Report - iccupay-auth.us/ed8c35a1ac48075e6d39385ae0362958/index.php

Report Overview

Submitted URL
iccupay-auth.us/ed8c35a1ac48075e6d39385ae0362958/index.php
IP
176.123.0.55
ASN
#200019 Alexhost Srl
Submitted
2022-11-26 20:21:19
Access
Website Title
Final URL
Tags
None
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
4

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
jelly.mdhv.io	2088	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	455 B	577 B	216.239.34.21
b.clarity.ms	3462	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	440 B	281 B	20.75.32.255
r3.o.lencr.org	344	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.0 kB	8.0 kB	23.36.76.226
content-signature-2.cdn.mozilla.net	1152	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	413 B	5.8 kB	34.160.144.191
analytics.tiktok.com	1182	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.2 kB	34 kB	23.36.79.32
www.google.no	25607	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	478 B	694 B	142.250.74.3
stats.g.doubleclick.net	96	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	478 B	559 B	142.251.1.156
www.google-analytics.com	40	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	387 B	45 kB	142.250.74.174
push.services.mozilla.com	2140	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	606 B	127 B	52.41.252.32
iccu.com	105071	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	424 B	567 B	52.88.3.188
img-getpocket.cdn.mozilla.net	1631	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.8 kB	70 kB	34.120.237.76
ocsp.sca1b.amazontrust.com	1015	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.8 kB	4.9 kB	143.204.42.165
connect.facebook.net	139	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	370 B	29 kB	31.13.72.12
maps.google.com	1899	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	403 B	54 kB	216.58.211.14
www.googletagmanager.com	75	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	377 B	97 kB	142.250.74.168
region1.analytics.google.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	696 B	559 B	216.239.32.36
cdn.evgnet.com	5695	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	395 B	47 kB	151.101.0.114
idahoccu.us-1.evergage.com	358701	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.8 kB	1.3 kB	54.163.247.234
bat.bing.com	387	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.5 kB	14 kB	204.79.197.200
www.facebook.com	99	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.2 kB	87 kB	31.13.72.36
contile.services.mozilla.com	1114	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	333 B	229 B	34.117.237.239
ocsp.comodoca.com	1696	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	341 B	1.0 kB	104.18.32.68
ocsp.pki.goog	175	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	4.1 kB	8.4 kB	142.250.74.3
tr.snapchat.com	978	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.1 kB	994 B	35.190.43.134
c.clarity.ms	803	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	837 B	1.2 kB	20.234.93.27
c.bing.com	247	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	482 B	795 B	204.79.197.200
visitor-services.boldchat.com	11656	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	423 B	519 B	18.197.58.119
ocsp.digicert.com	86	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.4 kB	8.3 kB	93.184.220.29
sc-static.net	1183	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	360 B	13 kB	54.230.82.240
googleads.g.doubleclick.net	42	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	689 B	1.8 kB	142.250.74.2
maps.googleapis.com	33876	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	415 B	677 B	216.58.207.202
href.li	36866	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	455 B	242 B	192.0.78.27
www.iccu.com	287196	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	20 kB	636 kB	54.214.206.138
collector-21348.us.tvsquared.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.0 kB	9.1 kB	18.217.91.236
www.google.com	7	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	670 B	757 B	142.250.74.164
tags.srv.stackadapt.com	3857	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.0 kB	7.5 kB	54.225.101.189
vmss.boldchat.com	12749	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	387 B	19 kB	52.24.130.127
iccupay-auth.us	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	876 B	1.0 kB	176.123.0.55
firefox.settings.services.mozilla.com	867	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	782 B	2.4 kB	34.102.187.140
cdn.iccu.com	460814	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.0 kB	803 kB	143.204.55.19
www.clarity.ms	1404	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	746 B	56 kB	13.107.227.53

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

Scan Date	Severity	Indicator	Alert
2022-11-26	medium	iccupay-auth.us/ed8c35a1ac48075e6d39385ae0362958/index.php	Phishing
2022-11-26	medium	iccupay-auth.us/ed8c35a1ac48075e6d39385ae0362958/index.php	Phishing

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

JavaScript (52)

	URL	Size	First Seen	Last Seen
	href.li/?https://iccu.com/	101 B	2023-03-08	2023-03-13
Pretty URL href.li/?https://iccu.com/ IP 192.0.78.27 ASN #2635 AUTOMATTIC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 06:49:14 Last Seen2023-03-13 08:18:52 Times Seen1 Hash f3a3c8d49edce657daa49d8404ceb191 a696181e33ddf411d31f18ba2297c82861a1d3e7 111a05562195a6046bc946d65ffddc06baa816866667e214c8fe84e7222e65fa Loading...

	www.googletagmanager.com/gtm.js?id=GTM-M9ND4W	334 kB	2023-03-11	2023-03-11
Pretty URL www.googletagmanager.com/gtm.js?id=GTM-M9ND4W IP 142.250.74.168 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 20:54:47 Last Seen2023-03-11 20:54:47 Times Seen1 Hash 721b5f6c5719a56d2894d755c4020897 54ffd20e94598652381e45f5253ee172127fe311 42e414688181b32cd46c265147bf08983c36719158db993448d23c27b70abd56 Loading...

	www.iccu.com/template/library/js/jquery.bxslider.min.js	19 kB	2023-03-07	2024-04-26
Pretty URL www.iccu.com/template/library/js/jquery.bxslider.min.js IP 54.214.206.138 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:15:11 Last Seen2024-04-26 17:17:53 Times Seen4417 Hash 697d69a48e5356f7106e38c09f7f19e0 b57160771fa597a5b56c5b12756c693e4829be07 bb9e7dc822c6b7b95a6329932885c72ff2caf74b243fc1c40aca0e858123b83e Loading...

	www.iccu.com/template/library/js/jquery.fittext.js	2.2 kB	2023-03-08	2023-03-13
Pretty URL www.iccu.com/template/library/js/jquery.fittext.js IP 54.214.206.138 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 06:49:14 Last Seen2023-03-13 15:14:41 Times Seen1 Hash cd4ec7728ab3222f57cc0fb317fb4963 492848c00ce10e6e4c7fba469f1c9f17339ca572 b1b1d1a4f2540e124f8c152f13dad27001619be9145e96edd59a8f5d8ad0fc0b Loading...

	www.iccu.com/template/library/js/respond.min.js	4.4 kB	2023-03-07	2024-04-07
Pretty URL www.iccu.com/template/library/js/respond.min.js IP 54.214.206.138 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:10:49 Last Seen2024-04-07 00:26:26 Times Seen385 Hash afc1984a3d17110449dc90cf22de0c27 b5aba40d65b0d6f85859db47f757ea971a0efd30 83a8807ef669fa70d0d9375347f5552897f76c6ae8e2e6f97ef592595462d8d1 Loading...

	analytics.tiktok.com/i18n/pixel/config.js?sdkid=CDMJCTRC77U9BMO6V730&hostname=www.iccu.com	867 B	2023-03-11	2023-03-11
Pretty URL analytics.tiktok.com/i18n/pixel/config.js?sdkid=CDMJCTRC77U9BMO6V730&hostname=www.iccu.com IP 23.36.79.32 ASN #20940 Akamai International B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 16:43:48 Last Seen2023-03-11 20:54:47 Times Seen1 Hash 636e834a17be66e64403cf0907002860 16dc5e1c8ece2cb7b8c8a64bb0e0745fc70b51a8 d9002fb50549bcaa0725c9ff7ed653c57f8248d127b79e6285589ebe715dd29b Loading...

	www.youtube.com/iframe_api	1.0 kB	2023-03-11	2023-03-11
Pretty URL www.youtube.com/iframe_api IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 15:54:42 Last Seen2023-03-11 22:32:31 Times Seen1 Hash c9b563320f76cb761634839a69b46185 c408e2a4282451589fed41b572a719bc14b5a4ec 8d88570992716a4ec3afa008e9e4162144e37ac9be5553ddf1ebb0f030d1b601 Loading...

	bat.bing.com/bat.js	39 kB	2023-03-08	2023-12-01
Pretty URL bat.bing.com/bat.js IP 204.79.197.200 ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:22:44 Last Seen2023-12-01 19:12:11 Times Seen33 Hash 4ffa93c7b72214cba0395e236738648c 89a3b99eebfa5ebcea11ba92e0e3e63f0007b6f9 492f3de5b6bff06f8b26f61d37e2e565f8f31e00315600c73d9caa85713e8c29 Loading...

	tags.srv.stackadapt.com/events.js	17 kB	2023-03-11	2023-03-11
Pretty URL tags.srv.stackadapt.com/events.js IP 54.225.101.189 ASN #14618 AMAZON-AES Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 20:54:47 Last Seen2023-03-11 20:54:47 Times Seen1 Hash a4971fd6a6a0b7bab0b06ff5e1ae434a ee15265c1414d78213a3f3a79dead70c44aa2529 ece9233a8d647b00141f9dd00edbda6e32b41aa546a019c6640f2b7dc95f1721 Loading...

	www.iccu.com/template/library/js/libs/fancybox/jquery.fancybox.js	49 kB	2023-03-07	2024-04-26
Pretty URL www.iccu.com/template/library/js/libs/fancybox/jquery.fancybox.js IP ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:01:55 Last Seen2024-04-26 12:41:11 Times Seen1262 Hash 921e9cb04ad6e2559869ec845c5be39b 1cf3d47b5ccb7cb6e9019c64f2a88d03a64853e4 6c78ce6b6d1928630b903084ea9d503643f303ba05455860cc7cd17f7687cc65 Loading...

	www.iccu.com/	174 B	2023-03-08	2023-03-13
Pretty URL www.iccu.com/ IP 54.214.206.138 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:22:45 Last Seen2023-03-13 15:14:41 Times Seen1 Hash 8f849e223840ae6f622a8bd3c5e83e33 ea1799f8786b7153515f3e0d294a8f4dddfce96f 240b6d6f22a46eb4cb4a18f505d564df82de7f9a39a203de7017266fdaad63e1 Loading...

	www.iccu.com/	435 B	2023-03-08	2023-10-30
Pretty URL www.iccu.com/ IP 54.214.206.138 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:22:44 Last Seen2023-10-30 19:43:17 Times Seen4 Hash 4679bef980ed32d0685fdc7f01c16b77 b74e5b2daa213e22542a48a7dbb19fdbe87104fc ef2621135df4bb73f41175d5447131395042ce2bbb007dea7e7e5f845f382509 Loading...

	sc-static.net/scevent.min.js	28 kB	2023-03-11	2023-03-11
Pretty URL sc-static.net/scevent.min.js IP 54.230.82.240 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 13:39:08 Last Seen2023-03-11 23:09:32 Times Seen1 Hash a5766af4f27e593d61c6b2afe7d795e2 6726af02be7c4f4fbbd6897e0c79b6df621c7f7d 43cf94adadc78b282518b7beabeee72520e2bae9c2328c5474388ad77b41e9de Loading...

	collector-21348.us.tvsquared.com/tv2track.js	21 kB	2023-03-07	2024-04-26
Pretty URL collector-21348.us.tvsquared.com/tv2track.js IP 18.217.91.236 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:12:12 Last Seen2024-04-26 22:00:28 Times Seen4469 Hash a1f3145e1dc107aad3b57974b8817b57 507ea38aa8ad7bbe3ab3fa7e4c85016e3dca2960 a463aa6666ce0abcabf8033013cfe881fdbfb570389aff471d400a45b3a496d4 Loading...

	www.iccu.com/lib/js/jquery/jquery.min.js	90 kB	2023-03-08	2024-04-26
Pretty URL www.iccu.com/lib/js/jquery/jquery.min.js IP 54.214.206.138 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:21:46 Last Seen2024-04-26 22:15:52 Times Seen31837 Hash 17738318d61d394f1de8890d589afaec f6d0c4dc1399cf02d53f5753ad46573a8bbc2ac3 cc7403bab52ed166e24ea9324241045af370be482f5b594468f4a6ac6e7e7981 Loading...

	www.iccu.com/	1.1 kB	2023-03-08	2023-03-13
Pretty URL www.iccu.com/ IP 54.214.206.138 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 06:49:14 Last Seen2023-03-13 15:14:41 Times Seen1 Hash 6f023567d3ec72a5687886993af3243d 8587ef42e96eab04e59e25ebd955af1c859250aa 1d19393f76c8c8d977aec8eef0b0adc6226f9129fdb03b165672feaad171add6 Loading...

	www.iccu.com/	336 B	2023-03-08	2024-02-09
Pretty URL www.iccu.com/ IP 54.214.206.138 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 06:49:14 Last Seen2024-02-09 04:49:30 Times Seen8 Hash 4ee914b7cdbd2ae91665e296e9dd3f96 0f1231cfb860d7433265eef145d5df7367eb1a80 eb031ba95f92ea194818cf942585d5ee59cb0e754e7463a9d471070ea281e773 Loading...

	www.clarity.ms/tag/51qugbww3f	1.4 kB	2023-03-11	2023-03-11
Pretty URL www.clarity.ms/tag/51qugbww3f IP 13.107.227.53 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 20:54:47 Last Seen2023-03-11 20:54:47 Times Seen1 Hash b279bce56479881784f096d2a7fef682 a081911067acf05807a95910b551460e20281588 b6b070f31bcbe26ba3bf7afdb43e87298796428fc92a5cc60e1e79dd948d7184 Loading...

	www.clarity.ms/eus2/s/0.6.43/clarity.js	55 kB	2023-03-08	2023-10-23
Pretty URL www.clarity.ms/eus2/s/0.6.43/clarity.js IP 13.107.227.53 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:22:44 Last Seen2023-10-23 15:37:18 Times Seen9 Hash 441723b72633b1ac9757ad7c63168005 806166ca9ebb5839dd90a5e5c9335e3e0b18c169 cc8a16ce849d72f106bd67187e4b60c20da3093375202bf0b53f23e8f40a8b11 Loading...

	unknown	0 B	2023-03-07	2024-04-27
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:01:59 Last Seen2024-04-27 01:38:57 Times Seen37107909 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	googleads.g.doubleclick.net/pagead/viewthroughconversion/922652299/?random=1669494072292&cv=11&fst=1669494072292&bg=ffffff&guid=ON&async=1&gtm=2wgb90&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fwww.iccu.com%2F&tiba=Idaho%20Central%20Credit%20Union%20%7C%20Idaho%27s%20Premier%20Credit%20Union&auid=268949001.1669494071&rfmt=3&fmt=4	1.9 kB	2023-03-11	2023-03-11
Pretty URL googleads.g.doubleclick.net/pagead/viewthroughconversion/922652299/?random=1669494072292&cv=11&fst=1669494072292&bg=ffffff&guid=ON&async=1&gtm=2wgb90&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fwww.iccu.com%2F&tiba=Idaho%20Central%20Credit%20Union%20%7C%20Idaho%27s%20Premier%20Credit%20Union&auid=268949001.1669494071&rfmt=3&fmt=4 IP 142.250.74.2 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 20:54:47 Last Seen2023-03-11 20:54:47 Times Seen1 Hash cece083be4076ac30ffe6fa8feb19505 6a97c8e5ae8083bebb0218fd85d41bd8a662b681 04e13a739424d77cd563eebddd7312c58a72708b118525c301fbef1ef496ba71 Loading...

	www.iccu.com/template/library/js/libs/gmaps.min.js	31 kB	2023-03-08	2023-03-13
Pretty URL www.iccu.com/template/library/js/libs/gmaps.min.js IP 54.214.206.138 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 06:49:14 Last Seen2023-03-13 15:14:41 Times Seen1 Hash 31145f84903cf7763ba117bb0b1fc7cc f257813d132e2cc53d36751b4c1b6039eb6319d5 9cc700b406f693417235eb0112645986890c3bdde0583fb9d9b89b2b5ac79fc6 Loading...

	cdn.iccu.com/inc/env.js?v=2022.10.28.1614	305 B	2023-03-08	2023-03-13
Pretty URL cdn.iccu.com/inc/env.js?v=2022.10.28.1614 IP 143.204.55.19 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:22:44 Last Seen2023-03-13 15:14:41 Times Seen1 Hash 0ed21d88d3ede147d9686d7c1cfc8993 fdb6aa1e490e6998b1d025c000f2c596cdaba7f3 cf668f1b6f5fef32654e46bea7b24a0544e19af20b5652793482518ad4180e71 Loading...

	www.iccu.com/	210 B	2023-03-08	2023-03-13
Pretty URL www.iccu.com/ IP 54.214.206.138 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 06:49:14 Last Seen2023-03-13 15:14:41 Times Seen1 Hash 57c867d313afcc4dd999bf6ecd9bbae0 c3b78f2463905d35d57a22423113d38e1d148ea1 64db135427e9945c28fab2610624331bb6e8ef92113229f7d61023e445bf6608 Loading...

	www.iccu.com/template/library/js/login.js	1.1 kB	2023-03-08	2023-03-13
Pretty URL www.iccu.com/template/library/js/login.js IP 54.214.206.138 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 06:49:14 Last Seen2023-03-13 15:14:41 Times Seen1 Hash 65d31da1ca655dc4f6debef12519a477 24403757545594a5b78542971ba9c0b45117aaf3 566644cf121ffe2f35b3d29179d5fcca1e4edcdb5c91c96f74e5241a561e11ec Loading...

	www.iccu.com/template/library/js/html5shiv.js	2.4 kB	2023-03-08	2024-02-29
Pretty URL www.iccu.com/template/library/js/html5shiv.js IP 54.214.206.138 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 06:49:14 Last Seen2024-02-29 14:31:29 Times Seen40 Hash 5a98a86b5cb48c1506f338463259ce41 af75be3cbcb7f68d71477aafd4f99c5b42af5a7f 86fbfe313672eea1721475598ca81e520c6d1f788ec4ef7726c7af3cd987e560 Loading...

	www.google-analytics.com/gtm/optimize.js?id=GTM-NNR2J8L	112 kB	2023-03-11	2023-03-11
Pretty URL www.google-analytics.com/gtm/optimize.js?id=GTM-NNR2J8L IP 142.250.74.174 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 16:43:48 Last Seen2023-03-11 20:54:47 Times Seen1 Hash d7d9fb4bdc4fa69e9288463c7ab29bd0 baa50f6a9694a38fd139438e014758eb2a0b0fd2 d533c17aab9338d5f78ce019138eec3e870f719c843f7e4199c2ac968853c01b Loading...

	www.google-analytics.com/analytics.js	50 kB	2023-03-08	2024-04-26
Pretty URL www.google-analytics.com/analytics.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 05:22:31 Last Seen2024-04-26 05:50:27 Times Seen1534 Hash fda30e8a22c9bcd954fd8d0fadd0e77c ae47cd34cbde081a48d7f92fc80aaf06a1381193 b42e4a056cb5b80c5a315040826866445ec9332f0749e184509ab2d9d3b86719 Loading...

	www.youtube.com/s/player/4eb6b35d/www-widgetapi.vflset/www-widgetapi.js	165 kB	2023-03-11	2023-05-31
Pretty URL www.youtube.com/s/player/4eb6b35d/www-widgetapi.vflset/www-widgetapi.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 15:52:48 Last Seen2023-05-31 23:29:02 Times Seen3 Hash 88124154500290578b9f9ccdc4a24ebf 18ad31291c978c128496c461433c9b2fe6addc84 47879e9a46a232ac6fa8931b17f3dbe8a09ea02497c2394abf2e45c431b9b5ac Loading...

	connect.facebook.net/signals/config/398312224211246?v=2.9.89&r=stable	300 kB	2023-03-08	2023-03-11
Pretty URL connect.facebook.net/signals/config/398312224211246?v=2.9.89&r=stable IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:22:44 Last Seen2023-03-11 20:54:47 Times Seen1 Hash a0dfef55417e0fdc038b7cdba1ca58c4 f6aca430e12851f056f1053b13fe5e7340ee01a9 3c457735f22ecd2003a9ebb5bbb2178e38cec01613a705eceb63fe1021c2a2fe Loading...

	www.googletagmanager.com/gtag/js?id=G-37JPF553KD&l=dataLayer&cx=c	223 kB	2023-03-11	2023-03-11
Pretty URL www.googletagmanager.com/gtag/js?id=G-37JPF553KD&l=dataLayer&cx=c IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 20:54:47 Last Seen2023-03-11 20:54:47 Times Seen1 Hash 02ba0b9c2c275efcb151763891be8caf 33f785561df512d6a7f842b795e439e868fcbdad cc835cd8e58bf856069468f68c67b496c5ae665cbc702de71a54d2112d0d880d Loading...

	www.iccu.com/template/library/js/libs/modernizr.custom.min.js	15 kB	2023-03-07	2024-04-18
Pretty URL www.iccu.com/template/library/js/libs/modernizr.custom.min.js IP 54.214.206.138 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:27:32 Last Seen2024-04-18 02:50:17 Times Seen235 Hash d11297470fe052b424d371eef75db45a c0cc3878e440bb03e001e29492b6f119eff21182 5498eab9ddd9c6790d3e401556c0daaa159bcf36708cb89fee8184bf38e4b7aa Loading...

	www.iccu.com/	1.4 kB	2023-03-08	2023-03-13
Pretty URL www.iccu.com/ IP 54.214.206.138 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 06:49:14 Last Seen2023-03-13 15:14:41 Times Seen1 Hash ba252e11147ffc04e01453c4e4a534d5 e7c036159d13114e639c26924f94f830099d9410 41eb8869811e0e5661bc890a69b35dba63edfd8484e0a232359e6f304c76a689 Loading...

	www.iccu.com/	180 B	2023-03-08	2023-03-13
Pretty URL www.iccu.com/ IP 54.214.206.138 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 06:49:14 Last Seen2023-03-13 15:14:41 Times Seen1 Hash d4bf4cf96c68f6b9b68ec6e58d063f50 56be86288a774bc83a913fc7f8b4f82a67d2b4fb ed7fc34fdd8bd86c791e17efebd39fdf4518e493f6fd38df1c7553e8f40136c0 Loading...

	www.iccu.com/modules/quick-pagepost-redirect-plugin/js/qppr_frontend_script.min.js	1.6 kB	2023-03-07	2024-04-22
Pretty URL www.iccu.com/modules/quick-pagepost-redirect-plugin/js/qppr_frontend_script.min.js IP 54.214.206.138 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:10:31 Last Seen2024-04-22 13:25:28 Times Seen183 Hash 5be7221067ec06b5cf0da08275e362f2 5fa371dfa579b506290e9ef74b24e124b0245cd5 3fc2845d22c09928ba9dae73f657a21ede05bed89a42efafe1028bcbe4ee499b Loading...

	www.iccu.com/	453 B	2023-03-08	2023-10-30
Pretty URL www.iccu.com/ IP 54.214.206.138 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 06:49:14 Last Seen2023-10-30 19:43:17 Times Seen4 Hash 99e28872ab64f26577cf0e00e62b424d 694271af93c511303ab6974e7c3ee09d3a3a5623 cdf54bc5774350e2889a0be7f1620d664aee34b1677681e4d702990962e66c59 Loading...

	www.iccu.com/	266 B	2023-03-08	2023-10-30
Pretty URL www.iccu.com/ IP 54.214.206.138 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 06:49:14 Last Seen2023-10-30 19:43:17 Times Seen4 Hash edb0bbdc3b900974ab8298b5875cbab3 e855a899f8cc79fd03992b5291217e0b4a9d3abd 0c6aa5da6b901c6b3a863d35cc24895cde53d23440f36d118daebff131a3b4ce Loading...

	www.iccu.com/	544 B	2023-03-08	2023-10-30
Pretty URL www.iccu.com/ IP 54.214.206.138 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 06:49:14 Last Seen2023-10-30 19:43:17 Times Seen3 Hash 844e5d65d27eb50dcd698e88e75646a1 5280b3bc46965373f98bece4a5fa831e3feb1dcc 95f368162dfc072cef892c31e8364929e49055a3a4e3063101358b62210af4b8 Loading...

