Overview

URL ssk-agency.com/UltraBranch/login.php?cmd=login_submit&id=76977d3237e1ddd040686383428937dd76977d3237e1ddd040686383428937dd&session=76977d3237e1ddd040686383428937dd76977d3237e1ddd040686383428937dd
IP66.235.200.147
ASNCLOUDFLARENET
Location United States
Report completed2022-09-23 23:36:29 UTC
StatusLoading report..
urlquery Alerts No alerts detected


Settings

UserAgentMozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Referer


Intrusion Detection Systems

Suricata /w Emerging Threats Pro  No alerts detected


Blocklists

OpenPhish  No alerts detected
PhishTank  No alerts detected
Fortinet's Web Filter  No alerts detected
mnemonic secure dns  No alerts detected
Quad9 DNS
Scan Date Severity Indicator Comment
2022-09-23 2 ssk-agency.com Sinkholed
2022-09-23 2 ssk-agency.com Sinkholed
2022-09-23 2 ssk-agency.com Sinkholed
2022-09-23 2 ssk-agency.com Sinkholed
2022-09-23 2 ssk-agency.com Sinkholed
2022-09-23 2 ssk-agency.com Sinkholed
2022-09-23 2 ssk-agency.com Sinkholed
2022-09-23 2 ssk-agency.com Sinkholed
2022-09-23 2 ssk-agency.com Sinkholed
2022-09-23 2 ssk-agency.com Sinkholed
2022-09-23 2 ssk-agency.com Sinkholed
2022-09-23 2 ssk-agency.com Sinkholed
2022-09-23 2 ssk-agency.com Sinkholed
2022-09-23 2 ssk-agency.com Sinkholed
2022-09-23 2 ssk-agency.com Sinkholed
2022-09-23 2 ssk-agency.com Sinkholed


Files

No files detected



Passive DNS (22)

Passive DNS Source Fully Qualifying Domain Name Rank First Seen Last Seen IP Comment
mnemonic passive DNS googleads.g.doubleclick.net (1) 42 2021-02-20 15:43:32 UTC 2022-09-23 20:13:29 UTC 142.250.74.130
mnemonic passive DNS www.google.no (2) 25607 2016-04-05 19:50:59 UTC 2022-09-23 05:06:18 UTC 142.250.74.3
mnemonic passive DNS ocsp.digicert.com (7) 86 2012-05-21 07:02:23 UTC 2022-09-23 22:01:35 UTC 93.184.220.29
mnemonic passive DNS www.googletagmanager.com (1) 75 2012-12-25 14:52:06 UTC 2022-09-23 04:33:31 UTC 142.250.74.72
mnemonic passive DNS region1.google-analytics.com (1) 0 2022-03-17 11:26:33 UTC 2022-09-23 06:11:58 UTC 216.239.34.36 Domain (google-analytics.com) ranked at: 8401
mnemonic passive DNS bat.bing.com (3) 387 2014-04-08 09:23:16 UTC 2022-09-23 04:37:00 UTC 13.107.21.200
mnemonic passive DNS www.google.com (1) 7 2016-08-04 12:36:31 UTC 2022-09-23 18:32:47 UTC 142.250.74.164
mnemonic passive DNS insight.adsrvr.org (1) 631 2014-07-14 16:03:10 UTC 2022-09-23 05:35:37 UTC 35.71.131.137
mnemonic passive DNS r3.o.lencr.org (5) 344 2020-12-02 08:52:13 UTC 2022-09-23 04:34:39 UTC 23.36.77.32
mnemonic passive DNS firefox.settings.services.mozilla.com (2) 867 2020-06-04 20:08:41 UTC 2022-09-23 16:32:04 UTC 18.165.201.83
mnemonic passive DNS push.services.mozilla.com (1) 2140 2015-09-03 10:29:36 UTC 2022-09-23 05:02:25 UTC 54.148.17.90
mnemonic passive DNS ocsp.pki.goog (8) 175 2017-06-14 07:23:31 UTC 2022-09-23 04:33:33 UTC 142.250.74.3
mnemonic passive DNS js.adsrvr.org (1) 1664 2014-10-28 22:25:15 UTC 2022-09-23 05:45:04 UTC 18.164.70.179
mnemonic passive DNS prism.app-us1.com (1) 8479 2019-01-09 06:40:26 UTC 2022-09-23 11:20:54 UTC 104.17.146.91
mnemonic passive DNS stats.g.doubleclick.net (1) 96 2013-06-02 22:47:44 UTC 2022-09-23 04:33:56 UTC 142.251.1.155
mnemonic passive DNS content-signature-2.cdn.mozilla.net (1) 1152 2020-11-03 12:26:46 UTC 2022-09-23 04:49:01 UTC 34.160.144.191
mnemonic passive DNS contile.services.mozilla.com (1) 1114 2021-05-27 18:32:35 UTC 2022-09-23 04:33:41 UTC 34.117.237.239
mnemonic passive DNS ssk-agency.com (16) 0 2021-12-06 19:03:27 UTC 2022-09-23 22:36:08 UTC 66.235.200.147 Unknown ranking
mnemonic passive DNS img-getpocket.cdn.mozilla.net (6) 1631 2017-09-01 03:40:57 UTC 2022-09-23 12:37:00 UTC 34.120.237.76
mnemonic passive DNS www.alaskausa.org (20) 258465 2014-07-12 19:45:14 UTC 2022-09-23 16:44:12 UTC 107.162.171.161
mnemonic passive DNS www.google-analytics.com (2) 40 2012-10-03 01:04:21 UTC 2022-09-23 17:45:15 UTC 142.250.74.174
mnemonic passive DNS diffuser-cdn.app-us1.com (1) 8451 2019-06-13 03:58:17 UTC 2022-09-23 11:20:53 UTC 104.17.146.91


Recent reports on same IP/ASN/Domain/Screenshot

Last 5 reports on IP: 66.235.200.147

Date UQ / IDS / BL URL IP
2022-12-03 01:42:04 +0000
0 - 0 - 2 matchselection.com/spacepdf.com/3cxcommunications/ 66.235.200.147
2022-12-02 02:35:25 +0000
0 - 0 - 1 matchselection.com/spacepdf.com/3cxcommunications 66.235.200.147
2022-11-30 12:37:23 +0000
0 - 0 - 2 khadmat-online.com/ 66.235.200.147
2022-11-28 18:46:22 +0000
0 - 0 - 4 lookinqatar.com/ 66.235.200.147
2022-11-18 06:49:28 +0000
0 - 0 - 12 www.grasslifebeauty.com/cwum/?Yzrt=v+d9egTWu1 (...) 66.235.200.147

Last 5 reports on ASN: CLOUDFLARENET

Date UQ / IDS / BL URL IP
2022-12-09 23:25:25 +0000
0 - 0 - 2 gunungjati.id/Keybank-Help/c27bd9ed5888a7e330 (...) 188.114.97.1
2022-12-09 23:25:22 +0000
0 - 0 - 2 gunungjati.id/Keybank-Help/c27bd9ed5888a7e330 (...) 188.114.97.1
2022-12-09 23:25:21 +0000
0 - 0 - 1 gunungjati.id/Keybank-Help/c27bd9ed5888a7e330 (...) 188.114.97.1
2022-12-09 23:25:20 +0000
0 - 0 - 2 gunungjati.id/Keybank-Help/c27bd9ed5888a7e330 (...) 188.114.97.1
2022-12-09 23:25:20 +0000
0 - 0 - 2 gunungjati.id/Keybank-Help/c27bd9ed5888a7e330 (...) 188.114.97.1

Last 5 reports on domain: ssk-agency.com

Date UQ / IDS / BL URL IP
2022-09-26 17:17:50 +0000
0 - 0 - 1 ssk-agency.com/UltraBranch/login.php?cmd=logi (...) 66.235.200.147
2022-09-26 01:46:37 +0000
0 - 0 - 3 ssk-agency.com/UltraBranch/efs/servlet/efs/lo (...) 66.235.200.147
2022-09-26 01:46:26 +0000
0 - 0 - 3 ssk-agency.com/UltraBranch/efs/servlet/efs/se (...) 66.235.200.147
2022-09-25 00:24:47 +0000
0 - 0 - 3 ssk-agency.com/UltraBranch/efs/servlet/efs/lo (...) 66.235.200.147
2022-09-25 00:24:45 +0000
0 - 0 - 3 ssk-agency.com/UltraBranch/efs/servlet/efs/se (...) 66.235.200.147

Last 5 reports with similar screenshot

Date UQ / IDS / BL URL IP
2022-10-01 03:34:46 +0000
0 - 0 - 4 cascadiasolutions.ca/en/UltraBranch/login.php (...) 104.21.69.154
2022-09-23 22:36:25 +0000
0 - 0 - 16 ssk-agency.com/UltraBranch/login.php?cmd=logi (...) 66.235.200.147
2022-09-08 07:45:27 +0000
0 - 0 - 3 www.uniqueproductshop.superglobalmall.com/Ult (...) 162.0.239.174
2022-09-07 22:13:59 +0000
0 - 0 - 2 uniqueproductshop.com/UltraBranch/login.php?c (...) 162.0.239.174
2022-09-07 21:37:20 +0000
0 - 0 - 5 uniqueproductshop.com/UltraBranch 162.0.239.174


JavaScript

Executed Scripts (31)


Executed Evals (0)


Executed Writes (0)



HTTP Transactions (83)


Request Response
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "E82CA5F310E37267FBF792427747E65C2BB35E684D3F629C0AA302F688BC4F80"
Last-Modified: Fri, 23 Sep 2022 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2731
Expires: Sat, 24 Sep 2022 00:21:49 GMT
Date: Fri, 23 Sep 2022 23:36:18 GMT
Connection: keep-alive

                                        
                                            GET /v1/ HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         18.165.201.83
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Type, Alert, Backoff, Retry-After, Content-Length
Cache-Control: max-age=3600
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Fri, 23 Sep 2022 23:05:16 GMT
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 02dcbe051a75d060274d188948821dcc.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: LHR50-P3
X-Amz-Cf-Id: 6-U4cK7NKRElrlW50UzKx2cvMxwYiAO4_eZdbRZAoPIkW0PWscAsgA==
Age: 1862


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size:   939
Md5:    2d12f67fe57a87e7366b662d153a5582
Sha1:   d7b02d81cc74f24a251d9363e0f4b0a149264ec1
Sha256: 73c273c0b5a2de3cb970b8e8c187999d3b55e760dc7766dab4bb76428d19b551
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "4721814DA286852318F7EBF9857BD4BF01F0BEEA2C9EB7DDB9F290E3FA472232"
Last-Modified: Fri, 23 Sep 2022 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9789
Expires: Sat, 24 Sep 2022 02:19:27 GMT
Date: Fri, 23 Sep 2022 23:36:18 GMT
Connection: keep-alive

