firefox.settings.services.mozilla.com/v1/
18.164.68.6200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP 18.164.68.6:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 2d12f67fe57a87e7366b662d153a5582
d7b02d81cc74f24a251d9363e0f4b0a149264ec1
73c273c0b5a2de3cb970b8e8c187999d3b55e760dc7766dab4bb76428d19b551
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Type, Alert, Backoff, Retry-After, Content-Length
Cache-Control: max-age=3600
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Sat, 24 Sep 2022 00:05:20 GMT
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 7d9efc042e7adb5feec60cb3e228036c.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: LHR50-P4
X-Amz-Cf-Id: JeajhhtbXxCoqqXUXqQ-eW345GYDcvsRAVafKm-Z2DoG76xN9St-gQ==
Age: 948
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 09a973de929ab7452edc342c780d3668
3f14f6e0a36f76863c0aea6fb561c266404a7ea3
e82ca5f310e37267fbf792427747e65c2bb35e684d3f629c0aa302f688bc4f80
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E82CA5F310E37267FBF792427747E65C2BB35E684D3F629C0AA302F688BC4F80"
Last-Modified: Fri, 23 Sep 2022 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=19598
Expires: Sat, 24 Sep 2022 05:47:46 GMT
Date: Sat, 24 Sep 2022 00:21:08 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
18.164.68.59200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
IP 18.164.68.59:0
File type PEM certificate\012- , ASCII text
Hash 6113f8408c59aebe188d6af273b90743
7398873bf00f99944eaa77ad3ebc0d43c23dba6b
b6e0cc9ad68306208a160f3835fb8da76acc5a82d8fde1da5a98e1de1c11a770
GET /chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Sat, 10 Sep 2022 18:47:45 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Fri, 23 Sep 2022 04:13:03 GMT
etag: "6113f8408c59aebe188d6af273b90743"
x-cache: Hit from cloudfront
via: 1.1 6a4b8b5ea0a3ab45ef51e6681d8320bc.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR50-P4
x-amz-cf-id: QzOwDT6swhfSAPrKfCiUivfZuh_ta4MJhnUcRX2xnhrYe64d5RiXFw==
age: 72486
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 24 Sep 2022 00:21:08 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
18.164.68.6200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 18.164.68.6:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Retry-After, Expires, Alert, Content-Length, ETag, Cache-Control, Content-Type, Backoff, Pragma, Last-Modified
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Date: Sat, 24 Sep 2022 00:16:13 GMT
Cache-Control: max-age=3600, max-age=3600
Expires: Sat, 24 Sep 2022 00:33:00 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 c091804e03ab5aaaa5fa50ae3fb748d2.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: LHR50-P4
X-Amz-Cf-Id: Tgcf5kwWGqJwzgqOUm-qOMAPTl2RcTvOVT2snpqnIxiGQB3734BUpg==
Age: 2888
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash f714931cf870bfa33815fd259b7246fd
38e411ef8ca1b31ead8415ee5f21d98bd9653a86
897675130112daff8bdf6fa25b56faa4b9fdb367daca2b2645ed65c83a2e423f
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1368
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 24 Sep 2022 00:21:09 GMT
Last-Modified: Fri, 23 Sep 2022 23:58:23 GMT
Server: ECS (ska/F6FC)
X-Cache: HIT
Content-Length: 471
push.services.mozilla.com/
52.40.161.235101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 52.40.161.235:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: KHQmslXGkecbAnzKnvb5LA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: 8DRILSbBZ2J3lX2G+uq6p5x9RXk=
ssk-agency.com/UltraBranch/efs/servlet/efs/security.php
66.235.200.147200 OK 41 kB URL HTTP/1.1 ssk-agency.com/UltraBranch/efs/servlet/efs/security.php
IP 66.235.200.147:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (38668), with CRLF line terminators
Hash cd77b655a909943d5ab2efe14da20bbc
b1f3851d85ee623d20f29e5eca6de9e2ac1aac84
102266a2d68dbc0808fecbc8c8b897573f4d624f27280bf7961d9fb5bea0a142
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /UltraBranch/efs/servlet/efs/security.php HTTP/1.1
Host: ssk-agency.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Date: Sat, 24 Sep 2022 00:21:09 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
Last-Modified: Sat, 24 Sep 2022 00:21:09 GMT
CF-Cache-Status: MISS
Server: cloudflare
CF-RAY: 74f75bb7de050b06-OSL
Content-Encoding: gzip
ssk-agency.com/UltraBranch/efs/servlet/efs/ScriptLib/jquery/jquery.maskedinput-1.4.1.min.js
66.235.200.147404 Not Found 238 B URL HTTP/1.1 ssk-agency.com/UltraBranch/efs/servlet/efs/ScriptLib/jquery/jquery.maskedinput-1.4.1.min.js
IP 66.235.200.147:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash f5945c4d5e4298d818d50d70865f2857
f35c3593933af2db1933093809ef78f45b9b7144
d2a3f46998410a6fa09375f2813da63aa04bbc6caae20e770da12530ba881b38
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /UltraBranch/efs/servlet/efs/ScriptLib/jquery/jquery.maskedinput-1.4.1.min.js HTTP/1.1
Host: ssk-agency.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ssk-agency.com/UltraBranch/efs/servlet/efs/security.php
HTTP/1.1 404 Not Found
Date: Sat, 24 Sep 2022 00:21:09 GMT
Content-Type: text/html; charset=iso-8859-1
Transfer-Encoding: chunked
Connection: keep-alive
CF-Cache-Status: MISS
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74f75bbf1e16b527-OSL
Content-Encoding: gzip
ssk-agency.com/UltraBranch/efs/servlet/efs/App_Themes/DefaultTheme/_UtilityStyles_v4.css
66.235.200.147404 Not Found 238 B URL HTTP/1.1 ssk-agency.com/UltraBranch/efs/servlet/efs/App_Themes/DefaultTheme/_UtilityStyles_v4.css
IP 66.235.200.147:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash f5945c4d5e4298d818d50d70865f2857
f35c3593933af2db1933093809ef78f45b9b7144
d2a3f46998410a6fa09375f2813da63aa04bbc6caae20e770da12530ba881b38
Analyzer Verdict Alert quad9 Sinkholed
GET /UltraBranch/efs/servlet/efs/App_Themes/DefaultTheme/_UtilityStyles_v4.css HTTP/1.1
Host: ssk-agency.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ssk-agency.com/UltraBranch/efs/servlet/efs/security.php
HTTP/1.1 404 Not Found
Date: Sat, 24 Sep 2022 00:21:10 GMT
Content-Type: text/html; charset=iso-8859-1
Transfer-Encoding: chunked
Connection: keep-alive
CF-Cache-Status: MISS
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74f75bbf9dc50b51-OSL
Content-Encoding: gzip
ssk-agency.com/UltraBranch/efs/servlet/efs/App_Themes/DefaultTheme/_ExternalTemplateStyles_v4.css
66.235.200.147404 Not Found 238 B URL HTTP/1.1 ssk-agency.com/UltraBranch/efs/servlet/efs/App_Themes/DefaultTheme/_ExternalTemplateStyles_v4.css
