Overview

URL cascadiasolutions.ca/en/UltraBranch/efs/servlet/efs/security.php
IP172.67.209.163
ASNCLOUDFLARENET
Location United States
Report completed2022-10-01 03:35:02 UTC
StatusLoading report..
urlquery Alerts No alerts detected


Settings

UserAgentMozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Referer


Intrusion Detection Systems

Suricata /w Emerging Threats Pro  No alerts detected


Blocklists

OpenPhish
Scan Date Severity Indicator Comment
2022-09-30 2 cascadiasolutions.ca/en/UltraBranch/efs/servlet/efs/security.php Alaska USA Federal Credit Union
PhishTank  No alerts detected
Fortinet's Web Filter
Scan Date Severity Indicator Comment
2022-10-01 2 cascadiasolutions.ca/en/UltraBranch/efs/servlet/efs/security.php Phishing
2022-10-01 2 cascadiasolutions.ca/enroll/ScriptLib/md5.js Phishing
2022-10-01 2 cascadiasolutions.ca/en/UltraBranch/efs/servlet/efs/ScriptLib/jquery/jquery (...) Phishing
2022-10-01 2 cascadiasolutions.ca/en/UltraBranch/efs/servlet/efs/ScriptLib/AriaLib.js Phishing
2022-10-01 2 cascadiasolutions.ca/en/UltraBranch/efs/servlet/efs/ScriptLib/DotNetScripts (...) Phishing
2022-10-01 2 cascadiasolutions.ca/en/UltraBranch/efs/servlet/efs/Scripts/jquery-1.10.2.js Phishing
2022-10-01 2 cascadiasolutions.ca/en/UltraBranch/efs/servlet/efs/ScriptLib/jquery/jquery (...) Phishing
2022-10-01 2 cascadiasolutions.ca/enroll/ScriptLib/md5.js Phishing
2022-10-01 2 cascadiasolutions.ca/en/UltraBranch/efs/servlet/efs/ScriptLib/DotNetScripts (...) Phishing
2022-10-01 2 cascadiasolutions.ca/en/UltraBranch/efs/servlet/efs/ScriptLib/AriaLib.js Phishing
2022-10-01 2 cascadiasolutions.ca/en/UltraBranch/efs/servlet/efs/Scripts/jquery-1.10.2.js Phishing
mnemonic secure dns  No alerts detected
Quad9 DNS  No alerts detected


Files

No files detected



Passive DNS (9)

Passive DNS Source Fully Qualifying Domain Name Rank First Seen Last Seen IP Comment
mnemonic passive DNS www.alaskausa.org (12) 258465 2014-07-12 19:45:14 UTC 2022-09-30 19:58:57 UTC 107.162.171.161
mnemonic passive DNS push.services.mozilla.com (1) 2140 2015-09-03 10:29:36 UTC 2022-09-30 05:12:28 UTC 34.212.166.60
mnemonic passive DNS img-getpocket.cdn.mozilla.net (7) 1631 2017-09-01 03:40:57 UTC 2022-09-30 13:49:02 UTC 34.120.237.76
mnemonic passive DNS r3.o.lencr.org (4) 344 2020-12-02 08:52:13 UTC 2022-09-30 04:55:29 UTC 23.36.76.226
mnemonic passive DNS contile.services.mozilla.com (1) 1114 2021-05-27 18:32:35 UTC 2022-09-30 04:56:26 UTC 34.117.237.239
mnemonic passive DNS cascadiasolutions.ca (28) 0 2019-04-07 21:18:17 UTC 2022-09-30 16:31:56 UTC 104.21.69.154 Unknown ranking
mnemonic passive DNS ocsp.digicert.com (5) 86 2012-05-21 07:02:23 UTC 2022-09-30 21:45:49 UTC 93.184.220.29
mnemonic passive DNS firefox.settings.services.mozilla.com (2) 867 2020-05-27 20:08:30 UTC 2022-09-30 21:46:18 UTC 13.224.103.25
mnemonic passive DNS content-signature-2.cdn.mozilla.net (1) 1152 2020-11-03 12:26:46 UTC 2022-09-30 05:34:07 UTC 34.160.144.191


Recent reports on same IP/ASN/Domain/Screenshot

Last 5 reports on IP: 172.67.209.163

Date UQ / IDS / BL URL IP
2022-10-05 17:37:32 +0000
0 - 0 - 3 semsamty.com/iitu/enmote 172.67.209.163
2022-10-05 17:30:01 +0000
0 - 0 - 3 semsamty.com/iitu/iupmsissouaq 172.67.209.163
2022-10-02 23:47:29 +0000
0 - 0 - 3 semsamty.com/iitu/iupmsissouaq 172.67.209.163
2022-10-02 03:35:36 +0000
0 - 0 - 2 cascadiasolutions.ca/en/UltraBranch/efs/servl (...) 172.67.209.163
2022-10-02 02:07:21 +0000
0 - 0 - 3 cascadiasolutions.ca/en/UltraBranch/login.php (...) 172.67.209.163

Last 5 reports on ASN: CLOUDFLARENET

Date UQ / IDS / BL URL IP
2022-11-30 04:34:19 +0000
0 - 0 - 2 bsbd-wuppertal.de/ 188.114.97.1
2022-11-30 04:32:57 +0000
0 - 0 - 1 catisucvi.cf/b7a39619e45d38f947d39c14e44d8830 (...) 172.67.158.241
2022-11-30 04:32:08 +0000
0 - 0 - 1 multiplicationinfringement.top/ 188.114.96.1
2022-11-30 04:31:58 +0000
0 - 0 - 1 allegeturbulent.top/ 188.114.97.1
2022-11-30 04:31:43 +0000
0 - 0 - 1 waxsuppressive.top/ 172.67.145.216

Last 5 reports on domain: cascadiasolutions.ca

Date UQ / IDS / BL URL IP
2022-10-02 03:35:36 +0000
0 - 0 - 2 cascadiasolutions.ca/en/UltraBranch/efs/servl (...) 172.67.209.163
2022-10-02 02:07:21 +0000
0 - 0 - 3 cascadiasolutions.ca/en/UltraBranch/login.php (...) 172.67.209.163
2022-10-02 01:38:25 +0000
0 - 0 - 3 cascadiasolutions.ca/en/UltraBranch/login.php (...) 104.21.69.154
2022-10-02 01:37:02 +0000
0 - 0 - 2 cascadiasolutions.ca/en/UltraBranch/efs/servl (...) 188.114.96.1
2022-10-01 22:25:29 +0000
0 - 0 - 3 cascadiasolutions.ca/en/UltraBranch/login.php (...) 172.67.209.163

Last 5 reports with similar screenshot

Date UQ / IDS / BL URL IP
2022-09-30 22:44:47 +0000
0 - 0 - 2 cascadiasolutions.ca/en/UltraBranch/efs/servl (...) 172.67.209.163
2022-09-30 16:32:12 +0000
0 - 0 - 12 cascadiasolutions.ca/en/UltraBranch/efs/servl (...) 172.67.209.163
2022-09-30 13:25:22 +0000
0 - 0 - 12 cascadiasolutions.ca/en/UltraBranch/efs/servl (...) 172.67.209.163
2022-09-30 02:53:37 +0000
0 - 0 - 11 cascadiasolutions.ca/en/UltraBranch/efs/servl (...) 172.67.209.163
2022-09-24 00:21:19 +0000
0 - 0 - 33 ssk-agency.com/UltraBranch/efs/servlet/efs/se (...) 66.235.200.147


JavaScript

Executed Scripts (18)


Executed Evals (0)


Executed Writes (0)



HTTP Transactions (61)


Request Response
                                        
                                            GET /v1/ HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         13.224.103.25
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Type, Alert, Backoff, Retry-After, Content-Length
Cache-Control: max-age=3600
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Sat, 01 Oct 2022 03:16:16 GMT
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 a70d280cd058ea89c08954ea0ad67198.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: ZRH50-C1
X-Amz-Cf-Id: fIOOEeH5YJk9SIk3NRY9zUcpss1Vdvtsj3LOJB9KaSG7AFnpq_d1-w==
Age: 1115


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size:   939
Md5:    2d12f67fe57a87e7366b662d153a5582
Sha1:   d7b02d81cc74f24a251d9363e0f4b0a149264ec1
Sha256: 73c273c0b5a2de3cb970b8e8c187999d3b55e760dc7766dab4bb76428d19b551
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "A382476D14B6AE14003333E7ACDFBBD9AE8775D4C1A7D5C31116F33987043CFF"
Last-Modified: Thu, 29 Sep 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6168
Expires: Sat, 01 Oct 2022 05:17:39 GMT
Date: Sat, 01 Oct 2022 03:34:51 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "E4CAB1657F3E7A3C2D219A7802955629F414AC772EA4576C30AA7A71533A10C7"
Last-Modified: Fri, 30 Sep 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3521
Expires: Sat, 01 Oct 2022 04:33:32 GMT
Date: Sat, 01 Oct 2022 03:34:51 GMT
Connection: keep-alive

                                        
                                            GET /chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain HTTP/1.1 
Host: content-signature-2.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         34.160.144.191
HTTP/2 200 OK
content-type: binary/octet-stream
                                        
x-amz-id-2: xH6W8X4XHWHpH7gmAVkgnhi1DftaCBgWRYA1706YDfATDBta0hY+CZFeZRhToXQ+aRLeN2q/qlM=
x-amz-request-id: MEHJ60Y96TMB8AGT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sat, 01 Oct 2022 02:51:43 GMT
age: 2588
last-modified: Sat, 10 Sep 2022 18:47:45 GMT
etag: "6113f8408c59aebe188d6af273b90743"
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PEM certificate\012- , ASCII text
Size:   5348
Md5:    6113f8408c59aebe188d6af273b90743
Sha1:   7398873bf00f99944eaa77ad3ebc0d43c23dba6b
Sha256: b6e0cc9ad68306208a160f3835fb8da76acc5a82d8fde1da5a98e1de1c11a770
                                        
                                            GET /v1/tiles HTTP/1.1 
Host: contile.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.117.237.239
HTTP/2 200 OK
content-type: application/json
                                        
server: nginx
date: Sat, 01 Oct 2022 03:34:51 GMT
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   12
Md5:    23e88fb7b99543fb33315b29b1fad9d6
Sha1:   a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
Sha256: 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
                                        
                                            GET /en/UltraBranch/efs/servlet/efs/security.php HTTP/1.1 
Host: cascadiasolutions.ca
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Cookie: _gcl_au=1.1.1935912027.1664589769; _ga_R11FYFZ8HF=GS1.1.1664589769.1.1.1664590822.0.0.0; _ga=GA1.2.142168900.1664589769; agfs=b73e666a47b979ba3845bfeb53203040.38566340&1664590816&1664590816&direct&(none)&&&&&; _gid=GA1.2.476971742.1664589772; _uetsid=27d92850412d11edb53481455053d394; _uetvid=27d94390412d11ed88029d37c5c83abd
Upgrade-Insecure-Requests: 1