                                        
                                            GET /chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain HTTP/1.1 
Host: content-signature-2.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         34.160.144.191
HTTP/2 200 OK
content-type: binary/octet-stream
                                        
x-amz-id-2: yM5CdbcF6pzmfqIMYIxwC3OjjY2lRgNLf+cyROh35TMnvejFjg2RptZC5m3eotp7XHutuNT/wdM=
x-amz-request-id: 5QG1KXZDAZT23NWH
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Fri, 23 Sep 2022 22:44:41 GMT
age: 3097
last-modified: Sat, 10 Sep 2022 18:47:45 GMT
etag: "6113f8408c59aebe188d6af273b90743"
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PEM certificate\012- , ASCII text
Size:   5348
Md5:    6113f8408c59aebe188d6af273b90743
Sha1:   7398873bf00f99944eaa77ad3ebc0d43c23dba6b
Sha256: b6e0cc9ad68306208a160f3835fb8da76acc5a82d8fde1da5a98e1de1c11a770
                                        
                                            GET /v1/tiles HTTP/1.1 
Host: contile.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.117.237.239
HTTP/2 200 OK
content-type: application/json
                                        
server: nginx
date: Fri, 23 Sep 2022 23:36:18 GMT
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   12
Md5:    23e88fb7b99543fb33315b29b1fad9d6
Sha1:   a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
Sha256: 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
                                        
                                            GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         18.165.201.83
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Retry-After, Expires, Alert, Content-Length, ETag, Cache-Control, Content-Type, Backoff, Pragma, Last-Modified
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Cache-Control: max-age=3600, max-age=3600
Date: Fri, 23 Sep 2022 23:16:13 GMT
Expires: Fri, 23 Sep 2022 23:37:25 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 4ae6e5888b43b4133973ba1aadad8194.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: LHR50-P3
X-Amz-Cf-Id: N9erG3MwjYkOSZ0tH9u8DFkwXLDB_jLPgAbQfehVuRauJqUkMwkuXA==
Age: 1205


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size:   329
Md5:    0333b0655111aa68de771adfcc4db243
Sha1:   63f295a144ac87a7c8e23417626724eeca68a7eb
Sha256: 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 5245
Cache-Control: 'max-age=158059'
Date: Fri, 23 Sep 2022 23:36:18 GMT
Last-Modified: Fri, 23 Sep 2022 22:08:53 GMT
Server: ECS (ska/F71D)
X-Cache: HIT
Content-Length: 471

                                        
                                            GET /UltraBranch/login.php?cmd=login_submit&id=76977d3237e1ddd040686383428937dd76977d3237e1ddd040686383428937dd&session=76977d3237e1ddd040686383428937dd76977d3237e1ddd040686383428937dd HTTP/1.1 
Host: ssk-agency.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Cookie: _gcl_au=1.1.2000654304.1663972575; _ga_R11FYFZ8HF=GS1.1.1663972574.1.0.1663972582.0.0.0; _ga=GA1.2.1075324897.1663972575; agfs=d14a40fee88eaf5c557fc9c7a9a9fe26.42197858&1663972576&1663972576&direct&(none)&&&&&; _gid=GA1.2.513367302.1663972576; _uetsid=22e07fd03b9011ed9b0ef912674a88dd; _uetvid=22e0a8203b9011ed8373b748dd7fe02c
Upgrade-Insecure-Requests: 1

                                         
                                         66.235.200.147
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
                                        
Date: Fri, 23 Sep 2022 23:36:18 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
Last-Modified: Fri, 23 Sep 2022 23:36:18 GMT
CF-Cache-Status: MISS
Server: cloudflare
CF-RAY: 74f71a0768d00b31-OSL
Content-Encoding: gzip


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (619), with CRLF line terminators
Size:   13310
Md5:    98b164889eb3a3b8778b340d98bef21a
Sha1:   51a65e6b98ebc6e46650012b01c7d1063b883918
Sha256: ef0dad20677442b2bb0e235c15f575f4322869027243ec2be89d30731479eb89

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET / HTTP/1.1 
Host: push.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: iYbH8r/e8xtZK4X4VLJF+w==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

                                         
                                         54.148.17.90
HTTP/1.1 101 Switching Protocols
                                        
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: 2T9mJhn0bVlS/b2NyMOykPBEWf4=

                                        
                                            GET /UltraBranch/efs/servlet/efs/css/akusafonts.css?20181128 HTTP/1.1 
Host: ssk-agency.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ssk-agency.com/UltraBranch/login.php?cmd=login_submit&id=76977d3237e1ddd040686383428937dd76977d3237e1ddd040686383428937dd&session=76977d3237e1ddd040686383428937dd76977d3237e1ddd040686383428937dd
Cookie: _gcl_au=1.1.2000654304.1663972575; _ga_R11FYFZ8HF=GS1.1.1663972574.1.0.1663972582.0.0.0; _ga=GA1.2.1075324897.1663972575; agfs=d14a40fee88eaf5c557fc9c7a9a9fe26.42197858&1663972576&1663972576&direct&(none)&&&&&; _gid=GA1.2.513367302.1663972576; _uetsid=22e07fd03b9011ed9b0ef912674a88dd; _uetvid=22e0a8203b9011ed8373b748dd7fe02c

                                         
                                         66.235.200.147
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Fri, 23 Sep 2022 23:36:19 GMT
Content-Length: 985
Connection: keep-alive
Last-Modified: Tue, 20 Aug 2019 04:03:44 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
CF-Cache-Status: HIT
Age: 3604
Accept-Ranges: bytes
Server: cloudflare
CF-RAY: 74f71a0f5cd90b31-OSL


--- Additional Info ---
Magic:  ASCII text
Size:   985
Md5:    2832fd8c6093a6482abd5d03dba4b181
Sha1:   78de3c2fa52aa5739e39deb08df1c101b9cd02e5
Sha256: b95a2d58f8845fcb3dd2d0b8ee143dccda6a657aa595743cc31938a6fb8e8560

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /UltraBranch/efs/servlet/efs/css/akusa-home.css HTTP/1.1 
Host: ssk-agency.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ssk-agency.com/UltraBranch/login.php?cmd=login_submit&id=76977d3237e1ddd040686383428937dd76977d3237e1ddd040686383428937dd&session=76977d3237e1ddd040686383428937dd76977d3237e1ddd040686383428937dd
Cookie: _gcl_au=1.1.2000654304.1663972575; _ga_R11FYFZ8HF=GS1.1.1663972574.1.0.1663972582.0.0.0; _ga=GA1.2.1075324897.1663972575; agfs=d14a40fee88eaf5c557fc9c7a9a9fe26.42197858&1663972576&1663972576&direct&(none)&&&&&; _gid=GA1.2.513367302.1663972576; _uetsid=22e07fd03b9011ed9b0ef912674a88dd; _uetvid=22e0a8203b9011ed8373b748dd7fe02c

                                         
                                         66.235.200.147
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Fri, 23 Sep 2022 23:36:19 GMT
Content-Length: 2482
Connection: keep-alive
Last-Modified: Tue, 20 Aug 2019 04:23:58 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
CF-Cache-Status: HIT
Age: 3604
Accept-Ranges: bytes
Server: cloudflare
CF-RAY: 74f71a0f5b391c06-OSL


--- Additional Info ---
Magic:  ASCII text
Size:   2482
Md5:    a936fd01faf11623fafca380b0544fb4
Sha1:   30a6ae8d9328e3552314d6d808a9f5477502860a
Sha256: 075a2848420902f8ebd3cc514df26cb5a141b9050e600a1ee6e767b4f20feeb9

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /UltraBranch/efs/servlet/efs/css/akusa-base.css HTTP/1.1 
Host: ssk-agency.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ssk-agency.com/UltraBranch/login.php?cmd=login_submit&id=76977d3237e1ddd040686383428937dd76977d3237e1ddd040686383428937dd&session=76977d3237e1ddd040686383428937dd76977d3237e1ddd040686383428937dd
Cookie: _gcl_au=1.1.2000654304.1663972575; _ga_R11FYFZ8HF=GS1.1.1663972574.1.0.1663972582.0.0.0; _ga=GA1.2.1075324897.1663972575; agfs=d14a40fee88eaf5c557fc9c7a9a9fe26.42197858&1663972576&1663972576&direct&(none)&&&&&; _gid=GA1.2.513367302.1663972576; _uetsid=22e07fd03b9011ed9b0ef912674a88dd; _uetvid=22e0a8203b9011ed8373b748dd7fe02c

                                         
                                         66.235.200.147
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Fri, 23 Sep 2022 23:36:19 GMT
Content-Length: 11412
Connection: keep-alive
Last-Modified: Tue, 20 Aug 2019 04:18:48 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
CF-Cache-Status: HIT
Age: 3604
Accept-Ranges: bytes
Server: cloudflare
CF-RAY: 74f71a0f5d40b509-OSL


--- Additional Info ---
Magic:  ASCII text
Size:   11412
Md5:    80a9abd6868890f89f1d64cc33e0625d
Sha1:   d267a76a9147c8f07d8525413430db60064194c8
Sha256: 871c2c02c19d392816f126fbb02429d20336252ba8c4326e7620789a584d4c20

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /UltraBranch/efs/servlet/efs/css/akusa-desktop.css HTTP/1.1 
Host: ssk-agency.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ssk-agency.com/UltraBranch/login.php?cmd=login_submit&id=76977d3237e1ddd040686383428937dd76977d3237e1ddd040686383428937dd&session=76977d3237e1ddd040686383428937dd76977d3237e1ddd040686383428937dd
Cookie: _gcl_au=1.1.2000654304.1663972575; _ga_R11FYFZ8HF=GS1.1.1663972574.1.0.1663972582.0.0.0; _ga=GA1.2.1075324897.1663972575; agfs=d14a40fee88eaf5c557fc9c7a9a9fe26.42197858&1663972576&1663972576&direct&(none)&&&&&; _gid=GA1.2.513367302.1663972576; _uetsid=22e07fd03b9011ed9b0ef912674a88dd; _uetvid=22e0a8203b9011ed8373b748dd7fe02c

