentication=e256f27e39488de54aa6e9ccf9cfc0656f9e4821
Connection: keep-alive
Cookie: PHPSESSID=e4fd9475cc46c4ff0f4f950a9483dac0

                                         
                                         147.135.97.220
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=UTF-8
                                        
Server: nginx
Date: Thu, 24 Nov 2022 20:38:26 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0, no-store
Link: <https://walltowalldiving.netcluesdemo.com/wp-json/>; rel="https://api.w.org/"
Referrer-Policy: no-referrer-when-downgrade
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Content-Encoding: gzip


--- Additional Info ---
Magic:  data
Size:   15545
Md5:    7a263d2e2c5f98ae84c2b4d689c29d89
Sha1:   9d7ca06effb979864fb51f4b9c1eaab1d7829aa0
Sha256: 9612c042deafdf753662095b047984597d6316628d3970871418bfe9c2ee3998

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            POST / HTTP/1.1 
Host: ocsp.entrust.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         104.110.10.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
ETag: "549E13670BEC310D8244B2FF3BD5FCF5CD792AB1725BB7BE865AD9F967424EFC"
Last-Modified: Thu, 24 Nov 2022 11:00:00 UTC
Content-Length: 1588
Cache-Control: public, no-transform, must-revalidate, max-age=1347
Expires: Thu, 24 Nov 2022 21:00:55 GMT
Date: Thu, 24 Nov 2022 20:38:28 GMT
Connection: keep-alive


--- Additional Info ---
Magic:  data
Size:   1588
Md5:    aa0696b2f77d8e0ad06d1b4bf0609765
Sha1:   58a8a6a455c47f072c13d73422b42395f0b04d57
Sha256: 549e13670bec310d8244b2ff3bd5fcf5cd792ab1725bb7be865ad9f967424efc
                                        
                                            POST / HTTP/1.1 
Host: ocsp.entrust.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         104.110.10.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
ETag: "549E13670BEC310D8244B2FF3BD5FCF5CD792AB1725BB7BE865AD9F967424EFC"
Last-Modified: Thu, 24 Nov 2022 11:00:00 UTC
Content-Length: 1588
Cache-Control: public, no-transform, must-revalidate, max-age=1354
Expires: Thu, 24 Nov 2022 21:01:02 GMT
Date: Thu, 24 Nov 2022 20:38:28 GMT
Connection: keep-alive


--- Additional Info ---
Magic:  data
Size:   1588
Md5:    aa0696b2f77d8e0ad06d1b4bf0609765
Sha1:   58a8a6a455c47f072c13d73422b42395f0b04d57
Sha256: 549e13670bec310d8244b2ff3bd5fcf5cd792ab1725bb7be865ad9f967424efc
                                        
                                            GET /zee/CHASE/assets/locationAPI.js.download HTTP/1.1 
Host: walltowalldiving.netcluesdemo.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://walltowalldiving.netcluesdemo.com/zee/CHASE/assets/saved_resource.php?amp;SERVID=Service_Login_&_Authentication=f7c59e9e317b8b4a09f663fdfb27d3ba2efadcf0&SERVID=Service_Login_&_Authentication=e256f27e39488de54aa6e9ccf9cfc0656f9e4821
Connection: keep-alive
Cookie: PHPSESSID=e4fd9475cc46c4ff0f4f950a9483dac0

                                         
                                         147.135.97.220
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=UTF-8
                                        
Server: nginx
Date: Thu, 24 Nov 2022 20:38:24 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0, no-store
Link: <https://walltowalldiving.netcluesdemo.com/wp-json/>; rel="https://api.w.org/"
Referrer-Policy: no-referrer-when-downgrade
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Content-Encoding: gzip


--- Additional Info ---
Magic:  data
Size:   39065
Md5:    af04d92805e1099cd20ecd8f0a94522b
Sha1:   be0766ba27aad20eabbdf77076e8095e384f0b53
Sha256: f02454e2056a20df4a395ebbc5adb8c5c03d7a53616ad90874860774bbdd655b