	www.iccu.com/	340 B	2023-03-08	2024-02-09
Pretty URL www.iccu.com/ IP 54.214.206.138 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:22:44 Last Seen2024-02-09 04:49:30 Times Seen7 Hash f03a429f9f816c4a151e29a30d0c1a80 adf84fde4f24b3499ae06fe68ebcbc935f77eb50 90d5e01c5ca11c8d5c79d0df2743fbd91b9d2c534c1b2dcc72421224fb85829e Loading...

	www.iccu.com/lib/js/jquery/jquery.form.min.js	16 kB	2023-03-08	2024-04-19
Pretty URL www.iccu.com/lib/js/jquery/jquery.form.min.js IP 54.214.206.138 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:22:44 Last Seen2024-04-19 20:39:52 Times Seen504 Hash 677c2f0968a30971c14028915d03af28 3b84de809a104c613617eec0f055be7535b318f0 bd947fc70043b66e61cf4aa9ccb2c0472e7ca8898879239c62b51582161c266c Loading...

	www.iccu.com/	450 B	2023-03-08	2023-03-13
Pretty URL www.iccu.com/ IP 54.214.206.138 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 06:49:14 Last Seen2023-03-13 15:14:41 Times Seen1 Hash 69df5c3bc6cbd98379205b5c157d653f 5ffd961f8d10a3606fe3225e574aaa73b895bb37 78a8e1d5aee9d3749fb2295b581a9c1837b58048d6e0ee06700ca8574849ebec Loading...

	connect.facebook.net/en_US/fbevents.js	105 kB	2023-03-08	2023-11-28
Pretty URL connect.facebook.net/en_US/fbevents.js IP 31.13.72.12 ASN #32934 FACEBOOK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:22:10 Last Seen2023-11-28 17:55:58 Times Seen32 Hash a6ef7927128284961f4cadd572969f09 57e21033749687e69de710a0be6d4244edf1fe51 d5c905d7ce4679b183eb11f7c6811682ddffbf0f037590360ae2b1a84a51ef1b Loading...

	www.iccu.com/	75 B	2023-03-08	2023-03-13
Pretty URL www.iccu.com/ IP 54.214.206.138 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 06:49:14 Last Seen2023-03-13 15:14:41 Times Seen1 Hash 3ffc782c46ca825bdf7195f78f9452af a5e8afc659072d50a0d41049bfce86f03472cec3 358585e9c3aa9d9955d891145995f98bb5f5e4b6eb836994659f152f54f092c7 Loading...

	www.iccu.com/template/library/js/scripts.js?v=2022.10.28.1614	14 kB	2023-03-08	2023-03-13
Pretty URL www.iccu.com/template/library/js/scripts.js?v=2022.10.28.1614 IP 54.214.206.138 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:22:44 Last Seen2023-03-13 15:14:41 Times Seen1 Hash ab0e64c74e8e48ba1e9b8e7b5ad1113a 2a8cc6ef1b66724cd4c05051d7aa37d0d5dc00c0 44853d58f333dc59174dbc68df45f240950c5c5f9cc02dad33002dcdb53a9c5a Loading...

	www.iccu.com/	3.7 kB	2023-03-08	2024-04-02
Pretty URL www.iccu.com/ IP 54.214.206.138 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 06:49:14 Last Seen2024-04-02 11:52:23 Times Seen22 Hash 9baa125f4ef5b0e8c38bf266341bbbf5 a50abc0d2f42a54cb1fa20abf36b362aea2d0930 68053a5444feea772d2832a0b2d6a14326126857c4fe1a4614b27f74e4441c26 Loading...

	www.iccu.com/	398 B	2023-03-08	2023-10-30
Pretty URL www.iccu.com/ IP 54.214.206.138 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 06:49:14 Last Seen2023-10-30 19:43:17 Times Seen6 Hash 8009c6fab3e2c9ba5bd2f92719e3def7 58ce3a3d9f9601be76e74c67218bfe6f4c8f40ee 5fcb0eaa4582da1325f8b60d3b5e25e5945e8ed613f3947d69ce7104ae31376b Loading...

	www.iccu.com/	887 B	2023-03-08	2023-03-11
Pretty URL www.iccu.com/ IP 54.214.206.138 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:22:44 Last Seen2023-03-11 20:54:47 Times Seen1 Hash 32239a1f3155da84f75d8eca8070efa2 c8aad714587170088b26bfa9e8bfef10e12e9c80 212952d1657954942fbb9c0aaa6a9ecad5bf2b86c2adc1ac876463f16d4af807 Loading...

	analytics.tiktok.com/i18n/pixel/identify.js	117 kB	2023-03-09	2023-04-01
Pretty URL analytics.tiktok.com/i18n/pixel/identify.js IP 23.36.79.32 ASN #20940 Akamai International B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 03:22:59 Last Seen2023-04-01 11:21:50 Times Seen2 Hash e263120a249f3fa3845e85eb53194c28 2e40a73119701509d5ecd9d38203cb630d621e44 83cf8149ef742c4af7261b8fb4029470a341d867454da9f8fc145042cc1e5c52 Loading...

	connect.facebook.net/signals/config/1599075523726654?v=2.9.89&r=stable	26 kB	2023-03-08	2023-03-11
Pretty URL connect.facebook.net/signals/config/1599075523726654?v=2.9.89&r=stable IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:22:44 Last Seen2023-03-11 20:54:47 Times Seen1 Hash 4d495bc39b867fbb4c2ce3402d8a02a0 a03cd4422aab0ee4c7eb3b6191eb638664a37d3b f279681aacbf9e394bfeb27e40c04ee348a385cfe37faca559b2824a83c4208e Loading...

	vmss.boldchat.com/aid/885055130827083336/bc.vms4/vms.js	54 kB	2023-03-08	2024-04-25
Pretty URL vmss.boldchat.com/aid/885055130827083336/bc.vms4/vms.js IP 52.24.130.127 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:22:44 Last Seen2024-04-25 18:26:21 Times Seen199 Hash ef125827d23de5096db211cc3019fe1f 4912b8a641a0fed6b5e45be773b86ccdcddc5b6a 135fcc5bcf0b6968cf65f32cf73618eedee0af71b5ba8fe2c9fcdf8ea02d2c7c Loading...

		Size	First Seen	Last Seen
	#1 Eval - 23702b82cd9b56491616cd83eec763bc	1.0 kB	2023-03-08	2024-02-09
Pretty Observations First Seen2023-03-08 06:49:14 Last Seen2024-02-09 04:49:31 Times Seen8 Hash 23702b82cd9b56491616cd83eec763bc 38f1ad743f8e0de1208f742217f89d9db4c009fe d2e1601e8a337f7397714870c56937c4942710a0676add2bd0fdaa3e21995fa2 Loading...

		Size	First Seen	Last Seen
	#1 Write - b413cfd9dafdd529ca6739e626902d3b	33 B	2023-03-11	2023-03-11
Pretty Observations First Seen2023-03-11 20:54:47 Last Seen2023-03-11 20:54:47 Times Seen1 Hash b413cfd9dafdd529ca6739e626902d3b 31c5df4f0910c5d1bda0f97c3fd2bb3c3a146b69 8ba0330e953e5233662857108d216376675f37d2b97b4087cbbaff1471a8c866 Loading...

HTTP Transactions (135)

URL IP Response Size

iccupay-auth.us/ed8c35a1ac48075e6d39385ae0362958/index.php

176.123.0.55

301 Moved Permanently

274 B

URL HTTP/1.1
iccupay-auth.us/ed8c35a1ac48075e6d39385ae0362958/index.php
IP
176.123.0.55:0
ASN
#200019 Alexhost Srl

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
274 B (274 bytes)
Hash
25e01574606f8dfd2449435b9ca4a4b4
f2d19db21c02004ceaf6d1e7619edc229538d6ce
bd6d473d987049c3c1dff69fbbb8615009bb3d0ed82545810c5a75454d1e4387

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /ed8c35a1ac48075e6d39385ae0362958/index.php HTTP/1.1
Host: iccupay-auth.us
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Sat, 26 Nov 2022 20:21:03 GMT
Content-Type: text/html; charset=iso-8859-1
Content-Length: 274
Connection: keep-alive
Location: https://iccupay-auth.us/ed8c35a1ac48075e6d39385ae0362958/index.php
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: MISS
X-Server-Powered-By: Engintron

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
7c60904d097cde276e4e5632cef1b9f1
4f805026462589345d85e8df2d18eafba6237504
12af026999398f4976749e320667d43da3f99b7a2e8254aca7a410a964a106aa

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "12AF026999398F4976749E320667D43DA3F99B7A2E8254ACA7A410A964A106AA"
Last-Modified: Thu, 24 Nov 2022 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6331
Expires: Sat, 26 Nov 2022 22:06:38 GMT
Date: Sat, 26 Nov 2022 20:21:07 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
71f9c681a82440fd55e76c780a20e55d
3147768cfbcdd06e0c6e69684292e68e99917a80
5ea71ce6dd9e927f9bb3f97f59cc1ac7dc25a949024815965b29bc5835614786

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5EA71CE6DD9E927F9BB3F97F59CC1AC7DC25A949024815965B29BC5835614786"
Last-Modified: Sat, 26 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7008
Expires: Sat, 26 Nov 2022 22:17:55 GMT
Date: Sat, 26 Nov 2022 20:21:07 GMT
Connection: keep-alive

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
15b59d5e62caedb4bec3ba6724906c1e
960f801e608a56fdd11449f4face29f62cad2b21
8c72a45737c2eeddf328b0ed3236f3243551d904e94ec9dd7254972ebfb9229e

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6543
Cache-Control: max-age=143944
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 20:21:07 GMT
Etag: "6381eaec-1d7"
Expires: Mon, 28 Nov 2022 12:20:11 GMT
Last-Modified: Sat, 26 Nov 2022 10:31:08 GMT
Server: ECS (ska/F707)
X-Cache: HIT
Content-Length: 471

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain

34.160.144.191

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
IP
34.160.144.191:0
ASN
#15169 GOOGLE

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
9ebddc2b260d081ebbefee47c037cb28
492bad62a7ca6a74738921ef5ae6f0be5edebf39
74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
x-amz-id-2: 7gyniBsSDF7Hv5dpoAfuS5x2yiZ+N9vuAKEP79T6355pi/sURMPTf8KqOqaD2tzxTXJiwBoy4t4=
x-amz-request-id: RTCBV0WZA2QVS7MR
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sat, 26 Nov 2022 19:41:20 GMT
age: 2387
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2

firefox.settings.services.mozilla.com/v1/

34.102.187.140

200 OK

939 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/
IP
34.102.187.140:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
567df7db606cf5d0871aa5bc9311b6da
4263faac7cbab2fcaf6661911dcad5091c06be17
e9650e1fdc46fc8678708ddcc37ab369c7a6d50489a004be896f20c7a3a644b0

HTTP Headers

GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Retry-After, Content-Length, Alert, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sat, 26 Nov 2022 20:19:15 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 112
alt-svc: clear
X-Firefox-Spdy: h2

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Sat, 26 Nov 2022 20:21:07 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

ocsp.comodoca.com/

104.18.32.68

200 OK

471 B

URL HTTP/1.1
ocsp.comodoca.com/
IP
104.18.32.68:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
471 B (471 bytes)
Hash
5e50f4251d041e9bd9283920ec25873f
a6e8a4711a3da72cbec404b7455419388c0dc2a4
9ebec2fd35b9397c679326d2a38854efcd806f0ad514aec1c123490f271a2ce9

HTTP Headers

POST / HTTP/1.1
Host: ocsp.comodoca.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 20:21:07 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Thu, 24 Nov 2022 20:46:51 GMT
Expires: Thu, 01 Dec 2022 20:46:50 GMT
Etag: "a6e8a4711a3da72cbec404b7455419388c0dc2a4"
Cache-Control: max-age=452926,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb4
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: REVALIDATED
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 770554217c3cb4ff-OSL

firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US

34.102.187.140

200 OK

329 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
34.102.187.140:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size
329 B (329 bytes)
Hash
0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

HTTP Headers

GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Backoff, Pragma, Alert, Content-Type, ETag, Retry-After, Last-Modified, Content-Length, Cache-Control, Expires
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sat, 26 Nov 2022 20:11:12 GMT
cache-control: public,max-age=3600
age: 595
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
d3df71aab146eefc49acb608796aab63
8401892995193919376dfcd798b09c8261579454
a616c1e54e896576601e6107c1814adbebf35364d8ed807cdd89ac36b8200c88

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5167
Cache-Control: max-age=137511
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 20:21:07 GMT
Etag: "6381d72b-1d7"
Expires: Mon, 28 Nov 2022 10:32:58 GMT
Last-Modified: Sat, 26 Nov 2022 09:06:51 GMT
Server: ECS (ska/F707)
X-Cache: HIT
Content-Length: 471

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
1e6f2ac4c1739d1933b52cbce9c5f787
eb3871232720e94ac3d489838a60714081c78f45
e7e6635338a9cf1d03470dc3ae8bd0b2a3737c9e983588d6fde3ecbca6c1be44

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E7E6635338A9CF1D03470DC3AE8BD0B2A3737C9E983588D6FDE3ECBCA6C1BE44"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14998
Expires: Sun, 27 Nov 2022 00:31:05 GMT
Date: Sat, 26 Nov 2022 20:21:07 GMT
Connection: keep-alive

push.services.mozilla.com/

52.41.252.32

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
52.41.252.32:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: vcINo+F7U9z07zIKA9Nf8g==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: 363zZrSv7HJdRPp6l9r8WOK65iY=

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
7518a53be464ad8b8d74f35c7357e64e
7a18033291113ab0720248d2e70f82832dcc12c6
4668e5c4d81196451e803844e2a7ff4a0a3ef16e9128b467d04a6fb2bdc768b0

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4668E5C4D81196451E803844E2A7FF4A0A3EF16E9128B467D04A6FB2BDC768B0"
Last-Modified: Sat, 26 Nov 2022 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=1886
Expires: Sat, 26 Nov 2022 20:52:34 GMT
Date: Sat, 26 Nov 2022 20:21:08 GMT
Connection: keep-alive

iccu.com/

52.88.3.188

301 Moved Permanently

162 B

URL HTTP/2
iccu.com/
IP
52.88.3.188:0
ASN
#16509 AMAZON-02

File type
HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size
162 B (162 bytes)
Hash
4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a

HTTP Headers

GET / HTTP/1.1
Host: iccu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

HTTP/2 301 Moved Permanently
date: Sat, 26 Nov 2022 20:21:08 GMT
content-type: text/html
content-length: 162
location: https://www.iccu.com/
server: Pagely-ARES/1.10.15
x-gateway-request-id: 88d60c887647d772ee8dd3fa74a95804
strict-transport-security: max-age=31536000; includeSubDomains
x-gateway-cache-key: 1669227391.167|standard|https|iccu.com|||/
x-gateway-skip-cache: 1
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
4dedb6f45af63be68f09d51217f71e6d
2224e61aec07dfcdea89621d0d426cc1e0e5cec0
67b5ad33fa21ccd6b14e5f64eada04ef0d9c20d8714624d66cb6ea5ba3a28ed8

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4029
Cache-Control: max-age=108327
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 20:21:09 GMT
Etag: "6381699f-1d7"
Expires: Mon, 28 Nov 2022 02:26:36 GMT
Last-Modified: Sat, 26 Nov 2022 01:19:27 GMT
Server: ECS (ska/F707)
X-Cache: HIT
Content-Length: 471

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
2520927b5412404edad096ea8690d01f
6c760ec7e029d8811ed04dfeedbe01469d18e7b2
cadf07ae5df67317a69b4fa8445a9ed005b56035dc70cec236f1dbfa4a58f4f2

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=105000
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 20:21:09 GMT
Etag: "63816c5d-1d7"
Expires: Mon, 28 Nov 2022 01:31:09 GMT
Last-Modified: Sat, 26 Nov 2022 01:31:09 GMT
Server: nginx
Content-Length: 471

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
8bb181e3f5ca898c6e31a8efc2e28291
eda3a91f8e2cbc5467da08ad85e6f6a30702b66c
0e943aacb4a46480ab031ef294a0e089976ec125c331c15116b6c79f6b0f2ff0

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E943AACB4A46480AB031EF294A0E089976EC125C331C15116B6C79F6B0F2FF0"
Last-Modified: Sat, 26 Nov 2022 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4016
Expires: Sat, 26 Nov 2022 21:28:05 GMT
Date: Sat, 26 Nov 2022 20:21:09 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
8bb181e3f5ca898c6e31a8efc2e28291
eda3a91f8e2cbc5467da08ad85e6f6a30702b66c
0e943aacb4a46480ab031ef294a0e089976ec125c331c15116b6c79f6b0f2ff0

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E943AACB4A46480AB031EF294A0E089976EC125C331C15116B6C79F6B0F2FF0"
Last-Modified: Sat, 26 Nov 2022 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4016
Expires: Sat, 26 Nov 2022 21:28:05 GMT
Date: Sat, 26 Nov 2022 20:21:09 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
8bb181e3f5ca898c6e31a8efc2e28291
eda3a91f8e2cbc5467da08ad85e6f6a30702b66c
0e943aacb4a46480ab031ef294a0e089976ec125c331c15116b6c79f6b0f2ff0

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E943AACB4A46480AB031EF294A0E089976EC125C331C15116B6C79F6B0F2FF0"
Last-Modified: Sat, 26 Nov 2022 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4016
Expires: Sat, 26 Nov 2022 21:28:05 GMT
Date: Sat, 26 Nov 2022 20:21:09 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
8bb181e3f5ca898c6e31a8efc2e28291
eda3a91f8e2cbc5467da08ad85e6f6a30702b66c
0e943aacb4a46480ab031ef294a0e089976ec125c331c15116b6c79f6b0f2ff0

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E943AACB4A46480AB031EF294A0E089976EC125C331C15116B6C79F6B0F2FF0"
Last-Modified: Sat, 26 Nov 2022 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4016
Expires: Sat, 26 Nov 2022 21:28:05 GMT
Date: Sat, 26 Nov 2022 20:21:09 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
8bb181e3f5ca898c6e31a8efc2e28291
eda3a91f8e2cbc5467da08ad85e6f6a30702b66c
0e943aacb4a46480ab031ef294a0e089976ec125c331c15116b6c79f6b0f2ff0

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E943AACB4A46480AB031EF294A0E089976EC125C331C15116B6C79F6B0F2FF0"
Last-Modified: Sat, 26 Nov 2022 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4016
Expires: Sat, 26 Nov 2022 21:28:05 GMT
Date: Sat, 26 Nov 2022 20:21:09 GMT
Connection: keep-alive

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1de44df6-bdc7-487f-a2a0-b42d26be2420.jpeg

34.120.237.76

200 OK

16 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1de44df6-bdc7-487f-a2a0-b42d26be2420.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
16 kB (15818 bytes)
Hash
17ebe470d040a6ea8c57e9b9d4f4e828
1ac7a410cd4f3709f476c776dd5646dd982dcfa8
d65114b68fcc12344c6df7bf294718b79822fa9782d3bd54ca044b66f82052b1

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1de44df6-bdc7-487f-a2a0-b42d26be2420.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 15818
x-amzn-requestid: a6570859-3b03-492e-9f84-e25b01223da2
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cLXrUF3bIAMF8CA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6381397b-379b1bcf2ac0715835e10e48;Sampled=0
x-amzn-remapped-date: Fri, 25 Nov 2022 21:54:03 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: HgiyaodE2vJx5JL8QfOiTersSAgAwq74gtsPkpHUhnQ3In2vZ-3rbQ==
via: 1.1 28a7186077f9b5270d98dd053f31303e.cloudfront.net (CloudFront), 1.1 4f3feb5c4393987d42d1971d404d7cea.cloudfront.net (CloudFront), 1.1 google
date: Fri, 25 Nov 2022 22:33:09 GMT
etag: "1ac7a410cd4f3709f476c776dd5646dd982dcfa8"
content-type: image/jpeg
age: 78480
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

3.5 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcf04cc9f-ee4b-42fd-914f-cd86b9dc30eb.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
3.5 kB (3502 bytes)
Hash
a783df85f30f9c555f9df6b99f61744d
61f9bed607e81606be78285596acdc5e0e4f4994
19db42201d0fa059f680d890ede6683c04e893e6308a2256d0203f826a7f34de

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcf04cc9f-ee4b-42fd-914f-cd86b9dc30eb.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 3502
x-amzn-requestid: ca3f2610-e03c-48a7-abb3-fbbab76f63d2
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cCvYUHO5IAMFqDA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637dc5ce-7e36137711dc4668278c1c94;Sampled=0
x-amzn-remapped-date: Wed, 23 Nov 2022 07:03:42 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: QS3ZKYetcm87GNwSr34eRPF2d4r8ppwf3fT19aV-u84f7ObX4bU8wQ==
via: 1.1 8dbfaf7df256a75768461d934659b6b2.cloudfront.net (CloudFront), 1.1 ce71f64ad5dca81beca846466f2d5008.cloudfront.net (CloudFront), 1.1 google
date: Sat, 26 Nov 2022 07:13:26 GMT
age: 47263
etag: "61f9bed607e81606be78285596acdc5e0e4f4994"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

9.0 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F34ec689c-96b7-450b-b77e-e0ecb4d89c3c.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
9.0 kB (9049 bytes)
Hash
c8dc4b8a7e9f7f4f84f0da568b43392b
3d32bff85cb7ec118c4496d0c3802829fdc9af3b
4b0ffde427085c796a7a5823604b29a4af43dbb93e99ec41f34feb37f52ac7d9

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F34ec689c-96b7-450b-b77e-e0ecb4d89c3c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 9049
x-amzn-requestid: 6cbd9639-c29d-4ff4-8091-3168f64f4c78
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cLVVGHzKoAMFSuA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638135ba-100ea4235fdf1df8491041c8;Sampled=0
x-amzn-remapped-date: Fri, 25 Nov 2022 21:38:02 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: OJZkZ18TlSgdBWsmSroQPIcYIvBFvz5-7hu9_GravTcz6zqxKXHZrg==
via: 1.1 4f87745990545c1ac0195c157e1668f8.cloudfront.net (CloudFront), 1.1 d6b180eb367f7de26d67a9f3901b96a6.cloudfront.net (CloudFront), 1.1 google
date: Fri, 25 Nov 2022 21:43:36 GMT
age: 81453
etag: "3d32bff85cb7ec118c4496d0c3802829fdc9af3b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

4.3 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1dd98515-d0af-440a-8f3d-4c9986928081.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
4.3 kB (4309 bytes)
Hash
841a4b110022a99ddea6f7bf66df0fa1
126771b86638108050cf57c0d12faa27f80f0edb
240fbffc1f9104433297d3ff7afba2d0b58d7f1b13d9a9260a1bad25216665db

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1dd98515-d0af-440a-8f3d-4c9986928081.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 4309
x-amzn-requestid: 47c2739d-73c5-4d91-914c-fe635cb09772
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: b1U8xGxgIAMF-qQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63786851-6fbe19dc5c4c20dd657604e3;Sampled=0
x-amzn-remapped-date: Sat, 19 Nov 2022 05:23:29 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: ezHvyK3va4SioabOjSittTiLQRs_Q8k4TPxkiGp_svtZ8omDPTUN-A==
via: 1.1 470e3fe246a660ba6ace67a79f78d246.cloudfront.net (CloudFront), 1.1 324a68a6c25ee50d774953f3e15a611c.cloudfront.net (CloudFront), 1.1 google
date: Sat, 26 Nov 2022 05:04:28 GMT
age: 55001
etag: "126771b86638108050cf57c0d12faa27f80f0edb"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

8.9 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcc7a5b86-3ad1-40c7-b173-8a9ac078c227.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
8.9 kB (8913 bytes)
Hash
5088223f5973e3cd56f03f50a1e84b79
0b6c9b51d10762a4747286ab5b1c2354fa39c622
8159e4f7eec7bea518bb29e3fdb070bab4fb70116205577f7b7d74ad4d0dfbc7