IP 66.235.200.147:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash f5945c4d5e4298d818d50d70865f2857
f35c3593933af2db1933093809ef78f45b9b7144
d2a3f46998410a6fa09375f2813da63aa04bbc6caae20e770da12530ba881b38
Analyzer Verdict Alert quad9 Sinkholed
GET /UltraBranch/efs/servlet/efs/App_Themes/DefaultTheme/_ExternalTemplateStyles_v4.css HTTP/1.1
Host: ssk-agency.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ssk-agency.com/UltraBranch/efs/servlet/efs/security.php
HTTP/1.1 404 Not Found
Date: Sat, 24 Sep 2022 00:21:10 GMT
Content-Type: text/html; charset=iso-8859-1
Transfer-Encoding: chunked
Connection: keep-alive
CF-Cache-Status: MISS
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74f75bbf98bdb515-OSL
Content-Encoding: gzip
ssk-agency.com/UltraBranch/efs/servlet/efs/App_Themes/DefaultTheme/_ControlStyles_v4.css
66.235.200.147404 Not Found 238 B URL HTTP/1.1 ssk-agency.com/UltraBranch/efs/servlet/efs/App_Themes/DefaultTheme/_ControlStyles_v4.css
IP 66.235.200.147:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash f5945c4d5e4298d818d50d70865f2857
f35c3593933af2db1933093809ef78f45b9b7144
d2a3f46998410a6fa09375f2813da63aa04bbc6caae20e770da12530ba881b38
Analyzer Verdict Alert quad9 Sinkholed
GET /UltraBranch/efs/servlet/efs/App_Themes/DefaultTheme/_ControlStyles_v4.css HTTP/1.1
Host: ssk-agency.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ssk-agency.com/UltraBranch/efs/servlet/efs/security.php
HTTP/1.1 404 Not Found
Date: Sat, 24 Sep 2022 00:21:10 GMT
Content-Type: text/html; charset=iso-8859-1
Transfer-Encoding: chunked
Connection: keep-alive
CF-Cache-Status: MISS
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74f75bbf9a47b523-OSL
Content-Encoding: gzip
ssk-agency.com/enroll/WebResource.axd?d=pynGkmcFUV13He1Qd6_TZFXjl5sPyt9kOGWz236FVgWAlp2jOnHz37PrZqhXVhK9g2YwSg2&t=636939665749177621
66.235.200.147200 OK 20 B URL HTTP/1.1 ssk-agency.com/enroll/WebResource.axd?d=pynGkmcFUV13He1Qd6_TZFXjl5sPyt9kOGWz236FVgWAlp2jOnHz37PrZqhXVhK9g2YwSg2&t=636939665749177621
IP 66.235.200.147:0
Hash 7029066c27ac6f5ef18d660d5741979a
46c6643f07aa7f6bfe7118de926b86defc5087c4
59869db34853933b239f1e2219cf7d431da006aa919635478511fabbfc8849d2
Analyzer Verdict Alert quad9 Sinkholed
GET /enroll/WebResource.axd?d=pynGkmcFUV13He1Qd6_TZFXjl5sPyt9kOGWz236FVgWAlp2jOnHz37PrZqhXVhK9g2YwSg2&t=636939665749177621 HTTP/1.1
Host: ssk-agency.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ssk-agency.com/UltraBranch/efs/servlet/efs/security.php
HTTP/1.1 200 OK
Date: Sat, 24 Sep 2022 00:21:10 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
Last-Modified: Sat, 24 Sep 2022 00:21:10 GMT
CF-Cache-Status: MISS
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74f75bc099020b06-OSL
Content-Encoding: gzip
ssk-agency.com/enroll/ScriptLib/md5.js
66.235.200.147200 OK 20 B URL HTTP/1.1 ssk-agency.com/enroll/ScriptLib/md5.js
IP 66.235.200.147:0
Hash 7029066c27ac6f5ef18d660d5741979a
46c6643f07aa7f6bfe7118de926b86defc5087c4
59869db34853933b239f1e2219cf7d431da006aa919635478511fabbfc8849d2
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /enroll/ScriptLib/md5.js HTTP/1.1
Host: ssk-agency.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ssk-agency.com/UltraBranch/efs/servlet/efs/security.php
HTTP/1.1 200 OK
Date: Sat, 24 Sep 2022 00:21:10 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
Last-Modified: Sat, 24 Sep 2022 00:21:10 GMT
CF-Cache-Status: MISS
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74f75bc09ef0b527-OSL
Content-Encoding: gzip
ssk-agency.com/enroll/ScriptResource.axd?d=nv7asgRUU0tRmHNR2D6t1EekDsxKEwSZJpikhL_6bvVcyxhDFC5xzBMYL4n2T3xzyjsI9y5GDnWtqEMRDzYwpwEqiv8d0zyvxyVarszwga4VVGDKdqK_TSDL0_zGf2hYrzZ7Qw2&t=4e518d44
66.235.200.147200 OK 20 B URL HTTP/1.1 ssk-agency.com/enroll/ScriptResource.axd?d=nv7asgRUU0tRmHNR2D6t1EekDsxKEwSZJpikhL_6bvVcyxhDFC5xzBMYL4n2T3xzyjsI9y5GDnWtqEMRDzYwpwEqiv8d0zyvxyVarszwga4VVGDKdqK_TSDL0_zGf2hYrzZ7Qw2&t=4e518d44
IP 66.235.200.147:0
Hash 7029066c27ac6f5ef18d660d5741979a
46c6643f07aa7f6bfe7118de926b86defc5087c4
59869db34853933b239f1e2219cf7d431da006aa919635478511fabbfc8849d2
Analyzer Verdict Alert quad9 Sinkholed
GET /enroll/ScriptResource.axd?d=nv7asgRUU0tRmHNR2D6t1EekDsxKEwSZJpikhL_6bvVcyxhDFC5xzBMYL4n2T3xzyjsI9y5GDnWtqEMRDzYwpwEqiv8d0zyvxyVarszwga4VVGDKdqK_TSDL0_zGf2hYrzZ7Qw2&t=4e518d44 HTTP/1.1
Host: ssk-agency.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ssk-agency.com/UltraBranch/efs/servlet/efs/security.php
HTTP/1.1 200 OK
Date: Sat, 24 Sep 2022 00:21:10 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
Last-Modified: Sat, 24 Sep 2022 00:21:10 GMT
CF-Cache-Status: MISS
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74f75bc13f8db527-OSL
Content-Encoding: gzip
ssk-agency.com/enroll/ScriptResource.axd?d=D9drwtSJ4hBA6O8UhT6CQl5kP-DNk5tqsFSKE4QAx7FiqQUkfG0xcYhM38F4ULHzEsr3ccm3WWC8c21Rx1XAbPd7dZSDwlwAN3FBxOF0-Op5UR1aFNYrVvCtHrsmIFUrjLaB6c2og1ihVr9uj93NAWWK3N01&t=ffffffffa580202a
66.235.200.147200 OK 20 B URL HTTP/1.1 ssk-agency.com/enroll/ScriptResource.axd?d=D9drwtSJ4hBA6O8UhT6CQl5kP-DNk5tqsFSKE4QAx7FiqQUkfG0xcYhM38F4ULHzEsr3ccm3WWC8c21Rx1XAbPd7dZSDwlwAN3FBxOF0-Op5UR1aFNYrVvCtHrsmIFUrjLaB6c2og1ihVr9uj93NAWWK3N01&t=ffffffffa580202a
IP 66.235.200.147:0
Hash 7029066c27ac6f5ef18d660d5741979a
46c6643f07aa7f6bfe7118de926b86defc5087c4
59869db34853933b239f1e2219cf7d431da006aa919635478511fabbfc8849d2
Analyzer Verdict Alert quad9 Sinkholed
GET /enroll/ScriptResource.axd?d=D9drwtSJ4hBA6O8UhT6CQl5kP-DNk5tqsFSKE4QAx7FiqQUkfG0xcYhM38F4ULHzEsr3ccm3WWC8c21Rx1XAbPd7dZSDwlwAN3FBxOF0-Op5UR1aFNYrVvCtHrsmIFUrjLaB6c2og1ihVr9uj93NAWWK3N01&t=ffffffffa580202a HTTP/1.1
Host: ssk-agency.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ssk-agency.com/UltraBranch/efs/servlet/efs/security.php
HTTP/1.1 200 OK
Date: Sat, 24 Sep 2022 00:21:10 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
Last-Modified: Sat, 24 Sep 2022 00:21:10 GMT
CF-Cache-Status: MISS
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74f75bc1ae6c0b51-OSL
Content-Encoding: gzip
ssk-agency.com/enroll/ScriptResource.axd?d=JnUc-DEDOM5KzzVKtsL1tcXbu1D4Hj6yCmHmr9cM66AViK3ia2ZDHVT7KW47KHMyBMtKHFfS1WB4puAzjXwId5XQy_jrygJTcv1Xors3xQgEJuGStAVwV63p2PylRvqJXzAeOswFDaHhtAK0W-ax5ffg3ZOYXYmQ06Ttk8PaI-ZJmv_M0&t=ffffffffa580202a