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /content/dam/cpo-static/fonts/opensans-regular.woff HTTP/1.1 
Host: static.chasecdn.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://walltowalldiving.netcluesdemo.com
Connection: keep-alive
Referer: http://walltowalldiving.netcluesdemo.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         23.72.139.66
HTTP/2 200 OK
content-type: font/woff
                                        
last-modified: Fri, 09 Sep 2022 00:02:35 GMT
accept-ranges: bytes
strict-transport-security: max-age=31536000
access-control-allow-origin: *
cache-control: max-age=2592000,s-maxage=2592000
content-length: 24876
date: Thu, 24 Nov 2022 20:38:28 GMT
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format, TrueType, length 24876, version 1.0\012- data
Size:   24876
Md5:    4eeedb4bc24c1cae309e117eea3f102f
Sha1:   ad5a141ef39ad1ada22a464fcd3678fcf72ac22b
Sha256: b8422277fc69c8e6ab51112dbf25048e40425cc497490fee251b56d7ef0ca179
                                        
                                            GET /zee/CHASE/assets/settings.js(1).download HTTP/1.1 
Host: walltowalldiving.netcluesdemo.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://walltowalldiving.netcluesdemo.com/zee/CHASE/assets/saved_resource.php?amp;SERVID=Service_Login_&_Authentication=f7c59e9e317b8b4a09f663fdfb27d3ba2efadcf0&SERVID=Service_Login_&_Authentication=e256f27e39488de54aa6e9ccf9cfc0656f9e4821
Connection: keep-alive
Cookie: PHPSESSID=e4fd9475cc46c4ff0f4f950a9483dac0

                                         
                                         147.135.97.220
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=UTF-8
                                        
Server: nginx
Date: Thu, 24 Nov 2022 20:38:25 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0, no-store
Link: <https://walltowalldiving.netcluesdemo.com/wp-json/>; rel="https://api.w.org/"
Referrer-Policy: no-referrer-when-downgrade
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Content-Encoding: gzip


--- Additional Info ---
Magic:  data
Size:   28461
Md5:    f2563ddc16104f40634e34806f8cf173
Sha1:   26ae3c1b0e8e0f09268bbee598004bb29ac5b5fc
Sha256: 1d39fb8c84f985464f8b977ef82b3c09dcd0fa08011816fcbd3e03abe16f4f7d

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /zee/CHASE/assets/main.js.download HTTP/1.1 
Host: walltowalldiving.netcluesdemo.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://walltowalldiving.netcluesdemo.com/zee/CHASE/assets/saved_resource.php?amp;SERVID=Service_Login_&_Authentication=f7c59e9e317b8b4a09f663fdfb27d3ba2efadcf0&SERVID=Service_Login_&_Authentication=e256f27e39488de54aa6e9ccf9cfc0656f9e4821
Connection: keep-alive
Cookie: PHPSESSID=e4fd9475cc46c4ff0f4f950a9483dac0

                                         
                                         147.135.97.220
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=UTF-8
                                        
Server: nginx
Date: Thu, 24 Nov 2022 20:38:23 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0, no-store
Link: <https://walltowalldiving.netcluesdemo.com/wp-json/>; rel="https://api.w.org/"
Referrer-Policy: no-referrer-when-downgrade
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Content-Encoding: gzip


--- Additional Info ---
Magic:  data
Size:   259578
Md5:    3bad31e73adff9b56b86c58f699653e2
Sha1:   87c291ec1ca627e7a89a8357d3bc2c9e61faf1bf
Sha256: ddfda54c3300f7271d508f95c0eb99ba2d3f13e83c24545b2bf42c3240d7c678

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /content/dam/cpo-static/images/chase-touch-icon-152x152.png HTTP/1.1 
Host: static.chasecdn.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://walltowalldiving.netcluesdemo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         23.72.139.66
HTTP/2 200 OK
content-type: image/png
                                        
last-modified: Thu, 27 Oct 2022 21:06:50 GMT
accept-ranges: bytes
strict-transport-security: max-age=31536000
access-control-allow-origin: *
cache-control: max-age=2592000,s-maxage=2592000
content-length: 3306
date: Thu, 24 Nov 2022 20:38:29 GMT
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 152 x 152, 8-bit/color RGB, non-interlaced\012- data
Size:   3306
Md5:    c914a8a86590b23691476a4178ea3a52
Sha1:   af16ec4fc3b5446cac17ec8f0044286b835d3295
Sha256: f3446f452fc926c9182a2a43780faa169e533df8446d4f9a5f62ac2fb5b375e6
                                        
