Overview

URL cascadiasolutions.ca/en/UltraBranch/efs/servlet/efs/security.php
IP172.67.209.163
ASNCLOUDFLARENET
Location United States
Report completed2022-09-30 13:25:22 UTC
StatusLoading report..
urlquery Alerts No alerts detected


Settings

UserAgentMozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Referer


Intrusion Detection Systems

Suricata /w Emerging Threats Pro  No alerts detected


Blocklists

OpenPhish
Scan Date Severity Indicator Comment
2022-09-30 2 cascadiasolutions.ca/en/UltraBranch/efs/servlet/efs/security.php Alaska USA Federal Credit Union
PhishTank  No alerts detected
Fortinet's Web Filter
Scan Date Severity Indicator Comment
2022-09-30 2 cascadiasolutions.ca/en/UltraBranch/efs/servlet/efs/security.php Phishing
2022-09-30 2 cascadiasolutions.ca/enroll/ScriptLib/md5.js Phishing
2022-09-30 2 cascadiasolutions.ca/en/UltraBranch/efs/servlet/efs/ScriptLib/jquery/jquery (...) Phishing
2022-09-30 2 cascadiasolutions.ca/en/UltraBranch/efs/servlet/efs/ScriptLib/DotNetScripts (...) Phishing
2022-09-30 2 cascadiasolutions.ca/en/UltraBranch/efs/servlet/efs/ScriptLib/AriaLib.js Phishing
2022-09-30 2 cascadiasolutions.ca/en/UltraBranch/efs/servlet/efs/Scripts/jquery-1.10.2.js Phishing
2022-09-30 2 cascadiasolutions.ca/en/UltraBranch/efs/servlet/efs/ScriptLib/jquery/jquery (...) Phishing
2022-09-30 2 cascadiasolutions.ca/enroll/ScriptLib/md5.js Phishing
2022-09-30 2 cascadiasolutions.ca/en/UltraBranch/efs/servlet/efs/ScriptLib/DotNetScripts (...) Phishing
2022-09-30 2 cascadiasolutions.ca/en/UltraBranch/efs/servlet/efs/ScriptLib/AriaLib.js Phishing
2022-09-30 2 cascadiasolutions.ca/en/UltraBranch/efs/servlet/efs/Scripts/jquery-1.10.2.js Phishing
mnemonic secure dns  No alerts detected
Quad9 DNS  No alerts detected


Files

No files detected



Passive DNS (9)

Passive DNS Source Fully Qualifying Domain Name Rank First Seen Last Seen IP Comment
mnemonic passive DNS firefox.settings.services.mozilla.com (2) 867 2020-05-27 20:08:30 UTC 2022-09-30 11:48:23 UTC 143.204.55.36
mnemonic passive DNS r3.o.lencr.org (7) 344 2020-12-02 08:52:13 UTC 2022-09-30 04:55:29 UTC 23.36.76.226
mnemonic passive DNS cascadiasolutions.ca (28) 0 2019-04-07 21:18:17 UTC 2022-09-30 04:39:50 UTC 172.67.209.163 Unknown ranking
mnemonic passive DNS ocsp.digicert.com (4) 86 2012-05-21 07:02:23 UTC 2022-09-30 10:22:16 UTC 93.184.220.29
mnemonic passive DNS www.alaskausa.org (12) 258465 2014-07-12 19:45:14 UTC 2022-09-30 03:23:24 UTC 107.162.171.161
mnemonic passive DNS content-signature-2.cdn.mozilla.net (1) 1152 2020-11-03 12:26:46 UTC 2022-09-30 05:34:07 UTC 34.160.144.191
mnemonic passive DNS contile.services.mozilla.com (1) 1114 2021-05-27 18:32:35 UTC 2022-09-30 04:56:26 UTC 34.117.237.239
mnemonic passive DNS push.services.mozilla.com (1) 2140 2015-09-03 10:29:36 UTC 2022-09-30 05:12:28 UTC 44.237.239.70
mnemonic passive DNS img-getpocket.cdn.mozilla.net (6) 1631 2017-09-01 03:40:57 UTC 2022-09-30 04:01:52 UTC 34.120.237.76


Recent reports on same IP/ASN/Domain/Screenshot

Last 5 reports on IP: 172.67.209.163

Date UQ / IDS / BL URL IP
2022-10-05 17:37:32 +0000
0 - 0 - 3 semsamty.com/iitu/enmote 172.67.209.163
2022-10-05 17:30:01 +0000
0 - 0 - 3 semsamty.com/iitu/iupmsissouaq 172.67.209.163
2022-10-02 23:47:29 +0000
0 - 0 - 3 semsamty.com/iitu/iupmsissouaq 172.67.209.163
2022-10-02 03:35:36 +0000
0 - 0 - 2 cascadiasolutions.ca/en/UltraBranch/efs/servl (...) 172.67.209.163
2022-10-02 02:07:21 +0000
0 - 0 - 3 cascadiasolutions.ca/en/UltraBranch/login.php (...) 172.67.209.163

Last 5 reports on ASN: CLOUDFLARENET

Date UQ / IDS / BL URL IP
2022-11-28 22:56:51 +0000
0 - 0 - 5 app-tipps.com/best-music-streaming-services-i (...) 104.21.92.231
2022-11-28 22:55:39 +0000
0 - 0 - 1 j78h9b.cyou/ 172.67.141.134
2022-11-28 22:55:38 +0000
0 - 0 - 1 aidwoman.top/ 104.21.54.134
2022-11-28 22:55:36 +0000
0 - 0 - 1 contradictiondespatch.top/ 104.21.58.166
2022-11-28 22:55:33 +0000
0 - 0 - 1 thjlybl.cn/ 172.67.215.33

Last 5 reports on domain: cascadiasolutions.ca

Date UQ / IDS / BL URL IP
2022-10-02 03:35:36 +0000
0 - 0 - 2 cascadiasolutions.ca/en/UltraBranch/efs/servl (...) 172.67.209.163
2022-10-02 02:07:21 +0000
0 - 0 - 3 cascadiasolutions.ca/en/UltraBranch/login.php (...) 172.67.209.163
2022-10-02 01:38:25 +0000
0 - 0 - 3 cascadiasolutions.ca/en/UltraBranch/login.php (...) 104.21.69.154
2022-10-02 01:37:02 +0000
0 - 0 - 2 cascadiasolutions.ca/en/UltraBranch/efs/servl (...) 188.114.96.1
2022-10-01 22:25:29 +0000
0 - 0 - 3 cascadiasolutions.ca/en/UltraBranch/login.php (...) 172.67.209.163

Last 5 reports with similar screenshot

Date UQ / IDS / BL URL IP
2022-10-01 03:35:02 +0000
0 - 0 - 12 cascadiasolutions.ca/en/UltraBranch/efs/servl (...) 172.67.209.163
2022-09-30 22:44:47 +0000
0 - 0 - 2 cascadiasolutions.ca/en/UltraBranch/efs/servl (...) 172.67.209.163
2022-09-30 16:32:12 +0000
0 - 0 - 12 cascadiasolutions.ca/en/UltraBranch/efs/servl (...) 172.67.209.163
2022-09-30 02:53:37 +0000
0 - 0 - 11 cascadiasolutions.ca/en/UltraBranch/efs/servl (...) 172.67.209.163
2022-09-24 00:21:19 +0000
0 - 0 - 33 ssk-agency.com/UltraBranch/efs/servlet/efs/se (...) 66.235.200.147


JavaScript

Executed Scripts (18)


Executed Evals (0)


Executed Writes (0)



HTTP Transactions (62)


Request Response
                                        
                                            GET /v1/ HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.36
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Length, Backoff, Content-Type, Retry-After, Alert
Cache-Control: max-age=3600
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Fri, 30 Sep 2022 12:54:59 GMT
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 bb1da7862c4968b28920b91b324095c0.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 4B6Rsk2xg7dqtJ8bKpuQrkNmdyPgvU44Fh1EVTCRJBUr5ywNwCy00Q==
Age: 1812


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size:   939
Md5:    2d12f67fe57a87e7366b662d153a5582
Sha1:   d7b02d81cc74f24a251d9363e0f4b0a149264ec1
Sha256: 73c273c0b5a2de3cb970b8e8c187999d3b55e760dc7766dab4bb76428d19b551
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "763E2DADFDD286A51327CD2000CA335E30CD0B9B7267875D22CA33F7556BA200"
Last-Modified: Fri, 30 Sep 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15839
Expires: Fri, 30 Sep 2022 17:49:10 GMT
Date: Fri, 30 Sep 2022 13:25:11 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "DFF04734315B51FC11069E2D21B5BE37B03D28AD01986E1AE2C96AFC6BA31859"
Last-Modified: Thu, 29 Sep 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6337
Expires: Fri, 30 Sep 2022 15:10:48 GMT
Date: Fri, 30 Sep 2022 13:25:11 GMT
Connection: keep-alive

                                        
                                            GET /chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain HTTP/1.1 
Host: content-signature-2.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         34.160.144.191
HTTP/2 200 OK
content-type: binary/octet-stream
                                        
x-amz-id-2: vBKNnq5r3uGtw2Y5IyP8URr8fUVSbXrOPZlQJd78xwtkTHINRWcgbbysCfnaAMVSBk+8ZWvDDS4=
x-amz-request-id: 7TWRAVGD5YA14QRR
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Fri, 30 Sep 2022 12:48:36 GMT
age: 2195
last-modified: Sat, 10 Sep 2022 18:47:45 GMT
etag: "6113f8408c59aebe188d6af273b90743"
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PEM certificate\012- , ASCII text
Size:   5348
Md5:    6113f8408c59aebe188d6af273b90743
Sha1:   7398873bf00f99944eaa77ad3ebc0d43c23dba6b
Sha256: b6e0cc9ad68306208a160f3835fb8da76acc5a82d8fde1da5a98e1de1c11a770
                                        
                                            GET /v1/tiles HTTP/1.1 
Host: contile.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.117.237.239
HTTP/2 200 OK
content-type: application/json
                                        
server: nginx
date: Fri, 30 Sep 2022 13:25:11 GMT
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   12
Md5:    23e88fb7b99543fb33315b29b1fad9d6
Sha1:   a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
Sha256: 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
                                        
                                            GET /en/UltraBranch/efs/servlet/efs/security.php HTTP/1.1 
Host: cascadiasolutions.ca
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Cookie: _gcl_au=1.1.2140339053.1664538884; _ga_R11FYFZ8HF=GS1.1.1664538884.1.0.1664538890.0.0.0; _ga=GA1.2.1216674640.1664538884; agfs=b73e666a47b979ba3845bfeb53203040.13365962&1664538886&1664538886&direct&(none)&&&&&; _gid=GA1.2.1398326626.1664538886; _uetsid=ada3406040b611ed8b62f187aa804768; _uetvid=ada3810040b611ed8af43f5930c96078
Upgrade-Insecure-Requests: 1