66.235.200.147200 OK 20 B URL HTTP/1.1 ssk-agency.com/enroll/ScriptResource.axd?d=JnUc-DEDOM5KzzVKtsL1tcXbu1D4Hj6yCmHmr9cM66AViK3ia2ZDHVT7KW47KHMyBMtKHFfS1WB4puAzjXwId5XQy_jrygJTcv1Xors3xQgEJuGStAVwV63p2PylRvqJXzAeOswFDaHhtAK0W-ax5ffg3ZOYXYmQ06Ttk8PaI-ZJmv_M0&t=ffffffffa580202a
IP 66.235.200.147:0
Hash 7029066c27ac6f5ef18d660d5741979a
46c6643f07aa7f6bfe7118de926b86defc5087c4
59869db34853933b239f1e2219cf7d431da006aa919635478511fabbfc8849d2
Analyzer Verdict Alert quad9 Sinkholed
GET /enroll/ScriptResource.axd?d=JnUc-DEDOM5KzzVKtsL1tcXbu1D4Hj6yCmHmr9cM66AViK3ia2ZDHVT7KW47KHMyBMtKHFfS1WB4puAzjXwId5XQy_jrygJTcv1Xors3xQgEJuGStAVwV63p2PylRvqJXzAeOswFDaHhtAK0W-ax5ffg3ZOYXYmQ06Ttk8PaI-ZJmv_M0&t=ffffffffa580202a HTTP/1.1
Host: ssk-agency.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ssk-agency.com/UltraBranch/efs/servlet/efs/security.php
HTTP/1.1 200 OK
Date: Sat, 24 Sep 2022 00:21:10 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
Last-Modified: Sat, 24 Sep 2022 00:21:10 GMT
CF-Cache-Status: MISS
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74f75bc1ba74b515-OSL
Content-Encoding: gzip
ssk-agency.com/UltraBranch/efs/servlet/efs/ScriptLib/DotNetScripts_v4.js
66.235.200.147404 Not Found 238 B URL HTTP/1.1 ssk-agency.com/UltraBranch/efs/servlet/efs/ScriptLib/DotNetScripts_v4.js
IP 66.235.200.147:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash f5945c4d5e4298d818d50d70865f2857
f35c3593933af2db1933093809ef78f45b9b7144
d2a3f46998410a6fa09375f2813da63aa04bbc6caae20e770da12530ba881b38
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /UltraBranch/efs/servlet/efs/ScriptLib/DotNetScripts_v4.js HTTP/1.1
Host: ssk-agency.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ssk-agency.com/UltraBranch/efs/servlet/efs/security.php
HTTP/1.1 404 Not Found
Date: Sat, 24 Sep 2022 00:21:10 GMT
Content-Type: text/html; charset=iso-8859-1
Transfer-Encoding: chunked
Connection: keep-alive
CF-Cache-Status: MISS
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74f75bc1db7eb523-OSL
Content-Encoding: gzip
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 83e36beadf427ffc0bab19a2033a99d7
eb221678a87b925ac01d8f897d17df5fc18e3251
c19f433c431fbe31062485dc9ae71478ed4b759b07f10f08b8dc4504f24abb39
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6295
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 24 Sep 2022 00:21:10 GMT
Last-Modified: Fri, 23 Sep 2022 22:36:16 GMT
Server: ECS (ska/F6FC)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 83e36beadf427ffc0bab19a2033a99d7
eb221678a87b925ac01d8f897d17df5fc18e3251
c19f433c431fbe31062485dc9ae71478ed4b759b07f10f08b8dc4504f24abb39
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6295
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 24 Sep 2022 00:21:10 GMT
Last-Modified: Fri, 23 Sep 2022 22:36:16 GMT
Server: ECS (ska/F6FC)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 83e36beadf427ffc0bab19a2033a99d7
eb221678a87b925ac01d8f897d17df5fc18e3251
c19f433c431fbe31062485dc9ae71478ed4b759b07f10f08b8dc4504f24abb39
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6295
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 24 Sep 2022 00:21:10 GMT
Last-Modified: Fri, 23 Sep 2022 22:36:16 GMT
Server: ECS (ska/F6FC)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 83e36beadf427ffc0bab19a2033a99d7
eb221678a87b925ac01d8f897d17df5fc18e3251
c19f433c431fbe31062485dc9ae71478ed4b759b07f10f08b8dc4504f24abb39
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5391
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 24 Sep 2022 00:21:10 GMT
Last-Modified: Fri, 23 Sep 2022 22:51:19 GMT
Server: ECS (ska/F713)
X-Cache: HIT
Content-Length: 471
ssk-agency.com/UltraBranch/efs/servlet/efs/ScriptLib/AriaLib.js
66.235.200.147404 Not Found 238 B URL HTTP/1.1 ssk-agency.com/UltraBranch/efs/servlet/efs/ScriptLib/AriaLib.js
IP 66.235.200.147:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash f5945c4d5e4298d818d50d70865f2857
f35c3593933af2db1933093809ef78f45b9b7144
d2a3f46998410a6fa09375f2813da63aa04bbc6caae20e770da12530ba881b38
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /UltraBranch/efs/servlet/efs/ScriptLib/AriaLib.js HTTP/1.1
Host: ssk-agency.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ssk-agency.com/UltraBranch/efs/servlet/efs/security.php
HTTP/1.1 404 Not Found
Date: Sat, 24 Sep 2022 00:21:10 GMT
Content-Type: text/html; charset=iso-8859-1
Transfer-Encoding: chunked
Connection: keep-alive
CF-Cache-Status: MISS
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74f75bc2a9c30b06-OSL
Content-Encoding: gzip
ssk-agency.com/UltraBranch/efs/servlet/efs/Scripts/jquery-1.10.2.js
66.235.200.147404 Not Found 238 B URL HTTP/1.1 ssk-agency.com/UltraBranch/efs/servlet/efs/Scripts/jquery-1.10.2.js
IP 66.235.200.147:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash f5945c4d5e4298d818d50d70865f2857
f35c3593933af2db1933093809ef78f45b9b7144
d2a3f46998410a6fa09375f2813da63aa04bbc6caae20e770da12530ba881b38
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /UltraBranch/efs/servlet/efs/Scripts/jquery-1.10.2.js HTTP/1.1
Host: ssk-agency.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ssk-agency.com/UltraBranch/efs/servlet/efs/security.php
HTTP/1.1 404 Not Found
Date: Sat, 24 Sep 2022 00:21:10 GMT
Content-Type: text/html; charset=iso-8859-1
Transfer-Encoding: chunked
Connection: keep-alive
CF-Cache-Status: MISS
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74f75bc2a8eeb527-OSL
Content-Encoding: gzip
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 7038cca95198779d8bb479045eb56652
e9dcf9451e849f4d55b0909b33a51bd0b1a35296
0fc47dba3f2789b7c509a4916b1fe3c7b6b30c6778e5354742256125730310f3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0FC47DBA3F2789B7C509A4916B1FE3C7B6B30C6778E5354742256125730310F3"
Last-Modified: Fri, 23 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3445
Expires: Sat, 24 Sep 2022 01:18:35 GMT
Date: Sat, 24 Sep 2022 00:21:10 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 7038cca95198779d8bb479045eb56652
e9dcf9451e849f4d55b0909b33a51bd0b1a35296
0fc47dba3f2789b7c509a4916b1fe3c7b6b30c6778e5354742256125730310f3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0FC47DBA3F2789B7C509A4916B1FE3C7B6B30C6778E5354742256125730310F3"
Last-Modified: Fri, 23 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3445
Expires: Sat, 24 Sep 2022 01:18:35 GMT
Date: Sat, 24 Sep 2022 00:21:10 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 7038cca95198779d8bb479045eb56652