                                         
                                         104.21.69.154
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
                                        
Date: Sat, 01 Oct 2022 03:34:51 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=v11%2B0qV8SXbeMPIzmCkn6EXXJqvd3%2FwM8Vq8wQEVqsUleraEimi4kHieG58I85Qfv2%2Fbwc8ulKnCOOeLechD1kvqOGfyC5dMxy3OpzYAtgg4vG38EMFXWH8FMq4ePU81tLfOvtZxdQ%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 753225186d401c0e-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (38668), with CRLF line terminators
Size:   41037
Md5:    98bf913eed61be4bb9a857626ccff33b
Sha1:   97af2bf24a4fc599eab168445308bb0b3e01568a
Sha256: ac3fe288854895687e4001c410982a015de090eb373879770d4951109c988ded

Alerts:
  Blocklists:
    - openphish: Alaska USA Federal Credit Union
    - fortinet: Phishing
                                        
                                            GET /enroll/WebResource.axd?d=pynGkmcFUV13He1Qd6_TZFXjl5sPyt9kOGWz236FVgWAlp2jOnHz37PrZqhXVhK9g2YwSg2&t=636939665749177621 HTTP/1.1 
Host: cascadiasolutions.ca
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cascadiasolutions.ca/en/UltraBranch/efs/servlet/efs/security.php
Cookie: _gcl_au=1.1.1935912027.1664589769; _ga_R11FYFZ8HF=GS1.1.1664589769.1.1.1664590822.0.0.0; _ga=GA1.2.142168900.1664589769; agfs=b73e666a47b979ba3845bfeb53203040.38566340&1664590816&1664590816&direct&(none)&&&&&; _gid=GA1.2.476971742.1664589772; _uetsid=27d92850412d11edb53481455053d394; _uetvid=27d94390412d11ed88029d37c5c83abd

                                         
                                         104.21.69.154
HTTP/1.1 404 Not Found
Content-Type: text/html
                                        
Date: Sat, 01 Oct 2022 03:34:51 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 20 Feb 2020 23:03:11 GMT
Vary: Accept-Encoding
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=6IcO2Y1m68siaiRoOliLH%2BgkC0HGje%2F2SnFBAX5PKuB70ymvFVdj4is0MnqkDmfLqsYEt24Wk2oOH3T3dYQoxZUkbG%2B8yq9xJoxCIrhVMJPtmc1oUQkqkZA1aH6UfGKMD6791huk5A%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7532251b9c460b02-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (358)
Size:   4010
Md5:    f3f75eba1e661fa2dd284475a21371a6
Sha1:   d1cdd98bffe4feddb683da0448f621a728851273
Sha256: de7da34f0bf1edda2ba7a9be09822eba153a5a40914281a0fb33c6efe3b3ead6
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Cache-Control: 'max-age=158059'
Date: Sat, 01 Oct 2022 03:34:51 GMT
Server: ECS (amb/6B92)
Content-Length: 471

                                        
                                            GET /enroll/ScriptLib/md5.js HTTP/1.1 
Host: cascadiasolutions.ca
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cascadiasolutions.ca/en/UltraBranch/efs/servlet/efs/security.php
Cookie: _gcl_au=1.1.1935912027.1664589769; _ga_R11FYFZ8HF=GS1.1.1664589769.1.1.1664590822.0.0.0; _ga=GA1.2.142168900.1664589769; agfs=b73e666a47b979ba3845bfeb53203040.38566340&1664590816&1664590816&direct&(none)&&&&&; _gid=GA1.2.476971742.1664589772; _uetsid=27d92850412d11edb53481455053d394; _uetvid=27d94390412d11ed88029d37c5c83abd

                                         
                                         104.21.69.154
HTTP/1.1 404 Not Found
Content-Type: text/html
                                        
Date: Sat, 01 Oct 2022 03:34:51 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 20 Feb 2020 23:03:11 GMT
Vary: Accept-Encoding
Cache-Control: max-age=14400
CF-Cache-Status: EXPIRED
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=WaykPEFIYV5NqrA4V39%2Ft0zO9eK%2BUyHNwomiNzCIFfY%2F5LgX8rOqznwiCaz0NPU35x9M1YF8nnANdo9uVLNV81hEEXArwH4hZGRIa3Enf%2BMQUYxzHrC2poajoyzlsxR7gwY39K9Kpg%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7532251bde4f1c0e-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (358)
Size:   4000
Md5:    35a0c241e2561af2ab4cc0f600eae7a5
Sha1:   f3ffb0dfaa164b4be4b9b907e295acc7faa49786
Sha256: 1cf604d1a590dd08f2f4e314a64cc213e2f4a59154b9ab116c7dc5cf832158cc

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /en/UltraBranch/efs/servlet/efs/ScriptLib/jquery/jquery.maskedinput-1.4.1.min.js HTTP/1.1 
Host: cascadiasolutions.ca
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cascadiasolutions.ca/en/UltraBranch/efs/servlet/efs/security.php
Cookie: _gcl_au=1.1.1935912027.1664589769; _ga_R11FYFZ8HF=GS1.1.1664589769.1.1.1664590822.0.0.0; _ga=GA1.2.142168900.1664589769; agfs=b73e666a47b979ba3845bfeb53203040.38566340&1664590816&1664590816&direct&(none)&&&&&; _gid=GA1.2.476971742.1664589772; _uetsid=27d92850412d11edb53481455053d394; _uetvid=27d94390412d11ed88029d37c5c83abd

                                         
                                         104.21.69.154
HTTP/1.1 404 Not Found
Content-Type: text/html
                                        
Date: Sat, 01 Oct 2022 03:34:51 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 20 Feb 2020 23:03:11 GMT
Vary: Accept-Encoding
Cache-Control: max-age=14400
CF-Cache-Status: EXPIRED
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=j64EM85WlVG8dnwJsFBn5qr5hvCJREQkgvt97auXH8%2FpxZAXKEzR97wLYsCaodbfPet07%2F0mQm7G0yfMXjLb6xkalHS4LI1%2B5tB1xg6DjOiwfrfTFhAop4IuH%2FgX2nC58P%2F5eekNbA%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7532251b5f490b39-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (358)
Size:   4000
Md5:    35a0c241e2561af2ab4cc0f600eae7a5
Sha1:   f3ffb0dfaa164b4be4b9b907e295acc7faa49786
Sha256: 1cf604d1a590dd08f2f4e314a64cc213e2f4a59154b9ab116c7dc5cf832158cc

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /en/UltraBranch/efs/servlet/efs/App_Themes/DefaultTheme/_ControlStyles_v4.css HTTP/1.1 
Host: cascadiasolutions.ca
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cascadiasolutions.ca/en/UltraBranch/efs/servlet/efs/security.php
Cookie: _gcl_au=1.1.1935912027.1664589769; _ga_R11FYFZ8HF=GS1.1.1664589769.1.1.1664590822.0.0.0; _ga=GA1.2.142168900.1664589769; agfs=b73e666a47b979ba3845bfeb53203040.38566340&1664590816&1664590816&direct&(none)&&&&&; _gid=GA1.2.476971742.1664589772; _uetsid=27d92850412d11edb53481455053d394; _uetvid=27d94390412d11ed88029d37c5c83abd

                                         
                                         104.21.69.154
HTTP/1.1 404 Not Found
Content-Type: text/html
                                        
Date: Sat, 01 Oct 2022 03:34:51 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 20 Feb 2020 23:03:11 GMT
Vary: Accept-Encoding
Cache-Control: max-age=14400
CF-Cache-Status: EXPIRED
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=WAojmzJ%2BBVeIUp4t0oBPCEDcggl4YMPGLvCubWyUniVtTKMUmSpzJ0ccGJf%2BgTj99%2FCaGqIiVcfbrqmaT9hb8wEu%2BjOJZJQX1qdyGoK6Gl3eVbP%2F4hSD0PY5aeUPZTgjDyS9R36sBg%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7532251b6a6a0b4d-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (358)
Size:   4000
Md5:    35a0c241e2561af2ab4cc0f600eae7a5
Sha1:   f3ffb0dfaa164b4be4b9b907e295acc7faa49786
Sha256: 1cf604d1a590dd08f2f4e314a64cc213e2f4a59154b9ab116c7dc5cf832158cc
                                        
                                            GET /en/UltraBranch/efs/servlet/efs/App_Themes/DefaultTheme/_ExternalTemplateStyles_v4.css HTTP/1.1 
Host: cascadiasolutions.ca
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cascadiasolutions.ca/en/UltraBranch/efs/servlet/efs/security.php
Cookie: _gcl_au=1.1.1935912027.1664589769; _ga_R11FYFZ8HF=GS1.1.1664589769.1.1.1664590822.0.0.0; _ga=GA1.2.142168900.1664589769; agfs=b73e666a47b979ba3845bfeb53203040.38566340&1664590816&1664590816&direct&(none)&&&&&; _gid=GA1.2.476971742.1664589772; _uetsid=27d92850412d11edb53481455053d394; _uetvid=27d94390412d11ed88029d37c5c83abd

                                         
                                         104.21.69.154
HTTP/1.1 404 Not Found
Content-Type: text/html
                                        
Date: Sat, 01 Oct 2022 03:34:51 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 20 Feb 2020 23:03:11 GMT
Vary: Accept-Encoding
Cache-Control: max-age=14400
CF-Cache-Status: EXPIRED
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=fjdVR5BMKN0CeNDrYL2W8riG0noRPifxQMsPL2gX7gDp%2BJA3NTyfh6BQ1hiYNS7PtL2LPUU%2BO17yQ6w3Em90UKe08%2F7veT8glKN0DT6lYFATwE%2Bo9M5ZJqchkL6fY4WKCMkn%2FO3idQ%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7532251b6923b524-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (358)
Size:   4000
Md5:    35a0c241e2561af2ab4cc0f600eae7a5
Sha1:   f3ffb0dfaa164b4be4b9b907e295acc7faa49786
Sha256: 1cf604d1a590dd08f2f4e314a64cc213e2f4a59154b9ab116c7dc5cf832158cc
                                        
                                            GET /en/UltraBranch/efs/servlet/efs/App_Themes/DefaultTheme/_UtilityStyles_v4.css HTTP/1.1 
Host: cascadiasolutions.ca
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cascadiasolutions.ca/en/UltraBranch/efs/servlet/efs/security.php
Cookie: _gcl_au=1.1.1935912027.1664589769; _ga_R11FYFZ8HF=GS1.1.1664589769.1.1.1664590822.0.0.0; _ga=GA1.2.142168900.1664589769; agfs=b73e666a47b979ba3845bfeb53203040.38566340&1664590816&1664590816&direct&(none)&&&&&; _gid=GA1.2.476971742.1664589772; _uetsid=27d92850412d11edb53481455053d394; _uetvid=27d94390412d11ed88029d37c5c83abd