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcc7a5b86-3ad1-40c7-b173-8a9ac078c227.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 8913
x-amzn-requestid: d0a9414c-eccf-44e8-adb7-92654544eeb5
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cLWWXEpeIAMFnzw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6381375b-5825510666b3e80a5f83cafa;Sampled=0
x-amzn-remapped-date: Fri, 25 Nov 2022 21:44:59 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: LDrq5UcFhG63XFZhmeS5Z_mEkwrvuQ2bLfT8hV9I3E1s1lJLZF5Dww==
via: 1.1 00f0a41f749793b9dd653153037c957e.cloudfront.net (CloudFront), 1.1 61bc723adb3b1884ed759711e84e13a8.cloudfront.net (CloudFront), 1.1 google
date: Fri, 25 Nov 2022 21:46:24 GMT
age: 81285
etag: "0b6c9b51d10762a4747286ab5b1c2354fa39c622"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

9.9 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8f5318cc-4728-4160-afd1-9d20b79b7de9.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
9.9 kB (9914 bytes)
Hash
3b1c6878914466cfece680fa7cb73502
47fac81a2dd809df5c42ca1362f71d553572d2b1
6458883dfa2bdfd483e92e5f847a229508ef00ce1dbd11f49eec369d0bd3160a

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8f5318cc-4728-4160-afd1-9d20b79b7de9.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 9914
x-amzn-requestid: 4db4ed29-20b4-4ca7-8835-2463d0989d5b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cLVVFHQYIAMFc4Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638135b9-613da006118724124e345b29;Sampled=0
x-amzn-remapped-date: Fri, 25 Nov 2022 21:38:01 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 7cJmhEGkKqLUQUMqGuYtWBeu_1nlEUAxgTMy4ABekPJYrJP95wE6Jg==
via: 1.1 41e349e25dc4bc856d0e5d2c162428a0.cloudfront.net (CloudFront), 1.1 476c2ba6d9f6cd69dbcedbd65688cbc0.cloudfront.net (CloudFront), 1.1 google
date: Fri, 25 Nov 2022 21:59:05 GMT
age: 80524
etag: "47fac81a2dd809df5c42ca1362f71d553572d2b1"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

www.iccu.com/

54.214.206.138

200 OK

15 kB

URL HTTP/2
www.iccu.com/
IP
54.214.206.138:0
ASN
#16509 AMAZON-02

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (9381)
Size
15 kB (15101 bytes)
Hash
783a619d8289f7597cfb8892983c10e7
7158c691ff88637a1d9f193a1a801cb850552a3e
ba3642f33c43f7d24981f0d0a889556dddc059c35e9b0da33dd849d263ab726f

HTTP Headers

GET / HTTP/1.1
Host: www.iccu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Sat, 26 Nov 2022 20:21:10 GMT
content-type: text/html; charset=UTF-8
content-length: 15101
server: Pagely-ARES/1.10.15
x-gateway-request-id: 5ef4df8d9bf270ecfa7ff9a18a635344
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
x-pingback: https://www.iccu.com/xmlrpc.php
permissions-policy: geolocation=(self "https://maps.google.com"), encrypted-media=(self "https://*.brightcove.com")
referrer-policy: no-referrer-when-downgrade
link: <https://www.iccu.com/wp-json/>; rel="https://api.w.org/", <https://www.iccu.com/wp-json/wp/v2/pages/39>; rel="alternate"; type="application/json", <https://www.iccu.com/>; rel=shortlink
set-cookie: PHPSESSID=uspvt7aqmrmmfltm09b8p30hoa; path=/
vary: Accept-Encoding, Accept-Encoding
content-encoding: gzip
strict-transport-security: max-age=31536000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-gateway-cache-key: 1669242486.075|standard|https|www.iccu.com|||/
x-gateway-cache-status: MISS
x-gateway-skip-cache: 0
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
e922b25acaba2d7f8921ebe973a4b261
5dd4c237c84a652cbcf3db163529f3788ceafc46
a7856c7777aa01b671ddae097494f2b031cbbddc7b244fe8714a8c02b85d8589

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 20:21:11 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
e388353a642bc503beff27c23339e2b5
7849301df8cbfa3f9c019b1d4033b66e0f44c4bd
5e595e9ce96c6147c3ff79ebba0068ddb0d997237a671936cb05d9575c59a424

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 20:21:11 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.iccu.com/lib/css/dist/block-library/style.min.css

54.214.206.138

200 OK

12 kB

URL HTTP/2
www.iccu.com/lib/css/dist/block-library/style.min.css
IP
54.214.206.138:0
ASN
#16509 AMAZON-02

File type
ASCII text, with very long lines (47826)
Size
12 kB (12518 bytes)
Hash
8fa87dd23394a22621248ec378d2af59
9305bc637a89b1700d7f56a19a80bd32b0feb2f7
c162f7de24fa2d4e93e0da254ef287ff72f4a3e03f42443265097968351388dc

HTTP Headers

GET /lib/css/dist/block-library/style.min.css HTTP/1.1
Host: www.iccu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.iccu.com/
Connection: keep-alive
Cookie: PHPSESSID=uspvt7aqmrmmfltm09b8p30hoa
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Sat, 26 Nov 2022 20:21:11 GMT
content-type: text/css
content-length: 12518
server: Pagely-ARES/1.10.15
x-gateway-request-id: bb1507e84a0f814d077144dd2a602b71
last-modified: Tue, 15 Nov 2022 21:14:51 GMT
etag: "172a9-5ed88d8baa8c0-gzip"
vary: Accept-Encoding, Accept-Encoding
content-encoding: gzip
expires: Fri, 23 Dec 2022 18:16:33 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-gateway-cache-key: 1669227391.172||https|www.iccu.com|||/lib/css/dist/block-library/style.min.css
x-gateway-cache-status: HIT
x-gateway-skip-cache: 0
accept-ranges: bytes
X-Firefox-Spdy: h2

www.iccu.com/lib/css/classic-themes.min.css

54.214.206.138

200 OK

189 B

URL HTTP/2
www.iccu.com/lib/css/classic-themes.min.css
IP
54.214.206.138:0
ASN
#16509 AMAZON-02

File type
ASCII text
Size
189 B (189 bytes)
Hash
5a18e16eb01cbaa862eb32e6b77bedb2
3abf9b913cc9f558f02cba7c9b822f8d1812cb96
d2b5af913332941d5ae7786d1fa70e0d009315c4ede6ad5b80d0f663bb54521f

HTTP Headers

GET /lib/css/classic-themes.min.css HTTP/1.1
Host: www.iccu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.iccu.com/
Connection: keep-alive
Cookie: PHPSESSID=uspvt7aqmrmmfltm09b8p30hoa
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Sat, 26 Nov 2022 20:21:11 GMT
content-type: text/css
content-length: 189
server: Pagely-ARES/1.10.15
x-gateway-request-id: 20476322fc2448b2a78b825147fa84a7
last-modified: Tue, 15 Nov 2022 21:14:51 GMT
etag: "d9-5ed88d8baa8c0-gzip"
vary: Accept-Encoding, Accept-Encoding
content-encoding: gzip
expires: Fri, 23 Dec 2022 18:16:33 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-gateway-cache-key: 1669227391.172||https|www.iccu.com|||/lib/css/classic-themes.min.css
x-gateway-cache-status: HIT
x-gateway-skip-cache: 0
accept-ranges: bytes
X-Firefox-Spdy: h2

www.iccu.com/modules/column-shortcodes//assets/css/shortcodes.css

54.214.206.138

301 Moved Permanently

162 B

URL HTTP/2
www.iccu.com/modules/column-shortcodes//assets/css/shortcodes.css
IP
54.214.206.138:0
ASN
#16509 AMAZON-02

File type
HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size
162 B (162 bytes)
Hash
4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a

HTTP Headers

GET /modules/column-shortcodes//assets/css/shortcodes.css HTTP/1.1
Host: www.iccu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.iccu.com/
Connection: keep-alive
Cookie: PHPSESSID=uspvt7aqmrmmfltm09b8p30hoa
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 301 Moved Permanently
date: Sat, 26 Nov 2022 20:21:11 GMT
content-type: text/html
content-length: 162
server: Pagely-ARES/1.10.15
x-gateway-request-id: ff46e647511f5f3d337e98c90bf3326e
location: /modules/column-shortcodes/assets/css/shortcodes.css
x-gateway-cache-key: 1669227391.172||https|www.iccu.com|||/modules/column-shortcodes//assets/css/shortcodes.css
x-gateway-skip-cache: 1
X-Firefox-Spdy: h2

www.iccu.com/template/library/css/icomoon.css

54.214.206.138

200 OK

747 B

URL HTTP/2
www.iccu.com/template/library/css/icomoon.css
IP
54.214.206.138:0
ASN
#16509 AMAZON-02

File type
ASCII text, with very long lines (2562), with no line terminators
Size
747 B (747 bytes)
Hash
e3e7094ccb9c273019e356f69ac05f2e
5f9810f3ebbbf73ff5f67c40be4cbd0c38929e4f
24ec1ac810e095b842dee829e01374cfe455bee90adb3a280eb3e501448ce1d4

HTTP Headers

GET /template/library/css/icomoon.css HTTP/1.1
Host: www.iccu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.iccu.com/
Connection: keep-alive
Cookie: PHPSESSID=uspvt7aqmrmmfltm09b8p30hoa
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Sat, 26 Nov 2022 20:21:11 GMT
content-type: text/css
content-length: 747
server: Pagely-ARES/1.10.15
x-gateway-request-id: 9f7215d53639ca1b00b68b4a83ec8989
last-modified: Thu, 30 Sep 2021 14:54:37 GMT
etag: "a02-5cd37a02a01a1-gzip"
vary: Accept-Encoding, Accept-Encoding
content-encoding: gzip
expires: Fri, 23 Dec 2022 18:16:33 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-gateway-cache-key: 1669227391.172||https|www.iccu.com|||/template/library/css/icomoon.css
x-gateway-cache-status: HIT
x-gateway-skip-cache: 0
accept-ranges: bytes
X-Firefox-Spdy: h2

www.iccu.com/template/library/css/style.css?ver1_0_2

54.214.206.138

200 OK

8.3 kB

URL HTTP/2
www.iccu.com/template/library/css/style.css?ver1_0_2
IP
54.214.206.138:0
ASN
#16509 AMAZON-02

File type
ASCII text, with very long lines (29760)
Size
8.3 kB (8314 bytes)
Hash
cba77c25d3e8c23c776784534ef42bce
f3d18ecec2857a9fe63baa5c7be106f65684aac1
4117e1d60e29886aab490eb34021da11f6858aebf8291433dc689439f3199472

HTTP Headers

GET /template/library/css/style.css?ver1_0_2 HTTP/1.1
Host: www.iccu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.iccu.com/
Connection: keep-alive
Cookie: PHPSESSID=uspvt7aqmrmmfltm09b8p30hoa
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Sat, 26 Nov 2022 20:21:11 GMT
content-type: text/css
content-length: 8314
server: Pagely-ARES/1.10.15
x-gateway-request-id: 5bf3ba73543ae14e3883e4dc3405d7ef
last-modified: Thu, 30 Sep 2021 14:54:37 GMT
etag: "7474-5cd37a02a01a1-gzip"
vary: Accept-Encoding, Accept-Encoding
content-encoding: gzip
expires: Fri, 23 Dec 2022 18:16:33 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-gateway-cache-key: 1669227391.172||https|www.iccu.com|||/template/library/css/style.css?ver1_0_2
x-gateway-cache-status: HIT
x-gateway-skip-cache: 0
accept-ranges: bytes
X-Firefox-Spdy: h2

maps.google.com/maps/api/js?key=AIzaSyABExOv-r9mP-Y-ARK9pWG4lpZahWKHc8M

216.58.211.14

200 OK

53 kB

URL HTTP/2
maps.google.com/maps/api/js?key=AIzaSyABExOv-r9mP-Y-ARK9pWG4lpZahWKHc8M
IP
216.58.211.14:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (2381)
Size
53 kB (53336 bytes)
Hash
acd5873d1be9bb9a12c517bde2c09892
bdca075144ab667a2aae7a3f13c55e04802c7c69
69bb9a06f848452b750b11bf855b9d370659df37ebe5055c0e6147b9ed5cbf97

HTTP Headers

GET /maps/api/js?key=AIzaSyABExOv-r9mP-Y-ARK9pWG4lpZahWKHc8M HTTP/1.1
Host: maps.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.iccu.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/javascript; charset=UTF-8
date: Sat, 26 Nov 2022 20:21:11 GMT
expires: Sat, 26 Nov 2022 20:51:11 GMT
cache-control: public, max-age=1800
vary: Accept-Language
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
content-encoding: gzip
server: mafe
content-length: 53336
x-xss-protection: 0
x-frame-options: SAMEORIGIN
server-timing: gfet4t7; dur=21
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

www.googletagmanager.com/gtm.js?id=GTM-M9ND4W

142.250.74.168

200 OK

97 kB

URL HTTP/2
www.googletagmanager.com/gtm.js?id=GTM-M9ND4W
IP
142.250.74.168:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (43685)
Size
97 kB (96610 bytes)
Hash
741aa88f68f8a367316dcd757c4ac2bc
f1e33cdcf256c0e281a68bff287687b67b47eb24
03052ebd7b005d65c29f60280c7dac338d1739e13be1ea0bc7c9f13b95eeb489

HTTP Headers

GET /gtm.js?id=GTM-M9ND4W HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.iccu.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sat, 26 Nov 2022 20:21:11 GMT
expires: Sat, 26 Nov 2022 20:21:11 GMT
cache-control: private, max-age=900
last-modified: Sat, 26 Nov 2022 18:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 96610
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
e922b25acaba2d7f8921ebe973a4b261
5dd4c237c84a652cbcf3db163529f3788ceafc46
a7856c7777aa01b671ddae097494f2b031cbbddc7b244fe8714a8c02b85d8589

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 20:21:11 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
e388353a642bc503beff27c23339e2b5
7849301df8cbfa3f9c019b1d4033b66e0f44c4bd
5e595e9ce96c6147c3ff79ebba0068ddb0d997237a671936cb05d9575c59a424

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 20:21:11 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/s/gts1d4/3gj_OJ2r91s

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/s/gts1d4/3gj_OJ2r91s
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
62fe89ff646b26c769ff2fbf60040830
a65b3ba46ebcfd814d40caf9d9998e4f942b2d26
118c859e65e2bbaec053fe1ddf4ab0ce82496968663f1009850c58e8de7490d0

HTTP Headers

POST /s/gts1d4/3gj_OJ2r91s HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 20:21:11 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.iccu.com/template/library/css/redolive.css?v=2022.4.12.1246

54.214.206.138

200 OK

10 kB

URL HTTP/2
www.iccu.com/template/library/css/redolive.css?v=2022.4.12.1246
IP
54.214.206.138:0
ASN
#16509 AMAZON-02

File type
ASCII text, with very long lines (327)
Size
10 kB (10107 bytes)
Hash
94db68ae02c56675d470e23e480fe336
1c018bb2fd01c53679e594d4ecfbc186f346d5ef
6338d7a04cc6cd27e9b4110d86b0c2b6c7cfc070274dcad98efa307d84d22c60

HTTP Headers

GET /template/library/css/redolive.css?v=2022.4.12.1246 HTTP/1.1
Host: www.iccu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.iccu.com/
Connection: keep-alive
Cookie: PHPSESSID=uspvt7aqmrmmfltm09b8p30hoa
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Sat, 26 Nov 2022 20:21:11 GMT
content-type: text/css
content-length: 10107
server: Pagely-ARES/1.10.15
x-gateway-request-id: 844a843dabc4540343e0c06267d99afe
last-modified: Tue, 12 Apr 2022 20:50:57 GMT
etag: "c8e7-5dc7b37be5275-gzip"
vary: Accept-Encoding, Accept-Encoding
content-encoding: gzip
expires: Fri, 23 Dec 2022 18:16:33 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-gateway-cache-key: 1669227391.172||https|www.iccu.com|||/template/library/css/redolive.css?v=2022.4.12.1246
x-gateway-cache-status: HIT
x-gateway-skip-cache: 0
accept-ranges: bytes
X-Firefox-Spdy: h2

www.iccu.com/template/library/js/libs/fancybox/jquery.fancybox.css

54.214.206.138

200 OK

1.4 kB

URL HTTP/2
www.iccu.com/template/library/js/libs/fancybox/jquery.fancybox.css
IP
54.214.206.138:0
ASN
#16509 AMAZON-02

File type
ASCII text
Size
1.4 kB (1423 bytes)
Hash
c95bca9e0590cf1c2c2c1a5fae0cab66
198825529be8572c83e06d190906ea4a0c0aac21
0fd756899c22f1cb3d83d32627c2b0bcf54212479d8c166a81881b6e39dec75d

HTTP Headers

GET /template/library/js/libs/fancybox/jquery.fancybox.css HTTP/1.1
Host: www.iccu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.iccu.com/
Connection: keep-alive
Cookie: PHPSESSID=uspvt7aqmrmmfltm09b8p30hoa
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Sat, 26 Nov 2022 20:21:11 GMT
content-type: text/css
content-length: 1423
server: Pagely-ARES/1.10.15
x-gateway-request-id: c87c23e1069100bb29d7f2767f074320
last-modified: Thu, 30 Sep 2021 14:54:37 GMT
etag: "131f-5cd37a02adc61-gzip"
vary: Accept-Encoding, Accept-Encoding
content-encoding: gzip
expires: Fri, 23 Dec 2022 18:16:33 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-gateway-cache-key: 1669227391.172||https|www.iccu.com|||/template/library/js/libs/fancybox/jquery.fancybox.css
x-gateway-cache-status: HIT
x-gateway-skip-cache: 0
accept-ranges: bytes
X-Firefox-Spdy: h2

www.iccu.com/lib/js/jquery/jquery.min.js

54.214.206.138

200 OK

31 kB

URL HTTP/2
www.iccu.com/lib/js/jquery/jquery.min.js
IP
54.214.206.138:0
ASN
#16509 AMAZON-02

File type
ASCII text, with very long lines (65447)
Size
31 kB (30995 bytes)
Hash
1b5264c989379b828aff60f65a518a24
98641237f14ccb33ac114f54329a33bd0aa17eb7
6c8e7b78c6dbc13426810c905572db7589cf3e00264e30ce797fddb0b1092237

HTTP Headers

GET /lib/js/jquery/jquery.min.js HTTP/1.1
Host: www.iccu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.iccu.com/
Connection: keep-alive
Cookie: PHPSESSID=uspvt7aqmrmmfltm09b8p30hoa
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Sat, 26 Nov 2022 20:21:11 GMT
content-type: application/javascript
content-length: 30995
server: Pagely-ARES/1.10.15
x-gateway-request-id: 1fef5d3b0c0191651e88b227eaf2d262
last-modified: Tue, 15 Nov 2022 21:14:51 GMT
etag: "15e54-5ed88d8baa8c0-gzip"
vary: Accept-Encoding, Accept-Encoding
content-encoding: gzip
expires: Fri, 23 Dec 2022 18:16:33 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-gateway-cache-key: 1669227391.172||https|www.iccu.com|||/lib/js/jquery/jquery.min.js
x-gateway-cache-status: HIT
x-gateway-skip-cache: 0
accept-ranges: bytes
X-Firefox-Spdy: h2

www.iccu.com/lib/js/jquery/jquery-migrate.min.js

54.214.206.138

200 OK

4.2 kB

URL HTTP/2
www.iccu.com/lib/js/jquery/jquery-migrate.min.js
IP
54.214.206.138:0
ASN
#16509 AMAZON-02

File type
ASCII text, with very long lines (11126)
Size
4.2 kB (4169 bytes)
Hash
5629711d7fdd5b28441bac39b851299f
4e0bf2b7383097f7c352023a1b1b1b48a50356b6
44c444309c7a6c05ff4a9bc198bed9e9596bedb5658637c85689c9a471dcdd16

HTTP Headers

GET /lib/js/jquery/jquery-migrate.min.js HTTP/1.1
Host: www.iccu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.iccu.com/
Connection: keep-alive
Cookie: PHPSESSID=uspvt7aqmrmmfltm09b8p30hoa
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Sat, 26 Nov 2022 20:21:11 GMT
content-type: application/javascript
content-length: 4169
server: Pagely-ARES/1.10.15
x-gateway-request-id: fdd8c0ea26adc78b324c382b0efb7f82
last-modified: Tue, 15 Nov 2022 21:14:51 GMT
etag: "2bd8-5ed88d8baa8c0-gzip"
vary: Accept-Encoding, Accept-Encoding
content-encoding: gzip
expires: Fri, 23 Dec 2022 18:16:33 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-gateway-cache-key: 1669227391.172||https|www.iccu.com|||/lib/js/jquery/jquery-migrate.min.js
x-gateway-cache-status: HIT
x-gateway-skip-cache: 0
accept-ranges: bytes
X-Firefox-Spdy: h2

www.iccu.com/template/library/js/libs/modernizr.custom.min.js

54.214.206.138

200 OK

6.2 kB

URL HTTP/2
www.iccu.com/template/library/js/libs/modernizr.custom.min.js
IP
54.214.206.138:0
ASN
#16509 AMAZON-02

File type
HTML document, ASCII text, with very long lines (14558)
Size
6.2 kB (6221 bytes)
Hash
20f3300b8d897519834c9b3ab7eb3672
4f7f3f6fce25d7aceb1d59fedd4f8c34880dfeb5
fa6245f7c4bf9b54001e291567b9fdd7dc4e62e4e88acbfa5853b11289fa9f9d

HTTP Headers

GET /template/library/js/libs/modernizr.custom.min.js HTTP/1.1
Host: www.iccu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.iccu.com/
Connection: keep-alive
Cookie: PHPSESSID=uspvt7aqmrmmfltm09b8p30hoa
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Sat, 26 Nov 2022 20:21:11 GMT
content-type: application/javascript
content-length: 6221
server: Pagely-ARES/1.10.15
x-gateway-request-id: 0effeaa3eb1d1b64e356251e32eb9122
last-modified: Thu, 30 Sep 2021 14:54:37 GMT
etag: "3b16-5cd37a02adc61-gzip"
vary: Accept-Encoding, Accept-Encoding
content-encoding: gzip
expires: Fri, 23 Dec 2022 18:16:33 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-gateway-cache-key: 1669227391.172||https|www.iccu.com|||/template/library/js/libs/modernizr.custom.min.js
x-gateway-cache-status: HIT
x-gateway-skip-cache: 0
accept-ranges: bytes
X-Firefox-Spdy: h2

www.iccu.com/template/library/js/jquery.fittext.js

54.214.206.138

200 OK

1.2 kB

URL HTTP/2
www.iccu.com/template/library/js/jquery.fittext.js
IP
54.214.206.138:0
ASN
#16509 AMAZON-02

File type
HTML document, ASCII text, with very long lines (2196), with no line terminators
Size
1.2 kB (1160 bytes)
Hash
686f2646cb2125ded76f2ef7e2445605
84c646ed032b19b87e4a8bc90d6d35ab93c33409
b9ad8028b8f2b959114ba955daf0b10db1298f1452e8e38c8af7a0fdee6bce0c

HTTP Headers

GET /template/library/js/jquery.fittext.js HTTP/1.1
Host: www.iccu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.iccu.com/
Connection: keep-alive
Cookie: PHPSESSID=uspvt7aqmrmmfltm09b8p30hoa
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Sat, 26 Nov 2022 20:21:11 GMT
content-type: application/javascript
content-length: 1160
server: Pagely-ARES/1.10.15
x-gateway-request-id: 3f01e81b8bb98b50f36db4965f63f4f2
last-modified: Thu, 30 Sep 2021 14:54:37 GMT
etag: "894-5cd37a02accc1-gzip"
vary: Accept-Encoding, Accept-Encoding
content-encoding: gzip
expires: Fri, 23 Dec 2022 18:16:33 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-gateway-cache-key: 1669227391.172||https|www.iccu.com|||/template/library/js/jquery.fittext.js
x-gateway-cache-status: HIT
x-gateway-skip-cache: 0
accept-ranges: bytes
X-Firefox-Spdy: h2

www.iccu.com/template/library/js/scripts.js?v=2022.10.28.1614

54.214.206.138

200 OK

4.0 kB

URL HTTP/2
www.iccu.com/template/library/js/scripts.js?v=2022.10.28.1614
IP
54.214.206.138:0
ASN
#16509 AMAZON-02