e9dcf9451e849f4d55b0909b33a51bd0b1a35296
0fc47dba3f2789b7c509a4916b1fe3c7b6b30c6778e5354742256125730310f3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0FC47DBA3F2789B7C509A4916B1FE3C7B6B30C6778E5354742256125730310F3"
Last-Modified: Fri, 23 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3445
Expires: Sat, 24 Sep 2022 01:18:35 GMT
Date: Sat, 24 Sep 2022 00:21:10 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 83e36beadf427ffc0bab19a2033a99d7
eb221678a87b925ac01d8f897d17df5fc18e3251
c19f433c431fbe31062485dc9ae71478ed4b759b07f10f08b8dc4504f24abb39
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 24 Sep 2022 00:21:10 GMT
Server: ECS (amb/6B82)
Content-Length: 471
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd1500786-3bbf-46d0-b16e-4aff6d48a585.jpeg
34.120.237.76200 OK 15 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd1500786-3bbf-46d0-b16e-4aff6d48a585.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash f10a12719b387d176497669ba75f0acc
16e42ba7b20555bf5a8615e5f4bb561204aeeb5a
0cb2231817387d43a490565b61e24ea7a3cfcff3281f4ab4379a882cc5c3173f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd1500786-3bbf-46d0-b16e-4aff6d48a585.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 14579
x-amzn-requestid: bce2c126-0883-4255-9246-d8055860f898
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YcCj6FYCoAMF9Yw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63217e18-66ba2e5d64b6a5b32b7ab36b;Sampled=0
x-amzn-remapped-date: Wed, 14 Sep 2022 07:09:12 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 92Pj9IQp3mBJQOW-XuHSK8laPqXOSBOmNbYcm4hSFzc1xqYscQKxMA==
via: 1.1 41e349e25dc4bc856d0e5d2c162428a0.cloudfront.net (CloudFront), 1.1 cd858042f70b416ca05e042acf3908a4.cloudfront.net (CloudFront), 1.1 google
date: Fri, 23 Sep 2022 22:05:15 GMT
age: 8155
etag: "16e42ba7b20555bf5a8615e5f4bb561204aeeb5a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F175a85c3-10d3-4e8f-bb64-d8da75a938c4.jpeg
34.120.237.76200 OK 6.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F175a85c3-10d3-4e8f-bb64-d8da75a938c4.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 007aba90cc24589b974c6039372121d3
c308f846b81275e50122f99a229ae3fec0b5fe4c
dac4561f24f52c33e79e86b0794eab704866a879d6967ec120fdf7bc5a4e2d8c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F175a85c3-10d3-4e8f-bb64-d8da75a938c4.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6294
x-amzn-requestid: 4007bdf7-f31a-414b-8711-f319aa09692b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y7ruHG-loAMF-QA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632e265a-18dc206b23fe3e383c1eb9cc;Sampled=0
x-amzn-remapped-date: Fri, 23 Sep 2022 21:34:18 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: C-XyRAhMGXUgsUrSD0ecJs-6vZMpE5pLjNShVhWYuyNOlehUMFmwmw==
via: 1.1 4f87745990545c1ac0195c157e1668f8.cloudfront.net (CloudFront), 1.1 02d90bf99fd6253b329a53c82f19e224.cloudfront.net (CloudFront), 1.1 google
date: Fri, 23 Sep 2022 21:47:49 GMT
age: 9201
etag: "c308f846b81275e50122f99a229ae3fec0b5fe4c"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4c80a02c-1515-49a8-8ea9-716d3094dcfa.jpeg
34.120.237.76200 OK 6.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4c80a02c-1515-49a8-8ea9-716d3094dcfa.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 146cb832dec96067e5e003b2f7617941
b0697adfd0fab611ba6afae2218645977846c341
e3ebac2261c6243caf678babe5350ae70da1e24fd7a0bbfdb449fd2b933eb237
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4c80a02c-1515-49a8-8ea9-716d3094dcfa.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6510
x-amzn-requestid: 1d584980-5495-4925-b420-ef8b5a5e30e4
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y7ruGGusoAMFe6g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632e265a-370b00862dfed1606ac36797;Sampled=0
x-amzn-remapped-date: Fri, 23 Sep 2022 21:34:18 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: UKUo6081ZsJZLGVpaTA4z6S2fAciJj7IW4RtS7Kl2CiAZjhljs8-ig==
via: 1.1 00f0a41f749793b9dd653153037c957e.cloudfront.net (CloudFront), 1.1 b8c4a4ca04bb1976e020396d211bc8dc.cloudfront.net (CloudFront), 1.1 google
date: Fri, 23 Sep 2022 22:18:53 GMT
age: 7337
etag: "b0697adfd0fab611ba6afae2218645977846c341"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8d9363e8-7e74-47d0-b49b-ac648ebf58c9.jpeg
34.120.237.76200 OK 7.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8d9363e8-7e74-47d0-b49b-ac648ebf58c9.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash d84c4ddafb066f0340a6108644e18e6b
058909341bf245c24fd86fc076acf2a3c246a96c
ca9019fab30635e3548e05e088ff5a5d612ffe7c01f29465c4133710a41c0245
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8d9363e8-7e74-47d0-b49b-ac648ebf58c9.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7829
x-amzn-requestid: 18df2f34-f279-4088-8488-76e429fdbb49
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y7tZ4HqsoAMFrgA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632e290b-42270a1556339a3c5a941f89;Sampled=0
x-amzn-remapped-date: Fri, 23 Sep 2022 21:45:47 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: cSHVvtCZq1SkklylzL4DaNV_mrCx3kDp3fMxKlycHID-oPPMlNW7Bg==
via: 1.1 01c28b52813cd0e82f810c492808b142.cloudfront.net (CloudFront), 1.1 ddaf46a95abcfc80e8eae76235e2127c.cloudfront.net (CloudFront), 1.1 google
date: Fri, 23 Sep 2022 21:59:02 GMT
etag: "058909341bf245c24fd86fc076acf2a3c246a96c"
content-type: image/jpeg
age: 8528
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd5039669-74cb-4d54-9208-94257c765b35.jpeg
34.120.237.76200 OK 9.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd5039669-74cb-4d54-9208-94257c765b35.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 55d224ac83a417772c98bc5080fb6689
a30f9044330824e70dde0dcc785890d981e6fdf5
b2ea4dea200109019a65834b98e31e8fac718a199513810a2819858be2b4470a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd5039669-74cb-4d54-9208-94257c765b35.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9935
x-amzn-requestid: 9eb8463d-172a-40a2-8eed-3c97b1260afe
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y7sQ5FARoAMFXQQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632e2738-3709a2f22ecc033532223b26;Sampled=0
x-amzn-remapped-date: Fri, 23 Sep 2022 21:38:00 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: e5eETCL5yFnoG4HPx0Qv8hjGnlXx5vOL4syMx9uato8nuIHkSvMezg==