                                         
                                         172.67.209.163
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
                                        
Date: Fri, 30 Sep 2022 13:25:11 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2BIdxZ26%2Bbhica%2B3kEqL2hxeUa4LfC%2B01%2F2fdpQhXObyQG0NAEOONyqQmyxv2ZkEdcGMw6sW26WzrWNa10dgmqDfedP4LCt7AT4w2pyJb3%2BIjPSX0aeTbv%2BI5LPmrJHNE6U%2B4hdIhpg%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 752d4877fa9eb4ed-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (38668), with CRLF line terminators
Size:   41007
Md5:    4ff8a227924cf0580655f9616b4abe7b
Sha1:   eca8508d4b4d4d7d5040669f46855320024e63cf
Sha256: afddcd0786f5630959b9ab5c12cfa851ce8f5b24d8fdcd2d68ae118e410df590

Alerts:
  Blocklists:
    - openphish: Alaska USA Federal Credit Union
    - fortinet: Phishing
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 1894
Cache-Control: 'max-age=158059'
Date: Fri, 30 Sep 2022 13:25:11 GMT
Last-Modified: Fri, 30 Sep 2022 12:53:37 GMT
Server: ECS (amb/6B95)
X-Cache: HIT
Content-Length: 471

                                        
                                            GET /enroll/WebResource.axd?d=pynGkmcFUV13He1Qd6_TZFXjl5sPyt9kOGWz236FVgWAlp2jOnHz37PrZqhXVhK9g2YwSg2&t=636939665749177621 HTTP/1.1 
Host: cascadiasolutions.ca
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cascadiasolutions.ca/en/UltraBranch/efs/servlet/efs/security.php
Cookie: _gcl_au=1.1.2140339053.1664538884; _ga_R11FYFZ8HF=GS1.1.1664538884.1.0.1664538890.0.0.0; _ga=GA1.2.1216674640.1664538884; agfs=b73e666a47b979ba3845bfeb53203040.13365962&1664538886&1664538886&direct&(none)&&&&&; _gid=GA1.2.1398326626.1664538886; _uetsid=ada3406040b611ed8b62f187aa804768; _uetvid=ada3810040b611ed8af43f5930c96078

                                         
                                         172.67.209.163
HTTP/1.1 404 Not Found
Content-Type: text/html
                                        
Date: Fri, 30 Sep 2022 13:25:11 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 20 Feb 2020 23:03:11 GMT
Vary: Accept-Encoding
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=QGq7xNs6xVx2pfEK48vu2nFP7T2L7%2BLnugwVG2xeNKrc4GT2GSqXS3PSmdoXWGmMfHZukSqN1cdj%2BOLAx%2BGf4VjFnW0K5cuab88Mbm%2B2QirJK7%2BRmnUMlOpEo862lQja3UNBqVNMIA%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 752d487b5c670b49-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (358)
Size:   4009
Md5:    910ade4bd12b78aeb457945abf9251c7
Sha1:   65f93a701741dc23692cca7291e05e5631bb0d28
Sha256: e1c437292bc10bf7e45a6f4283096b315deb512d97b1bf4fd04ad11104707f03
                                        
                                            GET /en/UltraBranch/efs/servlet/efs/App_Themes/DefaultTheme/_UtilityStyles_v4.css HTTP/1.1 
Host: cascadiasolutions.ca
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cascadiasolutions.ca/en/UltraBranch/efs/servlet/efs/security.php
Cookie: _gcl_au=1.1.2140339053.1664538884; _ga_R11FYFZ8HF=GS1.1.1664538884.1.0.1664538890.0.0.0; _ga=GA1.2.1216674640.1664538884; agfs=b73e666a47b979ba3845bfeb53203040.13365962&1664538886&1664538886&direct&(none)&&&&&; _gid=GA1.2.1398326626.1664538886; _uetsid=ada3406040b611ed8b62f187aa804768; _uetvid=ada3810040b611ed8af43f5930c96078

                                         
                                         172.67.209.163
HTTP/1.1 404 Not Found
Content-Type: text/html
                                        
Date: Fri, 30 Sep 2022 13:25:11 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 20 Feb 2020 23:03:11 GMT
Vary: Accept-Encoding
Cache-Control: max-age=14400
CF-Cache-Status: EXPIRED
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=SRmbPgmjE65eW%2BXaic%2FgkCTzp15l8fcptdlfzbJ4e8sNa8IkGN%2FMm3RpJokoXwSwLegCwWXbac5S%2BPLmzpQpBJ0Fo%2BBD%2F1y3NQ7dwCN9sB12g309nmsYx5CJbfYzYS41D6DBRAQc6g%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 752d487b2c020b65-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (358)
Size:   4000
Md5:    35a0c241e2561af2ab4cc0f600eae7a5
Sha1:   f3ffb0dfaa164b4be4b9b907e295acc7faa49786
Sha256: 1cf604d1a590dd08f2f4e314a64cc213e2f4a59154b9ab116c7dc5cf832158cc
                                        
                                            GET /enroll/ScriptLib/md5.js HTTP/1.1 
Host: cascadiasolutions.ca
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cascadiasolutions.ca/en/UltraBranch/efs/servlet/efs/security.php
Cookie: _gcl_au=1.1.2140339053.1664538884; _ga_R11FYFZ8HF=GS1.1.1664538884.1.0.1664538890.0.0.0; _ga=GA1.2.1216674640.1664538884; agfs=b73e666a47b979ba3845bfeb53203040.13365962&1664538886&1664538886&direct&(none)&&&&&; _gid=GA1.2.1398326626.1664538886; _uetsid=ada3406040b611ed8b62f187aa804768; _uetvid=ada3810040b611ed8af43f5930c96078

                                         
                                         172.67.209.163
HTTP/1.1 404 Not Found
Content-Type: text/html
                                        
Date: Fri, 30 Sep 2022 13:25:11 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 20 Feb 2020 23:03:11 GMT
Vary: Accept-Encoding
Cache-Control: max-age=14400
CF-Cache-Status: EXPIRED
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=qkyZBgmtgzMcVz7ZK9jSfsl6PNr6alf049fZjPs4h%2FnLDNc1wBozphJBc0bzlDjWVgAnZyfyV%2FrDulu1EcJYLhzR0oGqog0JUMaua0b0oh92StbMM5vF%2FNPulAukTvcYtG0%2B3CYX1Q%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 752d487baf7db4ed-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (358)
Size:   4000
Md5:    35a0c241e2561af2ab4cc0f600eae7a5
Sha1:   f3ffb0dfaa164b4be4b9b907e295acc7faa49786
Sha256: 1cf604d1a590dd08f2f4e314a64cc213e2f4a59154b9ab116c7dc5cf832158cc

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /en/UltraBranch/efs/servlet/efs/App_Themes/DefaultTheme/_ExternalTemplateStyles_v4.css HTTP/1.1 
Host: cascadiasolutions.ca
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cascadiasolutions.ca/en/UltraBranch/efs/servlet/efs/security.php
Cookie: _gcl_au=1.1.2140339053.1664538884; _ga_R11FYFZ8HF=GS1.1.1664538884.1.0.1664538890.0.0.0; _ga=GA1.2.1216674640.1664538884; agfs=b73e666a47b979ba3845bfeb53203040.13365962&1664538886&1664538886&direct&(none)&&&&&; _gid=GA1.2.1398326626.1664538886; _uetsid=ada3406040b611ed8b62f187aa804768; _uetvid=ada3810040b611ed8af43f5930c96078

                                         
                                         172.67.209.163
HTTP/1.1 404 Not Found
Content-Type: text/html
                                        
Date: Fri, 30 Sep 2022 13:25:11 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 20 Feb 2020 23:03:11 GMT
Vary: Accept-Encoding
Cache-Control: max-age=14400
CF-Cache-Status: EXPIRED
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=iBKQi7ml%2FfMifzsVT8QTjXVjq5khuyRaFSDxVTdmfncBnrRVAAHDjBEkC37IXrp3FFPpxk8NpMA1OYknfi%2B63Pf9O2RdCSYlt74j%2Bkyt6Pn7yvPx8dfbN%2BjsLGnVUY164gOlWHJ2%2FQ%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 752d487b1dc1b50f-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (358)
Size:   4000
Md5:    35a0c241e2561af2ab4cc0f600eae7a5
Sha1:   f3ffb0dfaa164b4be4b9b907e295acc7faa49786
Sha256: 1cf604d1a590dd08f2f4e314a64cc213e2f4a59154b9ab116c7dc5cf832158cc
                                        
                                            GET /en/UltraBranch/efs/servlet/efs/App_Themes/DefaultTheme/_ControlStyles_v4.css HTTP/1.1 
Host: cascadiasolutions.ca
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cascadiasolutions.ca/en/UltraBranch/efs/servlet/efs/security.php
Cookie: _gcl_au=1.1.2140339053.1664538884; _ga_R11FYFZ8HF=GS1.1.1664538884.1.0.1664538890.0.0.0; _ga=GA1.2.1216674640.1664538884; agfs=b73e666a47b979ba3845bfeb53203040.13365962&1664538886&1664538886&direct&(none)&&&&&; _gid=GA1.2.1398326626.1664538886; _uetsid=ada3406040b611ed8b62f187aa804768; _uetvid=ada3810040b611ed8af43f5930c96078

                                         
                                         172.67.209.163
HTTP/1.1 404 Not Found
Content-Type: text/html
                                        
Date: Fri, 30 Sep 2022 13:25:11 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 20 Feb 2020 23:03:11 GMT
Vary: Accept-Encoding
Cache-Control: max-age=14400
CF-Cache-Status: EXPIRED
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=3a9RPyCXaWgZFVPIg%2Bgt3duYbnBPhE7vlPPp%2FOQGsFw7Bnz8QKutJ3qDb4kCXkEeg%2FpFmc63Rr9Yan4uhjMGDvUBIYJLHP47d3yrjOWe45RHtGFJbeABZEI74MstIktc0V2AuNxUgA%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 752d487b1ebbb4ee-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (358)
Size:   4000
Md5:    35a0c241e2561af2ab4cc0f600eae7a5
Sha1:   f3ffb0dfaa164b4be4b9b907e295acc7faa49786
Sha256: 1cf604d1a590dd08f2f4e314a64cc213e2f4a59154b9ab116c7dc5cf832158cc
                                        