                                         
                                         66.235.200.147
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Fri, 23 Sep 2022 23:36:19 GMT
Content-Length: 8059
Connection: keep-alive
Last-Modified: Tue, 20 Aug 2019 04:19:48 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
CF-Cache-Status: HIT
Age: 3604
Accept-Ranges: bytes
Server: cloudflare
CF-RAY: 74f71a0f5d95b4f3-OSL


--- Additional Info ---
Magic:  ASCII text, with very long lines (844)
Size:   8059
Md5:    b8571d507427020217147bdc30da2a2d
Sha1:   acd7df2d1292a7d28f8150b327622f1e7e617f36
Sha256: 90f6bca86ac0fe663729d5709780e90efcf84cf66f9fc6009b0b9f7e1cb2672d

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /UltraBranch/efs/servlet/efs/css/slick.css HTTP/1.1 
Host: ssk-agency.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ssk-agency.com/UltraBranch/login.php?cmd=login_submit&id=76977d3237e1ddd040686383428937dd76977d3237e1ddd040686383428937dd&session=76977d3237e1ddd040686383428937dd76977d3237e1ddd040686383428937dd
Cookie: _gcl_au=1.1.2000654304.1663972575; _ga_R11FYFZ8HF=GS1.1.1663972574.1.0.1663972582.0.0.0; _ga=GA1.2.1075324897.1663972575; agfs=d14a40fee88eaf5c557fc9c7a9a9fe26.42197858&1663972576&1663972576&direct&(none)&&&&&; _gid=GA1.2.513367302.1663972576; _uetsid=22e07fd03b9011ed9b0ef912674a88dd; _uetvid=22e0a8203b9011ed8373b748dd7fe02c

                                         
                                         66.235.200.147
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Fri, 23 Sep 2022 23:36:19 GMT
Content-Length: 1172
Connection: keep-alive
Last-Modified: Tue, 20 Aug 2019 04:22:40 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
CF-Cache-Status: HIT
Age: 3604
Accept-Ranges: bytes
Server: cloudflare
CF-RAY: 74f71a0f58fab4fd-OSL


--- Additional Info ---
Magic:  ASCII text
Size:   1172
Md5:    edd4f206bae3305768fe1ac66326c628
Sha1:   1c6b6757720e1be115f3b3daa928788f7caf321e
Sha256: 0350d03e29134f29d2dc6cb31008a694df413e5d9f0cf878661163077df283ec

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /UltraBranch/efs/servlet/efs/images/header_bg.png HTTP/1.1 
Host: ssk-agency.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ssk-agency.com/UltraBranch/efs/servlet/efs/css/akusa-desktop.css
Cookie: _gcl_au=1.1.2000654304.1663972575; _ga_R11FYFZ8HF=GS1.1.1663972574.1.0.1663972582.0.0.0; _ga=GA1.2.1075324897.1663972575; agfs=d14a40fee88eaf5c557fc9c7a9a9fe26.42197858&1663972576&1663972576&direct&(none)&&&&&; _gid=GA1.2.513367302.1663972576; _uetsid=22e07fd03b9011ed9b0ef912674a88dd; _uetvid=22e0a8203b9011ed8373b748dd7fe02c

                                         
                                         66.235.200.147
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Fri, 23 Sep 2022 23:36:19 GMT
Content-Length: 8058
Connection: keep-alive
Last-Modified: Tue, 20 Aug 2019 04:50:32 GMT
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
CF-Cache-Status: HIT
Age: 3604
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74f71a0f9d71b509-OSL


--- Additional Info ---
Magic:  PNG image data, 156 x 165, 8-bit/color RGB, non-interlaced\012- data
Size:   8058
Md5:    f420d4563192f414fabc27808342a8b2
Sha1:   80d69a4a339f6ddfe991d41d798d9a58fa0a21ea
Sha256: 5cd6b433131a0f7972117a1de73410cd07059f385b4dceb1e99b1c9dd6351fb6

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /UltraBranch/efs/servlet/efs/images/navSprites.png HTTP/1.1 
Host: ssk-agency.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ssk-agency.com/UltraBranch/efs/servlet/efs/css/akusa-desktop.css
Cookie: _gcl_au=1.1.2000654304.1663972575; _ga_R11FYFZ8HF=GS1.1.1663972574.1.0.1663972582.0.0.0; _ga=GA1.2.1075324897.1663972575; agfs=d14a40fee88eaf5c557fc9c7a9a9fe26.42197858&1663972576&1663972576&direct&(none)&&&&&; _gid=GA1.2.513367302.1663972576; _uetsid=22e07fd03b9011ed9b0ef912674a88dd; _uetvid=22e0a8203b9011ed8373b748dd7fe02c

                                         
                                         66.235.200.147
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Fri, 23 Sep 2022 23:36:19 GMT
Content-Length: 14383
Connection: keep-alive
Last-Modified: Tue, 20 Aug 2019 04:42:50 GMT
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
CF-Cache-Status: HIT
Age: 3603
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74f71a0f9dc9b4f3-OSL


--- Additional Info ---
Magic:  PNG image data, 240 x 320, 8-bit/color RGBA, non-interlaced\012- data
Size:   14383
Md5:    2c34097881e44683ea2c683b9c4c6fba
Sha1:   c3053cdec4d858a66cdaeb71e6612115508513a8
Sha256: dab4dd2fc46c7aa07526cacce2b4111e56d2c57443449519b04af9dec4cfe019

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /UltraBranch/efs/servlet/efs/images/homeSprites.png HTTP/1.1 
Host: ssk-agency.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ssk-agency.com/UltraBranch/efs/servlet/efs/css/akusa-desktop.css
Cookie: _gcl_au=1.1.2000654304.1663972575; _ga_R11FYFZ8HF=GS1.1.1663972574.1.0.1663972582.0.0.0; _ga=GA1.2.1075324897.1663972575; agfs=d14a40fee88eaf5c557fc9c7a9a9fe26.42197858&1663972576&1663972576&direct&(none)&&&&&; _gid=GA1.2.513367302.1663972576; _uetsid=22e07fd03b9011ed9b0ef912674a88dd; _uetvid=22e0a8203b9011ed8373b748dd7fe02c

                                         
                                         66.235.200.147
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Fri, 23 Sep 2022 23:36:19 GMT
Content-Length: 190407
Connection: keep-alive
Last-Modified: Tue, 20 Aug 2019 04:53:52 GMT
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
CF-Cache-Status: HIT
Age: 3603
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74f71a0fab551c06-OSL


--- Additional Info ---
Magic:  PNG image data, 272 x 550, 8-bit/color RGBA, non-interlaced\012- data
Size:   190407
Md5:    c6dfc43f4439d97b3796d7141fefd850
Sha1:   d86a787e16816d02f05b18210bf5649ed403f10d
Sha256: beb161501df73ad297e1a7679cc63010d22d479ea146e56ef2b3f7a7e9b06c9c

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /UltraBranch/efs/servlet/efs/css/akusa-print.css HTTP/1.1 
Host: ssk-agency.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ssk-agency.com/UltraBranch/login.php?cmd=login_submit&id=76977d3237e1ddd040686383428937dd76977d3237e1ddd040686383428937dd&session=76977d3237e1ddd040686383428937dd76977d3237e1ddd040686383428937dd
Cookie: _gcl_au=1.1.2000654304.1663972575; _ga_R11FYFZ8HF=GS1.1.1663972574.1.0.1663972582.0.0.0; _ga=GA1.2.1075324897.1663972575; agfs=d14a40fee88eaf5c557fc9c7a9a9fe26.42197858&1663972576&1663972576&direct&(none)&&&&&; _gid=GA1.2.513367302.1663972576; _uetsid=22e07fd03b9011ed9b0ef912674a88dd; _uetvid=22e0a8203b9011ed8373b748dd7fe02c

                                         
                                         66.235.200.147
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Fri, 23 Sep 2022 23:36:19 GMT
Content-Length: 278
Connection: keep-alive
Last-Modified: Tue, 20 Aug 2019 04:20:04 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
CF-Cache-Status: HIT
Age: 3604
Accept-Ranges: bytes
Server: cloudflare
CF-RAY: 74f71a0fad0a0b31-OSL


--- Additional Info ---
Magic:  ASCII text
Size:   278
Md5:    524da06f25fdf0fe13f8fba3e34233f9
Sha1:   edd9cb40225a022dd8ce2a04e7df4d34779356ed
Sha256: cbef40f0c70c41f0686686ef4ad4ab5984cd2837378027745cadaa27f1ed0b66

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /UltraBranch/efs/servlet/efs/css/akusa-phone.css HTTP/1.1 
Host: ssk-agency.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ssk-agency.com/UltraBranch/login.php?cmd=login_submit&id=76977d3237e1ddd040686383428937dd76977d3237e1ddd040686383428937dd&session=76977d3237e1ddd040686383428937dd76977d3237e1ddd040686383428937dd
Cookie: _gcl_au=1.1.2000654304.1663972575; _ga_R11FYFZ8HF=GS1.1.1663972574.1.0.1663972582.0.0.0; _ga=GA1.2.1075324897.1663972575; agfs=d14a40fee88eaf5c557fc9c7a9a9fe26.42197858&1663972576&1663972576&direct&(none)&&&&&; _gid=GA1.2.513367302.1663972576; _uetsid=22e07fd03b9011ed9b0ef912674a88dd; _uetvid=22e0a8203b9011ed8373b748dd7fe02c

                                         
                                         66.235.200.147
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Fri, 23 Sep 2022 23:36:19 GMT
Content-Length: 6812
Connection: keep-alive
Last-Modified: Tue, 20 Aug 2019 04:19:32 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
CF-Cache-Status: HIT
Age: 3604
Accept-Ranges: bytes
Server: cloudflare
CF-RAY: 74f71a0fad7eb509-OSL


--- Additional Info ---
Magic:  ASCII text, with very long lines (676)
Size:   6812
Md5:    b6210515247573d638fa1a2adc1e3870
Sha1:   78ec7d9617046883a7bacbbe9f0375af340e1070
Sha256: 4631b56d6792e7a2d8b7bf6ae34186bda83355f3efedd9c935079777002ffe43

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /UltraBranch/efs/servlet/efs/fonts/AkusaIcon.woff?j5gpp4 HTTP/1.1 
Host: ssk-agency.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://ssk-agency.com/UltraBranch/efs/servlet/efs/css/akusafonts.css?20181128
Cookie: _gcl_au=1.1.2000654304.1663972575; _ga_R11FYFZ8HF=GS1.1.1663972574.1.0.1663972582.0.0.0; _ga=GA1.2.1075324897.1663972575; agfs=d14a40fee88eaf5c557fc9c7a9a9fe26.42197858&1663972576&1663972576&direct&(none)&&&&&; _gid=GA1.2.513367302.1663972576; _uetsid=22e07fd03b9011ed9b0ef912674a88dd; _uetvid=22e0a8203b9011ed8373b748dd7fe02c