                                         
                                         104.21.69.154
HTTP/1.1 404 Not Found
Content-Type: text/html
                                        
Date: Sat, 01 Oct 2022 03:34:51 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 20 Feb 2020 23:03:11 GMT
Vary: Accept-Encoding
Cache-Control: max-age=14400
CF-Cache-Status: EXPIRED
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=FLStWdNsSGCdSg9IhUE7x2GkhBIbA1y4280i6pLS8jitUTdP7Z5oCo6I%2FHnGf5b3LV6GaDXtodO2%2FA6b2GCo0c2NPDQPO6vLvASi5ratdsYdWvO8j88vuzl1XCIPFtDre0gkG3Ie%2Fg%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7532251b69ddb4ee-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (358)
Size:   4000
Md5:    35a0c241e2561af2ab4cc0f600eae7a5
Sha1:   f3ffb0dfaa164b4be4b9b907e295acc7faa49786
Sha256: 1cf604d1a590dd08f2f4e314a64cc213e2f4a59154b9ab116c7dc5cf832158cc
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 0
Cache-Control: 'max-age=158059'
Date: Sat, 01 Oct 2022 03:34:51 GMT
Last-Modified: Sat, 01 Oct 2022 03:34:51 GMT
Server: ECS (ska/F708)
X-Cache: HIT
Content-Length: 471

                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Cache-Control: 'max-age=158059'
Date: Sat, 01 Oct 2022 03:34:51 GMT
Server: ECS (amb/6B73)
Content-Length: 471

                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Cache-Control: 'max-age=158059'
Date: Sat, 01 Oct 2022 03:34:51 GMT
Server: ECS (amb/6BC0)
Content-Length: 471

                                        
                                            GET /enroll/ScriptResource.axd?d=nv7asgRUU0tRmHNR2D6t1EekDsxKEwSZJpikhL_6bvVcyxhDFC5xzBMYL4n2T3xzyjsI9y5GDnWtqEMRDzYwpwEqiv8d0zyvxyVarszwga4VVGDKdqK_TSDL0_zGf2hYrzZ7Qw2&t=4e518d44 HTTP/1.1 
Host: cascadiasolutions.ca
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cascadiasolutions.ca/en/UltraBranch/efs/servlet/efs/security.php
Cookie: _gcl_au=1.1.1935912027.1664589769; _ga_R11FYFZ8HF=GS1.1.1664589769.1.1.1664590822.0.0.0; _ga=GA1.2.142168900.1664589769; agfs=b73e666a47b979ba3845bfeb53203040.38566340&1664590816&1664590816&direct&(none)&&&&&; _gid=GA1.2.476971742.1664589772; _uetsid=27d92850412d11edb53481455053d394; _uetvid=27d94390412d11ed88029d37c5c83abd

                                         
                                         104.21.69.154
HTTP/1.1 404 Not Found
Content-Type: text/html
                                        
Date: Sat, 01 Oct 2022 03:34:51 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 20 Feb 2020 23:03:11 GMT
Vary: Accept-Encoding
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=XWtVhx8vuNlEYwGjAf%2F8o6hNejDHjHM%2BPe10kw745S8OIZfpft3qMWXiI1bORKsXOtd8uWYTZZra7pv9tJZa94tdi7HUbF4%2FVlbhn3Oa8IOZVbLFu2e1cUMKrB6czroYop4tSnUa6w%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7532251d2ca60b02-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (358)
Size:   4011
Md5:    5da4d5e579c93cd6fe57e4a8a78426da
Sha1:   d43372e8f5b0274c44aa7a266b4766b611e5676a
Sha256: 2883cdd57723d195e6ad67999cceea7c57199e1c2090dc847c624dc49beebadd
                                        
                                            GET /enroll/ScriptResource.axd?d=D9drwtSJ4hBA6O8UhT6CQl5kP-DNk5tqsFSKE4QAx7FiqQUkfG0xcYhM38F4ULHzEsr3ccm3WWC8c21Rx1XAbPd7dZSDwlwAN3FBxOF0-Op5UR1aFNYrVvCtHrsmIFUrjLaB6c2og1ihVr9uj93NAWWK3N01&t=ffffffffa580202a HTTP/1.1 
Host: cascadiasolutions.ca
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cascadiasolutions.ca/en/UltraBranch/efs/servlet/efs/security.php
Cookie: _gcl_au=1.1.1935912027.1664589769; _ga_R11FYFZ8HF=GS1.1.1664589769.1.1.1664590822.0.0.0; _ga=GA1.2.142168900.1664589769; agfs=b73e666a47b979ba3845bfeb53203040.38566340&1664590816&1664590816&direct&(none)&&&&&; _gid=GA1.2.476971742.1664589772; _uetsid=27d92850412d11edb53481455053d394; _uetvid=27d94390412d11ed88029d37c5c83abd

                                         
                                         104.21.69.154
HTTP/1.1 404 Not Found
Content-Type: text/html
                                        
Date: Sat, 01 Oct 2022 03:34:51 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 20 Feb 2020 23:03:11 GMT
Vary: Accept-Encoding
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=U0KLL2AGep6m%2BICxugMbPCVeHwcYAQRmLkL5%2F6wNJnnjwkojsKmTMBe0Nava3YZYWbyz2tcFSr7G%2BXKYBrm2qJ2kWCpBZHmN1e7ZV1iHemavigRPHtkBlzpuI1miCXPdXHqhdACROA%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7532251d7ed61c0e-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (358)
Size:   4000
Md5:    35a0c241e2561af2ab4cc0f600eae7a5
Sha1:   f3ffb0dfaa164b4be4b9b907e295acc7faa49786
Sha256: 1cf604d1a590dd08f2f4e314a64cc213e2f4a59154b9ab116c7dc5cf832158cc
                                        
                                            GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         13.224.103.25
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Pragma, Content-Length, Backoff, Last-Modified, Cache-Control, Content-Type, Retry-After, ETag, Expires, Alert
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
X-Content-Type-Options: nosniff
Cache-Control: max-age=3600, max-age=3600
Date: Sat, 01 Oct 2022 03:29:33 GMT
Expires: Sat, 01 Oct 2022 04:18:13 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 f0f5607a03d2ae4c43b553dc2cef0c9e.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: ZRH50-C1
X-Amz-Cf-Id: xjr_TxVtNEuPABc4MFQ9Z1HuzfYDB8ckpbc6NjZBLurP5y36FzNidg==
Age: 318


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size:   329
Md5:    0333b0655111aa68de771adfcc4db243
Sha1:   63f295a144ac87a7c8e23417626724eeca68a7eb
Sha256: 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
                                        
                                            GET /en/UltraBranch/efs/servlet/efs/ScriptLib/AriaLib.js HTTP/1.1 
Host: cascadiasolutions.ca
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cascadiasolutions.ca/en/UltraBranch/efs/servlet/efs/security.php
Cookie: _gcl_au=1.1.1935912027.1664589769; _ga_R11FYFZ8HF=GS1.1.1664589769.1.1.1664590822.0.0.0; _ga=GA1.2.142168900.1664589769; agfs=b73e666a47b979ba3845bfeb53203040.38566340&1664590816&1664590816&direct&(none)&&&&&; _gid=GA1.2.476971742.1664589772; _uetsid=27d92850412d11edb53481455053d394; _uetvid=27d94390412d11ed88029d37c5c83abd

                                         
                                         104.21.69.154
HTTP/1.1 404 Not Found
Content-Type: text/html
                                        
Date: Sat, 01 Oct 2022 03:34:51 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 20 Feb 2020 23:03:11 GMT
Vary: Accept-Encoding
Cache-Control: max-age=14400
CF-Cache-Status: EXPIRED
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=nyH%2Fp%2BXwBDAQjsXaWIhsKA1s5owf12NEkfNtprXXVKWgSMS0d5ZlII%2F7ewvgBZAyf2USp%2F1f%2BRGgcg4IZ%2B9PONsr8ijIORWUUkDYeNNpB5FmFh1pWleqFTgpEz7PAJwyfPAHF%2Bo5zA%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7532251d7a04b524-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (358)
Size:   4000
Md5:    35a0c241e2561af2ab4cc0f600eae7a5
Sha1:   f3ffb0dfaa164b4be4b9b907e295acc7faa49786
Sha256: 1cf604d1a590dd08f2f4e314a64cc213e2f4a59154b9ab116c7dc5cf832158cc

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /en/UltraBranch/efs/servlet/efs/ScriptLib/DotNetScripts_v4.js HTTP/1.1 
Host: cascadiasolutions.ca
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cascadiasolutions.ca/en/UltraBranch/efs/servlet/efs/security.php
Cookie: _gcl_au=1.1.1935912027.1664589769; _ga_R11FYFZ8HF=GS1.1.1664589769.1.1.1664590822.0.0.0; _ga=GA1.2.142168900.1664589769; agfs=b73e666a47b979ba3845bfeb53203040.38566340&1664590816&1664590816&direct&(none)&&&&&; _gid=GA1.2.476971742.1664589772; _uetsid=27d92850412d11edb53481455053d394; _uetvid=27d94390412d11ed88029d37c5c83abd

                                         
                                         104.21.69.154
HTTP/1.1 404 Not Found
Content-Type: text/html
                                        
Date: Sat, 01 Oct 2022 03:34:51 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 20 Feb 2020 23:03:11 GMT
Vary: Accept-Encoding
Cache-Control: max-age=14400
CF-Cache-Status: EXPIRED
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=6TYYQgVJEC6BY4bGEazb11llwV4s1j4VkK3MEvErs6jDVo8Z8YADYHgjOXj4EvxkmvNcK3246ArrNnqypezGgXooQ3tPHRzBfUUt1w5AYZR4LZIOcRWfkOPvjzBmtM8tWdgifIzjbg%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7532251d7af10b4d-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (358)
Size:   4000
Md5:    35a0c241e2561af2ab4cc0f600eae7a5
Sha1:   f3ffb0dfaa164b4be4b9b907e295acc7faa49786
Sha256: 1cf604d1a590dd08f2f4e314a64cc213e2f4a59154b9ab116c7dc5cf832158cc