File type
ASCII text, with very long lines (380)
Size
4.0 kB (3965 bytes)
Hash
1c6cb1276182a249f513883c09acc1be
748b019c0f95cc3a0be49330a5b106df85b58e03
eae4d9afdd0e3e0b2b21d0fcb067578b5d269d0db64524becfed6fa1df659c38

HTTP Headers

GET /template/library/js/scripts.js?v=2022.10.28.1614 HTTP/1.1
Host: www.iccu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.iccu.com/
Connection: keep-alive
Cookie: PHPSESSID=uspvt7aqmrmmfltm09b8p30hoa
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Sat, 26 Nov 2022 20:21:11 GMT
content-type: application/javascript
content-length: 3965
server: Pagely-ARES/1.10.15
x-gateway-request-id: d2a3d75704368dbe1662c161ab1330d2
last-modified: Wed, 12 Oct 2022 17:41:07 GMT
etag: "3636-5ead9e5c19469-gzip"
vary: Accept-Encoding, Accept-Encoding
content-encoding: gzip
expires: Fri, 23 Dec 2022 18:16:33 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-gateway-cache-key: 1669227391.172||https|www.iccu.com|||/template/library/js/scripts.js?v=2022.10.28.1614
x-gateway-cache-status: HIT
x-gateway-skip-cache: 0
accept-ranges: bytes
X-Firefox-Spdy: h2

www.iccu.com/template/library/js/jquery.bxslider.min.js

54.214.206.138

200 OK

5.2 kB

URL HTTP/2
www.iccu.com/template/library/js/jquery.bxslider.min.js
IP
54.214.206.138:0
ASN
#16509 AMAZON-02

File type
ASCII text, with very long lines (19040)
Size
5.2 kB (5162 bytes)
Hash
f3bb76407c4ed0999771c696cee77648
c2bddad0ff58bbd5eb917a5fc828fd5b829444c0
d305f8cedacf0afc7c21b85b8c1d31060c9daa99997aef4bd05883f1230a17c0

HTTP Headers

GET /template/library/js/jquery.bxslider.min.js HTTP/1.1
Host: www.iccu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.iccu.com/
Connection: keep-alive
Cookie: PHPSESSID=uspvt7aqmrmmfltm09b8p30hoa
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Sat, 26 Nov 2022 20:21:11 GMT
content-type: application/javascript
content-length: 5162
server: Pagely-ARES/1.10.15
x-gateway-request-id: cbaeaae88b60e572b5865681788559e2
last-modified: Thu, 30 Sep 2021 14:54:37 GMT
etag: "4b9f-5cd37a02accc1-gzip"
vary: Accept-Encoding, Accept-Encoding
content-encoding: gzip
expires: Fri, 23 Dec 2022 18:16:33 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-gateway-cache-key: 1669227391.172||https|www.iccu.com|||/template/library/js/jquery.bxslider.min.js
x-gateway-cache-status: HIT
x-gateway-skip-cache: 0
accept-ranges: bytes
X-Firefox-Spdy: h2

www.iccu.com/template/library/js/libs/fancybox/jquery.fancybox.js

14 kB

URL
www.iccu.com/template/library/js/libs/fancybox/jquery.fancybox.js
IP
:0
ASN
#0

File type
gzip compressed data, from Unix\012- data
Size
14 kB (13922 bytes)
Hash
711e2ae0ba4411cc4bb74bd9b04807f0
b33f3c310875a4854605c4069742ef4da52e1251
9c8d84c1d9442efa552a20abc517f5b6b66ce92e7edcc66f93b3c8de0474bb31

HTTP Headers

GET /template/library/js/libs/fancybox/jquery.fancybox.js HTTP/1.1
Host: www.iccu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.iccu.com/
Connection: keep-alive
Cookie: PHPSESSID=uspvt7aqmrmmfltm09b8p30hoa
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

www.iccu.com/template/library/images/iccu-logo.png

54.214.206.138

200 OK

7.8 kB

URL HTTP/2
www.iccu.com/template/library/images/iccu-logo.png
IP
54.214.206.138:0
ASN
#16509 AMAZON-02

File type
PNG image data, 190 x 76, 8-bit/color RGBA, non-interlaced\012- data
Size
7.8 kB (7785 bytes)
Hash
be75cbac6644f4e1ef319a28b0f9f1d6
5ce2570715da934919333d4883e09c8037f6c418
277d5b050c33065d5a7cdb4d4198b57fdaa351eec68bb519db0d769296f79849

HTTP Headers

GET /template/library/images/iccu-logo.png HTTP/1.1
Host: www.iccu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.iccu.com/
Connection: keep-alive
Cookie: PHPSESSID=uspvt7aqmrmmfltm09b8p30hoa
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Sat, 26 Nov 2022 20:21:11 GMT
content-type: image/png
content-length: 7785
server: Pagely-ARES/1.10.15
x-gateway-request-id: bb764d965eee73f2bd4cfa17092d9758
last-modified: Thu, 30 Sep 2021 14:54:37 GMT
etag: "1e69-5cd37a02abd21"
expires: Fri, 23 Dec 2022 18:16:33 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-gateway-cache-key: 1669227391.172||https|www.iccu.com|||/template/library/images/iccu-logo.png
x-gateway-cache-status: HIT
x-gateway-skip-cache: 0
accept-ranges: bytes
X-Firefox-Spdy: h2

www.iccu.com/modules/quick-pagepost-redirect-plugin/js/qppr_frontend_script.min.js

54.214.206.138

200 OK

541 B

URL HTTP/2
www.iccu.com/modules/quick-pagepost-redirect-plugin/js/qppr_frontend_script.min.js
IP
54.214.206.138:0
ASN
#16509 AMAZON-02

File type
ASCII text, with very long lines (1021)
Size
541 B (541 bytes)
Hash
9ba2f383ea1a378a83af00a4337cbcc6
a10de9935b0ff0277d762bb8a0629fc828726bcd
f76bb0c386ae1d0ff3821e00787611655393c99631c66bc06d4d8d9405fd761f

HTTP Headers

GET /modules/quick-pagepost-redirect-plugin/js/qppr_frontend_script.min.js HTTP/1.1
Host: www.iccu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.iccu.com/
Connection: keep-alive
Cookie: PHPSESSID=uspvt7aqmrmmfltm09b8p30hoa
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Sat, 26 Nov 2022 20:21:11 GMT
content-type: application/javascript
content-length: 541
server: Pagely-ARES/1.10.15
x-gateway-request-id: 1e53a81bd9fabe10fb246ed5b1c92cb6
last-modified: Sat, 12 Mar 2022 23:17:49 GMT
etag: "636-5da0da7e7ee01-gzip"
vary: Accept-Encoding, Accept-Encoding
content-encoding: gzip
expires: Fri, 23 Dec 2022 18:16:33 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-gateway-cache-key: 1669227391.172||https|www.iccu.com|||/modules/quick-pagepost-redirect-plugin/js/qppr_frontend_script.min.js
x-gateway-cache-status: HIT
x-gateway-skip-cache: 0
accept-ranges: bytes
X-Firefox-Spdy: h2

www.iccu.com/template/library/js/libs/gmaps.min.js

54.214.206.138

200 OK

8.9 kB

URL HTTP/2
www.iccu.com/template/library/js/libs/gmaps.min.js
IP
54.214.206.138:0
ASN
#16509 AMAZON-02

File type
ASCII text, with very long lines (31160), with no line terminators
Size
8.9 kB (8917 bytes)
Hash
a4c617df82eb36cc9efcb7dd9eace22a
1e9aa8fd7c63e37b4a558a4de3d8d378741eaac9
8308472eb0f1d53b41028b10ae34a2e466d287882020839f915e0798bc36520f

HTTP Headers

GET /template/library/js/libs/gmaps.min.js HTTP/1.1
Host: www.iccu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.iccu.com/
Connection: keep-alive
Cookie: PHPSESSID=uspvt7aqmrmmfltm09b8p30hoa
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Sat, 26 Nov 2022 20:21:11 GMT
content-type: application/javascript
content-length: 8917
server: Pagely-ARES/1.10.15
x-gateway-request-id: bcb4b28e02547044784b25c127917e3e
last-modified: Thu, 30 Sep 2021 14:54:37 GMT
etag: "79b8-5cd37a02adc61-gzip"
vary: Accept-Encoding, Accept-Encoding
content-encoding: gzip
expires: Fri, 23 Dec 2022 18:16:33 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-gateway-cache-key: 1669227391.172||https|www.iccu.com|||/template/library/js/libs/gmaps.min.js
x-gateway-cache-status: HIT
x-gateway-skip-cache: 0
accept-ranges: bytes
X-Firefox-Spdy: h2

www.iccu.com/template/library/js/branches.js

54.214.206.138

200 OK

0 B

URL HTTP/2
www.iccu.com/template/library/js/branches.js
IP
54.214.206.138:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /template/library/js/branches.js HTTP/1.1
Host: www.iccu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.iccu.com/
Connection: keep-alive
Cookie: PHPSESSID=uspvt7aqmrmmfltm09b8p30hoa
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Sat, 26 Nov 2022 20:21:11 GMT
content-type: application/javascript
content-length: 0
server: Pagely-ARES/1.10.15
x-gateway-request-id: c8584a3a54d9c28a6397e5df8c938142
last-modified: Thu, 30 Sep 2021 14:54:37 GMT
etag: "0-5cd37a02accc1"
expires: Fri, 23 Dec 2022 18:16:33 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-gateway-cache-key: 1669227391.172||https|www.iccu.com|||/template/library/js/branches.js
x-gateway-cache-status: HIT
x-gateway-skip-cache: 0
accept-ranges: bytes
X-Firefox-Spdy: h2

www.iccu.com/lib/js/jquery/jquery.form.min.js

54.214.206.138

200 OK

6.0 kB

URL HTTP/2
www.iccu.com/lib/js/jquery/jquery.form.min.js
IP
54.214.206.138:0
ASN
#16509 AMAZON-02

File type
ASCII text, with very long lines (15977), with no line terminators
Size
6.0 kB (5958 bytes)
Hash
7aeeb733430179288e8fc8c304eb76dd
4c5767819308499db85ab40d64c1f06dadd007a8
dd5150b0eb0b9d8f0969f3e47a4c17edcdd613862456c2b4575910e038ff22f5

HTTP Headers

GET /lib/js/jquery/jquery.form.min.js HTTP/1.1
Host: www.iccu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.iccu.com/
Connection: keep-alive
Cookie: PHPSESSID=uspvt7aqmrmmfltm09b8p30hoa
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Sat, 26 Nov 2022 20:21:11 GMT
content-type: application/javascript
content-length: 5958
server: Pagely-ARES/1.10.15
x-gateway-request-id: edb7e52f24e58323000482249b92dc5c
last-modified: Tue, 15 Nov 2022 21:14:51 GMT
etag: "3e69-5ed88d8baa8c0-gzip"
vary: Accept-Encoding, Accept-Encoding
content-encoding: gzip
expires: Fri, 23 Dec 2022 18:16:33 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-gateway-cache-key: 1669227391.172||https|www.iccu.com|||/lib/js/jquery/jquery.form.min.js
x-gateway-cache-status: HIT
x-gateway-skip-cache: 0
accept-ranges: bytes
X-Firefox-Spdy: h2

www.iccu.com/template/library/js/login.js

54.214.206.138

200 OK

472 B

URL HTTP/2
www.iccu.com/template/library/js/login.js
IP
54.214.206.138:0
ASN
#16509 AMAZON-02

File type
ASCII text
Size
472 B (472 bytes)
Hash
9b8611198e96f5fe45ea4141cf74e4a6
abc8a4d37a109727fe6acafbe843fcd8ea358072
92d1723bab81567ae2b86a16ad9a8051577ecf7e1742401c8be69c873968e333

HTTP Headers

GET /template/library/js/login.js HTTP/1.1
Host: www.iccu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.iccu.com/
Connection: keep-alive
Cookie: PHPSESSID=uspvt7aqmrmmfltm09b8p30hoa
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Sat, 26 Nov 2022 20:21:11 GMT
content-type: application/javascript
content-length: 472
server: Pagely-ARES/1.10.15
x-gateway-request-id: d40c0dbd0ed0c921b5803053fcb8365f
last-modified: Thu, 30 Sep 2021 14:54:37 GMT
etag: "41e-5cd37a02adc61-gzip"
vary: Accept-Encoding, Accept-Encoding
content-encoding: gzip
expires: Fri, 23 Dec 2022 18:16:33 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-gateway-cache-key: 1669227391.172||https|www.iccu.com|||/template/library/js/login.js
x-gateway-cache-status: HIT
x-gateway-skip-cache: 0
accept-ranges: bytes
X-Firefox-Spdy: h2

www.iccu.com/template/library/js/html5shiv.js

54.214.206.138

200 OK

1.2 kB

URL HTTP/2
www.iccu.com/template/library/js/html5shiv.js
IP
54.214.206.138:0
ASN
#16509 AMAZON-02

File type
HTML document, ASCII text, with very long lines (645)
Size
1.2 kB (1248 bytes)
Hash
028192673bfb699f9b0b9adf25f022b7
b8e3276bf7ad1649798595d22b47866259f2b8fe
97cdab837957cde45a7b1f2f30f6926350c2ba423cd35e1a1d20299a149d0f12

HTTP Headers

GET /template/library/js/html5shiv.js HTTP/1.1
Host: www.iccu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.iccu.com/
Connection: keep-alive
Cookie: PHPSESSID=uspvt7aqmrmmfltm09b8p30hoa
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Sat, 26 Nov 2022 20:21:11 GMT
content-type: application/javascript
content-length: 1248
server: Pagely-ARES/1.10.15
x-gateway-request-id: 65db0d0ce4b70b1f90d371bb6583b494
last-modified: Thu, 30 Sep 2021 14:54:37 GMT
etag: "97c-5cd37a02accc1-gzip"
vary: Accept-Encoding, Accept-Encoding
content-encoding: gzip
expires: Fri, 23 Dec 2022 18:16:33 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-gateway-cache-key: 1669227391.172||https|www.iccu.com|||/template/library/js/html5shiv.js
x-gateway-cache-status: HIT
x-gateway-skip-cache: 0
accept-ranges: bytes
X-Firefox-Spdy: h2

www.iccu.com/template/library/js/respond.min.js

54.214.206.138

200 OK

2.2 kB

URL HTTP/2
www.iccu.com/template/library/js/respond.min.js
IP
54.214.206.138:0
ASN
#16509 AMAZON-02

File type
HTML document, ASCII text, with very long lines (4204)
Size
2.2 kB (2151 bytes)
Hash
eccf4ce2ff9ef9387cbd68c16098da2c
b1d0936582b0477ce15e3aa9d35b308d191cdf9d
32859d2277095945e7584fdbd93b94417675462a4259d2ab65ca36fcafbb99f2

HTTP Headers

GET /template/library/js/respond.min.js HTTP/1.1
Host: www.iccu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.iccu.com/
Connection: keep-alive
Cookie: PHPSESSID=uspvt7aqmrmmfltm09b8p30hoa
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Sat, 26 Nov 2022 20:21:11 GMT
content-type: application/javascript
content-length: 2151
server: Pagely-ARES/1.10.15
x-gateway-request-id: f31be3c4ab8caa8b12648004f888253c
last-modified: Thu, 30 Sep 2021 14:54:37 GMT
etag: "1119-5cd37a02adc61-gzip"
vary: Accept-Encoding, Accept-Encoding
content-encoding: gzip
expires: Fri, 23 Dec 2022 18:16:33 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-gateway-cache-key: 1669227391.172||https|www.iccu.com|||/template/library/js/respond.min.js
x-gateway-cache-status: HIT
x-gateway-skip-cache: 0
accept-ranges: bytes
X-Firefox-Spdy: h2

www.iccu.com/modules/column-shortcodes/assets/css/shortcodes.css

54.214.206.138

200 OK

694 B

URL HTTP/2
www.iccu.com/modules/column-shortcodes/assets/css/shortcodes.css
IP
54.214.206.138:0
ASN
#16509 AMAZON-02

File type
ASCII text, with CRLF line terminators
Size
694 B (694 bytes)
Hash
8bcd953dec4e1a00c06f422bf7c092e7
a3dae6ce7633a8144569a8aa6c98d77e9f404d44
c3b8402cec0d8e9306078e352e66e9ff7ea2e895d12f6cc9a8101ad2e4cd9769

HTTP Headers

GET /modules/column-shortcodes/assets/css/shortcodes.css HTTP/1.1
Host: www.iccu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.iccu.com/
Connection: keep-alive
Cookie: PHPSESSID=uspvt7aqmrmmfltm09b8p30hoa
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Sat, 26 Nov 2022 20:21:11 GMT
content-type: text/css
content-length: 694
server: Pagely-ARES/1.10.15
x-gateway-request-id: 1e5e46346d2bdc30e6a31eeb427b9cd8
last-modified: Thu, 30 Sep 2021 14:54:37 GMT
etag: "c71-5cd37a0252f3f-gzip"
vary: Accept-Encoding, Accept-Encoding
content-encoding: gzip
expires: Fri, 23 Dec 2022 18:16:33 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-gateway-cache-key: 1669227391.172||https|www.iccu.com|||/modules/column-shortcodes/assets/css/shortcodes.css
x-gateway-cache-status: HIT
x-gateway-skip-cache: 0
accept-ranges: bytes
X-Firefox-Spdy: h2

jelly.mdhv.io/v1/star.gif?pid=k68xTQf5KLBLY7g6WVq8X5QX7IFv&src=mh&evt=hi&gtmcb=265975272

216.239.34.21

307 Temporary Redirect

193 B

URL HTTP/2
jelly.mdhv.io/v1/star.gif?pid=k68xTQf5KLBLY7g6WVq8X5QX7IFv&src=mh&evt=hi&gtmcb=265975272
IP
216.239.34.21:0
ASN
#15169 GOOGLE

File type
HTML document, ASCII text
Size
193 B (193 bytes)
Hash
b0aa250f82783209be42e7d750386499
3d390ade3683a11e4736330bb79965bfa11a5b13
a5a61c1737c77288bc752b0e3144a71d360aa4a5a7513636aac6a5dea8500fd2

HTTP Headers

GET /v1/star.gif?pid=k68xTQf5KLBLY7g6WVq8X5QX7IFv&src=mh&evt=hi&gtmcb=265975272 HTTP/1.1
Host: jelly.mdhv.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.iccu.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 307 Temporary Redirect
content-type: text/html; charset=utf-8
location: https://jelly-v6.mdhv.io/v1/starV6.gif?evt=hi&gtmcb=265975272&pid=k68xTQf5KLBLY7g6WVq8X5QX7IFv&src=mh&tx=8e019722-21fb-4ba3-9ef8-83313452d4f8
x-cloud-trace-context: c7e45d87ed0ee16a191294b90925b430
date: Sat, 26 Nov 2022 20:21:12 GMT
server: Google Frontend
content-length: 193
X-Firefox-Spdy: h2

region1.analytics.google.com/g/collect?v=2&tid=G-37JPF553KD&gtm=2oeb90&_p=32339463&_gaz=1&cid=1292268032.1669494071&ul=en-us&sr=1280x1024&_s=1&sid=1669494071&sct=1&seg=0&dl=https%3A%2F%2Fwww.iccu.com%2F&dt=Idaho%20Central%20Credit%20Union%20%7C%20Idaho%27s%20Premier%20Credit%20Union&en=page_view&_fv=1&_nsi=1&_ss=1

216.239.32.36

204 No Content

0 B

URL HTTP/2
region1.analytics.google.com/g/collect?v=2&tid=G-37JPF553KD&gtm=2oeb90&_p=32339463&_gaz=1&cid=1292268032.1669494071&ul=en-us&sr=1280x1024&_s=1&sid=1669494071&sct=1&seg=0&dl=https%3A%2F%2Fwww.iccu.com%2F&dt=Idaho%20Central%20Credit%20Union%20%7C%20Idaho%27s%20Premier%20Credit%20Union&en=page_view&_fv=1&_nsi=1&_ss=1
IP
216.239.32.36:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /g/collect?v=2&tid=G-37JPF553KD&gtm=2oeb90&_p=32339463&_gaz=1&cid=1292268032.1669494071&ul=en-us&sr=1280x1024&_s=1&sid=1669494071&sct=1&seg=0&dl=https%3A%2F%2Fwww.iccu.com%2F&dt=Idaho%20Central%20Credit%20Union%20%7C%20Idaho%27s%20Premier%20Credit%20Union&en=page_view&_fv=1&_nsi=1&_ss=1 HTTP/1.1
Host: region1.analytics.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.iccu.com
Connection: keep-alive
Referer: https://www.iccu.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0

HTTP/2 204 No Content
access-control-allow-origin: https://www.iccu.com
date: Sat, 26 Nov 2022 20:21:12 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.sca1b.amazontrust.com/

143.204.42.165

200 OK

471 B

URL HTTP/1.1
ocsp.sca1b.amazontrust.com/
IP
143.204.42.165:0
ASN
#16509 AMAZON-02

File type
data
Size
471 B (471 bytes)
Hash
e04f5a610849691c3754302cd74a829c
a6af7cdad6f4278adcded141031d8d37047709b0
a767096f8433a6bdd74afe4e14c2c403d32935f6c77e2be25ca0e094dabee6e9

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=116163
Date: Sat, 26 Nov 2022 20:21:12 GMT
Etag: "638197fb-1d7"
Expires: Mon, 28 Nov 2022 04:37:15 GMT
Last-Modified: Sat, 26 Nov 2022 04:37:15 GMT
Server: nginx
X-Cache: Miss from cloudfront
Via: 1.1 dbfaae0db03f11cf713bbcbdb25be4a2.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: PEBzUIWsOlk45QmfQuK5B-xfI4Tz1UJY791C_UVEFHxx_k1rqEaHdA==

ocsp.sca1b.amazontrust.com/

143.204.42.165

200 OK

471 B

URL HTTP/1.1
ocsp.sca1b.amazontrust.com/
IP
143.204.42.165:0
ASN
#16509 AMAZON-02

File type
data
Size
471 B (471 bytes)
Hash
e04f5a610849691c3754302cd74a829c
a6af7cdad6f4278adcded141031d8d37047709b0
a767096f8433a6bdd74afe4e14c2c403d32935f6c77e2be25ca0e094dabee6e9

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=116164
Date: Sat, 26 Nov 2022 20:21:11 GMT
Etag: "638197fb-1d7"
Expires: Mon, 28 Nov 2022 04:37:15 GMT
Last-Modified: Sat, 26 Nov 2022 04:37:15 GMT
Server: nginx
X-Cache: Miss from cloudfront
Via: 1.1 a2b4f68a89fc87406bff22c95fc07fba.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: ut7HT7NQJdpKyybry4jr46dntq8R4bqQmyJuzGX4SMmxKuixG4ZTTA==

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
a22bc94a1116f343d9c3377cfd4fc5b2
b0bad6a620abd0c33a96c32721ad87849da9f9e6
294cd4b44650b17a93cbe9a4de887ad1da8ab8c11105707cccff17812a8d5890

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 20:21:12 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

cdn.iccu.com/inc/env.js?v=2022.10.28.1614

143.204.55.19

200 OK

194 B

URL HTTP/2
cdn.iccu.com/inc/env.js?v=2022.10.28.1614
IP
143.204.55.19:0
ASN
#16509 AMAZON-02

File type
ASCII text
Size
194 B (194 bytes)
Hash
90ccacfe7eaa1fecd1109f4560a668ba
69952f529ba894ee425a5d03624f6a575965b1e9
559d16f1cf16a250cf0719e4ce987558313e316bbec5830cfdaac8e87f66978f

HTTP Headers

GET /inc/env.js?v=2022.10.28.1614 HTTP/1.1
Host: cdn.iccu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.iccu.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site