                                         
                                         66.235.200.147
HTTP/1.1 200 OK
Content-Type: font/woff
                                        
Date: Fri, 23 Sep 2022 23:36:19 GMT
Content-Length: 17108
Connection: keep-alive
Last-Modified: Tue, 20 Aug 2019 09:45:52 GMT
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
CF-Cache-Status: HIT
Age: 3603
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74f71a0fcb651c06-OSL


--- Additional Info ---
Magic:  Web Open Font Format, TrueType, length 17108, version 1.0\012- data
Size:   17108
Md5:    b778f3bf70c28c600d8ee7453c1fc0b6
Sha1:   6c058c6a97d77d515d06b3529a11e6a03de002dd
Sha256: 3230f11f87ac7aa3afcde93c95793a2e00651d4bbae8b8fc3d12667daf8052fa

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /UltraBranch/efs/servlet/efs/fonts/PTN57F-webfont.woff HTTP/1.1 
Host: ssk-agency.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://ssk-agency.com/UltraBranch/efs/servlet/efs/css/akusafonts.css?20181128
Cookie: _gcl_au=1.1.2000654304.1663972575; _ga_R11FYFZ8HF=GS1.1.1663972574.1.0.1663972582.0.0.0; _ga=GA1.2.1075324897.1663972575; agfs=d14a40fee88eaf5c557fc9c7a9a9fe26.42197858&1663972576&1663972576&direct&(none)&&&&&; _gid=GA1.2.513367302.1663972576; _uetsid=22e07fd03b9011ed9b0ef912674a88dd; _uetvid=22e0a8203b9011ed8373b748dd7fe02c

                                         
                                         66.235.200.147
HTTP/1.1 200 OK
Content-Type: font/woff
                                        
Date: Fri, 23 Sep 2022 23:36:19 GMT
Content-Length: 25232
Connection: keep-alive
Last-Modified: Tue, 20 Aug 2019 09:44:16 GMT
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
CF-Cache-Status: HIT
Age: 3603
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74f71a0fce35b4f3-OSL


--- Additional Info ---
Magic:  Web Open Font Format, TrueType, length 25232, version 1.0\012- data
Size:   25232
Md5:    dbe930f71a2d24cc78b2fac1fbcbf7eb
Sha1:   9e86b11f4ebdb2f78668b05c19a30407491437ee
Sha256: 505251f17e21dc99dcd248a697febdab8814c2a0f3a5de7694b6b59f0a26afcf

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Fri, 23 Sep 2022 23:36:19 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /gtm.js?id=GTM-W942G3C HTTP/1.1 
Host: www.googletagmanager.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://ssk-agency.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.72
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
                                        
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Fri, 23 Sep 2022 23:36:19 GMT
expires: Fri, 23 Sep 2022 23:36:19 GMT
cache-control: private, max-age=900
last-modified: Fri, 23 Sep 2022 22:21:01 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 89901
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (58138)
Size:   89901
Md5:    75fb5b2d286cc8e5fb43cd936b6c5d25
Sha1:   b0d19985153bc5bae3c340585f13fb98363bbafa
Sha256: 981bf951b82598635897045ace8b47b0c2a789d19d24fd7fcca519e7db5df3af
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Fri, 23 Sep 2022 23:36:19 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 1199
Cache-Control: 'max-age=158059'
Date: Fri, 23 Sep 2022 23:36:19 GMT
Last-Modified: Fri, 23 Sep 2022 23:16:20 GMT
Server: ECS (ska/F71D)
X-Cache: HIT
Content-Length: 279

                                        
                                            GET /up_loader.1.1.0.js HTTP/1.1 
Host: js.adsrvr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://ssk-agency.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         18.164.70.179
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 24 Sep 2020 15:15:34 GMT
Server: AmazonS3
Content-Encoding: gzip
Date: Fri, 23 Sep 2022 12:24:57 GMT
ETag: W/"98d98b3499058b76d58073cf8ede2f10"
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 e07eaca13d23fcce8009fc507befcefa.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: LHR50-P4
X-Amz-Cf-Id: Ptf8KBL5Ph2JrNVYY-YqkjWkm5eI3x_OzVs76YhJ7aaCJrtow7s5uA==
Age: 40283


--- Additional Info ---
Magic:  ASCII text, with very long lines (4593), with no line terminators
Size:   1882
Md5:    8014ea74946aee77ef2f3b9a264be553
Sha1:   fda85fc27ac2f811e543c11436cf5623cbd46bb2
Sha256: 271b1db0f8cff912a931b78cedb32fd59adeb60025dbcbd7cc5add7d03c82f7c
                                        
                                            GET /UltraBranch/images/homeSprites.png HTTP/1.1 
Host: ssk-agency.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ssk-agency.com/UltraBranch/login.php?cmd=login_submit&id=76977d3237e1ddd040686383428937dd76977d3237e1ddd040686383428937dd&session=76977d3237e1ddd040686383428937dd76977d3237e1ddd040686383428937dd
Cookie: _gcl_au=1.1.2000654304.1663972575; _ga_R11FYFZ8HF=GS1.1.1663972574.1.0.1663972582.0.0.0; _ga=GA1.2.1075324897.1663972575; agfs=d14a40fee88eaf5c557fc9c7a9a9fe26.42197858&1663972576&1663972576&direct&(none)&&&&&; _gid=GA1.2.513367302.1663972576; _uetsid=22e07fd03b9011ed9b0ef912674a88dd; _uetvid=22e0a8203b9011ed8373b748dd7fe02c

                                         
                                         66.235.200.147
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=iso-8859-1
                                        
Date: Fri, 23 Sep 2022 23:36:19 GMT
Transfer-Encoding: chunked
Connection: keep-alive
CF-Cache-Status: EXPIRED
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74f71a0fa934b4fd-OSL
Content-Encoding: gzip


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size:   238
Md5:    f5945c4d5e4298d818d50d70865f2857
Sha1:   f35c3593933af2db1933093809ef78f45b9b7144
Sha256: d2a3f46998410a6fa09375f2813da63aa04bbc6caae20e770da12530ba881b38

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /?a=25948200&u=http%3A%2F%2Fssk-agency.com%2FUltraBranch%2Flogin.php%3Fcmd%3Dlogin_submit%26id%3D76977d3237e1ddd040686383428937dd76977d3237e1ddd040686383428937dd%26session%3D76977d3237e1ddd040686383428937dd76977d3237e1ddd040686383428937dd HTTP/1.1 
Host: prism.app-us1.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://ssk-agency.com/
Cookie: prism_25948200=635093a2-2354-4796-b7fb-5ce8def6dcb8
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         104.17.146.91
HTTP/2 200 OK
content-type: application/javascript
                                        
date: Fri, 23 Sep 2022 23:36:19 GMT
content-length: 0
cache-control: no-cache, private
set-cookie: prism_25948200=635093a2-2354-4796-b7fb-5ce8def6dcb8; expires=Sun, 23-Oct-2022 23:36:19 GMT; Max-Age=2592000; path=/; secure; httponly; samesite=none
x-envoy-upstream-service-time: 44
x-powered-by: PHP/7.4.30
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 74f71a120fcafac8-OSL
X-Firefox-Spdy: h2

                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 3562
Cache-Control: 'max-age=158059'
Date: Fri, 23 Sep 2022 23:36:19 GMT
Last-Modified: Fri, 23 Sep 2022 22:36:57 GMT
Server: ECS (ska/F714)
X-Cache: HIT
Content-Length: 471

                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 3604
Cache-Control: 'max-age=158059'
Date: Fri, 23 Sep 2022 23:36:19 GMT
Last-Modified: Fri, 23 Sep 2022 22:36:16 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 471

                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Cache-Control: 'max-age=158059'
Date: Fri, 23 Sep 2022 23:36:19 GMT
Server: ECS (amb/6BC3)
Content-Length: 471

                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Cache-Control: 'max-age=158059'
Date: Fri, 23 Sep 2022 23:36:19 GMT
Server: ECS (amb/6BB0)
Content-Length: 471

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "0FC47DBA3F2789B7C509A4916B1FE3C7B6B30C6778E5354742256125730310F3"
Last-Modified: Fri, 23 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6135
Expires: Sat, 24 Sep 2022 01:18:35 GMT
Date: Fri, 23 Sep 2022 23:36:20 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "0FC47DBA3F2789B7C509A4916B1FE3C7B6B30C6778E5354742256125730310F3"
Last-Modified: Fri, 23 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6135
Expires: Sat, 24 Sep 2022 01:18:35 GMT
Date: Fri, 23 Sep 2022 23:36:20 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "0FC47DBA3F2789B7C509A4916B1FE3C7B6B30C6778E5354742256125730310F3"
Last-Modified: Fri, 23 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6135
Expires: Sat, 24 Sep 2022 01:18:35 GMT
Date: Fri, 23 Sep 2022 23:36:20 GMT
Connection: keep-alive

                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd719f7db-20e1-4834-9525-3117f1824f36.webp HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 10032
x-amzn-requestid: 521c4012-9834-4100-a7ed-30093502f1a9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y7sPBHGYoAMFh-Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632e272c-77b03c321240d76a572d603a;Sampled=0
x-amzn-remapped-date: Fri, 23 Sep 2022 21:37:48 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: lAQOV9_fZ2RFvhRKMtDOeRTWJc-Jo1u-DrtJshcQuCSOUXVbNMjhaw==
via: 1.1 470e3fe246a660ba6ace67a79f78d246.cloudfront.net (CloudFront), 1.1 ee8246c5442dace7525c74f6a799bb46.cloudfront.net (CloudFront), 1.1 google
date: Fri, 23 Sep 2022 21:56:56 GMT
age: 5964
etag: "ed04f74fbb4c77b21e2babc51a82857f5e23d169"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   10032
Md5:    aa150280eb113504d61a25935c0f0127
Sha1:   ed04f74fbb4c77b21e2babc51a82857f5e23d169
Sha256: 07df17fffb391aa82efb09e30d97e88fa4dbe6df00e37bb90304f69179f4848e
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F261e052d-5e10-4c3b-815c-1ed62855e73c.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 11865
x-amzn-requestid: ae62bd6d-590b-4644-8dea-dcf38adc07e8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y13FEHSxoAMFs_g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632bd220-1a9fdbc01506bbf15be0fa67;Sampled=0
x-amzn-remapped-date: Thu, 22 Sep 2022 03:10:24 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: YBqyeclSHvMm99KwXa_iGF78ihpbdsr1hs9aWur3ONpCN3mwJF43KA==
via: 1.1 6ba2a21321beeef65404429d0a4b6380.cloudfront.net (CloudFront), 1.1 89791e6b21b9a30cc51cac1bc51cf098.cloudfront.net (CloudFront), 1.1 google
date: Fri, 23 Sep 2022 03:33:17 GMT
age: 72183
etag: "6786581817793da801f0034d9eaee454c11a103b"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   11865
Md5:    51954c51a08c2b93c064cb33d062295a
Sha1:   6786581817793da801f0034d9eaee454c11a103b
Sha256: c753863b9d3a6ac9a52db03ffee8862eb26ae92250d3bffa52e57fc138456eea
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3cb80186-265b-4b0a-a4b1-38aef341bfc9.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 8557
x-amzn-requestid: 51f41597-b094-47d7-b372-4c4c0236577f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y7tAXEO3oAMFTWQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632e2868-30ad6e877ee82fcc4d17a7e6;Sampled=0
x-amzn-remapped-date: Fri, 23 Sep 2022 21:43:04 GMT
x-amz-cf-pop: SEA73-P2, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: KfRlAHaZjrBNyxoYsUtQZ0TgMGD99mnrC3GViYCTRcHPtDfgYbLczg==
via: 1.1 bd6f70221217681265382902c6157c76.cloudfront.net (CloudFront), 1.1 e95ec8f1dc02e32f0cb9e113963ceb4e.cloudfront.net (CloudFront), 1.1 google
date: Fri, 23 Sep 2022 22:02:30 GMT
age: 5630
etag: "9fa34e0e3d456ed38d6e94911bf24990ed33ab0c"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   8557
Md5:    33edd8fdf7032227386d1514f99b2c4a
Sha1:   9fa34e0e3d456ed38d6e94911bf24990ed33ab0c
Sha256: 1d8ebbea41da3fbb5bd6784635f176bce0697a290635808166d269202bd3defa
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8d9363e8-7e74-47d0-b49b-ac648ebf58c9.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 7829
x-amzn-requestid: 18df2f34-f279-4088-8488-76e429fdbb49
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y7tZ4HqsoAMFrgA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632e290b-42270a1556339a3c5a941f89;Sampled=0
x-amzn-remapped-date: Fri, 23 Sep 2022 21:45:47 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: cSHVvtCZq1SkklylzL4DaNV_mrCx3kDp3fMxKlycHID-oPPMlNW7Bg==
via: 1.1 01c28b52813cd0e82f810c492808b142.cloudfront.net (CloudFront), 1.1 ddaf46a95abcfc80e8eae76235e2127c.cloudfront.net (CloudFront), 1.1 google
date: Fri, 23 Sep 2022 21:59:02 GMT
etag: "058909341bf245c24fd86fc076acf2a3c246a96c"
age: 5838
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   7829
Md5:    d84c4ddafb066f0340a6108644e18e6b
Sha1:   058909341bf245c24fd86fc076acf2a3c246a96c
Sha256: ca9019fab30635e3548e05e088ff5a5d612ffe7c01f29465c4133710a41c0245
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F993a9251-cb79-4060-b043-aacb127c6565.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 8907
x-amzn-requestid: 974b20af-4775-45bd-9e3f-55e5aa363c2d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y7sQRGPtIAMFZCw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632e2734-18aebf577efb8aaa0182aeed;Sampled=0
x-amzn-remapped-date: Fri, 23 Sep 2022 21:37:56 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: ANAYROIRBWe_Y5TxqYp9IDnqnuOHQGjvyj1K8Z85m7C9DGCXXuQ-Cw==
via: 1.1 ddd913fbbe7367d44af4ac06097e7a2a.cloudfront.net (CloudFront), 1.1 01147dcc35d57fc0238a3c1700c13f16.cloudfront.net (CloudFront), 1.1 google
date: Fri, 23 Sep 2022 21:47:49 GMT
age: 6511
etag: "24d4dcad1590e79e89a1ffe343bd7fe616528c5a"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   8907
Md5:    f727cc665bfa383779422949037a83a7
Sha1:   24d4dcad1590e79e89a1ffe343bd7fe616528c5a
Sha256: 72dc66286d9ea7b71b6c9a116ff69380a97253c73f1ba2a5b3da34790e321e05
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd1500786-3bbf-46d0-b16e-4aff6d48a585.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 14579
x-amzn-requestid: bce2c126-0883-4255-9246-d8055860f898
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YcCj6FYCoAMF9Yw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63217e18-66ba2e5d64b6a5b32b7ab36b;Sampled=0
x-amzn-remapped-date: Wed, 14 Sep 2022 07:09:12 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 92Pj9IQp3mBJQOW-XuHSK8laPqXOSBOmNbYcm4hSFzc1xqYscQKxMA==
via: 1.1 41e349e25dc4bc856d0e5d2c162428a0.cloudfront.net (CloudFront), 1.1 cd858042f70b416ca05e042acf3908a4.cloudfront.net (CloudFront), 1.1 google
date: Fri, 23 Sep 2022 22:05:15 GMT
age: 5465
etag: "16e42ba7b20555bf5a8615e5f4bb561204aeeb5a"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   14579
Md5:    f10a12719b387d176497669ba75f0acc
Sha1:   16e42ba7b20555bf5a8615e5f4bb561204aeeb5a
Sha256: 0cb2231817387d43a490565b61e24ea7a3cfcff3281f4ab4379a882cc5c3173f
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Cache-Control: 'max-age=158059'
Date: Fri, 23 Sep 2022 23:36:20 GMT
Server: ECS (amb/6B75)
Content-Length: 471

                                        
                                            POST /g/collect?v=2&tid=G-R11FYFZ8HF&gtm=2oe9l0&_p=2007064585&cid=1075324897.1663972575&ul=en-us&sr=1280x1024&_z=ccd.v9B&_s=1&sid=1663976178&sct=2&seg=0&dl=http%3A%2F%2Fssk-agency.com%2FUltraBranch%2Flogin.php%3Fcmd%3Dlogin_submit%26id%3D76977d3237e1ddd040686383428937dd76977d3237e1ddd040686383428937dd%26session%3D76977d3237e1ddd040686383428937dd76977d3237e1ddd040686383428937dd&dt=Alaska%20USA%20services%20for%20you&en=page_view&_ss=1 HTTP/1.1 
Host: region1.google-analytics.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://ssk-agency.com
Connection: keep-alive
Referer: http://ssk-agency.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0

                                         
                                         216.239.34.36
HTTP/2 204 No Content
content-type: text/plain
                                        
access-control-allow-origin: http://ssk-agency.com
date: Fri, 23 Sep 2022 23:36:20 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

                                        
                                            GET /js/jquery.leanModal.AKUSA.2.1.js HTTP/1.1 
Host: www.alaskausa.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://ssk-agency.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         107.162.171.161
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Last-Modified: Thu, 22 Sep 2022 20:54:24 GMT
Accept-Ranges: bytes
ETag: "169ff7ec5ced81:0"
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
X-Frame-Options: DENY
Date: Fri, 23 Sep 2022 23:36:21 GMT
Content-Length: 5013
Via: 1.1 dca1-bit13014
Vary: Accept-Encoding
Content-Encoding: gzip
Connection: Keep-Alive


--- Additional Info ---
Magic:  Unicode text, UTF-8 (with BOM) text, with CRLF line terminators
Size:   5013
Md5:    351f3a0ccd1ce923d84feae6e7312463
Sha1:   a42acdb266e0871bd9a3b971a6a2b6be3219600f
Sha256: c91d036452fe324dba730ff05188b0e56b2af892bfa340c09c6a96af0f56d2a9
                                        
                                            GET /images/nav/ncua.png HTTP/1.1 
Host: www.alaskausa.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://ssk-agency.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         107.162.171.161
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Last-Modified: Thu, 22 Sep 2022 20:55:27 GMT
Accept-Ranges: bytes
ETag: "c84ae2a4c5ced81:0"
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
X-Frame-Options: DENY
Date: Fri, 23 Sep 2022 23:36:21 GMT
Content-Length: 4280
Via: 1.1 dca1-bit13014


--- Additional Info ---
Magic:  PNG image data, 146 x 65, 8-bit colormap, non-interlaced\012- data
Size:   4280
Md5:    38b7240d957be9f71b5271246fb01f67
Sha1:   9007e7baf8e357ac11c8541c871e48960c8d9f30
Sha256: d6641292ca4109173a6ca88b1353f0a6edeaad1c5f90e4c69c6999943109a878
                                        
                                            GET /js/jquery/slick/slick.181.js HTTP/1.1 
Host: www.alaskausa.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://ssk-agency.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         107.162.171.161
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Last-Modified: Thu, 22 Sep 2022 20:54:20 GMT
Accept-Ranges: bytes
ETag: "cb65d87cc5ced81:0"
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
X-Frame-Options: DENY
Date: Fri, 23 Sep 2022 23:36:18 GMT
Via: 1.1 dca1-bit13014
Vary: Accept-Encoding
Content-Encoding: gzip
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  Unicode text, UTF-8 (with BOM) text, with CRLF line terminators
Size:   23677
Md5:    6534a62e16e877b353989a88d6181513
Sha1:   c93dd1499549d15cf73d76d6d207910d77848f74
Sha256: 91409a4a5020bcac1a0ca5d187bc28edd0e4e3820f0d4ab5ddd7ef8ec139639e
                                        
                                            GET /js/jsSuite-1.9.5.js HTTP/1.1 
Host: www.alaskausa.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://ssk-agency.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         107.162.171.161
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Last-Modified: Thu, 22 Sep 2022 20:53:56 GMT
Accept-Ranges: bytes
ETag: "31e2a26ec5ced81:0"
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
X-Frame-Options: DENY
Date: Fri, 23 Sep 2022 23:36:18 GMT
Content-Length: 25907
Via: 1.1 dca1-bit13014
Vary: Accept-Encoding
Content-Encoding: gzip
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (1664), with CRLF line terminators
Size:   25907
Md5:    1944286c5d9045bed03628acc73abaaa
Sha1:   77558a881d16646a0111cddc3b8aade9e097d763
Sha256: 720c1ead84265c920a00af4d5303a22d071a88ed9e408a046950fdeaee3a50a1
                                        
                                            GET /js/jquery.accAccordion.js HTTP/1.1 
Host: www.alaskausa.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://ssk-agency.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         107.162.171.161
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Last-Modified: Thu, 22 Sep 2022 20:54:24 GMT
Accept-Ranges: bytes
ETag: "169ff7ec5ced81:0"
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
X-Frame-Options: DENY
Date: Fri, 23 Sep 2022 23:36:21 GMT
Content-Length: 3084
Via: 1.1 dca1-bit13014
Vary: Accept-Encoding
Content-Encoding: gzip
Connection: Keep-Alive


--- Additional Info ---
Magic:  Unicode text, UTF-8 (with BOM) text, with CRLF line terminators
Size:   3084
Md5:    06e42aebb3858cd8f493e85045fb5673
Sha1:   c7400b593de87ebeb5ce10c3d29591ea9d063a12
Sha256: 11b7c0addf38af5f83482d3b82ee16953903313e73ba82b1d09e3782fd074a06
                                        
                                            GET /images/nav/EHL.png HTTP/1.1 
Host: www.alaskausa.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://ssk-agency.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         107.162.171.161
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Last-Modified: Thu, 22 Sep 2022 20:54:19 GMT
Accept-Ranges: bytes
ETag: "979fec7bc5ced81:0"
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
X-Frame-Options: DENY
Date: Fri, 23 Sep 2022 23:36:22 GMT
Content-Length: 3317
Via: 1.1 dca1-bit13014


--- Additional Info ---
Magic:  PNG image data, 55 x 59, 8-bit colormap, non-interlaced\012- data
Size:   3317
Md5:    859cf2ed8319f4931c1e2371bee8b46d
Sha1:   ff866fe6e3071999e6c057dae5aed927aefd047f
Sha256: 1c7cd686a01f2dcffc1f55119624e9166300721172b4e7ad284ff734bc8db0a1
                                        
                                            GET /images/nav/akusafcu_logo.png HTTP/1.1 
Host: www.alaskausa.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://ssk-agency.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         107.162.171.161
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Last-Modified: Thu, 22 Sep 2022 20:55:27 GMT
Accept-Ranges: bytes
ETag: "66e8dfa4c5ced81:0"
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
X-Frame-Options: DENY
Date: Fri, 23 Sep 2022 23:36:22 GMT
Content-Length: 16228
Via: 1.1 dca1-bit13014


--- Additional Info ---
Magic:  PNG image data, 220 x 70, 8-bit/color RGBA, non-interlaced\012- data
Size:   16228
Md5:    dc43cc5c96d54639189781edf322cac9
Sha1:   26c53d9c975f997481520a336ac5f6a22f115c74
Sha256: 6ceabe544edbb8513733f30b14c1d17a2fa51e461f972c31d17e5450d4718603
                                        
                                            GET /current/promo/data/images/primary/Floating-Banner2.png HTTP/1.1 
Host: www.alaskausa.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://ssk-agency.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         107.162.171.161
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Last-Modified: Thu, 22 Sep 2022 20:53:33 GMT
Accept-Ranges: bytes
ETag: "6ee0a860c5ced81:0"
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
X-Frame-Options: DENY
Date: Fri, 23 Sep 2022 23:36:18 GMT
Content-Length: 38614
Via: 1.1 dca1-bit13014


--- Additional Info ---
Magic:  PNG image data, 441 x 223, 8-bit/color RGBA, non-interlaced\012- data
Size:   38614
Md5:    a02c6e58421260ae16942fe11943acfe
Sha1:   7e2694f12f78ec9eb6d03524c14860521d124f2f
Sha256: 2a9ea79fd7475239fbaf329d96211c18d1ad812be5f402fe9571c5db6c789f46
                                        
                                            GET /js/jquery-1.11.3.min.js HTTP/1.1 
Host: www.alaskausa.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://ssk-agency.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         107.162.171.161
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Last-Modified: Thu, 22 Sep 2022 20:55:34 GMT
Accept-Ranges: bytes
ETag: "aaebfa9c5ced81:0"
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
X-Frame-Options: DENY
Date: Fri, 23 Sep 2022 23:36:21 GMT
Via: 1.1 dca1-bit13014
Vary: Accept-Encoding
Content-Encoding: gzip
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  ASCII text, with very long lines (32038)
Size:   45711
Md5:    cf54b56dbd2adb27eb44fe6defb747e6
Sha1:   78e81335c5c317f9d56877d2f011a74a50910dd8
Sha256: 9256346dc8067ab6665a68fe1590b676d13f8ecd353fa2676ec372a2f3338a94
                                        
                                            GET /current/promo/data/images/secondary/warning.png HTTP/1.1 
Host: www.alaskausa.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://ssk-agency.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         107.162.171.161
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Last-Modified: Thu, 22 Sep 2022 20:53:54 GMT
Accept-Ranges: bytes
ETag: "2fb5116dc5ced81:0"
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
X-Frame-Options: DENY
Date: Fri, 23 Sep 2022 23:36:22 GMT
Content-Length: 1249
Via: 1.1 dca1-bit13014


--- Additional Info ---
Magic:  PNG image data, 125 x 125, 8-bit/color RGBA, non-interlaced\012- data
Size:   1249
Md5:    9e1021883b3f3114c30a7cb29529ac5e
Sha1:   a20cdec04360f8075da7ae8b879f3cebe21e12e3
Sha256: 91e219a364aee6c0d5f23d8406ce671d68c0264e0767414ce66e8f56ebd2db78
                                        
                                            GET /current/promo/data/images/primary/Background-Photo-Persona-02.jpg HTTP/1.1 
Host: www.alaskausa.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://ssk-agency.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         107.162.171.161
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Last-Modified: Thu, 22 Sep 2022 20:53:47 GMT
Accept-Ranges: bytes
ETag: "9df4d568c5ced81:0"
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
X-Frame-Options: DENY
Date: Fri, 23 Sep 2022 23:36:18 GMT
Content-Length: 53072
Via: 1.1 dca1-bit13014


--- Additional Info ---
Magic:  JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1500x1108, components 3\012- data
Size:   53072
Md5:    97248a858f0ad449848e750aedca79a3
Sha1:   fb07b7653d82f68f414cf6d11a2066f5e234d1c2
Sha256: 1005c81e34195681e8804f8c3373eb694a24a3b1b29e213bb15eb62558fd7e2f
                                        
                                            GET /current/promo/data/images/secondary/annual_report2019.png HTTP/1.1 
Host: www.alaskausa.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://ssk-agency.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         107.162.171.161
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Last-Modified: Thu, 22 Sep 2022 20:53:53 GMT
Accept-Ranges: bytes
ETag: "296aa66cc5ced81:0"
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
X-Frame-Options: DENY
Date: Fri, 23 Sep 2022 23:36:22 GMT
Content-Length: 28534
Via: 1.1 dca1-bit13014


--- Additional Info ---
Magic:  PNG image data, 125 x 125, 8-bit/color RGBA, non-interlaced\012- data
Size:   28534
Md5:    dd5eff79682e9dbe010f2c84eaa1d830
Sha1:   56b58cb1cd31926b4e6c3755d0cc7ea359811d41
Sha256: 57e36e601c00b7303300b847252d692ed85f713f8b4bae390073cafe5cc36734
                                        
                                            GET /current/promo/data/images/primary/20713-NADA-Floating-Banner.png HTTP/1.1 
Host: www.alaskausa.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://ssk-agency.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         107.162.171.161
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Last-Modified: Thu, 22 Sep 2022 20:53:29 GMT
Accept-Ranges: bytes
ETag: "57ac4d5ec5ced81:0"
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
X-Frame-Options: DENY
Date: Fri, 23 Sep 2022 23:36:19 GMT
Content-Length: 10688
Via: 1.1 dca1-bit13014


--- Additional Info ---
Magic:  PNG image data, 343 x 147, 8-bit/color RGBA, non-interlaced\012- data
Size:   10688
Md5:    50c81bf751a8d20bd8ad77e52bde0a30
Sha1:   22d62cf0f40a760cedef45e3c1ad1d92055366a0
Sha256: c0a586167b9fcc911c0688cf356973153d51d57dcb909a671f92c9c198d3d611
                                        
                                            GET /current/promo/data/images/primary/Background-Photo-Persona-01.jpg HTTP/1.1 
Host: www.alaskausa.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://ssk-agency.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         107.162.171.161
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Last-Modified: Thu, 22 Sep 2022 20:54:26 GMT
Accept-Ranges: bytes
ETag: "b1d71280c5ced81:0"
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
X-Frame-Options: DENY
Date: Fri, 23 Sep 2022 23:36:22 GMT
Content-Length: 45539
Via: 1.1 dca1-bit13014


--- Additional Info ---
Magic:  JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1500x1108, components 3\012- data
Size:   45539
Md5:    f7fe4b3f56b61526644899815747428e
Sha1:   ec2ba4a6d1829440314ce365c67216e1af699d74
Sha256: 554c07478a401d7c8e04b5fd72508a24da109c85451b1356d5ea6700d0859ce9
                                        
                                            GET /current/promo/data/images/primary/20713-NADA-Background-Bnr-0820.jpg HTTP/1.1 
Host: www.alaskausa.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://ssk-agency.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         107.162.171.161
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Last-Modified: Thu, 22 Sep 2022 20:54:21 GMT
Accept-Ranges: bytes
ETag: "c4b9ab7dc5ced81:0"
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
X-Frame-Options: DENY
Date: Fri, 23 Sep 2022 23:36:22 GMT
Content-Length: 95027
Via: 1.1 dca1-bit13014


--- Additional Info ---
Magic:  JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1500x1108, components 3\012- data
Size:   95027
Md5:    062513c95b4fcc7ced02f9f0f6fe1d9b
Sha1:   cde89bc861077569d75b1e1b38d27c7adf7325cd
Sha256: b8ce2661c681e99678f9005f3641197c0dce7579c61624e528c71e4e683042aa
                                        
                                            GET /current/promo/data/images/primary/Background-Photo_paypal.jpg HTTP/1.1 
Host: www.alaskausa.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://ssk-agency.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         107.162.171.161
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Last-Modified: Thu, 22 Sep 2022 20:53:47 GMT
Accept-Ranges: bytes
ETag: "e853f768c5ced81:0"
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
X-Frame-Options: DENY
Date: Fri, 23 Sep 2022 23:36:19 GMT
Content-Length: 100292
Via: 1.1 dca1-bit13014


--- Additional Info ---
Magic:  JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1500x1108, components 3\012- data
Size:   100292
Md5:    7a6b09de928fbc6d7434229876ca28ee
Sha1:   d6fe3b91dac66121e6c095259768d8d1153dc114
Sha256: 7249bc73560b249e77e116189d54d03475b303396354d60cca2291095a77c345
                                        
                                            GET /current/promo/data/images/primary/Floating-Banner.png HTTP/1.1 
Host: www.alaskausa.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://ssk-agency.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         107.162.171.161
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Last-Modified: Thu, 22 Sep 2022 20:53:47 GMT
Accept-Ranges: bytes
ETag: "075869c5ced81:0"
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
X-Frame-Options: DENY
Date: Fri, 23 Sep 2022 23:36:22 GMT
Content-Length: 41436
Via: 1.1 dca1-bit13014


--- Additional Info ---
Magic:  PNG image data, 441 x 223, 8-bit/color RGBA, non-interlaced\012- data
Size:   41436
Md5:    f3b9c19fd6989e18a730c113b154a4f2
Sha1:   1ffe2cae13ca326ff0baae0b5bfb843c1824fe9b
Sha256: 2c48b99e9c312705a2f9f1bd431a2f29dc6d054fb8b35a3c942a15b85c80e385
                                        
                                            GET /agf.gif?t=pv&pv=%2FUltraBranch%2Flogin.php&tt=Alaska+USA+services+for+you&qr=cmd%3Dlogin_submit%26id%3D76977d3237e1ddd040686383428937dd76977d3237e1ddd040686383428937dd%26session%3D76977d3237e1ddd040686383428937dd76977d3237e1ddd040686383428937dd&vt=returning&sc=direct&md=(none)&dp=24&sh=1024&sw=1280&bn=Firefox&bv=96&pn=Linux&pr=x86_64&bl=en-us&js=1.5&hn=ssk-agency.com&vi=42197858&vs=421978581663976180&_=675490&v=040 HTTP/1.1 
Host: ssk-agency.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ssk-agency.com/UltraBranch/login.php?cmd=login_submit&id=76977d3237e1ddd040686383428937dd76977d3237e1ddd040686383428937dd&session=76977d3237e1ddd040686383428937dd76977d3237e1ddd040686383428937dd
Cookie: _gcl_au=1.1.2000654304.1663972575; _ga_R11FYFZ8HF=GS1.1.1663976178.2.0.1663976178.0.0.0; _ga=GA1.1.1075324897.1663972575; agfs=d14a40fee88eaf5c557fc9c7a9a9fe26.42197858&1663976180&1663976180&direct&(none)&&&&&; _gid=GA1.2.513367302.1663972576; _uetsid=22e07fd03b9011ed9b0ef912674a88dd; _uetvid=22e0a8203b9011ed8373b748dd7fe02c; agft=d14a40fee88eaf5c557fc9c7a9a9fe26.42197858

                                         
                                         66.235.200.147
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
                                        
Date: Fri, 23 Sep 2022 23:36:21 GMT
Transfer-Encoding: chunked
Connection: keep-alive
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
Last-Modified: Fri, 23 Sep 2022 23:36:21 GMT
CF-Cache-Status: MISS
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74f71a1a18b51c06-OSL
Content-Encoding: gzip


--- Additional Info ---
Magic:  data
Size:   20
Md5:    7029066c27ac6f5ef18d660d5741979a
Sha1:   46c6643f07aa7f6bfe7118de926b86defc5087c4
Sha256: 59869db34853933b239f1e2219cf7d431da006aa919635478511fabbfc8849d2

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /current/promo/data/images/primary/Paypal_floater.png HTTP/1.1 
Host: www.alaskausa.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://ssk-agency.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         107.162.171.161
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Last-Modified: Thu, 22 Sep 2022 20:53:50 GMT
Accept-Ranges: bytes
ETag: "e5f5cb6ac5ced81:0"
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
X-Frame-Options: DENY
Date: Fri, 23 Sep 2022 23:36:22 GMT
Content-Length: 71252
Via: 1.1 dca1-bit13014


--- Additional Info ---
Magic:  PNG image data, 460 x 286, 8-bit/color RGBA, non-interlaced\012- data
Size:   71252
Md5:    8b8b0c5a9770cd0ed2d35cd00dd7184b
Sha1:   95054afd727f01debd9da99391ef90d91ab9c013
Sha256: 2e7c0c05ccdc6f730310f1bc9477aa87364fb7b31625aad63005f84029b15a00
                                        
                                            GET /UltraBranch/efs/servlet/efs/css/ajax-loader.gif HTTP/1.1 
Host: ssk-agency.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ssk-agency.com/UltraBranch/efs/servlet/efs/css/slick.css
Cookie: _gcl_au=1.1.2000654304.1663972575; _ga_R11FYFZ8HF=GS1.1.1663976178.2.0.1663976178.0.0.0; _ga=GA1.1.1075324897.1663972575; agfs=d14a40fee88eaf5c557fc9c7a9a9fe26.42197858&1663976180&1663976180&direct&(none)&&&&&; _gid=GA1.2.513367302.1663972576; _uetsid=22e07fd03b9011ed9b0ef912674a88dd; _uetvid=22e0a8203b9011ed8373b748dd7fe02c; agft=d14a40fee88eaf5c557fc9c7a9a9fe26.42197858

                                         
                                         66.235.200.147
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=iso-8859-1
                                        
Date: Fri, 23 Sep 2022 23:36:21 GMT
Transfer-Encoding: chunked
Connection: keep-alive
CF-Cache-Status: EXPIRED
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74f71a1a3e16b4f3-OSL
Content-Encoding: gzip


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size:   238
Md5:    f5945c4d5e4298d818d50d70865f2857
Sha1:   f35c3593933af2db1933093809ef78f45b9b7144
Sha256: d2a3f46998410a6fa09375f2813da63aa04bbc6caae20e770da12530ba881b38

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /analytics.js HTTP/1.1 
Host: www.google-analytics.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://ssk-agency.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.174
HTTP/2 200 OK
content-type: text/javascript
                                        
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 19826
date: Fri, 23 Sep 2022 22:41:09 GMT
expires: Sat, 24 Sep 2022 00:41:09 GMT
cache-control: public, max-age=7200
age: 3312
last-modified: Sun, 11 Sep 2022 13:50:09 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (1325)
Size:   19826
Md5:    cae538dcce82598fbe43c0bf443e62dd
Sha1:   cc68ac6be9c5e0087a0000e5735b83270ace30f5
Sha256: 954b9e9d9744e1319c51760780a35de2dec353afffac705c2cca6d836a5e056d
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Fri, 23 Sep 2022 23:36:21 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /bat.js HTTP/1.1 
Host: bat.bing.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://ssk-agency.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         13.107.21.200
HTTP/2 200 OK
content-type: application/javascript
                                        
cache-control: private,max-age=1800
content-length: 11367
content-encoding: gzip
last-modified: Thu, 28 Jul 2022 17:32:37 GMT
accept-ranges: bytes
etag: "80a8697a8a2d81:0"
vary: Accept-Encoding
set-cookie: MUID=090697538D8F6FF40E84857B8C7A6EC6; domain=.bing.com; expires=Wed, 18-Oct-2023 23:36:21 GMT; path=/; SameSite=None; Secure; Priority=High;
strict-transport-security: max-age=31536000; includeSubDomains; preload
access-control-allow-origin: *
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: BC69799EF69049C6A6676146B7AC1398 Ref B: OSL30EDGE0205 Ref C: 2022-09-23T23:36:21Z
date: Fri, 23 Sep 2022 23:36:21 GMT
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (38826), with no line terminators
Size:   11367
Md5:    293ae3e0fc8b0d5c143fdf9d8490228d
Sha1:   3976c659b908e70818a3a1ac71860b497fe2d1a9
Sha256: 04a840d967ae836e14179bde574cabf14a1fc871182ca0f8193e7a0b06c727ab
                                        
                                            GET /pagead/conversion_async.js HTTP/1.1 
Host: www.google.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://ssk-agency.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.164
HTTP/2 200 OK
content-type: text/javascript; charset=UTF-8
                                        
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
date: Fri, 23 Sep 2022 23:36:21 GMT
expires: Fri, 23 Sep 2022 23:36:21 GMT
cache-control: private, max-age=3600
etag: 3080337328058561381
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
server: cafe
content-length: 15693
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (1654)
Size:   15693
Md5:    890f716858b5f72587e47c5eca121cb5
Sha1:   91871a0acd9a0ab644d51036bb5ca0c3bdc5e687
Sha256: 7a3629e375468328b3fb25e1a6cc5749604f09099e8d2109f366e7e0226aee4a
                                        
                                            POST /j/collect?v=1&_v=j97&a=2007064585&t=pageview&_s=1&dl=http%3A%2F%2Fssk-agency.com%2FUltraBranch%2Flogin.php%3Fcmd%3Dlogin_submit%26id%3D76977d3237e1ddd040686383428937dd76977d3237e1ddd040686383428937dd%26session%3D76977d3237e1ddd040686383428937dd76977d3237e1ddd040686383428937dd&ul=en-us&de=UTF-8&dt=Alaska%20USA%20services%20for%20you&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=QACAAEABAAAAAC~&jid=893270129&gjid=287177879&cid=1075324897.1663972575&tid=UA-105087488-1&_gid=513367302.1663972576&_r=1&gtm=2wg9l0W942G3C&z=901585588 HTTP/1.1 
Host: www.google-analytics.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: http://ssk-agency.com
Connection: keep-alive
Referer: http://ssk-agency.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         142.250.74.174
HTTP/2 200 OK
content-type: text/plain
                                        
access-control-allow-origin: http://ssk-agency.com
date: Fri, 23 Sep 2022 23:36:21 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with no line terminators
Size:   2
Md5:    cc7a1e792bca8ccb1946b7a07f6dbc03
Sha1:   11a2757082428311f587b7664fa9840376137f80
Sha256: de3246094525b21a870fc7d2a67490d0132535c6fa5993755c549f1a9d1bd8af
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Fri, 23 Sep 2022 23:36:21 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Fri, 23 Sep 2022 23:36:21 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /pagead/viewthroughconversion/831978068/?random=1663976180342&cv=9&fst=1663976180342&num=1&bg=ffffff&guid=ON&resp=GooglemKTybQhCsO&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&gtm=2wg9l0&sendb=1&ig=0&frm=0&url=http%3A%2F%2Fssk-agency.com%2FUltraBranch%2Flogin.php%3Fcmd%3Dlogin_submit%26id%3D76977d3237e1ddd040686383428937dd76977d3237e1ddd040686383428937dd%26session%3D76977d3237e1ddd040686383428937dd76977d3237e1ddd040686383428937dd&tiba=Alaska%20USA%20services%20for%20you&auid=2000654304.1663972575&hn=www.google.com&async=1&rfmt=3&fmt=4 HTTP/1.1 
Host: googleads.g.doubleclick.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://ssk-agency.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.130
HTTP/2 200 OK
content-type: text/javascript; charset=UTF-8
                                        
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Fri, 23 Sep 2022 23:36:21 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
server: cafe
content-length: 1098
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Fri, 23-Sep-2022 23:51:21 GMT; path=/; domain=.doubleclick.net; Secure; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (2586), with no line terminators
Size:   1098
Md5:    aca724e780d123af18e2d69d05942601
Sha1:   4ffde0615f604323e08a8c556de311863a7ffb0d
Sha256: bedf112ffd54681831b1f3f783f9c9a22da64f72963a73bcd47ae10e820f6176
                                        
                                            GET /action/0?ti=134612163&tm=gtm002&Ver=2&mid=ac44bc35-835c-4527-adea-5432c6debe6b&sid=22e07fd03b9011ed9b0ef912674a88dd&vid=22e0a8203b9011ed8373b748dd7fe02c&vids=0&msclkid=N&pi=0&lg=en-US&sw=1280&sh=1024&sc=24&tl=Alaska%20USA%20services%20for%20you&kw=AlaskaUSA,%20Alaska,%20Arizona,%20Washington,%20USA,%20San%20Bernardino%20California,%20Victor%20Valley,%20High%20Desert,%20Anchorage,%20Credit%20Union,%20Bank,%20Financial,%20Finance,%20Loan,%20Credit,%20Lending,%20Insurance,%20Mortgage,%20Refinance,%20home,%20Online%20banking,%20by%20phone,%20UltraBranch,%20Saving,%20Checking,%20Account,%20Money,%20Service,%20Relocate,%20Moving,%20Real%20Estate,%20business,%20AKUSA&p=http%3A%2F%2Fssk-agency.com%2FUltraBranch%2Flogin.php%3Fcmd%3Dlogin_submit%26id%3D76977d3237e1ddd040686383428937dd76977d3237e1ddd040686383428937dd%26session%3D76977d3237e1ddd040686383428937dd76977d3237e1ddd040686383428937dd&r=&lt=3132&evt=pageLoad&sv=1&rn=397541 HTTP/1.1 
Host: bat.bing.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://ssk-agency.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         13.107.21.200
HTTP/2 204 No Content
                                        
cache-control: no-cache, must-revalidate
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
set-cookie: MUID=2C058132C43964A13DD1931AC5CC655D; domain=.bing.com; expires=Wed, 18-Oct-2023 23:36:21 GMT; path=/; SameSite=None; Secure; Priority=High;
strict-transport-security: max-age=31536000; includeSubDomains; preload
access-control-allow-origin: *
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 1F2732FA599248C28BE4F9EA6BC8954A Ref B: OSL30EDGE0205 Ref C: 2022-09-23T23:36:21Z
date: Fri, 23 Sep 2022 23:36:21 GMT
X-Firefox-Spdy: h2

                                        
                                            GET /images/icon-76@2x.png HTTP/1.1 
Host: www.alaskausa.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://ssk-agency.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         107.162.171.161
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Last-Modified: Thu, 22 Sep 2022 20:54:15 GMT
Accept-Ranges: bytes
ETag: "2161ca79c5ced81:0"
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
X-Frame-Options: DENY
Date: Fri, 23 Sep 2022 23:36:19 GMT
Content-Length: 21833
Via: 1.1 dca1-bit13014


--- Additional Info ---
Magic:  PNG image data, 152 x 152, 8-bit/color RGB, non-interlaced\012- data
Size:   21833
Md5:    aa361a75d2fd36154747173a3a6cd422
Sha1:   8c14f2c0a0f3b2e1a265313239d6b9f7383808f9
Sha256: 31079b4bcec10fbd6e7530a766c97d05b5bc5e143af55a7599633fe3fd1c955e
                                        
                                            GET /favicon.ico HTTP/1.1 
Host: www.alaskausa.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://ssk-agency.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         107.162.171.161
HTTP/1.1 200 OK
Content-Type: image/x-icon
                                        
Last-Modified: Thu, 22 Sep 2022 20:55:22 GMT
Accept-Ranges: bytes
ETag: "d0196a2c5ced81:0"
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
X-Frame-Options: DENY
Date: Fri, 23 Sep 2022 23:36:22 GMT
Content-Length: 1150
Via: 1.1 dca1-bit13014


--- Additional Info ---
Magic:  MS Windows icon resource - 1 icon, 16x16, 32 bits/pixel\012- data
Size:   1150
Md5:    a640140069c78a92f718c9fb63614d72
Sha1:   1418d5de4993b63c2b11a64df62a03ae8ebb8f95
Sha256: 5b8545b9cf60e23bd9c7eacef43e9b85e2843b1d90328b5b6fca9ef851347808
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Fri, 23 Sep 2022 23:36:21 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Fri, 23 Sep 2022 23:36:21 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j97&tid=UA-105087488-1&cid=1075324897.1663972575&jid=893270129&gjid=287177879&_gid=513367302.1663972576&_u=QACAAEAAAAAAAC~&z=1123870311 HTTP/1.1 
Host: stats.g.doubleclick.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: http://ssk-agency.com
Connection: keep-alive
Referer: http://ssk-agency.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         142.251.1.155
HTTP/2 200 OK
content-type: text/plain
                                        
access-control-allow-origin: http://ssk-agency.com
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Fri, 23 Sep 2022 23:36:21 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 4
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with no line terminators
Size:   4
Md5:    48c0473b7821185d937e685216e2168b
Sha1:   3743e47f8a429a5e87b86cb582d78940733d9d2e
Sha256: 570c4d4674fd20602189c548c145ba1f8ac34bc2e4599a71471969028aa1e25a
                                        
                                            GET /pagead/1p-user-list/831978068/?random=1663976180342&cv=9&fst=1663974000000&num=1&bg=ffffff&guid=ON&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&gtm=2wg9l0&sendb=1&frm=0&url=http%3A%2F%2Fssk-agency.com%2FUltraBranch%2Flogin.php%3Fcmd%3Dlogin_submit%26id%3D76977d3237e1ddd040686383428937dd76977d3237e1ddd040686383428937dd%26session%3D76977d3237e1ddd040686383428937dd76977d3237e1ddd040686383428937dd&tiba=Alaska%20USA%20services%20for%20you&async=1&fmt=3&is_vtc=1&random=1767569194&resp=GooglemKTybQhCsO&rmt_tld=1&ipr=y HTTP/1.1 
Host: www.google.no
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://ssk-agency.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.3
HTTP/2 200 OK
content-type: image/gif
                                        
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Fri, 23 Sep 2022 23:36:21 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1\012- data
Size:   42
Md5:    d89746888da2d9510b64a9f031eaecd5
Sha1:   d5fceb6532643d0d84ffe09c40c481ecdf59e15a
Sha256: ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
                                        
                                            GET /p/action/134612163.js HTTP/1.1 
Host: bat.bing.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://ssk-agency.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         13.107.21.200
HTTP/2 204 No Content
                                        
cache-control: private,max-age=1800
set-cookie: MUID=0D9380EBB7FA6E373B1692C3B60F6F7A; domain=.bing.com; expires=Wed, 18-Oct-2023 23:36:21 GMT; path=/; SameSite=None; Secure; Priority=High;
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-powered-by: ARR/3.0
access-control-allow-origin: *
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: ED17C8187D954B2380FE493F2404B7E8 Ref B: OSL30EDGE0205 Ref C: 2022-09-23T23:36:21Z
date: Fri, 23 Sep 2022 23:36:21 GMT
X-Firefox-Spdy: h2

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Fri, 23 Sep 2022 23:36:21 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j97&tid=UA-105087488-1&cid=1075324897.1663972575&jid=893270129&_u=QACAAEAAAAAAAC~&z=2101225158 HTTP/1.1 
Host: www.google.no
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://ssk-agency.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         142.250.74.3
HTTP/2 200 OK
content-type: image/gif
                                        
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Fri, 23 Sep 2022 23:36:21 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1\012- data
Size:   42
Md5:    d89746888da2d9510b64a9f031eaecd5
Sha1:   d5fceb6532643d0d84ffe09c40c481ecdf59e15a
Sha256: ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
                                        
                                            GET /track/up?adv=p6q6pct&ref=http%3A%2F%2Fssk-agency.com%2FUltraBranch%2Flogin.php%3Fcmd%3Dlogin_submit%26id%3D76977d3237e1ddd040686383428937dd76977d3237e1ddd040686383428937dd%26session%3D76977d3237e1ddd040686383428937dd76977d3237e1ddd040686383428937dd&upid=q8skero&upv=1.1.0 HTTP/1.1 
Host: insight.adsrvr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://ssk-agency.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

                                         
                                         35.71.131.137
HTTP/2 200 OK
content-type: text/html
                                        
date: Fri, 23 Sep 2022 23:36:21 GMT
cache-control: private,no-cache, must-revalidate
pragma: no-cache
x-aspnet-version: 4.0.30319
p3p: CP="NOI DSP COR CUR ADMo DEVo PSAo PSDo OUR SAMo BUS UNI NAV"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   3936
Md5:    05cc8199d072ccff34e3c0b2ecd65a09
Sha1:   7eda659464993f2945f2c5f4332f96fec9dc0e4c
Sha256: 4fb425a78b4664385741112795978280166b6331baf461aa4ba9440d0ef3826d
                                        
                                            GET /diffuser/diffuser.js HTTP/1.1 
Host: diffuser-cdn.app-us1.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://ssk-agency.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         104.17.146.91
HTTP/2 200 OK
content-type: application/javascript
                                        
date: Fri, 23 Sep 2022 23:36:19 GMT
last-modified: Thu, 21 Oct 2021 17:42:06 GMT
etag: W/"4d482a43613d3966f353ec9d97452e0c"
x-amz-server-side-encryption: AES256
cache-control: public, max-age=300
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 059f85e5e664bc876c915622803d9e28.cloudfront.net (CloudFront)
x-amz-cf-pop: CPH50-C2
x-amz-cf-id: LYgb7O-05A19YisedsHdW7Gqa3Bw46pjlPKvIkZSVBpaULKohYEzzQ==
cf-cache-status: HIT
age: 280
server: cloudflare
cf-ray: 74f71a115fa0fac8-OSL
X-Firefox-Spdy: h2


--- Additional Info ---