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /enroll/ScriptResource.axd?d=JnUc-DEDOM5KzzVKtsL1tcXbu1D4Hj6yCmHmr9cM66AViK3ia2ZDHVT7KW47KHMyBMtKHFfS1WB4puAzjXwId5XQy_jrygJTcv1Xors3xQgEJuGStAVwV63p2PylRvqJXzAeOswFDaHhtAK0W-ax5ffg3ZOYXYmQ06Ttk8PaI-ZJmv_M0&t=ffffffffa580202a HTTP/1.1 
Host: cascadiasolutions.ca
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cascadiasolutions.ca/en/UltraBranch/efs/servlet/efs/security.php
Cookie: _gcl_au=1.1.1935912027.1664589769; _ga_R11FYFZ8HF=GS1.1.1664589769.1.1.1664590822.0.0.0; _ga=GA1.2.142168900.1664589769; agfs=b73e666a47b979ba3845bfeb53203040.38566340&1664590816&1664590816&direct&(none)&&&&&; _gid=GA1.2.476971742.1664589772; _uetsid=27d92850412d11edb53481455053d394; _uetvid=27d94390412d11ed88029d37c5c83abd

                                         
                                         104.21.69.154
HTTP/1.1 404 Not Found
Content-Type: text/html
                                        
Date: Sat, 01 Oct 2022 03:34:52 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 20 Feb 2020 23:03:11 GMT
Vary: Accept-Encoding
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=hWquygKiQlXVh7%2Bc9qiew8XeG8He%2FY5xHg6fjPgFU%2BzgrnnCnCvuNAXCr0xXmaNOT%2F%2FL2POSMiPspOQzd%2FV3YMKJQ7I2rSMhUHe3EabJldBZ8sqV2elcOheJSNNv8tuM0gafhwCaUg%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7532251d7fe50b39-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (358)
Size:   4010
Md5:    154de2ead4864816f82be4ed21f173b9
Sha1:   4582ebccd1ed33a76c2c78d2b7cb549b0238b9ee
Sha256: e973a48de31cc4c10e0ab959e32e7d26a213407b93fb38d90b4d88a9630ada88
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 3952
Cache-Control: 'max-age=158059'
Date: Sat, 01 Oct 2022 03:34:52 GMT
Last-Modified: Sat, 01 Oct 2022 02:29:00 GMT
Server: ECS (ska/F708)
X-Cache: HIT
Content-Length: 471

                                        
                                            GET /en/UltraBranch/efs/servlet/efs/Scripts/jquery-1.10.2.js HTTP/1.1 
Host: cascadiasolutions.ca
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cascadiasolutions.ca/en/UltraBranch/efs/servlet/efs/security.php
Cookie: _gcl_au=1.1.1935912027.1664589769; _ga_R11FYFZ8HF=GS1.1.1664589769.1.1.1664590822.0.0.0; _ga=GA1.2.142168900.1664589769; agfs=b73e666a47b979ba3845bfeb53203040.38566340&1664590816&1664590816&direct&(none)&&&&&; _gid=GA1.2.476971742.1664589772; _uetsid=27d92850412d11edb53481455053d394; _uetvid=27d94390412d11ed88029d37c5c83abd

                                         
                                         104.21.69.154
HTTP/1.1 404 Not Found
Content-Type: text/html
                                        
Date: Sat, 01 Oct 2022 03:34:52 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 20 Feb 2020 23:03:11 GMT
Vary: Accept-Encoding
Cache-Control: max-age=14400
CF-Cache-Status: EXPIRED
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=R1CFcWqxknMEZ%2BRERA0lEBuYF1Bu9Pxgzfp84Z5N6OV4K4cq48DpYgi26yvLdqzyyMe6795JGxDzrEsI3U2UHYwxSM5LUZkIsi5DZb%2FwyrNlDLYy8XQxhB9FAJwwnzgvOc3IEqirCg%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7532251d8acab4ee-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (358)
Size:   4000
Md5:    35a0c241e2561af2ab4cc0f600eae7a5
Sha1:   f3ffb0dfaa164b4be4b9b907e295acc7faa49786
Sha256: 1cf604d1a590dd08f2f4e314a64cc213e2f4a59154b9ab116c7dc5cf832158cc

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /js/jsSuite-1.8.js HTTP/1.1 
Host: www.alaskausa.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://cascadiasolutions.ca/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         107.162.171.161
HTTP/1.1 302 Object moved
Content-Type: text/html
                                        
Cache-Control: private
Location: /pageUnavailable.asp?status=missing
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
X-Frame-Options: DENY
Date: Sat, 01 Oct 2022 03:34:52 GMT
Via: 1.1 dca1-bit16013
Set-Cookie: ASPSESSIONIDAUCTARRA=MGOAPLFDFDMKAJDDFAAJNEAK; secure; path=/ TS01682a2f=01069477c25a3bf183d6f2895adc8f49188f49ec75ee4ce63e048b66ab8172c410a04b8159598ae65288f091432dad8bba51398bf870c16e6aab1fc06d0d62dd28c445dd0e; Path=/; Secure; HTTPOnly
Vary: Accept-Encoding
Content-Encoding: gzip
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text
Size:   296
Md5:    33dc966734cea833f261863e35b1f2f3
Sha1:   b1c3e2ea6431645131178005d1eb1677c40cf4e5
Sha256: 21ec73760050529f53f914ef8194651a4c2de4411e4bc36be410947bd3a26dbc
                                        
                                            GET /css/akusa-express.css HTTP/1.1 
Host: www.alaskausa.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://cascadiasolutions.ca/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         107.162.171.161
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Last-Modified: Wed, 28 Sep 2022 02:43:57 GMT
Accept-Ranges: bytes
ETag: "b1592b28e4d2d81:0"
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
X-Frame-Options: DENY
Date: Sat, 01 Oct 2022 03:34:58 GMT
Via: 1.1 dca1-bit16013
Vary: Accept-Encoding
Content-Encoding: gzip
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  Unicode text, UTF-8 (with BOM) text, with CRLF line terminators
Size:   4644
Md5:    825350f09acb37cf5ec0cac6016f5c8d
Sha1:   253d99cb60408d7f60734dcaf60abe848b4281c9
Sha256: 4afa21fd07b5e1574b4637b41e29ae2e93176e941d172c1476ca7fa947f7834e
                                        
                                            GET /angelfish.js HTTP/1.1 
Host: www.alaskausa.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://cascadiasolutions.ca/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         107.162.171.161
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Last-Modified: Wed, 28 Sep 2022 02:43:48 GMT
Accept-Ranges: bytes
ETag: "786bf122e4d2d81:0"
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
X-Frame-Options: DENY
Date: Sat, 01 Oct 2022 03:34:57 GMT
Content-Length: 8704
Via: 1.1 dca1-bit16013
Vary: Accept-Encoding
Content-Encoding: gzip
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (826)
Size:   8704
Md5:    23acb6d2cd2e079bfe986f0761b957d5
Sha1:   bb1cf7660324be47645c3e239b6fa51faa7421ea
Sha256: ad8da576b2060355b1ed4f753cb2a19ee37bba690f9fff2442a2654e55f235eb
                                        
                                            GET / HTTP/1.1 
Host: push.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: xkyQrqGjdySKcFDoj3kRCA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

                                         
                                         34.212.166.60
HTTP/1.1 101 Switching Protocols
                                        
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: ZdtDw+QBXx1Z57Hz0F282gaduY0=

                                        
                                            GET /js/jquery-1.11.3.min.js HTTP/1.1 
Host: www.alaskausa.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://cascadiasolutions.ca/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         107.162.171.161
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Last-Modified: Wed, 28 Sep 2022 02:44:41 GMT
Accept-Ranges: bytes
ETag: "5f9d6e42e4d2d81:0"
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
X-Frame-Options: DENY
Date: Sat, 01 Oct 2022 03:34:53 GMT
Via: 1.1 dca1-bit16013
Vary: Accept-Encoding
Content-Encoding: gzip
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  ASCII text, with very long lines (32038)
Size:   45711
Md5:    cf54b56dbd2adb27eb44fe6defb747e6
Sha1:   78e81335c5c317f9d56877d2f011a74a50910dd8
Sha256: 9256346dc8067ab6665a68fe1590b676d13f8ecd353fa2676ec372a2f3338a94
                                        
                                            GET /en/UltraBranch/efs/servlet/efs/ScriptLib/jquery/jquery.maskedinput-1.4.1.min.js HTTP/1.1 
Host: cascadiasolutions.ca
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cascadiasolutions.ca/en/UltraBranch/efs/servlet/efs/security.php
Cookie: _gcl_au=1.1.1935912027.1664589769; _ga_R11FYFZ8HF=GS1.1.1664589769.1.1.1664590822.0.0.0; _ga=GA1.2.142168900.1664589769; agfs=b73e666a47b979ba3845bfeb53203040.38566340&1664590816&1664590816&direct&(none)&&&&&; _gid=GA1.2.476971742.1664589772; _uetsid=27d92850412d11edb53481455053d394; _uetvid=27d94390412d11ed88029d37c5c83abd

                                         
                                         104.21.69.154
HTTP/1.1 404 Not Found
Content-Type: text/html
                                        
Date: Sat, 01 Oct 2022 03:34:52 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 20 Feb 2020 23:03:11 GMT
Vary: Accept-Encoding
Cache-Control: max-age=14400
CF-Cache-Status: HIT
Age: 1
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=d4iQqe0iUgdHDGxUwfPRZJYMq8C%2Bev8dAL2OBOECje4o7kEy9mpRYeZRzBfC3ZOoBQ8AgafydzFENoXuqLVbxrBgERKCk59SNH4xIUZVBz5oaN3vbCuuX9wa8U2gXoUIyC5TffEOVQ%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 75322521de1f0b02-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (358)
Size:   4000
Md5:    35a0c241e2561af2ab4cc0f600eae7a5
Sha1:   f3ffb0dfaa164b4be4b9b907e295acc7faa49786
Sha256: 1cf604d1a590dd08f2f4e314a64cc213e2f4a59154b9ab116c7dc5cf832158cc

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /pageUnavailable.asp?status=missing HTTP/1.1 
Host: www.alaskausa.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://cascadiasolutions.ca/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         107.162.171.161
HTTP/1.1 200
Content-Type: text/html
                                        
Cache-Control: private
Set-Cookie: ss=c; expires=Mon, 31-Oct-2022 03:34:52 GMT; path=/ lst=770171263; expires=Sat, 01-Oct-2022 03:49:52 GMT; domain=.alaskausa.org; path=/; secure ASPSESSIONIDAUCTARRA=NGOAPLFDKAFPLOKKBLEIDPBE; secure; path=/; HttpOnly TS01682a2f=01069477c2e13d3279328e5ed23718ad901481a8932a48fb83471cdda2d3fb069ed1e66f4d7c153fbe2a4d06e632334cb5bf9e7cdb0b5809e47aed20394194827bc88ec5e3986ae4b72169c8b91f9f2ade71333f91; Path=/; Secure; HTTPOnly TS013395ac=01069477c2797e89017281dc696cd4fdca62139ddd2a48fb83471cdda2d3fb069ed1e66f4dbecbdb980dd0d783f9d85470c53fffae1d143772092ad0c1eb21166c45f088c0; path=/; domain=.alaskausa.org; HTTPonly; Secure
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
X-Frame-Options: DENY
Date: Sat, 01 Oct 2022 03:34:52 GMT
Via: 1.1 dca1-bit16013
Vary: Accept-Encoding
Content-Encoding: gzip
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (675), with CRLF, LF line terminators
Size:   13038
Md5:    d303ebf90c58c63e3233603b013d9e07
Sha1:   9b4fd1eff93da3f18df9612820a97eed1f07dd2e
Sha256: 30f4501b88ec7b2e895d108b5563b18855b7ddc43fe93ffccad54aaa9215fdff
                                        
                                            GET /en/UltraBranch/efs/servlet/efs/App_Themes/DefaultTheme/_ControlStyles_v4.css HTTP/1.1 
Host: cascadiasolutions.ca
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cascadiasolutions.ca/en/UltraBranch/efs/servlet/efs/security.php
Cookie: _gcl_au=1.1.1935912027.1664589769; _ga_R11FYFZ8HF=GS1.1.1664589769.1.1.1664590822.0.0.0; _ga=GA1.2.142168900.1664589769; agfs=b73e666a47b979ba3845bfeb53203040.38566340&1664590816&1664590816&direct&(none)&&&&&; _gid=GA1.2.476971742.1664589772; _uetsid=27d92850412d11edb53481455053d394; _uetvid=27d94390412d11ed88029d37c5c83abd

                                         
                                         104.21.69.154
HTTP/1.1 404 Not Found
Content-Type: text/html
                                        
Date: Sat, 01 Oct 2022 03:34:52 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 20 Feb 2020 23:03:11 GMT
Vary: Accept-Encoding
Cache-Control: max-age=14400
CF-Cache-Status: HIT
Age: 1
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Eu%2FaeDSmFnahGa8kCaa148taGwptyyz661TWKRHP4PDoZn6fQ2MPMNzAr8uKh5CMvMMalvrTu1t9%2FenXOnVonRx%2F7XovYROngTf3k4dAKb3XR8vABzag2J9Ae1aTVxynIcGi9UNSFQ%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 75322521f9790b39-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (358)
Size:   4000
Md5:    35a0c241e2561af2ab4cc0f600eae7a5
Sha1:   f3ffb0dfaa164b4be4b9b907e295acc7faa49786
Sha256: 1cf604d1a590dd08f2f4e314a64cc213e2f4a59154b9ab116c7dc5cf832158cc
                                        
                                            GET /en/UltraBranch/efs/servlet/efs/App_Themes/DefaultTheme/_ExternalTemplateStyles_v4.css HTTP/1.1 
Host: cascadiasolutions.ca
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cascadiasolutions.ca/en/UltraBranch/efs/servlet/efs/security.php
Cookie: _gcl_au=1.1.1935912027.1664589769; _ga_R11FYFZ8HF=GS1.1.1664589769.1.1.1664590822.0.0.0; _ga=GA1.2.142168900.1664589769; agfs=b73e666a47b979ba3845bfeb53203040.38566340&1664590816&1664590816&direct&(none)&&&&&; _gid=GA1.2.476971742.1664589772; _uetsid=27d92850412d11edb53481455053d394; _uetvid=27d94390412d11ed88029d37c5c83abd

                                         
                                         104.21.69.154
HTTP/1.1 404 Not Found
Content-Type: text/html
                                        
Date: Sat, 01 Oct 2022 03:34:52 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 20 Feb 2020 23:03:11 GMT
Vary: Accept-Encoding
Cache-Control: max-age=14400
CF-Cache-Status: HIT
Age: 1
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=qWW%2B7AcEE8K6MwwJ4lg%2FaP1xDSdD49pggHnZI6MpNcEjQzPH%2FBuRj2FkoVkzzuWatv3blvDg6P7l4e5saU4%2FAs8sHk4IkPca0xi1rSr9W1%2BLg6kVlCwRgGRpN4MIN4aJZDf1Xk0RKw%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 75322521fbd5b524-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (358)
Size:   4000
Md5:    35a0c241e2561af2ab4cc0f600eae7a5
Sha1:   f3ffb0dfaa164b4be4b9b907e295acc7faa49786
Sha256: 1cf604d1a590dd08f2f4e314a64cc213e2f4a59154b9ab116c7dc5cf832158cc
                                        
                                            GET /en/UltraBranch/efs/servlet/efs/App_Themes/DefaultTheme/_UtilityStyles_v4.css HTTP/1.1 
Host: cascadiasolutions.ca
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cascadiasolutions.ca/en/UltraBranch/efs/servlet/efs/security.php
Cookie: _gcl_au=1.1.1935912027.1664589769; _ga_R11FYFZ8HF=GS1.1.1664589769.1.1.1664590822.0.0.0; _ga=GA1.2.142168900.1664589769; agfs=b73e666a47b979ba3845bfeb53203040.38566340&1664590816&1664590816&direct&(none)&&&&&; _gid=GA1.2.476971742.1664589772; _uetsid=27d92850412d11edb53481455053d394; _uetvid=27d94390412d11ed88029d37c5c83abd

                                         
                                         104.21.69.154
HTTP/1.1 404 Not Found
Content-Type: text/html
                                        
Date: Sat, 01 Oct 2022 03:34:52 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 20 Feb 2020 23:03:11 GMT
Vary: Accept-Encoding
Cache-Control: max-age=14400
CF-Cache-Status: HIT
Age: 1
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=KMaFRSYYF6QMy5%2FfZdA1ytJTyBcR8SurIIuQUINziE1EmUUg2ZF6e%2F44G57BC4ymN8Cb7P1NICwop%2B%2BrAas3xLMl09Z1Wg%2FKRqC%2FbfSL8s7FtvQ21IHJAWsGXhorOnJ67m1YKcjvLA%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 75322521fc1d0b4d-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (358)
Size:   4000
Md5:    35a0c241e2561af2ab4cc0f600eae7a5
Sha1:   f3ffb0dfaa164b4be4b9b907e295acc7faa49786
Sha256: 1cf604d1a590dd08f2f4e314a64cc213e2f4a59154b9ab116c7dc5cf832158cc
                                        
                                            GET /enroll/WebResource.axd?d=pynGkmcFUV13He1Qd6_TZFXjl5sPyt9kOGWz236FVgWAlp2jOnHz37PrZqhXVhK9g2YwSg2&t=636939665749177621 HTTP/1.1 
Host: cascadiasolutions.ca
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cascadiasolutions.ca/en/UltraBranch/efs/servlet/efs/security.php
Cookie: _gcl_au=1.1.1935912027.1664589769; _ga_R11FYFZ8HF=GS1.1.1664589769.1.1.1664590822.0.0.0; _ga=GA1.2.142168900.1664589769; agfs=b73e666a47b979ba3845bfeb53203040.38566340&1664590816&1664590816&direct&(none)&&&&&; _gid=GA1.2.476971742.1664589772; _uetsid=27d92850412d11edb53481455053d394; _uetvid=27d94390412d11ed88029d37c5c83abd

                                         
                                         104.21.69.154
HTTP/1.1 404 Not Found
Content-Type: text/html
                                        
Date: Sat, 01 Oct 2022 03:34:52 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 20 Feb 2020 23:03:11 GMT
Vary: Accept-Encoding
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=tGrro1BaBSdyBLZk2dsCbepAuKfk%2BxfNUweLPqWK7%2FSLZhlppfoNdcxByYM%2BcwnZ35R6BKrKoBCQEPXbp3kIi8fqFDl3%2FekI7DLMI271j2ZCFcQAgPx5fVPGQJ04zKWYlcWUjBzCyA%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 75322522097b0b39-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (358)
Size:   4011
Md5:    2b8c799612e2151fbdcb7e4a807da601
Sha1:   e334bb0abc1877cfdd2c79b564ce4ca67e161e55
Sha256: 8c160d78af320e4261bb39942174ee5fbf32239ce820edbec8ad174ca75ab2dd
                                        
                                            GET /enroll/ScriptLib/md5.js HTTP/1.1 
Host: cascadiasolutions.ca
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cascadiasolutions.ca/en/UltraBranch/efs/servlet/efs/security.php
Cookie: _gcl_au=1.1.1935912027.1664589769; _ga_R11FYFZ8HF=GS1.1.1664589769.1.1.1664590822.0.0.0; _ga=GA1.2.142168900.1664589769; agfs=b73e666a47b979ba3845bfeb53203040.38566340&1664590816&1664590816&direct&(none)&&&&&; _gid=GA1.2.476971742.1664589772; _uetsid=27d92850412d11edb53481455053d394; _uetvid=27d94390412d11ed88029d37c5c83abd

                                         
                                         104.21.69.154
HTTP/1.1 404 Not Found
Content-Type: text/html
                                        
Date: Sat, 01 Oct 2022 03:34:52 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 20 Feb 2020 23:03:11 GMT
Vary: Accept-Encoding
Cache-Control: max-age=14400
CF-Cache-Status: HIT
Age: 1
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=dUHEo2U4JBM8yuOmAj4U36pzLKFZYhTD%2BgUkp1qdO2o70cv4pReQ8XWElCjTRl6xQ9XFapID9BBxTn6ymkW2eGTrQDhDjg60DKIARGksRB3RZmC%2FzLX5cnudqrnR9y88KZrmqkYO8w%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 75322522d9cf0b39-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (358)
Size:   4000
Md5:    35a0c241e2561af2ab4cc0f600eae7a5
Sha1:   f3ffb0dfaa164b4be4b9b907e295acc7faa49786
Sha256: 1cf604d1a590dd08f2f4e314a64cc213e2f4a59154b9ab116c7dc5cf832158cc

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /images/nav/EHL_2016_gray.png HTTP/1.1 
Host: www.alaskausa.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://cascadiasolutions.ca/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         107.162.171.161
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Last-Modified: Wed, 28 Sep 2022 02:44:37 GMT
Accept-Ranges: bytes
ETag: "51e2f13fe4d2d81:0"
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
X-Frame-Options: DENY
Date: Sat, 01 Oct 2022 03:34:53 GMT
Content-Length: 3317
Via: 1.1 dca1-bit16013


--- Additional Info ---
Magic:  PNG image data, 55 x 59, 8-bit colormap, non-interlaced\012- data
Size:   3317
Md5:    859cf2ed8319f4931c1e2371bee8b46d
Sha1:   ff866fe6e3071999e6c057dae5aed927aefd047f
Sha256: 1c7cd686a01f2dcffc1f55119624e9166300721172b4e7ad284ff734bc8db0a1
                                        
                                            GET /images/nav/akusafcu_logo.png HTTP/1.1 
Host: www.alaskausa.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://cascadiasolutions.ca/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         107.162.171.161
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Last-Modified: Wed, 28 Sep 2022 02:44:49 GMT
Accept-Ranges: bytes
ETag: "539447e4d2d81:0"
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
X-Frame-Options: DENY
Date: Sat, 01 Oct 2022 03:34:58 GMT
Content-Length: 16228
Via: 1.1 dca1-bit16013


--- Additional Info ---
Magic:  PNG image data, 220 x 70, 8-bit/color RGBA, non-interlaced\012- data
Size:   16228
Md5:    dc43cc5c96d54639189781edf322cac9
Sha1:   26c53d9c975f997481520a336ac5f6a22f115c74
Sha256: 6ceabe544edbb8513733f30b14c1d17a2fa51e461f972c31d17e5450d4718603
                                        
                                            GET /enroll/ScriptResource.axd?d=nv7asgRUU0tRmHNR2D6t1EekDsxKEwSZJpikhL_6bvVcyxhDFC5xzBMYL4n2T3xzyjsI9y5GDnWtqEMRDzYwpwEqiv8d0zyvxyVarszwga4VVGDKdqK_TSDL0_zGf2hYrzZ7Qw2&t=4e518d44 HTTP/1.1 
Host: cascadiasolutions.ca
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cascadiasolutions.ca/en/UltraBranch/efs/servlet/efs/security.php
Cookie: _gcl_au=1.1.1935912027.1664589769; _ga_R11FYFZ8HF=GS1.1.1664589769.1.1.1664590822.0.0.0; _ga=GA1.2.142168900.1664589769; agfs=b73e666a47b979ba3845bfeb53203040.38566340&1664590816&1664590816&direct&(none)&&&&&; _gid=GA1.2.476971742.1664589772; _uetsid=27d92850412d11edb53481455053d394; _uetvid=27d94390412d11ed88029d37c5c83abd

                                         
                                         104.21.69.154
HTTP/1.1 404 Not Found
Content-Type: text/html
                                        
Date: Sat, 01 Oct 2022 03:34:52 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 20 Feb 2020 23:03:11 GMT
Vary: Accept-Encoding
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=m2Y5AozUWwFDjLXqgY6KJfi6kZ%2BnDbZ6uJNphRVh6qEeevhUbyLS7rQDSJ0hX%2BenLjlE%2BM9w5JqszIF953MpGWhsypqpDxiIVydGoe0MRP4nTBqx3jzsFyO0amntpsDm8sF10w7GAw%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 75322522e9d20b39-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (358)
Size:   4000
Md5:    35a0c241e2561af2ab4cc0f600eae7a5
Sha1:   f3ffb0dfaa164b4be4b9b907e295acc7faa49786
Sha256: 1cf604d1a590dd08f2f4e314a64cc213e2f4a59154b9ab116c7dc5cf832158cc
                                        
                                            GET /en/UltraBranch/efs/servlet/efs/App_Themes/DefaultTheme/ControlImages/close.png HTTP/1.1 
Host: cascadiasolutions.ca
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cascadiasolutions.ca/en/UltraBranch/efs/servlet/efs/security.php
Cookie: _gcl_au=1.1.1935912027.1664589769; _ga_R11FYFZ8HF=GS1.1.1664589769.1.1.1664590822.0.0.0; _ga=GA1.2.142168900.1664589769; agfs=b73e666a47b979ba3845bfeb53203040.38566340&1664590816&1664590816&direct&(none)&&&&&; _gid=GA1.2.476971742.1664589772; _uetsid=27d92850412d11edb53481455053d394; _uetvid=27d94390412d11ed88029d37c5c83abd

                                         
                                         104.21.69.154
HTTP/1.1 404 Not Found
Content-Type: text/html
                                        
Date: Sat, 01 Oct 2022 03:34:52 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 20 Feb 2020 23:03:11 GMT
Vary: Accept-Encoding
Cache-Control: max-age=14400
CF-Cache-Status: EXPIRED
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2FBII6W9eoPazIesVM%2FI5dRah6gilA8twgVwOSVkpMBcSdB9R497mlZY26Nu7dBWVbt6SO0sdhyWoY2tGiJ823J6LsFhkYPtGq1g1pznpLDobsD9ginL8fl0GRVNnITfGDmniO%2BrpMA%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 75322521ee260b02-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (358)
Size:   4000
Md5:    35a0c241e2561af2ab4cc0f600eae7a5
Sha1:   f3ffb0dfaa164b4be4b9b907e295acc7faa49786
Sha256: 1cf604d1a590dd08f2f4e314a64cc213e2f4a59154b9ab116c7dc5cf832158cc
                                        
                                            GET /enroll/ScriptResource.axd?d=D9drwtSJ4hBA6O8UhT6CQl5kP-DNk5tqsFSKE4QAx7FiqQUkfG0xcYhM38F4ULHzEsr3ccm3WWC8c21Rx1XAbPd7dZSDwlwAN3FBxOF0-Op5UR1aFNYrVvCtHrsmIFUrjLaB6c2og1ihVr9uj93NAWWK3N01&t=ffffffffa580202a HTTP/1.1 
Host: cascadiasolutions.ca
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cascadiasolutions.ca/en/UltraBranch/efs/servlet/efs/security.php
Cookie: _gcl_au=1.1.1935912027.1664589769; _ga_R11FYFZ8HF=GS1.1.1664589769.1.1.1664590822.0.0.0; _ga=GA1.2.142168900.1664589769; agfs=b73e666a47b979ba3845bfeb53203040.38566340&1664590816&1664590816&direct&(none)&&&&&; _gid=GA1.2.476971742.1664589772; _uetsid=27d92850412d11edb53481455053d394; _uetvid=27d94390412d11ed88029d37c5c83abd

                                         
                                         104.21.69.154
HTTP/1.1 404 Not Found
Content-Type: text/html
                                        
Date: Sat, 01 Oct 2022 03:34:52 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 20 Feb 2020 23:03:11 GMT
Vary: Accept-Encoding
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=dZR1KnoB1Ca2WStqpRiBUEVQFoQts9xLU6Za2B0ylID1IU4XjYx37S3naBfZdszwoJtyTwAsJcMOxKKv0ttCozbee%2FHKrPhA17LL1bAoAn6osfjxAXeY79qxugxw%2FwzhYnkFZEI%2Buw%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 75322523ca1c0b39-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (358)
Size:   4011
Md5:    2b8c799612e2151fbdcb7e4a807da601
Sha1:   e334bb0abc1877cfdd2c79b564ce4ca67e161e55
Sha256: 8c160d78af320e4261bb39942174ee5fbf32239ce820edbec8ad174ca75ab2dd
                                        
                                            GET /enroll/ScriptResource.axd?d=JnUc-DEDOM5KzzVKtsL1tcXbu1D4Hj6yCmHmr9cM66AViK3ia2ZDHVT7KW47KHMyBMtKHFfS1WB4puAzjXwId5XQy_jrygJTcv1Xors3xQgEJuGStAVwV63p2PylRvqJXzAeOswFDaHhtAK0W-ax5ffg3ZOYXYmQ06Ttk8PaI-ZJmv_M0&t=ffffffffa580202a HTTP/1.1 
Host: cascadiasolutions.ca
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cascadiasolutions.ca/en/UltraBranch/efs/servlet/efs/security.php
Cookie: _gcl_au=1.1.1935912027.1664589769; _ga_R11FYFZ8HF=GS1.1.1664589769.1.1.1664590822.0.0.0; _ga=GA1.2.142168900.1664589769; agfs=b73e666a47b979ba3845bfeb53203040.38566340&1664590816&1664590816&direct&(none)&&&&&; _gid=GA1.2.476971742.1664589772; _uetsid=27d92850412d11edb53481455053d394; _uetvid=27d94390412d11ed88029d37c5c83abd

                                         
                                         104.21.69.154
HTTP/1.1 404 Not Found
Content-Type: text/html
                                        
Date: Sat, 01 Oct 2022 03:34:53 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 20 Feb 2020 23:03:11 GMT
Vary: Accept-Encoding
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=O6wRmXB06BsUEvhr7%2FA3QqAUjjUr80Ql%2FxS0IkmFHtx%2Bn%2FWszhx1%2F4uInZAgMXMtUCmxxVdTdQKpuAyRV3N10fTHyjfOT1uXCLKIWIrIhz3Oa9WlH69Lmm0xLfYvL4LV2UuWyukM0Q%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 75322524af060b02-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (358)
Size:   4000
Md5:    35a0c241e2561af2ab4cc0f600eae7a5
Sha1:   f3ffb0dfaa164b4be4b9b907e295acc7faa49786
Sha256: 1cf604d1a590dd08f2f4e314a64cc213e2f4a59154b9ab116c7dc5cf832158cc
                                        
                                            GET /en/UltraBranch/efs/servlet/efs/ScriptLib/DotNetScripts_v4.js HTTP/1.1 
Host: cascadiasolutions.ca
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cascadiasolutions.ca/en/UltraBranch/efs/servlet/efs/security.php
Cookie: _gcl_au=1.1.1935912027.1664589769; _ga_R11FYFZ8HF=GS1.1.1664589769.1.1.1664590822.0.0.0; _ga=GA1.2.142168900.1664589769; agfs=b73e666a47b979ba3845bfeb53203040.38566340&1664590816&1664590816&direct&(none)&&&&&; _gid=GA1.2.476971742.1664589772; _uetsid=27d92850412d11edb53481455053d394; _uetvid=27d94390412d11ed88029d37c5c83abd

                                         
                                         104.21.69.154
HTTP/1.1 404 Not Found
Content-Type: text/html
                                        
Date: Sat, 01 Oct 2022 03:34:53 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 20 Feb 2020 23:03:11 GMT
Vary: Accept-Encoding
Cache-Control: max-age=14400
CF-Cache-Status: HIT
Age: 2
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=0xyUPn6Q2jZ0KKapunYm0bqIf2a5m374%2FmceYv%2FqfJrEFMgYMVO2D5wC8B0FatSiY5GY1hjG35YKoFRspPVkwWisOMCvre8CfZc91jrwC8QHLtM8rslcflL%2F0Z06SmgX51QZQNl01A%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 753225257a940b39-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (358)
Size:   4000
Md5:    35a0c241e2561af2ab4cc0f600eae7a5
Sha1:   f3ffb0dfaa164b4be4b9b907e295acc7faa49786
Sha256: 1cf604d1a590dd08f2f4e314a64cc213e2f4a59154b9ab116c7dc5cf832158cc

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /en/UltraBranch/efs/servlet/efs/ScriptLib/AriaLib.js HTTP/1.1 
Host: cascadiasolutions.ca
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cascadiasolutions.ca/en/UltraBranch/efs/servlet/efs/security.php
Cookie: _gcl_au=1.1.1935912027.1664589769; _ga_R11FYFZ8HF=GS1.1.1664589769.1.1.1664590822.0.0.0; _ga=GA1.2.142168900.1664589769; agfs=b73e666a47b979ba3845bfeb53203040.38566340&1664590816&1664590816&direct&(none)&&&&&; _gid=GA1.2.476971742.1664589772; _uetsid=27d92850412d11edb53481455053d394; _uetvid=27d94390412d11ed88029d37c5c83abd

                                         
                                         104.21.69.154
HTTP/1.1 404 Not Found
Content-Type: text/html
                                        
Date: Sat, 01 Oct 2022 03:34:53 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 20 Feb 2020 23:03:11 GMT
Vary: Accept-Encoding
Cache-Control: max-age=14400
CF-Cache-Status: HIT
Age: 2
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=zzO8HGEgNADFqXPZgkdBBwcx6mXHSFaXKbVFR5zLMmS1c9X3IEERRtd2AXovP6ijdWOLsF6bKdIAZ1Am0rTy2tftjZcTychy63CZ6yqRTyx2luKZTkP2LCZzsWqpgr375jOFD69uFg%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 753225259f4c0b02-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (358)
Size:   4000
Md5:    35a0c241e2561af2ab4cc0f600eae7a5
Sha1:   f3ffb0dfaa164b4be4b9b907e295acc7faa49786
Sha256: 1cf604d1a590dd08f2f4e314a64cc213e2f4a59154b9ab116c7dc5cf832158cc

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /en/UltraBranch/efs/servlet/efs/Scripts/jquery-1.10.2.js HTTP/1.1 
Host: cascadiasolutions.ca
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cascadiasolutions.ca/en/UltraBranch/efs/servlet/efs/security.php
Cookie: _gcl_au=1.1.1935912027.1664589769; _ga_R11FYFZ8HF=GS1.1.1664589769.1.1.1664590822.0.0.0; _ga=GA1.2.142168900.1664589769; agfs=b73e666a47b979ba3845bfeb53203040.38566340&1664590816&1664590816&direct&(none)&&&&&; _gid=GA1.2.476971742.1664589772; _uetsid=27d92850412d11edb53481455053d394; _uetvid=27d94390412d11ed88029d37c5c83abd

                                         
                                         104.21.69.154
HTTP/1.1 404 Not Found
Content-Type: text/html
                                        
Date: Sat, 01 Oct 2022 03:34:53 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 20 Feb 2020 23:03:11 GMT
Vary: Accept-Encoding
Cache-Control: max-age=14400
CF-Cache-Status: HIT
Age: 1
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=x5P90ODkKadDGxKmdRD28AmzwwczGsCyuCEMcmhriu%2BITUUt1baxwP0GIwB%2FkwNJ3jZCHhPGINi3isoqB%2FhoRWLDF%2Bt7cFcc75HYxsa63QqqhZNrtx9L5iwu8EYG%2F%2FROhGa6E9PV5g%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 75322525caa70b39-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (358)
Size:   4000
Md5:    35a0c241e2561af2ab4cc0f600eae7a5
Sha1:   f3ffb0dfaa164b4be4b9b907e295acc7faa49786
Sha256: 1cf604d1a590dd08f2f4e314a64cc213e2f4a59154b9ab116c7dc5cf832158cc

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "25F075EFFBD8ACDED8F38D69EA17F673DE3E197B635274D4C52411EF577FE8E7"
Last-Modified: Thu, 29 Sep 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4137
Expires: Sat, 01 Oct 2022 04:43:50 GMT
Date: Sat, 01 Oct 2022 03:34:53 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "25F075EFFBD8ACDED8F38D69EA17F673DE3E197B635274D4C52411EF577FE8E7"
Last-Modified: Thu, 29 Sep 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4137
Expires: Sat, 01 Oct 2022 04:43:50 GMT
Date: Sat, 01 Oct 2022 03:34:53 GMT
Connection: keep-alive

                                        
                                            GET /en/UltraBranch/efs/servlet/efs/App_Themes/DefaultTheme/ControlImages/close.png HTTP/1.1 
Host: cascadiasolutions.ca
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cascadiasolutions.ca/en/UltraBranch/efs/servlet/efs/security.php
Cookie: _gcl_au=1.1.1935912027.1664589769; _ga_R11FYFZ8HF=GS1.1.1664589769.1.1.1664590822.0.0.0; _ga=GA1.2.142168900.1664589769; agfs=b73e666a47b979ba3845bfeb53203040.38566340&1664590816&1664590816&direct&(none)&&&&&; _gid=GA1.2.476971742.1664589772; _uetsid=27d92850412d11edb53481455053d394; _uetvid=27d94390412d11ed88029d37c5c83abd

                                         
                                         104.21.69.154
HTTP/1.1 404 Not Found
Content-Type: text/html
                                        
Date: Sat, 01 Oct 2022 03:34:53 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 20 Feb 2020 23:03:11 GMT
Vary: Accept-Encoding
Cache-Control: max-age=14400
CF-Cache-Status: HIT
Age: 1
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=2YMpGuTfIJpKE0BGww%2BfjuEMHPGV7uXQEr6BMHjurK1IiktPndhQ8GUWXu3j6xNPTr%2BMUmc44D4wQoT8UCfFywBG%2B%2BYWiwjs5qQrNnKkbD48aaSJTkFSVPyA3pbvTLOVnwWeXNDL9w%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 75322525df5c0b02-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (358)
Size:   4000
Md5:    35a0c241e2561af2ab4cc0f600eae7a5
Sha1:   f3ffb0dfaa164b4be4b9b907e295acc7faa49786
Sha256: 1cf604d1a590dd08f2f4e314a64cc213e2f4a59154b9ab116c7dc5cf832158cc
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbbd9802c-4973-4976-984a-910496eaf957.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 5677
x-amzn-requestid: f37f77cd-dd19-4dec-809e-66a1fb604d88
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZASGLHDsIAMF1pw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632ffd5a-185f9b185ed35f7317b5c2d5;Sampled=0
x-amzn-remapped-date: Sun, 25 Sep 2022 07:03:54 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: iB6v8A5GEnhmZTth__pkgsa2TNPDzUOOAA-c7RcujjWmfnEUbnHaAw==
via: 1.1 9c60d6224ac0b44e908b5c9dcf70e9a4.cloudfront.net (CloudFront), 1.1 35575576af8067e30cfb17c6b9fde8e2.cloudfront.net (CloudFront), 1.1 google
date: Fri, 30 Sep 2022 22:25:07 GMT
age: 18586
etag: "556f1ccaf585d2c3100a3cc58f27d8c2fa6ca689"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   5677
Md5:    13768189ef98789892981b6a2d5947e4
Sha1:   556f1ccaf585d2c3100a3cc58f27d8c2fa6ca689
Sha256: 09ca5624173c589b5e5db05b48a8822ec257f08395cb18ed635a771edcfc8af3
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb3178d2f-9a52-4d0e-a26b-5a90ef8578f2.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 3430
x-amzn-requestid: 22a0e400-1567-4c9c-aca9-782f3f81a8ef
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZKLCrEn4IAMFZWw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6333f210-11fa888c78719c44160accf8;Sampled=0
x-amzn-remapped-date: Wed, 28 Sep 2022 07:04:49 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: k0M-mNnb-ymglXTepD_fMhh89biJV-Zo8nZUjyR94PRd7SnpdEMSfg==
via: 1.1 d1151317ba32afe0e6370fd69fed222e.cloudfront.net (CloudFront), 1.1 cd64decb1403270c914848213601a674.cloudfront.net (CloudFront), 1.1 google
date: Fri, 30 Sep 2022 22:47:12 GMT
age: 17261
etag: "42dd7ec0c606dbd3ccc0074f61d3b4b12f2e3c88"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   3430
Md5:    488ec5b4267ccb1cdc4e6e08556f7f3b
Sha1:   42dd7ec0c606dbd3ccc0074f61d3b4b12f2e3c88
Sha256: d9b05fe92962a58b9a8e8dbd4757969aa361be12018107ae649ffcdb8a0f8d84
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4016c3a3-ed7e-49cf-acd4-11c1b189820c.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 7059
x-amzn-requestid: e49c2591-9865-4492-9606-91a31b209b96
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZQxTuESAIAMF4rw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633695b1-74af94b622f421880fcf9938;Sampled=0
x-amzn-remapped-date: Fri, 30 Sep 2022 07:07:29 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: yQb5GSZT1NABosGTV3uz_K8wDyOy5ELejEIY2VzR3slfz_jFvTHICg==
via: 1.1 000f4a2f631bace380a0afa747a82482.cloudfront.net (CloudFront), 1.1 02d90bf99fd6253b329a53c82f19e224.cloudfront.net (CloudFront), 1.1 google
date: Fri, 30 Sep 2022 07:18:47 GMT
age: 72966
etag: "1e6d597d8bb40709da013b8438e2f4b0f9af2672"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   7059
Md5:    c5506beef1fefd03247b133abe705df0
Sha1:   1e6d597d8bb40709da013b8438e2f4b0f9af2672
Sha256: 11ca041965f95a6f83eff3cec5c7d070a3f6be6c9b3210abe7c94c9270c9dc1b
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2ae73d97-d8e4-4f93-bf30-c175fc72b008.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 10201
x-amzn-requestid: 62562627-78a8-4c17-bf6c-b2c986b9ee8f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZSxLCFH3IAMFoFQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63376246-69637d745165485171ca73b9;Sampled=0
x-amzn-remapped-date: Fri, 30 Sep 2022 21:40:22 GMT
x-amz-cf-pop: SEA73-P2, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: CueKD4mKZFXrPdwSOtYV3muaegRDOA632EztOt22qrk0Qd2yj1oPkg==
via: 1.1 6a63e853422f3197776fb098fab5a416.cloudfront.net (CloudFront), 1.1 ebe4011a81a36e2bf678f69ce1711330.cloudfront.net (CloudFront), 1.1 google
date: Fri, 30 Sep 2022 21:57:18 GMT
age: 20255
etag: "49798c4a15545a49f3870b2a16af78dbf8e168cc"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   10201
Md5:    4be456dbe857580c7b4c7fca3936e04e
Sha1:   49798c4a15545a49f3870b2a16af78dbf8e168cc
Sha256: 23e42987d5e9939424d5f4e4fe0c38faf20a221732097927dd4a656199d9d315
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F23b0da68-a440-4387-9d47-1617d8157f55.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 8324
x-amzn-requestid: af70bb88-e30c-49ab-b307-19ee8449d616
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZS2iEHsIoAMFjnA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63376ad9-732337760d4982a407053c1e;Sampled=0
x-amzn-remapped-date: Fri, 30 Sep 2022 22:16:57 GMT
x-amz-cf-pop: SEA73-P2, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: I1NrjG7oeZTY1y95-p8V3vVQ9W7k2flj9rni795fZ_Ei8qYv3BxLPA==
via: 1.1 ece5d4a731ece5ff46c564ab2b946ede.cloudfront.net (CloudFront), 1.1 b13f158bdf9805ca47e07c0c35870c12.cloudfront.net (CloudFront), 1.1 google
date: Fri, 30 Sep 2022 22:16:58 GMT
age: 19075
etag: "342e3be8998b548a7004c2a51c9910959b3747db"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   8324
Md5:    26b855e3a55a0cfd23896413332a5c05
Sha1:   342e3be8998b548a7004c2a51c9910959b3747db
Sha256: dfb620bbfa8adde25d578bc9baaa165324170b2f6bbcc2275f1a824267081ccb
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1d8201d9-93ae-492b-8ea9-d245fa2e4073.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 3640
x-amzn-requestid: b5f5c567-8aa9-414b-8310-cf3006711ee9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZJo1vFIwoAMF2mA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6333bb57-0f1cbcbb29287f5367a14b67;Sampled=0
x-amzn-remapped-date: Wed, 28 Sep 2022 03:11:19 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: HiU5q54X8yU3PXfTqYyCa9c3NbGAmjVLQRYn3P47trBJhtCP4juxRQ==
via: 1.1 d1151317ba32afe0e6370fd69fed222e.cloudfront.net (CloudFront), 1.1 6172bb1a5d00a3b06ae3700570ebe116.cloudfront.net (CloudFront), 1.1 google
date: Fri, 30 Sep 2022 11:34:12 GMT
age: 57641
etag: "303c6bb672425443a15bbe22394bd1149f887904"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   3640
Md5:    a9e7ba045a723120501994dea21709db
Sha1:   303c6bb672425443a15bbe22394bd1149f887904
Sha256: b1bea7212e55ec8eaf62434214a86fed7d6a990d105984d79a7fa0e793395d59
                                        
                                            GET /images/images.asp?ref=NCUA_2016_gray.png HTTP/1.1 
Host: www.alaskausa.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://cascadiasolutions.ca/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         107.162.171.161
HTTP/1.1 200 OK
Content-Type: image/x-png
                                        
Cache-Control: private
Expires: Sat, 01 Oct 2022 03:34:59 GMT
Content-Disposition: filename="ncua_2016_gray.png"
Set-Cookie: lst=1019634047; expires=Sat, 01-Oct-2022 03:49:58 GMT; domain=.alaskausa.org; path=/; secure ASPSESSIONIDQGRASQST=PLEMMDHDCJHBNONGNOALIJJO; secure; path=/; HttpOnly TS01682a2f=01069477c28c954229098ec9de570877a9f0a7b2b7629ade010e224d827b283d44531441ef0570ea7f8ea15ab1f46da7e1fb6b093c9483720968ae476f828db2b6212cb2e1; Path=/; Secure; HTTPOnly TS013395ac=01069477c2427589cbcc319693a70898d7c305bf08629ade010e224d827b283d44531441ef5173db7874d8cd0d5d84bf38a9d0541b15733786ce1e2e5190811c06b5768037; path=/; domain=.alaskausa.org; HTTPonly; Secure
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
X-Frame-Options: DENY
Date: Sat, 01 Oct 2022 03:34:59 GMT
Connection: close
Via: 1.1 dca1-bit16013
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  PNG image data, 146 x 65, 8-bit colormap, non-interlaced\012- data
Size:   4280
Md5:    38b7240d957be9f71b5271246fb01f67
Sha1:   9007e7baf8e357ac11c8541c871e48960c8d9f30
Sha256: d6641292ca4109173a6ca88b1353f0a6edeaad1c5f90e4c69c6999943109a878
                                        
                                            GET /agf.gif?t=pv&pv=%2Fen%2FUltraBranch%2Fefs%2Fservlet%2Fefs%2Fsecurity.php&tt=Security+Question&vt=returning&sc=direct&md=(none)&dp=24&sh=1024&sw=1280&bn=Firefox&bv=96&pn=Linux&pr=x86_64&bl=en-us&js=1.5&hn=cascadiasolutions.ca&vi=38566340&vs=385663401664595290&_=960654&v=040 HTTP/1.1 
Host: cascadiasolutions.ca
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cascadiasolutions.ca/en/UltraBranch/efs/servlet/efs/security.php
Cookie: _gcl_au=1.1.1935912027.1664589769; _ga_R11FYFZ8HF=GS1.1.1664589769.1.1.1664590822.0.0.0; _ga=GA1.2.142168900.1664589769; agfs=b73e666a47b979ba3845bfeb53203040.38566340&1664595290&1664595290&direct&(none)&&&&&; _gid=GA1.2.476971742.1664589772; _uetsid=27d92850412d11edb53481455053d394; _uetvid=27d94390412d11ed88029d37c5c83abd; agft=b73e666a47b979ba3845bfeb53203040.38566340

                                         
                                         104.21.69.154
HTTP/1.1 404 Not Found
Content-Type: text/html
                                        
Date: Sat, 01 Oct 2022 03:34:53 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 20 Feb 2020 23:03:11 GMT
Vary: Accept-Encoding
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=HG9xs4UuJ1La0IvWy8xcua8do%2FWLmIdkHM24a4JPOcVL3T3yuSNk2uAwll1o6Odsk%2BFd8Xgo7d8Y69LoCBDC66dMxiD4QNxN3TUdlV2suashPwzDxCk88SIcQIoAMVV7Ytg9vzUkXA%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 75322525eabb0b39-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (358)
Size:   4000
Md5:    35a0c241e2561af2ab4cc0f600eae7a5
Sha1:   f3ffb0dfaa164b4be4b9b907e295acc7faa49786
Sha256: 1cf604d1a590dd08f2f4e314a64cc213e2f4a59154b9ab116c7dc5cf832158cc
                                        
                                            GET /css/nav/header_bg.png HTTP/1.1 
Host: www.alaskausa.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.alaskausa.org/css/akusa-express.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         107.162.171.161
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Last-Modified: Wed, 28 Sep 2022 02:43:46 GMT
Accept-Ranges: bytes
ETag: "1bd48021e4d2d81:0"
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
X-Frame-Options: DENY
Date: Sat, 01 Oct 2022 03:34:54 GMT
Content-Length: 8058
Via: 1.1 dca1-bit16013


--- Additional Info ---
Magic:  PNG image data, 156 x 165, 8-bit/color RGB, non-interlaced\012- data
Size:   8058
Md5:    f420d4563192f414fabc27808342a8b2
Sha1:   80d69a4a339f6ddfe991d41d798d9a58fa0a21ea
Sha256: 5cd6b433131a0f7972117a1de73410cd07059f385b4dceb1e99b1c9dd6351fb6
                                        
                                            GET /css/nav/pgMainEdge.png HTTP/1.1 
Host: www.alaskausa.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://cascadiasolutions.ca/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         107.162.171.161
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Last-Modified: Wed, 28 Sep 2022 02:43:53 GMT
Accept-Ranges: bytes
ETag: "34a4c825e4d2d81:0"
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
X-Frame-Options: DENY
Date: Sat, 01 Oct 2022 03:34:58 GMT
Content-Length: 960
Via: 1.1 dca1-bit16013
Vary: Accept-Encoding


--- Additional Info ---
Magic:  PNG image data, 1 x 3, 8-bit colormap, non-interlaced\012- data
Size:   960
Md5:    a5ea8f10a3e08ef3bc3acbe1add70acd
Sha1:   3da6cb1b65f0e536b05bb368c1358be49a445341
Sha256: 1fb28d9c14ec42912599df0f34b14c6e6f996084ca13e06bb11dcb4c9459ed34
                                        
                                            GET /images/icon-76@2x.png HTTP/1.1 
Host: www.alaskausa.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://cascadiasolutions.ca/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         107.162.171.161
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Last-Modified: Wed, 28 Sep 2022 02:44:35 GMT
Accept-Ranges: bytes
ETag: "cf1413fe4d2d81:0"
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
X-Frame-Options: DENY
Date: Sat, 01 Oct 2022 03:34:54 GMT
Content-Length: 21833
Via: 1.1 dca1-bit16013


--- Additional Info ---
Magic:  PNG image data, 152 x 152, 8-bit/color RGB, non-interlaced\012- data
Size:   21833
Md5:    aa361a75d2fd36154747173a3a6cd422
Sha1:   8c14f2c0a0f3b2e1a265313239d6b9f7383808f9
Sha256: 31079b4bcec10fbd6e7530a766c97d05b5bc5e143af55a7599633fe3fd1c955e
                                        
                                            GET /favicon.ico HTTP/1.1 
Host: www.alaskausa.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://cascadiasolutions.ca/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         107.162.171.161
HTTP/1.1 200 OK
Content-Type: image/x-icon
                                        
Last-Modified: Wed, 28 Sep 2022 02:44:47 GMT
Accept-Ranges: bytes
ETag: "91f7db45e4d2d81:0"
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
X-Frame-Options: DENY
Date: Sat, 01 Oct 2022 03:34:59 GMT
Content-Length: 1150
Via: 1.1 dca1-bit16013


--- Additional Info ---
Magic:  MS Windows icon resource - 1 icon, 16x16, 32 bits/pixel\012- data
Size:   1150
Md5:    a640140069c78a92f718c9fb63614d72
Sha1:   1418d5de4993b63c2b11a64df62a03ae8ebb8f95
Sha256: 5b8545b9cf60e23bd9c7eacef43e9b85e2843b1d90328b5b6fca9ef851347808
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc003298b-5703-480c-8a4c-fffa9abe5028.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 8091
x-amzn-requestid: 78ccaa77-230e-4aa1-a409-7b2a444df9ea
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZSxLDF_OIAMFpdg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63376246-0384396f2ed848bc1c17e1b7;Sampled=0
x-amzn-remapped-date: Fri, 30 Sep 2022 21:40:22 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: G75a-PITD4Wmlxxk_rrpRWNytSGNZlrL_JeoR4A_w6vshDkmRlouPw==
via: 1.1 000f4a2f631bace380a0afa747a82482.cloudfront.net (CloudFront), 1.1 d6b180eb367f7de26d67a9f3901b96a6.cloudfront.net (CloudFront), 1.1 google
date: Fri, 30 Sep 2022 22:16:05 GMT
age: 19134
etag: "0cd9a66508c343b43b095ac7f550919ec35097d3"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   8091
Md5:    9466667cfaaedbb374259e8fb8dd63e3
Sha1:   0cd9a66508c343b43b095ac7f550919ec35097d3
Sha256: bb70996bea518ba4ddc2c269e9a7c9bea3a9c91fed124a29570828b89250764c