via: 1.1 8f22423015641505b8c857a37450d6c0.cloudfront.net (CloudFront), 1.1 35575576af8067e30cfb17c6b9fde8e2.cloudfront.net (CloudFront), 1.1 google
date: Fri, 23 Sep 2022 21:53:50 GMT
age: 8840
etag: "a30f9044330824e70dde0dcc785890d981e6fdf5"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb65d7963-b1a9-4779-92c1-b49bb71f0164.jpeg
34.120.237.76200 OK 6.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb65d7963-b1a9-4779-92c1-b49bb71f0164.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 3f8ec9ca7c408ca57caff620b84f4966
11f9de5bb99c54c12b0911b02792ac2e53d41f91
1c6461a0f9ee587483424f3ae262a8ee0293f1a9a137ebe6f946936bc69cf100
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb65d7963-b1a9-4779-92c1-b49bb71f0164.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6350
x-amzn-requestid: c9024bbf-4ef3-469e-bd6c-d096c1031296
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y7tCDGq9IAMFswQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632e2873-6d66c8f11f6142bd30308b06;Sampled=0
x-amzn-remapped-date: Fri, 23 Sep 2022 21:43:15 GMT
x-amz-cf-pop: SEA73-P2, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: _yXYn6UMNBtXtXnbVjONx46T75rZ-Y3W4KiXPLjlgbQH9Tu8uOrAkg==
via: 1.1 1352c0a623ff0601dd16439f3f225f70.cloudfront.net (CloudFront), 1.1 2f7934de1dfe281c3e4446892eab6462.cloudfront.net (CloudFront), 1.1 google
date: Fri, 23 Sep 2022 21:51:26 GMT
age: 8984
etag: "11f9de5bb99c54c12b0911b02792ac2e53d41f91"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
www.alaskausa.org/css/akusa-express.css
107.162.171.161200 OK 4.6 kB URL HTTP/1.1 www.alaskausa.org/css/akusa-express.css
IP 107.162.171.161:0
File type Unicode text, UTF-8 (with BOM) text, with CRLF line terminators
Hash 825350f09acb37cf5ec0cac6016f5c8d
253d99cb60408d7f60734dcaf60abe848b4281c9
4afa21fd07b5e1574b4637b41e29ae2e93176e941d172c1476ca7fa947f7834e
GET /css/akusa-express.css HTTP/1.1
Host: www.alaskausa.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://ssk-agency.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: text/css
Last-Modified: Thu, 22 Sep 2022 20:53:01 GMT
Accept-Ranges: bytes
ETag: "3dc4db4dc5ced81:0"
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
X-Frame-Options: DENY
Date: Sat, 24 Sep 2022 00:21:08 GMT
Via: 1.1 dca1-bit13014
Vary: Accept-Encoding
Content-Encoding: gzip
Transfer-Encoding: chunked
www.alaskausa.org/js/jsSuite-1.8.js
107.162.171.161302 Object moved 296 B URL HTTP/1.1 www.alaskausa.org/js/jsSuite-1.8.js
IP 107.162.171.161:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text
Hash 33dc966734cea833f261863e35b1f2f3
b1c3e2ea6431645131178005d1eb1677c40cf4e5
21ec73760050529f53f914ef8194651a4c2de4411e4bc36be410947bd3a26dbc
GET /js/jsSuite-1.8.js HTTP/1.1
Host: www.alaskausa.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://ssk-agency.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Object moved
Cache-Control: private
Content-Type: text/html
Location: /pageUnavailable.asp?status=missing
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
X-Frame-Options: DENY
Date: Sat, 24 Sep 2022 00:21:08 GMT
Via: 1.1 dca1-bit13014
Set-Cookie: ASPSESSIONIDQGCTCTSC=NPGMGEJCIEGEPGKNJNAGPKNH; secure; path=/
TS01682a2f=010d5d6462b2ab63434d29b25c4678a1d44ec853e8b570a47bdb1d05946eddb7cc2e4cc738e08bfa64603b03e5b347e16f7ff67c7df4a8e78d4abc9b7a2646f5eaab04a5ea; Path=/; Secure; HTTPOnly
Vary: Accept-Encoding
Content-Encoding: gzip
Transfer-Encoding: chunked
www.alaskausa.org/angelfish.js
107.162.171.161200 OK 8.7 kB URL HTTP/1.1 www.alaskausa.org/angelfish.js
IP 107.162.171.161:0
File type ASCII text, with very long lines (826)
Hash 23acb6d2cd2e079bfe986f0761b957d5
bb1cf7660324be47645c3e239b6fa51faa7421ea
ad8da576b2060355b1ed4f753cb2a19ee37bba690f9fff2442a2654e55f235eb
GET /angelfish.js HTTP/1.1
Host: www.alaskausa.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://ssk-agency.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/javascript
Last-Modified: Thu, 22 Sep 2022 20:53:00 GMT
Accept-Ranges: bytes
ETag: "93445b4dc5ced81:0"
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
X-Frame-Options: DENY
Date: Sat, 24 Sep 2022 00:21:12 GMT
Content-Length: 8704
Via: 1.1 dca1-bit13014
Vary: Accept-Encoding
Content-Encoding: gzip
Connection: Keep-Alive
www.alaskausa.org/pageUnavailable.asp?status=missing
107.162.171.161200 13 kB URL HTTP/1.1 www.alaskausa.org/pageUnavailable.asp?status=missing
IP 107.162.171.161:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (675), with CRLF, LF line terminators
Hash 7aeeabaef4676edc9732113bc19c70b6
854a0f4bddc8b38d68b4da04314a9ad9b1788df6
79c9577dd22d0524f9cad9925ef6f60d89c0b34337b7e2e2a56f5e158cd1f91c
GET /pageUnavailable.asp?status=missing HTTP/1.1
Host: www.alaskausa.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://ssk-agency.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200
Cache-Control: private
Content-Type: text/html
Set-Cookie: ss=c; expires=Mon, 24-Oct-2022 00:21:08 GMT; path=/
lst=1001054591; expires=Sat, 24-Sep-2022 00:36:08 GMT; domain=.alaskausa.org; path=/; secure
ASPSESSIONIDQGCTCTSC=PPGMGEJCOOCHJDNCDKMIAFOA; secure; path=/; HttpOnly
TS01682a2f=010d5d64627fb11c7e5b19c6f7ff038b08f2a800f07ee15e8226969a66cd9969cffafa8a2f23839639190868ff459115f4ce9d2f02d813ea060faebc8f34402ef4733abcdf8159402392a4086cdad628cc4be5ed22; Path=/; Secure; HTTPOnly
TS013395ac=010d5d6462e1b21fec14b27fb70500ca94263100997ee15e8226969a66cd9969cffafa8a2f45a9850b9c1afb537814b128eadb423a09fc1a14ad71456ecc3239badcf6df11; path=/; domain=.alaskausa.org; HTTPonly; Secure
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
X-Frame-Options: DENY
Date: Sat, 24 Sep 2022 00:21:08 GMT
Via: 1.1 dca1-bit13014
Vary: Accept-Encoding
Content-Encoding: gzip
Transfer-Encoding: chunked
www.alaskausa.org/js/jquery-1.11.3.min.js
107.162.171.161200 OK 46 kB URL HTTP/1.1 www.alaskausa.org/js/jquery-1.11.3.min.js
IP 107.162.171.161:0
File type ASCII text, with very long lines (32038)
Hash cf54b56dbd2adb27eb44fe6defb747e6
78e81335c5c317f9d56877d2f011a74a50910dd8
9256346dc8067ab6665a68fe1590b676d13f8ecd353fa2676ec372a2f3338a94
GET /js/jquery-1.11.3.min.js HTTP/1.1
Host: www.alaskausa.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://ssk-agency.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/javascript
Last-Modified: Thu, 22 Sep 2022 20:54:23 GMT
Accept-Ranges: bytes
ETag: "2e94a97ec5ced81:0"
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
X-Frame-Options: DENY
Date: Sat, 24 Sep 2022 00:21:11 GMT
Via: 1.1 dca1-bit13014