HTTP/2 200 OK
content-type: application/javascript
content-length: 194
date: Wed, 23 Nov 2022 18:30:25 GMT
server: Pagely-ARES/1.10.15
x-gateway-request-id: 7449cadf41a5a5da85d9c3d6ee50e01c
last-modified: Fri, 28 Oct 2022 21:54:40 GMT
etag: "131-5ec1f4dfdd898-gzip"
content-encoding: gzip
expires: Fri, 23 Dec 2022 18:16:34 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-gateway-cache-key: 1669227391.172||https|www.iccu.com|||/inc/env.js?v=2022.10.28.1614
x-gateway-cache-status: HIT
x-gateway-skip-cache: 0
accept-ranges: bytes
vary: Accept-Encoding,Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 a9120cc3ff449047c990e82a4d5566ba.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: LoUe2DV8xCxViB1dMD33VPs4nydodbN2JNV7168brahLvv0UlFG-ow==
age: 265847
X-Firefox-Spdy: h2

cdn.iccu.com/inc/themes/ro-iccu/library/images/green-section-overlay.png

143.204.55.19

200 OK

20 kB

URL HTTP/2
cdn.iccu.com/inc/themes/ro-iccu/library/images/green-section-overlay.png
IP
143.204.55.19:0
ASN
#16509 AMAZON-02

File type
PNG image data, 615 x 237, 8-bit/color RGBA, non-interlaced\012- data
Size
20 kB (20155 bytes)
Hash
6d79826090d5d93e4f7c7491e1d707d3
4b474ad04bc09d2e126a2f1b28b540ec73c0aeeb
2baab3fdf9a17de4b9c624505d7afc44efc72db4c9ba881b8e1377a3a3ac6b19

HTTP Headers

GET /inc/themes/ro-iccu/library/images/green-section-overlay.png HTTP/1.1
Host: cdn.iccu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.iccu.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
content-type: image/png
content-length: 20155
date: Wed, 23 Nov 2022 18:30:25 GMT
server: Pagely-ARES/1.10.15
x-gateway-request-id: ab467f8c125ea2363366334363a13fe3
last-modified: Thu, 30 Sep 2021 14:54:37 GMT
etag: "4ebb-5cd37a02a9de1"
expires: Fri, 23 Dec 2022 18:16:34 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-gateway-cache-key: 1669227391.167||https|www.iccu.com|||/inc/themes/ro-iccu/library/images/green-section-overlay.png
x-gateway-cache-status: HIT
x-gateway-skip-cache: 0
accept-ranges: bytes
x-cache: Hit from cloudfront
via: 1.1 a9120cc3ff449047c990e82a4d5566ba.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: TKhyv6k8JgHLAFCKrr-PGVvWV-scyvX1APy89a2o-X-qynSW1kq4jA==
age: 265847
X-Firefox-Spdy: h2

stats.g.doubleclick.net/g/collect?v=2&tid=G-37JPF553KD&cid=1292268032.1669494071&gtm=2oeb90&aip=1

142.251.1.156

204 No Content

0 B

URL HTTP/2
stats.g.doubleclick.net/g/collect?v=2&tid=G-37JPF553KD&cid=1292268032.1669494071&gtm=2oeb90&aip=1
IP
142.251.1.156:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /g/collect?v=2&tid=G-37JPF553KD&cid=1292268032.1669494071&gtm=2oeb90&aip=1 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.iccu.com
Connection: keep-alive
Referer: https://www.iccu.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0

HTTP/2 204 No Content
access-control-allow-origin: https://www.iccu.com
date: Sat, 26 Nov 2022 20:21:12 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
a22bc94a1116f343d9c3377cfd4fc5b2
b0bad6a620abd0c33a96c32721ad87849da9f9e6
294cd4b44650b17a93cbe9a4de887ad1da8ab8c11105707cccff17812a8d5890

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 20:21:12 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

sc-static.net/scevent.min.js

54.230.82.240

200 OK

12 kB

URL HTTP/2
sc-static.net/scevent.min.js
IP
54.230.82.240:0
ASN
#16509 AMAZON-02

File type
ASCII text, with very long lines (27639), with no line terminators
Size
12 kB (11968 bytes)
Hash
6d231d01533de87f1978527ff1582e85
2681a231f71539018d1e7ef81b21035159e70067
dd8eda4130a189c4da20100752803ccb737e26f5c93f97f8db822f29f545be19

HTTP Headers

GET /scevent.min.js HTTP/1.1
Host: sc-static.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.iccu.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: application/javascript;charset=utf-8
content-length: 11968
server: CloudFront
date: Sat, 26 Nov 2022 20:21:12 GMT
content-encoding: gzip
access-control-allow-origin: *
access-control-allow-headers: Content-Type
cache-control: private, s-maxage=0, max-age=600
set-cookie: X-AB=0d6e407936704bd380072f5891d28b0e;max-age=86400;expires=Sun, 27 Nov 2022 20:10:19 GMT;Path=/scevent.min.js; Secure; SameSite=None
x-cache: LambdaGeneratedResponse from cloudfront
via: 1.1 98794c1dec0d4e7b10ddf0faa094cf94.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: akAw56CXpzu1sanJKRtsnQ20_d8nMrEYzKMVpbLvb1sYxhcX7KHD-Q==
X-Firefox-Spdy: h2

www.iccu.com/template/library/fonts/PN-Regular.woff

54.214.206.138

200 OK

57 kB

URL HTTP/2
www.iccu.com/template/library/fonts/PN-Regular.woff
IP
54.214.206.138:0
ASN
#16509 AMAZON-02

File type
Web Open Font Format, CFF, length 57260, version 2.3\012- data
Size
57 kB (57260 bytes)
Hash
40a7c5c7e81cedde9cc68d5a26d72552
7d0468c2607f929e3edbcf5e77ed0400b8ca221e
1d54edce75dd642fa65d1d2abf50bdb753117da33b274bba116a626b5839d9c8

HTTP Headers

GET /template/library/fonts/PN-Regular.woff HTTP/1.1
Host: www.iccu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://www.iccu.com/template/library/css/redolive.css?v=2022.4.12.1246
Cookie: PHPSESSID=uspvt7aqmrmmfltm09b8p30hoa; _gcl_au=1.1.268949001.1669494071; _ga_37JPF553KD=GS1.1.1669494071.1.0.1669494071.60.0.0; _ga=GA1.1.1292268032.1669494071
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Sat, 26 Nov 2022 20:21:12 GMT
content-type: font/woff
content-length: 57260
server: Pagely-ARES/1.10.15
x-gateway-request-id: 09ce17f692d472f89537f0a3f36f3413
last-modified: Thu, 30 Sep 2021 14:54:37 GMT
etag: "dfac-5cd37a02a4021"
expires: Fri, 23 Dec 2022 18:16:34 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD, OPTIONS
x-gateway-cache-key: 1669227391.172||https|www.iccu.com|||/template/library/fonts/PN-Regular.woff
x-gateway-cache-status: HIT
x-gateway-skip-cache: 0
accept-ranges: bytes
X-Firefox-Spdy: h2

www.iccu.com/wp-content/uploads/2018/04/smallGreenHump.png

54.214.206.138

200 OK

693 B

URL HTTP/2
www.iccu.com/wp-content/uploads/2018/04/smallGreenHump.png
IP
54.214.206.138:0
ASN
#16509 AMAZON-02

File type
PNG image data, 123 x 26, 8-bit colormap, non-interlaced\012- data
Size
693 B (693 bytes)
Hash
0a16125594770ba6c98517e8c10cfaa2
fd6d49da706c4af6a0baf6a5c42bd3d5612632b5
9cad4e384c0705fee89906b6f469b12b8f3f8eee558eaf3a914be26556e8d975

HTTP Headers

GET /wp-content/uploads/2018/04/smallGreenHump.png HTTP/1.1
Host: www.iccu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.iccu.com/template/library/css/redolive.css?v=2022.4.12.1246
Cookie: PHPSESSID=uspvt7aqmrmmfltm09b8p30hoa; _gcl_au=1.1.268949001.1669494071; _ga_37JPF553KD=GS1.1.1669494071.1.0.1669494071.60.0.0; _ga=GA1.1.1292268032.1669494071
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Sat, 26 Nov 2022 20:21:12 GMT
content-type: image/png
content-length: 693
server: Pagely-ARES/1.10.15
x-gateway-request-id: 29bf38a3fc9d1a4f9cc241a677e58103
last-modified: Thu, 30 Sep 2021 14:54:39 GMT
etag: "2b5-5cd37a0412389"
expires: Fri, 23 Dec 2022 18:16:35 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-gateway-cache-key: 1669227391.172||https|www.iccu.com|||/wp-content/uploads/2018/04/smallGreenHump.png
x-gateway-cache-status: HIT
x-gateway-skip-cache: 0
accept-ranges: bytes
X-Firefox-Spdy: h2

www.iccu.com/wp-content/uploads/2018/04/whiteHump.png

54.214.206.138

200 OK

928 B

URL HTTP/2
www.iccu.com/wp-content/uploads/2018/04/whiteHump.png
IP
54.214.206.138:0
ASN
#16509 AMAZON-02

File type
PNG image data, 198 x 47, 8-bit colormap, non-interlaced\012- data
Size
928 B (928 bytes)
Hash
1bb6d4e0f2b639acc42990b53936ef88
53a7c005a77a79e005d1d77d26f262810a6c8f01
963b3ce0f3b28e70452e781c268740099a3a5f1f15373bd44e2ea3b165bb25aa

HTTP Headers

GET /wp-content/uploads/2018/04/whiteHump.png HTTP/1.1
Host: www.iccu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.iccu.com/template/library/css/redolive.css?v=2022.4.12.1246
Cookie: PHPSESSID=uspvt7aqmrmmfltm09b8p30hoa; _gcl_au=1.1.268949001.1669494071; _ga_37JPF553KD=GS1.1.1669494071.1.0.1669494071.60.0.0; _ga=GA1.1.1292268032.1669494071
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Sat, 26 Nov 2022 20:21:12 GMT
content-type: image/png
content-length: 928
server: Pagely-ARES/1.10.15
x-gateway-request-id: 153ac7b35efe48751d438f03f3a18327
last-modified: Thu, 30 Sep 2021 14:54:39 GMT
etag: "3a0-5cd37a0412389"
expires: Fri, 23 Dec 2022 18:16:34 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-gateway-cache-key: 1669227391.172||https|www.iccu.com|||/wp-content/uploads/2018/04/whiteHump.png
x-gateway-cache-status: HIT
x-gateway-skip-cache: 0
accept-ranges: bytes
X-Firefox-Spdy: h2

www.iccu.com/wp-content/uploads/2018/04/greenHump.png

54.214.206.138

200 OK

875 B

URL HTTP/2
www.iccu.com/wp-content/uploads/2018/04/greenHump.png
IP
54.214.206.138:0
ASN
#16509 AMAZON-02

File type
PNG image data, 198 x 47, 8-bit colormap, non-interlaced\012- data
Size
875 B (875 bytes)
Hash
d273c8f38498e78e39cecdc266f088f4
49f4889a33182d04b5585b59790fe0a2e7cdafcc
5f8b15bcd22a660dd9b43abcceac5a884f40c1b105ec67eeed99053647a2a3eb

HTTP Headers

GET /wp-content/uploads/2018/04/greenHump.png HTTP/1.1
Host: www.iccu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.iccu.com/template/library/css/redolive.css?v=2022.4.12.1246
Cookie: PHPSESSID=uspvt7aqmrmmfltm09b8p30hoa; _gcl_au=1.1.268949001.1669494071; _ga_37JPF553KD=GS1.1.1669494071.1.0.1669494071.60.0.0; _ga=GA1.1.1292268032.1669494071
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Sat, 26 Nov 2022 20:21:12 GMT
content-type: image/png
content-length: 875
server: Pagely-ARES/1.10.15
x-gateway-request-id: 164f39083ad0ddd6e2a163420440d7a0
last-modified: Thu, 30 Sep 2021 14:54:39 GMT
etag: "36b-5cd37a04113e9"
expires: Fri, 23 Dec 2022 18:16:34 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-gateway-cache-key: 1669227391.172||https|www.iccu.com|||/wp-content/uploads/2018/04/greenHump.png
x-gateway-cache-status: HIT
x-gateway-skip-cache: 0
accept-ranges: bytes
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
62e6d568f83cbed0627d11a2f186c60e
c130e28cc6e9891cf6be0af325a5864826b9dbd5
7578ed4d45343147688ced1d3e79442c99010c7baca982fe1db4fa855e3af89a

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3077
Cache-Control: max-age=127156
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 20:21:12 GMT
Etag: "6381b6e7-1d7"
Expires: Mon, 28 Nov 2022 07:40:28 GMT
Last-Modified: Sat, 26 Nov 2022 06:49:11 GMT
Server: ECS (ska/F707)
X-Cache: HIT
Content-Length: 471

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
62e6d568f83cbed0627d11a2f186c60e
c130e28cc6e9891cf6be0af325a5864826b9dbd5
7578ed4d45343147688ced1d3e79442c99010c7baca982fe1db4fa855e3af89a

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3077
Cache-Control: max-age=127156
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 20:21:12 GMT
Etag: "6381b6e7-1d7"
Expires: Mon, 28 Nov 2022 07:40:28 GMT
Last-Modified: Sat, 26 Nov 2022 06:49:11 GMT
Server: ECS (ska/F707)
X-Cache: HIT
Content-Length: 471

cdn.evgnet.com/beacon/idahoccu/idahoccu/scripts/evergage.min.js

151.101.0.114

200 OK

46 kB

URL HTTP/2
cdn.evgnet.com/beacon/idahoccu/idahoccu/scripts/evergage.min.js
IP
151.101.0.114:0
ASN
#54113 FASTLY

File type
ASCII text, with very long lines (594)
Size
46 kB (45931 bytes)
Hash
e243e8ec57e1aa473dc8b94efcd22d21
64cf8734f133cff8ad9f36a28479f3621647b9af
489ace076435a44f46011c23b9d57e193dfd72733d3a18621f358348dab593c0

HTTP Headers

GET /beacon/idahoccu/idahoccu/scripts/evergage.min.js HTTP/1.1
Host: cdn.evgnet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.iccu.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
x-amz-id-2: 5QCg1qilwld+NTIqs664S2t5ejy4lJYKQOZsCDbz5o5sykmCvaY65xin8pXO414mTL1xy5a5U3I=
x-amz-request-id: 23SKFW0D3BZ2KGWN
x-amz-replication-status: COMPLETED
last-modified: Tue, 22 Nov 2022 23:21:25 GMT
etag: "e243e8ec57e1aa473dc8b94efcd22d21"
cache-control: max-age=120
content-encoding: gzip
x-amz-meta-evergage-beacon-ver: 16
x-amz-meta-evergage-sum: 3e4eb9a21d26e3905cc09524ae1e62d53ef76672
x-amz-version-id: 2kQJS1Y11RHoVx3KZfR8iIHG_EbPygsr
content-type: application/javascript; charset=utf-8
server: AmazonS3
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sat, 26 Nov 2022 20:21:12 GMT
age: 99
x-served-by: cache-iad-kjyo7100059-IAD, cache-bma1646-BMA
x-cache: HIT, HIT
x-cache-hits: 17, 1
x-timer: S1669494072.474479,VS0,VE91
vary: Accept-Encoding
timing-allow-origin: *
content-length: 45931
X-Firefox-Spdy: h2

tr.snapchat.com/cm/i?pid=4f35f424-49c8-4fe3-8e39-57f403fa9f72&u_scsid=fe25313f-b624-43d6-8731-79329b1cfeb4&u_sclid=2f4b7f9c-65f4-441a-9d1b-d335e4a414ae

35.190.43.134

200 OK

0 B

URL HTTP/2
tr.snapchat.com/cm/i?pid=4f35f424-49c8-4fe3-8e39-57f403fa9f72&u_scsid=fe25313f-b624-43d6-8731-79329b1cfeb4&u_sclid=2f4b7f9c-65f4-441a-9d1b-d335e4a414ae
IP
35.190.43.134:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /cm/i?pid=4f35f424-49c8-4fe3-8e39-57f403fa9f72&u_scsid=fe25313f-b624-43d6-8731-79329b1cfeb4&u_sclid=2f4b7f9c-65f4-441a-9d1b-d335e4a414ae HTTP/1.1
Host: tr.snapchat.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.iccu.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Sat, 26 Nov 2022 20:21:12 GMT
content-type: text/html
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-length: 0
x-envoy-upstream-service-time: 0
server: API Gateway
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
62e6d568f83cbed0627d11a2f186c60e
c130e28cc6e9891cf6be0af325a5864826b9dbd5
7578ed4d45343147688ced1d3e79442c99010c7baca982fe1db4fa855e3af89a

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3077
Cache-Control: max-age=127156
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 20:21:12 GMT
Etag: "6381b6e7-1d7"
Expires: Mon, 28 Nov 2022 07:40:28 GMT
Last-Modified: Sat, 26 Nov 2022 06:49:11 GMT
Server: ECS (ska/F707)
X-Cache: HIT
Content-Length: 471

ocsp.sca1b.amazontrust.com/

143.204.42.165

200 OK

471 B

URL HTTP/1.1
ocsp.sca1b.amazontrust.com/
IP
143.204.42.165:0
ASN
#16509 AMAZON-02

File type
data
Size
471 B (471 bytes)
Hash
e0ebe0d537b8fb447890da6e4b40a163
be58013b2c6a6d6ddbe54e17dc8475db414c7621
ed51497bc9a14abfe24336341dad638227a15cabd645f13fda8f657bff59f342

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=117264
Date: Sat, 26 Nov 2022 20:21:12 GMT
Etag: "63818b32-1d7"
Expires: Mon, 28 Nov 2022 04:55:36 GMT
Last-Modified: Sat, 26 Nov 2022 03:42:42 GMT
Server: ECS (dcb/7F81)
X-Cache: Miss from cloudfront
Via: 1.1 dbfaae0db03f11cf713bbcbdb25be4a2.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: XkmZT3DNJC3yK2Pm9xfUvEClO7PxFkqgrGliPSjUJIqrGzZDzFHYtQ==
Age: 4374

analytics.tiktok.com/i18n/pixel/config.js?sdkid=CDMJCTRC77U9BMO6V730&hostname=www.iccu.com

23.36.79.32

200 OK

347 B

URL HTTP/2
analytics.tiktok.com/i18n/pixel/config.js?sdkid=CDMJCTRC77U9BMO6V730&hostname=www.iccu.com
IP
23.36.79.32:0
ASN
#20940 Akamai International B.V.

File type
ASCII text
Size
347 B (347 bytes)
Hash
0a6cf9004dcee152a1995d7a9df6a655
4910a4583ab604ff138a321f03dca21559a73f87
3cae6a7267053169eaa75764aabd73152652a7982ab31d1a511da1ffb4193012

HTTP Headers

GET /i18n/pixel/config.js?sdkid=CDMJCTRC77U9BMO6V730&hostname=www.iccu.com HTTP/1.1
Host: analytics.tiktok.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.iccu.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=UTF-8
x-tt-logid: 202211262021129D4DC31709DB5DE8D993
x-tt-trace-host: 016eabbbec2a80a817c88fdee8d986cf60459c918a449af51d55daa38da0f8465beeebfaa23e7c4f229401f6382b9710dd1b17a773204d0a7445278860cb36fee482caaffde1b2aff9d451a0796cbb0753
content-encoding: gzip
expires: Sat, 26 Nov 2022 20:21:12 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Sat, 26 Nov 2022 20:21:12 GMT
content-length: 347
x-cache: TCP_MISS from a23-36-79-28.deploy.akamaitechnologies.com (AkamaiGHost/10.10.2-45048955) (-)
vary: Accept-Encoding
set-cookie: _ttp=2I6FLrshjPwJCz5cnXG1nRImPS1; Path=/; Domain=tiktok.com; Max-Age=33696000; Secure; SameSite=None
x-tt-trace-tag: id=16;cdn-cache=miss;type=dyn
server-timing: inner; dur=2, cdn-cache; desc=MISS, edge; dur=1, origin; dur=97
x-origin-response-time: 97,23.36.79.28
x-akamai-request-id: 62412554
X-Firefox-Spdy: h2

collector-21348.us.tvsquared.com/tv2track.js

18.217.91.236

200 OK

8.5 kB

URL HTTP/1.1
collector-21348.us.tvsquared.com/tv2track.js
IP
18.217.91.236:0
ASN
#16509 AMAZON-02

File type
ASCII text, with very long lines (1162)
Size
8.5 kB (8499 bytes)
Hash
0dfa43ce95b39a456eae5449442aff6e
f5a7a9573c38d97cb3c7d8d811b8b6707a7f2d88
3135834b3c8b03e052d94f9b63cf3f796ff4a3077256dd1daddc16d5c204306a

HTTP Headers

GET /tv2track.js HTTP/1.1
Host: collector-21348.us.tvsquared.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.iccu.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Cache-Control: max-age=600
Content-Encoding: gzip
Content-Type: application/javascript
Date: Sat, 26 Nov 2022 20:21:12 GMT
ETag: "6306051b-2133"
Expires: Sat, 26 Nov 2022 20:31:12 GMT
Last-Modified: Wed, 24 Aug 2022 11:01:47 GMT
Server: nginx
X-Robots-Tag: noindex
Content-Length: 8499
Connection: keep-alive

analytics.tiktok.com/i18n/pixel/identify.js

23.36.79.32

200 OK

31 kB

URL HTTP/2
analytics.tiktok.com/i18n/pixel/identify.js
IP
23.36.79.32:0
ASN
#20940 Akamai International B.V.