                                            GET /content/dam/cpo-static/images/chasefavicon.ico HTTP/1.1 
Host: static.chasecdn.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://walltowalldiving.netcluesdemo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         23.72.139.66
HTTP/2 200 OK
content-type: image/x-icon
                                        
last-modified: Thu, 27 Oct 2022 19:57:35 GMT
accept-ranges: bytes
strict-transport-security: max-age=31536000
access-control-allow-origin: *
cache-control: max-age=2592000,s-maxage=2592000
vary: Accept-Encoding
content-encoding: gzip
date: Thu, 24 Nov 2022 20:38:29 GMT
content-length: 2478
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  MS Windows icon resource - 4 icons, 16x16, 32 bits/pixel, 32x32, 32 bits/pixel\012- data
Size:   2478
Md5:    9720428826e9aa52f08f3ed2e059fc84
Sha1:   52261e7e79e993ab182d7ac4cfa620046109bd33
Sha256: 8bc006b59ff3428cbc8f0fa75e9dc82cecc85e4c09d7f09edd6c717f6ac2debf
                                        
                                            GET /zee/CHASE/assets/main.js(2).download HTTP/1.1 
Host: walltowalldiving.netcluesdemo.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://walltowalldiving.netcluesdemo.com/zee/CHASE/assets/saved_resource.php?amp;SERVID=Service_Login_&_Authentication=f7c59e9e317b8b4a09f663fdfb27d3ba2efadcf0&SERVID=Service_Login_&_Authentication=e256f27e39488de54aa6e9ccf9cfc0656f9e4821
Connection: keep-alive
Cookie: PHPSESSID=e4fd9475cc46c4ff0f4f950a9483dac0

                                         
                                         147.135.97.220
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=UTF-8
                                        
Server: nginx
Date: Thu, 24 Nov 2022 20:38:29 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0, no-store
Link: <https://walltowalldiving.netcluesdemo.com/wp-json/>; rel="https://api.w.org/"
Referrer-Policy: no-referrer-when-downgrade
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Content-Encoding: gzip


--- Additional Info ---

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /zee/CHASE/assets/appConfig.js(1).download HTTP/1.1 
Host: walltowalldiving.netcluesdemo.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://walltowalldiving.netcluesdemo.com/zee/CHASE/assets/saved_resource.php?amp;SERVID=Service_Login_&_Authentication=f7c59e9e317b8b4a09f663fdfb27d3ba2efadcf0&SERVID=Service_Login_&_Authentication=e256f27e39488de54aa6e9ccf9cfc0656f9e4821
Connection: keep-alive
Cookie: PHPSESSID=e4fd9475cc46c4ff0f4f950a9483dac0

                                         
                                         147.135.97.220
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=UTF-8
                                        
Server: nginx
Date: Thu, 24 Nov 2022 20:38:23 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0, no-store
Link: <https://walltowalldiving.netcluesdemo.com/wp-json/>; rel="https://api.w.org/"
Referrer-Policy: no-referrer-when-downgrade
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Content-Encoding: gzip


--- Additional Info ---

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /zee/CHASE/assets/main.js(2).download HTTP/1.1 
Host: walltowalldiving.netcluesdemo.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://walltowalldiving.netcluesdemo.com/zee/CHASE/assets/saved_resource.php?amp;SERVID=Service_Login_&_Authentication=f7c59e9e317b8b4a09f663fdfb27d3ba2efadcf0&SERVID=Service_Login_&_Authentication=e256f27e39488de54aa6e9ccf9cfc0656f9e4821
Connection: keep-alive
Cookie: PHPSESSID=e4fd9475cc46c4ff0f4f950a9483dac0

                                         
                                         147.135.97.220
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=UTF-8
                                        
Server: nginx
Date: Thu, 24 Nov 2022 20:38:25 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0, no-store
Link: <https://walltowalldiving.netcluesdemo.com/wp-json/>; rel="https://api.w.org/"
Referrer-Policy: no-referrer-when-downgrade
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Content-Encoding: gzip


--- Additional Info ---

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /zee/CHASE/assets/domManagement.js.download HTTP/1.1 
Host: walltowalldiving.netcluesdemo.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://walltowalldiving.netcluesdemo.com/zee/CHASE/assets/saved_resource.php?amp;SERVID=Service_Login_&_Authentication=f7c59e9e317b8b4a09f663fdfb27d3ba2efadcf0&SERVID=Service_Login_&_Authentication=e256f27e39488de54aa6e9ccf9cfc0656f9e4821
Connection: keep-alive
Cookie: PHPSESSID=e4fd9475cc46c4ff0f4f950a9483dac0

                                         
                                         147.135.97.220
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=UTF-8
                                        
Server: nginx
Date: Thu, 24 Nov 2022 20:38:26 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0, no-store
Link: <https://walltowalldiving.netcluesdemo.com/wp-json/>; rel="https://api.w.org/"
Referrer-Policy: no-referrer-when-downgrade
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Content-Encoding: gzip


--- Additional Info ---

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /zee/CHASE/assets/main.js(3).download HTTP/1.1 
Host: walltowalldiving.netcluesdemo.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://walltowalldiving.netcluesdemo.com/zee/CHASE/assets/saved_resource.php?amp;SERVID=Service_Login_&_Authentication=f7c59e9e317b8b4a09f663fdfb27d3ba2efadcf0&SERVID=Service_Login_&_Authentication=e256f27e39488de54aa6e9ccf9cfc0656f9e4821
Connection: keep-alive
Cookie: PHPSESSID=e4fd9475cc46c4ff0f4f950a9483dac0

                                         
                                         147.135.97.220
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=UTF-8
                                        
Server: nginx
Date: Thu, 24 Nov 2022 20:38:29 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0, no-store
Link: <https://walltowalldiving.netcluesdemo.com/wp-json/>; rel="https://api.w.org/"
Referrer-Policy: no-referrer-when-downgrade
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Content-Encoding: gzip


--- Additional Info ---

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /zee/CHASE/assets/main.js(4).download HTTP/1.1 
Host: walltowalldiving.netcluesdemo.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://walltowalldiving.netcluesdemo.com/zee/CHASE/assets/saved_resource.php?amp;SERVID=Service_Login_&_Authentication=f7c59e9e317b8b4a09f663fdfb27d3ba2efadcf0&SERVID=Service_Login_&_Authentication=e256f27e39488de54aa6e9ccf9cfc0656f9e4821
Connection: keep-alive
Cookie: PHPSESSID=e4fd9475cc46c4ff0f4f950a9483dac0

                                         
                                         147.135.97.220
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=UTF-8
                                        
Server: nginx
Date: Thu, 24 Nov 2022 20:38:30 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0, no-store
Link: <https://walltowalldiving.netcluesdemo.com/wp-json/>; rel="https://api.w.org/"
Referrer-Policy: no-referrer-when-downgrade
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Content-Encoding: gzip


--- Additional Info ---

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /zee/CHASE/assets/main.js(1).download HTTP/1.1 
Host: walltowalldiving.netcluesdemo.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://walltowalldiving.netcluesdemo.com/zee/CHASE/assets/saved_resource.php?amp;SERVID=Service_Login_&_Authentication=f7c59e9e317b8b4a09f663fdfb27d3ba2efadcf0&SERVID=Service_Login_&_Authentication=e256f27e39488de54aa6e9ccf9cfc0656f9e4821
Connection: keep-alive
Cookie: PHPSESSID=e4fd9475cc46c4ff0f4f950a9483dac0

                                         
                                         147.135.97.220
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=UTF-8
                                        
Server: nginx
Date: Thu, 24 Nov 2022 20:38:23 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0, no-store
Link: <https://walltowalldiving.netcluesdemo.com/wp-json/>; rel="https://api.w.org/"
Referrer-Policy: no-referrer-when-downgrade
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Content-Encoding: gzip


--- Additional Info ---

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /zee/CHASE/assets/ZIP_CODE_REGEX.js.download HTTP/1.1 
Host: walltowalldiving.netcluesdemo.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://walltowalldiving.netcluesdemo.com/zee/CHASE/assets/saved_resource.php?amp;SERVID=Service_Login_&_Authentication=f7c59e9e317b8b4a09f663fdfb27d3ba2efadcf0&SERVID=Service_Login_&_Authentication=e256f27e39488de54aa6e9ccf9cfc0656f9e4821
Connection: keep-alive
Cookie: PHPSESSID=e4fd9475cc46c4ff0f4f950a9483dac0

                                         
                                         147.135.97.220
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=UTF-8
                                        
Server: nginx
Date: Thu, 24 Nov 2022 20:38:25 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0, no-store
Link: <https://walltowalldiving.netcluesdemo.com/wp-json/>; rel="https://api.w.org/"
Referrer-Policy: no-referrer-when-downgrade
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Content-Encoding: gzip


--- Additional Info ---

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /zee/CHASE/assets/main.js(3).download HTTP/1.1 
Host: walltowalldiving.netcluesdemo.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://walltowalldiving.netcluesdemo.com/zee/CHASE/assets/saved_resource.php?amp;SERVID=Service_Login_&_Authentication=f7c59e9e317b8b4a09f663fdfb27d3ba2efadcf0&SERVID=Service_Login_&_Authentication=e256f27e39488de54aa6e9ccf9cfc0656f9e4821
Connection: keep-alive
Cookie: PHPSESSID=e4fd9475cc46c4ff0f4f950a9483dac0

                                         
                                         147.135.97.220
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=UTF-8
                                        
Server: nginx
Date: Thu, 24 Nov 2022 20:38:25 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0, no-store
Link: <https://walltowalldiving.netcluesdemo.com/wp-json/>; rel="https://api.w.org/"
Referrer-Policy: no-referrer-when-downgrade
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Content-Encoding: gzip


--- Additional Info ---

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /zee/CHASE/assets/view.js.download HTTP/1.1 
Host: walltowalldiving.netcluesdemo.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://walltowalldiving.netcluesdemo.com/zee/CHASE/assets/saved_resource.php?amp;SERVID=Service_Login_&_Authentication=f7c59e9e317b8b4a09f663fdfb27d3ba2efadcf0&SERVID=Service_Login_&_Authentication=e256f27e39488de54aa6e9ccf9cfc0656f9e4821
Connection: keep-alive
Cookie: PHPSESSID=e4fd9475cc46c4ff0f4f950a9483dac0

                                         
                                         147.135.97.220
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=UTF-8
                                        
Server: nginx
Date: Thu, 24 Nov 2022 20:38:25 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0, no-store
Link: <https://walltowalldiving.netcluesdemo.com/wp-json/>; rel="https://api.w.org/"
Referrer-Policy: no-referrer-when-downgrade
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Content-Encoding: gzip


--- Additional Info ---

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /zee/CHASE/assets/main_e8d9e40e9c1b95b5265f5d41029f7c5c.js.download HTTP/1.1 
Host: walltowalldiving.netcluesdemo.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://walltowalldiving.netcluesdemo.com/zee/CHASE/assets/saved_resource.php?amp;SERVID=Service_Login_&_Authentication=f7c59e9e317b8b4a09f663fdfb27d3ba2efadcf0&SERVID=Service_Login_&_Authentication=e256f27e39488de54aa6e9ccf9cfc0656f9e4821
Connection: keep-alive
Cookie: PHPSESSID=e4fd9475cc46c4ff0f4f950a9483dac0

                                         
                                         147.135.97.220
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=UTF-8
                                        
Server: nginx
Date: Thu, 24 Nov 2022 20:38:28 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0, no-store
Link: <https://walltowalldiving.netcluesdemo.com/wp-json/>; rel="https://api.w.org/"
Referrer-Policy: no-referrer-when-downgrade
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Content-Encoding: gzip


--- Additional Info ---

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /zee/CHASE/assets/view.js.download HTTP/1.1 
Host: walltowalldiving.netcluesdemo.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://walltowalldiving.netcluesdemo.com/zee/CHASE/assets/saved_resource.php?amp;SERVID=Service_Login_&_Authentication=f7c59e9e317b8b4a09f663fdfb27d3ba2efadcf0&SERVID=Service_Login_&_Authentication=e256f27e39488de54aa6e9ccf9cfc0656f9e4821
Connection: keep-alive
Cookie: PHPSESSID=e4fd9475cc46c4ff0f4f950a9483dac0

                                         
                                         147.135.97.220
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=UTF-8
                                        
Server: nginx
Date: Thu, 24 Nov 2022 20:38:30 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0, no-store
Link: <https://walltowalldiving.netcluesdemo.com/wp-json/>; rel="https://api.w.org/"
Referrer-Policy: no-referrer-when-downgrade
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Content-Encoding: gzip


--- Additional Info ---

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /zee/CHASE/assets/ZIP_CODE_REGEX.js.download HTTP/1.1 
Host: walltowalldiving.netcluesdemo.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://walltowalldiving.netcluesdemo.com/zee/CHASE/assets/saved_resource.php?amp;SERVID=Service_Login_&_Authentication=f7c59e9e317b8b4a09f663fdfb27d3ba2efadcf0&SERVID=Service_Login_&_Authentication=e256f27e39488de54aa6e9ccf9cfc0656f9e4821
Connection: keep-alive
Cookie: PHPSESSID=e4fd9475cc46c4ff0f4f950a9483dac0

                                         
                                         147.135.97.220
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=UTF-8
                                        
Server: nginx
Date: Thu, 24 Nov 2022 20:38:30 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0, no-store
Link: <https://walltowalldiving.netcluesdemo.com/wp-json/>; rel="https://api.w.org/"
Referrer-Policy: no-referrer-when-downgrade
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Content-Encoding: gzip


--- Additional Info ---

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /zee/CHASE/assets/main.js(4).download HTTP/1.1 
Host: walltowalldiving.netcluesdemo.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://walltowalldiving.netcluesdemo.com/zee/CHASE/assets/saved_resource.php?amp;SERVID=Service_Login_&_Authentication=f7c59e9e317b8b4a09f663fdfb27d3ba2efadcf0&SERVID=Service_Login_&_Authentication=e256f27e39488de54aa6e9ccf9cfc0656f9e4821
Connection: keep-alive
Cookie: PHPSESSID=e4fd9475cc46c4ff0f4f950a9483dac0

                                         
                                         147.135.97.220
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=UTF-8
                                        
Server: nginx
Date: Thu, 24 Nov 2022 20:38:25 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0, no-store
Link: <https://walltowalldiving.netcluesdemo.com/wp-json/>; rel="https://api.w.org/"
Referrer-Policy: no-referrer-when-downgrade
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Content-Encoding: gzip


--- Additional Info ---

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /zee/CHASE/assets/main_5c479e1cc5c88f75e139c71eb55f53e2.js.download HTTP/1.1 
Host: walltowalldiving.netcluesdemo.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://walltowalldiving.netcluesdemo.com/zee/CHASE/assets/saved_resource.php?amp;SERVID=Service_Login_&_Authentication=f7c59e9e317b8b4a09f663fdfb27d3ba2efadcf0&SERVID=Service_Login_&_Authentication=e256f27e39488de54aa6e9ccf9cfc0656f9e4821
Connection: keep-alive
Cookie: PHPSESSID=e4fd9475cc46c4ff0f4f950a9483dac0

                                         
                                         147.135.97.220
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=UTF-8
                                        
Server: nginx
Date: Thu, 24 Nov 2022 20:38:26 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0, no-store
Link: <https://walltowalldiving.netcluesdemo.com/wp-json/>; rel="https://api.w.org/"
Referrer-Policy: no-referrer-when-downgrade
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Content-Encoding: gzip


--- Additional Info ---

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /zee/CHASE/assets/main_5c479e1cc5c88f75e139c71eb55f53e2.js.download HTTP/1.1 
Host: walltowalldiving.netcluesdemo.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://walltowalldiving.netcluesdemo.com/zee/CHASE/assets/saved_resource.php?amp;SERVID=Service_Login_&_Authentication=f7c59e9e317b8b4a09f663fdfb27d3ba2efadcf0&SERVID=Service_Login_&_Authentication=e256f27e39488de54aa6e9ccf9cfc0656f9e4821
Connection: keep-alive
Cookie: PHPSESSID=e4fd9475cc46c4ff0f4f950a9483dac0

                                         
                                         147.135.97.220
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=UTF-8
                                        
Server: nginx
Date: Thu, 24 Nov 2022 20:38:27 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0, no-store
Link: <https://walltowalldiving.netcluesdemo.com/wp-json/>; rel="https://api.w.org/"
Referrer-Policy: no-referrer-when-downgrade
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Content-Encoding: gzip


--- Additional Info ---

Alerts:
  Blocklists:
    - fortinet: Phishing