Vary: Accept-Encoding
Content-Encoding: gzip
Transfer-Encoding: chunked
ssk-agency.com/UltraBranch/efs/servlet/efs/ScriptLib/jquery/jquery.maskedinput-1.4.1.min.js
66.235.200.147404 Not Found 238 B URL HTTP/1.1 ssk-agency.com/UltraBranch/efs/servlet/efs/ScriptLib/jquery/jquery.maskedinput-1.4.1.min.js
IP 66.235.200.147:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash f5945c4d5e4298d818d50d70865f2857
f35c3593933af2db1933093809ef78f45b9b7144
d2a3f46998410a6fa09375f2813da63aa04bbc6caae20e770da12530ba881b38
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /UltraBranch/efs/servlet/efs/ScriptLib/jquery/jquery.maskedinput-1.4.1.min.js HTTP/1.1
Host: ssk-agency.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ssk-agency.com/UltraBranch/efs/servlet/efs/security.php
HTTP/1.1 404 Not Found
Date: Sat, 24 Sep 2022 00:21:11 GMT
Content-Type: text/html; charset=iso-8859-1
Transfer-Encoding: chunked
Connection: keep-alive
CF-Cache-Status: HIT
Age: 2
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74f75bc939110b51-OSL
Content-Encoding: gzip
www.alaskausa.org/images/nav/akusafcu_logo.png
107.162.171.161200 OK 16 kB URL HTTP/1.1 www.alaskausa.org/images/nav/akusafcu_logo.png
IP 107.162.171.161:0
File type PNG image data, 220 x 70, 8-bit/color RGBA, non-interlaced\012- data
Hash dc43cc5c96d54639189781edf322cac9
26c53d9c975f997481520a336ac5f6a22f115c74
6ceabe544edbb8513733f30b14c1d17a2fa51e461f972c31d17e5450d4718603
GET /images/nav/akusafcu_logo.png HTTP/1.1
Host: www.alaskausa.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://ssk-agency.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: image/png
Last-Modified: Thu, 22 Sep 2022 20:54:17 GMT
Accept-Ranges: bytes
ETag: "2e2fbb7ac5ced81:0"
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
X-Frame-Options: DENY
Date: Sat, 24 Sep 2022 00:21:09 GMT
Content-Length: 16228
Via: 1.1 dca1-bit13014
www.alaskausa.org/images/nav/EHL_2016_gray.png
107.162.171.161200 OK 3.3 kB URL HTTP/1.1 www.alaskausa.org/images/nav/EHL_2016_gray.png
IP 107.162.171.161:0
File type PNG image data, 55 x 59, 8-bit colormap, non-interlaced\012- data
Hash 859cf2ed8319f4931c1e2371bee8b46d
ff866fe6e3071999e6c057dae5aed927aefd047f
1c7cd686a01f2dcffc1f55119624e9166300721172b4e7ad284ff734bc8db0a1
GET /images/nav/EHL_2016_gray.png HTTP/1.1
Host: www.alaskausa.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://ssk-agency.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: image/png
Last-Modified: Thu, 22 Sep 2022 20:55:27 GMT
Accept-Ranges: bytes
ETag: "66e8dfa4c5ced81:0"
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
X-Frame-Options: DENY
Date: Sat, 24 Sep 2022 00:21:12 GMT
Content-Length: 3317
Via: 1.1 dca1-bit13014
www.alaskausa.org/images/images.asp?ref=NCUA_2016_gray.png
107.162.171.161200 OK 4.3 kB URL HTTP/1.1 www.alaskausa.org/images/images.asp?ref=NCUA_2016_gray.png
IP 107.162.171.161:0
File type PNG image data, 146 x 65, 8-bit colormap, non-interlaced\012- data
Hash 38b7240d957be9f71b5271246fb01f67
9007e7baf8e357ac11c8541c871e48960c8d9f30
d6641292ca4109173a6ca88b1353f0a6edeaad1c5f90e4c69c6999943109a878
GET /images/images.asp?ref=NCUA_2016_gray.png HTTP/1.1
Host: www.alaskausa.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://ssk-agency.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: private
Content-Type: image/x-png
Expires: Sat, 24 Sep 2022 00:21:10 GMT
Content-Disposition: filename="ncua_2016_gray.png"
Set-Cookie: lst=95740287; expires=Sat, 24-Sep-2022 00:36:10 GMT; domain=.alaskausa.org; path=/; secure
ASPSESSIONIDQGCTCTSC=DAHMGEJCDKEMHHKBAPFPGILA; secure; path=/; HttpOnly
TS01682a2f=010d5d64623d02a84886a40a4a3ee643fbe90d355d6635aa8ef350d288b47b3fbfb241f66bed437a87e5f3a733327fb82654d8f11d9396d6290855c4b6814cfda1c1247a6c; Path=/; Secure; HTTPOnly
TS013395ac=010d5d6462a8e4711a03cf98e687b1e7880e24b3a16635aa8ef350d288b47b3fbfb241f66b9ed090c2dbf62c559a7359c7ae2b1ee982f9e59f96caa71f7153ad7e5a2bb690; path=/; domain=.alaskausa.org; HTTPonly; Secure
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
X-Frame-Options: DENY
Date: Sat, 24 Sep 2022 00:21:09 GMT
Connection: close
Via: 1.1 dca1-bit13014
Transfer-Encoding: chunked
www.alaskausa.org/js/jsSuite-1.8.js
107.162.171.161302 Object moved 296 B URL HTTP/1.1 www.alaskausa.org/js/jsSuite-1.8.js
IP 107.162.171.161:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text
Hash 33dc966734cea833f261863e35b1f2f3
b1c3e2ea6431645131178005d1eb1677c40cf4e5
21ec73760050529f53f914ef8194651a4c2de4411e4bc36be410947bd3a26dbc
GET /js/jsSuite-1.8.js HTTP/1.1
Host: www.alaskausa.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://ssk-agency.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Object moved
Cache-Control: private
Content-Type: text/html
Location: /pageUnavailable.asp?status=missing
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
X-Frame-Options: DENY
Date: Sat, 24 Sep 2022 00:21:12 GMT
Via: 1.1 dca1-bit13014
Set-Cookie: ASPSESSIONIDCEBSAQDS=MMALEFBDMILIFLNHCGGMKIFD; secure; path=/
TS01682a2f=010d5d64624ec1c1c8bbac991f926bf18d66feb3305318900474c042677367f75319bcb447b30bef6e0d6fbdb26e07b4a00bc9777a3676f940543f851ca2287b79d385e8ac; Path=/; Secure; HTTPOnly
Vary: Accept-Encoding
Content-Encoding: gzip
Transfer-Encoding: chunked
ssk-agency.com/UltraBranch/efs/servlet/efs/App_Themes/DefaultTheme/ControlImages/close.png
66.235.200.147404 Not Found 238 B URL HTTP/1.1 ssk-agency.com/UltraBranch/efs/servlet/efs/App_Themes/DefaultTheme/ControlImages/close.png
IP 66.235.200.147:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash f5945c4d5e4298d818d50d70865f2857
f35c3593933af2db1933093809ef78f45b9b7144
d2a3f46998410a6fa09375f2813da63aa04bbc6caae20e770da12530ba881b38
Analyzer Verdict Alert quad9 Sinkholed
GET /UltraBranch/efs/servlet/efs/App_Themes/DefaultTheme/ControlImages/close.png HTTP/1.1
Host: ssk-agency.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ssk-agency.com/UltraBranch/efs/servlet/efs/security.php
HTTP/1.1 404 Not Found
Date: Sat, 24 Sep 2022 00:21:11 GMT
Content-Type: text/html; charset=iso-8859-1
Transfer-Encoding: chunked
Connection: keep-alive
CF-Cache-Status: MISS
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74f75bc8fce1b527-OSL
Content-Encoding: gzip
www.alaskausa.org/pageUnavailable.asp?status=missing
107.162.171.161200 13 kB URL HTTP/1.1 www.alaskausa.org/pageUnavailable.asp?status=missing