File type
ASCII text, with very long lines (65536), with no line terminators
Size
31 kB (30914 bytes)
Hash
cec0049f18f9aa1199961bb0904f6020
388a97987bb1e422baa77b6a1dc8cfcfbd90ef91
1f40eb94870c153d1571d88ec92f4994368c2d5f2093615ad83b11c453a1ac05

HTTP Headers

GET /i18n/pixel/identify.js HTTP/1.1
Host: analytics.tiktok.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.iccu.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=UTF-8
x-tt-logid: 202211262021129945A026836082E57988
x-tt-trace-host: 016eabbbec2a80a817c88fdee8d986cf6044faeb2b99c092c97016c61fe0db1beb29a903d51f2fcf63164750b3b6180ca4537c043b8344c159093efd2bc85fa883424f0a3d1b0bec662c8f03a6895b634710ec9a11b1572f5b5504dab266f853f1
content-encoding: gzip
x-origin-response-time: 5,23.218.220.137
x-akamai-request-id: f7e23e7a.6241253a
expires: Sat, 26 Nov 2022 20:21:12 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Sat, 26 Nov 2022 20:21:12 GMT
x-cache: TCP_MISS from a23-36-79-28.deploy.akamaitechnologies.com (AkamaiGHost/10.10.2-45048955) (-)
vary: Accept-Encoding
x-cache-remote: TCP_MISS from a23-218-220-137.deploy.akamaitechnologies.com (AkamaiGHost/10.10.2-45048955) (-)
x-tt-trace-tag: id=16;cdn-cache=miss;type=dyn
server-timing: cdn-cache; desc=MISS, edge; dur=102, origin; dur=5, inner; dur=2
x-parent-response-time: 107,23.36.79.28
X-Firefox-Spdy: h2

cdn.iccu.com/inc/uploads/2022/11/2022-holiday-rewards-slider.webp

143.204.55.19

200 OK

53 kB

URL HTTP/2
cdn.iccu.com/inc/uploads/2022/11/2022-holiday-rewards-slider.webp
IP
143.204.55.19:0
ASN
#16509 AMAZON-02

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 1920x800, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size
53 kB (53164 bytes)
Hash
69ce75610cc6095890e707de58a70cfe
c5b14493f0909758592ba63df58b63bed7a21b6d
57cd46800651071f922837f1b81c23d3053b96510b0066a0557d1f86b08c6051

HTTP Headers

GET /inc/uploads/2022/11/2022-holiday-rewards-slider.webp HTTP/1.1
Host: cdn.iccu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.iccu.com/
Connection: keep-alive
Cookie: _gcl_au=1.1.268949001.1669494071; _ga_37JPF553KD=GS1.1.1669494071.1.0.1669494071.60.0.0; _ga=GA1.1.1292268032.1669494071
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
content-length: 53164
date: Sat, 26 Nov 2022 20:21:12 GMT
server: Pagely-ARES/1.10.15
x-gateway-request-id: ac2f5a3926e1dd063024a378b80593d9
last-modified: Mon, 14 Nov 2022 17:39:19 GMT
etag: "cfac-5ed71b81d27a5"
expires: Mon, 26 Dec 2022 11:25:45 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-gateway-cache-key: 1669227391.172||https|www.iccu.com|||/inc/uploads/2022/11/2022-holiday-rewards-slider.webp
x-gateway-cache-status: HIT
x-gateway-skip-cache: 0
accept-ranges: bytes
x-cache: Miss from cloudfront
via: 1.1 a9120cc3ff449047c990e82a4d5566ba.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: UKwSUogjYvBeEC-2m2xhxUkgMCi2oM1ZGm6qfojbasnlg-7HwGBXPQ==
X-Firefox-Spdy: h2

ocsp.sca1b.amazontrust.com/

143.204.42.165

200 OK

471 B

URL HTTP/1.1
ocsp.sca1b.amazontrust.com/
IP
143.204.42.165:0
ASN
#16509 AMAZON-02

File type
data
Size
471 B (471 bytes)
Hash
7b45d921ed5f84da17ebe904a6856383
fd587a5f9f56aee95ecc95cbd734606884fcf397
633c883a88eecd8ea7681cb7c95f10161f3e119c096c12112946bc0bc4737b1b

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=144081
Date: Sat, 26 Nov 2022 20:21:12 GMT
Etag: "6381f1f4-1d7"
Expires: Mon, 28 Nov 2022 12:22:33 GMT
Last-Modified: Sat, 26 Nov 2022 11:01:08 GMT
Server: ECS (dcb/7EEE)
X-Cache: Miss from cloudfront
Via: 1.1 a2b4f68a89fc87406bff22c95fc07fba.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: v6nZ1c2wxKpd-sxlt-RH3lVtYFPhvhhBp0f2fYQx1JMkXuSn6355OQ==
Age: 4885

collector-21348.us.tvsquared.com/tv2track.php?action_name=Idaho%20Central%20Credit%20Union%20%7C%20Idaho%27s%20Premier%20Credit%20Union&idsite=TV-7281635418-1&rec=1&r=492880&h=20&m=21&s=12&url=https%3A%2F%2Fwww.iccu.com%2F&_id=34dfe02730398471&_idts=1669494073&_idvc=0&_idn=1&_viewts=&cookie=1&res=1280x1024&gt_ms=1841

18.217.91.236

200 OK

42 B

URL HTTP/1.1
collector-21348.us.tvsquared.com/tv2track.php?action_name=Idaho%20Central%20Credit%20Union%20%7C%20Idaho%27s%20Premier%20Credit%20Union&idsite=TV-7281635418-1&rec=1&r=492880&h=20&m=21&s=12&url=https%3A%2F%2Fwww.iccu.com%2F&_id=34dfe02730398471&_idts=1669494073&_idvc=0&_idn=1&_viewts=&cookie=1&res=1280x1024&gt_ms=1841
IP
18.217.91.236:0
ASN
#16509 AMAZON-02

File type
GIF image data, version 89a, 1 x 1\012- data
Size
42 B (42 bytes)
Hash
00657dd79637a8daf5e6196ca17f1887
3e064855d1fe7c6eac52981a646ec5840ba7efb5
f0c71e3da5b3fcab3c66af1cf0cdbf262c97b9330b7b37116f1ae2ab18bdc660

HTTP Headers

GET /tv2track.php?action_name=Idaho%20Central%20Credit%20Union%20%7C%20Idaho%27s%20Premier%20Credit%20Union&idsite=TV-7281635418-1&rec=1&r=492880&h=20&m=21&s=12&url=https%3A%2F%2Fwww.iccu.com%2F&_id=34dfe02730398471&_idts=1669494073&_idvc=0&_idn=1&_viewts=&cookie=1&res=1280x1024&gt_ms=1841 HTTP/1.1
Host: collector-21348.us.tvsquared.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.iccu.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Content-Type: image/gif
Date: Sat, 26 Nov 2022 20:21:12 GMT
P3p: CP='OTI DSP COR NID STP UNI OTPa OUR'
Request-Id: 2c6231f1-cd3c-463f-a18f-afb4965cca99
Server: nginx
Content-Length: 42
Connection: keep-alive

www.iccu.com/wp-content/uploads/2018/04/shutterstock_179752877_reduced_green.jpg

54.214.206.138

200 OK

212 kB

URL HTTP/2
www.iccu.com/wp-content/uploads/2018/04/shutterstock_179752877_reduced_green.jpg
IP
54.214.206.138:0
ASN
#16509 AMAZON-02

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1920x1280, components 3\012- data
Size
212 kB (212509 bytes)
Hash
c9678c7f5a377c529e60cd2cec89c609
c972114ff40568ae1a522121d2017430a37482ff
4e0ce6477fa0592b330374eb88b772a98db2639a920785166b8bb87696cf32cc

HTTP Headers

GET /wp-content/uploads/2018/04/shutterstock_179752877_reduced_green.jpg HTTP/1.1
Host: www.iccu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.iccu.com/template/library/css/redolive.css?v=2022.4.12.1246
Cookie: PHPSESSID=uspvt7aqmrmmfltm09b8p30hoa; _gcl_au=1.1.268949001.1669494071; _ga_37JPF553KD=GS1.1.1669494071.1.0.1669494071.60.0.0; _ga=GA1.1.1292268032.1669494071
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Sat, 26 Nov 2022 20:21:12 GMT
content-type: image/jpeg
content-length: 212509
server: Pagely-ARES/1.10.15
x-gateway-request-id: c4a7d4f93dc9b5085b2d88a672f26196
last-modified: Thu, 30 Sep 2021 14:54:39 GMT
etag: "33e1d-5cd37a0412389"
expires: Fri, 23 Dec 2022 18:16:34 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-gateway-cache-key: 1669227391.172||https|www.iccu.com|||/wp-content/uploads/2018/04/shutterstock_179752877_reduced_green.jpg
x-gateway-cache-status: HIT
x-gateway-skip-cache: 0
accept-ranges: bytes
X-Firefox-Spdy: h2

idahoccu.us-1.evergage.com/pr?.top=438&action=Homepage&.tt=422&.ttdns=4&.dt=4191&.btdns=13&.bv=16&_ak=idahoccu&_ds=idahoccu&.scv=56&channel=Web&_r=375712&.anonId=51da9708bd543888&_anon=true

54.163.247.234

204 No Content

0 B

URL HTTP/2
idahoccu.us-1.evergage.com/pr?.top=438&action=Homepage&.tt=422&.ttdns=4&.dt=4191&.btdns=13&.bv=16&_ak=idahoccu&_ds=idahoccu&.scv=56&channel=Web&_r=375712&.anonId=51da9708bd543888&_anon=true
IP
54.163.247.234:0
ASN
#14618 AMAZON-AES

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /pr?.top=438&action=Homepage&.tt=422&.ttdns=4&.dt=4191&.btdns=13&.bv=16&_ak=idahoccu&_ds=idahoccu&.scv=56&channel=Web&_r=375712&.anonId=51da9708bd543888&_anon=true HTTP/1.1
Host: idahoccu.us-1.evergage.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Content-Length: 0
Origin: https://www.iccu.com
Connection: keep-alive
Referer: https://www.iccu.com/
Cookie: AWSALBCORS=bndsrOQEi4VNBP4ayuxrLAU7UL0KR0DT+e3HGIMBh/o6kCH9/WGSbV+UlBVOu0Es3OA1DD4/Zk9Pwo/QvfTcD2pqYQNulgQrCawBtTj8eQ3QZ7DESFyyWZtasxJA
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 204 No Content
date: Sat, 26 Nov 2022 20:21:13 GMT
set-cookie: AWSALB=au0ECQRJaDA6iZu35HcVCernKzsDg3dx8b9HoRxu2EDFdnUz2j/ph54LA2JdYkYRZeGpfVLxymWOT2Um0Ee5BoaLyKGIg8kwdB/LZu4Zx7f1KCjpJXb/OD/VLpw6; Expires=Sat, 03 Dec 2022 20:21:13 GMT; Path=/
AWSALBCORS=au0ECQRJaDA6iZu35HcVCernKzsDg3dx8b9HoRxu2EDFdnUz2j/ph54LA2JdYkYRZeGpfVLxymWOT2Um0Ee5BoaLyKGIg8kwdB/LZu4Zx7f1KCjpJXb/OD/VLpw6; Expires=Sat, 03 Dec 2022 20:21:13 GMT; Path=/; SameSite=None; Secure
access-control-allow-origin: https://www.iccu.com
timing-allow-origin: *
x-content-type-options: nosniff
X-Firefox-Spdy: h2

cdn.iccu.com/inc/uploads/2022/10/medicare-AEP-slider.jpg

143.204.55.19

200 OK

152 kB

URL HTTP/2
cdn.iccu.com/inc/uploads/2022/10/medicare-AEP-slider.jpg
IP
143.204.55.19:0
ASN
#16509 AMAZON-02

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1920x800, components 3\012- data
Size
152 kB (152053 bytes)
Hash
abb51f9d5700eb19ee344716d0778f19
3299a57a55b08296921c8de478f9c4fbbfd17a9d
cf9aa4915b2c68f7f616fc4fbaf7ff698dffac44952fec27261c4c982760ac1a

HTTP Headers

GET /inc/uploads/2022/10/medicare-AEP-slider.jpg HTTP/1.1
Host: cdn.iccu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.iccu.com/
Connection: keep-alive
Cookie: _gcl_au=1.1.268949001.1669494071; _ga_37JPF553KD=GS1.1.1669494071.1.0.1669494071.60.0.0; _ga=GA1.1.1292268032.1669494071
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
content-type: image/jpeg
content-length: 152053
date: Sat, 26 Nov 2022 20:21:12 GMT
server: Pagely-ARES/1.10.15
x-gateway-request-id: ffdebf1c54512fa2f046f30886a2484f
last-modified: Mon, 17 Oct 2022 16:23:48 GMT
etag: "251f5-5eb3d667e662b"
expires: Mon, 26 Dec 2022 11:29:32 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-gateway-cache-key: 1669227391.167||https|www.iccu.com|||/inc/uploads/2022/10/medicare-AEP-slider.jpg
x-gateway-cache-status: HIT
x-gateway-skip-cache: 0
accept-ranges: bytes
x-cache: Miss from cloudfront
via: 1.1 a9120cc3ff449047c990e82a4d5566ba.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: CCs3kPt2MBt0oJ2shFxPIADHtVYsMvqIYQrR1adDcSbA8OX56LqK2w==
X-Firefox-Spdy: h2

cdn.iccu.com/inc/uploads/2022/10/north-spokane-slider.webp

143.204.55.19

200 OK

300 kB

URL HTTP/2
cdn.iccu.com/inc/uploads/2022/10/north-spokane-slider.webp
IP
143.204.55.19:0
ASN
#16509 AMAZON-02

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 1920x1080, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size
300 kB (299820 bytes)
Hash
fb2184ac53d92d6ce52672916086cbcd
20bcbcc4837deaf63b6ed4c5fe0cb163fd813852
593f5b2717cf856e467c04678382a787707d3be5d230a3ae09780bb045c77a10

HTTP Headers

GET /inc/uploads/2022/10/north-spokane-slider.webp HTTP/1.1
Host: cdn.iccu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.iccu.com/
Connection: keep-alive
Cookie: _gcl_au=1.1.268949001.1669494071; _ga_37JPF553KD=GS1.1.1669494071.1.0.1669494071.60.0.0; _ga=GA1.1.1292268032.1669494071
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
content-length: 299820
date: Sat, 26 Nov 2022 20:21:12 GMT
server: Pagely-ARES/1.10.15
x-gateway-request-id: 250b199c115b2264763f81c67f50a2ab
last-modified: Tue, 25 Oct 2022 21:37:41 GMT
etag: "4932c-5ebe2b7c0356a"
expires: Mon, 26 Dec 2022 11:25:45 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-gateway-cache-key: 1669227391.172||https|www.iccu.com|||/inc/uploads/2022/10/north-spokane-slider.webp
x-gateway-cache-status: HIT
x-gateway-skip-cache: 0
accept-ranges: bytes
x-cache: Miss from cloudfront
via: 1.1 a9120cc3ff449047c990e82a4d5566ba.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 7cZY7kljduoGoRFmlobWKRhhSwAq1RQMtFYd1RSt6NyY-ImeHtMH4Q==
X-Firefox-Spdy: h2

www.iccu.com/template/library/fonts/PN-Semibold.woff

54.214.206.138

200 OK

57 kB

URL HTTP/2
www.iccu.com/template/library/fonts/PN-Semibold.woff
IP
54.214.206.138:0
ASN
#16509 AMAZON-02

File type
Web Open Font Format, CFF, length 57272, version 2.3\012- data
Size
57 kB (57272 bytes)
Hash
d9b5bcfc35fdb6d396802d77cfd653ab
69aa33f4cf2d06eeb4049ca9c202f835071f2a24
72e4e99a5820302ea169be3ee1d39f75b288258baedf6311cdccc504ff11a079

HTTP Headers

GET /template/library/fonts/PN-Semibold.woff HTTP/1.1
Host: www.iccu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://www.iccu.com/template/library/css/redolive.css?v=2022.4.12.1246
Cookie: PHPSESSID=uspvt7aqmrmmfltm09b8p30hoa; _gcl_au=1.1.268949001.1669494071; _ga_37JPF553KD=GS1.1.1669494071.1.0.1669494071.60.0.0; _ga=GA1.1.1292268032.1669494071
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Sat, 26 Nov 2022 20:21:12 GMT
content-type: font/woff
content-length: 57272
server: Pagely-ARES/1.10.15
x-gateway-request-id: 30f80ab18ae229738bed9bad3f0e1abe
last-modified: Thu, 30 Sep 2021 14:54:37 GMT
etag: "dfb8-5cd37a02a4fc1"
expires: Fri, 23 Dec 2022 18:16:34 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD, OPTIONS
x-gateway-cache-key: 1669227391.172||https|www.iccu.com|||/template/library/fonts/PN-Semibold.woff
x-gateway-cache-status: HIT
x-gateway-skip-cache: 0
accept-ranges: bytes
X-Firefox-Spdy: h2

www.iccu.com/template/library/css/fonts/icomoon.woff2?nwfys3

54.214.206.138

200 OK

15 kB

URL HTTP/2
www.iccu.com/template/library/css/fonts/icomoon.woff2?nwfys3
IP
54.214.206.138:0
ASN
#16509 AMAZON-02

File type
Web Open Font Format (Version 2), TrueType, length 15184, version 1.0\012- data
Size
15 kB (15184 bytes)
Hash
375dde6977aa255d1b954f3dda483adc
d750a2a2a78842d60acf520faf8aecfba8a93b3f
b599ea6c6fb82de03e4eee221c06618f8b50c65c28787eba2c8045d7873562f1

HTTP Headers

GET /template/library/css/fonts/icomoon.woff2?nwfys3 HTTP/1.1
Host: www.iccu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://www.iccu.com/template/library/css/icomoon.css
Cookie: PHPSESSID=uspvt7aqmrmmfltm09b8p30hoa; _gcl_au=1.1.268949001.1669494071; _ga_37JPF553KD=GS1.1.1669494071.1.0.1669494071.60.0.0; _ga=GA1.1.1292268032.1669494071
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Sat, 26 Nov 2022 20:21:12 GMT
content-type: font/woff2
content-length: 15184
server: Pagely-ARES/1.10.15
x-gateway-request-id: 6d35dd6c3db471e64beafb6863f77148
last-modified: Thu, 30 Sep 2021 14:54:37 GMT
etag: "3b50-5cd37a02a01a1"
expires: Fri, 23 Dec 2022 18:16:34 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD, OPTIONS
x-gateway-cache-key: 1669227391.172||https|www.iccu.com|||/template/library/css/fonts/icomoon.woff2?nwfys3
x-gateway-cache-status: HIT
x-gateway-skip-cache: 0
accept-ranges: bytes
X-Firefox-Spdy: h2

cdn.iccu.com/inc/uploads/2022/11/nov-dec-new-member-2022-slider.jpg

143.204.55.19

200 OK

272 kB

URL HTTP/2
cdn.iccu.com/inc/uploads/2022/11/nov-dec-new-member-2022-slider.jpg
IP
143.204.55.19:0
ASN
#16509 AMAZON-02

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1920x800, components 3\012- data
Size
272 kB (272090 bytes)
Hash
5921951f4f56f3ae73a9551ee0fddbb9
86db9e29ca111a03ad9f15ec91b6f913af4d57f9
55c074df6cd717efa5b6eff8d0b9fa65f70808bc7c0dad5a8ccb5b2d874311fd

HTTP Headers

GET /inc/uploads/2022/11/nov-dec-new-member-2022-slider.jpg HTTP/1.1
Host: cdn.iccu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.iccu.com/
Connection: keep-alive
Cookie: _gcl_au=1.1.268949001.1669494071; _ga_37JPF553KD=GS1.1.1669494071.1.0.1669494071.60.0.0; _ga=GA1.1.1292268032.1669494071
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
content-type: image/jpeg
content-length: 272090
date: Sat, 26 Nov 2022 20:21:12 GMT
server: Pagely-ARES/1.10.15
x-gateway-request-id: 990a77c3658452afd631b202a5f83852
last-modified: Tue, 01 Nov 2022 16:11:30 GMT
etag: "426da-5ec6afa1fda74"
expires: Mon, 26 Dec 2022 11:20:57 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-gateway-cache-key: 1669227391.167||https|www.iccu.com|||/inc/uploads/2022/11/nov-dec-new-member-2022-slider.jpg
x-gateway-cache-status: HIT
x-gateway-skip-cache: 0
accept-ranges: bytes
x-cache: Miss from cloudfront
via: 1.1 a9120cc3ff449047c990e82a4d5566ba.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: ingHYK9lKe4BYdrp7_8EwvJnlNa31ML1cztEsiw1fpAJ8d5uNIcYiA==
X-Firefox-Spdy: h2

www.iccu.com/template/library/fonts/PN-Light.woff

54.214.206.138

200 OK

57 kB

URL HTTP/2
www.iccu.com/template/library/fonts/PN-Light.woff
IP
54.214.206.138:0
ASN
#16509 AMAZON-02

File type
Web Open Font Format, CFF, length 57340, version 2.3\012- data
Size
57 kB (57340 bytes)
Hash
1eb197fea0cd5a6b704c69860aa15c1c
474fe8af6a90f241442804b25a7651c90d102381
4efa8c23eca941196761a29a78e304110e90c893dd2b48ec1a219e7a28c99553

HTTP Headers

GET /template/library/fonts/PN-Light.woff HTTP/1.1
Host: www.iccu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://www.iccu.com/template/library/css/redolive.css?v=2022.4.12.1246
Cookie: PHPSESSID=uspvt7aqmrmmfltm09b8p30hoa; _gcl_au=1.1.268949001.1669494071; _ga_37JPF553KD=GS1.1.1669494071.1.0.1669494071.60.0.0; _ga=GA1.1.1292268032.1669494071
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Sat, 26 Nov 2022 20:21:12 GMT
content-type: font/woff
content-length: 57340
server: Pagely-ARES/1.10.15
x-gateway-request-id: 7561bd109abdf1b70ca20c87f2fac329
last-modified: Thu, 30 Sep 2021 14:54:37 GMT
etag: "dffc-5cd37a02a4021"
expires: Fri, 23 Dec 2022 18:16:34 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD, OPTIONS
x-gateway-cache-key: 1669227391.172||https|www.iccu.com|||/template/library/fonts/PN-Light.woff
x-gateway-cache-status: HIT
x-gateway-skip-cache: 0
accept-ranges: bytes
X-Firefox-Spdy: h2

www.iccu.com/template/library/fonts/PN-Thin.woff

54.214.206.138

200 OK

56 kB

URL HTTP/2
www.iccu.com/template/library/fonts/PN-Thin.woff
IP
54.214.206.138:0
ASN
#16509 AMAZON-02

File type
Web Open Font Format, CFF, length 55576, version 2.3\012- data
Size
56 kB (55576 bytes)
Hash
3a9176172ca0f43f450f1a7c0cebd032
d7f768234141ac4ac661b39b08cdcd528e1fcfd5
851bfc7968130cd0610a19365a0729fe91a97b3a8b4cc924368d361d0df51a10

HTTP Headers

GET /template/library/fonts/PN-Thin.woff HTTP/1.1
Host: www.iccu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://www.iccu.com/template/library/css/redolive.css?v=2022.4.12.1246
Cookie: PHPSESSID=uspvt7aqmrmmfltm09b8p30hoa; _gcl_au=1.1.268949001.1669494071; _ga_37JPF553KD=GS1.1.1669494071.1.0.1669494071.60.0.0; _ga=GA1.1.1292268032.1669494071
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Sat, 26 Nov 2022 20:21:12 GMT
content-type: font/woff
content-length: 55576
server: Pagely-ARES/1.10.15
x-gateway-request-id: 09ef898971b0ea2bd499aaea3197346f
last-modified: Thu, 30 Sep 2021 14:54:37 GMT
etag: "d918-5cd37a02a6f01"
expires: Fri, 23 Dec 2022 18:16:36 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD, OPTIONS
x-gateway-cache-key: 1669227391.172||https|www.iccu.com|||/template/library/fonts/PN-Thin.woff
x-gateway-cache-status: HIT
x-gateway-skip-cache: 0
accept-ranges: bytes
X-Firefox-Spdy: h2

www.iccu.com/template/library/images/bx_loader.gif

54.214.206.138

200 OK

5.6 kB

URL HTTP/2
www.iccu.com/template/library/images/bx_loader.gif
IP
54.214.206.138:0
ASN
#16509 AMAZON-02

File type
GIF image data, version 89a, 32 x 32\012- data
Size
5.6 kB (5615 bytes)
Hash
77b8e992a3b89d8f8c6f3018b39152b8
fbf66db9e5e75afa60632543da6145f0781dd872
1781afbfbb64bbf86ab6ed3d0d8fc9755226c8bd76376df95424dc5538d4c4c7

HTTP Headers

GET /template/library/images/bx_loader.gif HTTP/1.1
Host: www.iccu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.iccu.com/template/library/css/jquery.bxslider.css
Cookie: PHPSESSID=uspvt7aqmrmmfltm09b8p30hoa; _gcl_au=1.1.268949001.1669494071; _ga_37JPF553KD=GS1.1.1669494071.1.0.1669494071.60.0.0; _ga=GA1.1.1292268032.1669494071
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Sat, 26 Nov 2022 20:21:12 GMT
content-type: image/gif
content-length: 5615
server: Pagely-ARES/1.10.15
x-gateway-request-id: 734767d475874db1b3e8fa00b0c0d449
last-modified: Thu, 30 Sep 2021 14:54:37 GMT
etag: "15ef-5cd37a02a8e41"
expires: Fri, 23 Dec 2022 18:16:36 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-gateway-cache-key: 1669227391.172||https|www.iccu.com|||/template/library/images/bx_loader.gif
x-gateway-cache-status: HIT
x-gateway-skip-cache: 0
accept-ranges: bytes
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

994 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
994 B (994 bytes)
Hash
7597adb1dae4c9bed3e56ba3b9be8517
e3ccc0e744ca30f74739c9b7b503d51d14a6073d
5f822f6aba2e5628dd3bafe1cc1b1e148da59297e9565bc60ecbdda49d4f9aee

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5319
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 20:21:13 GMT
Last-Modified: Sat, 26 Nov 2022 18:52:34 GMT
Server: ECS (ska/F707)
X-Cache: HIT
Content-Length: 471