                                            GET /en/UltraBranch/efs/servlet/efs/ScriptLib/jquery/jquery.maskedinput-1.4.1.min.js HTTP/1.1 
Host: cascadiasolutions.ca
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cascadiasolutions.ca/en/UltraBranch/efs/servlet/efs/security.php
Cookie: _gcl_au=1.1.2140339053.1664538884; _ga_R11FYFZ8HF=GS1.1.1664538884.1.0.1664538890.0.0.0; _ga=GA1.2.1216674640.1664538884; agfs=b73e666a47b979ba3845bfeb53203040.13365962&1664538886&1664538886&direct&(none)&&&&&; _gid=GA1.2.1398326626.1664538886; _uetsid=ada3406040b611ed8b62f187aa804768; _uetvid=ada3810040b611ed8af43f5930c96078

                                         
                                         172.67.209.163
HTTP/1.1 404 Not Found
Content-Type: text/html
                                        
Date: Fri, 30 Sep 2022 13:25:11 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 20 Feb 2020 23:03:11 GMT
Vary: Accept-Encoding
Cache-Control: max-age=14400
CF-Cache-Status: EXPIRED
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=DNBkDw6KFlpXY18jail38r1JdGFC59z16knYDV%2Byn37CXLhw37%2FT2iqMMOCF2KHpEKSPMoOqtEo8KYDrLrMHfO8Qpc70IBrfaJgNHAXV719bHQ6uU9k3RSAOVIkeS8cjgPR5gSaRWw%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 752d487b1eb5b4ed-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (358)
Size:   4000
Md5:    35a0c241e2561af2ab4cc0f600eae7a5
Sha1:   f3ffb0dfaa164b4be4b9b907e295acc7faa49786
Sha256: 1cf604d1a590dd08f2f4e314a64cc213e2f4a59154b9ab116c7dc5cf832158cc

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.36
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Date: Fri, 30 Sep 2022 12:29:33 GMT
Cache-Control: max-age=3600, max-age=3600
Expires: Fri, 30 Sep 2022 12:48:26 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 6480520a5e02f3163410e3134bd77baa.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: ZUW_jwhAx3zR52HVrDHkCNv-nYw-dxcjfn_CPoAbSwLyFzNxgfltpQ==
Age: 3338


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size:   329
Md5:    0333b0655111aa68de771adfcc4db243
Sha1:   63f295a144ac87a7c8e23417626724eeca68a7eb
Sha256: 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
                                        
                                            GET /enroll/ScriptResource.axd?d=nv7asgRUU0tRmHNR2D6t1EekDsxKEwSZJpikhL_6bvVcyxhDFC5xzBMYL4n2T3xzyjsI9y5GDnWtqEMRDzYwpwEqiv8d0zyvxyVarszwga4VVGDKdqK_TSDL0_zGf2hYrzZ7Qw2&t=4e518d44 HTTP/1.1 
Host: cascadiasolutions.ca
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cascadiasolutions.ca/en/UltraBranch/efs/servlet/efs/security.php
Cookie: _gcl_au=1.1.2140339053.1664538884; _ga_R11FYFZ8HF=GS1.1.1664538884.1.0.1664538890.0.0.0; _ga=GA1.2.1216674640.1664538884; agfs=b73e666a47b979ba3845bfeb53203040.13365962&1664538886&1664538886&direct&(none)&&&&&; _gid=GA1.2.1398326626.1664538886; _uetsid=ada3406040b611ed8b62f187aa804768; _uetvid=ada3810040b611ed8af43f5930c96078

                                         
                                         172.67.209.163
HTTP/1.1 404 Not Found
Content-Type: text/html
                                        
Date: Fri, 30 Sep 2022 13:25:11 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 20 Feb 2020 23:03:11 GMT
Vary: Accept-Encoding
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=62ySdDgh89MXnYQExLkILj8yCxdhE6cDQGb8tO8xpwRmusS1qOkGoahp0dYA8wOFtTovtD%2FSOeKgzq6H8eUYedc7%2FPs1GXcTbdcbTuaLpfYoLW1q8SaUaVTV6mck2rhbbpm4tWxypA%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 752d487cfdcf0b49-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (358)
Size:   4000
Md5:    35a0c241e2561af2ab4cc0f600eae7a5
Sha1:   f3ffb0dfaa164b4be4b9b907e295acc7faa49786
Sha256: 1cf604d1a590dd08f2f4e314a64cc213e2f4a59154b9ab116c7dc5cf832158cc
                                        
                                            GET /enroll/ScriptResource.axd?d=D9drwtSJ4hBA6O8UhT6CQl5kP-DNk5tqsFSKE4QAx7FiqQUkfG0xcYhM38F4ULHzEsr3ccm3WWC8c21Rx1XAbPd7dZSDwlwAN3FBxOF0-Op5UR1aFNYrVvCtHrsmIFUrjLaB6c2og1ihVr9uj93NAWWK3N01&t=ffffffffa580202a HTTP/1.1 
Host: cascadiasolutions.ca
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cascadiasolutions.ca/en/UltraBranch/efs/servlet/efs/security.php
Cookie: _gcl_au=1.1.2140339053.1664538884; _ga_R11FYFZ8HF=GS1.1.1664538884.1.0.1664538890.0.0.0; _ga=GA1.2.1216674640.1664538884; agfs=b73e666a47b979ba3845bfeb53203040.13365962&1664538886&1664538886&direct&(none)&&&&&; _gid=GA1.2.1398326626.1664538886; _uetsid=ada3406040b611ed8b62f187aa804768; _uetvid=ada3810040b611ed8af43f5930c96078

                                         
                                         172.67.209.163
HTTP/1.1 404 Not Found
Content-Type: text/html
                                        
Date: Fri, 30 Sep 2022 13:25:12 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 20 Feb 2020 23:03:11 GMT
Vary: Accept-Encoding
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=QbFikFUOSN05Ljz0pcg0WkcD7fn6JQldLo6Je9JDZK5fmBbPWSTbFS5uuwl0dsoauGC8o%2BbtElpVQQHotoQc3%2BoEajlgjJsiQjJ2iYRSsnuUw2nZQ4ACu7vpoFFkX1kuY9IYlYI28w%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 752d487d2e2f0b65-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (358)
Size:   4000
Md5:    35a0c241e2561af2ab4cc0f600eae7a5
Sha1:   f3ffb0dfaa164b4be4b9b907e295acc7faa49786
Sha256: 1cf604d1a590dd08f2f4e314a64cc213e2f4a59154b9ab116c7dc5cf832158cc
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Cache-Control: 'max-age=158059'
Date: Fri, 30 Sep 2022 13:25:11 GMT
Server: ECS (amb/6BBB)
Content-Length: 471

                                        
                                            GET /en/UltraBranch/efs/servlet/efs/ScriptLib/DotNetScripts_v4.js HTTP/1.1 
Host: cascadiasolutions.ca
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cascadiasolutions.ca/en/UltraBranch/efs/servlet/efs/security.php
Cookie: _gcl_au=1.1.2140339053.1664538884; _ga_R11FYFZ8HF=GS1.1.1664538884.1.0.1664538890.0.0.0; _ga=GA1.2.1216674640.1664538884; agfs=b73e666a47b979ba3845bfeb53203040.13365962&1664538886&1664538886&direct&(none)&&&&&; _gid=GA1.2.1398326626.1664538886; _uetsid=ada3406040b611ed8b62f187aa804768; _uetvid=ada3810040b611ed8af43f5930c96078

                                         
                                         172.67.209.163
HTTP/1.1 404 Not Found
Content-Type: text/html
                                        
Date: Fri, 30 Sep 2022 13:25:12 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 20 Feb 2020 23:03:11 GMT
Vary: Accept-Encoding
Cache-Control: max-age=14400
CF-Cache-Status: EXPIRED
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=rh9bmb%2BEZWGAPFpb5BeifrXiPFyml88KxGr0DZGIjoIrJ7cpMBb3btma0VQX3XTiKqHwShB7Lg02DfYfdeoLUb7upREIT55zixBP3nvZoBE0gGufABeGoavPdRzR4Ka5LL5i0VpF4Q%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 752d487d380fb50f-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (358)
Size:   4000
Md5:    35a0c241e2561af2ab4cc0f600eae7a5
Sha1:   f3ffb0dfaa164b4be4b9b907e295acc7faa49786
Sha256: 1cf604d1a590dd08f2f4e314a64cc213e2f4a59154b9ab116c7dc5cf832158cc

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /en/UltraBranch/efs/servlet/efs/ScriptLib/AriaLib.js HTTP/1.1 
Host: cascadiasolutions.ca
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cascadiasolutions.ca/en/UltraBranch/efs/servlet/efs/security.php
Cookie: _gcl_au=1.1.2140339053.1664538884; _ga_R11FYFZ8HF=GS1.1.1664538884.1.0.1664538890.0.0.0; _ga=GA1.2.1216674640.1664538884; agfs=b73e666a47b979ba3845bfeb53203040.13365962&1664538886&1664538886&direct&(none)&&&&&; _gid=GA1.2.1398326626.1664538886; _uetsid=ada3406040b611ed8b62f187aa804768; _uetvid=ada3810040b611ed8af43f5930c96078

                                         
                                         172.67.209.163
HTTP/1.1 404 Not Found
Content-Type: text/html
                                        
Date: Fri, 30 Sep 2022 13:25:12 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 20 Feb 2020 23:03:11 GMT
Vary: Accept-Encoding
Cache-Control: max-age=14400
CF-Cache-Status: EXPIRED
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ktjZEU12HXazYz6ml%2B5y9%2FjPxOAufB6MPEQM%2BYPpA0cuzAfhhQ36vlokbLsSDeqwb8hW7GQ64lHnZQ4Ylk9iHR4EXenK%2FQMHfiCtqqsQVKhbsyHjcTCy6cym%2B0WtysPQf8KBmyaXGA%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 752d487d3983b4ee-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (358)
Size:   4000
Md5:    35a0c241e2561af2ab4cc0f600eae7a5
Sha1:   f3ffb0dfaa164b4be4b9b907e295acc7faa49786
Sha256: 1cf604d1a590dd08f2f4e314a64cc213e2f4a59154b9ab116c7dc5cf832158cc

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /enroll/ScriptResource.axd?d=JnUc-DEDOM5KzzVKtsL1tcXbu1D4Hj6yCmHmr9cM66AViK3ia2ZDHVT7KW47KHMyBMtKHFfS1WB4puAzjXwId5XQy_jrygJTcv1Xors3xQgEJuGStAVwV63p2PylRvqJXzAeOswFDaHhtAK0W-ax5ffg3ZOYXYmQ06Ttk8PaI-ZJmv_M0&t=ffffffffa580202a HTTP/1.1 
Host: cascadiasolutions.ca
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cascadiasolutions.ca/en/UltraBranch/efs/servlet/efs/security.php
Cookie: _gcl_au=1.1.2140339053.1664538884; _ga_R11FYFZ8HF=GS1.1.1664538884.1.0.1664538890.0.0.0; _ga=GA1.2.1216674640.1664538884; agfs=b73e666a47b979ba3845bfeb53203040.13365962&1664538886&1664538886&direct&(none)&&&&&; _gid=GA1.2.1398326626.1664538886; _uetsid=ada3406040b611ed8b62f187aa804768; _uetvid=ada3810040b611ed8af43f5930c96078

                                         
                                         172.67.209.163
HTTP/1.1 404 Not Found
Content-Type: text/html
                                        
Date: Fri, 30 Sep 2022 13:25:12 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 20 Feb 2020 23:03:11 GMT
Vary: Accept-Encoding
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=vj7HTAWSt7ilfbyZhaAeGClP7TUuIW6CJigVKN%2FWRZIADrZOgjFD7v%2FJXt9skH9XoeBX8gLd7ZKeeuFQTyRADIPtkavFb12CRYw%2FosRsOpyFSsCoC4sDw3ZJY%2FsbxlAYTlNh1GGgdw%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 752d487d399bb4ed-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (358)
Size:   4000
Md5:    35a0c241e2561af2ab4cc0f600eae7a5
Sha1:   f3ffb0dfaa164b4be4b9b907e295acc7faa49786
Sha256: 1cf604d1a590dd08f2f4e314a64cc213e2f4a59154b9ab116c7dc5cf832158cc
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Cache-Control: 'max-age=158059'
Date: Fri, 30 Sep 2022 13:25:12 GMT
Server: ECS (amb/6BBC)
Content-Length: 471

                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 5036
Cache-Control: max-age=158728
Date: Fri, 30 Sep 2022 13:25:12 GMT
Etag: "6336a394-1d7"
Expires: Sun, 02 Oct 2022 09:30:40 GMT
Last-Modified: Fri, 30 Sep 2022 08:06:44 GMT
Server: ECS (ska/F70B)
X-Cache: HIT
Content-Length: 471

                                        
                                            GET /en/UltraBranch/efs/servlet/efs/Scripts/jquery-1.10.2.js HTTP/1.1 
Host: cascadiasolutions.ca
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cascadiasolutions.ca/en/UltraBranch/efs/servlet/efs/security.php
Cookie: _gcl_au=1.1.2140339053.1664538884; _ga_R11FYFZ8HF=GS1.1.1664538884.1.0.1664538890.0.0.0; _ga=GA1.2.1216674640.1664538884; agfs=b73e666a47b979ba3845bfeb53203040.13365962&1664538886&1664538886&direct&(none)&&&&&; _gid=GA1.2.1398326626.1664538886; _uetsid=ada3406040b611ed8b62f187aa804768; _uetvid=ada3810040b611ed8af43f5930c96078

                                         
                                         172.67.209.163
HTTP/1.1 404 Not Found
Content-Type: text/html
                                        
Date: Fri, 30 Sep 2022 13:25:12 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 20 Feb 2020 23:03:11 GMT
Vary: Accept-Encoding
Cache-Control: max-age=14400
CF-Cache-Status: EXPIRED
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=TJX8yz9IEUVOrDO0UKi7w%2FN47zqMTYR8VkMuJK%2FUk3T440OS%2Ffhsc8Drdz7ZP3%2B%2BJQuii236%2FjGpdYRIv91YWIKKjml%2FvNyjlX2dvUUMMyLQzuezV0ZdAXjsKx8d0oIrAE7ZlhVKDQ%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 752d487d49b8b4ed-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (358)
Size:   4000
Md5:    35a0c241e2561af2ab4cc0f600eae7a5
Sha1:   f3ffb0dfaa164b4be4b9b907e295acc7faa49786
Sha256: 1cf604d1a590dd08f2f4e314a64cc213e2f4a59154b9ab116c7dc5cf832158cc

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /angelfish.js HTTP/1.1 
Host: www.alaskausa.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://cascadiasolutions.ca/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         107.162.171.161
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Last-Modified: Wed, 28 Sep 2022 02:43:48 GMT
Accept-Ranges: bytes
ETag: "f863a522e4d2d81:0"
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
X-Frame-Options: DENY
Date: Fri, 30 Sep 2022 13:25:17 GMT
Content-Length: 8704
Via: 1.1 dca1-bit9045
Vary: Accept-Encoding
Content-Encoding: gzip
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (826)
Size:   8704
Md5:    23acb6d2cd2e079bfe986f0761b957d5
Sha1:   bb1cf7660324be47645c3e239b6fa51faa7421ea
Sha256: ad8da576b2060355b1ed4f753cb2a19ee37bba690f9fff2442a2654e55f235eb
                                        
                                            GET /js/jquery-1.11.3.min.js HTTP/1.1 
Host: www.alaskausa.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://cascadiasolutions.ca/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         107.162.171.161
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Last-Modified: Wed, 28 Sep 2022 02:44:41 GMT
Accept-Ranges: bytes
ETag: "37449f42e4d2d81:0"
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
X-Frame-Options: DENY
Date: Fri, 30 Sep 2022 13:25:11 GMT
Via: 1.1 dca1-bit9045
Vary: Accept-Encoding
Content-Encoding: gzip
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  ASCII text, with very long lines (32038)
Size:   45711
Md5:    cf54b56dbd2adb27eb44fe6defb747e6
Sha1:   78e81335c5c317f9d56877d2f011a74a50910dd8
Sha256: 9256346dc8067ab6665a68fe1590b676d13f8ecd353fa2676ec372a2f3338a94
                                        
                                            GET /css/akusa-express.css HTTP/1.1 
Host: www.alaskausa.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://cascadiasolutions.ca/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         107.162.171.161
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Last-Modified: Wed, 28 Sep 2022 02:43:45 GMT
Accept-Ranges: bytes
ETag: "3f263221e4d2d81:0"
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
X-Frame-Options: DENY
Date: Fri, 30 Sep 2022 13:25:12 GMT
Via: 1.1 dca1-bit9045
Vary: Accept-Encoding
Content-Encoding: gzip
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  Unicode text, UTF-8 (with BOM) text, with CRLF line terminators
Size:   4644
Md5:    825350f09acb37cf5ec0cac6016f5c8d
Sha1:   253d99cb60408d7f60734dcaf60abe848b4281c9
Sha256: 4afa21fd07b5e1574b4637b41e29ae2e93176e941d172c1476ca7fa947f7834e
                                        
                                            GET /en/UltraBranch/efs/servlet/efs/ScriptLib/jquery/jquery.maskedinput-1.4.1.min.js HTTP/1.1 
Host: cascadiasolutions.ca
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cascadiasolutions.ca/en/UltraBranch/efs/servlet/efs/security.php
Cookie: _gcl_au=1.1.2140339053.1664538884; _ga_R11FYFZ8HF=GS1.1.1664538884.1.0.1664538890.0.0.0; _ga=GA1.2.1216674640.1664538884; agfs=b73e666a47b979ba3845bfeb53203040.13365962&1664538886&1664538886&direct&(none)&&&&&; _gid=GA1.2.1398326626.1664538886; _uetsid=ada3406040b611ed8b62f187aa804768; _uetvid=ada3810040b611ed8af43f5930c96078

                                         
                                         172.67.209.163
HTTP/1.1 404 Not Found
Content-Type: text/html
                                        
Date: Fri, 30 Sep 2022 13:25:12 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 20 Feb 2020 23:03:11 GMT
Vary: Accept-Encoding
Cache-Control: max-age=14400
CF-Cache-Status: HIT
Age: 1
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=u9kRLJsCYkbjWWQdVz81%2B2sB6UHuWO%2B6DSiCvT6yqJB%2F1hBm2Af0vWaNNln1peJK5JFRSC4fetKedcTikF0dygHvHfNmURbsLi5QtOcAIQXgFz42RX5KFtXqQlo5tm1k7cTF2fq%2BBQ%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 752d4880c9c60b49-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (358)
Size:   4000
Md5:    35a0c241e2561af2ab4cc0f600eae7a5
Sha1:   f3ffb0dfaa164b4be4b9b907e295acc7faa49786
Sha256: 1cf604d1a590dd08f2f4e314a64cc213e2f4a59154b9ab116c7dc5cf832158cc

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET / HTTP/1.1 
Host: push.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: Ycwm8Y2LhA+yNqc9CwpWKw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

                                         
                                         44.237.239.70
HTTP/1.1 101 Switching Protocols
                                        
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: l9y45rTClnaddJdajI/uozmdRw8=

                                        
                                            GET /js/jsSuite-1.8.js HTTP/1.1 
Host: www.alaskausa.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://cascadiasolutions.ca/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         107.162.171.161
HTTP/1.1 302 Object moved
Content-Type: text/html
                                        
Cache-Control: private
Location: /pageUnavailable.asp?status=missing
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
X-Frame-Options: DENY
Date: Fri, 30 Sep 2022 13:25:17 GMT
Via: 1.1 dca1-bit9045
Set-Cookie: ASPSESSIONIDQGRASQST=IEOFLDHDEHHLBDPBPKHKMLBN; secure; path=/ TS01682a2f=01a4b2b10e003850332622926fc3d1f40bfeb675afd294e11047c82d371ad0a8a6305a806a09007a94a41d3322922ea835705f51253a9de9fd06272a8172e4427694f982e5; Path=/; Secure; HTTPOnly
Vary: Accept-Encoding
Content-Encoding: gzip
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text
Size:   296
Md5:    33dc966734cea833f261863e35b1f2f3
Sha1:   b1c3e2ea6431645131178005d1eb1677c40cf4e5
Sha256: 21ec73760050529f53f914ef8194651a4c2de4411e4bc36be410947bd3a26dbc
                                        
                                            GET /images/nav/EHL_2016_gray.png HTTP/1.1 
Host: www.alaskausa.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://cascadiasolutions.ca/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         107.162.171.161
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Last-Modified: Wed, 28 Sep 2022 02:44:37 GMT
Accept-Ranges: bytes
ETag: "51e2f13fe4d2d81:0"
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
X-Frame-Options: DENY
Date: Fri, 30 Sep 2022 13:25:12 GMT
Content-Length: 3317
Via: 1.1 dca1-bit9045


--- Additional Info ---
Magic:  PNG image data, 55 x 59, 8-bit colormap, non-interlaced\012- data
Size:   3317
Md5:    859cf2ed8319f4931c1e2371bee8b46d
Sha1:   ff866fe6e3071999e6c057dae5aed927aefd047f
Sha256: 1c7cd686a01f2dcffc1f55119624e9166300721172b4e7ad284ff734bc8db0a1
                                        
                                            GET /images/nav/akusafcu_logo.png HTTP/1.1 
Host: www.alaskausa.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://cascadiasolutions.ca/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         107.162.171.161
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Last-Modified: Wed, 28 Sep 2022 02:44:37 GMT
Accept-Ranges: bytes
ETag: "bd76e93fe4d2d81:0"
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
X-Frame-Options: DENY
Date: Fri, 30 Sep 2022 13:25:12 GMT
Content-Length: 16228
Via: 1.1 dca1-bit9045


--- Additional Info ---
Magic:  PNG image data, 220 x 70, 8-bit/color RGBA, non-interlaced\012- data
Size:   16228
Md5:    dc43cc5c96d54639189781edf322cac9
Sha1:   26c53d9c975f997481520a336ac5f6a22f115c74
Sha256: 6ceabe544edbb8513733f30b14c1d17a2fa51e461f972c31d17e5450d4718603
                                        
                                            GET /pageUnavailable.asp?status=missing HTTP/1.1 
Host: www.alaskausa.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://cascadiasolutions.ca/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         107.162.171.161
HTTP/1.1 200
Content-Type: text/html
                                        
Cache-Control: private
Set-Cookie: ss=c; expires=Sun, 30-Oct-2022 13:25:16 GMT; path=/ lst=1950671231; expires=Fri, 30-Sep-2022 13:40:16 GMT; domain=.alaskausa.org; path=/; secure ASPSESSIONIDQGRASQST=LEOFLDHDCOINIDJMFFONPEEN; secure; path=/; HttpOnly TS01682a2f=01a4b2b10ec923708aebeba2810e4c17635399f79bce7e4a8b0bd153326f5629bd84963e8a570c0ccb84ff5c7a3f1b19a126f269d22b61dea36b9e4e8076b20024af989d65a735900d543e3bb332eed4400a0b0100; Path=/; Secure; HTTPOnly TS013395ac=01a4b2b10e2aaa3e2e16427de4b62700d99999a2d1ce7e4a8b0bd153326f5629bd84963e8a3ca467e78b315cc182b7175b09563def2a97afba99bc4d3b5ec8faff56037d16; path=/; domain=.alaskausa.org; HTTPonly; Secure
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
X-Frame-Options: DENY
Date: Fri, 30 Sep 2022 13:25:17 GMT
Via: 1.1 dca1-bit9045
Vary: Accept-Encoding
Content-Encoding: gzip
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (675), with CRLF, LF line terminators
Size:   13031
Md5:    81df4980edd2b3e0dfd30d039f539385
Sha1:   7451df4ac53fec734d8b3d39b78121db2f8be6ea
Sha256: 5131ac4a7c08dc643e6704b11e834b4cf82cd77766225e9526683834960e408c
                                        
                                            GET /en/UltraBranch/efs/servlet/efs/App_Themes/DefaultTheme/ControlImages/close.png HTTP/1.1 
Host: cascadiasolutions.ca
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cascadiasolutions.ca/en/UltraBranch/efs/servlet/efs/security.php
Cookie: _gcl_au=1.1.2140339053.1664538884; _ga_R11FYFZ8HF=GS1.1.1664538884.1.0.1664538890.0.0.0; _ga=GA1.2.1216674640.1664538884; agfs=b73e666a47b979ba3845bfeb53203040.13365962&1664538886&1664538886&direct&(none)&&&&&; _gid=GA1.2.1398326626.1664538886; _uetsid=ada3406040b611ed8b62f187aa804768; _uetvid=ada3810040b611ed8af43f5930c96078

                                         
                                         172.67.209.163
HTTP/1.1 404 Not Found
Content-Type: text/html
                                        
Date: Fri, 30 Sep 2022 13:25:12 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 20 Feb 2020 23:03:11 GMT
Vary: Accept-Encoding
Cache-Control: max-age=14400
CF-Cache-Status: EXPIRED
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=20%2BYqb4n75vPD0pPtIag6nAWxiUkhejDHmqhvZuPJUYi4z1RphyOdDzu3C2KDvoZRtEzwJMPkWilbrp9TwqhQz9WjK6wQKsaBoHn9E%2BXmi%2BzxxV3cZOi46tDHs5tvTUDN%2FdLFauWdA%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 752d48816a680b49-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (358)
Size:   4000
Md5:    35a0c241e2561af2ab4cc0f600eae7a5
Sha1:   f3ffb0dfaa164b4be4b9b907e295acc7faa49786
Sha256: 1cf604d1a590dd08f2f4e314a64cc213e2f4a59154b9ab116c7dc5cf832158cc
                                        
                                            GET /en/UltraBranch/efs/servlet/efs/App_Themes/DefaultTheme/_ControlStyles_v4.css HTTP/1.1 
Host: cascadiasolutions.ca
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cascadiasolutions.ca/en/UltraBranch/efs/servlet/efs/security.php
Cookie: _gcl_au=1.1.2140339053.1664538884; _ga_R11FYFZ8HF=GS1.1.1664538884.1.0.1664538890.0.0.0; _ga=GA1.2.1216674640.1664538884; agfs=b73e666a47b979ba3845bfeb53203040.13365962&1664538886&1664538886&direct&(none)&&&&&; _gid=GA1.2.1398326626.1664538886; _uetsid=ada3406040b611ed8b62f187aa804768; _uetvid=ada3810040b611ed8af43f5930c96078

                                         
                                         172.67.209.163
HTTP/1.1 404 Not Found
Content-Type: text/html
                                        
Date: Fri, 30 Sep 2022 13:25:12 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 20 Feb 2020 23:03:11 GMT
Vary: Accept-Encoding
Cache-Control: max-age=14400
CF-Cache-Status: HIT
Age: 1
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2B2gzTweatz5clVa72sklhtH9AaOSIMNf2QmA4W7i0lSuL28hHdjmZbMOJFoiFmodVNVpYJm4v598M34lMhFUI%2BujfUbQHsaJsYZ4C5bcxz3LNc3WubkOgRAw1Mg1sLBz42KLEejY2Q%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 752d48836c4b0b49-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (358)
Size:   4000
Md5:    35a0c241e2561af2ab4cc0f600eae7a5
Sha1:   f3ffb0dfaa164b4be4b9b907e295acc7faa49786
Sha256: 1cf604d1a590dd08f2f4e314a64cc213e2f4a59154b9ab116c7dc5cf832158cc
                                        
                                            GET /en/UltraBranch/efs/servlet/efs/App_Themes/DefaultTheme/_UtilityStyles_v4.css HTTP/1.1 
Host: cascadiasolutions.ca
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cascadiasolutions.ca/en/UltraBranch/efs/servlet/efs/security.php
Cookie: _gcl_au=1.1.2140339053.1664538884; _ga_R11FYFZ8HF=GS1.1.1664538884.1.0.1664538890.0.0.0; _ga=GA1.2.1216674640.1664538884; agfs=b73e666a47b979ba3845bfeb53203040.13365962&1664538886&1664538886&direct&(none)&&&&&; _gid=GA1.2.1398326626.1664538886; _uetsid=ada3406040b611ed8b62f187aa804768; _uetvid=ada3810040b611ed8af43f5930c96078

                                         
                                         172.67.209.163
HTTP/1.1 404 Not Found
Content-Type: text/html
                                        
Date: Fri, 30 Sep 2022 13:25:12 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 20 Feb 2020 23:03:11 GMT
Vary: Accept-Encoding
Cache-Control: max-age=14400
CF-Cache-Status: HIT
Age: 1
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=cxrwzBb52KIP3xLJR667STgMR3dxXTXnGPiPKDVwD%2FWNTeqKZRPQwCEEsfsAsdNbDh%2F%2BwoK76jtd0LQ5nznvX20jy33Y8MUP%2FNYoGXNlhs%2F3x0sZEAAl2rRsgom2HSC0GEq1uPQ0%2Fw%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 752d48836fefb50f-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (358)
Size:   4000
Md5:    35a0c241e2561af2ab4cc0f600eae7a5
Sha1:   f3ffb0dfaa164b4be4b9b907e295acc7faa49786
Sha256: 1cf604d1a590dd08f2f4e314a64cc213e2f4a59154b9ab116c7dc5cf832158cc
                                        
                                            GET /en/UltraBranch/efs/servlet/efs/App_Themes/DefaultTheme/_ExternalTemplateStyles_v4.css HTTP/1.1 
Host: cascadiasolutions.ca
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cascadiasolutions.ca/en/UltraBranch/efs/servlet/efs/security.php
Cookie: _gcl_au=1.1.2140339053.1664538884; _ga_R11FYFZ8HF=GS1.1.1664538884.1.0.1664538890.0.0.0; _ga=GA1.2.1216674640.1664538884; agfs=b73e666a47b979ba3845bfeb53203040.13365962&1664538886&1664538886&direct&(none)&&&&&; _gid=GA1.2.1398326626.1664538886; _uetsid=ada3406040b611ed8b62f187aa804768; _uetvid=ada3810040b611ed8af43f5930c96078

                                         
                                         172.67.209.163
HTTP/1.1 404 Not Found
Content-Type: text/html
                                        
Date: Fri, 30 Sep 2022 13:25:12 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 20 Feb 2020 23:03:11 GMT
Vary: Accept-Encoding
Cache-Control: max-age=14400
CF-Cache-Status: HIT
Age: 1
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=03c%2FKdH6xSfOX%2FGS%2BGrNrkeU8lnwWSisn22upeLKQYWJJx1u4Qjo%2B6lrw9XGR4fDiOizB%2Bvtpmf0gJ39B7SbMYrw45T2VaezfDe%2FS0S7U%2BZz88a8iTz6M532H3BeUEJ8v3jFyf%2B4Ww%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 752d48836e6d0b65-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (358)
Size:   4000
Md5:    35a0c241e2561af2ab4cc0f600eae7a5
Sha1:   f3ffb0dfaa164b4be4b9b907e295acc7faa49786
Sha256: 1cf604d1a590dd08f2f4e314a64cc213e2f4a59154b9ab116c7dc5cf832158cc
                                        
                                            GET /images/images.asp?ref=NCUA_2016_gray.png HTTP/1.1 
Host: www.alaskausa.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://cascadiasolutions.ca/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         107.162.171.161
HTTP/1.1 200 OK
Content-Type: image/x-png
                                        
Cache-Control: private
Expires: Fri, 30 Sep 2022 13:25:18 GMT
Content-Disposition: filename="ncua_2016_gray.png"
Set-Cookie: lst=1950671231; expires=Fri, 30-Sep-2022 13:40:16 GMT; domain=.alaskausa.org; path=/; secure ASPSESSIONIDQGRASQST=KEOFLDHDKLNOKEEIFNLCALHG; secure; path=/; HttpOnly TS01682a2f=01a4b2b10e07dd3c8d5e66936d9a253cde6026bea6984eb8e6588b1b6327bb48df6e2216e1fdc7372a87e3c6e4eaa9eae4b0264e1ef4a7a161df04c2043c05c386b1f6e8f0; Path=/; Secure; HTTPOnly TS013395ac=01a4b2b10eb57a8477ef4cc80983186922b0dee413984eb8e6588b1b6327bb48df6e2216e1c94998a65c3326816f21ac97580bace4c71f655f5a4f52780090c9daa56e3eeb; path=/; domain=.alaskausa.org; HTTPonly; Secure
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
X-Frame-Options: DENY
Date: Fri, 30 Sep 2022 13:25:17 GMT
Connection: close
Via: 1.1 dca1-bit9045
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  PNG image data, 146 x 65, 8-bit colormap, non-interlaced\012- data
Size:   4280
Md5:    38b7240d957be9f71b5271246fb01f67
Sha1:   9007e7baf8e357ac11c8541c871e48960c8d9f30
Sha256: d6641292ca4109173a6ca88b1353f0a6edeaad1c5f90e4c69c6999943109a878
                                        
                                            GET /enroll/WebResource.axd?d=pynGkmcFUV13He1Qd6_TZFXjl5sPyt9kOGWz236FVgWAlp2jOnHz37PrZqhXVhK9g2YwSg2&t=636939665749177621 HTTP/1.1 
Host: cascadiasolutions.ca
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cascadiasolutions.ca/en/UltraBranch/efs/servlet/efs/security.php
Cookie: _gcl_au=1.1.2140339053.1664538884; _ga_R11FYFZ8HF=GS1.1.1664538884.1.0.1664538890.0.0.0; _ga=GA1.2.1216674640.1664538884; agfs=b73e666a47b979ba3845bfeb53203040.13365962&1664538886&1664538886&direct&(none)&&&&&; _gid=GA1.2.1398326626.1664538886; _uetsid=ada3406040b611ed8b62f187aa804768; _uetvid=ada3810040b611ed8af43f5930c96078

                                         
                                         172.67.209.163
HTTP/1.1 404 Not Found
Content-Type: text/html
                                        
Date: Fri, 30 Sep 2022 13:25:13 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 20 Feb 2020 23:03:11 GMT
Vary: Accept-Encoding
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=QuQSiuiGFScgu1pH8k1ih0flZqhk%2FGfsf4zgsAoGl4VxmeWQEjVkcHAERHaauqQ6cghWQWyzWBB1It4nOud%2FAqiY8NeKBRyqmcUyoV1EiMHsYW6cChHAC5XL3KaQXztVU6UPxTsZ2A%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 752d48838c730b49-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (358)
Size:   4000
Md5:    35a0c241e2561af2ab4cc0f600eae7a5
Sha1:   f3ffb0dfaa164b4be4b9b907e295acc7faa49786
Sha256: 1cf604d1a590dd08f2f4e314a64cc213e2f4a59154b9ab116c7dc5cf832158cc
                                        
                                            GET /enroll/ScriptLib/md5.js HTTP/1.1 
Host: cascadiasolutions.ca
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cascadiasolutions.ca/en/UltraBranch/efs/servlet/efs/security.php
Cookie: _gcl_au=1.1.2140339053.1664538884; _ga_R11FYFZ8HF=GS1.1.1664538884.1.0.1664538890.0.0.0; _ga=GA1.2.1216674640.1664538884; agfs=b73e666a47b979ba3845bfeb53203040.13365962&1664538886&1664538886&direct&(none)&&&&&; _gid=GA1.2.1398326626.1664538886; _uetsid=ada3406040b611ed8b62f187aa804768; _uetvid=ada3810040b611ed8af43f5930c96078

                                         
                                         172.67.209.163
HTTP/1.1 404 Not Found
Content-Type: text/html
                                        
Date: Fri, 30 Sep 2022 13:25:13 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 20 Feb 2020 23:03:11 GMT
Vary: Accept-Encoding
Cache-Control: max-age=14400
CF-Cache-Status: HIT
Age: 2
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=qDjC0W46jeZfC%2BX%2F5RhvK8qdClzjBqFewysCrY6TKcpNzUfRlRUymdc3wRNs4WX1LCNsIIQdceIRBOrxzsu5BlIcWaqpWXBprUVbJf6LMGQYV308NNsb0uSi6MWXFSIYK0iMVauuvg%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 752d48845d2a0b49-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (358)
Size:   4000
Md5:    35a0c241e2561af2ab4cc0f600eae7a5
Sha1:   f3ffb0dfaa164b4be4b9b907e295acc7faa49786
Sha256: 1cf604d1a590dd08f2f4e314a64cc213e2f4a59154b9ab116c7dc5cf832158cc

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /enroll/ScriptResource.axd?d=nv7asgRUU0tRmHNR2D6t1EekDsxKEwSZJpikhL_6bvVcyxhDFC5xzBMYL4n2T3xzyjsI9y5GDnWtqEMRDzYwpwEqiv8d0zyvxyVarszwga4VVGDKdqK_TSDL0_zGf2hYrzZ7Qw2&t=4e518d44 HTTP/1.1 
Host: cascadiasolutions.ca
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cascadiasolutions.ca/en/UltraBranch/efs/servlet/efs/security.php
Cookie: _gcl_au=1.1.2140339053.1664538884; _ga_R11FYFZ8HF=GS1.1.1664538884.1.0.1664538890.0.0.0; _ga=GA1.2.1216674640.1664538884; agfs=b73e666a47b979ba3845bfeb53203040.13365962&1664538886&1664538886&direct&(none)&&&&&; _gid=GA1.2.1398326626.1664538886; _uetsid=ada3406040b611ed8b62f187aa804768; _uetvid=ada3810040b611ed8af43f5930c96078

                                         
                                         172.67.209.163
HTTP/1.1 404 Not Found
Content-Type: text/html
                                        
Date: Fri, 30 Sep 2022 13:25:13 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 20 Feb 2020 23:03:11 GMT
Vary: Accept-Encoding
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=1g5qaApAcMFX6hQms7H%2FF1EGEpgL9v%2B%2BqXpXSttsbZOUVFhWgz2pRuj5XvDPx2KEWCC9PMJBtQE0PMs5OVNfGEbZfiNMVqS54uCls2faOyQG1OjlsRa6%2Bc1kVzfYvBAbIu31ZJK%2Fpg%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 752d48847d3b0b49-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (358)
Size:   4000
Md5:    35a0c241e2561af2ab4cc0f600eae7a5
Sha1:   f3ffb0dfaa164b4be4b9b907e295acc7faa49786
Sha256: 1cf604d1a590dd08f2f4e314a64cc213e2f4a59154b9ab116c7dc5cf832158cc
                                        
                                            GET /enroll/ScriptResource.axd?d=D9drwtSJ4hBA6O8UhT6CQl5kP-DNk5tqsFSKE4QAx7FiqQUkfG0xcYhM38F4ULHzEsr3ccm3WWC8c21Rx1XAbPd7dZSDwlwAN3FBxOF0-Op5UR1aFNYrVvCtHrsmIFUrjLaB6c2og1ihVr9uj93NAWWK3N01&t=ffffffffa580202a HTTP/1.1 
Host: cascadiasolutions.ca
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cascadiasolutions.ca/en/UltraBranch/efs/servlet/efs/security.php
Cookie: _gcl_au=1.1.2140339053.1664538884; _ga_R11FYFZ8HF=GS1.1.1664538884.1.0.1664538890.0.0.0; _ga=GA1.2.1216674640.1664538884; agfs=b73e666a47b979ba3845bfeb53203040.13365962&1664538886&1664538886&direct&(none)&&&&&; _gid=GA1.2.1398326626.1664538886; _uetsid=ada3406040b611ed8b62f187aa804768; _uetvid=ada3810040b611ed8af43f5930c96078

                                         
                                         172.67.209.163
HTTP/1.1 404 Not Found
Content-Type: text/html
                                        
Date: Fri, 30 Sep 2022 13:25:13 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 20 Feb 2020 23:03:11 GMT
Vary: Accept-Encoding
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=V1BVBbFM9CyMx%2FpSmfb4FqVEExSw%2BZgZh9i0rX7rJUbtz%2BqUfdIJJcsQydX5QUVg8GrYI9%2F13bTkwlWySDugUHNg%2F%2BRtndlxKTA3jt2Vm0u%2B9hivb%2B3S5A72Wtld6KKoaCULCDQkwA%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 752d48855e2d0b49-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (358)
Size:   4000
Md5:    35a0c241e2561af2ab4cc0f600eae7a5
Sha1:   f3ffb0dfaa164b4be4b9b907e295acc7faa49786
Sha256: 1cf604d1a590dd08f2f4e314a64cc213e2f4a59154b9ab116c7dc5cf832158cc
                                        
                                            GET /enroll/ScriptResource.axd?d=JnUc-DEDOM5KzzVKtsL1tcXbu1D4Hj6yCmHmr9cM66AViK3ia2ZDHVT7KW47KHMyBMtKHFfS1WB4puAzjXwId5XQy_jrygJTcv1Xors3xQgEJuGStAVwV63p2PylRvqJXzAeOswFDaHhtAK0W-ax5ffg3ZOYXYmQ06Ttk8PaI-ZJmv_M0&t=ffffffffa580202a HTTP/1.1 
Host: cascadiasolutions.ca
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cascadiasolutions.ca/en/UltraBranch/efs/servlet/efs/security.php
Cookie: _gcl_au=1.1.2140339053.1664538884; _ga_R11FYFZ8HF=GS1.1.1664538884.1.0.1664538890.0.0.0; _ga=GA1.2.1216674640.1664538884; agfs=b73e666a47b979ba3845bfeb53203040.13365962&1664538886&1664538886&direct&(none)&&&&&; _gid=GA1.2.1398326626.1664538886; _uetsid=ada3406040b611ed8b62f187aa804768; _uetvid=ada3810040b611ed8af43f5930c96078

                                         
                                         172.67.209.163
HTTP/1.1 404 Not Found
Content-Type: text/html
                                        
Date: Fri, 30 Sep 2022 13:25:13 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 20 Feb 2020 23:03:11 GMT
Vary: Accept-Encoding
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=cKkQW8ddHS7X%2B%2FrYqKcS%2BWT6i36brIa%2B6ioXMwRN3OAlQcghZPOnNxUiMePkJIgYpv7BUSM6JNfryWXnrVSclSq6f3fGruXCKWnBKRIpa7KGL%2FesN4z%2BrqcGrGGalKMj1oTlql81Sw%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 752d48862f400b49-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (358)
Size:   4000
Md5:    35a0c241e2561af2ab4cc0f600eae7a5
Sha1:   f3ffb0dfaa164b4be4b9b907e295acc7faa49786
Sha256: 1cf604d1a590dd08f2f4e314a64cc213e2f4a59154b9ab116c7dc5cf832158cc
                                        
                                            GET /en/UltraBranch/efs/servlet/efs/ScriptLib/DotNetScripts_v4.js HTTP/1.1 
Host: cascadiasolutions.ca
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cascadiasolutions.ca/en/UltraBranch/efs/servlet/efs/security.php
Cookie: _gcl_au=1.1.2140339053.1664538884; _ga_R11FYFZ8HF=GS1.1.1664538884.1.0.1664538890.0.0.0; _ga=GA1.2.1216674640.1664538884; agfs=b73e666a47b979ba3845bfeb53203040.13365962&1664538886&1664538886&direct&(none)&&&&&; _gid=GA1.2.1398326626.1664538886; _uetsid=ada3406040b611ed8b62f187aa804768; _uetvid=ada3810040b611ed8af43f5930c96078

                                         
                                         172.67.209.163
HTTP/1.1 404 Not Found
Content-Type: text/html
                                        
Date: Fri, 30 Sep 2022 13:25:13 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 20 Feb 2020 23:03:11 GMT
Vary: Accept-Encoding
Cache-Control: max-age=14400
CF-Cache-Status: HIT
Age: 1
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=21x3osiLyJ97f1lV3O8Z6uG1UXSHTxAj9KWISmfN2sogtZgbSSl%2FChPbiaxiRvq4Eb0NllFpSZhYCsRo8gt4zna59LPPOmd23Ll7q363eSM81P1WTXodh0s%2BToLnqP9aqZ8fZyjxYw%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 752d4887082d0b49-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (358)
Size:   4000
Md5:    35a0c241e2561af2ab4cc0f600eae7a5
Sha1:   f3ffb0dfaa164b4be4b9b907e295acc7faa49786
Sha256: 1cf604d1a590dd08f2f4e314a64cc213e2f4a59154b9ab116c7dc5cf832158cc

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /en/UltraBranch/efs/servlet/efs/ScriptLib/AriaLib.js HTTP/1.1 
Host: cascadiasolutions.ca
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cascadiasolutions.ca/en/UltraBranch/efs/servlet/efs/security.php
Cookie: _gcl_au=1.1.2140339053.1664538884; _ga_R11FYFZ8HF=GS1.1.1664538884.1.0.1664538890.0.0.0; _ga=GA1.2.1216674640.1664538884; agfs=b73e666a47b979ba3845bfeb53203040.13365962&1664538886&1664538886&direct&(none)&&&&&; _gid=GA1.2.1398326626.1664538886; _uetsid=ada3406040b611ed8b62f187aa804768; _uetvid=ada3810040b611ed8af43f5930c96078

                                         
                                         172.67.209.163
HTTP/1.1 404 Not Found
Content-Type: text/html
                                        
Date: Fri, 30 Sep 2022 13:25:13 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 20 Feb 2020 23:03:11 GMT
Vary: Accept-Encoding
Cache-Control: max-age=14400
CF-Cache-Status: HIT
Age: 1
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=BU2b6BDhejtjDqQDhq5x8a1%2BAiTomsXJRHusebPrCLRZQCPGP0UlpnxbLNE97KJ40m77sio4j12cZCoSrG9aYnR5olRZpr8BlLmp2asebtbxBMwia7z3Ec4CiYqHm5c3ToI28fUMWw%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 752d4887283d0b49-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (358)
Size:   4000
Md5:    35a0c241e2561af2ab4cc0f600eae7a5
Sha1:   f3ffb0dfaa164b4be4b9b907e295acc7faa49786
Sha256: 1cf604d1a590dd08f2f4e314a64cc213e2f4a59154b9ab116c7dc5cf832158cc

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /en/UltraBranch/efs/servlet/efs/Scripts/jquery-1.10.2.js HTTP/1.1 
Host: cascadiasolutions.ca
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cascadiasolutions.ca/en/UltraBranch/efs/servlet/efs/security.php
Cookie: _gcl_au=1.1.2140339053.1664538884; _ga_R11FYFZ8HF=GS1.1.1664538884.1.0.1664538890.0.0.0; _ga=GA1.2.1216674640.1664538884; agfs=b73e666a47b979ba3845bfeb53203040.13365962&1664538886&1664538886&direct&(none)&&&&&; _gid=GA1.2.1398326626.1664538886; _uetsid=ada3406040b611ed8b62f187aa804768; _uetvid=ada3810040b611ed8af43f5930c96078

                                         
                                         172.67.209.163
HTTP/1.1 404 Not Found
Content-Type: text/html
                                        
Date: Fri, 30 Sep 2022 13:25:13 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 20 Feb 2020 23:03:11 GMT
Vary: Accept-Encoding
Cache-Control: max-age=14400
CF-Cache-Status: HIT
Age: 1
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=oyGjJqmsT4yzXnh%2BzXbIpGfDjsBnjpyF7FCdV9IW4HZGkaG5lyYy2MWr7gJUe5nzRpI5kQsDstci7vYih0YwzlCREMunZHg2FABZ2daxMesmmmJZfItCNgpn6vdW7lwX4B%2Fl8Fjzlw%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 752d4887384e0b49-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (358)
Size:   4000
Md5:    35a0c241e2561af2ab4cc0f600eae7a5
Sha1:   f3ffb0dfaa164b4be4b9b907e295acc7faa49786
Sha256: 1cf604d1a590dd08f2f4e314a64cc213e2f4a59154b9ab116c7dc5cf832158cc

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /en/UltraBranch/efs/servlet/efs/App_Themes/DefaultTheme/ControlImages/close.png HTTP/1.1 
Host: cascadiasolutions.ca
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cascadiasolutions.ca/en/UltraBranch/efs/servlet/efs/security.php
Cookie: _gcl_au=1.1.2140339053.1664538884; _ga_R11FYFZ8HF=GS1.1.1664538884.1.0.1664538890.0.0.0; _ga=GA1.2.1216674640.1664538884; agfs=b73e666a47b979ba3845bfeb53203040.13365962&1664538886&1664538886&direct&(none)&&&&&; _gid=GA1.2.1398326626.1664538886; _uetsid=ada3406040b611ed8b62f187aa804768; _uetvid=ada3810040b611ed8af43f5930c96078

                                         
                                         172.67.209.163
HTTP/1.1 404 Not Found
Content-Type: text/html
                                        
Date: Fri, 30 Sep 2022 13:25:13 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 20 Feb 2020 23:03:11 GMT
Vary: Accept-Encoding
Cache-Control: max-age=14400
CF-Cache-Status: HIT
Age: 1
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ZT6uGmSMNNjzzcOAaVpOjuPVPqSw8ljLlmgFmqPfY%2BXexMTEHclO%2BpBTjw4WFAyN6Ddc8%2FOM1CnGAIZKQHev7bMjizxVOkefzrmpQyv9nY9lpeEcivdb8%2BRkmPXNv276o7BNgz2yWQ%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 752d488758720b49-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (358)
Size:   4000
Md5:    35a0c241e2561af2ab4cc0f600eae7a5
Sha1:   f3ffb0dfaa164b4be4b9b907e295acc7faa49786
Sha256: 1cf604d1a590dd08f2f4e314a64cc213e2f4a59154b9ab116c7dc5cf832158cc
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "25F075EFFBD8ACDED8F38D69EA17F673DE3E197B635274D4C52411EF577FE8E7"
Last-Modified: Thu, 29 Sep 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12141
Expires: Fri, 30 Sep 2022 16:47:34 GMT
Date: Fri, 30 Sep 2022 13:25:13 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "25F075EFFBD8ACDED8F38D69EA17F673DE3E197B635274D4C52411EF577FE8E7"
Last-Modified: Thu, 29 Sep 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12141
Expires: Fri, 30 Sep 2022 16:47:34 GMT
Date: Fri, 30 Sep 2022 13:25:13 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "25F075EFFBD8ACDED8F38D69EA17F673DE3E197B635274D4C52411EF577FE8E7"
Last-Modified: Thu, 29 Sep 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12141
Expires: Fri, 30 Sep 2022 16:47:34 GMT
Date: Fri, 30 Sep 2022 13:25:13 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "25F075EFFBD8ACDED8F38D69EA17F673DE3E197B635274D4C52411EF577FE8E7"
Last-Modified: Thu, 29 Sep 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12141
Expires: Fri, 30 Sep 2022 16:47:34 GMT
Date: Fri, 30 Sep 2022 13:25:13 GMT
Connection: keep-alive

                                        
                                            GET /css/nav/header_bg.png HTTP/1.1 
Host: www.alaskausa.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.alaskausa.org/css/akusa-express.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         107.162.171.161
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Last-Modified: Wed, 28 Sep 2022 02:43:45 GMT
Accept-Ranges: bytes
ETag: "66d4121e4d2d81:0"
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
X-Frame-Options: DENY
Date: Fri, 30 Sep 2022 13:25:12 GMT
Content-Length: 8058
Via: 1.1 dca1-bit9045


--- Additional Info ---
Magic:  PNG image data, 156 x 165, 8-bit/color RGB, non-interlaced\012- data
Size:   8058
Md5:    f420d4563192f414fabc27808342a8b2
Sha1:   80d69a4a339f6ddfe991d41d798d9a58fa0a21ea
Sha256: 5cd6b433131a0f7972117a1de73410cd07059f385b4dceb1e99b1c9dd6351fb6
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "25F075EFFBD8ACDED8F38D69EA17F673DE3E197B635274D4C52411EF577FE8E7"
Last-Modified: Thu, 29 Sep 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12141
Expires: Fri, 30 Sep 2022 16:47:34 GMT
Date: Fri, 30 Sep 2022 13:25:13 GMT
Connection: keep-alive

                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2449b320-e517-4241-b0f6-96786331ba6a.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 11881
x-amzn-requestid: 4a49c2e9-a894-44df-b9a6-d02a9edc38a2
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZPd5QHvbIAMF5uw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6336103b-127426cc20c4d17713c2df6f;Sampled=0
x-amzn-remapped-date: Thu, 29 Sep 2022 21:38:03 GMT
x-amz-cf-pop: SFO5-P2, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: MTAjo2QX69HPqJoco4O5yhUsTyCQ7M29-TOAHaUdA4XykJJnyR62bQ==
via: 1.1 7256fedee68a59a508800e0dda035348.cloudfront.net (CloudFront), 1.1 e66162aafd55b64ba1478ff7105150fa.cloudfront.net (CloudFront), 1.1 google
date: Thu, 29 Sep 2022 21:47:06 GMT
etag: "c5846663f31f7fbced777f0499caac638cc3c28b"
age: 56287
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   11881
Md5:    13d4e2dbae75f2029d80396e4c8117a3
Sha1:   c5846663f31f7fbced777f0499caac638cc3c28b
Sha256: ac0fb122c4f6857e9268faeacb387fcb1b1fb87cdfedb163574d3df451cf0447
                                        
                                            GET /css/nav/pgMainEdge.png HTTP/1.1 
Host: www.alaskausa.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://cascadiasolutions.ca/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         107.162.171.161
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Last-Modified: Wed, 28 Sep 2022 02:43:58 GMT
Accept-Ranges: bytes
ETag: "51dba928e4d2d81:0"
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
X-Frame-Options: DENY
Date: Fri, 30 Sep 2022 13:25:18 GMT
Content-Length: 960
Via: 1.1 dca1-bit9045
Vary: Accept-Encoding


--- Additional Info ---
Magic:  PNG image data, 1 x 3, 8-bit colormap, non-interlaced\012- data
Size:   960
Md5:    a5ea8f10a3e08ef3bc3acbe1add70acd
Sha1:   3da6cb1b65f0e536b05bb368c1358be49a445341
Sha256: 1fb28d9c14ec42912599df0f34b14c6e6f996084ca13e06bb11dcb4c9459ed34
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F98c23448-09e3-4c05-86c5-dafbe6ca8a0e.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 8059
x-amzn-requestid: f8bb9e4b-9f3c-47ba-8524-de16155e536d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZNepwHAVoAMFvNA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633544a4-5d884e29378635b60592b618;Sampled=0
x-amzn-remapped-date: Thu, 29 Sep 2022 07:09:24 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: NMiKZSkokVXNTV76vsVJ7VEu6YFfT9MqL7tHtT8CwZq0BwTbXOpm6Q==
via: 1.1 000f4a2f631bace380a0afa747a82482.cloudfront.net (CloudFront), 1.1 ead78c395f4bede3ec6cd7ea180e3d3a.cloudfront.net (CloudFront), 1.1 google
date: Fri, 30 Sep 2022 04:58:47 GMT
age: 30386
etag: "86dd3bf133e9eddf8852f39e1ee695ee599ac886"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   8059
Md5:    d21d2bdcedbd619a80017054076319f9
Sha1:   86dd3bf133e9eddf8852f39e1ee695ee599ac886
Sha256: fc5672d5a8e9c6a5ec531f7ba05b65c192af37edf6c3a48105df3685de44ec0d
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F99f26bb4-2c5c-44ef-86d3-90fd05ec1ce0.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 9654
x-amzn-requestid: 7961f184-9476-43de-bf35-8ccb50ee1760
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZGVYsHA6oAMFvRA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63326904-05f567f7606462ac44f89987;Sampled=0
x-amzn-remapped-date: Tue, 27 Sep 2022 03:07:48 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: XaB4TwXv4xy0Sy3dncNYZWEPEnHY5BkEHR7fZDK59APYkzH9DPdT7A==
via: 1.1 a4fe306096165bb1e86e69365dc8fac2.cloudfront.net (CloudFront), 1.1 1508efc4152aa1778ed4adecb328b374.cloudfront.net (CloudFront), 1.1 google
date: Fri, 30 Sep 2022 03:46:05 GMT
age: 34748
etag: "44cc19b21912d07f82a88af5b2fa6d3e370459bf"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   9654
Md5:    36ae9444071dd70dcf86802c370ffda9
Sha1:   44cc19b21912d07f82a88af5b2fa6d3e370459bf
Sha256: 99984d108bf31d733414f7f1352e17225ac21ac2dbfb4b1e7fa7ae80e5b6b822
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6d906d66-cd90-4963-827e-8d0564c0f787.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 5106
x-amzn-requestid: a906507c-8820-489c-9978-7d0fd026c862
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZPd5PE0MIAMF3DA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6336103a-49eb3879088f17bc01d177c7;Sampled=0
x-amzn-remapped-date: Thu, 29 Sep 2022 21:38:02 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: aeTAqh8D5whTHS3seyOUj7QCNaITUh2ekHG8vNWZlpSeAnqPuFzmcQ==
via: 1.1 41e349e25dc4bc856d0e5d2c162428a0.cloudfront.net (CloudFront), 1.1 57a21088b36c69a83578b5a5579df58e.cloudfront.net (CloudFront), 1.1 google
date: Thu, 29 Sep 2022 21:46:34 GMT
age: 56319
etag: "3481dce8ab711111fc8863d88bee1a887cfd43ac"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   5106
Md5:    13a12db696bc2bf6a6ea2f48f4c1428e
Sha1:   3481dce8ab711111fc8863d88bee1a887cfd43ac
Sha256: 6dae6c9e5de4146e1f528a36a1795225c9731385f13927fc001fb3f9842fe8f1
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F59da9c68-5ffa-4dc1-adf8-645278cd60ca.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 10380
x-amzn-requestid: 35ee2a77-159c-4bb4-a825-98c638398586
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZPdZYHsTIAMFQNQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63360f6f-4f68073432bcea371c7b8f03;Sampled=0
x-amzn-remapped-date: Thu, 29 Sep 2022 21:34:39 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: IENB0e-e13ywHJKPgyLWn1bGPMMxFLUu3cIUcREjGhxDEMROEL1jBg==
via: 1.1 00f0a41f749793b9dd653153037c957e.cloudfront.net (CloudFront), 1.1 4f3feb5c4393987d42d1971d404d7cea.cloudfront.net (CloudFront), 1.1 google
date: Thu, 29 Sep 2022 22:24:00 GMT
age: 54073
etag: "265840b2d2fc6eb764cc6409b05deee8d77a19c2"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   10380
Md5:    139a144f8cb04ac8aae65f4bad1473e7
Sha1:   265840b2d2fc6eb764cc6409b05deee8d77a19c2
Sha256: 6e0f01b6bdd5a92e92c7b29a6172a2900c68900afd2abba948940621252e0fd8
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9789cead-4e6c-4a12-9b45-25d0efd38fc9.png HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 16011
x-amzn-requestid: d58dfdcd-383a-45ac-8ae2-2b97f016b6a4
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZPdbjFy1IAMF84A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63360f7c-1ca9707a5e5087fd769d9ab6;Sampled=0
x-amzn-remapped-date: Thu, 29 Sep 2022 21:34:52 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: f7RrSV82yxUNWPUohKYX-_PBShMw7Qk82bepr3WAGkzHTjLR-gIXBA==
via: 1.1 28a7186077f9b5270d98dd053f31303e.cloudfront.net (CloudFront), 1.1 ee8246c5442dace7525c74f6a799bb46.cloudfront.net (CloudFront), 1.1 google
date: Thu, 29 Sep 2022 22:53:34 GMT
age: 52299
etag: "78b798f2cfa7db13a6b5ca2ca2783bece5e77d5d"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   16011
Md5:    1389b1d624b44706c7a6f6b7eb769241
Sha1:   78b798f2cfa7db13a6b5ca2ca2783bece5e77d5d
Sha256: c3c2526b98be06fc7e793e1150bacde2a7bd718e29a851a6e6992e8d84333790
                                        
                                            GET /agf.gif?t=pv&pv=%2Fen%2FUltraBranch%2Fefs%2Fservlet%2Fefs%2Fsecurity.php&tt=Security+Question&vt=returning&sc=direct&md=(none)&dp=24&sh=1024&sw=1280&bn=Firefox&bv=96&pn=Linux&pr=x86_64&bl=en-us&js=1.5&hn=cascadiasolutions.ca&vi=13365962&vs=133659621664544311&_=798357&v=040 HTTP/1.1 
Host: cascadiasolutions.ca
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cascadiasolutions.ca/en/UltraBranch/efs/servlet/efs/security.php
Cookie: _gcl_au=1.1.2140339053.1664538884; _ga_R11FYFZ8HF=GS1.1.1664538884.1.0.1664538890.0.0.0; _ga=GA1.2.1216674640.1664538884; agfs=b73e666a47b979ba3845bfeb53203040.13365962&1664544311&1664544311&direct&(none)&&&&&; _gid=GA1.2.1398326626.1664538886; _uetsid=ada3406040b611ed8b62f187aa804768; _uetvid=ada3810040b611ed8af43f5930c96078; agft=b73e666a47b979ba3845bfeb53203040.13365962

                                         
                                         172.67.209.163
HTTP/1.1 404 Not Found
Content-Type: text/html
                                        
Date: Fri, 30 Sep 2022 13:25:13 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 20 Feb 2020 23:03:11 GMT
Vary: Accept-Encoding
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=RKrKfiTbO5hguWnb%2F44n20UI4kiKHovlSqHpJ0fXTqJhwx0IDRAv8TvJBcFxukdlvK3JQ4aWvCc76pXM6fY4GVmd83SsLu8Dr9fysVjsCvvAocxJUxe%2BeVyotcB2TWKAto4gsZC5cg%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 752d488768820b49-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (358)
Size:   4000
Md5:    35a0c241e2561af2ab4cc0f600eae7a5
Sha1:   f3ffb0dfaa164b4be4b9b907e295acc7faa49786
Sha256: 1cf604d1a590dd08f2f4e314a64cc213e2f4a59154b9ab116c7dc5cf832158cc
                                        
                                            GET /images/icon-76@2x.png HTTP/1.1 
Host: www.alaskausa.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://cascadiasolutions.ca/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         107.162.171.161
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Last-Modified: Wed, 28 Sep 2022 02:44:35 GMT
Accept-Ranges: bytes
ETag: "a135c43ee4d2d81:0"
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
X-Frame-Options: DENY
Date: Fri, 30 Sep 2022 13:25:14 GMT
Content-Length: 21833
Via: 1.1 dca1-bit9045


--- Additional Info ---
Magic:  PNG image data, 152 x 152, 8-bit/color RGB, non-interlaced\012- data
Size:   21833
Md5:    aa361a75d2fd36154747173a3a6cd422
Sha1:   8c14f2c0a0f3b2e1a265313239d6b9f7383808f9
Sha256: 31079b4bcec10fbd6e7530a766c97d05b5bc5e143af55a7599633fe3fd1c955e
                                        
                                            GET /favicon.ico HTTP/1.1 
Host: www.alaskausa.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://cascadiasolutions.ca/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         107.162.171.161
HTTP/1.1 200 OK
Content-Type: image/x-icon
                                        
Last-Modified: Wed, 28 Sep 2022 02:44:53 GMT
Accept-Ranges: bytes
ETag: "4f297449e4d2d81:0"
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
X-Frame-Options: DENY
Date: Fri, 30 Sep 2022 13:25:18 GMT
Content-Length: 1150
Via: 1.1 dca1-bit9045


--- Additional Info ---
Magic:  MS Windows icon resource - 1 icon, 16x16, 32 bits/pixel\012- data
Size:   1150
Md5:    a640140069c78a92f718c9fb63614d72
Sha1:   1418d5de4993b63c2b11a64df62a03ae8ebb8f95
Sha256: 5b8545b9cf60e23bd9c7eacef43e9b85e2843b1d90328b5b6fca9ef851347808