IP 107.162.171.161:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (675), with CRLF, LF line terminators
Hash 7aeeabaef4676edc9732113bc19c70b6
854a0f4bddc8b38d68b4da04314a9ad9b1788df6
79c9577dd22d0524f9cad9925ef6f60d89c0b34337b7e2e2a56f5e158cd1f91c
GET /pageUnavailable.asp?status=missing HTTP/1.1
Host: www.alaskausa.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://ssk-agency.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200
Cache-Control: private
Content-Type: text/html
Set-Cookie: ss=c; expires=Mon, 24-Oct-2022 00:21:12 GMT; path=/
lst=676618623; expires=Sat, 24-Sep-2022 00:36:12 GMT; domain=.alaskausa.org; path=/; secure
ASPSESSIONIDCEBSAQDS=OMALEFBDNAKLMINBMKONNNGF; secure; path=/; HttpOnly
TS01682a2f=010d5d64627c0d70b900422e3959836537218645beae513925925c0aabebf349c405c75d64b99c032632e9075561351d82dcc383f10185ce38ff2d0317d43da31c187e7052185af6b729295de2df5c844030d6d8d7; Path=/; Secure; HTTPOnly
TS013395ac=010d5d646210e73179acee56251b6ac4e5e8252516ae513925925c0aabebf349c405c75d64edc68a5eab6ee7906202de32b4f2c6e6ca2609da9deb1604881a1a59ee9ab2b7; path=/; domain=.alaskausa.org; HTTPonly; Secure
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
X-Frame-Options: DENY
Date: Sat, 24 Sep 2022 00:21:12 GMT
Via: 1.1 dca1-bit13014
Vary: Accept-Encoding
Content-Encoding: gzip
Transfer-Encoding: chunked
ssk-agency.com/UltraBranch/efs/servlet/efs/App_Themes/DefaultTheme/_ControlStyles_v4.css
66.235.200.147404 Not Found 238 B URL HTTP/1.1 ssk-agency.com/UltraBranch/efs/servlet/efs/App_Themes/DefaultTheme/_ControlStyles_v4.css
IP 66.235.200.147:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash f5945c4d5e4298d818d50d70865f2857
f35c3593933af2db1933093809ef78f45b9b7144
d2a3f46998410a6fa09375f2813da63aa04bbc6caae20e770da12530ba881b38
Analyzer Verdict Alert quad9 Sinkholed
GET /UltraBranch/efs/servlet/efs/App_Themes/DefaultTheme/_ControlStyles_v4.css HTTP/1.1
Host: ssk-agency.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ssk-agency.com/UltraBranch/efs/servlet/efs/security.php
HTTP/1.1 404 Not Found
Date: Sat, 24 Sep 2022 00:21:11 GMT
Content-Type: text/html; charset=iso-8859-1
Transfer-Encoding: chunked
Connection: keep-alive
CF-Cache-Status: HIT
Age: 1
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74f75bcc38d0b515-OSL
Content-Encoding: gzip
ssk-agency.com/UltraBranch/efs/servlet/efs/App_Themes/DefaultTheme/_ExternalTemplateStyles_v4.css
66.235.200.147404 Not Found 238 B URL HTTP/1.1 ssk-agency.com/UltraBranch/efs/servlet/efs/App_Themes/DefaultTheme/_ExternalTemplateStyles_v4.css
IP 66.235.200.147:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash f5945c4d5e4298d818d50d70865f2857
f35c3593933af2db1933093809ef78f45b9b7144
d2a3f46998410a6fa09375f2813da63aa04bbc6caae20e770da12530ba881b38
Analyzer Verdict Alert quad9 Sinkholed
GET /UltraBranch/efs/servlet/efs/App_Themes/DefaultTheme/_ExternalTemplateStyles_v4.css HTTP/1.1
Host: ssk-agency.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ssk-agency.com/UltraBranch/efs/servlet/efs/security.php
HTTP/1.1 404 Not Found
Date: Sat, 24 Sep 2022 00:21:11 GMT
Content-Type: text/html; charset=iso-8859-1
Transfer-Encoding: chunked
Connection: keep-alive
CF-Cache-Status: HIT
Age: 1
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74f75bcc38b4b523-OSL
Content-Encoding: gzip
ssk-agency.com/UltraBranch/efs/servlet/efs/App_Themes/DefaultTheme/_UtilityStyles_v4.css
66.235.200.147404 Not Found 238 B URL HTTP/1.1 ssk-agency.com/UltraBranch/efs/servlet/efs/App_Themes/DefaultTheme/_UtilityStyles_v4.css
IP 66.235.200.147:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash f5945c4d5e4298d818d50d70865f2857
f35c3593933af2db1933093809ef78f45b9b7144
d2a3f46998410a6fa09375f2813da63aa04bbc6caae20e770da12530ba881b38
Analyzer Verdict Alert quad9 Sinkholed
GET /UltraBranch/efs/servlet/efs/App_Themes/DefaultTheme/_UtilityStyles_v4.css HTTP/1.1
Host: ssk-agency.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ssk-agency.com/UltraBranch/efs/servlet/efs/security.php
HTTP/1.1 404 Not Found
Date: Sat, 24 Sep 2022 00:21:11 GMT
Content-Type: text/html; charset=iso-8859-1
Transfer-Encoding: chunked
Connection: keep-alive
CF-Cache-Status: HIT
Age: 1
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74f75bcc3ed2b527-OSL
Content-Encoding: gzip
ssk-agency.com/UltraBranch/efs/servlet/efs/ScriptLib/DotNetScripts_v4.js
66.235.200.147404 Not Found 238 B URL HTTP/1.1 ssk-agency.com/UltraBranch/efs/servlet/efs/ScriptLib/DotNetScripts_v4.js
IP 66.235.200.147:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash f5945c4d5e4298d818d50d70865f2857
f35c3593933af2db1933093809ef78f45b9b7144
d2a3f46998410a6fa09375f2813da63aa04bbc6caae20e770da12530ba881b38
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /UltraBranch/efs/servlet/efs/ScriptLib/DotNetScripts_v4.js HTTP/1.1
Host: ssk-agency.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ssk-agency.com/UltraBranch/efs/servlet/efs/security.php
HTTP/1.1 404 Not Found
Date: Sat, 24 Sep 2022 00:21:11 GMT
Content-Type: text/html; charset=iso-8859-1
Transfer-Encoding: chunked
Connection: keep-alive
CF-Cache-Status: HIT
Age: 1
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74f75bcc4a220b51-OSL
Content-Encoding: gzip
ssk-agency.com/UltraBranch/efs/servlet/efs/ScriptLib/AriaLib.js
66.235.200.147404 Not Found 238 B URL HTTP/1.1 ssk-agency.com/UltraBranch/efs/servlet/efs/ScriptLib/AriaLib.js
IP 66.235.200.147:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash f5945c4d5e4298d818d50d70865f2857
f35c3593933af2db1933093809ef78f45b9b7144
d2a3f46998410a6fa09375f2813da63aa04bbc6caae20e770da12530ba881b38
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /UltraBranch/efs/servlet/efs/ScriptLib/AriaLib.js HTTP/1.1
Host: ssk-agency.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ssk-agency.com/UltraBranch/efs/servlet/efs/security.php
HTTP/1.1 404 Not Found
Date: Sat, 24 Sep 2022 00:21:11 GMT
Content-Type: text/html; charset=iso-8859-1
Transfer-Encoding: chunked
Connection: keep-alive
CF-Cache-Status: HIT
Age: 1
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74f75bcc7eeeb527-OSL
Content-Encoding: gzip
ssk-agency.com/UltraBranch/efs/servlet/efs/Scripts/jquery-1.10.2.js
66.235.200.147404 Not Found 238 B URL HTTP/1.1 ssk-agency.com/UltraBranch/efs/servlet/efs/Scripts/jquery-1.10.2.js
IP 66.235.200.147:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash f5945c4d5e4298d818d50d70865f2857
f35c3593933af2db1933093809ef78f45b9b7144