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
f3424fd0abb5ab18be62cd209cb3d3dc
dbb2a21b12e92c8837c4346b6d052454bb6dffd6
e69548655278cf6a48fce549928656eb5a91d787e7b1afc12959e2bffb58990b

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 20:21:13 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

connect.facebook.net/en_US/fbevents.js

31.13.72.12

200 OK

27 kB

URL HTTP/2
connect.facebook.net/en_US/fbevents.js
IP
31.13.72.12:0
ASN
#32934 FACEBOOK

File type
ASCII text, with very long lines (64348)
Size
27 kB (27340 bytes)
Hash
44ecaa3c2a4929a40141edc4540aaf84
f29a573182333b2500d41bfc389d6c5232dfb348
6589fe14578dedd4df678a909afadd7e5bc7f57c7e3e24518a7f5faac7383396

HTTP Headers

GET /en_US/fbevents.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.iccu.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
content-type: application/x-javascript; charset=utf-8
content-security-policy: default-src facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com data: blob: 'self';script-src *.fbcdn.net *.facebook.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src data: blob: 'unsafe-inline' facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com;connect-src *.fbcdn.net *.facebook.net wss://*.fbcdn.net attachment.fbsbx.com blob: 'self';block-all-mixed-content;upgrade-insecure-requests;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
pragma: public
cache-control: public, max-age=1200
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
x-fb-debug: jvPESWBwkklVsQZm21yVIKr1i9FjXDEo1C+wPiG/cnrj0YpoxKT2NeT3F9375ahPk3062hsP7kucyHiV5BzSnw==
content-length: 27340
x-fb-trip-id: 1904183273
date: Sat, 26 Nov 2022 20:21:13 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

bat.bing.com/bat.js

204.79.197.200

200 OK

11 kB

URL HTTP/2
bat.bing.com/bat.js
IP
204.79.197.200:0
ASN
#8068 MICROSOFT-CORP-MSN-AS-BLOCK

File type
Unicode text, UTF-8 text, with very long lines (39007), with no line terminators
Size
11 kB (11421 bytes)
Hash
22e2e3226eb5ada04929a2e43307eeda
04615fa88f80567974bdeb0f103ca5909746ebd7
41feebdfb0b03cd7fee2eb886adef6f3f1f85d3f14215e9a388d2a50e42efb9b

HTTP Headers

GET /bat.js HTTP/1.1
Host: bat.bing.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.iccu.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
cache-control: private,max-age=1800
content-length: 11421
content-type: application/javascript
content-encoding: gzip
last-modified: Wed, 09 Nov 2022 21:23:50 GMT
accept-ranges: bytes
etag: "077538f81f4d81:0"
vary: Accept-Encoding
set-cookie: MUID=1EB39386A59469871C2E81EEA46168A4; domain=.bing.com; expires=Thu, 21-Dec-2023 20:21:13 GMT; path=/; SameSite=None; Secure; Priority=High;
strict-transport-security: max-age=31536000; includeSubDomains; preload
access-control-allow-origin: *
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: DC4CA919CF764C26B51AE2CF888603D1 Ref B: OSL30EDGE0505 Ref C: 2022-11-26T20:21:13Z
date: Sat, 26 Nov 2022 20:21:12 GMT
X-Firefox-Spdy: h2

googleads.g.doubleclick.net/pagead/viewthroughconversion/922652299/?random=1669494072292&cv=11&fst=1669494072292&bg=ffffff&guid=ON&async=1&gtm=2wgb90&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fwww.iccu.com%2F&tiba=Idaho%20Central%20Credit%20Union%20%7C%20Idaho%27s%20Premier%20Credit%20Union&auid=268949001.1669494071&rfmt=3&fmt=4

142.250.74.2

200 OK

885 B

URL HTTP/2
googleads.g.doubleclick.net/pagead/viewthroughconversion/922652299/?random=1669494072292&cv=11&fst=1669494072292&bg=ffffff&guid=ON&async=1&gtm=2wgb90&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fwww.iccu.com%2F&tiba=Idaho%20Central%20Credit%20Union%20%7C%20Idaho%27s%20Premier%20Credit%20Union&auid=268949001.1669494071&rfmt=3&fmt=4
IP
142.250.74.2:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (1885), with no line terminators
Size
885 B (885 bytes)
Hash
4571f12dc9092cd7d3b7676612bce151
358c606f32a8168e529b7915371928572661311f
ab94ac933cc4ef8a8aa6bf59a13ec8be062f05ef9e0fce7e4c0e78d0b49561dc

HTTP Headers

GET /pagead/viewthroughconversion/922652299/?random=1669494072292&cv=11&fst=1669494072292&bg=ffffff&guid=ON&async=1&gtm=2wgb90&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fwww.iccu.com%2F&tiba=Idaho%20Central%20Credit%20Union%20%7C%20Idaho%27s%20Premier%20Credit%20Union&auid=268949001.1669494071&rfmt=3&fmt=4 HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.iccu.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sat, 26 Nov 2022 20:21:13 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 885
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Sat, 26-Nov-2022 20:36:13 GMT; path=/; domain=.doubleclick.net; Secure; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

www.google-analytics.com/gtm/optimize.js?id=GTM-NNR2J8L

142.250.74.174

200 OK

44 kB

URL HTTP/2
www.google-analytics.com/gtm/optimize.js?id=GTM-NNR2J8L
IP
142.250.74.174:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (1921)
Size
44 kB (43999 bytes)
Hash
5d65d8fbd340cd11618c0af9abe36c28
b6a3f75f114c47ae10f1dafe4d8589211ff37d95
0da6100f5c1d082c6daaf7c8d4456436ded53e19b8dd52ac1020fbe8c05a86d4

HTTP Headers

GET /gtm/optimize.js?id=GTM-NNR2J8L HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.iccu.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sat, 26 Nov 2022 20:21:13 GMT
expires: Sat, 26 Nov 2022 20:21:13 GMT
cache-control: private, max-age=900
last-modified: Sat, 26 Nov 2022 18:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 43999
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

www.google.no/ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-37JPF553KD&cid=1292268032.1669494071&gtm=2oeb90&aip=1&z=895716410

142.250.74.3

200 OK

42 B

URL HTTP/2
www.google.no/ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-37JPF553KD&cid=1292268032.1669494071&gtm=2oeb90&aip=1&z=895716410
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
GIF image data, version 89a, 1 x 1\012- data
Size
42 B (42 bytes)
Hash
d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629

HTTP Headers

GET /ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-37JPF553KD&cid=1292268032.1669494071&gtm=2oeb90&aip=1&z=895716410 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.iccu.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sat, 26 Nov 2022 20:21:13 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
619fa0039b94697fc8a5bd24f57e8aa2
53a366391a51d625029cc6d32fb4e8b6060990fd
dff604305831a0399aa44b2fac806e43512afa846569ba6e5685eca6495d9fa5

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 20:21:13 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
ae452333438465bef0a71a80768855a0
dae89646a66487e12b6dba40b7796c4b608506bd
dc15bc4a1e175a446f69fedc8475164a75477dd7a455b044f0ca85884f873917

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5319
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 20:21:13 GMT
Last-Modified: Sat, 26 Nov 2022 18:52:34 GMT
Server: ECS (ska/F707)
X-Cache: HIT
Content-Length: 471

maps.googleapis.com/maps/api/mapsjs/gen_204?csp_test=true

216.58.207.202

200 OK

23 B

URL HTTP/2
maps.googleapis.com/maps/api/mapsjs/gen_204?csp_test=true
IP
216.58.207.202:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text
Size
23 B (23 bytes)
Hash
e3981ca10169a319d5aa062bf43a5fa1
2c6ed584767b65688ce99b1ebe1a3b7448a67421
8b0b8749aba12de93f3cf5d86f9fac9d6de7cac400a17473718f182a34ebb7e9

HTTP Headers

GET /maps/api/mapsjs/gen_204?csp_test=true HTTP/1.1
Host: maps.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.iccu.com
Connection: keep-alive
Referer: https://www.iccu.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: application/json; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Sat, 26 Nov 2022 20:21:13 GMT
server: scaffolding on HTTPServer2
cache-control: private
content-length: 23
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://www.iccu.com
access-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

www.iccu.com/template/library/images/apple-icon-touch.png

54.214.206.138

200 OK

859 B

URL HTTP/2
www.iccu.com/template/library/images/apple-icon-touch.png
IP
54.214.206.138:0
ASN
#16509 AMAZON-02

File type
PNG image data, 129 x 129, 8-bit colormap, non-interlaced\012- data
Size
859 B (859 bytes)
Hash
2312274243580ec097982784e78fa4be
774e1cca659c43d7258a876c2c5ee5ad115209b1
03294dd31589f8331a9c6249eba2228e0e049c335a7823466438eaa84e6acde0

HTTP Headers

GET /template/library/images/apple-icon-touch.png HTTP/1.1
Host: www.iccu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.iccu.com/
Connection: keep-alive
Cookie: PHPSESSID=uspvt7aqmrmmfltm09b8p30hoa; _gcl_au=1.1.268949001.1669494071; _ga_37JPF553KD=GS1.1.1669494071.1.0.1669494071.60.0.0; _ga=GA1.1.1292268032.1669494071; _schn=_zbonok; _scid=26e150fc-6fde-443e-a7e1-52dc18e0946a; _sfid_4bb8={%22anonymousId%22:%2251da9708bd543888%22%2C%22consents%22:[]}; _evga_2114={%22uuid%22:%2251da9708bd543888%22}; _tq_id.TV-7281635418-1.6370=34dfe02730398471.1669494073.0.1669494073..
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Sat, 26 Nov 2022 20:21:13 GMT
content-type: image/png
content-length: 859
server: Pagely-ARES/1.10.15
x-gateway-request-id: b2ef61936db93d2ecede86cabe0b5fcd
last-modified: Thu, 30 Sep 2021 14:54:37 GMT
etag: "35b-5cd37a02a7ea1"
expires: Mon, 26 Dec 2022 12:46:23 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-gateway-cache-key: 1669227391.172||https|www.iccu.com|||/template/library/images/apple-icon-touch.png
x-gateway-cache-status: HIT
x-gateway-skip-cache: 0
accept-ranges: bytes
X-Firefox-Spdy: h2

www.iccu.com/template/favicon.png

54.214.206.138

200 OK

4.6 kB

URL HTTP/2
www.iccu.com/template/favicon.png
IP
54.214.206.138:0
ASN
#16509 AMAZON-02

File type
PNG image data, 100 x 94, 8-bit/color RGBA, non-interlaced\012- data
Size
4.6 kB (4568 bytes)
Hash
02f5f86808d0fd3b59a9fcdb88e3ad02
2d849bd67e68f1f0d635bf074584c31d33c78ed8
16a37dc19eb0dcf637799a0c6f93165a0c239ab22073a817e6338cc4eea340ba

HTTP Headers

GET /template/favicon.png HTTP/1.1
Host: www.iccu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.iccu.com/
Connection: keep-alive
Cookie: PHPSESSID=uspvt7aqmrmmfltm09b8p30hoa; _gcl_au=1.1.268949001.1669494071; _ga_37JPF553KD=GS1.1.1669494071.1.0.1669494071.60.0.0; _ga=GA1.1.1292268032.1669494071; _schn=_zbonok; _scid=26e150fc-6fde-443e-a7e1-52dc18e0946a; _sfid_4bb8={%22anonymousId%22:%2251da9708bd543888%22%2C%22consents%22:[]}; _evga_2114={%22uuid%22:%2251da9708bd543888%22}; _tq_id.TV-7281635418-1.6370=34dfe02730398471.1669494073.0.1669494073..
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Sat, 26 Nov 2022 20:21:13 GMT
content-type: image/png
content-length: 4568
server: Pagely-ARES/1.10.15
x-gateway-request-id: 25eb6dbfce0712b741fb77c3ad840e8b
last-modified: Thu, 30 Sep 2021 14:54:37 GMT
etag: "11d8-5cd37a029f201"
expires: Fri, 23 Dec 2022 18:16:36 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-gateway-cache-key: 1669227391.172||https|www.iccu.com|||/template/favicon.png
x-gateway-cache-status: HIT
x-gateway-skip-cache: 0
accept-ranges: bytes
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
f3424fd0abb5ab18be62cd209cb3d3dc
dbb2a21b12e92c8837c4346b6d052454bb6dffd6
e69548655278cf6a48fce549928656eb5a91d787e7b1afc12959e2bffb58990b

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 20:21:13 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
619fa0039b94697fc8a5bd24f57e8aa2
53a366391a51d625029cc6d32fb4e8b6060990fd
dff604305831a0399aa44b2fac806e43512afa846569ba6e5685eca6495d9fa5

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 20:21:13 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.sca1b.amazontrust.com/

143.204.42.165

200 OK

471 B

URL HTTP/1.1
ocsp.sca1b.amazontrust.com/
IP
143.204.42.165:0
ASN
#16509 AMAZON-02

File type
data
Size
471 B (471 bytes)
Hash
50cab60ad9e3aa502f24401bd24ca0b6
2b84e0d4d5aa3763645a13f2d1eb628678526b3e
dbc55232afc54846879c9275a2ce3ff7ddaefbdc11f2d33f3593585d851f5242

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Sat, 26 Nov 2022 20:21:14 GMT
Last-Modified: Sat, 26 Nov 2022 18:37:27 GMT
Server: ECS (dcb/7F82)
X-Cache: Miss from cloudfront
Via: 1.1 dbfaae0db03f11cf713bbcbdb25be4a2.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: BoXxAZPh4rWVqFVbTLWndVKEFPwO6Rg3ocSIuuilIy_gcpLoEVlksA==
Age: 6227

bat.bing.com/action/0?ti=14005490&tm=gtm002&Ver=2&mid=ce80cffb-fc21-411d-814f-f388349777f8&sid=dfbf81d06dc711edb3d58d24bb89b46c&vid=dfbfa8906dc711eda7e1413a0af456bc&vids=1&msclkid=N&pi=0&lg=en-US&sw=1280&sh=1024&sc=24&tl=Idaho%20Central%20Credit%20Union%20%7C%20Idaho%27s%20Premier%20Credit%20Union&p=https%3A%2F%2Fwww.iccu.com%2F&r=&lt=4191&evt=pageLoad&sv=1&rn=373751

204.79.197.200

204 No Content

0 B

URL HTTP/2
bat.bing.com/action/0?ti=14005490&tm=gtm002&Ver=2&mid=ce80cffb-fc21-411d-814f-f388349777f8&sid=dfbf81d06dc711edb3d58d24bb89b46c&vid=dfbfa8906dc711eda7e1413a0af456bc&vids=1&msclkid=N&pi=0&lg=en-US&sw=1280&sh=1024&sc=24&tl=Idaho%20Central%20Credit%20Union%20%7C%20Idaho%27s%20Premier%20Credit%20Union&p=https%3A%2F%2Fwww.iccu.com%2F&r=&lt=4191&evt=pageLoad&sv=1&rn=373751
IP
204.79.197.200:0
ASN
#8068 MICROSOFT-CORP-MSN-AS-BLOCK

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /action/0?ti=14005490&tm=gtm002&Ver=2&mid=ce80cffb-fc21-411d-814f-f388349777f8&sid=dfbf81d06dc711edb3d58d24bb89b46c&vid=dfbfa8906dc711eda7e1413a0af456bc&vids=1&msclkid=N&pi=0&lg=en-US&sw=1280&sh=1024&sc=24&tl=Idaho%20Central%20Credit%20Union%20%7C%20Idaho%27s%20Premier%20Credit%20Union&p=https%3A%2F%2Fwww.iccu.com%2F&r=&lt=4191&evt=pageLoad&sv=1&rn=373751 HTTP/1.1
Host: bat.bing.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.iccu.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 204 No Content
cache-control: no-cache, must-revalidate
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
set-cookie: MUID=363BD984E8A1668E156ECBECE95467BA; domain=.bing.com; expires=Thu, 21-Dec-2023 20:21:14 GMT; path=/; SameSite=None; Secure; Priority=High;
strict-transport-security: max-age=31536000; includeSubDomains; preload
access-control-allow-origin: *
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 443059DCE99C478C8736130F079D42A0 Ref B: OSL30EDGE0505 Ref C: 2022-11-26T20:21:14Z
date: Sat, 26 Nov 2022 20:21:13 GMT
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
30f833b25d6e5af2229d9584c6f6cf97
ee79c3fa994d53c1d0687ca61353d63cce459e25
1bc091991c4663dbc86ae735e47ddc3e887a24661050ad9f24b8d458bfd11a6b

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 20:21:14 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.google.com/pagead/1p-user-list/922652299/?random=1669494072292&cv=11&fst=1669492800000&bg=ffffff&guid=ON&async=1&gtm=2wgb90&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fwww.iccu.com%2F&tiba=Idaho%20Central%20Credit%20Union%20%7C%20Idaho%27s%20Premier%20Credit%20Union&fmt=3&is_vtc=1&random=1250624897&rmt_tld=0&ipr=y

142.250.74.164

200 OK

42 B

URL HTTP/2
www.google.com/pagead/1p-user-list/922652299/?random=1669494072292&cv=11&fst=1669492800000&bg=ffffff&guid=ON&async=1&gtm=2wgb90&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fwww.iccu.com%2F&tiba=Idaho%20Central%20Credit%20Union%20%7C%20Idaho%27s%20Premier%20Credit%20Union&fmt=3&is_vtc=1&random=1250624897&rmt_tld=0&ipr=y
IP
142.250.74.164:0
ASN
#15169 GOOGLE

File type
GIF image data, version 89a, 1 x 1\012- data
Size
42 B (42 bytes)
Hash
d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629

HTTP Headers

GET /pagead/1p-user-list/922652299/?random=1669494072292&cv=11&fst=1669492800000&bg=ffffff&guid=ON&async=1&gtm=2wgb90&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fwww.iccu.com%2F&tiba=Idaho%20Central%20Credit%20Union%20%7C%20Idaho%27s%20Premier%20Credit%20Union&fmt=3&is_vtc=1&random=1250624897&rmt_tld=0&ipr=y HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.iccu.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sat, 26 Nov 2022 20:21:14 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

tags.srv.stackadapt.com/events.js

54.225.101.189

200 OK

5.4 kB

URL HTTP/1.1
tags.srv.stackadapt.com/events.js
IP
54.225.101.189:0
ASN
#14618 AMAZON-AES

File type
ASCII text, with very long lines (16677)
Size
5.4 kB (5389 bytes)
Hash
efe4553ba88afe2df3c583aa6ce63d3c
42f14629d6aa3c3a389dfdb4facdcf86c838f2d4
b9acc79684db370a67f5a4b8ec44c68f65a62b3b4b02c48fd7ad2f99799524c9

HTTP Headers

GET /events.js HTTP/1.1
Host: tags.srv.stackadapt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.iccu.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Access-Control-Allow-Origin: *
Cache-Control: max-age=5
Content-Encoding: gzip
Content-Type: text/javascript
Date: Sat, 26 Nov 2022 20:21:14 GMT
Set-Cookie: sa-user-id=s%3A0-a463c2bc-3eb4-45d3-6a0d-c4dcc1d706a8.LsbDT4j3FHlRQPW2I42j1AqfVQIjcruSKEjb%2FAU%2Bc5Y; Max-Age=31536000; Secure; SameSite=None
sa-user-id-v2=s%3ApGPCvD60RdNqDcTcwdcGqFtaKpo.wOHEgHoCv%2BJXrJ2kt09CvPvZRnpRIPb6%2BWKb0tzPAlc; Domain=srv.stackadapt.com; Max-Age=31536000; Secure; SameSite=None
Content-Length: 5389
Connection: keep-alive

bat.bing.com/p/action/14005490.js

204.79.197.200

204 No Content

0 B

URL HTTP/2
bat.bing.com/p/action/14005490.js
IP
204.79.197.200:0
ASN
#8068 MICROSOFT-CORP-MSN-AS-BLOCK

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /p/action/14005490.js HTTP/1.1
Host: bat.bing.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.iccu.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 204 No Content
cache-control: private,max-age=1800
set-cookie: MUID=3635736FF8126E7A26356107F9E76FBA; domain=.bing.com; expires=Thu, 21-Dec-2023 20:21:14 GMT; path=/; SameSite=None; Secure; Priority=High;
strict-transport-security: max-age=31536000; includeSubDomains; preload
access-control-allow-origin: *
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 763F5AB651C84BD68EDFBEE4B819612C Ref B: OSL30EDGE0505 Ref C: 2022-11-26T20:21:14Z
date: Sat, 26 Nov 2022 20:21:13 GMT
X-Firefox-Spdy: h2

www.clarity.ms/eus2/s/0.6.43/clarity.js

13.107.227.53

200 OK

55 kB

URL HTTP/2
www.clarity.ms/eus2/s/0.6.43/clarity.js
IP
13.107.227.53:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

File type
Unicode text, UTF-8 text, with very long lines (55029)
Size
55 kB (55116 bytes)
Hash
441723b72633b1ac9757ad7c63168005
806166ca9ebb5839dd90a5e5c9335e3e0b18c169
cc8a16ce849d72f106bd67187e4b60c20da3093375202bf0b53f23e8f40a8b11

HTTP Headers

GET /eus2/s/0.6.43/clarity.js HTTP/1.1
Host: www.clarity.ms
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.iccu.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
cache-control: public,max-age=86400
content-length: 55116
content-type: application/javascript;charset=utf-8
last-modified: Wed, 01 Jun 2022 12:22:22 GMT
accept-ranges: bytes
etag: "1d8fceb15c2864c"
request-context: appId=cid-v1:2f7711a9-b21e-4abe-a9d6-5b0ce5d18b64
x-cache: CONFIG_NOCACHE
x-azure-ref: 0OnWCYwAAAABgztZQcTKfQ6Ue9ZRh7b0aT1NMMjMxMDUwMjAzMDIzADZjZmJlZWUwLTUwMjctNDg0Yi04OTY3LTRhMjlhZjc3ZjFlMQ==
date: Sat, 26 Nov 2022 20:21:13 GMT
X-Firefox-Spdy: h2

tags.srv.stackadapt.com/sa.css

54.225.101.189

200 OK

27 B

URL HTTP/1.1
tags.srv.stackadapt.com/sa.css
IP
54.225.101.189:0
ASN
#14618 AMAZON-AES

File type
ASCII text
Size
27 B (27 bytes)
Hash
83f5ba33314db5f218488a5a51da1455
87a21689afa235c4c65437334085be4bf5cca170
3f100e5e6ff270dadb43b44878f0118a2389dee0d844acc102b5179d70a824dc

HTTP Headers

GET /sa.css HTTP/1.1
Host: tags.srv.stackadapt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.iccu.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Access-Control-Allow-Origin: *
Cache-Control: only-if-cached, no-transform, private, max-age=7776000
Content-Type: text/css
Date: Sat, 26 Nov 2022 20:21:14 GMT
Content-Length: 27
Connection: keep-alive

www.facebook.com/tr/?id=1599075523726654&ev=PageView&dl=https%3A%2F%2Fwww.iccu.com%2F&rl=&if=false&ts=1669494074471&sw=1280&sh=1024&v=2.9.89&r=stable&ec=0&o=28&fbp=fb.1.1669494074470.1542650365&it=1669494073804&coo=false&rqm=GET

31.13.72.36

200 OK

86 kB

URL HTTP/2
www.facebook.com/tr/?id=1599075523726654&ev=PageView&dl=https%3A%2F%2Fwww.iccu.com%2F&rl=&if=false&ts=1669494074471&sw=1280&sh=1024&v=2.9.89&r=stable&ec=0&o=28&fbp=fb.1.1669494074470.1542650365&it=1669494073804&coo=false&rqm=GET
IP
31.13.72.36:0
ASN
#32934 FACEBOOK

File type
gzip compressed data, from Unix\012- data
Size
86 kB (86102 bytes)
Hash
7bf710cd8dba79f07242ae351c3d6b42
71ce343d8dd01df8acc9bb34b1512f79e6f45df8
5d5a2c7554984936283240c81bcd23eeaa218b32d5fa42236f068d1ac6fd53c0

