www.sealsafeonline.com/
192.3.190.242200 OK 7.0 kB IP 192.3.190.242:0
ASN #36352 AS-COLOCROSSING
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with CRLF line terminators
Hash 0a83fcf770dc77a0c1f0a3083cf90df0
dbde2936dccd00534a2a631b85dcee34761fc559
8a0944dfa5fbbb41b8a678c636a600f1f7e86f645fbf0481f5598c44e96e4c9a
Analyzer Verdict Alert fortinet Phishing
NIDS Severity Alert suricata high ET PHISHING Possible Phish - Mirrored Website Comment Observed
GET / HTTP/1.1
Host: www.sealsafeonline.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Date: Sat, 11 Mar 2023 11:16:37 GMT
Server: Apache
Last-Modified: Sun, 07 Aug 2022 07:02:34 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 6973
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 9ce33c47154f4826255fe9bbe54d72be
e10a363c007a6d15ed43eb35b4e5c246d85c5eed
cf423db1a8ad1dce1b5c25f6025d14411b4a46e95a6001288949f046e244bc24
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "CF423DB1A8AD1DCE1B5C25F6025D14411B4A46E95A6001288949F046E244BC24"
Last-Modified: Fri, 10 Mar 2023 02:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21370
Expires: Sat, 11 Mar 2023 17:12:47 GMT
Date: Sat, 11 Mar 2023 11:16:37 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 99824e6e553dd5649b1d199589a6dab2
00b2c24f6ef22620045c3b2ef7a63ea9ac8cc0a2
3a4695284040436fd256023da7d39bab8b16f8a2d4f7105c0f995f610dcab2d2
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "3A4695284040436FD256023DA7D39BAB8B16F8A2D4F7105C0F995F610DCAB2D2"
Last-Modified: Thu, 09 Mar 2023 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3590
Expires: Sat, 11 Mar 2023 12:16:27 GMT
Date: Sat, 11 Mar 2023 11:16:37 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 7f03faaba3392caae6dae54467bfdf6d
57ea1f14e8bfbcca8190c706d708c9fda12442c1
02ac551ba61fcbc6b04f244df065948b181a8a258db5c2e197aae66fdfcea8ee
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Alert, Backoff, Retry-After, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sat, 11 Mar 2023 11:13:51 GMT
content-type: application/json
age: 166
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 33723bd3cb2d70f8f86442863df61ec1
ee9f60025e885c09ff570c4e8f641bcc25ff83f0
dc794aeea289e16c4f217e2e3379cc434b6071badbf9ab6d64884707eafee538
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DC794AEEA289E16C4F217E2E3379CC434B6071BADBF9AB6D64884707EAFEE538"
Last-Modified: Thu, 09 Mar 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9675
Expires: Sat, 11 Mar 2023 13:57:52 GMT
Date: Sat, 11 Mar 2023 11:16:37 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-04-09-20-28-26.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-04-09-20-28-26.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash b5ba6334e73496995e3e3a9ecd0eb323
ad80d3b7718c28364e8c2004fb38a13a1747e462
aa5abb52515c6383c014aadb63a86c9f798ad64de53c0218616c1fc6d424d2e2
GET /chains/remote-settings.content-signature.mozilla.org-2023-04-09-20-28-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: Fp01VpuvxniOnftPmW944GBjbbOpTokBmyYqaOV7QS/EvP+YRVNWXbAp5yTtv/JQezjBmPTQrnWYeGuSE+n4GA==
x-amz-request-id: CVNK530XJJ43PX5W
x-amz-server-side-encryption: AES256
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sat, 11 Mar 2023 10:45:31 GMT
age: 1866
last-modified: Sat, 18 Feb 2023 20:28:27 GMT
etag: "b5ba6334e73496995e3e3a9ecd0eb323"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 11 Mar 2023 11:16:37 GMT
content-type: application/json
content-length: 12
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-credentials: true
access-control-expose-headers: content-type
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
www.sealsafeonline.com/use.fontawesome.com/releases/v5.7.1/css/all.css
192.3.190.242404 Not Found 315 B URL HTTP/1.1 www.sealsafeonline.com/use.fontawesome.com/releases/v5.7.1/css/all.css
IP 192.3.190.242:0
ASN #36352 AS-COLOCROSSING
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3
GET /use.fontawesome.com/releases/v5.7.1/css/all.css HTTP/1.1
Host: www.sealsafeonline.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.sealsafeonline.com/
HTTP/1.1 404 Not Found
Date: Sat, 11 Mar 2023 11:16:37 GMT
Server: Apache
Content-Length: 315
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
www.sealsafeonline.com/ajax.googleapis.com/ajax/libs/jquery/1.10.2/jquery.min.js
192.3.190.242404 Not Found 315 B URL HTTP/1.1 www.sealsafeonline.com/ajax.googleapis.com/ajax/libs/jquery/1.10.2/jquery.min.js
IP 192.3.190.242:0
ASN #36352 AS-COLOCROSSING
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3
Analyzer Verdict Alert fortinet Phishing
GET /ajax.googleapis.com/ajax/libs/jquery/1.10.2/jquery.min.js HTTP/1.1
Host: www.sealsafeonline.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.sealsafeonline.com/
HTTP/1.1 404 Not Found
Date: Sat, 11 Mar 2023 11:16:37 GMT
Server: Apache
Content-Length: 315
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
www.sealsafeonline.com/css/main.css
192.3.190.242200 OK 4.1 kB URL HTTP/1.1 www.sealsafeonline.com/css/main.css
IP 192.3.190.242:0
ASN #36352 AS-COLOCROSSING
File type assembler source, ASCII text, with CRLF line terminators
Hash c2e9f2d6fb2642d257ed37ea646590d7
1a8a621210b0a9a153f97d704f7367a51fedbaaf
4102f215449225be8531087054b42950cc344f9d5c8ec3ddae4e36fc5c2934bd
GET /css/main.css HTTP/1.1
Host: www.sealsafeonline.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.sealsafeonline.com/
HTTP/1.1 200 OK
Date: Sat, 11 Mar 2023 11:16:37 GMT
Server: Apache
Last-Modified: Sun, 07 Jun 2020 15:44:28 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 4131
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
www.sealsafeonline.com/css/animate.min.css
192.3.190.242200 OK 3.2 kB URL HTTP/1.1 www.sealsafeonline.com/css/animate.min.css
IP 192.3.190.242:0
ASN #36352 AS-COLOCROSSING
File type ASCII text, with very long lines (41626), with no line terminators
Hash e27ec30f054cfd873ebb42a825b9bc88
78ed71bf2ee5faff576861cc6a7d0400263b9bc2
c51d1928ec02cc4212b3533d5594ec3efc85b42564faa659b848bf92d963c8e0
GET /css/animate.min.css HTTP/1.1
Host: www.sealsafeonline.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.sealsafeonline.com/
HTTP/1.1 200 OK
Date: Sat, 11 Mar 2023 11:16:37 GMT
Server: Apache
Last-Modified: Thu, 21 Jul 2016 15:50:12 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 3231
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
www.sealsafeonline.com/js/popper.min.js
192.3.190.242200 OK 7.4 kB URL HTTP/1.1 www.sealsafeonline.com/js/popper.min.js
IP 192.3.190.242:0
ASN #36352 AS-COLOCROSSING
File type ASCII text, with very long lines (20800)
Hash 2618a7b9a64e1f440fa3bfce45f9d549
29d93cbb09c5af7c35b44620186806945025fa21
5440fd79bc487a747950d6a63394ae7f30dc9e61168b5de1f26a5e62caa2be0f
Analyzer Verdict Alert fortinet Phishing
GET /js/popper.min.js HTTP/1.1
Host: www.sealsafeonline.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.sealsafeonline.com/
HTTP/1.1 200 OK
Date: Sat, 11 Mar 2023 11:16:37 GMT
Server: Apache
Last-Modified: Fri, 29 Mar 2019 07:59:56 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 7438
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: application/javascript
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 289c60b957a8a6a09989af100a31de56
52b989681cdbccaa618d4bb7feb2e60aca1878d7
585ec9af69793a53b60877a618cc42a26ea2eb96df03883a17d03f21611f82b1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 11 Mar 2023 11:16:37 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.sealsafeonline.com/css/bootstrap.min.css
192.3.190.242200 OK 23 kB URL HTTP/1.1 www.sealsafeonline.com/css/bootstrap.min.css
IP 192.3.190.242:0
ASN #36352 AS-COLOCROSSING
File type ASCII text, with very long lines (65324)
Hash a5d5584b3540529a77b585b36d82f5b4
cad6f25941450fb9e50470b640f86f06047a290a
568f398f7aadd5c46a2b8a3a17c8a24aa91abf38aa2ffbbe57285cb881fd2dab
GET /css/bootstrap.min.css HTTP/1.1
Host: www.sealsafeonline.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.sealsafeonline.com/
HTTP/1.1 200 OK
Date: Sat, 11 Mar 2023 11:16:37 GMT
Server: Apache
Last-Modified: Fri, 29 Mar 2019 08:00:46 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 22973
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
www.sealsafeonline.com/js/bootstrap.min.js
192.3.190.242200 OK 15 kB URL HTTP/1.1 www.sealsafeonline.com/js/bootstrap.min.js
IP 192.3.190.242:0
ASN #36352 AS-COLOCROSSING
File type ASCII text, with very long lines (55494)
Hash 68a4bbaa6686829563511ee6319a608e
6932ddc6ec83a455a571c4d47e2504199878233d
2e8068bb2646a259f8d8a7d9f88eed5d20bafc36f4570125eed88e6113e78a94
Analyzer Verdict Alert fortinet Phishing
GET /js/bootstrap.min.js HTTP/1.1
Host: www.sealsafeonline.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.sealsafeonline.com/
HTTP/1.1 200 OK
Date: Sat, 11 Mar 2023 11:16:37 GMT
Server: Apache
Last-Modified: Fri, 29 Mar 2019 08:00:20 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 14551
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: application/javascript
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Cache-Control, Content-Length, Retry-After, Content-Type, Expires, Alert, Pragma, ETag, Backoff, Last-Modified
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sat, 11 Mar 2023 11:06:46 GMT
age: 591
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
www.sealsafeonline.com/js/mail.js
192.3.190.242200 OK 496 B URL HTTP/1.1 www.sealsafeonline.com/js/mail.js
IP 192.3.190.242:0
ASN #36352 AS-COLOCROSSING
File type ASCII text, with CRLF line terminators
Hash 4366fb4949a0e4d3e49062df5575a483
f77d06cdd8c90b4bfa68f3ffeccf29d632d409c0
c1edb1384116674ffca345e2198f0cd868238719250cd3bb0cdabd76cf2c747f
Analyzer Verdict Alert fortinet Phishing
GET /js/mail.js HTTP/1.1
Host: www.sealsafeonline.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.sealsafeonline.com/
HTTP/1.1 200 OK
Date: Sat, 11 Mar 2023 11:16:37 GMT
Server: Apache
Last-Modified: Sat, 04 Nov 2017 06:57:02 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 496
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: application/javascript
www.sealsafeonline.com/js/particle.js
192.3.190.242200 OK 6.9 kB URL HTTP/1.1 www.sealsafeonline.com/js/particle.js
IP 192.3.190.242:0
ASN #36352 AS-COLOCROSSING
File type ASCII text, with very long lines (1007), with CRLF line terminators
Hash 142484b685136d7bb78ec3db4e43fb5a
38fed49d8d7c97d6b1eaa0d49ba14946514d3ba5
ab97624e3fccfdaa7ea540b09c3a5d1a03eef96a925615a24ccd51b83e397c55
Analyzer Verdict Alert fortinet Phishing
GET /js/particle.js HTTP/1.1
Host: www.sealsafeonline.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.sealsafeonline.com/
HTTP/1.1 200 OK
Date: Sat, 11 Mar 2023 11:16:37 GMT
Server: Apache
Last-Modified: Thu, 23 Aug 2018 07:24:54 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 6918
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/javascript
www.sealsafeonline.com/slick/slick.css
192.3.190.242200 OK 565 B URL HTTP/1.1 www.sealsafeonline.com/slick/slick.css
IP 192.3.190.242:0
ASN #36352 AS-COLOCROSSING
File type ASCII text, with CRLF line terminators
Hash de6938b41c4e7027fe619d6ada601db4
7db2faeff982a6a2daba3ead1973a19742308d4b
7037fd31b07da9b3d6c5edbf82e89436b9ae50c6b503221c7190bd7f18565714
GET /slick/slick.css HTTP/1.1
Host: www.sealsafeonline.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.sealsafeonline.com/
HTTP/1.1 200 OK
Date: Sat, 11 Mar 2023 11:16:37 GMT
Server: Apache
Last-Modified: Tue, 13 Jun 2017 07:35:28 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 565
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
www.sealsafeonline.com/slick/slick-theme.css
192.3.190.242200 OK 1.3 kB URL HTTP/1.1 www.sealsafeonline.com/slick/slick-theme.css
IP 192.3.190.242:0
ASN #36352 AS-COLOCROSSING
File type Unicode text, UTF-8 text, with CRLF line terminators
Hash d8f2848211d9e526341fee1669e31efd
bd8efe813b521a218999adb27d23523bfe081f73
79acc4aa3d5e244a1c99362239c189e0763bd3b427bbe66b7ff56d69bfcaa284
GET /slick/slick-theme.css HTTP/1.1
Host: www.sealsafeonline.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.sealsafeonline.com/
HTTP/1.1 200 OK
Date: Sat, 11 Mar 2023 11:16:37 GMT
Server: Apache
Last-Modified: Sat, 01 Jul 2017 06:50:28 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 1288
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 289c60b957a8a6a09989af100a31de56
52b989681cdbccaa618d4bb7feb2e60aca1878d7
585ec9af69793a53b60877a618cc42a26ea2eb96df03883a17d03f21611f82b1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 11 Mar 2023 11:16:38 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.sealsafeonline.com/js/particles-custom.js
192.3.190.242200 OK 837 B URL HTTP/1.1 www.sealsafeonline.com/js/particles-custom.js
IP 192.3.190.242:0
ASN #36352 AS-COLOCROSSING
File type ASCII text, with CRLF line terminators
Hash 48f9cb162e6c41845aedaf97854f98c2
b0ee29e7661dc0b3ad8884d91914c5afc8e0a16b
24635e40e3e739bd2da9d5a6dc766724a3e3772bfddc9a3f1682b071a8fe373f
Analyzer Verdict Alert fortinet Phishing
GET /js/particles-custom.js HTTP/1.1
Host: www.sealsafeonline.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.sealsafeonline.com/
HTTP/1.1 200 OK
Date: Sat, 11 Mar 2023 11:16:37 GMT
Server: Apache
Last-Modified: Tue, 02 Jun 2020 14:10:24 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 837
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/javascript
www.sealsafeonline.com/translate.google.com/translate_a/elementa0d8.js?cb=googleTranslateElementInit
192.3.190.242404 Not Found 315 B URL HTTP/1.1 www.sealsafeonline.com/translate.google.com/translate_a/elementa0d8.js?cb=googleTranslateElementInit
IP 192.3.190.242:0
ASN #36352 AS-COLOCROSSING
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3
Analyzer Verdict Alert fortinet Phishing
GET /translate.google.com/translate_a/elementa0d8.js?cb=googleTranslateElementInit HTTP/1.1
Host: www.sealsafeonline.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.sealsafeonline.com/
HTTP/1.1 404 Not Found
Date: Sat, 11 Mar 2023 11:16:38 GMT
Server: Apache
Content-Length: 315
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
www.sealsafeonline.com/slick/slick.js
192.3.190.242200 OK 14 kB URL HTTP/1.1 www.sealsafeonline.com/slick/slick.js
IP 192.3.190.242:0
ASN #36352 AS-COLOCROSSING
Hash f22b951c9af87d3fc5cd7f3c7acbda5b
9793b356321b0e833f16ba701c66e76366f581c3
093a3ac9d617c916ba0dd263492fab4b8a7d6e0b14ad2731ed8e8a3dcb8404a3
Analyzer Verdict Alert fortinet Phishing
GET /slick/slick.js HTTP/1.1
Host: www.sealsafeonline.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.sealsafeonline.com/
HTTP/1.1 200 OK
Date: Sat, 11 Mar 2023 11:16:37 GMT
Server: Apache
Last-Modified: Wed, 01 Feb 2017 13:58:40 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 14366
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: application/javascript
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash c10a37cb8d9ba9a99b8f0e268fcbd341
4e106adfce819b322f2aa5bbba476b5cfd4d91db
1aeaa820c5be55ca292a47e9f43e8d6421505e51e1a8f4a98980cda5908c0779
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 11 Mar 2023 11:16:38 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 34074a698d329d4ef360e4e7e1d233e6
6b6a57a57c5b9e486faf50ff03acfd0ba2c13f14
bf3031c8640f9bc3d1ab94e5e45cdba32f39cc4590f11821317fdce573012fb9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BF3031C8640F9BC3D1AB94E5E45CDBA32F39CC4590F11821317FDCE573012FB9"
Last-Modified: Thu, 09 Mar 2023 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2187
Expires: Sat, 11 Mar 2023 11:53:05 GMT
Date: Sat, 11 Mar 2023 11:16:38 GMT
Connection: keep-alive
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash c10a37cb8d9ba9a99b8f0e268fcbd341
4e106adfce819b322f2aa5bbba476b5cfd4d91db
1aeaa820c5be55ca292a47e9f43e8d6421505e51e1a8f4a98980cda5908c0779
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 11 Mar 2023 11:16:38 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash c10a37cb8d9ba9a99b8f0e268fcbd341
4e106adfce819b322f2aa5bbba476b5cfd4d91db
1aeaa820c5be55ca292a47e9f43e8d6421505e51e1a8f4a98980cda5908c0779
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 11 Mar 2023 11:16:38 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/ptsans/v17/jizaRExUiTo99u79D0KExQ.woff2
216.58.207.227200 OK 45 kB URL HTTP/2 fonts.gstatic.com/s/ptsans/v17/jizaRExUiTo99u79D0KExQ.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 45300, version 1.0\012- data
Hash 5fe660c3a23b871807b0e1d3ee973d23
62a9dd423b30b6ee3ab3dd40d573545d579af10a
e13ffa988be59cbf299d7ff68f019f902b60848203ac4990819eb7e4624ee52d
GET /s/ptsans/v17/jizaRExUiTo99u79D0KExQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.sealsafeonline.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 45300
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 09 Mar 2023 17:39:58 GMT
expires: Fri, 08 Mar 2024 17:39:58 GMT
cache-control: public, max-age=31536000
age: 149800
last-modified: Wed, 27 Apr 2022 16:11:08 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.sealsafeonline.com/images/summer_business_350x243.jpg
192.3.190.242200 OK 29 kB URL HTTP/1.1 www.sealsafeonline.com/images/summer_business_350x243.jpg
IP 192.3.190.242:0
ASN #36352 AS-COLOCROSSING
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 350x243, components 3\012- data
Hash 332bdc29caff9d46c8cfd849cb2b454c
545b1ac197bf97af94553c70672f6fa415a6257d
71f54a087a24cea9a8a9cfd9682fe5750b8ff1aa27eea22e9058f0b195fd1ee2
GET /images/summer_business_350x243.jpg HTTP/1.1
Host: www.sealsafeonline.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.sealsafeonline.com/
HTTP/1.1 200 OK
Date: Sat, 11 Mar 2023 11:16:38 GMT
Server: Apache
Last-Modified: Fri, 28 Feb 2020 15:45:20 GMT
Accept-Ranges: bytes
Content-Length: 28911
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: image/jpeg
fonts.gstatic.com/s/nanumgothic/v21/PN_3Rfi-oW3hYwmKDpxS7F_z-7rJxHVIsPV5MbNO2rV2_va-Nv6p.117.woff2
216.58.207.227200 OK 20 kB URL HTTP/2 fonts.gstatic.com/s/nanumgothic/v21/PN_3Rfi-oW3hYwmKDpxS7F_z-7rJxHVIsPV5MbNO2rV2_va-Nv6p.117.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 20536, version 1.0\012- data
Hash 5028030faa614b473d57e4b58fba1a4c
1cef09c87e146fc4ac030b2af6a4820e5e57fd25
9e23820b7baadc6764496b12fc21e97b92381dc807645e87d58dfd241bea4e70
GET /s/nanumgothic/v21/PN_3Rfi-oW3hYwmKDpxS7F_z-7rJxHVIsPV5MbNO2rV2_va-Nv6p.117.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.sealsafeonline.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 20536
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 10 Mar 2023 02:17:27 GMT
expires: Sat, 09 Mar 2024 02:17:27 GMT
cache-control: public, max-age=31536000
age: 118751
last-modified: Mon, 09 May 2022 19:00:12 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/nanumgothic/v21/PN_3Rfi-oW3hYwmKDpxS7F_z-7rJxHVIsPV5MbNO2rV2_va-Nv6p.119.woff2
216.58.207.227200 OK 12 kB URL HTTP/2 fonts.gstatic.com/s/nanumgothic/v21/PN_3Rfi-oW3hYwmKDpxS7F_z-7rJxHVIsPV5MbNO2rV2_va-Nv6p.119.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 12316, version 1.0\012- data
Hash 3b067d25cb94009ae23abd4fe00a7dbc
1f1d3f89a8188104f63957712e75216a41e13af0
b0ad896039fdcd68f2b45bd389a8d394b65aa544f434626847c12394ca3e74d2
GET /s/nanumgothic/v21/PN_3Rfi-oW3hYwmKDpxS7F_z-7rJxHVIsPV5MbNO2rV2_va-Nv6p.119.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.sealsafeonline.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 12316
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 09 Mar 2023 21:23:45 GMT
expires: Fri, 08 Mar 2024 21:23:45 GMT
cache-control: public, max-age=31536000
age: 136373
last-modified: Mon, 09 May 2022 18:59:48 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.sealsafeonline.com/images/logo.png
192.3.190.242200 OK 15 kB URL HTTP/1.1 www.sealsafeonline.com/images/logo.png
IP 192.3.190.242:0
ASN #36352 AS-COLOCROSSING
File type PNG image data, 300 x 97, 8-bit/color RGBA, non-interlaced\012- data
Hash 96373e313efd559d6336521821bbf5d2
87e5cd748fc22a2cffe1f947487efebd8c344ce9
0dad6cc153b7f1435e0fe51c0cc694cfd71a4b2725b090c700ccd2167fd84951
GET /images/logo.png HTTP/1.1
Host: www.sealsafeonline.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.sealsafeonline.com/
HTTP/1.1 200 OK
Date: Sat, 11 Mar 2023 11:16:38 GMT
Server: Apache
Last-Modified: Wed, 27 Jan 2021 12:29:28 GMT
Accept-Ranges: bytes
Content-Length: 14709
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: image/png
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash c10a37cb8d9ba9a99b8f0e268fcbd341
4e106adfce819b322f2aa5bbba476b5cfd4d91db
1aeaa820c5be55ca292a47e9f43e8d6421505e51e1a8f4a98980cda5908c0779
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 11 Mar 2023 11:16:38 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.sealsafeonline.com/images/checking_125_special_350x243.jpg
192.3.190.242200 OK 17 kB URL HTTP/1.1 www.sealsafeonline.com/images/checking_125_special_350x243.jpg
IP 192.3.190.242:0
ASN #36352 AS-COLOCROSSING
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 350x243, components 3\012- data
Hash 54d93555ed8691435f82fb8d05fc0f2f
33b63fca434b92bf0e7a9ee276a4b2c12555b57b
a1bcde39a047442459bf69165fc8f9066ee7807f19b8a3bee4eb5c34307b9214
GET /images/checking_125_special_350x243.jpg HTTP/1.1
Host: www.sealsafeonline.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.sealsafeonline.com/
HTTP/1.1 200 OK
Date: Sat, 11 Mar 2023 11:16:38 GMT
Server: Apache
Last-Modified: Fri, 28 Feb 2020 15:17:56 GMT
Accept-Ranges: bytes
Content-Length: 17004
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: image/jpeg
www.sealsafeonline.com/images/promobox_overlay_beam.png
192.3.190.242200 OK 14 kB URL HTTP/1.1 www.sealsafeonline.com/images/promobox_overlay_beam.png
IP 192.3.190.242:0
ASN #36352 AS-COLOCROSSING
File type PNG image data, 460 x 293, 8-bit/color RGBA, non-interlaced\012- data
Hash 470d3223242c29345d60a85534630876
908304519a92d95b1fa76de315bdc2d318ed5a8e
e28ef0d5909649a6828f112a94caf3d130cda6075180095afdbb80163f49644b
GET /images/promobox_overlay_beam.png HTTP/1.1
Host: www.sealsafeonline.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.sealsafeonline.com/css/main.css
HTTP/1.1 200 OK
Date: Sat, 11 Mar 2023 11:16:38 GMT
Server: Apache
Last-Modified: Fri, 28 Feb 2020 14:45:52 GMT
Accept-Ranges: bytes
Content-Length: 13907
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: image/png
www.sealsafeonline.com/images/summer2018_tent_350x243.jpg
192.3.190.242200 OK 30 kB URL HTTP/1.1 www.sealsafeonline.com/images/summer2018_tent_350x243.jpg
IP 192.3.190.242:0
ASN #36352 AS-COLOCROSSING
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 350x243, components 3\012- data
Hash 6d8b57759045a0f99207b807755c9ea0
b1c8a97acee010db10beb0845306dad89f39db22
17992e081df277c409024bc58106f139d2959c6bc25e09f1f1920fdd6108fa8d
GET /images/summer2018_tent_350x243.jpg HTTP/1.1
Host: www.sealsafeonline.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.sealsafeonline.com/
HTTP/1.1 200 OK
Date: Sat, 11 Mar 2023 11:16:38 GMT
Server: Apache
Last-Modified: Fri, 28 Feb 2020 15:46:12 GMT
Accept-Ranges: bytes
Content-Length: 30478
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: image/jpeg
www.sealsafeonline.com/images/HELOC_330x282.jpg
192.3.190.242200 OK 32 kB URL HTTP/1.1 www.sealsafeonline.com/images/HELOC_330x282.jpg
IP 192.3.190.242:0
ASN #36352 AS-COLOCROSSING
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 330x282, components 3\012- data
Hash 5d5d4cbb994ec9e1ea3555873725ff56
ebafaa8192df3a9fb1506e892251d97f2d7d5130
94fd8f555764ffefa457ece8b079ca769de98e2564312f9e8eb778853e832ae0
GET /images/HELOC_330x282.jpg HTTP/1.1
Host: www.sealsafeonline.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.sealsafeonline.com/
HTTP/1.1 200 OK
Date: Sat, 11 Mar 2023 11:16:38 GMT
Server: Apache
Last-Modified: Fri, 28 Feb 2020 15:06:00 GMT
Accept-Ranges: bytes
Content-Length: 32440
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: image/jpeg
www.sealsafeonline.com/images/father_daughter_611x282.jpg
192.3.190.242200 OK 31 kB URL HTTP/1.1 www.sealsafeonline.com/images/father_daughter_611x282.jpg
IP 192.3.190.242:0
ASN #36352 AS-COLOCROSSING
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 611x282, components 3\012- data
Hash aa2232a116f018d8c8abd73a5e5ebc1b
16e55d3ac366482e48207776d3b456ac9cd93169
e9ea952dfdef13a798cadaefb85a41d2e66e8be59d42c41f60b2ebe0e593d1fc
GET /images/father_daughter_611x282.jpg HTTP/1.1
Host: www.sealsafeonline.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.sealsafeonline.com/
HTTP/1.1 200 OK
Date: Sat, 11 Mar 2023 11:16:38 GMT
Server: Apache
Last-Modified: Fri, 28 Feb 2020 14:44:08 GMT
Accept-Ranges: bytes
Content-Length: 31036
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: image/jpeg
www.sealsafeonline.com/translate.google.com/translate_a/elementa0d8.js?cb=googleTranslateElementInit
192.3.190.242404 Not Found 315 B URL HTTP/1.1 www.sealsafeonline.com/translate.google.com/translate_a/elementa0d8.js?cb=googleTranslateElementInit
IP 192.3.190.242:0
ASN #36352 AS-COLOCROSSING
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3
Analyzer Verdict Alert fortinet Phishing
GET /translate.google.com/translate_a/elementa0d8.js?cb=googleTranslateElementInit HTTP/1.1
Host: www.sealsafeonline.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.sealsafeonline.com/
HTTP/1.1 404 Not Found
Date: Sat, 11 Mar 2023 11:16:38 GMT
Server: Apache
Content-Length: 315
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
www.sealsafeonline.com/images/slide-2.jpg
192.3.190.242200 OK 64 kB URL HTTP/1.1 www.sealsafeonline.com/images/slide-2.jpg
IP 192.3.190.242:0
ASN #36352 AS-COLOCROSSING
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 1500x1500, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=16, height=3266, bps=206, PhotometricIntepretation=RGB, description=Hotel or office building lobby blur background interior view toward reception hall, modern luxury white room space with blurry , manufacturer=NIKON CORPORATION, model=NIKON D5500, orientation=upper-left, width=4899], baseline, precision 8, 1440x500, components 3\012- data
Hash 64d55158fa8ea716f331142124f8a88e
9cf04f22e03ccc3ee1cf7b68bfddc883ce7d9bac
7d187a97572538f1fa0efeaeb9827d539ea2613ebef583dc9db875ff4e96efcc
GET /images/slide-2.jpg HTTP/1.1
Host: www.sealsafeonline.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.sealsafeonline.com/css/main.css
HTTP/1.1 200 OK
Date: Sat, 11 Mar 2023 11:16:38 GMT
Server: Apache
Last-Modified: Tue, 02 Jun 2020 14:56:32 GMT
Accept-Ranges: bytes
Content-Length: 63545
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: image/jpeg
www.sealsafeonline.com/images/shipping-and-delivery.svg
192.3.190.242200 OK 613 B URL HTTP/1.1 www.sealsafeonline.com/images/shipping-and-delivery.svg
IP 192.3.190.242:0
ASN #36352 AS-COLOCROSSING
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1283), with no line terminators
Hash 5d3005bd1b0eeafc6864ba3dffd29846
ab52c0ea635792ff77033468278f8ff7453ed14b
7543d74c02a8b179da3fe69014ec380504e5b64b1bdb0ca02f2342298585f8a6
Analyzer Verdict Alert fortinet Phishing
GET /images/shipping-and-delivery.svg HTTP/1.1
Host: www.sealsafeonline.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.sealsafeonline.com/
HTTP/1.1 200 OK
Date: Sat, 11 Mar 2023 11:16:38 GMT
Server: Apache
Last-Modified: Tue, 02 Jun 2020 13:56:48 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 613
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: image/svg+xml
www.sealsafeonline.com/images/money3.svg
192.3.190.242200 OK 1.2 kB URL HTTP/1.1 www.sealsafeonline.com/images/money3.svg
IP 192.3.190.242:0
ASN #36352 AS-COLOCROSSING
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (3608), with no line terminators
Hash c3776e973270eac3c464ca5b93562b1c
7af602c3a8aafeee747b80d62575f163c61f0714
201db110850a507dec5d6376bf8dac0e8c68f5f659a94fcbba02ec2e8da74c65
Analyzer Verdict Alert fortinet Phishing
GET /images/money3.svg HTTP/1.1
Host: www.sealsafeonline.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.sealsafeonline.com/
HTTP/1.1 200 OK
Date: Sat, 11 Mar 2023 11:16:38 GMT
Server: Apache
Last-Modified: Tue, 02 Jun 2020 14:07:24 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 1214
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: image/svg+xml
www.sealsafeonline.com/images/slider-bg.jpg
192.3.190.242200 OK 49 kB URL HTTP/1.1 www.sealsafeonline.com/images/slider-bg.jpg
IP 192.3.190.242:0
ASN #36352 AS-COLOCROSSING
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], progressive, precision 8, 1280x450, components 3\012- data
Hash 50ec3e03ecd61e6eee881239bccd982e
63ee41e6868e6e49a4354f1048b60c767b4c1843
7d6bdd8e6e34cf6d7790f9e4699317600d4e8ecb8c65377b802cc25f5b7b9fa5
GET /images/slider-bg.jpg HTTP/1.1
Host: www.sealsafeonline.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.sealsafeonline.com/css/main.css
HTTP/1.1 200 OK
Date: Sat, 11 Mar 2023 11:16:38 GMT
Server: Apache
Last-Modified: Mon, 06 Jan 2020 17:55:50 GMT
Accept-Ranges: bytes
Content-Length: 48773
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: image/jpeg
push.services.mozilla.com/
34.211.126.51101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 34.211.126.51:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: miGwkRhpJugAhI3CkHpgcQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: daymgWZQvTh14njTlEe/729cV4E=
www.sealsafeonline.com/images/summer2018_mom_daughter_350x243.jpg
192.3.190.242200 OK 24 kB URL HTTP/1.1 www.sealsafeonline.com/images/summer2018_mom_daughter_350x243.jpg
IP 192.3.190.242:0
ASN #36352 AS-COLOCROSSING
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 350x243, components 3\012- data
Hash cd6b811ce6bdf4132e1fc4e266e9fa8b
c6a829abd29cc45f75cf03e52cc478b86cd0f067
3ae276ff1e763eef06ef715123eaba92271c37d141b4504bdc20b613af8c5ce3
GET /images/summer2018_mom_daughter_350x243.jpg HTTP/1.1
Host: www.sealsafeonline.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.sealsafeonline.com/
HTTP/1.1 200 OK
Date: Sat, 11 Mar 2023 11:16:38 GMT
Server: Apache
Last-Modified: Fri, 28 Feb 2020 15:45:48 GMT
Accept-Ranges: bytes
Content-Length: 24388
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: image/jpeg
www.sealsafeonline.com/images/money-2.svg
192.3.190.242200 OK 878 B URL HTTP/1.1 www.sealsafeonline.com/images/money-2.svg
IP 192.3.190.242:0
ASN #36352 AS-COLOCROSSING
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (2094), with no line terminators
Hash 94539fccca42adbac5b5014389b6da7e
56b91703f339e9fbdbf61588319282907bc2427d
ecf683ce88faac4bcd1550d4586e10a37f86d6765224fd7594161a304058f089
Analyzer Verdict Alert fortinet Phishing
GET /images/money-2.svg HTTP/1.1
Host: www.sealsafeonline.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.sealsafeonline.com/
HTTP/1.1 200 OK
Date: Sat, 11 Mar 2023 11:16:38 GMT
Server: Apache
Last-Modified: Tue, 02 Jun 2020 14:02:42 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 878
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: image/svg+xml
www.sealsafeonline.com/images/email.svg
192.3.190.242200 OK 739 B URL HTTP/1.1 www.sealsafeonline.com/images/email.svg
IP 192.3.190.242:0
ASN #36352 AS-COLOCROSSING
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1706), with no line terminators
Hash 08b14cb448e9c3aea99cd2480f39ed59
e044925119a174f993cbb6daf0509e58b09254a4
9ee5ed7149002c7f7fc457b714f6000e9172be380a1a36d8d9b9c42933a0f406
Analyzer Verdict Alert fortinet Phishing
GET /images/email.svg HTTP/1.1
Host: www.sealsafeonline.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.sealsafeonline.com/
HTTP/1.1 200 OK
Date: Sat, 11 Mar 2023 11:16:38 GMT
Server: Apache
Last-Modified: Tue, 02 Jun 2020 14:15:28 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 739
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: image/svg+xml
www.sealsafeonline.com/images/sign.png
192.3.190.242200 OK 9.3 kB URL HTTP/1.1 www.sealsafeonline.com/images/sign.png
IP 192.3.190.242:0
ASN #36352 AS-COLOCROSSING
File type PNG image data, 160 x 158, 8-bit/color RGBA, non-interlaced\012- data
Hash 94e93680b7ec88ee0ea823fafb9ca73b
bc8aa9f44ac6a3a4ef4367e70c511c17d49f1d58
7259e5e6f6422656c8c72178c05000cad86a3072adc332d6eb391d20fb1a5991
GET /images/sign.png HTTP/1.1
Host: www.sealsafeonline.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.sealsafeonline.com/
HTTP/1.1 200 OK
Date: Sat, 11 Mar 2023 11:16:38 GMT
Server: Apache
Last-Modified: Tue, 17 Sep 2019 10:53:14 GMT
Accept-Ranges: bytes
Content-Length: 9312
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: image/png
www.sealsafeonline.com/images/custom2_all-you-need-to-know-about-banking-as-a-service-baas.jpg
192.3.190.242200 OK 73 kB URL HTTP/1.1 www.sealsafeonline.com/images/custom2_all-you-need-to-know-about-banking-as-a-service-baas.jpg
IP 192.3.190.242:0
ASN #36352 AS-COLOCROSSING
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=12, height=320, bps=0, PhotometricIntepretation=RGB, orientation=upper-left, width=576], progressive, precision 8, 576x288, components 3\012- data
Hash c753cd8791fe8674f2e1e464f88c6211
8eb3971a025ba4fff5c744c6223351fdd6f24636
bb948bfdea626bbf2e22974dc98373d60e9591f0bc7774320360f2f39b242982
GET /images/custom2_all-you-need-to-know-about-banking-as-a-service-baas.jpg HTTP/1.1
Host: www.sealsafeonline.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.sealsafeonline.com/
HTTP/1.1 200 OK
Date: Sat, 11 Mar 2023 11:16:38 GMT
Server: Apache
Last-Modified: Fri, 07 Feb 2020 22:35:54 GMT
Accept-Ranges: bytes
Content-Length: 73399
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: image/jpeg
www.sealsafeonline.com/images/message.svg
192.3.190.242200 OK 768 B URL HTTP/1.1 www.sealsafeonline.com/images/message.svg
IP 192.3.190.242:0
ASN #36352 AS-COLOCROSSING
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1995), with no line terminators
Hash 7c9d80f7862eb887a3127740da8bcc88
e35777304e34c80243dedeba9583acfd43a895d6
de3b5a3a1c9d2d44feb6710b30a287ee55168031027f20ecc643b9f673c8e890
Analyzer Verdict Alert fortinet Phishing
GET /images/message.svg HTTP/1.1
Host: www.sealsafeonline.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.sealsafeonline.com/
HTTP/1.1 200 OK
Date: Sat, 11 Mar 2023 11:16:38 GMT
Server: Apache
Last-Modified: Tue, 02 Jun 2020 14:18:08 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 768
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: image/svg+xml
www.sealsafeonline.com/images/marker.png
192.3.190.242200 OK 1.7 kB URL HTTP/1.1 www.sealsafeonline.com/images/marker.png
IP 192.3.190.242:0
ASN #36352 AS-COLOCROSSING
File type PNG image data, 23 x 23, 8-bit/color RGBA, non-interlaced\012- data
Hash e8d3608c09cd9e0dc322999e2fb59d36
c56e25eaecc8710cdd8e71ae985fef606c79e171
13a25b14d989c65d9ec11fce713acbf9932066785a19a9d2cb4dd242eb738744
GET /images/marker.png HTTP/1.1
Host: www.sealsafeonline.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.sealsafeonline.com/css/main.css
HTTP/1.1 200 OK
Date: Sat, 11 Mar 2023 11:16:38 GMT
Server: Apache
Last-Modified: Fri, 06 Mar 2020 06:45:40 GMT
Accept-Ranges: bytes
Content-Length: 1711
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: image/png
www.sealsafeonline.com/images/hosting-company-11.png
192.3.190.242200 OK 19 kB URL HTTP/1.1 www.sealsafeonline.com/images/hosting-company-11.png
IP 192.3.190.242:0
ASN #36352 AS-COLOCROSSING
File type PNG image data, 2262 x 648, 8-bit colormap, non-interlaced\012- data
Hash 38e584fa6367144023348f26322a2626
7755c06e1576b1eca02a489032f88cdf06b93fa4
ab35698601468daf723894bf1b71f8850fe41d7e8809a425a5fc26e59a8134c1
GET /images/hosting-company-11.png HTTP/1.1
Host: www.sealsafeonline.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.sealsafeonline.com/css/main.css
HTTP/1.1 200 OK
Date: Sat, 11 Mar 2023 11:16:38 GMT
Server: Apache
Last-Modified: Sun, 24 May 2020 14:56:26 GMT
Accept-Ranges: bytes
Content-Length: 18715
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: image/png
www.sealsafeonline.com/images/dexus-office-space.jpg
192.3.190.242200 OK 142 kB URL HTTP/1.1 www.sealsafeonline.com/images/dexus-office-space.jpg
IP 192.3.190.242:0
ASN #36352 AS-COLOCROSSING
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=12, height=476, bps=158, PhotometricIntepretation=RGB, orientation=upper-left, width=806], progressive, precision 8, 806x403, components 3\012- data
Size 142 kB (142202 bytes)
Hash ca4720882e9266ed95e7978a97a2793d
8d2bc470ea70396c15c44f506be05ae0a1c2f0ad
82630224006ccc7794268befe9a976e6514c25112fa78c66627b5ec470d7de8a
GET /images/dexus-office-space.jpg HTTP/1.1
Host: www.sealsafeonline.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.sealsafeonline.com/
HTTP/1.1 200 OK
Date: Sat, 11 Mar 2023 11:16:38 GMT
Server: Apache
Last-Modified: Fri, 07 Feb 2020 22:36:06 GMT
Accept-Ranges: bytes
Content-Length: 142202
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: image/jpeg
www.sealsafeonline.com/images/Wealth_management_1170x420_v1b.jpg.webp
192.3.190.242200 OK 35 kB URL HTTP/1.1 www.sealsafeonline.com/images/Wealth_management_1170x420_v1b.jpg.webp
IP 192.3.190.242:0
ASN #36352 AS-COLOCROSSING
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 1170x420, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash aa5c9c55505eed9ac5fa7039318656cc
5bc0ee5a15906d420910950173edacb12a5dbf19
438147c49956f8f44416aa7bbcac5554f84fa4a71a379819d08861af3580a1fc
Analyzer Verdict Alert fortinet Phishing
GET /images/Wealth_management_1170x420_v1b.jpg.webp HTTP/1.1
Host: www.sealsafeonline.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.sealsafeonline.com/css/main.css
HTTP/1.1 200 OK
Date: Sat, 11 Mar 2023 11:16:38 GMT
Server: Apache
Last-Modified: Fri, 07 Feb 2020 22:04:32 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 34806
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: image/webp
www.sealsafeonline.com/404.html
192.3.190.242200 OK 3.8 kB URL HTTP/1.1 www.sealsafeonline.com/404.html
IP 192.3.190.242:0
ASN #36352 AS-COLOCROSSING
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash c8987c24b5a10e34c884ae4bbf4b02a1
dc3d7727dfd745ed55cdd03aa5b84b9870a00c76
12472073d8ba886e31c27de307410ebec8db8715f61a9ac430826bc71313be40
Analyzer Verdict Alert fortinet Phishing
NIDS Severity Alert suricata high ET PHISHING Possible Phish - Mirrored Website Comment Observed
GET /404.html HTTP/1.1
Host: www.sealsafeonline.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.sealsafeonline.com/
HTTP/1.1 200 OK
Date: Sat, 11 Mar 2023 11:16:38 GMT
Server: Apache
Last-Modified: Tue, 26 Jul 2022 21:02:46 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 3787
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: text/html
www.sealsafeonline.com/favicon.png
192.3.190.242200 OK 13 kB URL HTTP/1.1 www.sealsafeonline.com/favicon.png
IP 192.3.190.242:0
ASN #36352 AS-COLOCROSSING
File type PNG image data, 162 x 97, 8-bit/color RGBA, non-interlaced\012- data
Hash 82229e80fbe138b806cd66369f01e967
538ee9961f697304360e23fab030ebf19a0d79b3
5401db706d1e678a8f871c272e139dd8cfe897bc4be813dd9c686340d0d8ca6f
GET /favicon.png HTTP/1.1
Host: www.sealsafeonline.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.sealsafeonline.com/
HTTP/1.1 200 OK
Date: Sat, 11 Mar 2023 11:16:38 GMT
Server: Apache
Last-Modified: Tue, 26 Jul 2022 21:02:47 GMT
Accept-Ranges: bytes
Content-Length: 12841
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: image/png
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 54939002388023971ddb6b7e7ad53403
21f73b23a35299dfbae64d57dd2762625a9a09f5
8f8b0574ea2dc28302dee0a9868c1c145f66a6735353d236a8bd024c624f55a1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "8F8B0574EA2DC28302DEE0A9868C1C145F66A6735353D236A8BD024C624F55A1"
Last-Modified: Thu, 09 Mar 2023 03:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12083
Expires: Sat, 11 Mar 2023 14:38:02 GMT
Date: Sat, 11 Mar 2023 11:16:39 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 54939002388023971ddb6b7e7ad53403
21f73b23a35299dfbae64d57dd2762625a9a09f5
8f8b0574ea2dc28302dee0a9868c1c145f66a6735353d236a8bd024c624f55a1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "8F8B0574EA2DC28302DEE0A9868C1C145F66A6735353D236A8BD024C624F55A1"
Last-Modified: Thu, 09 Mar 2023 03:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12083
Expires: Sat, 11 Mar 2023 14:38:02 GMT
Date: Sat, 11 Mar 2023 11:16:39 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 54939002388023971ddb6b7e7ad53403
21f73b23a35299dfbae64d57dd2762625a9a09f5
8f8b0574ea2dc28302dee0a9868c1c145f66a6735353d236a8bd024c624f55a1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "8F8B0574EA2DC28302DEE0A9868C1C145F66A6735353D236A8BD024C624F55A1"
Last-Modified: Thu, 09 Mar 2023 03:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12083
Expires: Sat, 11 Mar 2023 14:38:02 GMT
Date: Sat, 11 Mar 2023 11:16:39 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 54939002388023971ddb6b7e7ad53403
21f73b23a35299dfbae64d57dd2762625a9a09f5
8f8b0574ea2dc28302dee0a9868c1c145f66a6735353d236a8bd024c624f55a1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "8F8B0574EA2DC28302DEE0A9868C1C145F66A6735353D236A8BD024C624F55A1"
Last-Modified: Thu, 09 Mar 2023 03:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12083
Expires: Sat, 11 Mar 2023 14:38:02 GMT
Date: Sat, 11 Mar 2023 11:16:39 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 54939002388023971ddb6b7e7ad53403
21f73b23a35299dfbae64d57dd2762625a9a09f5
8f8b0574ea2dc28302dee0a9868c1c145f66a6735353d236a8bd024c624f55a1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "8F8B0574EA2DC28302DEE0A9868C1C145F66A6735353D236A8BD024C624F55A1"
Last-Modified: Thu, 09 Mar 2023 03:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12083
Expires: Sat, 11 Mar 2023 14:38:02 GMT
Date: Sat, 11 Mar 2023 11:16:39 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F76ea6f1d-d65b-4550-b727-09d6d7e7fab3.jpeg
34.120.237.76200 OK 7.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F76ea6f1d-d65b-4550-b727-09d6d7e7fab3.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash f4d9295781f434de5c7731590c186d0c
c19364899056b4283f99b30df0074ad57e367be5
d35e5d7597d510f3de4b5d84ed5e3cbe22f54e5760a4f88e6e806b7a0386d973
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F76ea6f1d-d65b-4550-b727-09d6d7e7fab3.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7383
x-amzn-requestid: 8ea3fffc-3018-4b8f-8286-e4bd6f8757e6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: BjbaIGzOoAMF1Kg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-640ad90d-7c56ff1d305ea8cb3c2d8cdd;Sampled=0
x-amzn-remapped-date: Fri, 10 Mar 2023 07:15:25 GMT
x-amz-cf-pop: SEA19-C3
x-cache: Miss from cloudfront
x-amz-cf-id: N_3qH36AsdQCYUle5th8sIU4rdDtsk9tEuxR8C2fRLBGcAZuXaBgVw==
via: 1.1 f13aef0c4b52f6f681401f232d03eb68.cloudfront.net (CloudFront), 1.1 5c7981a979abd51ba7e5ca7d464fd048.cloudfront.net (CloudFront), 1.1 google
date: Fri, 10 Mar 2023 16:43:39 GMT
age: 66780
etag: "c19364899056b4283f99b30df0074ad57e367be5"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4074a978-99d0-47aa-8c85-466557c98632.jpeg
34.120.237.76200 OK 6.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4074a978-99d0-47aa-8c85-466557c98632.jpeg
IP 34.120.237.76:0
Hash 7073ea3bb596424fdacd9a7a1afdb255
87cb7350c1baead579e4d446b8d77a5bbcd09b6b
8cdc87a0606c0917f6bba8a00da332b4d38ac6809be7562d4dfcf38f69eed083
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4074a978-99d0-47aa-8c85-466557c98632.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6461
x-amzn-requestid: 9a3e415b-c4d0-4160-941e-7cd26795e573
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: BlZKREojIAMFTtA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-640ba241-16c54b003338f3c90bd958fc;Sampled=0
x-amzn-remapped-date: Fri, 10 Mar 2023 21:33:53 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C3
x-cache: Miss from cloudfront
x-amz-cf-id: HvTlSmLWd1U6wcxMNnArtsw4Cjy4ZgyMsqPz1sUlNDluHhvlmy8oIA==
via: 1.1 a20e81b65d2465c729ce2f6bfe539dd0.cloudfront.net (CloudFront), 1.1 7545e37b10b5fcf5e3df98185c85194a.cloudfront.net (CloudFront), 1.1 google
date: Fri, 10 Mar 2023 21:50:49 GMT
age: 48350
etag: "47f208a0c9379c760d2cd7bb3d825dcff10ecaf1"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd0af9826-fade-456f-baa4-11909578478d.jpeg
34.120.237.76200 OK 7.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd0af9826-fade-456f-baa4-11909578478d.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 6e828c35d1a85eabbe81b801d6b1ad33
040b83c5c73a4b02c65e44408b8f2385e0002791
5c27268f33fc448dc3824ae0ad3ed411a204fbc076a3356b3381b2495036c6a3
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd0af9826-fade-456f-baa4-11909578478d.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7384
x-amzn-requestid: d70a1ba5-1bc7-427b-b1cf-cc93b97c2b52
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: BlZLmGTmoAMF7lg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-640ba249-05a5a68e7d2e2b343b802da1;Sampled=0
x-amzn-remapped-date: Fri, 10 Mar 2023 21:34:01 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C3
x-cache: Miss from cloudfront
x-amz-cf-id: AwAUbn-HKAtgtrxYTeDFUIYTT4oLbXJA9wEI1VPsuDJhUNKK3_UHRg==
via: 1.1 0aebf3fe433ff96e68d785fad4ea4c0e.cloudfront.net (CloudFront), 1.1 b2d3922a177f6cecf9222a78a0a1ad32.cloudfront.net (CloudFront), 1.1 google
date: Fri, 10 Mar 2023 21:50:49 GMT
age: 48350
etag: "040b83c5c73a4b02c65e44408b8f2385e0002791"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5bce5333-85a0-4fb8-8b1d-da45012e9051.jpeg
34.120.237.76200 OK 13 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5bce5333-85a0-4fb8-8b1d-da45012e9051.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 5691928ed3621171c53832b0052ee16e
60f5f69a0f1ab1b2d51014fffcd710db43ffe821
cd274dcda33e159ab726cae009aa998d345cac51c19bb49ae567920bdc8b8d3c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5bce5333-85a0-4fb8-8b1d-da45012e9051.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12791
x-amzn-requestid: deb08dd5-1fed-4c3b-b1af-2353c719d320
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Bf6aGG5yoAMFwEQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6409710d-40e0896732c5708d48ca2bd3;Sampled=0
x-amzn-remapped-date: Thu, 09 Mar 2023 05:39:25 GMT
x-amz-cf-pop: SEA19-C3
x-cache: Miss from cloudfront
x-amz-cf-id: r54aFnTApCTmOkOFYZNn1-LyGFNTVcLqyiGwJdBn5MN4m68zAVO7fA==
via: 1.1 0005a84c2971ff4f5bbb79e7ebc622a8.cloudfront.net (CloudFront), 1.1 cca7d60248a961ff8fc8c5640024b652.cloudfront.net (CloudFront), 1.1 google
date: Sat, 11 Mar 2023 08:37:28 GMT
age: 9551
etag: "60f5f69a0f1ab1b2d51014fffcd710db43ffe821"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9a1d9563-2bb7-4a5d-bd0d-a3950608df7a.jpeg
34.120.237.76200 OK 6.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9a1d9563-2bb7-4a5d-bd0d-a3950608df7a.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash ad3d235a450782752b4d698aed69f5e5
dbe55775ec1fb59c27102c6d83a5aace982118bf
47e2d3149bda22636f5fea2b41123665c29148732152fad9cefcb3e5cc97dfba
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9a1d9563-2bb7-4a5d-bd0d-a3950608df7a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6547
x-amzn-requestid: dabd0159-a37e-4dbd-8dcc-2e0edca6a52e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: BZhygEY1IAMFq2g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6406e342-0dd395d2452b24d97bf5bcee;Sampled=0
x-amzn-remapped-date: Tue, 07 Mar 2023 07:09:54 GMT
x-amz-cf-pop: SEA19-C3
x-cache: Hit from cloudfront
x-amz-cf-id: lP11kbg00wpULg9PdAg3KMLdX8z57Q-MI-Hxa3cXye0TtDNErvjAnA==
via: 1.1 446313511980eb02f28ff5a9a4147c0a.cloudfront.net (CloudFront), 1.1 21618d080c6bfbcd465fc55a167a8c1a.cloudfront.net (CloudFront), 1.1 google
date: Fri, 10 Mar 2023 13:22:35 GMT
age: 78844
etag: "dbe55775ec1fb59c27102c6d83a5aace982118bf"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2af6ca30-ca1c-47f5-b5d3-50da9648b6c5.jpeg
34.120.237.76200 OK 5.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2af6ca30-ca1c-47f5-b5d3-50da9648b6c5.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 6c23372c93f0515a6133f5adc26c1712
3c8388cf727cb7007308ee0b42da57f5f0db489a
e24a8f21c65c6bc26698c85adb81f3712f4df9ab2dbe8075a77ea947640f8be6
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2af6ca30-ca1c-47f5-b5d3-50da9648b6c5.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5512
x-amzn-requestid: db69d563-a267-49fd-a63a-9de5282ac108
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: BlZKRGW-IAMFmuQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-640ba241-69cb4960369f1da8583e36db;Sampled=0
x-amzn-remapped-date: Fri, 10 Mar 2023 21:33:53 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C3
x-cache: Miss from cloudfront
x-amz-cf-id: pU47Uf1OAos6ZmhKohYesj3ZDaImrzXzul-FQ5DRSh_A25EK7S8GmA==
via: 1.1 000f4a2f631bace380a0afa747a82482.cloudfront.net (CloudFront), 1.1 31dfa94142c6eaf975b0e5454c00340a.cloudfront.net (CloudFront), 1.1 google
date: Fri, 10 Mar 2023 21:51:55 GMT
etag: "3c8388cf727cb7007308ee0b42da57f5f0db489a"
content-type: image/jpeg
age: 48284
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Acme|Nanum+Gothic|PT+Sans&display=swap
142.250.74.106200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Acme|Nanum+Gothic|PT+Sans&display=swap
IP 142.250.74.106:0
GET /css?family=Acme|Nanum+Gothic|PT+Sans&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.sealsafeonline.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sat, 11 Mar 2023 11:16:37 GMT
date: Sat, 11 Mar 2023 11:16:37 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
embed.tawk.to/62e053cf37898912e95fcdd0/1g8u4eovr
104.22.25.131200 OK 0 B URL HTTP/2 embed.tawk.to/62e053cf37898912e95fcdd0/1g8u4eovr
IP 104.22.25.131:0
GET /62e053cf37898912e95fcdd0/1g8u4eovr HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://www.sealsafeonline.com
Connection: keep-alive
Referer: http://www.sealsafeonline.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 11 Mar 2023 11:16:38 GMT
content-type: application/x-javascript
access-control-allow-origin: *
cache-control: public, max-age=7200, s-maxage=3600
etag: W/"stable-v4-6406c8b5020"
vary: Accept-Encoding
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: MISS
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7a6362eaedf8b50c-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
embed.tawk.to/_s/v4/app/6406c8b5020/js/twk-main.js
104.22.25.131200 OK 0 B URL HTTP/2 embed.tawk.to/_s/v4/app/6406c8b5020/js/twk-main.js
IP 104.22.25.131:0
GET /_s/v4/app/6406c8b5020/js/twk-main.js HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://www.sealsafeonline.com
Connection: keep-alive
Referer: http://www.sealsafeonline.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 11 Mar 2023 11:16:38 GMT
content-type: application/javascript
last-modified: Tue, 07 Mar 2023 05:17:35 GMT
etag: W/"da5bb1dc647470204df0e49f5afac2de"
access-control-allow-origin: *
cache-control: public, max-age=2592000, immutable
x-cache-status: HIT
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: MISS
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7a6362ee4a80b50c-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2