d2a3f46998410a6fa09375f2813da63aa04bbc6caae20e770da12530ba881b38
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /UltraBranch/efs/servlet/efs/Scripts/jquery-1.10.2.js HTTP/1.1
Host: ssk-agency.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ssk-agency.com/UltraBranch/efs/servlet/efs/security.php
HTTP/1.1 404 Not Found
Date: Sat, 24 Sep 2022 00:21:11 GMT
Content-Type: text/html; charset=iso-8859-1
Transfer-Encoding: chunked
Connection: keep-alive
CF-Cache-Status: HIT
Age: 1
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74f75bcc8902b515-OSL
Content-Encoding: gzip
ssk-agency.com/UltraBranch/efs/servlet/efs/App_Themes/DefaultTheme/ControlImages/close.png
66.235.200.147404 Not Found 238 B URL HTTP/1.1 ssk-agency.com/UltraBranch/efs/servlet/efs/App_Themes/DefaultTheme/ControlImages/close.png
IP 66.235.200.147:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash f5945c4d5e4298d818d50d70865f2857
f35c3593933af2db1933093809ef78f45b9b7144
d2a3f46998410a6fa09375f2813da63aa04bbc6caae20e770da12530ba881b38
Analyzer Verdict Alert quad9 Sinkholed
GET /UltraBranch/efs/servlet/efs/App_Themes/DefaultTheme/ControlImages/close.png HTTP/1.1
Host: ssk-agency.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ssk-agency.com/UltraBranch/efs/servlet/efs/security.php
HTTP/1.1 404 Not Found
Date: Sat, 24 Sep 2022 00:21:11 GMT
Content-Type: text/html; charset=iso-8859-1
Transfer-Encoding: chunked
Connection: keep-alive
CF-Cache-Status: HIT
Age: 0
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74f75bcca8f1b523-OSL
Content-Encoding: gzip
www.alaskausa.org/css/nav/pgMainEdge.png
107.162.171.161200 OK 960 B URL HTTP/1.1 www.alaskausa.org/css/nav/pgMainEdge.png
IP 107.162.171.161:0
File type PNG image data, 1 x 3, 8-bit colormap, non-interlaced\012- data
Hash a5ea8f10a3e08ef3bc3acbe1add70acd
3da6cb1b65f0e536b05bb368c1358be49a445341
1fb28d9c14ec42912599df0f34b14c6e6f996084ca13e06bb11dcb4c9459ed34
GET /css/nav/pgMainEdge.png HTTP/1.1
Host: www.alaskausa.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://ssk-agency.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: image/png
Last-Modified: Thu, 22 Sep 2022 20:53:02 GMT
Accept-Ranges: bytes
ETag: "3f835c4ec5ced81:0"
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
X-Frame-Options: DENY
Date: Sat, 24 Sep 2022 00:21:09 GMT
Content-Length: 960
Via: 1.1 dca1-bit13014
Vary: Accept-Encoding
www.alaskausa.org/css/nav/header_bg.png
107.162.171.161200 OK 8.1 kB URL HTTP/1.1 www.alaskausa.org/css/nav/header_bg.png
IP 107.162.171.161:0
File type PNG image data, 156 x 165, 8-bit/color RGB, non-interlaced\012- data
Hash f420d4563192f414fabc27808342a8b2
80d69a4a339f6ddfe991d41d798d9a58fa0a21ea
5cd6b433131a0f7972117a1de73410cd07059f385b4dceb1e99b1c9dd6351fb6
GET /css/nav/header_bg.png HTTP/1.1
Host: www.alaskausa.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.alaskausa.org/css/akusa-express.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Content-Type: image/png
Last-Modified: Thu, 22 Sep 2022 20:53:06 GMT
Accept-Ranges: bytes
ETag: "a518d50c5ced81:0"
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
X-Frame-Options: DENY
Date: Sat, 24 Sep 2022 00:21:12 GMT
Content-Length: 8058
Via: 1.1 dca1-bit13014
ssk-agency.com/agf.gif?t=pv&pv=%2FUltraBranch%2Fefs%2Fservlet%2Fefs%2Fsecurity.php&tt=Security+Question&vt=new&sc=direct&md=(none)&dp=24&sh=1024&sw=1280&bn=Firefox&bv=96&pn=Linux&pr=x86_64&bl=en-us&js=1.5&hn=ssk-agency.com&vi=11112590&vs=111125901663978871&_=724180&v=040
66.235.200.147200 OK 20 B URL HTTP/1.1 ssk-agency.com/agf.gif?t=pv&pv=%2FUltraBranch%2Fefs%2Fservlet%2Fefs%2Fsecurity.php&tt=Security+Question&vt=new&sc=direct&md=(none)&dp=24&sh=1024&sw=1280&bn=Firefox&bv=96&pn=Linux&pr=x86_64&bl=en-us&js=1.5&hn=ssk-agency.com&vi=11112590&vs=111125901663978871&_=724180&v=040
IP 66.235.200.147:0
Hash 7029066c27ac6f5ef18d660d5741979a
46c6643f07aa7f6bfe7118de926b86defc5087c4
59869db34853933b239f1e2219cf7d431da006aa919635478511fabbfc8849d2
Analyzer Verdict Alert quad9 Sinkholed
GET /agf.gif?t=pv&pv=%2FUltraBranch%2Fefs%2Fservlet%2Fefs%2Fsecurity.php&tt=Security+Question&vt=new&sc=direct&md=(none)&dp=24&sh=1024&sw=1280&bn=Firefox&bv=96&pn=Linux&pr=x86_64&bl=en-us&js=1.5&hn=ssk-agency.com&vi=11112590&vs=111125901663978871&_=724180&v=040 HTTP/1.1
Host: ssk-agency.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ssk-agency.com/UltraBranch/efs/servlet/efs/security.php
Cookie: agft=d14a40fee88eaf5c557fc9c7a9a9fe26.11112590; agfs=d14a40fee88eaf5c557fc9c7a9a9fe26.11112590&1663978871&1663978871&direct&(none)&&&&&
HTTP/1.1 200 OK
Date: Sat, 24 Sep 2022 00:21:12 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
Last-Modified: Sat, 24 Sep 2022 00:21:12 GMT
CF-Cache-Status: MISS
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74f75bccaf07b527-OSL
Content-Encoding: gzip
www.alaskausa.org/favicon.ico
107.162.171.161200 OK 1.2 kB URL HTTP/1.1 www.alaskausa.org/favicon.ico
IP 107.162.171.161:0
File type MS Windows icon resource - 1 icon, 16x16, 32 bits/pixel\012- data
Hash a640140069c78a92f718c9fb63614d72
1418d5de4993b63c2b11a64df62a03ae8ebb8f95
5b8545b9cf60e23bd9c7eacef43e9b85e2843b1d90328b5b6fca9ef851347808
GET /favicon.ico HTTP/1.1
Host: www.alaskausa.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://ssk-agency.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: image/x-icon
Last-Modified: Thu, 22 Sep 2022 20:54:13 GMT
Accept-Ranges: bytes
ETag: "bf96a178c5ced81:0"
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
X-Frame-Options: DENY
Date: Sat, 24 Sep 2022 00:21:09 GMT
Content-Length: 1150
Via: 1.1 dca1-bit13014
www.alaskausa.org/images/icon-76@2x.png
107.162.171.161200 OK 22 kB URL HTTP/1.1 www.alaskausa.org/images/icon-76@2x.png
IP 107.162.171.161:0
File type PNG image data, 152 x 152, 8-bit/color RGB, non-interlaced\012- data
Hash aa361a75d2fd36154747173a3a6cd422
8c14f2c0a0f3b2e1a265313239d6b9f7383808f9
31079b4bcec10fbd6e7530a766c97d05b5bc5e143af55a7599633fe3fd1c955e
GET /images/icon-76@2x.png HTTP/1.1
Host: www.alaskausa.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://ssk-agency.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: image/png
Last-Modified: Thu, 22 Sep 2022 20:54:16 GMT
Accept-Ranges: bytes
ETag: "15129a7ac5ced81:0"
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
X-Frame-Options: DENY
Date: Sat, 24 Sep 2022 00:21:12 GMT
Content-Length: 21833
Via: 1.1 dca1-bit13014