HTTP Headers

GET /tr/?id=1599075523726654&ev=PageView&dl=https%3A%2F%2Fwww.iccu.com%2F&rl=&if=false&ts=1669494074471&sw=1280&sh=1024&v=2.9.89&r=stable&ec=0&o=28&fbp=fb.1.1669494074470.1542650365&it=1669494073804&coo=false&rqm=GET HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.iccu.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/plain
access-control-allow-origin: 
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400
date: Sat, 26 Nov 2022 20:21:14 GMT
X-Firefox-Spdy: h2

www.facebook.com/tr/?id=398312224211246&ev=PageView&dl=https%3A%2F%2Fwww.iccu.com%2F&rl=&if=false&ts=1669494074473&sw=1280&sh=1024&v=2.9.89&r=stable&ec=0&o=30&fbp=fb.1.1669494074470.1542650365&it=1669494073804&coo=false&rqm=GET

31.13.72.36

200 OK

0 B

URL HTTP/2
www.facebook.com/tr/?id=398312224211246&ev=PageView&dl=https%3A%2F%2Fwww.iccu.com%2F&rl=&if=false&ts=1669494074473&sw=1280&sh=1024&v=2.9.89&r=stable&ec=0&o=30&fbp=fb.1.1669494074470.1542650365&it=1669494073804&coo=false&rqm=GET
IP
31.13.72.36:0
ASN
#32934 FACEBOOK

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /tr/?id=398312224211246&ev=PageView&dl=https%3A%2F%2Fwww.iccu.com%2F&rl=&if=false&ts=1669494074473&sw=1280&sh=1024&v=2.9.89&r=stable&ec=0&o=30&fbp=fb.1.1669494074470.1542650365&it=1669494073804&coo=false&rqm=GET HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.iccu.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/plain
access-control-allow-origin: 
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400
date: Sat, 26 Nov 2022 20:21:14 GMT
X-Firefox-Spdy: h2

tags.srv.stackadapt.com/sa.jpeg

54.225.101.189

200 OK

651 B

URL HTTP/1.1
tags.srv.stackadapt.com/sa.jpeg
IP
54.225.101.189:0
ASN
#14618 AMAZON-AES

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 1x1, components 3\012- data
Size
651 B (651 bytes)
Hash
6f0cf278e4ad75006522a793d03d574d
a2cb17c5fce7d5304db3954be74f96ce187d9f4e
76a9fa05d88d024d7c31b986ee5b28958f2d0b15df0e9e915948fd99e39f02f5

HTTP Headers

GET /sa.jpeg HTTP/1.1
Host: tags.srv.stackadapt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.iccu.com
Connection: keep-alive
Referer: https://www.iccu.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Access-Control-Allow-Origin: *
Cache-Control: only-if-cached, no-transform, private, max-age=7776000
Content-Type: image/jpeg
Date: Sat, 26 Nov 2022 20:21:14 GMT
Content-Length: 651
Connection: keep-alive

tags.srv.stackadapt.com/saq_pxl?uid=SkL_wkqmNrMxibbUXomuNA&is_js=true&landing_url=https%3A%2F%2Fwww.iccu.com%2F&t=Idaho%20Central%20Credit%20Union%20%7C%20Idaho%27s%20Premier%20Credit%20Union&tip=kwllOsv8o0U7jVY1yYAic38U5Ruj9jaxmBEL0HN3Q0Q&host=https://www.iccu.com&sa-user-id-v2=s%253ApGPCvD60RdNqDcTcwdcGqFtaKpo.wOHEgHoCv%252BJXrJ2kt09CvPvZRnpRIPb6%252BWKb0tzPAlc&sa-user-id=s%253A0-a463c2bc-3eb4-45d3-6a0d-c4dcc1d706a8.LsbDT4j3FHlRQPW2I42j1AqfVQIjcruSKEjb%252FAU%252Bc5Y

54.225.101.189

200 OK

116 B

URL HTTP/1.1
tags.srv.stackadapt.com/saq_pxl?uid=SkL_wkqmNrMxibbUXomuNA&is_js=true&landing_url=https%3A%2F%2Fwww.iccu.com%2F&t=Idaho%20Central%20Credit%20Union%20%7C%20Idaho%27s%20Premier%20Credit%20Union&tip=kwllOsv8o0U7jVY1yYAic38U5Ruj9jaxmBEL0HN3Q0Q&host=https://www.iccu.com&sa-user-id-v2=s%253ApGPCvD60RdNqDcTcwdcGqFtaKpo.wOHEgHoCv%252BJXrJ2kt09CvPvZRnpRIPb6%252BWKb0tzPAlc&sa-user-id=s%253A0-a463c2bc-3eb4-45d3-6a0d-c4dcc1d706a8.LsbDT4j3FHlRQPW2I42j1AqfVQIjcruSKEjb%252FAU%252Bc5Y
IP
54.225.101.189:0
ASN
#14618 AMAZON-AES

File type
JSON data\012- , ASCII text, with no line terminators
Size
116 B (116 bytes)
Hash
03e193f03f71be34743e8e1838deaede
0f310a13c8ca8b5990e23692651c36fed43c860f
d2670c49e889736cf1400cfa758194e1a3fe5d6e81dba3536baae1f7aab75013

HTTP Headers

GET /saq_pxl?uid=SkL_wkqmNrMxibbUXomuNA&is_js=true&landing_url=https%3A%2F%2Fwww.iccu.com%2F&t=Idaho%20Central%20Credit%20Union%20%7C%20Idaho%27s%20Premier%20Credit%20Union&tip=kwllOsv8o0U7jVY1yYAic38U5Ruj9jaxmBEL0HN3Q0Q&host=https://www.iccu.com&sa-user-id-v2=s%253ApGPCvD60RdNqDcTcwdcGqFtaKpo.wOHEgHoCv%252BJXrJ2kt09CvPvZRnpRIPb6%252BWKb0tzPAlc&sa-user-id=s%253A0-a463c2bc-3eb4-45d3-6a0d-c4dcc1d706a8.LsbDT4j3FHlRQPW2I42j1AqfVQIjcruSKEjb%252FAU%252Bc5Y HTTP/1.1
Host: tags.srv.stackadapt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.iccu.com
Connection: keep-alive
Referer: https://www.iccu.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Access-Control-Allow-Credentials: true
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: GET
Access-Control-Allow-Origin: https://www.iccu.com
Content-Type: text/plain; charset=utf-8
Date: Sat, 26 Nov 2022 20:21:14 GMT
Content-Length: 116
Connection: keep-alive

b.clarity.ms/collect

20.75.32.255

204 No Content

0 B

URL HTTP/2
b.clarity.ms/collect
IP
20.75.32.255:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /collect HTTP/1.1
Host: b.clarity.ms
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 712
Origin: https://www.iccu.com
Connection: keep-alive
Referer: https://www.iccu.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 204 No Content
vary: Origin
server: Microsoft-IIS/10.0
request-context: appId=cid-v1:2f7711a9-b21e-4abe-a9d6-5b0ce5d18b64
access-control-allow-origin: https://www.iccu.com
access-control-allow-credentials: true
date: Sat, 26 Nov 2022 20:21:13 GMT
X-Firefox-Spdy: h2

c.clarity.ms/c.gif

20.234.93.27

302 Found

0 B

URL HTTP/2
c.clarity.ms/c.gif
IP
20.234.93.27:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /c.gif HTTP/1.1
Host: c.clarity.ms
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.iccu.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 302 Found
cache-control: private, no-cache, proxy-revalidate, no-store
pragma: no-cache
location: https://c.bing.com/c.gif?CtsSyncId=6D9ECC3090C846119530C00B6DD7C8C3&RedC=c.clarity.ms&MXFR=3066CA21729668E021EED84976966616
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
p3p: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo"
set-cookie: SM=T; domain=c.clarity.ms; path=/; SameSite=None; Secure;
MUID=3066CA21729668E021EED84976966616; domain=.clarity.ms; expires=Thu, 21-Dec-2023 20:21:15 GMT; path=/; SameSite=None; Secure; Priority=High;
date: Sat, 26 Nov 2022 20:21:15 GMT
content-length: 0
X-Firefox-Spdy: h2

c.bing.com/c.gif?CtsSyncId=6D9ECC3090C846119530C00B6DD7C8C3&RedC=c.clarity.ms&MXFR=3066CA21729668E021EED84976966616

204.79.197.200

302 Found

0 B

URL HTTP/2
c.bing.com/c.gif?CtsSyncId=6D9ECC3090C846119530C00B6DD7C8C3&RedC=c.clarity.ms&MXFR=3066CA21729668E021EED84976966616
IP
204.79.197.200:0
ASN
#8068 MICROSOFT-CORP-MSN-AS-BLOCK

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /c.gif?CtsSyncId=6D9ECC3090C846119530C00B6DD7C8C3&RedC=c.clarity.ms&MXFR=3066CA21729668E021EED84976966616 HTTP/1.1
Host: c.bing.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.iccu.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 302 Found
cache-control: private, no-cache, proxy-revalidate, no-store
pragma: no-cache
location: https://c.clarity.ms/c.gif?CtsSyncId=6D9ECC3090C846119530C00B6DD7C8C3&MUID=2EB6A3EC75F86A1B2610B184740D6B9F
p3p: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo"
set-cookie: SRM_B=2EB6A3EC75F86A1B2610B184740D6B9F; domain=c.bing.com; expires=Thu, 21-Dec-2023 20:21:15 GMT; path=/; SameSite=None; Secure;
x-powered-by: ASP.NET
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: D365DA6616C74458A0F484FDAED074A9 Ref B: OSL30EDGE0505 Ref C: 2022-11-26T20:21:15Z
date: Sat, 26 Nov 2022 20:21:14 GMT
content-length: 0
X-Firefox-Spdy: h2

c.clarity.ms/c.gif?CtsSyncId=6D9ECC3090C846119530C00B6DD7C8C3&MUID=2EB6A3EC75F86A1B2610B184740D6B9F

20.234.93.27

200 OK

42 B

URL HTTP/2
c.clarity.ms/c.gif?CtsSyncId=6D9ECC3090C846119530C00B6DD7C8C3&MUID=2EB6A3EC75F86A1B2610B184740D6B9F
IP
20.234.93.27:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

File type
GIF image data, version 89a, 1 x 1\012- data
Size
42 B (42 bytes)
Hash
32023bb33cfb2a1990a4ef2d85b6ac16
23dcc6d4b5bfe00357fd0248bb5955b8e36bb8f1
99c2917ee5b2a01459a923bdd1c676f15ee73b62b87f696e6735312d26f51e12

HTTP Headers

GET /c.gif?CtsSyncId=6D9ECC3090C846119530C00B6DD7C8C3&MUID=2EB6A3EC75F86A1B2610B184740D6B9F HTTP/1.1
Host: c.clarity.ms
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.iccu.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
cache-control: private, no-cache, proxy-revalidate, no-store
pragma: no-cache
content-type: image/gif
last-modified: Thu, 13 Oct 2022 20:07:05 GMT
accept-ranges: bytes
etag: "40db785d3fdfd81:0"
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
p3p: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo"
set-cookie: ANONCHK=0; domain=c.clarity.ms; expires=Sat, 26-Nov-2022 20:31:15 GMT; path=/; SameSite=None; Secure;
date: Sat, 26 Nov 2022 20:21:15 GMT
content-length: 42
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
0abedebc773c9a0d4e4a11d5ff3d37e0
a6ab2e251d0fa488aa2fcea3b378c749d48b85a1
69c68690f9728417b7e2e2c159932346ca85ccb4cf7fde2161d900f259c57b64

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1222
Cache-Control: max-age=105472
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 20:21:15 GMT
Etag: "63816975-1d7"
Expires: Mon, 28 Nov 2022 01:39:07 GMT
Last-Modified: Sat, 26 Nov 2022 01:18:45 GMT
Server: ECS (ska/F707)
X-Cache: HIT
Content-Length: 471

vmss.boldchat.com/aid/885055130827083336/bc.vms4/vms.js

52.24.130.127

200 OK

18 kB

URL HTTP/1.1
vmss.boldchat.com/aid/885055130827083336/bc.vms4/vms.js
IP
52.24.130.127:0
ASN
#16509 AMAZON-02

File type
ASCII text, with very long lines (53979), with no line terminators
Size
18 kB (18147 bytes)
Hash
4113927a177d567c16ad555f70da7004
05998965d6c354e360def5fde9ed26df3158a343
5dea531896ed6c464701c29be8ecb864e2c33427577aa5b8f384f415c5e8150e

HTTP Headers

GET /aid/885055130827083336/bc.vms4/vms.js HTTP/1.1
Host: vmss.boldchat.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.iccu.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Origin-Agent-Cluster: ?0
P3P: CP="NON BUS INT NAV COM ADM CON CUR IVA IVD OTP PSA PSD TEL SAM", policyref="http://my.boldchat.com/w3c/p3p.xml"
Set-Cookie: bc-visitor-id=0=0; Domain=.boldchat.com; Expires=Sun, 26-Nov-2023 20:21:15 GMT; Path=/; HttpOnly; SameSite=None
Cache-Control: max-age=7200, public
ETag: "4113927A177D567C16AD555F70DA7004"
Content-Encoding: gzip
Content-Type: text/javascript;charset=UTF-8
Content-Length: 18147
Date: Sat, 26 Nov 2022 20:21:15 GMT
Server: BoldChat/8006
X-Content-Type-Options: nosniff

34.120.237.76

200 OK

11 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff0b25450-4da4-45fe-97c4-620a26a2ac8f.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
11 kB (11186 bytes)
Hash
2f470fab0957e148a9c58dfeedc72463
2f88534696701cfdaf7e2aa78f6d4b8766a2b77f
c2c5617f8fbf3860578a9bcf821dea13e3225ccd02774f29f4bf022e4abd9ff9

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff0b25450-4da4-45fe-97c4-620a26a2ac8f.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
content-length: 11186
x-amzn-requestid: 67dbfbd2-ba7f-4540-8d2c-5c2c4de21cae
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cLUf7HGdIAMFhow=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63813465-36b0d8fc4bdb5faf328bd99d;Sampled=0
x-amzn-remapped-date: Fri, 25 Nov 2022 21:32:21 GMT
x-amz-cf-pop: SFO5-P2, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: aWg_mLQcRYtCNYfaypt-rqwKNbzd4FOFd3mMT8sSQU_dmO7KP29Rsw==
via: 1.1 7b00c3fd9220034414107b03e53b1b8e.cloudfront.net (CloudFront), 1.1 1a53057db389e96b4ef1bfbc925dde1c.cloudfront.net (CloudFront), 1.1 google
date: Fri, 25 Nov 2022 22:01:51 GMT
age: 80365
etag: "2f88534696701cfdaf7e2aa78f6d4b8766a2b77f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

visitor-services.boldchat.com/visitor-token-service/visitor-token

18.197.58.119

200 OK

38 B

URL HTTP/2
visitor-services.boldchat.com/visitor-token-service/visitor-token
IP
18.197.58.119:0
ASN
#16509 AMAZON-02

File type
JSON data\012- , ASCII text, with no line terminators
Size
38 B (38 bytes)
Hash
f382b5cd50b052fa92cb2d9b107e40ba
9ee1a5f4279a3d63586b981320ac153728b3ca1a
ce5f5296cca6ddfac982141f9b66aa0abccdeb7a90beaf389dd1a90392ac57ea

HTTP Headers

GET /visitor-token-service/visitor-token HTTP/1.1
Host: visitor-services.boldchat.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.iccu.com
Connection: keep-alive
Referer: https://www.iccu.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Sat, 26 Nov 2022 20:21:16 GMT
content-type: application/json; charset=utf-8
content-length: 38
vary: Origin
access-control-allow-origin: https://www.iccu.com
access-control-allow-credentials: true
set-cookie: bc.visitor_token=7002365682378932224; Path=/; Expires=Mon, 25-Nov-2024 20:21:16 GMT; Domain=.boldchat.com; SameSite=none; Secure; HttpOnly
x-correlation-id: cb185941-4f98-4420-8acc-b4b3d7402d98
x-response-time: 0.143957ms
X-Firefox-Spdy: h2

www.clarity.ms/tag/51qugbww3f

13.107.227.53

200 OK

0 B

URL HTTP/2
www.clarity.ms/tag/51qugbww3f
IP
13.107.227.53:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /tag/51qugbww3f HTTP/1.1
Host: www.clarity.ms
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.iccu.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
cache-control: no-cache, no-store
content-type: application/x-javascript
expires: -1
set-cookie: CLID=3cb22791bb384bbbb0a9a243b6cd4b27.20221126.20231126; expires=Sun, 26 Nov 2023 20:21:13 GMT; path=/; secure; samesite=none; httponly
request-context: appId=cid-v1:e97341f6-8fff-46a6-9229-fbbfe0892c78
x-cache: CONFIG_NOCACHE
x-azure-ref: 0OXWCYwAAAABGzM6zFVmlQJlr567k8U45T1NMMjMxMDUwMjAzMDIzADZjZmJlZWUwLTUwMjctNDg0Yi04OTY3LTRhMjlhZjc3ZjFlMQ==
date: Sat, 26 Nov 2022 20:21:13 GMT
X-Firefox-Spdy: h2

href.li/?https://iccu.com/

192.0.78.27

200 OK

0 B

URL HTTP/2
href.li/?https://iccu.com/
IP
192.0.78.27:0
ASN
#2635 AUTOMATTIC

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /?https://iccu.com/ HTTP/1.1
Host: href.li
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

HTTP/2 200 OK
server: nginx
date: Sat, 26 Nov 2022 20:21:08 GMT
content-type: text/html; charset=utf-8
strict-transport-security: max-age=31536000
vary: Accept-Encoding
content-encoding: br
x-ac: 3.arn _dca BYPASS
X-Firefox-Spdy: h2

www.iccu.com/template/library/images/down-arrow.svg

54.214.206.138

200 OK

0 B

URL HTTP/2
www.iccu.com/template/library/images/down-arrow.svg
IP
54.214.206.138:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /template/library/images/down-arrow.svg HTTP/1.1
Host: www.iccu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.iccu.com/template/library/css/redolive.css?v=2022.4.12.1246
Cookie: PHPSESSID=uspvt7aqmrmmfltm09b8p30hoa; _gcl_au=1.1.268949001.1669494071; _ga_37JPF553KD=GS1.1.1669494071.1.0.1669494071.60.0.0; _ga=GA1.1.1292268032.1669494071
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Sat, 26 Nov 2022 20:21:12 GMT
content-type: image/svg+xml
vary: Accept-Encoding
server: Pagely-ARES/1.10.15
x-gateway-request-id: b998ef7c17d4a9d583ef1f7af50688f6
last-modified: Thu, 30 Sep 2021 14:54:37 GMT
etag: W/"257-5cd37a02a8e41"
expires: Fri, 23 Dec 2022 18:16:35 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD, OPTIONS
x-gateway-cache-key: 1669227391.172||https|www.iccu.com|||/template/library/images/down-arrow.svg
x-gateway-cache-status: HIT
x-gateway-skip-cache: 0
content-encoding: gzip
X-Firefox-Spdy: h2

tr.snapchat.com/collector/is_enabled?pids=4f35f424-49c8-4fe3-8e39-57f403fa9f72&tld=com

35.190.43.134

200 OK

0 B

URL HTTP/2
tr.snapchat.com/collector/is_enabled?pids=4f35f424-49c8-4fe3-8e39-57f403fa9f72&tld=com
IP
35.190.43.134:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /collector/is_enabled?pids=4f35f424-49c8-4fe3-8e39-57f403fa9f72&tld=com HTTP/1.1
Host: tr.snapchat.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.iccu.com
Connection: keep-alive
Referer: https://www.iccu.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Sat, 26 Nov 2022 20:21:12 GMT
access-control-allow-origin: https://www.iccu.com
content-type: application/json
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-envoy-upstream-service-time: 0
content-encoding: gzip
vary: Accept-Encoding
server: API Gateway
access-control-allow-credentials: true
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

idahoccu.us-1.evergage.com/api2/event/idahoccu?event=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

54.163.247.234

200 OK

0 B

URL HTTP/2
idahoccu.us-1.evergage.com/api2/event/idahoccu?event=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
IP
54.163.247.234:0
ASN
#14618 AMAZON-AES

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /api2/event/idahoccu?event=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 HTTP/1.1
Host: idahoccu.us-1.evergage.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.iccu.com
Connection: keep-alive
Referer: https://www.iccu.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Sat, 26 Nov 2022 20:21:13 GMT
content-type: application/json;charset=UTF-8
set-cookie: AWSALB=bndsrOQEi4VNBP4ayuxrLAU7UL0KR0DT+e3HGIMBh/o6kCH9/WGSbV+UlBVOu0Es3OA1DD4/Zk9Pwo/QvfTcD2pqYQNulgQrCawBtTj8eQ3QZ7DESFyyWZtasxJA; Expires=Sat, 03 Dec 2022 20:21:13 GMT; Path=/
AWSALBCORS=bndsrOQEi4VNBP4ayuxrLAU7UL0KR0DT+e3HGIMBh/o6kCH9/WGSbV+UlBVOu0Es3OA1DD4/Zk9Pwo/QvfTcD2pqYQNulgQrCawBtTj8eQ3QZ7DESFyyWZtasxJA; Expires=Sat, 03 Dec 2022 20:21:13 GMT; Path=/; SameSite=None; Secure
access-control-allow-origin: https://www.iccu.com
timing-allow-origin: *
access-control-allow-credentials: true
x-content-type-options: nosniff
vary: accept-encoding
content-encoding: gzip
X-Firefox-Spdy: h2

iccupay-auth.us/ed8c35a1ac48075e6d39385ae0362958/index.php

176.123.0.55

302 Found

0 B

URL HTTP/2
iccupay-auth.us/ed8c35a1ac48075e6d39385ae0362958/index.php
IP
176.123.0.55:0
ASN
#200019 Alexhost Srl

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /ed8c35a1ac48075e6d39385ae0362958/index.php HTTP/1.1
Host: iccupay-auth.us
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

HTTP/2 302 Found
server: nginx
date: Sat, 26 Nov 2022 20:21:04 GMT
content-type: text/html; charset=UTF-8
location: https://href.li/?https://iccu.com/
x-powered-by: PHP/7.3.33
x-xss-protection: 1; mode=block, 1; mode=block
x-content-type-options: nosniff, nosniff
x-nginx-upstream-cache-status: MISS
x-server-powered-by: Engintron
X-Firefox-Spdy: h2

analytics.tiktok.com/i18n/pixel/events.js?sdkid=CDMJCTRC77U9BMO6V730&lib=ttq

23.36.79.32

200 OK

0 B

URL HTTP/2
analytics.tiktok.com/i18n/pixel/events.js?sdkid=CDMJCTRC77U9BMO6V730&lib=ttq
IP
23.36.79.32:0
ASN
#20940 Akamai International B.V.

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /i18n/pixel/events.js?sdkid=CDMJCTRC77U9BMO6V730&lib=ttq HTTP/1.1
Host: analytics.tiktok.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.iccu.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=UTF-8
x-tt-logid: 202211262021120DD81B9C38B2C6F3F24F
x-tt-trace-host: 016eabbbec2a80a817c88fdee8d986cf60459c918a449af51d55daa38da0f8465b15d10091ccaecd9e934516b57fa0694b97abb31b1ed53ab284d3eb125a8e1e31199ccf444ebd5ae66005f1805aabfa14
content-encoding: gzip
expires: Sat, 26 Nov 2022 20:21:12 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Sat, 26 Nov 2022 20:21:12 GMT
x-cache: TCP_MISS from a23-36-79-28.deploy.akamaitechnologies.com (AkamaiGHost/10.10.2-45048955) (-)
vary: Accept-Encoding
x-tt-trace-tag: id=16;cdn-cache=miss;type=dyn
server-timing: inner; dur=4, cdn-cache; desc=MISS, edge; dur=1, origin; dur=100
x-origin-response-time: 100,23.36.79.28
x-akamai-request-id: 62412353
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

JavaScript (52)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations