Report - nfcuhelp-secured.authorizeddns.us/login.php?token=f808dafc2d9cc4176b70a11b7ef7a911&session=7dcd340d84f762eba80aa538b0c527f7

Report Overview

Submitted URL
nfcuhelp-secured.authorizeddns.us/login.php?token=f808dafc2d9cc4176b70a11b7ef7a911&session=7dcd340d84f762eba80aa538b0c527f7
IP
104.198.98.93
ASN
#396982 GOOGLE-CLOUD-PLATFORM
Submitted
2022-11-10 17:44:14
Access
Website Title
Final URL
Tags
None
urlquery detections
DynDNS domain detected

Detections

urlquery
3
Network Intrusion Detection
0
Threat Detection Systems
4

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
static.ads-twitter.com	614	2018-06-24T00:08:39Z	2023-03-10T09:31:28Z	329 B	16 kB	151.101.84.157
tapestry.tapad.com	1111	2013-07-13T21:31:58Z	2023-03-10T18:14:43Z	477 B	717 B	35.227.248.159
c1.rfihub.net	6410	2012-05-22T11:58:31Z	2023-03-10T09:57:57Z	373 B	6.7 kB	54.230.111.57
ocsp.globalsign.com	2075	2012-07-20T19:46:16Z	2023-03-10T05:11:21Z	361 B	1.9 kB	104.18.20.226
b.videoamp.com	5174	2014-07-12T10:51:39Z	2023-03-11T08:02:10Z	499 B	439 B	54.211.88.233
trkn.us	2659	2015-04-07T02:37:43Z	2023-03-10T17:03:37Z	516 B	765 B	3.212.26.31
assets.adobedtm.com	512	2014-01-28T05:51:35Z	2023-03-10T12:19:45Z	769 B	101 kB	23.38.200.237
img-getpocket.cdn.mozilla.net	1631	2018-06-22T01:36:00Z	2023-03-10T05:10:04Z	3.8 kB	70 kB	34.120.237.76
dpm.demdex.net	204	2012-05-22T07:45:05Z	2023-03-10T05:16:09Z	1.7 kB	2.6 kB	54.154.180.60
tags.bluekai.com	443	2012-05-22T06:25:36Z	2023-03-10T11:27:19Z	390 B	296 B	23.38.201.22
secure.adnxs.com	396	2012-05-22T18:37:37Z	2023-03-10T05:19:42Z	1.6 kB	2.3 kB	37.252.171.53
ocsp.digicert.com	86	2012-05-21T09:02:23Z	2023-03-10T13:49:44Z	5.1 kB	12 kB	93.184.220.29
ct.pinterest.com	852	2015-03-12T09:12:48Z	2023-03-10T09:31:42Z	849 B	1.7 kB	23.38.200.197
analytics.navyfederal.org	39414	2013-07-17T00:22:23Z	2023-03-11T08:02:09Z	3.9 kB	911 B	63.140.38.178
p.tvpixel.com	1352	2018-04-17T14:54:27Z	2023-03-10T09:21:45Z	523 B	299 B	3.232.222.33
insight.adsrvr.org	631	2012-05-30T16:03:18Z	2023-03-10T11:40:05Z	428 B	31 kB	15.197.193.217
content-signature-2.cdn.mozilla.net	1152	2020-11-03T13:26:46Z	2023-03-10T05:12:35Z	413 B	5.8 kB	34.160.144.191
20823298p.rfihub.com	201193	2020-01-07T20:26:14Z	2023-02-28T13:46:41Z	831 B	826 B	193.0.160.129
analytics.twitter.com	526	2013-04-10T21:53:18Z	2023-03-10T09:31:30Z	696 B	613 B	104.244.42.3
liveengage.navyfederal.org	103018	2017-11-08T15:09:41Z	2023-03-08T06:49:46Z	12 kB	558 kB	178.249.97.98
collector-11598.tvsquared.com	129839	2022-01-18T18:18:55Z	2023-03-11T08:02:08Z	1.1 kB	9.1 kB	13.58.136.78
www.navyfederal.org	28885	2013-12-03T11:11:38Z	2023-03-09T19:38:23Z	125 kB	1.5 MB	104.66.116.9
vt.myvisualiq.net	13039	2018-06-16T07:48:02Z	2023-03-10T15:20:46Z	360 B	5.5 kB	54.230.111.39
ocsp.sca1b.amazontrust.com	1015	2017-03-03T16:20:51Z	2019-03-27T05:05:54Z	1.4 kB	4.0 kB	54.230.245.39
ocsp.godaddy.com	698	2012-05-20T21:28:57Z	2023-03-10T05:13:22Z	2.0 kB	14 kB	192.124.249.24
t.myvisualiq.net	1332	2014-02-22T03:04:29Z	2023-03-10T05:16:10Z	4.1 kB	3.5 kB	3.123.165.27
bat.bing.com	387	2014-04-08T11:23:16Z	2023-03-10T09:34:35Z	1.6 kB	14 kB	204.79.197.200
ocsp.sectigo.com	487	2019-11-29T12:50:24Z	2023-03-10T14:35:32Z	2.4 kB	6.7 kB	172.64.155.188
push.services.mozilla.com	2140	2014-10-24T10:27:06Z	2023-03-10T05:10:02Z	606 B	127 B	52.39.57.61
t.co	569	2012-07-25T21:09:44Z	2023-03-10T09:31:30Z	733 B	434 B	104.244.42.133
nfcu.demdex.net	112442	2018-11-07T17:26:25Z	2023-03-11T08:02:10Z	448 B	3.5 kB	34.250.104.41
ocsp.pki.goog	175	2018-07-01T08:43:07Z	2023-03-10T05:11:10Z	1.7 kB	3.5 kB	142.250.74.35
connect.facebook.net	139	2012-05-22T04:51:28Z	2023-03-10T05:15:22Z	338 B	29 kB	31.13.72.12
navyfederal.org	14264	2013-12-03T11:11:38Z	2023-03-09T19:38:34Z	3.1 kB	213 B	104.66.116.9
s.amazon-adsystem.com	283	2012-05-21T10:26:27Z	2023-03-10T16:10:02Z	680 B	607 B	52.46.143.56
bttrack.com	713	2015-06-04T18:01:53Z	2023-03-10T01:59:15Z	399 B	18 kB	192.132.33.46
r3.o.lencr.org	344	2020-12-02T09:52:13Z	2023-03-10T05:09:10Z	2.4 kB	6.2 kB	23.36.76.226
contile.services.mozilla.com	1114	2021-05-27T20:32:35Z	2023-03-10T05:10:00Z	333 B	229 B	34.117.237.239
www.googletagmanager.com	75	2013-05-22T04:07:37Z	2023-03-10T13:03:15Z	346 B	45 kB	142.250.74.168
lptag.liveperson.net	3393	2012-08-02T18:15:51Z	2023-03-10T12:55:53Z	763 B	112 kB	178.249.101.23
c.tvpixel.com	8255	2018-06-13T16:57:00Z	2023-03-10T14:17:41Z	455 B	525 B	54.230.111.58
accdn.lpsnmedia.net	3410	2014-02-08T00:25:14Z	2023-03-10T13:07:56Z	821 B	3.5 kB	178.249.101.99
navyfederalcu.tt.omtrdc.net	125889	2016-05-02T14:06:34Z	2023-03-11T08:02:10Z	1.2 kB	633 B	15.188.95.229
nfcuhelp-secured.authorizeddns.us	unknown	2022-11-09T20:54:43Z	2023-03-05T22:59:21Z	1.0 kB	1.1 kB	104.198.98.93

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

Scan Date	Severity	Indicator	Alert
2022-11-09	medium	nfcuhelp-secured.authorizeddns.us/	Navy Federal Credit Union
2022-11-09	medium	nfcuhelp-secured.authorizeddns.us/	Navy Federal Credit Union

PhishTank

No alerts detected

Fortinet's Web Filter

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

JavaScript (45)

	URL	Size	First Seen	Last Seen
	c1.rfihub.net/js/tc.min.js	20 kB	2023-03-07	2023-09-15
Pretty URL c1.rfihub.net/js/tc.min.js IP 54.230.111.57 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:06 Last Seen2023-09-15 03:24:05 Times Seen185 Hash 83c2974d08241a92c3b2dcb8f441271f 424d72cd7dfe7371c647addd7145ab3444a6b121 7ef97b12890fc6fee67f869c6e1f74b6719de7d66ac0d649c8d7386a80b4c30f Loading...

	accdn.lpsnmedia.net/api/account/11478817/configuration/domainprotection/refererrestrictions?cb=lpCb85064x33832	113 B	2023-03-11	2023-03-11
Pretty URL accdn.lpsnmedia.net/api/account/11478817/configuration/domainprotection/refererrestrictions?cb=lpCb85064x33832 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 10:22:40 Last Seen2023-03-11 10:22:40 Times Seen1 Hash f3b08c96512605028a1a398e1b3264a3 e3713d86ed747a8238f4aed150fdcd25b96c1655 a10a0df0907b105c053a00a41146036e42173b20566d35b4dc3c81dfa0346085 Loading...

	www.navyfederal.org/etc.clientlibs/nfo/clientlibs/clientlib-dependencies.min.1587665971.js	90 kB	2023-03-08	2023-09-27
Pretty URL www.navyfederal.org/etc.clientlibs/nfo/clientlibs/clientlib-dependencies.min.1587665971.js IP 104.66.116.9 ASN #16625 AKAMAI-AS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 12:42:05 Last Seen2023-09-27 14:24:16 Times Seen8 Hash ec1257a625b104d68cd2d275dae8ad47 4f9ba12579a07be7e67892a59c1d06103a430a0a 59842debb914afbfad3863c1b2aae1913809d169dee87e19d6f203911fcce392 Loading...

	www.navyfederal.org/etc.clientlibs/nfo/clientlibs/uife/clientlib-uife-basePage.min.1667712500.js	95 kB	2023-03-08	2023-03-26
Pretty URL www.navyfederal.org/etc.clientlibs/nfo/clientlibs/uife/clientlib-uife-basePage.min.1667712500.js IP 104.66.116.9 ASN #16625 AKAMAI-AS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:52:08 Last Seen2023-03-26 01:39:37 Times Seen2 Hash 2b1a3ad5e3409c823659d5819c86ae58 c8a78ec79dabeabd677405773e4be752ed970f0b a2315a11ac71a6067188d6d199e38c5d7124e77de34a41a67cbadc94402e971a Loading...

	bat.bing.com/bat.js	39 kB	2023-03-07	2023-08-25
Pretty URL bat.bing.com/bat.js IP 204.79.197.200 ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:36 Last Seen2023-08-25 07:33:07 Times Seen42 Hash 16911c194f6e9313655f07c4eb9d8737 d39ccfa8c6d785af331afafe9e36336031f41b64 30153b15b4cb898c421e657f6de21dc27435cb990e7888367bdee12e06398da7 Loading...

	www.navyfederal.org/	365 B	2023-03-08	2023-03-26
Pretty URL www.navyfederal.org/ IP 104.66.116.9 ASN #16625 AKAMAI-AS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 12:42:05 Last Seen2023-03-26 01:39:37 Times Seen2 Hash 2ea0d388aa2a56225f75f54d60bfa69e d27a5b7564ba20557387069c69eb75dfa07a8143 d24ecb83556a1ee7844150e5cc0970a6af2326d69ef81c44934a71011423c0fc Loading...

	www.navyfederal.org/	5.9 kB	2023-03-08	2023-03-11
Pretty URL www.navyfederal.org/ IP 104.66.116.9 ASN #16625 AKAMAI-AS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 12:42:05 Last Seen2023-03-11 14:31:39 Times Seen1 Hash 36e93aabefc86ef63d1a6d203da14b6a 37faa22822be0aeca81a1805a4fff6e6e613b98b 5f34088bdc2b81c998783ba88be2ace456992cd19eddb0d6acafaad4a34798f6 Loading...

	collector-11598.tvsquared.com/tv2track.js	21 kB	2023-03-07	2024-04-25
Pretty URL collector-11598.tvsquared.com/tv2track.js IP 13.58.136.78 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:12:12 Last Seen2024-04-25 17:29:29 Times Seen4443 Hash a1f3145e1dc107aad3b57974b8817b57 507ea38aa8ad7bbe3ab3fa7e4c85016e3dca2960 a463aa6666ce0abcabf8033013cfe881fdbfb570389aff471d400a45b3a496d4 Loading...

	static.ads-twitter.com/uwt.js	58 kB	2023-03-08	2024-04-20
Pretty URL static.ads-twitter.com/uwt.js IP 151.101.84.157 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:22:46 Last Seen2024-04-20 17:48:03 Times Seen4329 Hash 32ad004436155ec972bc50e6238b5b67 9b2cdb645c2fa5b98a9d05dcdca521fed4a17b7b cf7fcc9f75c8717897bfaef72f303fab423ce1b70c98512aeb3677e4af988dee Loading...

	liveengage.navyfederal.org/le_unified_window/10.21.0.1-release_5545/UMSClientAPI.min.js?version=10.21.0.1-release_5545	90 kB	2023-03-07	2023-03-17
Pretty URL liveengage.navyfederal.org/le_unified_window/10.21.0.1-release_5545/UMSClientAPI.min.js?version=10.21.0.1-release_5545 IP 178.249.97.98 ASN #11054 LIVEPERSON Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:45 Last Seen2023-03-17 12:47:48 Times Seen1 Hash 6ca5a9414661b75fc2ed717f14ce892c b6867a2f9e19b20634bfc45c7ed52fda6e3dcff9 99975f334655703578e77034bebce02b63668d2d8a0144c2e5b72b40d234a386 Loading...

	www.navyfederal.org/	815 B	2023-03-08	2023-03-26
Pretty URL www.navyfederal.org/ IP 104.66.116.9 ASN #16625 AKAMAI-AS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 12:42:05 Last Seen2023-03-26 01:39:37 Times Seen2 Hash b3f410baea1ad6a5dc82afdc6950d2fc 48c85afee9a278f056696b1c689e365ca3af63de 63ef2cc765d4930f6057dd3bb9c5492910b1c93fb5bb15e6461a266a52a37296 Loading...

	www.navyfederal.org/etc.clientlibs/nfo/clientlibs/uife/clientlib-uife-homePage.min.1662874816.js	7.4 kB	2023-03-08	2023-03-26
Pretty URL www.navyfederal.org/etc.clientlibs/nfo/clientlibs/uife/clientlib-uife-homePage.min.1662874816.js IP 104.66.116.9 ASN #16625 AKAMAI-AS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 12:42:05 Last Seen2023-03-26 01:39:37 Times Seen2 Hash cb1125bab52f5d24b19e36363688aeec 5a05ecd1645d8d094791c1e0c024ac17d564cabe 780ab044effbbb336f87c48c13f862e51ef5e8d5009d27d403aa813d98fbe96f Loading...

	www.navyfederal.org/0VD7ji2-/k0xIjjL/ghZkbmj/LL/9rfuGhzwbY/Ij1uUB8pAw/IkAnHzpg/eAgC	192 kB	2023-03-08	2023-03-11
Pretty URL www.navyfederal.org/0VD7ji2-/k0xIjjL/ghZkbmj/LL/9rfuGhzwbY/Ij1uUB8pAw/IkAnHzpg/eAgC IP 104.66.116.9 ASN #16625 AKAMAI-AS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:25:48 Last Seen2023-03-11 23:20:49 Times Seen1 Hash 8c8f7ebb176def0f28f35302045c32bf 6c0cad0c140cb7dd9fd454d63adbbbd94f8a67eb ec7c673fcd364789972c9a32e955c2bde278626292d6f66d8a18e01437c6289b Loading...

	va.v.liveperson.net/api/js/11478817?sid=H5dCHapfRMGF3YRp5WIl8g&cb=lpCb19760x21435&t=sp&ts=1668102241927&pid=959012841&tid=354774402&vid=ZkNTEwZjU1Yjk1ZWRkNzY5&rvt=1668100409388&pt=Navy%20Federal%20Credit%20Union%20%7C%20Banking%2C%20Loans%2C%20Mortgages%20%26%20Credit%20Cards%20%7C%20Navy%20Federal%20Credit%20Union&u=https%3A%2F%2Fwww.navyfederal.org%2F&r=https%3A%2F%2Fnfcuhelp-secured.authorizeddns.us%2F&df=0&os=0&identities=%5B%7B%22iss%22%3A%22LivePerson%22%2C%22acr%22%3A%220%22%7D%5D	487 B	2023-03-11	2023-03-11
Pretty URL va.v.liveperson.net/api/js/11478817?sid=H5dCHapfRMGF3YRp5WIl8g&cb=lpCb19760x21435&t=sp&ts=1668102241927&pid=959012841&tid=354774402&vid=ZkNTEwZjU1Yjk1ZWRkNzY5&rvt=1668100409388&pt=Navy%20Federal%20Credit%20Union%20%7C%20Banking%2C%20Loans%2C%20Mortgages%20%26%20Credit%20Cards%20%7C%20Navy%20Federal%20Credit%20Union&u=https%3A%2F%2Fwww.navyfederal.org%2F&r=https%3A%2F%2Fnfcuhelp-secured.authorizeddns.us%2F&df=0&os=0&identities=%5B%7B%22iss%22%3A%22LivePerson%22%2C%22acr%22%3A%220%22%7D%5D IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 10:22:40 Last Seen2023-03-11 10:22:40 Times Seen1 Hash 97681ab418d76f850a0c11b87500d0e0 d04ed02e665e983e7f4e8e1d5c327b7456e0f6a8 0ba9408b0a21ff3b13cacbe7f9051eabd62090ff62df13b11f99ac0feb2f1d05 Loading...

	lptag.liveperson.net/lptag/api/account/11478817/configuration/applications/taglets/.jsonp?v=2.0&df=0&b=3	284 kB	2023-03-11	2023-03-11
Pretty URL lptag.liveperson.net/lptag/api/account/11478817/configuration/applications/taglets/.jsonp?v=2.0&df=0&b=3 IP 178.249.101.23 ASN #11054 LIVEPERSON Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 10:22:40 Last Seen2023-03-11 10:22:40 Times Seen1 Hash 58f2941f3554f5ac587f17684162b688 522c3114f2594e11ccee1f892b697de37b51d42d 305f548270dfc0d09c40a8dff7163da0689604d4fb113327336870c549486277 Loading...

	accdn.lpsnmedia.net/api/account/11478817/configuration/le-campaigns/zones?fields=id&fields=zoneValue&cb=lpZonesStaticCB	2.3 kB	2023-03-10	2023-03-11
Pretty URL accdn.lpsnmedia.net/api/account/11478817/configuration/le-campaigns/zones?fields=id&fields=zoneValue&cb=lpZonesStaticCB IP 178.249.101.99 ASN #11054 LIVEPERSON Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 17:17:21 Last Seen2023-03-11 10:48:00 Times Seen1 Hash dc22078b0ea43be8a723ae34653da0d7 b9851c3f27cde61b469f17a810c5d0f6d8097d45 8cd22656574aa891a8770218d9bd204a5e44cbb75edb5cd505dcb49ed1d1b106 Loading...

	www.navyfederal.org/	443 B	2023-03-08	2023-03-26
Pretty URL www.navyfederal.org/ IP 104.66.116.9 ASN #16625 AKAMAI-AS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 12:42:05 Last Seen2023-03-26 01:39:37 Times Seen2 Hash 9034960f6dba35ecc70bd1f3d37c97bb 421520a37b6789d270d6ed524de93b9a233aa935 38ef048979039a8276209ee0a53f67a6b18372113cf220b8be8a35101cf1e96b Loading...

	assets.adobedtm.com/extensions/EP308220a2a4c4403f97fc1960100db40f/AppMeasurement.min.js	37 kB	2023-03-07	2024-02-29
Pretty URL assets.adobedtm.com/extensions/EP308220a2a4c4403f97fc1960100db40f/AppMeasurement.min.js IP 23.38.200.237 ASN #16625 AKAMAI-AS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 16:44:37 Last Seen2024-02-29 07:10:44 Times Seen178 Hash 42fa244f36955eedb3cd8ade6f492bf6 3765da8aaa112c080b12fd48e2e787030723e249 adfcb165c69213b0aba3c64bc549f7ff156ec82110fb8ef144b1d16ebc13b04a Loading...

	vt.myvisualiq.net/2/S7hcyN%2BYlMTsSfrBl3gOSQ%3D%3D/vt-204.js	19 kB	2023-03-11	2023-03-11
Pretty URL vt.myvisualiq.net/2/S7hcyN%2BYlMTsSfrBl3gOSQ%3D%3D/vt-204.js IP 54.230.111.39 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 09:54:00 Last Seen2023-03-11 11:27:09 Times Seen1 Hash af6cb5d50f4e6b3ebee1eeab0608e519 8e8c1c01616b2e80fdbd43cc8a49882b3b6f47e0 5e025acde47dc734a250bf0de3f3f20958d1a319c9bdb41d9e0974dbb380dc34 Loading...

	accdn.lpsnmedia.net/api/account/11478817/configuration/setting/accountproperties/?cb=accountSettingsCB	6.4 kB	2023-03-08	2023-03-13
Pretty URL accdn.lpsnmedia.net/api/account/11478817/configuration/setting/accountproperties/?cb=accountSettingsCB IP 178.249.101.99 ASN #11054 LIVEPERSON Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:52:08 Last Seen2023-03-13 04:34:48 Times Seen1 Hash 8ab9dbef6154d5cd59a5cb79db513b47 77c85aaf15a73a4db0533d61e48599bf2b41e2ea ada574268f5541a01e1a9df5b7fa4899aa2dda57b2398d29a901f89943f5c631 Loading...

	liveengage.navyfederal.org/le_unified_window/10.21.0.1-release_5545/surveylogicinstance.min.js?version=10.21.0.1-release_5545	7.9 kB	2023-03-07	2024-04-24
Pretty URL liveengage.navyfederal.org/le_unified_window/10.21.0.1-release_5545/surveylogicinstance.min.js?version=10.21.0.1-release_5545 IP 178.249.97.98 ASN #11054 LIVEPERSON Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:45 Last Seen2024-04-24 07:45:12 Times Seen365 Hash d53092c1d6e0a7a3d1bb802c67a6e1e9 2556ea4f15518fa36d0b92666e22ce28edec6745 0ca2d5d4dece21114294a8783944cdd00a4351935831b27f9a83b8eb543c6438 Loading...

	va.v.liveperson.net/api/js/11478817?sid=bxNxnKfMQq2StbwTUaUQnw&cb=lpCb519x97321&t=uc&ts=1668102240713&pid=959012841&tid=354774402&vid=ZkNTEwZjU1Yjk1ZWRkNzY5&sdes=%5B%7B%22type%22%3A%22pagediv%22%2C%22divId%22%3A%22lpbutton%22%7D%5D	40 B	2023-03-11	2023-03-11
Pretty URL va.v.liveperson.net/api/js/11478817?sid=bxNxnKfMQq2StbwTUaUQnw&cb=lpCb519x97321&t=uc&ts=1668102240713&pid=959012841&tid=354774402&vid=ZkNTEwZjU1Yjk1ZWRkNzY5&sdes=%5B%7B%22type%22%3A%22pagediv%22%2C%22divId%22%3A%22lpbutton%22%7D%5D IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 10:22:40 Last Seen2023-03-11 10:22:40 Times Seen1 Hash 0503d1d9c7762a082064994a98ea9a72 d5bb3d1798fd23073a685dc80e00fd05283e7e53 f0ff641151ead9ac72c2661455f77d69d51ed877b614c865dc2bcd9545ae4f1a Loading...

	c.tvpixel.com/js/current/dpm_pixel_min.js?aid=navy-federal-credit-union-ab4e3950-2e70-405c-b377-dcb1b8bfbe47	105 kB	2023-03-07	2024-01-07
Pretty URL c.tvpixel.com/js/current/dpm_pixel_min.js?aid=navy-federal-credit-union-ab4e3950-2e70-405c-b377-dcb1b8bfbe47 IP 54.230.111.58 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:06:18 Last Seen2024-01-07 13:43:05 Times Seen95 Hash 08e770c8a17bf087d50cec01af0892c2 15f6bd70687eeff26cd6e72f647b80894b855e7f 61d8137d275f12306e177bc726c2b3e072f9efa4743a0ace6ecbcf7a0932fd07 Loading...

	9749892.fls.doubleclick.net/ddm/fls/r/src=9749892;type=gener0;cat=nfcu_0;ord=8441939540690;gtm=2odb70;auiddc=673889086.1668100401;~oref=https%3A%2F%2Fwww.navyfederal.org%2F	648 B	2023-03-08	2023-03-26
Pretty URL 9749892.fls.doubleclick.net/ddm/fls/r/src=9749892;type=gener0;cat=nfcu_0;ord=8441939540690;gtm=2odb70;auiddc=673889086.1668100401;~oref=https%3A%2F%2Fwww.navyfederal.org%2F IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 12:42:05 Last Seen2023-03-26 01:39:37 Times Seen2 Hash e15abdfb5df7589856d7c22a6f090463 943f75a9ccee76dab710aee3a6f055823a5ffcde 8c1594fe6908c002136502d04462a670438f60cd0f9b30d73320897c1fc655e8 Loading...

	liveengage.navyfederal.org/le_secure_storage/3.18.0.0-release_5078/storage.secure.min.html?loc=https%3A%2F%2Fwww.navyfederal.org&site=11478817&env=prod&isCrossDomain=true	39 kB	2023-03-07	2024-03-12
Pretty URL liveengage.navyfederal.org/le_secure_storage/3.18.0.0-release_5078/storage.secure.min.html?loc=https%3A%2F%2Fwww.navyfederal.org&site=11478817&env=prod&isCrossDomain=true IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:45 Last Seen2024-03-12 06:48:19 Times Seen234 Hash a3a38a5d6888ddc1831a811e9d428c77 2ca5b076aea8b4c6ff7ad1873de4ade91d66511f d4676cbbadec76c9f89f5b771a7f4927d544b4d76801e40e9957493e038e0db4 Loading...

	www.navyfederal.org/	24 B	2023-03-07	2024-04-24
Pretty URL www.navyfederal.org/ IP 104.66.116.9 ASN #16625 AKAMAI-AS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:24:14 Last Seen2024-04-24 07:41:51 Times Seen1556 Hash c4cc200d428ad0bc226a605f08309d6b 8ee05844bea8306da820f834d06e069371bfb3cf a695b556ffaa49572cfbfa488f5657bcc8822e8c87c82751aad0cc78af5f43dc Loading...

	www.navyfederal.org/	826 B	2023-03-08	2023-03-26
Pretty URL www.navyfederal.org/ IP 104.66.116.9 ASN #16625 AKAMAI-AS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 12:42:05 Last Seen2023-03-26 01:39:37 Times Seen2 Hash 5ca91efcee3c68af5e332e9f5c500c58 ee17081fc2f626df07dd2d9fe27ca780b48fbe5b 0f25d9bdbfd67c11454620b0cbb91d5796903e29036472b8801fbe3db689747d Loading...

	www.navyfederal.org/	666 B	2023-03-08	2023-03-26
Pretty URL www.navyfederal.org/ IP 104.66.116.9 ASN #16625 AKAMAI-AS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:52:08 Last Seen2023-03-26 01:39:37 Times Seen2 Hash c043361c4b2fc942c8326a2e4f60cd3d 9f066f05c4ce57430293bf8f816eba936bfdcbdb 78b7e2850d1bd2133cbad08fe791c37c31eff84835bee92b5761400cdc2626cb Loading...

	va.v.liveperson.net/api/js/11478817?sid=bxNxnKfMQq2StbwTUaUQnw&cb=lpCb7200x20915&t=pl&ts=1668102241931&pid=959012841&tid=354774402&vid=ZkNTEwZjU1Yjk1ZWRkNzY5	110 B	2023-03-11	2023-03-11
Pretty URL va.v.liveperson.net/api/js/11478817?sid=bxNxnKfMQq2StbwTUaUQnw&cb=lpCb7200x20915&t=pl&ts=1668102241931&pid=959012841&tid=354774402&vid=ZkNTEwZjU1Yjk1ZWRkNzY5 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 10:22:40 Last Seen2023-03-11 10:22:40 Times Seen1 Hash 186905d2f514c692b42b32a2cfb29f89 d1dd603576009e4379df8cbd249e7be640cda698 242d6f6601b959674ea4c6c5759b14628a9711b69b50acd888e2c3f803016086 Loading...

	unknown	0 B	2023-03-07	2024-04-25
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:01:59 Last Seen2024-04-25 18:18:21 Times Seen37069259 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	lptag.liveperson.net/tag/tag.js?site=11478817	22 kB	2023-03-07	2024-04-12
Pretty URL lptag.liveperson.net/tag/tag.js?site=11478817 IP 178.249.101.23 ASN #11054 LIVEPERSON Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:45 Last Seen2024-04-12 19:27:20 Times Seen539 Hash e2ee8a9cd68c3d310a4c62fdb4b5c93a 67eb5f9547f1d9de0a8b143c3b50511c26281399 145d14bb73e5b03cc73062c2a78c392125b891c62b1cc9d542e5adba762f04e7 Loading...

	liveengage.navyfederal.org/le_unified_window/10.21.0.1-release_5545/lpChatV3.min.js?version=10.21.0.1-release_5545	94 kB	2023-03-07	2024-04-24
Pretty URL liveengage.navyfederal.org/le_unified_window/10.21.0.1-release_5545/lpChatV3.min.js?version=10.21.0.1-release_5545 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:45 Last Seen2024-04-24 07:45:12 Times Seen448 Hash d32e789b3183ed4536dc36e4cabf74ec 6b90b3e6dc44c30dcfa273e7c48d31ec00aac82b 5941d1622373ff4da4a0ec6ae2c474a80f2e65763aca377b069690ed4cc26d02 Loading...

	nfcu.demdex.net/dest5.html?d_nsid=0#https%3A%2F%2Fwww.navyfederal.org	6.7 kB	2023-03-07	2024-03-23
Pretty URL nfcu.demdex.net/dest5.html?d_nsid=0#https%3A%2F%2Fwww.navyfederal.org IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:36 Last Seen2024-03-23 05:26:10 Times Seen1169 Hash bea2f42512935b636558e81988e2d51f 2c9772b62f6eb8a3cec9c3a6fb9c0b22c927e59d 0cc5ff21c24654308609656ebcfda2d792d15f6fda17c0a88b551fcf8e456fdb Loading...

	connect.facebook.net/signals/config/125275241484882?v=2.9.89&r=stable	494 kB	2023-03-11	2023-03-11
Pretty URL connect.facebook.net/signals/config/125275241484882?v=2.9.89&r=stable IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 10:22:40 Last Seen2023-03-11 10:22:41 Times Seen1 Hash c5e0642a8a757d44e0edfcd6406417c1 f55159deff171d2d3a430849d89446e881e5cb9c 233dd9d11284e1f43e79909ae454509ee6e3e595d59e75698de2c330f20931db Loading...

	liveengage.navyfederal.org/le_unified_window/10.21.0.1-release_5545/ui-framework.js?version=10.21.0.1-release_5545	40 kB	2023-03-08	2024-04-24
Pretty URL liveengage.navyfederal.org/le_unified_window/10.21.0.1-release_5545/ui-framework.js?version=10.21.0.1-release_5545 IP 178.249.97.98 ASN #11054 LIVEPERSON Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 01:32:35 Last Seen2024-04-24 07:45:12 Times Seen485 Hash 0dfc7fa7d2051d776d5937b7a3a7c4dd e0548931c28581b7f1975bf8c2d8b03b94591b87 3e4f5d07904cf355da7bfbca5d4eee18a4c09fc9e6a79df958d0bb1225572983 Loading...

	liveengage.navyfederal.org/le_unified_window/10.21.0.1-release_5545/desktopEmbedded.js?version=10.21.0.1-release_5545	981 kB	2023-03-08	2023-03-13
Pretty URL liveengage.navyfederal.org/le_unified_window/10.21.0.1-release_5545/desktopEmbedded.js?version=10.21.0.1-release_5545 IP 178.249.97.98 ASN #11054 LIVEPERSON Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 01:55:33 Last Seen2023-03-13 06:53:08 Times Seen1 Hash 9842ba089990a2d172f582728a638537 9cf337cd5a0c1490d4c45b3f762eb5495c866cf8 f4c5acf87d563284fc4776677d1c6a76ef2541e55468df633644c1ab0e14949e Loading...

	www.navyfederal.org/	405 B	2023-03-08	2023-03-14
Pretty URL www.navyfederal.org/ IP 104.66.116.9 ASN #16625 AKAMAI-AS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 12:42:05 Last Seen2023-03-14 07:05:47 Times Seen1 Hash 2df01cd15324960c1f65953d25b8d874 21234db29b4986de5edb10e52480b918a44bc1a6 6f66780bc7993955eea0787abe8033e2bb182ff5ea00c86e2c085ba4b1bfb813 Loading...

	www.navyfederal.org/	139 B	2023-03-08	2023-03-26
Pretty URL www.navyfederal.org/ IP 104.66.116.9 ASN #16625 AKAMAI-AS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 12:42:05 Last Seen2023-03-26 01:39:37 Times Seen2 Hash 659f600b28e295eef108c98eacae459e 8034db8cde66eeee9880f6c06c690bf81173482e 17a3e31689e0df42ce7f4d49c520696165ab73ada3ea65e890b04c58314947ce Loading...

	connect.facebook.net/en_US/fbevents.js	105 kB	2023-03-10	2023-10-31
Pretty URL connect.facebook.net/en_US/fbevents.js IP 31.13.72.12 ASN #32934 FACEBOOK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 17:19:33 Last Seen2023-10-31 18:18:05 Times Seen6 Hash 8938d4fc65afd3422bf533482ca33a53 2d92351d88fc6fd59cdac7d801753ac64ba52277 f896040524443394b8b1ba4fbd1de94be74378ab901e53b3b40c1323d1735143 Loading...

	www.navyfederal.org/	20 kB	2023-03-08	2023-03-26
Pretty URL www.navyfederal.org/ IP 104.66.116.9 ASN #16625 AKAMAI-AS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 12:42:05 Last Seen2023-03-26 01:39:37 Times Seen2 Hash c3f2216d0b532a0fd9161dad98b1fe37 9724ecd73cbc135c9a41d33ade3eee1e75fd1180 1eb1198495db01e9199c83efb47559f864b889ad4a0a10ed341edb90648f8c9e Loading...

	nfcuhelp-secured.authorizeddns.us/login.php?token=f808dafc2d9cc4176b70a11b7ef7a911&session=7dcd340d84f762eba80aa538b0c527f7	54 B	2023-03-11	2023-03-11
Pretty URL nfcuhelp-secured.authorizeddns.us/login.php?token=f808dafc2d9cc4176b70a11b7ef7a911&session=7dcd340d84f762eba80aa538b0c527f7 IP 104.198.98.93 ASN #396982 GOOGLE-CLOUD-PLATFORM Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 09:54:00 Last Seen2023-03-11 11:27:09 Times Seen1 Hash 76dd2f80028ea172b9e029e5d9198dcc 087ca0c9f67e54c3d630df86c71c06022a41ad9d a091caa485b1115f269ef02463f66222f8069ddd0d9196fadb6368364b8be1f9 Loading...

	www.googletagmanager.com/gtag/js?id=DC-9749892	113 kB	2023-03-11	2023-03-11
Pretty URL www.googletagmanager.com/gtag/js?id=DC-9749892 IP 142.250.74.168 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 10:21:39 Last Seen2023-03-11 10:22:40 Times Seen1 Hash 63610ebf0c547b220003bdf5e840bf05 341eeaaec353dedd3c194774c015f22fc3531a31 6e824de316cf33097d5f5affb59ccb5808993d222ec8b048bb7f7054eca4376a Loading...

	www.navyfederal.org/	151 B	2023-03-08	2023-07-20
Pretty URL www.navyfederal.org/ IP 104.66.116.9 ASN #16625 AKAMAI-AS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 12:42:05 Last Seen2023-07-20 17:34:55 Times Seen3 Hash 8deee56926f55e3872b6cf96d59a0b96 56fa4b003ff9b3dc87b3e74c5f8c5849da232576 141d10cca876a605e777c2367bf20d9b5e08e7645308c73a15ab2f346012dcb4 Loading...

		Size	First Seen	Last Seen
	#1 Eval - d066c179a444118cb57f3c2c7bbc579f	12 B	2023-03-07	2023-05-04
Pretty Observations First Seen2023-03-07 01:02:06 Last Seen2023-05-04 15:22:18 Times Seen104 Hash d066c179a444118cb57f3c2c7bbc579f 2360e18b98d230ad8f2ffeb37fa09a2e9cd66262 bddcf25867435760b58937910118ebed74be4f123e0aefd1248383144032afa3 Loading...

	#2 Eval - a1e812d5f05d7cece0f88cbbd441cb0c	10 B	2023-03-07	2023-05-04
Pretty Observations First Seen2023-03-07 01:02:06 Last Seen2023-05-04 15:22:18 Times Seen104 Hash a1e812d5f05d7cece0f88cbbd441cb0c b3c0ae9c7de7985f174bfe604b81b6068d8acfbf 338eebe354feee40bdfe97326853bdc041f0478b9a764f2cde16abcd93dc9a86 Loading...

HTTP Transactions (149)

URL IP Response Size

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
aabe410b4bbe4d8beb0e4561d3aa158e
e1788632902ddea62cdd9e7ad6009a75ffb69788
ad535e27b201e92670770b2b868c58f7c05633ec66490a41ef4592f062834c1f

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "AD535E27B201E92670770B2B868C58F7C05633EC66490A41EF4592F062834C1F"
Last-Modified: Wed, 09 Nov 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3051
Expires: Thu, 10 Nov 2022 18:34:52 GMT
Date: Thu, 10 Nov 2022 17:44:01 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
dc90abd8b3ea8e75a68c144d74d75788
1ce29dca1ee9ca8931397de31ffb6cf7833baaf8
807000997bcf1b7a1fa35e43908cbfa54cd1704a5a0f53c09e1ae154638f10e0

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "807000997BCF1B7A1FA35E43908CBFA54CD1704A5A0F53C09E1AE154638F10E0"
Last-Modified: Tue, 08 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3804
Expires: Thu, 10 Nov 2022 18:47:25 GMT
Date: Thu, 10 Nov 2022 17:44:01 GMT
Connection: keep-alive

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
a19a5555cc9ea92581b0cc504cb64345
01a86ce33d5eb33420ed76266360f32c62a96f31
9ebd48b4053bb4a7a27718670c44075b1f35d037be7fd16750fcbc3ffd68b18c

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2978
Cache-Control: max-age=149804
Content-Type: application/ocsp-response
Date: Thu, 10 Nov 2022 17:44:01 GMT
Etag: "636cd2eb-1d7"
Expires: Sat, 12 Nov 2022 11:20:45 GMT
Last-Modified: Thu, 10 Nov 2022 10:31:07 GMT
Server: ECS (ska/F713)
X-Cache: HIT
Content-Length: 471

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain

34.160.144.191

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
IP
34.160.144.191:0
ASN
#15169 GOOGLE

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
67d5a988edcda47bc3b3b3f65d32b4b6
d4f0e0da8b3690cc7da925026d3414b68c7d954f
55e4848e3ec682e808ce7ee70950f86179c43af4f81926d826a95edfda395a78

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
x-amz-id-2: hbP/b5cGAhnNkJ+wGsMC0CHLf48HiDZFKy/ha2A/h+exxrH1xAuw3cnuo6wC9BvvU6W9TS2LKfQ=
x-amz-request-id: YZ2YBRDTJW9P0DPW
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Thu, 10 Nov 2022 16:49:28 GMT
age: 3273
last-modified: Fri, 30 Sep 2022 18:50:55 GMT
etag: "67d5a988edcda47bc3b3b3f65d32b4b6"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2

nfcuhelp-secured.authorizeddns.us/login.php?token=f808dafc2d9cc4176b70a11b7ef7a911&session=7dcd340d84f762eba80aa538b0c527f7

104.198.98.93

301 Moved Permanently

343 B

URL HTTP/1.1
nfcuhelp-secured.authorizeddns.us/login.php?token=f808dafc2d9cc4176b70a11b7ef7a911&session=7dcd340d84f762eba80aa538b0c527f7
IP
104.198.98.93:0
ASN
#396982 GOOGLE-CLOUD-PLATFORM

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
343 B (343 bytes)
Hash
ee816d6983c2b15e204c2ec1e689cb6a
a2fd42346a25f4f105f4cf03c69b3a78ec2fc7a8
285e00f1d520b7dbf7ba4d01736170964dd20dbb897122b9cb11fc7e6259c65d

Detections

Analyzer	Verdict	Alert
urlquery		DynDNS domain detected
openphish	Navy Federal Credit Union

HTTP Headers

GET /login.php?token=f808dafc2d9cc4176b70a11b7ef7a911&session=7dcd340d84f762eba80aa538b0c527f7 HTTP/1.1
Host: nfcuhelp-secured.authorizeddns.us
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 301 Moved Permanently
Date: Thu, 10 Nov 2022 17:44:01 GMT
Server: Apache
Location: https://nfcuhelp-secured.authorizeddns.us/login.php?token=f808dafc2d9cc4176b70a11b7ef7a911&session=7dcd340d84f762eba80aa538b0c527f7
Content-Length: 343
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Thu, 10 Nov 2022 17:44:01 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

nfcuhelp-secured.authorizeddns.us/login.php?token=f808dafc2d9cc4176b70a11b7ef7a911&session=7dcd340d84f762eba80aa538b0c527f7

104.198.98.93

200 OK

71 B

URL HTTP/1.1
nfcuhelp-secured.authorizeddns.us/login.php?token=f808dafc2d9cc4176b70a11b7ef7a911&session=7dcd340d84f762eba80aa538b0c527f7
IP
104.198.98.93:0
ASN
#396982 GOOGLE-CLOUD-PLATFORM

File type
HTML document, ASCII text, with no line terminators
Size
71 B (71 bytes)
Hash
e13d97c792c4a94d5511b2e800806390
5d3fc6f6bdb21e6bd9e7dfbff89a0651d1232a4a
fffe8bb6eb5921c0a29f9ff4c5329997a77b6d3d00b3b44817eaddf4aa5f40f1

Detections

Analyzer	Verdict	Alert
urlquery		DynDNS domain detected
openphish	Navy Federal Credit Union

HTTP Headers

GET /login.php?token=f808dafc2d9cc4176b70a11b7ef7a911&session=7dcd340d84f762eba80aa538b0c527f7 HTTP/1.1
Host: nfcuhelp-secured.authorizeddns.us
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

HTTP/1.1 200 OK
Date: Thu, 10 Nov 2022 17:44:01 GMT
Server: Apache
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
Set-Cookie: PHPSESSID=f0438505cbc8690b60059a0ea8c377b6; path=/
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
081ea13ba4390a4baab25cf57c2672f3
30cc9c329228e3d7bc6041f1aa553f06f8136eed
5a48c189581edd8ae4a4e58e2d54359bb75ba769828436394e4c256fe861814e

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5959
Cache-Control: max-age=147731
Content-Type: application/ocsp-response
Date: Thu, 10 Nov 2022 17:44:01 GMT
Etag: "636cbf2d-1d7"
Expires: Sat, 12 Nov 2022 10:46:12 GMT
Last-Modified: Thu, 10 Nov 2022 09:06:53 GMT
Server: ECS (ska/F713)
X-Cache: HIT
Content-Length: 471

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
537aa7c2d1d8b67db93e232c7a9ab923
a4a1d61c77923b71f5ba25de5602309b6af51eb7
f687556a931dc10c3b2304c619b6e5a901e48a5bb241f6d3a3ba6eaa29f92bf2

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3937
Cache-Control: max-age=117660
Content-Type: application/ocsp-response
Date: Thu, 10 Nov 2022 17:44:02 GMT
Etag: "636c519d-1d7"
Expires: Sat, 12 Nov 2022 02:25:02 GMT
Last-Modified: Thu, 10 Nov 2022 01:19:25 GMT
Server: ECS (ska/F713)
X-Cache: HIT
Content-Length: 471

push.services.mozilla.com/

52.39.57.61

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
52.39.57.61:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: d0p5OubKKTEx6PJQafdXtg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: 7THHXAGxnFzy4Q756KKDnthqbvw=

www.navyfederal.org/

104.66.116.9

200 OK

15 kB

URL HTTP/2
www.navyfederal.org/
IP
104.66.116.9:0
ASN
#16625 AKAMAI-AS

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (359), with CRLF, LF line terminators
Size
15 kB (14869 bytes)
Hash
59e31a1283a0a599116e5bb908dd4e66
9e305d4b087c2dfb10885e791cf30b3aa6e9c52e
82231a47a9ac9336c15aab2cf469f8cd0db71c7ad7d7692785e10cd155882a17

HTTP Headers

GET / HTTP/1.1
Host: www.navyfederal.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nfcuhelp-secured.authorizeddns.us/
Cookie: _abck=DC80667D0074DA1B3BEF3F54E8921A40~0~YAAQoQVJF8Fa0VeEAQAAnTqIYgi/nj+T4rm31e4sHb7PwvDgqViCOtOD0fiBRFdYqJz0dyA9hJGa4EKA25STY/GpHMVGFfC14EoCo7/tP22D3oHMr+5qp8G9NqHsUnR9yTKnR1gDMzNSabdwOgdWeiR3wmDDs5rdE0m0wQzp8PQTsrURuGjWfWyVuuFEzWEkI579VbdKmXleunDtM/Ey4wOAt5iK/CTF3/Ox6XLe57BJT51t1Kp9a679k5gUjfUPfeeH8XqRQJAWfjqES0NyrJhRBCsqtN2916Y4kNjL0f4762Odoe5Vkt1X2B5+mTKei0UGyrs39M4nJdzzGgojv8WKyQr/lqHy3zLvS+H/XpPCfgOBRc7VprY+7xU+4EZsxrhZvuX/kBO7CdPIxPQKcmhbnBFgYpODAx2Rzc2/~-1~-1~-1; ak_bmsc=CD3D104392607DD4CA7FAC81BDEADF02~000000000000000000000000000000~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; bm_sz=7B5052FB392BE93F5C4C18559FA2BAF5~YAAQoQVJFyRZ0VeEAQAAmjKIYhHpUahXFvdsAaQJmpC1C/Df62CHAJDHM90z1RUp3QYAryRGAWuFC63uafX4GOkO57t7PdFyJs0XxIz5olBO3T9gRurFzQzMLiGaiM7O2AqD14VfNPCCfxbfSR0CGBwnPloUAjk2zoSqL59EY4oA2fSfgNIeU2cpPgd3HyKRc4ce1Ft94xdw4pwO9Bo/no2AgzdZdAouR7qP/2L4sQY9BsHYp+FbYEG2SoEO1s/Dhy/4pHmCti2x4rseqlAZCGfJxDa+2dhblc4CR2cyAMesg9pSn8wYHA==~3683650~3491383; AMCV_9BD537045330573C0A490D44%40AdobeOrg=-408604571%7CMCIDTS%7C19307%7CMCMID%7C33042062579560787242129122377797597997%7CMCAID%7C31B6989A896721D6-600000887BFA0850%7CMCOPTOUT-1668107601s%7CNONE%7CMCAAMLH-1668705201%7C6%7CMCAAMB-1668705201%7Cj8Odv6LonN4r3an7LhD3WZrU1bUpAkFkkiY1ncBR96t2PTI%7CMCSYNCSOP%7C411-19314%7CvVersion%7C4.6.0; mbox=session#27f2b4d776194ac890c08bce568e0ec9#1668102262|PC#27f2b4d776194ac890c08bce568e0ec9.37_0#1731345202; bm_sv=954F8CEE59ED3B7CD609760D612EE728~YAAQoQVJF7VZ0VeEAQAAmjWIYhH5PyNVQLGA6W+FEZxiHwWazdXh+4jzCRR4AMfoSNwwVoPwfdxIH/i5nEwwlcMSJVvLZ0cHAk1pteC97cu4+zodjrE3RAlDYo6i0PK1TNKSnFnnuYATFCeyRv6nbT7RoypXjIJCwYnqt+rO3gCgYuGpvyyUPkctLngDQTKOchjnv1IeTj3yusn+0HSg4lzriCyBMo2PhfeSD+DapYf0av2DdUu6pGew7ESIaE1OXizR9sY=~1; _gcl_au=1.1.673889086.1668100401; _tq_id.TV-8181450918-1.e1be=86abe9320f0166bf.1668100401.0.1668100401..; s_vi=[CS]v1|31B6989A896721D6-600000887BFA0850[CE]; s_ecid=MCMID%7C33042062579560787242129122377797597997; _uetsid=fab387e0611a11eda9dab92fb9fdb0c8; _uetvid=fab39b90611a11ed9ee669e5c018eeb2; _fbp=fb.1.1668100402534.1388787247; LPVID=ZkNTEwZjU1Yjk1ZWRkNzY5
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: Apache/2.4.54 (Unix) OpenSSL/1.1.1k Communique/4.3.3
expires: Thu, 10 Nov 2022 23:58:59 GMT
cache-control: max-age=86400
last-modified: Thu, 10 Nov 2022 16:56:51 GMT
accept-ranges: bytes
vary: Accept-Encoding
x-frame-options: SAMEORIGIN, SAMEORIGIN
referrer-policy: same-origin
x-content-type-options: nosniff
content-type: text/html;charset=utf-8
x-akamai-transformed: 9 14799 0 pmb=mTOE,1
content-encoding: gzip
date: Thu, 10 Nov 2022 17:44:02 GMT
content-length: 14869
permissions-policy: interest-cohort=()
strict-transport-security: max-age=31536000
set-cookie: bm_sv=954F8CEE59ED3B7CD609760D612EE728~YAAQoQVJFytv1VeEAQAAU0CkYhFY94LP0BCkV7y5UggpUqTQEhLj/WJUmY/EmDJDMv8JsN35QUh9t1bLa8ZO6UBEIc5FtF77Tfj6yeFXCari3S2o6PNjSAUJKv0z+SdBNboQNOOUONcgpyEtguzrGCwKeeLCUNY5I7AXS4mf82DL9fAVitWIUJRxQLMzKNaGrrIqKMvFR+fwyxQk+4i1gMy3GoWwF+GZalTpHJlLuFCEsCWlMWMBJq8PJbZtg78BNAyRF1o=~1; Domain=.navyfederal.org; Path=/; Expires=Thu, 10 Nov 2022 19:13:24 GMT; Max-Age=5362; Secure
X-Firefox-Spdy: h2

www.navyfederal.org/etc.clientlibs/nfculibs/clientlibs/uife/clientlib-uife-nfculibs-site/resources/fonts/open-sans/open-sans-v18-latin-700.woff2

104.66.116.9

200 OK

15 kB

URL HTTP/2
www.navyfederal.org/etc.clientlibs/nfculibs/clientlibs/uife/clientlib-uife-nfculibs-site/resources/fonts/open-sans/open-sans-v18-latin-700.woff2
IP
104.66.116.9:0
ASN
#16625 AKAMAI-AS

File type
Web Open Font Format (Version 2), TrueType, length 15056, version 1.0\012- data
Size
15 kB (15056 bytes)
Hash
0edb76284a7a0f8db4665b560ee2b48f
02496387a5f7bf7b79df52c7b76ece4ebc7a0710
74201a4b97ec1d5e86252dd0180eafd8c5378a9235864dbcd682f3575b41c85b

HTTP Headers

GET /etc.clientlibs/nfculibs/clientlibs/uife/clientlib-uife-nfculibs-site/resources/fonts/open-sans/open-sans-v18-latin-700.woff2 HTTP/1.1
Host: www.navyfederal.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.navyfederal.org/
Connection: keep-alive
Cookie: _abck=DC80667D0074DA1B3BEF3F54E8921A40~0~YAAQoQVJF8Fa0VeEAQAAnTqIYgi/nj+T4rm31e4sHb7PwvDgqViCOtOD0fiBRFdYqJz0dyA9hJGa4EKA25STY/GpHMVGFfC14EoCo7/tP22D3oHMr+5qp8G9NqHsUnR9yTKnR1gDMzNSabdwOgdWeiR3wmDDs5rdE0m0wQzp8PQTsrURuGjWfWyVuuFEzWEkI579VbdKmXleunDtM/Ey4wOAt5iK/CTF3/Ox6XLe57BJT51t1Kp9a679k5gUjfUPfeeH8XqRQJAWfjqES0NyrJhRBCsqtN2916Y4kNjL0f4762Odoe5Vkt1X2B5+mTKei0UGyrs39M4nJdzzGgojv8WKyQr/lqHy3zLvS+H/XpPCfgOBRc7VprY+7xU+4EZsxrhZvuX/kBO7CdPIxPQKcmhbnBFgYpODAx2Rzc2/~-1~-1~-1; ak_bmsc=CD3D104392607DD4CA7FAC81BDEADF02~000000000000000000000000000000~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; bm_sz=7B5052FB392BE93F5C4C18559FA2BAF5~YAAQoQVJFyRZ0VeEAQAAmjKIYhHpUahXFvdsAaQJmpC1C/Df62CHAJDHM90z1RUp3QYAryRGAWuFC63uafX4GOkO57t7PdFyJs0XxIz5olBO3T9gRurFzQzMLiGaiM7O2AqD14VfNPCCfxbfSR0CGBwnPloUAjk2zoSqL59EY4oA2fSfgNIeU2cpPgd3HyKRc4ce1Ft94xdw4pwO9Bo/no2AgzdZdAouR7qP/2L4sQY9BsHYp+FbYEG2SoEO1s/Dhy/4pHmCti2x4rseqlAZCGfJxDa+2dhblc4CR2cyAMesg9pSn8wYHA==~3683650~3491383; AMCV_9BD537045330573C0A490D44%40AdobeOrg=-408604571%7CMCIDTS%7C19307%7CMCMID%7C33042062579560787242129122377797597997%7CMCAID%7C31B6989A896721D6-600000887BFA0850%7CMCOPTOUT-1668107601s%7CNONE%7CMCAAMLH-1668705201%7C6%7CMCAAMB-1668705201%7Cj8Odv6LonN4r3an7LhD3WZrU1bUpAkFkkiY1ncBR96t2PTI%7CMCSYNCSOP%7C411-19314%7CvVersion%7C4.6.0; mbox=session#27f2b4d776194ac890c08bce568e0ec9#1668102262|PC#27f2b4d776194ac890c08bce568e0ec9.37_0#1731345202; bm_sv=954F8CEE59ED3B7CD609760D612EE728~YAAQoQVJFytv1VeEAQAAU0CkYhFY94LP0BCkV7y5UggpUqTQEhLj/WJUmY/EmDJDMv8JsN35QUh9t1bLa8ZO6UBEIc5FtF77Tfj6yeFXCari3S2o6PNjSAUJKv0z+SdBNboQNOOUONcgpyEtguzrGCwKeeLCUNY5I7AXS4mf82DL9fAVitWIUJRxQLMzKNaGrrIqKMvFR+fwyxQk+4i1gMy3GoWwF+GZalTpHJlLuFCEsCWlMWMBJq8PJbZtg78BNAyRF1o=~1; _gcl_au=1.1.673889086.1668100401; _tq_id.TV-8181450918-1.e1be=86abe9320f0166bf.1668100401.0.1668100401..; s_vi=[CS]v1|31B6989A896721D6-600000887BFA0850[CE]; s_ecid=MCMID%7C33042062579560787242129122377797597997; _uetsid=fab387e0611a11eda9dab92fb9fdb0c8; _uetvid=fab39b90611a11ed9ee669e5c018eeb2; _fbp=fb.1.1668100402534.1388787247; LPVID=ZkNTEwZjU1Yjk1ZWRkNzY5
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: Apache/2.4.54 (Unix) OpenSSL/1.1.1k Communique/4.3.3
last-modified: Sun, 20 Mar 2022 05:33:10 GMT
accept-ranges: bytes
content-length: 15056
x-frame-options: SAMEORIGIN, SAMEORIGIN
referrer-policy: same-origin
x-content-type-options: nosniff
content-type: application/octet-stream
cache-control: public, max-age=86400
expires: Fri, 11 Nov 2022 17:44:02 GMT
date: Thu, 10 Nov 2022 17:44:02 GMT
permissions-policy: interest-cohort=()
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2

www.navyfederal.org/etc.clientlibs/nfculibs/clientlibs/uife/clientlib-uife-nfculibs-site/resources/fonts/roboto-slab/roboto-slab-v6-latin-300.woff2

104.66.116.9

200 OK

18 kB

URL HTTP/2
www.navyfederal.org/etc.clientlibs/nfculibs/clientlibs/uife/clientlib-uife-nfculibs-site/resources/fonts/roboto-slab/roboto-slab-v6-latin-300.woff2
IP
104.66.116.9:0
ASN
#16625 AKAMAI-AS

File type
Web Open Font Format (Version 2), TrueType, length 17940, version 1.0\012- data
Size
18 kB (17940 bytes)
Hash
3da34f793316009f835d58414b8827a9
d9599d9d08c6fab25ea2c5fc4c111f969ca25e51
244ee9a4590b7b41d8dd4e1f6e398fc45e50f50bb4bcae840575bddd5d1ac5fe

HTTP Headers

GET /etc.clientlibs/nfculibs/clientlibs/uife/clientlib-uife-nfculibs-site/resources/fonts/roboto-slab/roboto-slab-v6-latin-300.woff2 HTTP/1.1
Host: www.navyfederal.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.navyfederal.org/
Connection: keep-alive
Cookie: _abck=DC80667D0074DA1B3BEF3F54E8921A40~0~YAAQoQVJF8Fa0VeEAQAAnTqIYgi/nj+T4rm31e4sHb7PwvDgqViCOtOD0fiBRFdYqJz0dyA9hJGa4EKA25STY/GpHMVGFfC14EoCo7/tP22D3oHMr+5qp8G9NqHsUnR9yTKnR1gDMzNSabdwOgdWeiR3wmDDs5rdE0m0wQzp8PQTsrURuGjWfWyVuuFEzWEkI579VbdKmXleunDtM/Ey4wOAt5iK/CTF3/Ox6XLe57BJT51t1Kp9a679k5gUjfUPfeeH8XqRQJAWfjqES0NyrJhRBCsqtN2916Y4kNjL0f4762Odoe5Vkt1X2B5+mTKei0UGyrs39M4nJdzzGgojv8WKyQr/lqHy3zLvS+H/XpPCfgOBRc7VprY+7xU+4EZsxrhZvuX/kBO7CdPIxPQKcmhbnBFgYpODAx2Rzc2/~-1~-1~-1; ak_bmsc=CD3D104392607DD4CA7FAC81BDEADF02~000000000000000000000000000000~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; bm_sz=7B5052FB392BE93F5C4C18559FA2BAF5~YAAQoQVJFyRZ0VeEAQAAmjKIYhHpUahXFvdsAaQJmpC1C/Df62CHAJDHM90z1RUp3QYAryRGAWuFC63uafX4GOkO57t7PdFyJs0XxIz5olBO3T9gRurFzQzMLiGaiM7O2AqD14VfNPCCfxbfSR0CGBwnPloUAjk2zoSqL59EY4oA2fSfgNIeU2cpPgd3HyKRc4ce1Ft94xdw4pwO9Bo/no2AgzdZdAouR7qP/2L4sQY9BsHYp+FbYEG2SoEO1s/Dhy/4pHmCti2x4rseqlAZCGfJxDa+2dhblc4CR2cyAMesg9pSn8wYHA==~3683650~3491383; AMCV_9BD537045330573C0A490D44%40AdobeOrg=-408604571%7CMCIDTS%7C19307%7CMCMID%7C33042062579560787242129122377797597997%7CMCAID%7C31B6989A896721D6-600000887BFA0850%7CMCOPTOUT-1668107601s%7CNONE%7CMCAAMLH-1668705201%7C6%7CMCAAMB-1668705201%7Cj8Odv6LonN4r3an7LhD3WZrU1bUpAkFkkiY1ncBR96t2PTI%7CMCSYNCSOP%7C411-19314%7CvVersion%7C4.6.0; mbox=session#27f2b4d776194ac890c08bce568e0ec9#1668102262|PC#27f2b4d776194ac890c08bce568e0ec9.37_0#1731345202; bm_sv=954F8CEE59ED3B7CD609760D612EE728~YAAQoQVJFytv1VeEAQAAU0CkYhFY94LP0BCkV7y5UggpUqTQEhLj/WJUmY/EmDJDMv8JsN35QUh9t1bLa8ZO6UBEIc5FtF77Tfj6yeFXCari3S2o6PNjSAUJKv0z+SdBNboQNOOUONcgpyEtguzrGCwKeeLCUNY5I7AXS4mf82DL9fAVitWIUJRxQLMzKNaGrrIqKMvFR+fwyxQk+4i1gMy3GoWwF+GZalTpHJlLuFCEsCWlMWMBJq8PJbZtg78BNAyRF1o=~1; _gcl_au=1.1.673889086.1668100401; _tq_id.TV-8181450918-1.e1be=86abe9320f0166bf.1668100401.0.1668100401..; s_vi=[CS]v1|31B6989A896721D6-600000887BFA0850[CE]; s_ecid=MCMID%7C33042062579560787242129122377797597997; _uetsid=fab387e0611a11eda9dab92fb9fdb0c8; _uetvid=fab39b90611a11ed9ee669e5c018eeb2; _fbp=fb.1.1668100402534.1388787247; LPVID=ZkNTEwZjU1Yjk1ZWRkNzY5
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: Apache/2.4.54 (Unix) OpenSSL/1.1.1k Communique/4.3.3
last-modified: Sun, 20 Mar 2022 05:33:10 GMT
accept-ranges: bytes
content-length: 17940
x-frame-options: SAMEORIGIN, SAMEORIGIN
referrer-policy: same-origin
x-content-type-options: nosniff
content-type: application/octet-stream
cache-control: public, max-age=86400
expires: Fri, 11 Nov 2022 17:44:02 GMT
date: Thu, 10 Nov 2022 17:44:02 GMT
permissions-policy: interest-cohort=()
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2

www.navyfederal.org/etc.clientlibs/nfculibs/clientlibs/uife/clientlib-uife-nfculibs-site/resources/fonts/source-sans/source-sans-pro-v9-latin-regular.woff2

104.66.116.9

200 OK

14 kB

URL HTTP/2
www.navyfederal.org/etc.clientlibs/nfculibs/clientlibs/uife/clientlib-uife-nfculibs-site/resources/fonts/source-sans/source-sans-pro-v9-latin-regular.woff2
IP
104.66.116.9:0
ASN
#16625 AKAMAI-AS

File type
Web Open Font Format (Version 2), TrueType, length 14308, version 1.3276\012- data
Size
14 kB (14308 bytes)
Hash
58dd2a1c6d7861ea261912ba153ac8e3
235c384b9599ed2099f8fda87ba7bc8917eb1aa4
599d93e0748728edc6bd55a82a52bff61196b149d566a67d4ed86d55d9c520aa

HTTP Headers

GET /etc.clientlibs/nfculibs/clientlibs/uife/clientlib-uife-nfculibs-site/resources/fonts/source-sans/source-sans-pro-v9-latin-regular.woff2 HTTP/1.1
Host: www.navyfederal.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.navyfederal.org/
Connection: keep-alive
Cookie: _abck=DC80667D0074DA1B3BEF3F54E8921A40~0~YAAQoQVJF8Fa0VeEAQAAnTqIYgi/nj+T4rm31e4sHb7PwvDgqViCOtOD0fiBRFdYqJz0dyA9hJGa4EKA25STY/GpHMVGFfC14EoCo7/tP22D3oHMr+5qp8G9NqHsUnR9yTKnR1gDMzNSabdwOgdWeiR3wmDDs5rdE0m0wQzp8PQTsrURuGjWfWyVuuFEzWEkI579VbdKmXleunDtM/Ey4wOAt5iK/CTF3/Ox6XLe57BJT51t1Kp9a679k5gUjfUPfeeH8XqRQJAWfjqES0NyrJhRBCsqtN2916Y4kNjL0f4762Odoe5Vkt1X2B5+mTKei0UGyrs39M4nJdzzGgojv8WKyQr/lqHy3zLvS+H/XpPCfgOBRc7VprY+7xU+4EZsxrhZvuX/kBO7CdPIxPQKcmhbnBFgYpODAx2Rzc2/~-1~-1~-1; ak_bmsc=CD3D104392607DD4CA7FAC81BDEADF02~000000000000000000000000000000~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; bm_sz=7B5052FB392BE93F5C4C18559FA2BAF5~YAAQoQVJFyRZ0VeEAQAAmjKIYhHpUahXFvdsAaQJmpC1C/Df62CHAJDHM90z1RUp3QYAryRGAWuFC63uafX4GOkO57t7PdFyJs0XxIz5olBO3T9gRurFzQzMLiGaiM7O2AqD14VfNPCCfxbfSR0CGBwnPloUAjk2zoSqL59EY4oA2fSfgNIeU2cpPgd3HyKRc4ce1Ft94xdw4pwO9Bo/no2AgzdZdAouR7qP/2L4sQY9BsHYp+FbYEG2SoEO1s/Dhy/4pHmCti2x4rseqlAZCGfJxDa+2dhblc4CR2cyAMesg9pSn8wYHA==~3683650~3491383; AMCV_9BD537045330573C0A490D44%40AdobeOrg=-408604571%7CMCIDTS%7C19307%7CMCMID%7C33042062579560787242129122377797597997%7CMCAID%7C31B6989A896721D6-600000887BFA0850%7CMCOPTOUT-1668107601s%7CNONE%7CMCAAMLH-1668705201%7C6%7CMCAAMB-1668705201%7Cj8Odv6LonN4r3an7LhD3WZrU1bUpAkFkkiY1ncBR96t2PTI%7CMCSYNCSOP%7C411-19314%7CvVersion%7C4.6.0; mbox=session#27f2b4d776194ac890c08bce568e0ec9#1668102262|PC#27f2b4d776194ac890c08bce568e0ec9.37_0#1731345202; bm_sv=954F8CEE59ED3B7CD609760D612EE728~YAAQoQVJFytv1VeEAQAAU0CkYhFY94LP0BCkV7y5UggpUqTQEhLj/WJUmY/EmDJDMv8JsN35QUh9t1bLa8ZO6UBEIc5FtF77Tfj6yeFXCari3S2o6PNjSAUJKv0z+SdBNboQNOOUONcgpyEtguzrGCwKeeLCUNY5I7AXS4mf82DL9fAVitWIUJRxQLMzKNaGrrIqKMvFR+fwyxQk+4i1gMy3GoWwF+GZalTpHJlLuFCEsCWlMWMBJq8PJbZtg78BNAyRF1o=~1; _gcl_au=1.1.673889086.1668100401; _tq_id.TV-8181450918-1.e1be=86abe9320f0166bf.1668100401.0.1668100401..; s_vi=[CS]v1|31B6989A896721D6-600000887BFA0850[CE]; s_ecid=MCMID%7C33042062579560787242129122377797597997; _uetsid=fab387e0611a11eda9dab92fb9fdb0c8; _uetvid=fab39b90611a11ed9ee669e5c018eeb2; _fbp=fb.1.1668100402534.1388787247; LPVID=ZkNTEwZjU1Yjk1ZWRkNzY5
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: Apache/2.4.54 (Unix) OpenSSL/1.1.1k Communique/4.3.3
last-modified: Sun, 20 Mar 2022 05:33:10 GMT
accept-ranges: bytes
content-length: 14308
x-frame-options: SAMEORIGIN, SAMEORIGIN
referrer-policy: same-origin
x-content-type-options: nosniff
content-type: application/octet-stream
cache-control: public, max-age=86400
expires: Fri, 11 Nov 2022 17:44:02 GMT
date: Thu, 10 Nov 2022 17:44:02 GMT
permissions-policy: interest-cohort=()
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2

assets.adobedtm.com/launch-ENade6a82789f74a53a864dd294d952d3d.min.js

23.38.200.237

200 OK

87 kB

URL HTTP/2
assets.adobedtm.com/launch-ENade6a82789f74a53a864dd294d952d3d.min.js
IP
23.38.200.237:0
ASN
#16625 AKAMAI-AS

File type
ASCII text, with very long lines (32751)
Size
87 kB (86881 bytes)
Hash
9816b25d79ab73c431f28e9cecccbd68
c2957d33b5f999bd8390043f763dd412a840c3ee
1f072afcea7e41011209c54ed940868bcb328523fe9b0946c090f66f06f3ad94

HTTP Headers

GET /launch-ENade6a82789f74a53a864dd294d952d3d.min.js HTTP/1.1
Host: assets.adobedtm.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
content-type: application/x-javascript
etag: "45d66ace4ca7a1d8fbcb89983373d67d:1666270649.677968"
last-modified: Thu, 20 Oct 2022 12:57:29 GMT
server: AkamaiNetStorage
vary: Accept-Encoding
content-encoding: gzip
content-length: 86881
cache-control: max-age=3600
expires: Thu, 10 Nov 2022 18:44:02 GMT
date: Thu, 10 Nov 2022 17:44:02 GMT
timing-allow-origin: *
X-Firefox-Spdy: h2

www.navyfederal.org/etc.clientlibs/nfculibs/clientlibs/uife/clientlib-uife-nfculibs-site/resources/fonts/source-sans/source-sans-pro-v9-latin-600.woff2

104.66.116.9

200 OK

14 kB

URL HTTP/2
www.navyfederal.org/etc.clientlibs/nfculibs/clientlibs/uife/clientlib-uife-nfculibs-site/resources/fonts/source-sans/source-sans-pro-v9-latin-600.woff2
IP
104.66.116.9:0
ASN
#16625 AKAMAI-AS

File type
Web Open Font Format (Version 2), TrueType, length 13992, version 1.3276\012- data
Size
14 kB (13992 bytes)
Hash
24f686ce4ae9498d22f10573cdaeb05d
a8eb7a7729f7f69f145d0505b9f3219d3b8b1a9a
0b1dd42ccd2f5da83fa717b15fdd9f91879436b84a15d95340fc7ed5c2bc0269

HTTP Headers

GET /etc.clientlibs/nfculibs/clientlibs/uife/clientlib-uife-nfculibs-site/resources/fonts/source-sans/source-sans-pro-v9-latin-600.woff2 HTTP/1.1
Host: www.navyfederal.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.navyfederal.org/
Connection: keep-alive
Cookie: _abck=DC80667D0074DA1B3BEF3F54E8921A40~0~YAAQoQVJF8Fa0VeEAQAAnTqIYgi/nj+T4rm31e4sHb7PwvDgqViCOtOD0fiBRFdYqJz0dyA9hJGa4EKA25STY/GpHMVGFfC14EoCo7/tP22D3oHMr+5qp8G9NqHsUnR9yTKnR1gDMzNSabdwOgdWeiR3wmDDs5rdE0m0wQzp8PQTsrURuGjWfWyVuuFEzWEkI579VbdKmXleunDtM/Ey4wOAt5iK/CTF3/Ox6XLe57BJT51t1Kp9a679k5gUjfUPfeeH8XqRQJAWfjqES0NyrJhRBCsqtN2916Y4kNjL0f4762Odoe5Vkt1X2B5+mTKei0UGyrs39M4nJdzzGgojv8WKyQr/lqHy3zLvS+H/XpPCfgOBRc7VprY+7xU+4EZsxrhZvuX/kBO7CdPIxPQKcmhbnBFgYpODAx2Rzc2/~-1~-1~-1; ak_bmsc=CD3D104392607DD4CA7FAC81BDEADF02~000000000000000000000000000000~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; bm_sz=7B5052FB392BE93F5C4C18559FA2BAF5~YAAQoQVJFyRZ0VeEAQAAmjKIYhHpUahXFvdsAaQJmpC1C/Df62CHAJDHM90z1RUp3QYAryRGAWuFC63uafX4GOkO57t7PdFyJs0XxIz5olBO3T9gRurFzQzMLiGaiM7O2AqD14VfNPCCfxbfSR0CGBwnPloUAjk2zoSqL59EY4oA2fSfgNIeU2cpPgd3HyKRc4ce1Ft94xdw4pwO9Bo/no2AgzdZdAouR7qP/2L4sQY9BsHYp+FbYEG2SoEO1s/Dhy/4pHmCti2x4rseqlAZCGfJxDa+2dhblc4CR2cyAMesg9pSn8wYHA==~3683650~3491383; AMCV_9BD537045330573C0A490D44%40AdobeOrg=-408604571%7CMCIDTS%7C19307%7CMCMID%7C33042062579560787242129122377797597997%7CMCAID%7C31B6989A896721D6-600000887BFA0850%7CMCOPTOUT-1668107601s%7CNONE%7CMCAAMLH-1668705201%7C6%7CMCAAMB-1668705201%7Cj8Odv6LonN4r3an7LhD3WZrU1bUpAkFkkiY1ncBR96t2PTI%7CMCSYNCSOP%7C411-19314%7CvVersion%7C4.6.0; mbox=session#27f2b4d776194ac890c08bce568e0ec9#1668102262|PC#27f2b4d776194ac890c08bce568e0ec9.37_0#1731345202; bm_sv=954F8CEE59ED3B7CD609760D612EE728~YAAQoQVJFytv1VeEAQAAU0CkYhFY94LP0BCkV7y5UggpUqTQEhLj/WJUmY/EmDJDMv8JsN35QUh9t1bLa8ZO6UBEIc5FtF77Tfj6yeFXCari3S2o6PNjSAUJKv0z+SdBNboQNOOUONcgpyEtguzrGCwKeeLCUNY5I7AXS4mf82DL9fAVitWIUJRxQLMzKNaGrrIqKMvFR+fwyxQk+4i1gMy3GoWwF+GZalTpHJlLuFCEsCWlMWMBJq8PJbZtg78BNAyRF1o=~1; _gcl_au=1.1.673889086.1668100401; _tq_id.TV-8181450918-1.e1be=86abe9320f0166bf.1668100401.0.1668100401..; s_vi=[CS]v1|31B6989A896721D6-600000887BFA0850[CE]; s_ecid=MCMID%7C33042062579560787242129122377797597997; _uetsid=fab387e0611a11eda9dab92fb9fdb0c8; _uetvid=fab39b90611a11ed9ee669e5c018eeb2; _fbp=fb.1.1668100402534.1388787247; LPVID=ZkNTEwZjU1Yjk1ZWRkNzY5
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: Apache/2.4.54 (Unix) OpenSSL/1.1.1k Communique/4.3.3
last-modified: Sun, 20 Mar 2022 05:33:10 GMT
accept-ranges: bytes
content-length: 13992
x-frame-options: SAMEORIGIN, SAMEORIGIN
referrer-policy: same-origin
x-content-type-options: nosniff
content-type: application/octet-stream
cache-control: public, max-age=86400
expires: Fri, 11 Nov 2022 17:44:02 GMT
date: Thu, 10 Nov 2022 17:44:02 GMT
permissions-policy: interest-cohort=()
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2

www.navyfederal.org/etc.clientlibs/nfculibs/clientlibs/uife/clientlib-uife-nfculibs-site/resources/fonts/source-sans/source-sans-pro-v9-latin-italic.woff2

104.66.116.9

200 OK

14 kB

URL HTTP/2
www.navyfederal.org/etc.clientlibs/nfculibs/clientlibs/uife/clientlib-uife-nfculibs-site/resources/fonts/source-sans/source-sans-pro-v9-latin-italic.woff2
IP
104.66.116.9:0
ASN
#16625 AKAMAI-AS

File type
Web Open Font Format (Version 2), TrueType, length 13980, version 1.3276\012- data
Size
14 kB (13980 bytes)
Hash
200d8792653b1c1d1c979f996cfe1255
90675f06fbecae812d4e4161630f9e71268d53aa
1a95badc08844af1a5d383f47734d6966d1333bcaad50176a2c67e6a5ea8a9f9

HTTP Headers

GET /etc.clientlibs/nfculibs/clientlibs/uife/clientlib-uife-nfculibs-site/resources/fonts/source-sans/source-sans-pro-v9-latin-italic.woff2 HTTP/1.1
Host: www.navyfederal.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.navyfederal.org/
Connection: keep-alive
Cookie: _abck=DC80667D0074DA1B3BEF3F54E8921A40~0~YAAQoQVJF8Fa0VeEAQAAnTqIYgi/nj+T4rm31e4sHb7PwvDgqViCOtOD0fiBRFdYqJz0dyA9hJGa4EKA25STY/GpHMVGFfC14EoCo7/tP22D3oHMr+5qp8G9NqHsUnR9yTKnR1gDMzNSabdwOgdWeiR3wmDDs5rdE0m0wQzp8PQTsrURuGjWfWyVuuFEzWEkI579VbdKmXleunDtM/Ey4wOAt5iK/CTF3/Ox6XLe57BJT51t1Kp9a679k5gUjfUPfeeH8XqRQJAWfjqES0NyrJhRBCsqtN2916Y4kNjL0f4762Odoe5Vkt1X2B5+mTKei0UGyrs39M4nJdzzGgojv8WKyQr/lqHy3zLvS+H/XpPCfgOBRc7VprY+7xU+4EZsxrhZvuX/kBO7CdPIxPQKcmhbnBFgYpODAx2Rzc2/~-1~-1~-1; ak_bmsc=CD3D104392607DD4CA7FAC81BDEADF02~000000000000000000000000000000~YAAQoQVJFy5a0VeEAQAA6zeIYhGGIYw4yKNy7uZPTNAMli+81ot0IGUszqrRkYrQnoVWvmTSwFwTz7PQ2Af93ROgb9XNe+wbRdu9LzmQ+NE2dOvP0DPsZiOtNyP5MEtkBjjE4v59wX2G8WWiBp+iT+ROOkHB4Upwpt8lzTMpOvmaxMgT5yv+Nogfd5oLokD0KjDMB7DJlXsSXQhd7jylrU7I58lcz2JdUNTQT528hNH9/iNsqCxYa/Y9GX9mk9T6bzVfKs2ERj7Qu1t9J85cbdUXlpVExtICrsh7nKC/rILmbq8IP9zmX0Zh9cwTXW53i4K+gNQHOeVYSHuRdHYAze04EYxWlGfVR/GbIH32O3I/qjGVvBKdpY6eydP7m6KTjetu1dFRkfinak3XDzEVyj5GXpB7X7MktQiFrm0batseCDQkiKxk6m9aHjnmzHIzGp1ZdhQf30G1r+eC02BsRgnI2QskJSBmCwi7uN3FzDnWwVU+Y8xC1I9jhqVWFg==; bm_sz=7B5052FB392BE93F5C4C18559FA2BAF5~YAAQoQVJFyRZ0VeEAQAAmjKIYhHpUahXFvdsAaQJmpC1C/Df62CHAJDHM90z1RUp3QYAryRGAWuFC63uafX4GOkO57t7PdFyJs0XxIz5olBO3T9gRurFzQzMLiGaiM7O2AqD14VfNPCCfxbfSR0CGBwnPloUAjk2zoSqL59EY4oA2fSfgNIeU2cpPgd3HyKRc4ce1Ft94xdw4pwO9Bo/no2AgzdZdAouR7qP/2L4sQY9BsHYp+FbYEG2SoEO1s/Dhy/4pHmCti2x4rseqlAZCGfJxDa+2dhblc4CR2cyAMesg9pSn8wYHA==~3683650~3491383; AMCV_9BD537045330573C0A490D44%40AdobeOrg=-408604571%7CMCIDTS%7C19307%7CMCMID%7C33042062579560787242129122377797597997%7CMCAID%7C31B6989A896721D6-600000887BFA0850%7CMCOPTOUT-1668107601s%7CNONE%7CMCAAMLH-1668705201%7C6%7CMCAAMB-1668705201%7Cj8Odv6LonN4r3an7LhD3WZrU1bUpAkFkkiY1ncBR96t2PTI%7CMCSYNCSOP%7C411-19314%7CvVersion%7C4.6.0; mbox=session#27f2b4d776194ac890c08bce568e0ec9#1668102262|PC#27f2b4d776194ac890c08bce568e0ec9.37_0#1731345202; bm_sv=954F8CEE59ED3B7CD609760D612EE728~YAAQoQVJFytv1VeEAQAAU0CkYhFY94LP0BCkV7y5UggpUqTQEhLj/WJUmY/EmDJDMv8JsN35QUh9t1bLa8ZO6UBEIc5FtF77Tfj6yeFXCari3S2o6PNjSAUJKv0z+SdBNboQNOOUONcgpyEtguzrGCwKeeLCUNY5I7AXS4mf82DL9fAVitWIUJRxQLMzKNaGrrIqKMvFR+fwyxQk+4i1gMy3GoWwF+GZalTpHJlLuFCEsCWlMWMBJq8PJbZtg78BNAyRF1o=~1; _gcl_au=1.1.673889086.1668100401; _tq_id.TV-8181450918-1.e1be=86abe9320f0166bf.1668100401.0.1668100401..; s_vi=[CS]v1|31B6989A896721D6-600000887BFA0850[CE]; s_ecid=MCMID%7C33042062579560787242129122377797597997; _uetsid=fab387e0611a11eda9dab92fb9fdb0c8; _uetvid=fab39b90611a11ed9ee669e5c018eeb2; _fbp=fb.1.1668100402534.1388787247; LPVID=ZkNTEwZjU1Yjk1ZWRkNzY5
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: Apache/2.4.54 (Unix) OpenSSL/1.1.1k Communique/4.3.3
last-modified: Sun, 20 Mar 2022 05:33:10 GMT
accept-ranges: bytes
content-length: 13980
x-frame-options: SAMEORIGIN, SAMEORIGIN
referrer-policy: same-origin
x-content-type-options: nosniff
content-type: application/octet-stream
cache-control: public, max-age=86400
expires: Fri, 11 Nov 2022 17:44:02 GMT
date: Thu, 10 Nov 2022 17:44:02 GMT
permissions-policy: interest-cohort=()
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2

assets.adobedtm.com/extensions/EP308220a2a4c4403f97fc1960100db40f/AppMeasurement.min.js

23.38.200.237

200 OK

13 kB

URL HTTP/2
assets.adobedtm.com/extensions/EP308220a2a4c4403f97fc1960100db40f/AppMeasurement.min.js
IP
23.38.200.237:0
ASN
#16625 AKAMAI-AS

File type
ASCII text, with very long lines (32129)
Size
13 kB (13342 bytes)
Hash
2fc8049cc90a6556bcec23706b95f358
1782de0b2ee1776bfcb026e404e5b8ca13291d4a
b759e45eb230cd778563b0af46a4b26fba4df77e50fdc2808f825e852cba0021

HTTP Headers

GET /extensions/EP308220a2a4c4403f97fc1960100db40f/AppMeasurement.min.js HTTP/1.1
Host: assets.adobedtm.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
content-type: application/x-javascript
etag: "42fa244f36955eedb3cd8ade6f492bf6:1583879362.816163"
last-modified: Tue, 10 Mar 2020 22:29:22 GMT
server: AkamaiNetStorage
vary: Accept-Encoding
content-encoding: gzip
content-length: 13342
expires: Thu, 10 Nov 2022 18:44:02 GMT
date: Thu, 10 Nov 2022 17:44:02 GMT
cache-control: no-cache
timing-allow-origin: *
X-Firefox-Spdy: h2

www.navyfederal.org/etc.clientlibs/nfo/clientlibs/uife/clientlib-uife-nfo-site-dependencies.min.1647755077.css

104.66.116.9

200 OK

0 B

URL HTTP/2
www.navyfederal.org/etc.clientlibs/nfo/clientlibs/uife/clientlib-uife-nfo-site-dependencies.min.1647755077.css
IP
104.66.116.9:0
ASN
#16625 AKAMAI-AS

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /etc.clientlibs/nfo/clientlibs/uife/clientlib-uife-nfo-site-dependencies.min.1647755077.css HTTP/1.1
Host: www.navyfederal.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.navyfederal.org/
Connection: keep-alive
Cookie: _abck=DC80667D0074DA1B3BEF3F54E8921A40~0~YAAQoQVJF8Fa0VeEAQAAnTqIYgi/nj+T4rm31e4sHb7PwvDgqViCOtOD0fiBRFdYqJz0dyA9hJGa4EKA25STY/GpHMVGFfC14EoCo7/tP22D3oHMr+5qp8G9NqHsUnR9yTKnR1gDMzNSabdwOgdWeiR3wmDDs5rdE0m0wQzp8PQTsrURuGjWfWyVuuFEzWEkI579VbdKmXleunDtM/Ey4wOAt5iK/CTF3/Ox6XLe57BJT51t1Kp9a679k5gUjfUPfeeH8XqRQJAWfjqES0NyrJhRBCsqtN2916Y4kNjL0f4762Odoe5Vkt1X2B5+mTKei0UGyrs39M4nJdzzGgojv8WKyQr/lqHy3zLvS+H/XpPCfgOBRc7VprY+7xU+4EZsxrhZvuX/kBO7CdPIxPQKcmhbnBFgYpODAx2Rzc2/~-1~-1~-1; ak_bmsc=CD3D104392607DD4CA7FAC81BDEADF02~000000000000000000000000000000~YAAQoQVJFy5a0VeEAQAA6zeIYhGGIYw4yKNy7uZPTNAMli+81ot0IGUszqrRkYrQnoVWvmTSwFwTz7PQ2Af93ROgb9XNe+wbRdu9LzmQ+NE2dOvP0DPsZiOtNyP5MEtkBjjE4v59wX2G8WWiBp+iT+ROOkHB4Upwpt8lzTMpOvmaxMgT5yv+Nogfd5oLokD0KjDMB7DJlXsSXQhd7jylrU7I58lcz2JdUNTQT528hNH9/iNsqCxYa/Y9GX9mk9T6bzVfKs2ERj7Qu1t9J85cbdUXlpVExtICrsh7nKC/rILmbq8IP9zmX0Zh9cwTXW53i4K+gNQHOeVYSHuRdHYAze04EYxWlGfVR/GbIH32O3I/qjGVvBKdpY6eydP7m6KTjetu1dFRkfinak3XDzEVyj5GXpB7X7MktQiFrm0batseCDQkiKxk6m9aHjnmzHIzGp1ZdhQf30G1r+eC02BsRgnI2QskJSBmCwi7uN3FzDnWwVU+Y8xC1I9jhqVWFg==; bm_sz=7B5052FB392BE93F5C4C18559FA2BAF5~YAAQoQVJFyRZ0VeEAQAAmjKIYhHpUahXFvdsAaQJmpC1C/Df62CHAJDHM90z1RUp3QYAryRGAWuFC63uafX4GOkO57t7PdFyJs0XxIz5olBO3T9gRurFzQzMLiGaiM7O2AqD14VfNPCCfxbfSR0CGBwnPloUAjk2zoSqL59EY4oA2fSfgNIeU2cpPgd3HyKRc4ce1Ft94xdw4pwO9Bo/no2AgzdZdAouR7qP/2L4sQY9BsHYp+FbYEG2SoEO1s/Dhy/4pHmCti2x4rseqlAZCGfJxDa+2dhblc4CR2cyAMesg9pSn8wYHA==~3683650~3491383; AMCV_9BD537045330573C0A490D44%40AdobeOrg=-408604571%7CMCIDTS%7C19307%7CMCMID%7C33042062579560787242129122377797597997%7CMCAID%7C31B6989A896721D6-600000887BFA0850%7CMCOPTOUT-1668107601s%7CNONE%7CMCAAMLH-1668705201%7C6%7CMCAAMB-1668705201%7Cj8Odv6LonN4r3an7LhD3WZrU1bUpAkFkkiY1ncBR96t2PTI%7CMCSYNCSOP%7C411-19314%7CvVersion%7C4.6.0; mbox=session#27f2b4d776194ac890c08bce568e0ec9#1668102262|PC#27f2b4d776194ac890c08bce568e0ec9.37_0#1731345202; bm_sv=954F8CEE59ED3B7CD609760D612EE728~YAAQoQVJFytv1VeEAQAAU0CkYhFY94LP0BCkV7y5UggpUqTQEhLj/WJUmY/EmDJDMv8JsN35QUh9t1bLa8ZO6UBEIc5FtF77Tfj6yeFXCari3S2o6PNjSAUJKv0z+SdBNboQNOOUONcgpyEtguzrGCwKeeLCUNY5I7AXS4mf82DL9fAVitWIUJRxQLMzKNaGrrIqKMvFR+fwyxQk+4i1gMy3GoWwF+GZalTpHJlLuFCEsCWlMWMBJq8PJbZtg78BNAyRF1o=~1; _gcl_au=1.1.673889086.1668100401; _tq_id.TV-8181450918-1.e1be=86abe9320f0166bf.1668100401.0.1668100401..; s_vi=[CS]v1|31B6989A896721D6-600000887BFA0850[CE]; s_ecid=MCMID%7C33042062579560787242129122377797597997; _uetsid=fab387e0611a11eda9dab92fb9fdb0c8; _uetvid=fab39b90611a11ed9ee669e5c018eeb2; _fbp=fb.1.1668100402534.1388787247; LPVID=ZkNTEwZjU1Yjk1ZWRkNzY5
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: Apache/2.4.54 (Unix) OpenSSL/1.1.1k Communique/4.3.3
last-modified: Sun, 20 Mar 2022 05:47:16 GMT
accept-ranges: bytes
content-length: 0
x-frame-options: SAMEORIGIN, SAMEORIGIN
referrer-policy: same-origin
x-content-type-options: nosniff
content-type: text/css;charset=utf-8
cache-control: max-age=86400
expires: Fri, 11 Nov 2022 17:44:02 GMT
date: Thu, 10 Nov 2022 17:44:02 GMT
permissions-policy: interest-cohort=()
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.35

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
abc1b6dead712b3905b9b0c0c8b63b56
e63b4c3f61604e313af85d9577866b98f75faa2a
fe7ff7563830e4fd0ab0af0eb929ca26e7a59d6ac147115d127a9585867d139a

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 10 Nov 2022 17:44:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.navyfederal.org/etc.clientlibs/nfo/clientlibs/uife/clientlib-uife-homePage.min.1667712500.css

104.66.116.9

200 OK

6.2 kB

URL HTTP/2
www.navyfederal.org/etc.clientlibs/nfo/clientlibs/uife/clientlib-uife-homePage.min.1667712500.css
IP
104.66.116.9:0
ASN
#16625 AKAMAI-AS

File type
ASCII text, with very long lines (37892), with no line terminators
Size
6.2 kB (6234 bytes)
Hash
1db51a2afd864cbae8f5f12025376745
54e99ce9a14a6fb60aff4dd695113e55caced51e
a9bfae399864375e93642b43b1b0be2e8430f12a1e73ee73c9edc2b82c141f83

HTTP Headers

GET /etc.clientlibs/nfo/clientlibs/uife/clientlib-uife-homePage.min.1667712500.css HTTP/1.1
Host: www.navyfederal.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.navyfederal.org/
Connection: keep-alive
Cookie: _abck=DC80667D0074DA1B3BEF3F54E8921A40~0~YAAQoQVJF8Fa0VeEAQAAnTqIYgi/nj+T4rm31e4sHb7PwvDgqViCOtOD0fiBRFdYqJz0dyA9hJGa4EKA25STY/GpHMVGFfC14EoCo7/tP22D3oHMr+5qp8G9NqHsUnR9yTKnR1gDMzNSabdwOgdWeiR3wmDDs5rdE0m0wQzp8PQTsrURuGjWfWyVuuFEzWEkI579VbdKmXleunDtM/Ey4wOAt5iK/CTF3/Ox6XLe57BJT51t1Kp9a679k5gUjfUPfeeH8XqRQJAWfjqES0NyrJhRBCsqtN2916Y4kNjL0f4762Odoe5Vkt1X2B5+mTKei0UGyrs39M4nJdzzGgojv8WKyQr/lqHy3zLvS+H/XpPCfgOBRc7VprY+7xU+4EZsxrhZvuX/kBO7CdPIxPQKcmhbnBFgYpODAx2Rzc2/~-1~-1~-1; ak_bmsc=CD3D104392607DD4CA7FAC81BDEADF02~000000000000000000000000000000~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; bm_sz=7B5052FB392BE93F5C4C18559FA2BAF5~YAAQoQVJFyRZ0VeEAQAAmjKIYhHpUahXFvdsAaQJmpC1C/Df62CHAJDHM90z1RUp3QYAryRGAWuFC63uafX4GOkO57t7PdFyJs0XxIz5olBO3T9gRurFzQzMLiGaiM7O2AqD14VfNPCCfxbfSR0CGBwnPloUAjk2zoSqL59EY4oA2fSfgNIeU2cpPgd3HyKRc4ce1Ft94xdw4pwO9Bo/no2AgzdZdAouR7qP/2L4sQY9BsHYp+FbYEG2SoEO1s/Dhy/4pHmCti2x4rseqlAZCGfJxDa+2dhblc4CR2cyAMesg9pSn8wYHA==~3683650~3491383; AMCV_9BD537045330573C0A490D44%40AdobeOrg=-408604571%7CMCIDTS%7C19307%7CMCMID%7C33042062579560787242129122377797597997%7CMCAID%7C31B6989A896721D6-600000887BFA0850%7CMCOPTOUT-1668107601s%7CNONE%7CMCAAMLH-1668705201%7C6%7CMCAAMB-1668705201%7Cj8Odv6LonN4r3an7LhD3WZrU1bUpAkFkkiY1ncBR96t2PTI%7CMCSYNCSOP%7C411-19314%7CvVersion%7C4.6.0; mbox=session#27f2b4d776194ac890c08bce568e0ec9#1668102262|PC#27f2b4d776194ac890c08bce568e0ec9.37_0#1731345202; bm_sv=954F8CEE59ED3B7CD609760D612EE728~YAAQoQVJFytv1VeEAQAAU0CkYhFY94LP0BCkV7y5UggpUqTQEhLj/WJUmY/EmDJDMv8JsN35QUh9t1bLa8ZO6UBEIc5FtF77Tfj6yeFXCari3S2o6PNjSAUJKv0z+SdBNboQNOOUONcgpyEtguzrGCwKeeLCUNY5I7AXS4mf82DL9fAVitWIUJRxQLMzKNaGrrIqKMvFR+fwyxQk+4i1gMy3GoWwF+GZalTpHJlLuFCEsCWlMWMBJq8PJbZtg78BNAyRF1o=~1; _gcl_au=1.1.673889086.1668100401; _tq_id.TV-8181450918-1.e1be=86abe9320f0166bf.1668100401.0.1668100401..; s_vi=[CS]v1|31B6989A896721D6-600000887BFA0850[CE]; s_ecid=MCMID%7C33042062579560787242129122377797597997; _uetsid=fab387e0611a11eda9dab92fb9fdb0c8; _uetvid=fab39b90611a11ed9ee669e5c018eeb2; _fbp=fb.1.1668100402534.1388787247; LPVID=ZkNTEwZjU1Yjk1ZWRkNzY5
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: Apache/2.4.54 (Unix) OpenSSL/1.1.1k Communique/4.3.3
last-modified: Sun, 06 Nov 2022 05:32:03 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-frame-options: SAMEORIGIN, SAMEORIGIN
referrer-policy: same-origin
x-content-type-options: nosniff
content-length: 6234
content-type: text/css;charset=utf-8
cache-control: max-age=86400
expires: Fri, 11 Nov 2022 17:44:02 GMT
date: Thu, 10 Nov 2022 17:44:02 GMT
permissions-policy: interest-cohort=()
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2

www.googletagmanager.com/gtag/js?id=DC-9749892

142.250.74.168

200 OK

44 kB

URL HTTP/2
www.googletagmanager.com/gtag/js?id=DC-9749892
IP
142.250.74.168:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (1921)
Size
44 kB (44011 bytes)
Hash
8afa07f8a61257383fc044329bfc076a
d12a4dfc4cf6dec5598d428b58b207ddbf439799
d9a80ba7220208aa31830a0a583bb6b5029e21f5b3a5740820a2c3ffbdacd46c

HTTP Headers

GET /gtag/js?id=DC-9749892 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Thu, 10 Nov 2022 17:44:02 GMT
expires: Thu, 10 Nov 2022 17:44:02 GMT
cache-control: private, max-age=900
last-modified: Thu, 10 Nov 2022 17:04:34 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 44011
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

www.navyfederal.org/etc.clientlibs/nfo/clientlibs/uife/clientlib-uife-basePage.min.1658642005.css

104.66.116.9

200 OK

33 kB

URL HTTP/2
www.navyfederal.org/etc.clientlibs/nfo/clientlibs/uife/clientlib-uife-basePage.min.1658642005.css
IP
104.66.116.9:0
ASN
#16625 AKAMAI-AS

File type
Unicode text, UTF-8 text, with very long lines (57847)
Size
33 kB (32631 bytes)
Hash
af25fd9906c5bbe09f89ab6265a751c2
2c4388f8c7884853c09743a4978f9e81662bc5c5
daf4a65b5e94bc0268d869da11bbfa839a603f137a796ca0190b0f612738fe70

HTTP Headers

GET /etc.clientlibs/nfo/clientlibs/uife/clientlib-uife-basePage.min.1658642005.css HTTP/1.1
Host: www.navyfederal.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.navyfederal.org/
Connection: keep-alive
Cookie: _abck=DC80667D0074DA1B3BEF3F54E8921A40~0~YAAQoQVJF8Fa0VeEAQAAnTqIYgi/nj+T4rm31e4sHb7PwvDgqViCOtOD0fiBRFdYqJz0dyA9hJGa4EKA25STY/GpHMVGFfC14EoCo7/tP22D3oHMr+5qp8G9NqHsUnR9yTKnR1gDMzNSabdwOgdWeiR3wmDDs5rdE0m0wQzp8PQTsrURuGjWfWyVuuFEzWEkI579VbdKmXleunDtM/Ey4wOAt5iK/CTF3/Ox6XLe57BJT51t1Kp9a679k5gUjfUPfeeH8XqRQJAWfjqES0NyrJhRBCsqtN2916Y4kNjL0f4762Odoe5Vkt1X2B5+mTKei0UGyrs39M4nJdzzGgojv8WKyQr/lqHy3zLvS+H/XpPCfgOBRc7VprY+7xU+4EZsxrhZvuX/kBO7CdPIxPQKcmhbnBFgYpODAx2Rzc2/~-1~-1~-1; ak_bmsc=CD3D104392607DD4CA7FAC81BDEADF02~000000000000000000000000000000~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; bm_sz=7B5052FB392BE93F5C4C18559FA2BAF5~YAAQoQVJFyRZ0VeEAQAAmjKIYhHpUahXFvdsAaQJmpC1C/Df62CHAJDHM90z1RUp3QYAryRGAWuFC63uafX4GOkO57t7PdFyJs0XxIz5olBO3T9gRurFzQzMLiGaiM7O2AqD14VfNPCCfxbfSR0CGBwnPloUAjk2zoSqL59EY4oA2fSfgNIeU2cpPgd3HyKRc4ce1Ft94xdw4pwO9Bo/no2AgzdZdAouR7qP/2L4sQY9BsHYp+FbYEG2SoEO1s/Dhy/4pHmCti2x4rseqlAZCGfJxDa+2dhblc4CR2cyAMesg9pSn8wYHA==~3683650~3491383; AMCV_9BD537045330573C0A490D44%40AdobeOrg=-408604571%7CMCIDTS%7C19307%7CMCMID%7C33042062579560787242129122377797597997%7CMCAID%7C31B6989A896721D6-600000887BFA0850%7CMCOPTOUT-1668107601s%7CNONE%7CMCAAMLH-1668705201%7C6%7CMCAAMB-1668705201%7Cj8Odv6LonN4r3an7LhD3WZrU1bUpAkFkkiY1ncBR96t2PTI%7CMCSYNCSOP%7C411-19314%7CvVersion%7C4.6.0; mbox=session#27f2b4d776194ac890c08bce568e0ec9#1668102262|PC#27f2b4d776194ac890c08bce568e0ec9.37_0#1731345202; bm_sv=954F8CEE59ED3B7CD609760D612EE728~YAAQoQVJFytv1VeEAQAAU0CkYhFY94LP0BCkV7y5UggpUqTQEhLj/WJUmY/EmDJDMv8JsN35QUh9t1bLa8ZO6UBEIc5FtF77Tfj6yeFXCari3S2o6PNjSAUJKv0z+SdBNboQNOOUONcgpyEtguzrGCwKeeLCUNY5I7AXS4mf82DL9fAVitWIUJRxQLMzKNaGrrIqKMvFR+fwyxQk+4i1gMy3GoWwF+GZalTpHJlLuFCEsCWlMWMBJq8PJbZtg78BNAyRF1o=~1; _gcl_au=1.1.673889086.1668100401; _tq_id.TV-8181450918-1.e1be=86abe9320f0166bf.1668100401.0.1668100401..; s_vi=[CS]v1|31B6989A896721D6-600000887BFA0850[CE]; s_ecid=MCMID%7C33042062579560787242129122377797597997; _uetsid=fab387e0611a11eda9dab92fb9fdb0c8; _uetvid=fab39b90611a11ed9ee669e5c018eeb2; _fbp=fb.1.1668100402534.1388787247; LPVID=ZkNTEwZjU1Yjk1ZWRkNzY5
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: Apache/2.4.54 (Unix) OpenSSL/1.1.1k Communique/4.3.3
last-modified: Sun, 24 Jul 2022 05:53:25 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-frame-options: SAMEORIGIN, SAMEORIGIN
referrer-policy: same-origin
x-content-type-options: nosniff
content-length: 32631
content-type: text/css;charset=utf-8
cache-control: max-age=86400
expires: Fri, 11 Nov 2022 17:44:02 GMT
date: Thu, 10 Nov 2022 17:44:02 GMT
permissions-policy: interest-cohort=()
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2

www.navyfederal.org/etc.clientlibs/nfculibs/clientlibs/uife/clientlib-uife-nfculibs-site/resources/fonts/font-awesome/fontawesome-webfont.woff2?v=4.7.0

104.66.116.9

200 OK

77 kB

URL HTTP/2
www.navyfederal.org/etc.clientlibs/nfculibs/clientlibs/uife/clientlib-uife-nfculibs-site/resources/fonts/font-awesome/fontawesome-webfont.woff2?v=4.7.0
IP
104.66.116.9:0
ASN
#16625 AKAMAI-AS

File type
Web Open Font Format (Version 2), TrueType, length 77160, version 4.459\012- data
Size
77 kB (77160 bytes)
Hash
af7ae505a9eed503f8b8e6982036873e
d6f48cba7d076fb6f2fd6ba993a75b9dc1ecbf0c
2adefcbc041e7d18fcf2d417879dc5a09997aa64d675b7a3c4b6ce33da13f3fe

HTTP Headers

GET /etc.clientlibs/nfculibs/clientlibs/uife/clientlib-uife-nfculibs-site/resources/fonts/font-awesome/fontawesome-webfont.woff2?v=4.7.0 HTTP/1.1
Host: www.navyfederal.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.navyfederal.org/
Connection: keep-alive
Cookie: _abck=DC80667D0074DA1B3BEF3F54E8921A40~0~YAAQoQVJF8Fa0VeEAQAAnTqIYgi/nj+T4rm31e4sHb7PwvDgqViCOtOD0fiBRFdYqJz0dyA9hJGa4EKA25STY/GpHMVGFfC14EoCo7/tP22D3oHMr+5qp8G9NqHsUnR9yTKnR1gDMzNSabdwOgdWeiR3wmDDs5rdE0m0wQzp8PQTsrURuGjWfWyVuuFEzWEkI579VbdKmXleunDtM/Ey4wOAt5iK/CTF3/Ox6XLe57BJT51t1Kp9a679k5gUjfUPfeeH8XqRQJAWfjqES0NyrJhRBCsqtN2916Y4kNjL0f4762Odoe5Vkt1X2B5+mTKei0UGyrs39M4nJdzzGgojv8WKyQr/lqHy3zLvS+H/XpPCfgOBRc7VprY+7xU+4EZsxrhZvuX/kBO7CdPIxPQKcmhbnBFgYpODAx2Rzc2/~-1~-1~-1; ak_bmsc=CD3D104392607DD4CA7FAC81BDEADF02~000000000000000000000000000000~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; bm_sz=7B5052FB392BE93F5C4C18559FA2BAF5~YAAQoQVJFyRZ0VeEAQAAmjKIYhHpUahXFvdsAaQJmpC1C/Df62CHAJDHM90z1RUp3QYAryRGAWuFC63uafX4GOkO57t7PdFyJs0XxIz5olBO3T9gRurFzQzMLiGaiM7O2AqD14VfNPCCfxbfSR0CGBwnPloUAjk2zoSqL59EY4oA2fSfgNIeU2cpPgd3HyKRc4ce1Ft94xdw4pwO9Bo/no2AgzdZdAouR7qP/2L4sQY9BsHYp+FbYEG2SoEO1s/Dhy/4pHmCti2x4rseqlAZCGfJxDa+2dhblc4CR2cyAMesg9pSn8wYHA==~3683650~3491383; AMCV_9BD537045330573C0A490D44%40AdobeOrg=-408604571%7CMCIDTS%7C19307%7CMCMID%7C33042062579560787242129122377797597997%7CMCAID%7C31B6989A896721D6-600000887BFA0850%7CMCOPTOUT-1668107601s%7CNONE%7CMCAAMLH-1668705201%7C6%7CMCAAMB-1668705201%7Cj8Odv6LonN4r3an7LhD3WZrU1bUpAkFkkiY1ncBR96t2PTI%7CMCSYNCSOP%7C411-19314%7CvVersion%7C4.6.0; mbox=session#27f2b4d776194ac890c08bce568e0ec9#1668102262|PC#27f2b4d776194ac890c08bce568e0ec9.37_0#1731345202; bm_sv=954F8CEE59ED3B7CD609760D612EE728~YAAQoQVJFytv1VeEAQAAU0CkYhFY94LP0BCkV7y5UggpUqTQEhLj/WJUmY/EmDJDMv8JsN35QUh9t1bLa8ZO6UBEIc5FtF77Tfj6yeFXCari3S2o6PNjSAUJKv0z+SdBNboQNOOUONcgpyEtguzrGCwKeeLCUNY5I7AXS4mf82DL9fAVitWIUJRxQLMzKNaGrrIqKMvFR+fwyxQk+4i1gMy3GoWwF+GZalTpHJlLuFCEsCWlMWMBJq8PJbZtg78BNAyRF1o=~1; _gcl_au=1.1.673889086.1668100401; _tq_id.TV-8181450918-1.e1be=86abe9320f0166bf.1668100401.0.1668100401..; s_vi=[CS]v1|31B6989A896721D6-600000887BFA0850[CE]; s_ecid=MCMID%7C33042062579560787242129122377797597997; _uetsid=fab387e0611a11eda9dab92fb9fdb0c8; _uetvid=fab39b90611a11ed9ee669e5c018eeb2; _fbp=fb.1.1668100402534.1388787247; LPVID=ZkNTEwZjU1Yjk1ZWRkNzY5
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: Apache/2.4.54 (Unix) OpenSSL/1.1.1k Communique/4.3.3
x-content-type-options: nosniff
last-modified: Sun, 20 Mar 2022 05:33:10 GMT
content-length: 77160
x-frame-options: SAMEORIGIN, SAMEORIGIN
referrer-policy: same-origin
content-type: application/octet-stream
cache-control: public, max-age=86400
expires: Fri, 11 Nov 2022 17:44:02 GMT
date: Thu, 10 Nov 2022 17:44:02 GMT
permissions-policy: interest-cohort=()
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2

www.navyfederal.org/etc.clientlibs/nfculibs/clientlibs/uife/clientlib-uife-nfculibs-site/resources/fonts/nfcu-icons/nfcu-icons.ttf?vw3v7d

104.66.116.9

200 OK

44 kB

URL HTTP/2
www.navyfederal.org/etc.clientlibs/nfculibs/clientlibs/uife/clientlib-uife-nfculibs-site/resources/fonts/nfcu-icons/nfcu-icons.ttf?vw3v7d
IP
104.66.116.9:0
ASN
#16625 AKAMAI-AS

File type
TrueType Font data, 11 tables, 1st "OS/2", 14 names, Macintosh, type 1 string, nfcu-icons \012- data
Size
44 kB (44041 bytes)
Hash
8a0c3f1780f40a4e1ac1e5d755b2e4dc
6bbf50ba0f4ff3712394f0d60ac015ee8a87463b
43e9b3c51dfc4c1ec685f941b247f87fc84a36fc00b49be45eacc2c423bfa963

HTTP Headers

GET /etc.clientlibs/nfculibs/clientlibs/uife/clientlib-uife-nfculibs-site/resources/fonts/nfcu-icons/nfcu-icons.ttf?vw3v7d HTTP/1.1
Host: www.navyfederal.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.navyfederal.org/
Connection: keep-alive
Cookie: _abck=DC80667D0074DA1B3BEF3F54E8921A40~0~YAAQoQVJF8Fa0VeEAQAAnTqIYgi/nj+T4rm31e4sHb7PwvDgqViCOtOD0fiBRFdYqJz0dyA9hJGa4EKA25STY/GpHMVGFfC14EoCo7/tP22D3oHMr+5qp8G9NqHsUnR9yTKnR1gDMzNSabdwOgdWeiR3wmDDs5rdE0m0wQzp8PQTsrURuGjWfWyVuuFEzWEkI579VbdKmXleunDtM/Ey4wOAt5iK/CTF3/Ox6XLe57BJT51t1Kp9a679k5gUjfUPfeeH8XqRQJAWfjqES0NyrJhRBCsqtN2916Y4kNjL0f4762Odoe5Vkt1X2B5+mTKei0UGyrs39M4nJdzzGgojv8WKyQr/lqHy3zLvS+H/XpPCfgOBRc7VprY+7xU+4EZsxrhZvuX/kBO7CdPIxPQKcmhbnBFgYpODAx2Rzc2/~-1~-1~-1; ak_bmsc=CD3D104392607DD4CA7FAC81BDEADF02~000000000000000000000000000000~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; bm_sz=7B5052FB392BE93F5C4C18559FA2BAF5~YAAQoQVJFyRZ0VeEAQAAmjKIYhHpUahXFvdsAaQJmpC1C/Df62CHAJDHM90z1RUp3QYAryRGAWuFC63uafX4GOkO57t7PdFyJs0XxIz5olBO3T9gRurFzQzMLiGaiM7O2AqD14VfNPCCfxbfSR0CGBwnPloUAjk2zoSqL59EY4oA2fSfgNIeU2cpPgd3HyKRc4ce1Ft94xdw4pwO9Bo/no2AgzdZdAouR7qP/2L4sQY9BsHYp+FbYEG2SoEO1s/Dhy/4pHmCti2x4rseqlAZCGfJxDa+2dhblc4CR2cyAMesg9pSn8wYHA==~3683650~3491383; AMCV_9BD537045330573C0A490D44%40AdobeOrg=-408604571%7CMCIDTS%7C19307%7CMCMID%7C33042062579560787242129122377797597997%7CMCAID%7C31B6989A896721D6-600000887BFA0850%7CMCOPTOUT-1668107601s%7CNONE%7CMCAAMLH-1668705201%7C6%7CMCAAMB-1668705201%7Cj8Odv6LonN4r3an7LhD3WZrU1bUpAkFkkiY1ncBR96t2PTI%7CMCSYNCSOP%7C411-19314%7CvVersion%7C4.6.0; mbox=session#27f2b4d776194ac890c08bce568e0ec9#1668102262|PC#27f2b4d776194ac890c08bce568e0ec9.37_0#1731345202; bm_sv=954F8CEE59ED3B7CD609760D612EE728~YAAQoQVJFytv1VeEAQAAU0CkYhFY94LP0BCkV7y5UggpUqTQEhLj/WJUmY/EmDJDMv8JsN35QUh9t1bLa8ZO6UBEIc5FtF77Tfj6yeFXCari3S2o6PNjSAUJKv0z+SdBNboQNOOUONcgpyEtguzrGCwKeeLCUNY5I7AXS4mf82DL9fAVitWIUJRxQLMzKNaGrrIqKMvFR+fwyxQk+4i1gMy3GoWwF+GZalTpHJlLuFCEsCWlMWMBJq8PJbZtg78BNAyRF1o=~1; _gcl_au=1.1.673889086.1668100401; _tq_id.TV-8181450918-1.e1be=86abe9320f0166bf.1668100401.0.1668100401..; s_vi=[CS]v1|31B6989A896721D6-600000887BFA0850[CE]; s_ecid=MCMID%7C33042062579560787242129122377797597997; _uetsid=fab387e0611a11eda9dab92fb9fdb0c8; _uetvid=fab39b90611a11ed9ee669e5c018eeb2; _fbp=fb.1.1668100402534.1388787247; LPVID=ZkNTEwZjU1Yjk1ZWRkNzY5
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: Apache/2.4.54 (Unix) OpenSSL/1.1.1k Communique/4.3.3
x-content-type-options: nosniff
last-modified: Sun, 20 Mar 2022 05:33:10 GMT
vary: Accept-Encoding
content-encoding: gzip
x-frame-options: SAMEORIGIN, SAMEORIGIN
referrer-policy: same-origin
content-type: application/x-font-ttf
content-length: 44041
cache-control: public, max-age=86400
expires: Fri, 11 Nov 2022 17:44:02 GMT
date: Thu, 10 Nov 2022 17:44:02 GMT
permissions-policy: interest-cohort=()
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2

www.navyfederal.org/content/dam/icons/single-tone/blue/global-rates-bar-mortgages.svg

104.66.116.9

200 OK

555 B

URL HTTP/2
www.navyfederal.org/content/dam/icons/single-tone/blue/global-rates-bar-mortgages.svg
IP
104.66.116.9:0
ASN
#16625 AKAMAI-AS

File type
SVG Scalable Vector Graphics image\012- HTML document text\012- HTML document, ASCII text, with very long lines (1167), with no line terminators
Size
555 B (555 bytes)
Hash
e896f04f5baf86edbbfa5e296128da33
c01eec33eb2bdaf2c34c01005730e7ccccf2651c
a1504ed5e50d53d06a050ca5db18c692116145f1d96ff62f7b3c9548647ae70a

HTTP Headers

GET /content/dam/icons/single-tone/blue/global-rates-bar-mortgages.svg HTTP/1.1
Host: www.navyfederal.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.navyfederal.org/
Connection: keep-alive
Cookie: _abck=DC80667D0074DA1B3BEF3F54E8921A40~0~YAAQoQVJF8Fa0VeEAQAAnTqIYgi/nj+T4rm31e4sHb7PwvDgqViCOtOD0fiBRFdYqJz0dyA9hJGa4EKA25STY/GpHMVGFfC14EoCo7/tP22D3oHMr+5qp8G9NqHsUnR9yTKnR1gDMzNSabdwOgdWeiR3wmDDs5rdE0m0wQzp8PQTsrURuGjWfWyVuuFEzWEkI579VbdKmXleunDtM/Ey4wOAt5iK/CTF3/Ox6XLe57BJT51t1Kp9a679k5gUjfUPfeeH8XqRQJAWfjqES0NyrJhRBCsqtN2916Y4kNjL0f4762Odoe5Vkt1X2B5+mTKei0UGyrs39M4nJdzzGgojv8WKyQr/lqHy3zLvS+H/XpPCfgOBRc7VprY+7xU+4EZsxrhZvuX/kBO7CdPIxPQKcmhbnBFgYpODAx2Rzc2/~-1~-1~-1; ak_bmsc=CD3D104392607DD4CA7FAC81BDEADF02~000000000000000000000000000000~YAAQoQVJFy5a0VeEAQAA6zeIYhGGIYw4yKNy7uZPTNAMli+81ot0IGUszqrRkYrQnoVWvmTSwFwTz7PQ2Af93ROgb9XNe+wbRdu9LzmQ+NE2dOvP0DPsZiOtNyP5MEtkBjjE4v59wX2G8WWiBp+iT+ROOkHB4Upwpt8lzTMpOvmaxMgT5yv+Nogfd5oLokD0KjDMB7DJlXsSXQhd7jylrU7I58lcz2JdUNTQT528hNH9/iNsqCxYa/Y9GX9mk9T6bzVfKs2ERj7Qu1t9J85cbdUXlpVExtICrsh7nKC/rILmbq8IP9zmX0Zh9cwTXW53i4K+gNQHOeVYSHuRdHYAze04EYxWlGfVR/GbIH32O3I/qjGVvBKdpY6eydP7m6KTjetu1dFRkfinak3XDzEVyj5GXpB7X7MktQiFrm0batseCDQkiKxk6m9aHjnmzHIzGp1ZdhQf30G1r+eC02BsRgnI2QskJSBmCwi7uN3FzDnWwVU+Y8xC1I9jhqVWFg==; bm_sz=7B5052FB392BE93F5C4C18559FA2BAF5~YAAQoQVJFyRZ0VeEAQAAmjKIYhHpUahXFvdsAaQJmpC1C/Df62CHAJDHM90z1RUp3QYAryRGAWuFC63uafX4GOkO57t7PdFyJs0XxIz5olBO3T9gRurFzQzMLiGaiM7O2AqD14VfNPCCfxbfSR0CGBwnPloUAjk2zoSqL59EY4oA2fSfgNIeU2cpPgd3HyKRc4ce1Ft94xdw4pwO9Bo/no2AgzdZdAouR7qP/2L4sQY9BsHYp+FbYEG2SoEO1s/Dhy/4pHmCti2x4rseqlAZCGfJxDa+2dhblc4CR2cyAMesg9pSn8wYHA==~3683650~3491383; AMCV_9BD537045330573C0A490D44%40AdobeOrg=-408604571%7CMCIDTS%7C19307%7CMCMID%7C33042062579560787242129122377797597997%7CMCAID%7C31B6989A896721D6-600000887BFA0850%7CMCOPTOUT-1668107601s%7CNONE%7CMCAAMLH-1668705201%7C6%7CMCAAMB-1668705201%7Cj8Odv6LonN4r3an7LhD3WZrU1bUpAkFkkiY1ncBR96t2PTI%7CMCSYNCSOP%7C411-19314%7CvVersion%7C4.6.0; mbox=session#27f2b4d776194ac890c08bce568e0ec9#1668102262|PC#27f2b4d776194ac890c08bce568e0ec9.37_0#1731345202; bm_sv=954F8CEE59ED3B7CD609760D612EE728~YAAQoQVJFytv1VeEAQAAU0CkYhFY94LP0BCkV7y5UggpUqTQEhLj/WJUmY/EmDJDMv8JsN35QUh9t1bLa8ZO6UBEIc5FtF77Tfj6yeFXCari3S2o6PNjSAUJKv0z+SdBNboQNOOUONcgpyEtguzrGCwKeeLCUNY5I7AXS4mf82DL9fAVitWIUJRxQLMzKNaGrrIqKMvFR+fwyxQk+4i1gMy3GoWwF+GZalTpHJlLuFCEsCWlMWMBJq8PJbZtg78BNAyRF1o=~1; _gcl_au=1.1.673889086.1668100401; _tq_id.TV-8181450918-1.e1be=86abe9320f0166bf.1668100401.0.1668100401..; s_vi=[CS]v1|31B6989A896721D6-600000887BFA0850[CE]; s_ecid=MCMID%7C33042062579560787242129122377797597997; _uetsid=fab387e0611a11eda9dab92fb9fdb0c8; _uetvid=fab39b90611a11ed9ee669e5c018eeb2; _fbp=fb.1.1668100402534.1388787247; LPVID=ZkNTEwZjU1Yjk1ZWRkNzY5
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: Apache/2.4.54 (Unix) OpenSSL/1.1.1k Communique/4.3.3
last-modified: Tue, 22 Sep 2020 11:51:55 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-frame-options: SAMEORIGIN, SAMEORIGIN
referrer-policy: same-origin
x-content-type-options: nosniff
content-length: 555
content-type: image/svg+xml
cache-control: max-age=86400
expires: Fri, 11 Nov 2022 17:44:02 GMT
date: Thu, 10 Nov 2022 17:44:02 GMT
permissions-policy: interest-cohort=()
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2

www.navyfederal.org/content/dam/icons/single-tone/blue/global-rates-bar-auto.svg

104.66.116.9

200 OK

732 B

URL HTTP/2
www.navyfederal.org/content/dam/icons/single-tone/blue/global-rates-bar-auto.svg
IP
104.66.116.9:0
ASN
#16625 AKAMAI-AS

File type
SVG Scalable Vector Graphics image\012- HTML document text\012- HTML document, ASCII text, with very long lines (1396), with no line terminators
Size
732 B (732 bytes)
Hash
6a2b6841b9b0833d7d84b06d9fdccc28
ae727167c193860c51ba8177cfc1da65057f5276
51ac1d6c98407669f0242fa735712e4a70de03825b2c16e73382833a88d55e9f

HTTP Headers

GET /content/dam/icons/single-tone/blue/global-rates-bar-auto.svg HTTP/1.1
Host: www.navyfederal.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.navyfederal.org/
Connection: keep-alive
Cookie: _abck=DC80667D0074DA1B3BEF3F54E8921A40~0~YAAQoQVJF8Fa0VeEAQAAnTqIYgi/nj+T4rm31e4sHb7PwvDgqViCOtOD0fiBRFdYqJz0dyA9hJGa4EKA25STY/GpHMVGFfC14EoCo7/tP22D3oHMr+5qp8G9NqHsUnR9yTKnR1gDMzNSabdwOgdWeiR3wmDDs5rdE0m0wQzp8PQTsrURuGjWfWyVuuFEzWEkI579VbdKmXleunDtM/Ey4wOAt5iK/CTF3/Ox6XLe57BJT51t1Kp9a679k5gUjfUPfeeH8XqRQJAWfjqES0NyrJhRBCsqtN2916Y4kNjL0f4762Odoe5Vkt1X2B5+mTKei0UGyrs39M4nJdzzGgojv8WKyQr/lqHy3zLvS+H/XpPCfgOBRc7VprY+7xU+4EZsxrhZvuX/kBO7CdPIxPQKcmhbnBFgYpODAx2Rzc2/~-1~-1~-1; ak_bmsc=CD3D104392607DD4CA7FAC81BDEADF02~000000000000000000000000000000~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; bm_sz=7B5052FB392BE93F5C4C18559FA2BAF5~YAAQoQVJFyRZ0VeEAQAAmjKIYhHpUahXFvdsAaQJmpC1C/Df62CHAJDHM90z1RUp3QYAryRGAWuFC63uafX4GOkO57t7PdFyJs0XxIz5olBO3T9gRurFzQzMLiGaiM7O2AqD14VfNPCCfxbfSR0CGBwnPloUAjk2zoSqL59EY4oA2fSfgNIeU2cpPgd3HyKRc4ce1Ft94xdw4pwO9Bo/no2AgzdZdAouR7qP/2L4sQY9BsHYp+FbYEG2SoEO1s/Dhy/4pHmCti2x4rseqlAZCGfJxDa+2dhblc4CR2cyAMesg9pSn8wYHA==~3683650~3491383; AMCV_9BD537045330573C0A490D44%40AdobeOrg=-408604571%7CMCIDTS%7C19307%7CMCMID%7C33042062579560787242129122377797597997%7CMCAID%7C31B6989A896721D6-600000887BFA0850%7CMCOPTOUT-1668107601s%7CNONE%7CMCAAMLH-1668705201%7C6%7CMCAAMB-1668705201%7Cj8Odv6LonN4r3an7LhD3WZrU1bUpAkFkkiY1ncBR96t2PTI%7CMCSYNCSOP%7C411-19314%7CvVersion%7C4.6.0; mbox=session#27f2b4d776194ac890c08bce568e0ec9#1668102262|PC#27f2b4d776194ac890c08bce568e0ec9.37_0#1731345202; bm_sv=954F8CEE59ED3B7CD609760D612EE728~YAAQoQVJFytv1VeEAQAAU0CkYhFY94LP0BCkV7y5UggpUqTQEhLj/WJUmY/EmDJDMv8JsN35QUh9t1bLa8ZO6UBEIc5FtF77Tfj6yeFXCari3S2o6PNjSAUJKv0z+SdBNboQNOOUONcgpyEtguzrGCwKeeLCUNY5I7AXS4mf82DL9fAVitWIUJRxQLMzKNaGrrIqKMvFR+fwyxQk+4i1gMy3GoWwF+GZalTpHJlLuFCEsCWlMWMBJq8PJbZtg78BNAyRF1o=~1; _gcl_au=1.1.673889086.1668100401; _tq_id.TV-8181450918-1.e1be=86abe9320f0166bf.1668100401.0.1668100401..; s_vi=[CS]v1|31B6989A896721D6-600000887BFA0850[CE]; s_ecid=MCMID%7C33042062579560787242129122377797597997; _uetsid=fab387e0611a11eda9dab92fb9fdb0c8; _uetvid=fab39b90611a11ed9ee669e5c018eeb2; _fbp=fb.1.1668100402534.1388787247; LPVID=ZkNTEwZjU1Yjk1ZWRkNzY5
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: Apache/2.4.54 (Unix) OpenSSL/1.1.1k Communique/4.3.3
last-modified: Tue, 22 Sep 2020 11:48:20 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-frame-options: SAMEORIGIN, SAMEORIGIN
referrer-policy: same-origin
x-content-type-options: nosniff
content-length: 732
content-type: image/svg+xml
cache-control: max-age=86400
expires: Fri, 11 Nov 2022 17:44:02 GMT
date: Thu, 10 Nov 2022 17:44:02 GMT
permissions-policy: interest-cohort=()
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2

www.navyfederal.org/etc.clientlibs/nfculibs/clientlibs/uife/clientlib-uife-nfculibs-site/resources/fonts/source-sans/source-sans-pro-v9-latin-300.woff2

104.66.116.9

200 OK

471 B

URL HTTP/2
www.navyfederal.org/etc.clientlibs/nfculibs/clientlibs/uife/clientlib-uife-nfculibs-site/resources/fonts/source-sans/source-sans-pro-v9-latin-300.woff2
IP
104.66.116.9:0
ASN
#16625 AKAMAI-AS

File type
data
Size
471 B (471 bytes)
Hash
abc1b6dead712b3905b9b0c0c8b63b56
e63b4c3f61604e313af85d9577866b98f75faa2a
fe7ff7563830e4fd0ab0af0eb929ca26e7a59d6ac147115d127a9585867d139a

HTTP Headers

GET /etc.clientlibs/nfculibs/clientlibs/uife/clientlib-uife-nfculibs-site/resources/fonts/source-sans/source-sans-pro-v9-latin-300.woff2 HTTP/1.1
Host: www.navyfederal.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.navyfederal.org/
Connection: keep-alive
Cookie: _abck=DC80667D0074DA1B3BEF3F54E8921A40~0~YAAQoQVJF8Fa0VeEAQAAnTqIYgi/nj+T4rm31e4sHb7PwvDgqViCOtOD0fiBRFdYqJz0dyA9hJGa4EKA25STY/GpHMVGFfC14EoCo7/tP22D3oHMr+5qp8G9NqHsUnR9yTKnR1gDMzNSabdwOgdWeiR3wmDDs5rdE0m0wQzp8PQTsrURuGjWfWyVuuFEzWEkI579VbdKmXleunDtM/Ey4wOAt5iK/CTF3/Ox6XLe57BJT51t1Kp9a679k5gUjfUPfeeH8XqRQJAWfjqES0NyrJhRBCsqtN2916Y4kNjL0f4762Odoe5Vkt1X2B5+mTKei0UGyrs39M4nJdzzGgojv8WKyQr/lqHy3zLvS+H/XpPCfgOBRc7VprY+7xU+4EZsxrhZvuX/kBO7CdPIxPQKcmhbnBFgYpODAx2Rzc2/~-1~-1~-1; ak_bmsc=CD3D104392607DD4CA7FAC81BDEADF02~000000000000000000000000000000~YAAQoQVJFy5a0VeEAQAA6zeIYhGGIYw4yKNy7uZPTNAMli+81ot0IGUszqrRkYrQnoVWvmTSwFwTz7PQ2Af93ROgb9XNe+wbRdu9LzmQ+NE2dOvP0DPsZiOtNyP5MEtkBjjE4v59wX2G8WWiBp+iT+ROOkHB4Upwpt8lzTMpOvmaxMgT5yv+Nogfd5oLokD0KjDMB7DJlXsSXQhd7jylrU7I58lcz2JdUNTQT528hNH9/iNsqCxYa/Y9GX9mk9T6bzVfKs2ERj7Qu1t9J85cbdUXlpVExtICrsh7nKC/rILmbq8IP9zmX0Zh9cwTXW53i4K+gNQHOeVYSHuRdHYAze04EYxWlGfVR/GbIH32O3I/qjGVvBKdpY6eydP7m6KTjetu1dFRkfinak3XDzEVyj5GXpB7X7MktQiFrm0batseCDQkiKxk6m9aHjnmzHIzGp1ZdhQf30G1r+eC02BsRgnI2QskJSBmCwi7uN3FzDnWwVU+Y8xC1I9jhqVWFg==; bm_sz=7B5052FB392BE93F5C4C18559FA2BAF5~YAAQoQVJFyRZ0VeEAQAAmjKIYhHpUahXFvdsAaQJmpC1C/Df62CHAJDHM90z1RUp3QYAryRGAWuFC63uafX4GOkO57t7PdFyJs0XxIz5olBO3T9gRurFzQzMLiGaiM7O2AqD14VfNPCCfxbfSR0CGBwnPloUAjk2zoSqL59EY4oA2fSfgNIeU2cpPgd3HyKRc4ce1Ft94xdw4pwO9Bo/no2AgzdZdAouR7qP/2L4sQY9BsHYp+FbYEG2SoEO1s/Dhy/4pHmCti2x4rseqlAZCGfJxDa+2dhblc4CR2cyAMesg9pSn8wYHA==~3683650~3491383; AMCV_9BD537045330573C0A490D44%40AdobeOrg=-408604571%7CMCIDTS%7C19307%7CMCMID%7C33042062579560787242129122377797597997%7CMCAID%7C31B6989A896721D6-600000887BFA0850%7CMCOPTOUT-1668107601s%7CNONE%7CMCAAMLH-1668705201%7C6%7CMCAAMB-1668705201%7Cj8Odv6LonN4r3an7LhD3WZrU1bUpAkFkkiY1ncBR96t2PTI%7CMCSYNCSOP%7C411-19314%7CvVersion%7C4.6.0; mbox=session#27f2b4d776194ac890c08bce568e0ec9#1668102262|PC#27f2b4d776194ac890c08bce568e0ec9.37_0#1731345202; bm_sv=954F8CEE59ED3B7CD609760D612EE728~YAAQoQVJFytv1VeEAQAAU0CkYhFY94LP0BCkV7y5UggpUqTQEhLj/WJUmY/EmDJDMv8JsN35QUh9t1bLa8ZO6UBEIc5FtF77Tfj6yeFXCari3S2o6PNjSAUJKv0z+SdBNboQNOOUONcgpyEtguzrGCwKeeLCUNY5I7AXS4mf82DL9fAVitWIUJRxQLMzKNaGrrIqKMvFR+fwyxQk+4i1gMy3GoWwF+GZalTpHJlLuFCEsCWlMWMBJq8PJbZtg78BNAyRF1o=~1; _gcl_au=1.1.673889086.1668100401; _tq_id.TV-8181450918-1.e1be=86abe9320f0166bf.1668100401.0.1668100401..; s_vi=[CS]v1|31B6989A896721D6-600000887BFA0850[CE]; s_ecid=MCMID%7C33042062579560787242129122377797597997; _uetsid=fab387e0611a11eda9dab92fb9fdb0c8; _uetvid=fab39b90611a11ed9ee669e5c018eeb2; _fbp=fb.1.1668100402534.1388787247; LPVID=ZkNTEwZjU1Yjk1ZWRkNzY5
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: Apache/2.4.54 (Unix) OpenSSL/1.1.1k Communique/4.3.3
last-modified: Sun, 20 Mar 2022 05:33:10 GMT
accept-ranges: bytes
content-length: 14308
x-frame-options: SAMEORIGIN, SAMEORIGIN
referrer-policy: same-origin
x-content-type-options: nosniff
content-type: application/octet-stream
cache-control: public, max-age=86400
expires: Fri, 11 Nov 2022 17:44:02 GMT
date: Thu, 10 Nov 2022 17:44:02 GMT
permissions-policy: interest-cohort=()
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2

www.navyfederal.org/etc.clientlibs/nfculibs/clientlibs/uife/clientlib-uife-nfculibs-site/resources/fonts/nfcu-icons/nfcu-icons.woff?vw3v7d

104.66.116.9

200 OK

82 kB

URL HTTP/2
www.navyfederal.org/etc.clientlibs/nfculibs/clientlibs/uife/clientlib-uife-nfculibs-site/resources/fonts/nfcu-icons/nfcu-icons.woff?vw3v7d
IP
104.66.116.9:0
ASN
#16625 AKAMAI-AS

File type
Web Open Font Format, TrueType, length 82048, version 1.0\012- data
Size
82 kB (82048 bytes)
Hash
26c884b9e5c56db40d45d3e5e2e32f88
c9ae88582f087df6ad2e0e01aea6a13212061dd7
1fa934880a173f877c7e90f95fca2ade66544e05daa88707d0866b6f903a9c05

HTTP Headers

GET /etc.clientlibs/nfculibs/clientlibs/uife/clientlib-uife-nfculibs-site/resources/fonts/nfcu-icons/nfcu-icons.woff?vw3v7d HTTP/1.1
Host: www.navyfederal.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.navyfederal.org/
Connection: keep-alive
Cookie: _abck=DC80667D0074DA1B3BEF3F54E8921A40~0~YAAQoQVJF8Fa0VeEAQAAnTqIYgi/nj+T4rm31e4sHb7PwvDgqViCOtOD0fiBRFdYqJz0dyA9hJGa4EKA25STY/GpHMVGFfC14EoCo7/tP22D3oHMr+5qp8G9NqHsUnR9yTKnR1gDMzNSabdwOgdWeiR3wmDDs5rdE0m0wQzp8PQTsrURuGjWfWyVuuFEzWEkI579VbdKmXleunDtM/Ey4wOAt5iK/CTF3/Ox6XLe57BJT51t1Kp9a679k5gUjfUPfeeH8XqRQJAWfjqES0NyrJhRBCsqtN2916Y4kNjL0f4762Odoe5Vkt1X2B5+mTKei0UGyrs39M4nJdzzGgojv8WKyQr/lqHy3zLvS+H/XpPCfgOBRc7VprY+7xU+4EZsxrhZvuX/kBO7CdPIxPQKcmhbnBFgYpODAx2Rzc2/~-1~-1~-1; ak_bmsc=CD3D104392607DD4CA7FAC81BDEADF02~000000000000000000000000000000~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; bm_sz=7B5052FB392BE93F5C4C18559FA2BAF5~YAAQoQVJFyRZ0VeEAQAAmjKIYhHpUahXFvdsAaQJmpC1C/Df62CHAJDHM90z1RUp3QYAryRGAWuFC63uafX4GOkO57t7PdFyJs0XxIz5olBO3T9gRurFzQzMLiGaiM7O2AqD14VfNPCCfxbfSR0CGBwnPloUAjk2zoSqL59EY4oA2fSfgNIeU2cpPgd3HyKRc4ce1Ft94xdw4pwO9Bo/no2AgzdZdAouR7qP/2L4sQY9BsHYp+FbYEG2SoEO1s/Dhy/4pHmCti2x4rseqlAZCGfJxDa+2dhblc4CR2cyAMesg9pSn8wYHA==~3683650~3491383; AMCV_9BD537045330573C0A490D44%40AdobeOrg=-408604571%7CMCIDTS%7C19307%7CMCMID%7C33042062579560787242129122377797597997%7CMCAID%7C31B6989A896721D6-600000887BFA0850%7CMCOPTOUT-1668107601s%7CNONE%7CMCAAMLH-1668705201%7C6%7CMCAAMB-1668705201%7Cj8Odv6LonN4r3an7LhD3WZrU1bUpAkFkkiY1ncBR96t2PTI%7CMCSYNCSOP%7C411-19314%7CvVersion%7C4.6.0; mbox=session#27f2b4d776194ac890c08bce568e0ec9#1668102262|PC#27f2b4d776194ac890c08bce568e0ec9.37_0#1731345202; bm_sv=954F8CEE59ED3B7CD609760D612EE728~YAAQoQVJFytv1VeEAQAAU0CkYhFY94LP0BCkV7y5UggpUqTQEhLj/WJUmY/EmDJDMv8JsN35QUh9t1bLa8ZO6UBEIc5FtF77Tfj6yeFXCari3S2o6PNjSAUJKv0z+SdBNboQNOOUONcgpyEtguzrGCwKeeLCUNY5I7AXS4mf82DL9fAVitWIUJRxQLMzKNaGrrIqKMvFR+fwyxQk+4i1gMy3GoWwF+GZalTpHJlLuFCEsCWlMWMBJq8PJbZtg78BNAyRF1o=~1; _gcl_au=1.1.673889086.1668100401; _tq_id.TV-8181450918-1.e1be=86abe9320f0166bf.1668100401.0.1668100401..; s_vi=[CS]v1|31B6989A896721D6-600000887BFA0850[CE]; s_ecid=MCMID%7C33042062579560787242129122377797597997; _uetsid=fab387e0611a11eda9dab92fb9fdb0c8; _uetvid=fab39b90611a11ed9ee669e5c018eeb2; _fbp=fb.1.1668100402534.1388787247; LPVID=ZkNTEwZjU1Yjk1ZWRkNzY5
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: Apache/2.4.54 (Unix) OpenSSL/1.1.1k Communique/4.3.3
x-content-type-options: nosniff
last-modified: Sun, 20 Mar 2022 05:33:10 GMT
content-length: 82048
x-frame-options: SAMEORIGIN, SAMEORIGIN
referrer-policy: same-origin
content-type: application/x-font-woff
cache-control: public, max-age=86400
expires: Fri, 11 Nov 2022 17:44:02 GMT
date: Thu, 10 Nov 2022 17:44:02 GMT
permissions-policy: interest-cohort=()
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2

www.navyfederal.org/content/dam/icons/single-tone/blue/global-rates-bar-certificates.svg

104.66.116.9

200 OK

583 B

URL HTTP/2
www.navyfederal.org/content/dam/icons/single-tone/blue/global-rates-bar-certificates.svg
IP
104.66.116.9:0
ASN
#16625 AKAMAI-AS

File type
SVG Scalable Vector Graphics image\012- HTML document text\012- HTML document, ASCII text, with very long lines (1089), with no line terminators
Size
583 B (583 bytes)
Hash
f56d8209f495a9e3536fa06453823328
d496449f0c227d3fc92425e77dc2da6f1b75fbd4
57fe45f90760d626d281d30941b22145eb2175e61bc214d8cf242e4d721d21f9

HTTP Headers

GET /content/dam/icons/single-tone/blue/global-rates-bar-certificates.svg HTTP/1.1
Host: www.navyfederal.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.navyfederal.org/
Connection: keep-alive
Cookie: _abck=DC80667D0074DA1B3BEF3F54E8921A40~0~YAAQoQVJF8Fa0VeEAQAAnTqIYgi/nj+T4rm31e4sHb7PwvDgqViCOtOD0fiBRFdYqJz0dyA9hJGa4EKA25STY/GpHMVGFfC14EoCo7/tP22D3oHMr+5qp8G9NqHsUnR9yTKnR1gDMzNSabdwOgdWeiR3wmDDs5rdE0m0wQzp8PQTsrURuGjWfWyVuuFEzWEkI579VbdKmXleunDtM/Ey4wOAt5iK/CTF3/Ox6XLe57BJT51t1Kp9a679k5gUjfUPfeeH8XqRQJAWfjqES0NyrJhRBCsqtN2916Y4kNjL0f4762Odoe5Vkt1X2B5+mTKei0UGyrs39M4nJdzzGgojv8WKyQr/lqHy3zLvS+H/XpPCfgOBRc7VprY+7xU+4EZsxrhZvuX/kBO7CdPIxPQKcmhbnBFgYpODAx2Rzc2/~-1~-1~-1; ak_bmsc=CD3D104392607DD4CA7FAC81BDEADF02~000000000000000000000000000000~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; bm_sz=7B5052FB392BE93F5C4C18559FA2BAF5~YAAQoQVJFyRZ0VeEAQAAmjKIYhHpUahXFvdsAaQJmpC1C/Df62CHAJDHM90z1RUp3QYAryRGAWuFC63uafX4GOkO57t7PdFyJs0XxIz5olBO3T9gRurFzQzMLiGaiM7O2AqD14VfNPCCfxbfSR0CGBwnPloUAjk2zoSqL59EY4oA2fSfgNIeU2cpPgd3HyKRc4ce1Ft94xdw4pwO9Bo/no2AgzdZdAouR7qP/2L4sQY9BsHYp+FbYEG2SoEO1s/Dhy/4pHmCti2x4rseqlAZCGfJxDa+2dhblc4CR2cyAMesg9pSn8wYHA==~3683650~3491383; AMCV_9BD537045330573C0A490D44%40AdobeOrg=-408604571%7CMCIDTS%7C19307%7CMCMID%7C33042062579560787242129122377797597997%7CMCAID%7C31B6989A896721D6-600000887BFA0850%7CMCOPTOUT-1668107601s%7CNONE%7CMCAAMLH-1668705201%7C6%7CMCAAMB-1668705201%7Cj8Odv6LonN4r3an7LhD3WZrU1bUpAkFkkiY1ncBR96t2PTI%7CMCSYNCSOP%7C411-19314%7CvVersion%7C4.6.0; mbox=session#27f2b4d776194ac890c08bce568e0ec9#1668102262|PC#27f2b4d776194ac890c08bce568e0ec9.37_0#1731345202; bm_sv=954F8CEE59ED3B7CD609760D612EE728~YAAQoQVJFytv1VeEAQAAU0CkYhFY94LP0BCkV7y5UggpUqTQEhLj/WJUmY/EmDJDMv8JsN35QUh9t1bLa8ZO6UBEIc5FtF77Tfj6yeFXCari3S2o6PNjSAUJKv0z+SdBNboQNOOUONcgpyEtguzrGCwKeeLCUNY5I7AXS4mf82DL9fAVitWIUJRxQLMzKNaGrrIqKMvFR+fwyxQk+4i1gMy3GoWwF+GZalTpHJlLuFCEsCWlMWMBJq8PJbZtg78BNAyRF1o=~1; _gcl_au=1.1.673889086.1668100401; _tq_id.TV-8181450918-1.e1be=86abe9320f0166bf.1668100401.0.1668100401..; s_vi=[CS]v1|31B6989A896721D6-600000887BFA0850[CE]; s_ecid=MCMID%7C33042062579560787242129122377797597997; _uetsid=fab387e0611a11eda9dab92fb9fdb0c8; _uetvid=fab39b90611a11ed9ee669e5c018eeb2; _fbp=fb.1.1668100402534.1388787247; LPVID=ZkNTEwZjU1Yjk1ZWRkNzY5
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: Apache/2.4.54 (Unix) OpenSSL/1.1.1k Communique/4.3.3
last-modified: Tue, 22 Sep 2020 11:51:54 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-frame-options: SAMEORIGIN, SAMEORIGIN
referrer-policy: same-origin
x-content-type-options: nosniff
content-length: 583
content-type: image/svg+xml
cache-control: max-age=86400
expires: Fri, 11 Nov 2022 17:44:02 GMT
date: Thu, 10 Nov 2022 17:44:02 GMT
permissions-policy: interest-cohort=()
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2

www.navyfederal.org/content/dam/icons/single-tone/blue/global-rates-bar-creditcards.svg

104.66.116.9

200 OK

479 B

URL HTTP/2
www.navyfederal.org/content/dam/icons/single-tone/blue/global-rates-bar-creditcards.svg
IP
104.66.116.9:0
ASN
#16625 AKAMAI-AS

File type
SVG Scalable Vector Graphics image\012- HTML document text\012- HTML document, ASCII text, with very long lines (860), with no line terminators
Size
479 B (479 bytes)
Hash
4b085ffdb2546292db0821c35eadf3b8
1674278f5ed2397c4cf293ca8c13ad781ea0ade1
16b7b4f37d486577d2a0bb38afa70c30b1ebb0fbc089073d780062de973ab395

HTTP Headers

GET /content/dam/icons/single-tone/blue/global-rates-bar-creditcards.svg HTTP/1.1
Host: www.navyfederal.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.navyfederal.org/
Connection: keep-alive
Cookie: _abck=DC80667D0074DA1B3BEF3F54E8921A40~0~YAAQoQVJF8Fa0VeEAQAAnTqIYgi/nj+T4rm31e4sHb7PwvDgqViCOtOD0fiBRFdYqJz0dyA9hJGa4EKA25STY/GpHMVGFfC14EoCo7/tP22D3oHMr+5qp8G9NqHsUnR9yTKnR1gDMzNSabdwOgdWeiR3wmDDs5rdE0m0wQzp8PQTsrURuGjWfWyVuuFEzWEkI579VbdKmXleunDtM/Ey4wOAt5iK/CTF3/Ox6XLe57BJT51t1Kp9a679k5gUjfUPfeeH8XqRQJAWfjqES0NyrJhRBCsqtN2916Y4kNjL0f4762Odoe5Vkt1X2B5+mTKei0UGyrs39M4nJdzzGgojv8WKyQr/lqHy3zLvS+H/XpPCfgOBRc7VprY+7xU+4EZsxrhZvuX/kBO7CdPIxPQKcmhbnBFgYpODAx2Rzc2/~-1~-1~-1; ak_bmsc=CD3D104392607DD4CA7FAC81BDEADF02~000000000000000000000000000000~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; bm_sz=7B5052FB392BE93F5C4C18559FA2BAF5~YAAQoQVJFyRZ0VeEAQAAmjKIYhHpUahXFvdsAaQJmpC1C/Df62CHAJDHM90z1RUp3QYAryRGAWuFC63uafX4GOkO57t7PdFyJs0XxIz5olBO3T9gRurFzQzMLiGaiM7O2AqD14VfNPCCfxbfSR0CGBwnPloUAjk2zoSqL59EY4oA2fSfgNIeU2cpPgd3HyKRc4ce1Ft94xdw4pwO9Bo/no2AgzdZdAouR7qP/2L4sQY9BsHYp+FbYEG2SoEO1s/Dhy/4pHmCti2x4rseqlAZCGfJxDa+2dhblc4CR2cyAMesg9pSn8wYHA==~3683650~3491383; AMCV_9BD537045330573C0A490D44%40AdobeOrg=-408604571%7CMCIDTS%7C19307%7CMCMID%7C33042062579560787242129122377797597997%7CMCAID%7C31B6989A896721D6-600000887BFA0850%7CMCOPTOUT-1668107601s%7CNONE%7CMCAAMLH-1668705201%7C6%7CMCAAMB-1668705201%7Cj8Odv6LonN4r3an7LhD3WZrU1bUpAkFkkiY1ncBR96t2PTI%7CMCSYNCSOP%7C411-19314%7CvVersion%7C4.6.0; mbox=session#27f2b4d776194ac890c08bce568e0ec9#1668102262|PC#27f2b4d776194ac890c08bce568e0ec9.37_0#1731345202; bm_sv=954F8CEE59ED3B7CD609760D612EE728~YAAQoQVJFytv1VeEAQAAU0CkYhFY94LP0BCkV7y5UggpUqTQEhLj/WJUmY/EmDJDMv8JsN35QUh9t1bLa8ZO6UBEIc5FtF77Tfj6yeFXCari3S2o6PNjSAUJKv0z+SdBNboQNOOUONcgpyEtguzrGCwKeeLCUNY5I7AXS4mf82DL9fAVitWIUJRxQLMzKNaGrrIqKMvFR+fwyxQk+4i1gMy3GoWwF+GZalTpHJlLuFCEsCWlMWMBJq8PJbZtg78BNAyRF1o=~1; _gcl_au=1.1.673889086.1668100401; _tq_id.TV-8181450918-1.e1be=86abe9320f0166bf.1668100401.0.1668100401..; s_vi=[CS]v1|31B6989A896721D6-600000887BFA0850[CE]; s_ecid=MCMID%7C33042062579560787242129122377797597997; _uetsid=fab387e0611a11eda9dab92fb9fdb0c8; _uetvid=fab39b90611a11ed9ee669e5c018eeb2; _fbp=fb.1.1668100402534.1388787247; LPVID=ZkNTEwZjU1Yjk1ZWRkNzY5
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: Apache/2.4.54 (Unix) OpenSSL/1.1.1k Communique/4.3.3
last-modified: Tue, 22 Sep 2020 11:51:54 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-frame-options: SAMEORIGIN, SAMEORIGIN
referrer-policy: same-origin
x-content-type-options: nosniff
content-length: 479
content-type: image/svg+xml
cache-control: max-age=86400
expires: Fri, 11 Nov 2022 17:44:02 GMT
date: Thu, 10 Nov 2022 17:44:02 GMT
permissions-policy: interest-cohort=()
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2

www.navyfederal.org/content/dam/illustrations/a31440_making-cents-hard-launch_homepage-hero_0722.jpg/jcr:content/renditions/nfcu.retina-large.2048.1000.jpg

104.66.116.9

200 OK

89 kB

URL HTTP/2
www.navyfederal.org/content/dam/illustrations/a31440_making-cents-hard-launch_homepage-hero_0722.jpg/jcr:content/renditions/nfcu.retina-large.2048.1000.jpg
IP
104.66.116.9:0
ASN
#16625 AKAMAI-AS

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 2047x1000, components 3\012- data
Size
89 kB (88681 bytes)
Hash
772da1332b4df9290ff0d3dc1d8b038d
d0c0134c0373701a28d5857e2d867f926bea7890
c87ce16362868799ff004ec9514451e9c7e8dd2b8a507a24fa3026f7232c498d

HTTP Headers

GET /content/dam/illustrations/a31440_making-cents-hard-launch_homepage-hero_0722.jpg/jcr:content/renditions/nfcu.retina-large.2048.1000.jpg HTTP/1.1
Host: www.navyfederal.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.navyfederal.org/
Connection: keep-alive
Cookie: _abck=DC80667D0074DA1B3BEF3F54E8921A40~0~YAAQoQVJF8Fa0VeEAQAAnTqIYgi/nj+T4rm31e4sHb7PwvDgqViCOtOD0fiBRFdYqJz0dyA9hJGa4EKA25STY/GpHMVGFfC14EoCo7/tP22D3oHMr+5qp8G9NqHsUnR9yTKnR1gDMzNSabdwOgdWeiR3wmDDs5rdE0m0wQzp8PQTsrURuGjWfWyVuuFEzWEkI579VbdKmXleunDtM/Ey4wOAt5iK/CTF3/Ox6XLe57BJT51t1Kp9a679k5gUjfUPfeeH8XqRQJAWfjqES0NyrJhRBCsqtN2916Y4kNjL0f4762Odoe5Vkt1X2B5+mTKei0UGyrs39M4nJdzzGgojv8WKyQr/lqHy3zLvS+H/XpPCfgOBRc7VprY+7xU+4EZsxrhZvuX/kBO7CdPIxPQKcmhbnBFgYpODAx2Rzc2/~-1~-1~-1; ak_bmsc=CD3D104392607DD4CA7FAC81BDEADF02~000000000000000000000000000000~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; bm_sz=7B5052FB392BE93F5C4C18559FA2BAF5~YAAQoQVJFyRZ0VeEAQAAmjKIYhHpUahXFvdsAaQJmpC1C/Df62CHAJDHM90z1RUp3QYAryRGAWuFC63uafX4GOkO57t7PdFyJs0XxIz5olBO3T9gRurFzQzMLiGaiM7O2AqD14VfNPCCfxbfSR0CGBwnPloUAjk2zoSqL59EY4oA2fSfgNIeU2cpPgd3HyKRc4ce1Ft94xdw4pwO9Bo/no2AgzdZdAouR7qP/2L4sQY9BsHYp+FbYEG2SoEO1s/Dhy/4pHmCti2x4rseqlAZCGfJxDa+2dhblc4CR2cyAMesg9pSn8wYHA==~3683650~3491383; AMCV_9BD537045330573C0A490D44%40AdobeOrg=-408604571%7CMCIDTS%7C19307%7CMCMID%7C33042062579560787242129122377797597997%7CMCAID%7C31B6989A896721D6-600000887BFA0850%7CMCOPTOUT-1668107601s%7CNONE%7CMCAAMLH-1668705201%7C6%7CMCAAMB-1668705201%7Cj8Odv6LonN4r3an7LhD3WZrU1bUpAkFkkiY1ncBR96t2PTI%7CMCSYNCSOP%7C411-19314%7CvVersion%7C4.6.0; mbox=session#27f2b4d776194ac890c08bce568e0ec9#1668102262|PC#27f2b4d776194ac890c08bce568e0ec9.37_0#1731345202; bm_sv=954F8CEE59ED3B7CD609760D612EE728~YAAQoQVJFytv1VeEAQAAU0CkYhFY94LP0BCkV7y5UggpUqTQEhLj/WJUmY/EmDJDMv8JsN35QUh9t1bLa8ZO6UBEIc5FtF77Tfj6yeFXCari3S2o6PNjSAUJKv0z+SdBNboQNOOUONcgpyEtguzrGCwKeeLCUNY5I7AXS4mf82DL9fAVitWIUJRxQLMzKNaGrrIqKMvFR+fwyxQk+4i1gMy3GoWwF+GZalTpHJlLuFCEsCWlMWMBJq8PJbZtg78BNAyRF1o=~1; _gcl_au=1.1.673889086.1668100401; _tq_id.TV-8181450918-1.e1be=86abe9320f0166bf.1668100401.0.1668100401..; s_vi=[CS]v1|31B6989A896721D6-600000887BFA0850[CE]; s_ecid=MCMID%7C33042062579560787242129122377797597997; _uetsid=fab387e0611a11eda9dab92fb9fdb0c8; _uetvid=fab39b90611a11ed9ee669e5c018eeb2; _fbp=fb.1.1668100402534.1388787247; LPVID=ZkNTEwZjU1Yjk1ZWRkNzY5
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: Apache/2.4.54 (Unix) OpenSSL/1.1.1k Communique/4.3.3
last-modified: Mon, 08 Aug 2022 14:05:13 GMT
accept-ranges: bytes
content-length: 88681
x-frame-options: SAMEORIGIN, SAMEORIGIN
referrer-policy: same-origin
x-content-type-options: nosniff
content-type: image/jpeg
cache-control: max-age=86400
expires: Fri, 11 Nov 2022 17:44:02 GMT
date: Thu, 10 Nov 2022 17:44:02 GMT
permissions-policy: interest-cohort=()
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
50d289d3dd4a1470247aebaf04b5e614
adbaefa726a8592f9c74ae9d4d08ab224217c6be
eb002c7e0df7ca508f83a9b00245263690e33e13da16e818d37e7e0700173e25

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6503
Cache-Control: max-age=92486
Content-Type: application/ocsp-response
Date: Thu, 10 Nov 2022 17:44:02 GMT
Etag: "636be541-1d7"
Expires: Fri, 11 Nov 2022 19:25:28 GMT
Last-Modified: Wed, 09 Nov 2022 17:37:05 GMT
Server: ECS (ska/F713)
X-Cache: HIT
Content-Length: 471

www.navyfederal.org/etc.clientlibs/nfo/clientlibs/clientlib-dependencies.min.1587665971.js

104.66.116.9

200 OK

32 kB

URL HTTP/2
www.navyfederal.org/etc.clientlibs/nfo/clientlibs/clientlib-dependencies.min.1587665971.js
IP
104.66.116.9:0
ASN
#16625 AKAMAI-AS

File type
ASCII text, with very long lines (807)
Size
32 kB (31989 bytes)
Hash
503c8171c9ab16e3f53666f4d9114bcd
8cf3cc693038d796cdc8a1e429d05e787ed2d2a0
2eec438f59a98bc5945f44f5e28ed87fd77017c5a6b65af6e5c039650f95563b

HTTP Headers

GET /etc.clientlibs/nfo/clientlibs/clientlib-dependencies.min.1587665971.js HTTP/1.1
Host: www.navyfederal.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.navyfederal.org/
Connection: keep-alive
Cookie: _abck=DC80667D0074DA1B3BEF3F54E8921A40~0~YAAQoQVJF8Fa0VeEAQAAnTqIYgi/nj+T4rm31e4sHb7PwvDgqViCOtOD0fiBRFdYqJz0dyA9hJGa4EKA25STY/GpHMVGFfC14EoCo7/tP22D3oHMr+5qp8G9NqHsUnR9yTKnR1gDMzNSabdwOgdWeiR3wmDDs5rdE0m0wQzp8PQTsrURuGjWfWyVuuFEzWEkI579VbdKmXleunDtM/Ey4wOAt5iK/CTF3/Ox6XLe57BJT51t1Kp9a679k5gUjfUPfeeH8XqRQJAWfjqES0NyrJhRBCsqtN2916Y4kNjL0f4762Odoe5Vkt1X2B5+mTKei0UGyrs39M4nJdzzGgojv8WKyQr/lqHy3zLvS+H/XpPCfgOBRc7VprY+7xU+4EZsxrhZvuX/kBO7CdPIxPQKcmhbnBFgYpODAx2Rzc2/~-1~-1~-1; ak_bmsc=CD3D104392607DD4CA7FAC81BDEADF02~000000000000000000000000000000~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; bm_sz=7B5052FB392BE93F5C4C18559FA2BAF5~YAAQoQVJFyRZ0VeEAQAAmjKIYhHpUahXFvdsAaQJmpC1C/Df62CHAJDHM90z1RUp3QYAryRGAWuFC63uafX4GOkO57t7PdFyJs0XxIz5olBO3T9gRurFzQzMLiGaiM7O2AqD14VfNPCCfxbfSR0CGBwnPloUAjk2zoSqL59EY4oA2fSfgNIeU2cpPgd3HyKRc4ce1Ft94xdw4pwO9Bo/no2AgzdZdAouR7qP/2L4sQY9BsHYp+FbYEG2SoEO1s/Dhy/4pHmCti2x4rseqlAZCGfJxDa+2dhblc4CR2cyAMesg9pSn8wYHA==~3683650~3491383; AMCV_9BD537045330573C0A490D44%40AdobeOrg=-408604571%7CMCIDTS%7C19307%7CMCMID%7C33042062579560787242129122377797597997%7CMCAID%7C31B6989A896721D6-600000887BFA0850%7CMCOPTOUT-1668107601s%7CNONE%7CMCAAMLH-1668705201%7C6%7CMCAAMB-1668705201%7Cj8Odv6LonN4r3an7LhD3WZrU1bUpAkFkkiY1ncBR96t2PTI%7CMCSYNCSOP%7C411-19314%7CvVersion%7C4.6.0; mbox=session#27f2b4d776194ac890c08bce568e0ec9#1668102262|PC#27f2b4d776194ac890c08bce568e0ec9.37_0#1731345202; bm_sv=954F8CEE59ED3B7CD609760D612EE728~YAAQoQVJFytv1VeEAQAAU0CkYhFY94LP0BCkV7y5UggpUqTQEhLj/WJUmY/EmDJDMv8JsN35QUh9t1bLa8ZO6UBEIc5FtF77Tfj6yeFXCari3S2o6PNjSAUJKv0z+SdBNboQNOOUONcgpyEtguzrGCwKeeLCUNY5I7AXS4mf82DL9fAVitWIUJRxQLMzKNaGrrIqKMvFR+fwyxQk+4i1gMy3GoWwF+GZalTpHJlLuFCEsCWlMWMBJq8PJbZtg78BNAyRF1o=~1; _gcl_au=1.1.673889086.1668100401; _tq_id.TV-8181450918-1.e1be=86abe9320f0166bf.1668100401.0.1668100401..; s_vi=[CS]v1|31B6989A896721D6-600000887BFA0850[CE]; s_ecid=MCMID%7C33042062579560787242129122377797597997; _uetsid=fab387e0611a11eda9dab92fb9fdb0c8; _uetvid=fab39b90611a11ed9ee669e5c018eeb2; _fbp=fb.1.1668100402534.1388787247; LPVID=ZkNTEwZjU1Yjk1ZWRkNzY5
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: Apache/2.4.54 (Unix) OpenSSL/1.1.1k Communique/4.3.3
last-modified: Thu, 23 Apr 2020 18:19:31 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-frame-options: SAMEORIGIN, SAMEORIGIN
referrer-policy: same-origin
x-content-type-options: nosniff
content-length: 31989
content-type: application/javascript;charset=utf-8
cache-control: max-age=86400
expires: Fri, 11 Nov 2022 17:44:02 GMT
date: Thu, 10 Nov 2022 17:44:02 GMT
permissions-policy: interest-cohort=()
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2

www.navyfederal.org/etc.clientlibs/nfo/clientlibs/uife/clientlib-uife-nfo-site-dependencies.min.1662874816.js

104.66.116.9

200 OK

98 kB

URL HTTP/2
www.navyfederal.org/etc.clientlibs/nfo/clientlibs/uife/clientlib-uife-nfo-site-dependencies.min.1662874816.js
IP
104.66.116.9:0
ASN
#16625 AKAMAI-AS

File type
Unicode text, UTF-8 text, with very long lines (65450), with CRLF line terminators
Size
98 kB (97518 bytes)
Hash
05a6438da71392a1c66b31fc0ac0aa3e
b69df7235530c9611329f2257ee9fd8aeb83c410
e832c1851af77f081895c971b644ec71ec6550f061ae9978bb1623a3f7bc6918

HTTP Headers

GET /etc.clientlibs/nfo/clientlibs/uife/clientlib-uife-nfo-site-dependencies.min.1662874816.js HTTP/1.1
Host: www.navyfederal.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.navyfederal.org/
Connection: keep-alive
Cookie: _abck=DC80667D0074DA1B3BEF3F54E8921A40~0~YAAQoQVJF8Fa0VeEAQAAnTqIYgi/nj+T4rm31e4sHb7PwvDgqViCOtOD0fiBRFdYqJz0dyA9hJGa4EKA25STY/GpHMVGFfC14EoCo7/tP22D3oHMr+5qp8G9NqHsUnR9yTKnR1gDMzNSabdwOgdWeiR3wmDDs5rdE0m0wQzp8PQTsrURuGjWfWyVuuFEzWEkI579VbdKmXleunDtM/Ey4wOAt5iK/CTF3/Ox6XLe57BJT51t1Kp9a679k5gUjfUPfeeH8XqRQJAWfjqES0NyrJhRBCsqtN2916Y4kNjL0f4762Odoe5Vkt1X2B5+mTKei0UGyrs39M4nJdzzGgojv8WKyQr/lqHy3zLvS+H/XpPCfgOBRc7VprY+7xU+4EZsxrhZvuX/kBO7CdPIxPQKcmhbnBFgYpODAx2Rzc2/~-1~-1~-1; ak_bmsc=CD3D104392607DD4CA7FAC81BDEADF02~000000000000000000000000000000~YAAQoQVJFy5a0VeEAQAA6zeIYhGGIYw4yKNy7uZPTNAMli+81ot0IGUszqrRkYrQnoVWvmTSwFwTz7PQ2Af93ROgb9XNe+wbRdu9LzmQ+NE2dOvP0DPsZiOtNyP5MEtkBjjE4v59wX2G8WWiBp+iT+ROOkHB4Upwpt8lzTMpOvmaxMgT5yv+Nogfd5oLokD0KjDMB7DJlXsSXQhd7jylrU7I58lcz2JdUNTQT528hNH9/iNsqCxYa/Y9GX9mk9T6bzVfKs2ERj7Qu1t9J85cbdUXlpVExtICrsh7nKC/rILmbq8IP9zmX0Zh9cwTXW53i4K+gNQHOeVYSHuRdHYAze04EYxWlGfVR/GbIH32O3I/qjGVvBKdpY6eydP7m6KTjetu1dFRkfinak3XDzEVyj5GXpB7X7MktQiFrm0batseCDQkiKxk6m9aHjnmzHIzGp1ZdhQf30G1r+eC02BsRgnI2QskJSBmCwi7uN3FzDnWwVU+Y8xC1I9jhqVWFg==; bm_sz=7B5052FB392BE93F5C4C18559FA2BAF5~YAAQoQVJFyRZ0VeEAQAAmjKIYhHpUahXFvdsAaQJmpC1C/Df62CHAJDHM90z1RUp3QYAryRGAWuFC63uafX4GOkO57t7PdFyJs0XxIz5olBO3T9gRurFzQzMLiGaiM7O2AqD14VfNPCCfxbfSR0CGBwnPloUAjk2zoSqL59EY4oA2fSfgNIeU2cpPgd3HyKRc4ce1Ft94xdw4pwO9Bo/no2AgzdZdAouR7qP/2L4sQY9BsHYp+FbYEG2SoEO1s/Dhy/4pHmCti2x4rseqlAZCGfJxDa+2dhblc4CR2cyAMesg9pSn8wYHA==~3683650~3491383; AMCV_9BD537045330573C0A490D44%40AdobeOrg=-408604571%7CMCIDTS%7C19307%7CMCMID%7C33042062579560787242129122377797597997%7CMCAID%7C31B6989A896721D6-600000887BFA0850%7CMCOPTOUT-1668107601s%7CNONE%7CMCAAMLH-1668705201%7C6%7CMCAAMB-1668705201%7Cj8Odv6LonN4r3an7LhD3WZrU1bUpAkFkkiY1ncBR96t2PTI%7CMCSYNCSOP%7C411-19314%7CvVersion%7C4.6.0; mbox=session#27f2b4d776194ac890c08bce568e0ec9#1668102262|PC#27f2b4d776194ac890c08bce568e0ec9.37_0#1731345202; bm_sv=954F8CEE59ED3B7CD609760D612EE728~YAAQoQVJFytv1VeEAQAAU0CkYhFY94LP0BCkV7y5UggpUqTQEhLj/WJUmY/EmDJDMv8JsN35QUh9t1bLa8ZO6UBEIc5FtF77Tfj6yeFXCari3S2o6PNjSAUJKv0z+SdBNboQNOOUONcgpyEtguzrGCwKeeLCUNY5I7AXS4mf82DL9fAVitWIUJRxQLMzKNaGrrIqKMvFR+fwyxQk+4i1gMy3GoWwF+GZalTpHJlLuFCEsCWlMWMBJq8PJbZtg78BNAyRF1o=~1; _gcl_au=1.1.673889086.1668100401; _tq_id.TV-8181450918-1.e1be=86abe9320f0166bf.1668100401.0.1668100401..; s_vi=[CS]v1|31B6989A896721D6-600000887BFA0850[CE]; s_ecid=MCMID%7C33042062579560787242129122377797597997; _uetsid=fab387e0611a11eda9dab92fb9fdb0c8; _uetvid=fab39b90611a11ed9ee669e5c018eeb2; _fbp=fb.1.1668100402534.1388787247; LPVID=ZkNTEwZjU1Yjk1ZWRkNzY5
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: Apache/2.4.54 (Unix) OpenSSL/1.1.1k Communique/4.3.3
last-modified: Sun, 11 Sep 2022 05:42:10 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-frame-options: SAMEORIGIN, SAMEORIGIN
referrer-policy: same-origin
x-content-type-options: nosniff
content-type: application/javascript;charset=utf-8
content-length: 97518
cache-control: max-age=86400
expires: Fri, 11 Nov 2022 17:44:02 GMT
date: Thu, 10 Nov 2022 17:44:02 GMT
permissions-policy: interest-cohort=()
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2

www.navyfederal.org/content/dam/logos/nfcu/svg/nfo-fom-logo.svg

104.66.116.9

200 OK

4.9 kB

URL HTTP/2
www.navyfederal.org/content/dam/logos/nfcu/svg/nfo-fom-logo.svg
IP
104.66.116.9:0
ASN
#16625 AKAMAI-AS

File type
SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
4.9 kB (4909 bytes)
Hash
a1b6ef5e62144222a3fe0134ff4a18a5
e10a3db611cdd825f98511a8cc5ac897d0e7b540
3e36d02d2388e26d4ea64c47c34b3602307547dedf5dadb1122917e2b3043d02

HTTP Headers

GET /content/dam/logos/nfcu/svg/nfo-fom-logo.svg HTTP/1.1
Host: www.navyfederal.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.navyfederal.org/
Connection: keep-alive
Cookie: _abck=DC80667D0074DA1B3BEF3F54E8921A40~0~YAAQoQVJF8Fa0VeEAQAAnTqIYgi/nj+T4rm31e4sHb7PwvDgqViCOtOD0fiBRFdYqJz0dyA9hJGa4EKA25STY/GpHMVGFfC14EoCo7/tP22D3oHMr+5qp8G9NqHsUnR9yTKnR1gDMzNSabdwOgdWeiR3wmDDs5rdE0m0wQzp8PQTsrURuGjWfWyVuuFEzWEkI579VbdKmXleunDtM/Ey4wOAt5iK/CTF3/Ox6XLe57BJT51t1Kp9a679k5gUjfUPfeeH8XqRQJAWfjqES0NyrJhRBCsqtN2916Y4kNjL0f4762Odoe5Vkt1X2B5+mTKei0UGyrs39M4nJdzzGgojv8WKyQr/lqHy3zLvS+H/XpPCfgOBRc7VprY+7xU+4EZsxrhZvuX/kBO7CdPIxPQKcmhbnBFgYpODAx2Rzc2/~-1~-1~-1; ak_bmsc=CD3D104392607DD4CA7FAC81BDEADF02~000000000000000000000000000000~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; bm_sz=7B5052FB392BE93F5C4C18559FA2BAF5~YAAQoQVJFyRZ0VeEAQAAmjKIYhHpUahXFvdsAaQJmpC1C/Df62CHAJDHM90z1RUp3QYAryRGAWuFC63uafX4GOkO57t7PdFyJs0XxIz5olBO3T9gRurFzQzMLiGaiM7O2AqD14VfNPCCfxbfSR0CGBwnPloUAjk2zoSqL59EY4oA2fSfgNIeU2cpPgd3HyKRc4ce1Ft94xdw4pwO9Bo/no2AgzdZdAouR7qP/2L4sQY9BsHYp+FbYEG2SoEO1s/Dhy/4pHmCti2x4rseqlAZCGfJxDa+2dhblc4CR2cyAMesg9pSn8wYHA==~3683650~3491383; AMCV_9BD537045330573C0A490D44%40AdobeOrg=-408604571%7CMCIDTS%7C19307%7CMCMID%7C33042062579560787242129122377797597997%7CMCAID%7C31B6989A896721D6-600000887BFA0850%7CMCOPTOUT-1668107601s%7CNONE%7CMCAAMLH-1668705201%7C6%7CMCAAMB-1668705201%7Cj8Odv6LonN4r3an7LhD3WZrU1bUpAkFkkiY1ncBR96t2PTI%7CMCSYNCSOP%7C411-19314%7CvVersion%7C4.6.0; mbox=session#27f2b4d776194ac890c08bce568e0ec9#1668102262|PC#27f2b4d776194ac890c08bce568e0ec9.37_0#1731345202; bm_sv=954F8CEE59ED3B7CD609760D612EE728~YAAQoQVJFytv1VeEAQAAU0CkYhFY94LP0BCkV7y5UggpUqTQEhLj/WJUmY/EmDJDMv8JsN35QUh9t1bLa8ZO6UBEIc5FtF77Tfj6yeFXCari3S2o6PNjSAUJKv0z+SdBNboQNOOUONcgpyEtguzrGCwKeeLCUNY5I7AXS4mf82DL9fAVitWIUJRxQLMzKNaGrrIqKMvFR+fwyxQk+4i1gMy3GoWwF+GZalTpHJlLuFCEsCWlMWMBJq8PJbZtg78BNAyRF1o=~1; _gcl_au=1.1.673889086.1668100401; _tq_id.TV-8181450918-1.e1be=86abe9320f0166bf.1668100401.0.1668100401..; s_vi=[CS]v1|31B6989A896721D6-600000887BFA0850[CE]; s_ecid=MCMID%7C33042062579560787242129122377797597997; _uetsid=fab387e0611a11eda9dab92fb9fdb0c8; _uetvid=fab39b90611a11ed9ee669e5c018eeb2; _fbp=fb.1.1668100402534.1388787247; LPVID=ZkNTEwZjU1Yjk1ZWRkNzY5; at_check=true
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: Apache/2.4.54 (Unix) OpenSSL/1.1.1k Communique/4.3.3
last-modified: Mon, 20 Dec 2021 19:01:15 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-frame-options: SAMEORIGIN, SAMEORIGIN
referrer-policy: same-origin
x-content-type-options: nosniff
content-length: 4909
content-type: image/svg+xml
cache-control: max-age=86400
expires: Fri, 11 Nov 2022 17:44:02 GMT
date: Thu, 10 Nov 2022 17:44:02 GMT
permissions-policy: interest-cohort=()
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2

www.navyfederal.org/0VD7ji2-/k0xIjjL/ghZkbmj/LL/9rfuGhzwbY/Ij1uUB8pAw/IkAnHzpg/eAgC

104.66.116.9

200 OK

73 kB

URL HTTP/2
www.navyfederal.org/0VD7ji2-/k0xIjjL/ghZkbmj/LL/9rfuGhzwbY/Ij1uUB8pAw/IkAnHzpg/eAgC
IP
104.66.116.9:0
ASN
#16625 AKAMAI-AS

File type
data
Size
73 kB (73329 bytes)
Hash
04dac779743d14678e02af452c19e44c
42ca7e55b19ee836c41908def868616070da54e3
5a4075ea40cc4dd34321b251b16f3b3587e48d90e47053090d66fc9f25975c6f

HTTP Headers

GET /0VD7ji2-/k0xIjjL/ghZkbmj/LL/9rfuGhzwbY/Ij1uUB8pAw/IkAnHzpg/eAgC HTTP/1.1
Host: www.navyfederal.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.navyfederal.org/
Connection: keep-alive
Cookie: _abck=DC80667D0074DA1B3BEF3F54E8921A40~0~YAAQoQVJF8Fa0VeEAQAAnTqIYgi/nj+T4rm31e4sHb7PwvDgqViCOtOD0fiBRFdYqJz0dyA9hJGa4EKA25STY/GpHMVGFfC14EoCo7/tP22D3oHMr+5qp8G9NqHsUnR9yTKnR1gDMzNSabdwOgdWeiR3wmDDs5rdE0m0wQzp8PQTsrURuGjWfWyVuuFEzWEkI579VbdKmXleunDtM/Ey4wOAt5iK/CTF3/Ox6XLe57BJT51t1Kp9a679k5gUjfUPfeeH8XqRQJAWfjqES0NyrJhRBCsqtN2916Y4kNjL0f4762Odoe5Vkt1X2B5+mTKei0UGyrs39M4nJdzzGgojv8WKyQr/lqHy3zLvS+H/XpPCfgOBRc7VprY+7xU+4EZsxrhZvuX/kBO7CdPIxPQKcmhbnBFgYpODAx2Rzc2/~-1~-1~-1; ak_bmsc=CD3D104392607DD4CA7FAC81BDEADF02~000000000000000000000000000000~YAAQoQVJFy5a0VeEAQAA6zeIYhGGIYw4yKNy7uZPTNAMli+81ot0IGUszqrRkYrQnoVWvmTSwFwTz7PQ2Af93ROgb9XNe+wbRdu9LzmQ+NE2dOvP0DPsZiOtNyP5MEtkBjjE4v59wX2G8WWiBp+iT+ROOkHB4Upwpt8lzTMpOvmaxMgT5yv+Nogfd5oLokD0KjDMB7DJlXsSXQhd7jylrU7I58lcz2JdUNTQT528hNH9/iNsqCxYa/Y9GX9mk9T6bzVfKs2ERj7Qu1t9J85cbdUXlpVExtICrsh7nKC/rILmbq8IP9zmX0Zh9cwTXW53i4K+gNQHOeVYSHuRdHYAze04EYxWlGfVR/GbIH32O3I/qjGVvBKdpY6eydP7m6KTjetu1dFRkfinak3XDzEVyj5GXpB7X7MktQiFrm0batseCDQkiKxk6m9aHjnmzHIzGp1ZdhQf30G1r+eC02BsRgnI2QskJSBmCwi7uN3FzDnWwVU+Y8xC1I9jhqVWFg==; bm_sz=7B5052FB392BE93F5C4C18559FA2BAF5~YAAQoQVJFyRZ0VeEAQAAmjKIYhHpUahXFvdsAaQJmpC1C/Df62CHAJDHM90z1RUp3QYAryRGAWuFC63uafX4GOkO57t7PdFyJs0XxIz5olBO3T9gRurFzQzMLiGaiM7O2AqD14VfNPCCfxbfSR0CGBwnPloUAjk2zoSqL59EY4oA2fSfgNIeU2cpPgd3HyKRc4ce1Ft94xdw4pwO9Bo/no2AgzdZdAouR7qP/2L4sQY9BsHYp+FbYEG2SoEO1s/Dhy/4pHmCti2x4rseqlAZCGfJxDa+2dhblc4CR2cyAMesg9pSn8wYHA==~3683650~3491383; AMCV_9BD537045330573C0A490D44%40AdobeOrg=-408604571%7CMCIDTS%7C19307%7CMCMID%7C33042062579560787242129122377797597997%7CMCAID%7C31B6989A896721D6-600000887BFA0850%7CMCOPTOUT-1668107601s%7CNONE%7CMCAAMLH-1668705201%7C6%7CMCAAMB-1668705201%7Cj8Odv6LonN4r3an7LhD3WZrU1bUpAkFkkiY1ncBR96t2PTI%7CMCSYNCSOP%7C411-19314%7CvVersion%7C4.6.0; mbox=session#27f2b4d776194ac890c08bce568e0ec9#1668102262|PC#27f2b4d776194ac890c08bce568e0ec9.37_0#1731345202; bm_sv=954F8CEE59ED3B7CD609760D612EE728~YAAQoQVJFytv1VeEAQAAU0CkYhFY94LP0BCkV7y5UggpUqTQEhLj/WJUmY/EmDJDMv8JsN35QUh9t1bLa8ZO6UBEIc5FtF77Tfj6yeFXCari3S2o6PNjSAUJKv0z+SdBNboQNOOUONcgpyEtguzrGCwKeeLCUNY5I7AXS4mf82DL9fAVitWIUJRxQLMzKNaGrrIqKMvFR+fwyxQk+4i1gMy3GoWwF+GZalTpHJlLuFCEsCWlMWMBJq8PJbZtg78BNAyRF1o=~1; _gcl_au=1.1.673889086.1668100401; _tq_id.TV-8181450918-1.e1be=86abe9320f0166bf.1668100401.0.1668100401..; s_vi=[CS]v1|31B6989A896721D6-600000887BFA0850[CE]; s_ecid=MCMID%7C33042062579560787242129122377797597997; _uetsid=fab387e0611a11eda9dab92fb9fdb0c8; _uetvid=fab39b90611a11ed9ee669e5c018eeb2; _fbp=fb.1.1668100402534.1388787247; LPVID=ZkNTEwZjU1Yjk1ZWRkNzY5
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Mon, 31 Oct 2022 15:58:50 GMT
etag: "4cea6e5e23e2d49444ff0e49221e80ffeff0c8dc88a9e9ae0a87f254c1781682"
content-type: application/javascript
vary: Accept-Encoding
content-encoding: gzip
content-length: 73329
date: Thu, 10 Nov 2022 17:44:02 GMT
cache-control: max-age=21600
permissions-policy: interest-cohort=()
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2

www.navyfederal.org/content/dam/nfculibs/us-map.jpg

104.66.116.9

200 OK

100 kB

URL HTTP/2
www.navyfederal.org/content/dam/nfculibs/us-map.jpg
IP
104.66.116.9:0
ASN
#16625 AKAMAI-AS

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 944x363, components 3\012- data
Size
100 kB (100246 bytes)
Hash
9cd13aee2fd7e50297ff8f37bf6cf668
eca5c374921804c8795f4de202a1e4864f4563fa
4f5d286af098a7615131e46661ad619d5165e16c1298299cc3a58ee01a24b137

HTTP Headers

GET /content/dam/nfculibs/us-map.jpg HTTP/1.1
Host: www.navyfederal.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.navyfederal.org/
Connection: keep-alive
Cookie: _abck=DC80667D0074DA1B3BEF3F54E8921A40~0~YAAQoQVJF8Fa0VeEAQAAnTqIYgi/nj+T4rm31e4sHb7PwvDgqViCOtOD0fiBRFdYqJz0dyA9hJGa4EKA25STY/GpHMVGFfC14EoCo7/tP22D3oHMr+5qp8G9NqHsUnR9yTKnR1gDMzNSabdwOgdWeiR3wmDDs5rdE0m0wQzp8PQTsrURuGjWfWyVuuFEzWEkI579VbdKmXleunDtM/Ey4wOAt5iK/CTF3/Ox6XLe57BJT51t1Kp9a679k5gUjfUPfeeH8XqRQJAWfjqES0NyrJhRBCsqtN2916Y4kNjL0f4762Odoe5Vkt1X2B5+mTKei0UGyrs39M4nJdzzGgojv8WKyQr/lqHy3zLvS+H/XpPCfgOBRc7VprY+7xU+4EZsxrhZvuX/kBO7CdPIxPQKcmhbnBFgYpODAx2Rzc2/~-1~-1~-1; ak_bmsc=CD3D104392607DD4CA7FAC81BDEADF02~000000000000000000000000000000~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; bm_sz=7B5052FB392BE93F5C4C18559FA2BAF5~YAAQoQVJFyRZ0VeEAQAAmjKIYhHpUahXFvdsAaQJmpC1C/Df62CHAJDHM90z1RUp3QYAryRGAWuFC63uafX4GOkO57t7PdFyJs0XxIz5olBO3T9gRurFzQzMLiGaiM7O2AqD14VfNPCCfxbfSR0CGBwnPloUAjk2zoSqL59EY4oA2fSfgNIeU2cpPgd3HyKRc4ce1Ft94xdw4pwO9Bo/no2AgzdZdAouR7qP/2L4sQY9BsHYp+FbYEG2SoEO1s/Dhy/4pHmCti2x4rseqlAZCGfJxDa+2dhblc4CR2cyAMesg9pSn8wYHA==~3683650~3491383; AMCV_9BD537045330573C0A490D44%40AdobeOrg=-408604571%7CMCIDTS%7C19307%7CMCMID%7C33042062579560787242129122377797597997%7CMCAID%7C31B6989A896721D6-600000887BFA0850%7CMCOPTOUT-1668107601s%7CNONE%7CMCAAMLH-1668705201%7C6%7CMCAAMB-1668705201%7Cj8Odv6LonN4r3an7LhD3WZrU1bUpAkFkkiY1ncBR96t2PTI%7CMCSYNCSOP%7C411-19314%7CvVersion%7C4.6.0; mbox=session#27f2b4d776194ac890c08bce568e0ec9#1668102262|PC#27f2b4d776194ac890c08bce568e0ec9.37_0#1731345202; bm_sv=954F8CEE59ED3B7CD609760D612EE728~YAAQoQVJFytv1VeEAQAAU0CkYhFY94LP0BCkV7y5UggpUqTQEhLj/WJUmY/EmDJDMv8JsN35QUh9t1bLa8ZO6UBEIc5FtF77Tfj6yeFXCari3S2o6PNjSAUJKv0z+SdBNboQNOOUONcgpyEtguzrGCwKeeLCUNY5I7AXS4mf82DL9fAVitWIUJRxQLMzKNaGrrIqKMvFR+fwyxQk+4i1gMy3GoWwF+GZalTpHJlLuFCEsCWlMWMBJq8PJbZtg78BNAyRF1o=~1; _gcl_au=1.1.673889086.1668100401; _tq_id.TV-8181450918-1.e1be=86abe9320f0166bf.1668100401.0.1668100401..; s_vi=[CS]v1|31B6989A896721D6-600000887BFA0850[CE]; s_ecid=MCMID%7C33042062579560787242129122377797597997; _uetsid=fab387e0611a11eda9dab92fb9fdb0c8; _uetvid=fab39b90611a11ed9ee669e5c018eeb2; _fbp=fb.1.1668100402534.1388787247; LPVID=ZkNTEwZjU1Yjk1ZWRkNzY5; at_check=true
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: Apache/2.4.54 (Unix) OpenSSL/1.1.1k Communique/4.3.3
last-modified: Mon, 28 Sep 2020 19:35:56 GMT
accept-ranges: bytes
content-length: 100246
x-frame-options: SAMEORIGIN, SAMEORIGIN
referrer-policy: same-origin
x-content-type-options: nosniff
content-type: image/jpeg
cache-control: max-age=86400
expires: Fri, 11 Nov 2022 17:44:02 GMT
date: Thu, 10 Nov 2022 17:44:02 GMT
permissions-policy: interest-cohort=()
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
1b6e55fb9c16b8ec503ca6fb935f650f
1e392159765235158a218248677dc21c46bc4f42
89cc50a881ff8fae94b7bfa2732d133df59bae06680f6d2147281ee7bf8ab00b

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "89CC50A881FF8FAE94B7BFA2732D133DF59BAE06680F6D2147281EE7BF8AB00B"
Last-Modified: Tue, 08 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16540
Expires: Thu, 10 Nov 2022 22:19:43 GMT
Date: Thu, 10 Nov 2022 17:44:03 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
1b6e55fb9c16b8ec503ca6fb935f650f
1e392159765235158a218248677dc21c46bc4f42
89cc50a881ff8fae94b7bfa2732d133df59bae06680f6d2147281ee7bf8ab00b

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "89CC50A881FF8FAE94B7BFA2732D133DF59BAE06680F6D2147281EE7BF8AB00B"
Last-Modified: Tue, 08 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16540
Expires: Thu, 10 Nov 2022 22:19:43 GMT
Date: Thu, 10 Nov 2022 17:44:03 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
1b6e55fb9c16b8ec503ca6fb935f650f
1e392159765235158a218248677dc21c46bc4f42
89cc50a881ff8fae94b7bfa2732d133df59bae06680f6d2147281ee7bf8ab00b

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "89CC50A881FF8FAE94B7BFA2732D133DF59BAE06680F6D2147281EE7BF8AB00B"
Last-Modified: Tue, 08 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16540
Expires: Thu, 10 Nov 2022 22:19:43 GMT
Date: Thu, 10 Nov 2022 17:44:03 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
1b6e55fb9c16b8ec503ca6fb935f650f
1e392159765235158a218248677dc21c46bc4f42
89cc50a881ff8fae94b7bfa2732d133df59bae06680f6d2147281ee7bf8ab00b

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "89CC50A881FF8FAE94B7BFA2732D133DF59BAE06680F6D2147281EE7BF8AB00B"
Last-Modified: Tue, 08 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16540
Expires: Thu, 10 Nov 2022 22:19:43 GMT
Date: Thu, 10 Nov 2022 17:44:03 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
1b6e55fb9c16b8ec503ca6fb935f650f
1e392159765235158a218248677dc21c46bc4f42
89cc50a881ff8fae94b7bfa2732d133df59bae06680f6d2147281ee7bf8ab00b

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "89CC50A881FF8FAE94B7BFA2732D133DF59BAE06680F6D2147281EE7BF8AB00B"
Last-Modified: Tue, 08 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16540
Expires: Thu, 10 Nov 2022 22:19:43 GMT
Date: Thu, 10 Nov 2022 17:44:03 GMT
Connection: keep-alive

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5c73f10e-9c01-44bd-95d2-c18ba845fe07.jpeg

34.120.237.76

200 OK

8.9 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5c73f10e-9c01-44bd-95d2-c18ba845fe07.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
8.9 kB (8875 bytes)
Hash
2917b487c605eb7f53d20ff3b4fbfef0
5dd8989fb1129638361c16ad2a1fde93a4c4aafd
aaf620d791f23829e15a454b3faf5b47a0f00ff37ada91d6de5c62c322fe90ff

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5c73f10e-9c01-44bd-95d2-c18ba845fe07.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 8875
x-amzn-requestid: 1374243f-4fd8-4405-8f8a-946a8f92c457
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bWlniEw2oAMFtfA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-636c1c96-195c58a826eae13b58d21aa0;Sampled=0
x-amzn-remapped-date: Wed, 09 Nov 2022 21:33:10 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: MfDIK2PCS_o7UuNXVSNOb3YbR_P8vlF7xw75qf8WdbjRr8hzCVYu6A==
via: 1.1 0005a84c2971ff4f5bbb79e7ebc622a8.cloudfront.net (CloudFront), 1.1 1a53057db389e96b4ef1bfbc925dde1c.cloudfront.net (CloudFront), 1.1 google
date: Wed, 09 Nov 2022 21:46:28 GMT
age: 71855
etag: "5dd8989fb1129638361c16ad2a1fde93a4c4aafd"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

7.7 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F790db4df-e6d4-48ab-92fb-179a770f76b7.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
7.7 kB (7723 bytes)
Hash
8c2db9097ad95b726c65a3130483daf7
2b6dbe326a49e03a0f8d1a5d15930fd7870f6f79
1da5e63e7a3e837c758bb365e5e99e6dfb6c54e9b2fe038c3eb1334a86dc4d74

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F790db4df-e6d4-48ab-92fb-179a770f76b7.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 7723
x-amzn-requestid: 1e07419e-8cd6-43d6-b0bb-61183502ee40
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bWlpGHFKIAMFUUQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-636c1ca0-751c8b152ea5c28f5a78bf46;Sampled=0
x-amzn-remapped-date: Wed, 09 Nov 2022 21:33:20 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: BXdwO74rhbF9575IFRz-DNbcEFNiX7JiCtsvghmUE8zOju0eyuFjow==
via: 1.1 eece508272520f70691e4eebdc5a6dea.cloudfront.net (CloudFront), 1.1 2ab6211e66998c8b58132661a7e3cade.cloudfront.net (CloudFront), 1.1 google
date: Wed, 09 Nov 2022 21:45:34 GMT
age: 71909
etag: "2b6dbe326a49e03a0f8d1a5d15930fd7870f6f79"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

9.3 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1301540a-8618-4725-97e7-ac03773f7ed0.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
9.3 kB (9283 bytes)
Hash
a929256680885031f55121c35d626bcc
9caf2466f70995d5763b970f916c4944b364a4ff
9366db1c171fe9dae5946198415c9a02005a432fccd359896f94bce874c91027

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1301540a-8618-4725-97e7-ac03773f7ed0.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 9283
x-amzn-requestid: c800cccd-80cc-4cd6-8856-66cfd07141c9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bWmC2HnpIAMF3kA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-636c1d45-686eac2b6c65b8dd41dfb44a;Sampled=0
x-amzn-remapped-date: Wed, 09 Nov 2022 21:36:05 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: y9jHtcAFR3KyG8gWBDJ13rjekqGz6dUoqn0d_yHYW9beFkeCGSxbsA==
via: 1.1 112c6b3f9aea37a6cb00b7d933e5af6e.cloudfront.net (CloudFront), 1.1 2f7934de1dfe281c3e4446892eab6462.cloudfront.net (CloudFront), 1.1 google
date: Wed, 09 Nov 2022 21:51:10 GMT
etag: "9caf2466f70995d5763b970f916c4944b364a4ff"
content-type: image/jpeg
age: 71573
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

3.4 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F407f630c-7642-40eb-8db3-288b03315712.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
3.4 kB (3445 bytes)
Hash
178b1b5efcd0c5997d0e5b820193abe2
460630852800c0304295c78df268bfec64416f98
9822d2ef4199dcc01f81a8e6d3a91d9545466c17abfca4eb30e0a49ca8301da6

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F407f630c-7642-40eb-8db3-288b03315712.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 3445
x-amzn-requestid: 92b5ba7a-e45a-495c-89ae-9738fd5644bb
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bWloyHMpoAMF-Fw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-636c1c9e-5508b96c349a34537809ef0e;Sampled=0
x-amzn-remapped-date: Wed, 09 Nov 2022 21:33:18 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 3-XU3AO60wbMDZcPshBPHvxEFAQHVs7-dlg52BfbxkSlDAEx9kaeeg==
via: 1.1 010c0731b9775a983eceaec0f5fa6a2e.cloudfront.net (CloudFront), 1.1 e80693c02cfdfd081110512210d57840.cloudfront.net (CloudFront), 1.1 google
date: Wed, 09 Nov 2022 21:58:41 GMT
age: 71122
etag: "460630852800c0304295c78df268bfec64416f98"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

8.2 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7f570a6d-7e0c-4dc3-9a3f-7af7ccbae623.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
8.2 kB (8242 bytes)
Hash
feb275cc5fa7b13e70522cb76f001bbc
80ca9cf6cbbc73a884c3a839ace9a7aa191a8504
a5680637b55669355967b87fd4be4881a3e4dea746b7c420acf4dcb46b8a28de

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7f570a6d-7e0c-4dc3-9a3f-7af7ccbae623.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 8242
x-amzn-requestid: 1ab9c180-7e6b-4eae-a6cf-6a45c96fdc4e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bWlrkE_2oAMFk2A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-636c1cb0-0089846803d11bb649874507;Sampled=0
x-amzn-remapped-date: Wed, 09 Nov 2022 21:33:36 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: kZPJ95WwFXhxoBwZIeTN2iRl3-XFPmooKSeFtLu3wIm4b8nabFY2mA==
via: 1.1 c34da255183aa208dd1c722ff211f9b2.cloudfront.net (CloudFront), 1.1 91356d2137f5a7345e93da4516c49ec4.cloudfront.net (CloudFront), 1.1 google
date: Wed, 09 Nov 2022 21:46:29 GMT
etag: "80ca9cf6cbbc73a884c3a839ace9a7aa191a8504"
content-type: image/jpeg
age: 71854
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

12 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe468f92f-2486-4c80-ab37-4225f9f983cc.webp
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
12 kB (12268 bytes)
Hash
5fc04eddc597d6b10db5d59c53f20aec
dddc0da13526d24aaea990cc1d68d9212612da43
a7e2d1fd141c4383de3411be95b8875c9d969d5f001020793a2b4d939aaa780b

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe468f92f-2486-4c80-ab37-4225f9f983cc.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 12268
x-amzn-requestid: cd9ea4f7-9a75-47b4-a0ad-817c821a592e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bWlpZHbBIAMFfUQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-636c1ca2-69a98f453929cc817bead2c7;Sampled=0
x-amzn-remapped-date: Wed, 09 Nov 2022 21:33:22 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: Xq1vIovXXR0pPaaHjKWeLcZszoEkISrYvqKvshtQ9dFTf6CUwxmIWA==
via: 1.1 95b0ac620fa3a80ee590ecf1cda1c698.cloudfront.net (CloudFront), 1.1 e95ec8f1dc02e32f0cb9e113963ceb4e.cloudfront.net (CloudFront), 1.1 google
date: Wed, 09 Nov 2022 21:45:34 GMT
age: 71909
etag: "dddc0da13526d24aaea990cc1d68d9212612da43"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

www.navyfederal.org/bin/nfo/getCookieLoggedInInfo

104.66.116.9

200 OK

24 B

URL HTTP/2
www.navyfederal.org/bin/nfo/getCookieLoggedInInfo
IP
104.66.116.9:0
ASN
#16625 AKAMAI-AS

File type
JSON data\012- , ASCII text, with no line terminators
Size
24 B (24 bytes)
Hash
a81ecb929b8e98a3047f073ec81a834f
754703c6979ae10d6cd8ff26ae2e66a54b51fb23
2bfd8723d0fe6b9e9d9b7af8a5da037b1d75fc67f24824a9222bcbedd1b46e18

HTTP Headers

GET /bin/nfo/getCookieLoggedInInfo HTTP/1.1
Host: www.navyfederal.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.navyfederal.org/
Connection: keep-alive
Cookie: _abck=DC80667D0074DA1B3BEF3F54E8921A40~0~YAAQoQVJF8Fa0VeEAQAAnTqIYgi/nj+T4rm31e4sHb7PwvDgqViCOtOD0fiBRFdYqJz0dyA9hJGa4EKA25STY/GpHMVGFfC14EoCo7/tP22D3oHMr+5qp8G9NqHsUnR9yTKnR1gDMzNSabdwOgdWeiR3wmDDs5rdE0m0wQzp8PQTsrURuGjWfWyVuuFEzWEkI579VbdKmXleunDtM/Ey4wOAt5iK/CTF3/Ox6XLe57BJT51t1Kp9a679k5gUjfUPfeeH8XqRQJAWfjqES0NyrJhRBCsqtN2916Y4kNjL0f4762Odoe5Vkt1X2B5+mTKei0UGyrs39M4nJdzzGgojv8WKyQr/lqHy3zLvS+H/XpPCfgOBRc7VprY+7xU+4EZsxrhZvuX/kBO7CdPIxPQKcmhbnBFgYpODAx2Rzc2/~-1~-1~-1; ak_bmsc=CD3D104392607DD4CA7FAC81BDEADF02~000000000000000000000000000000~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; bm_sz=7B5052FB392BE93F5C4C18559FA2BAF5~YAAQoQVJFyRZ0VeEAQAAmjKIYhHpUahXFvdsAaQJmpC1C/Df62CHAJDHM90z1RUp3QYAryRGAWuFC63uafX4GOkO57t7PdFyJs0XxIz5olBO3T9gRurFzQzMLiGaiM7O2AqD14VfNPCCfxbfSR0CGBwnPloUAjk2zoSqL59EY4oA2fSfgNIeU2cpPgd3HyKRc4ce1Ft94xdw4pwO9Bo/no2AgzdZdAouR7qP/2L4sQY9BsHYp+FbYEG2SoEO1s/Dhy/4pHmCti2x4rseqlAZCGfJxDa+2dhblc4CR2cyAMesg9pSn8wYHA==~3683650~3491383; AMCV_9BD537045330573C0A490D44%40AdobeOrg=-408604571%7CMCIDTS%7C19307%7CMCMID%7C33042062579560787242129122377797597997%7CMCAID%7C31B6989A896721D6-600000887BFA0850%7CMCOPTOUT-1668107601s%7CNONE%7CMCAAMLH-1668705201%7C6%7CMCAAMB-1668705201%7Cj8Odv6LonN4r3an7LhD3WZrU1bUpAkFkkiY1ncBR96t2PTI%7CMCSYNCSOP%7C411-19314%7CvVersion%7C4.6.0; mbox=session#27f2b4d776194ac890c08bce568e0ec9#1668102262|PC#27f2b4d776194ac890c08bce568e0ec9.37_0#1731345202; bm_sv=954F8CEE59ED3B7CD609760D612EE728~YAAQoQVJFytv1VeEAQAAU0CkYhFY94LP0BCkV7y5UggpUqTQEhLj/WJUmY/EmDJDMv8JsN35QUh9t1bLa8ZO6UBEIc5FtF77Tfj6yeFXCari3S2o6PNjSAUJKv0z+SdBNboQNOOUONcgpyEtguzrGCwKeeLCUNY5I7AXS4mf82DL9fAVitWIUJRxQLMzKNaGrrIqKMvFR+fwyxQk+4i1gMy3GoWwF+GZalTpHJlLuFCEsCWlMWMBJq8PJbZtg78BNAyRF1o=~1; _gcl_au=1.1.673889086.1668100401; _tq_id.TV-8181450918-1.e1be=86abe9320f0166bf.1668100401.0.1668100401..; s_vi=[CS]v1|31B6989A896721D6-600000887BFA0850[CE]; s_ecid=MCMID%7C33042062579560787242129122377797597997; _uetsid=fab387e0611a11eda9dab92fb9fdb0c8; _uetvid=fab39b90611a11ed9ee669e5c018eeb2; _fbp=fb.1.1668100402534.1388787247; LPVID=ZkNTEwZjU1Yjk1ZWRkNzY5; at_check=true
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: Apache/2.4.54 (Unix) OpenSSL/1.1.1k Communique/4.3.3
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN, SAMEORIGIN
referrer-policy: same-origin
content-length: 24
content-type: application/json;charset=iso-8859-1
date: Thu, 10 Nov 2022 17:44:03 GMT
permissions-policy: interest-cohort=()
strict-transport-security: max-age=31536000
set-cookie: bm_sv=954F8CEE59ED3B7CD609760D612EE728~YAAQoQVJF31v1VeEAQAAfkOkYhFZfngVyGtvE1jEMugBAOx8rdR39TKSJLov3+dGr3sQWNNpst3PMguu9gqYfeCU+tqRLIjlPx3Tv4TcEIu8oOujX5Nv9YFCLdilZG95AQSzy2/qmLLvVKqc+9rxhwhYroVEpVrBY1/jX61AlVb56CbOJOwC8INzjYdz3Bp/DhO4ybihMQ0bSTUodXXnRIGkqAcVrOfVRVNTkc4ADTsBTKRjS/M5SIzAfCJjkWfzuHO0AMk=~1; Domain=.navyfederal.org; Path=/; Expires=Thu, 10 Nov 2022 19:13:24 GMT; Max-Age=5361; Secure
X-Firefox-Spdy: h2

vt.myvisualiq.net/2/S7hcyN%2BYlMTsSfrBl3gOSQ%3D%3D/vt-204.js

54.230.111.39

200 OK

4.7 kB

URL HTTP/1.1
vt.myvisualiq.net/2/S7hcyN%2BYlMTsSfrBl3gOSQ%3D%3D/vt-204.js
IP
54.230.111.39:0
ASN
#16509 AMAZON-02

File type
ASCII text, with very long lines (12995)
Size
4.7 kB (4733 bytes)
Hash
f19ca0240a86175a31049fa0cc9ef88c
8d6613c3dc9d149a67f0b34487bd063ca8b3bd3a
53897c9ffb92a85a86b8caea83ef34710731e5b9b861852f81d4d84d39f0dc45

HTTP Headers

GET /2/S7hcyN%2BYlMTsSfrBl3gOSQ%3D%3D/vt-204.js HTTP/1.1
Host: vt.myvisualiq.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Content-Type: application/x-javascript
Transfer-Encoding: chunked
Connection: keep-alive
x-amz-id-2: 3jBzr89vLwuS2ypImlKeqA//KPYyIbemztRJmOMBu41Ziz295I1ZpWHtCkQWuQZmXTLZtH1PUbA=
x-amz-request-id: VC6EE05Y00TFYD6A
Last-Modified: Thu, 20 Oct 2022 15:28:34 GMT
x-amz-server-side-encryption: AES256
x-amz-version-id: 8Z.CHsFyU2m_BymmEMxhKOC9rUnCisgQ
Server: AmazonS3
Content-Encoding: gzip
Date: Thu, 10 Nov 2022 16:00:02 GMT
ETag: W/"af6cb5d50f4e6b3ebee1eeab0608e519"
Vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
X-Cache: Hit from cloudfront
Via: 1.1 d9fb4c3794a085bb4ee2c5798c2cb1b8.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: 4hTuqZbTxeda8ESUsqbZosDpES13_pZ7QtvzX18uhbGFwhNHOE-5sA==
Age: 6242

ocsp.pki.goog/gts1c3

142.250.74.35

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
5438277cc973221fbc764018e02f2795
7521bbd97854d3943f82c59c33e64c5d4053cfdf
1d10c8e413b0c0fe9a3bef6c2922355934e735ac66aa4ccd2dc0a8f5c43a1d11

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 10 Nov 2022 17:44:03 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.navyfederal.org/content/dam/icons/two-tone/military-chk-wizard.svg

104.66.116.9

200 OK

656 B

URL HTTP/2
www.navyfederal.org/content/dam/icons/two-tone/military-chk-wizard.svg
IP
104.66.116.9:0
ASN
#16625 AKAMAI-AS

File type
SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
656 B (656 bytes)
Hash
8b682e3559fd04ecd2e3cc1e5c308860
9ba7677702f8bea7c2c9dabfe3567239180cfd08
a86896caa80209d5f05506803b4cbf8c48cab8629fbb454f4a3b618952b71957

HTTP Headers

GET /content/dam/icons/two-tone/military-chk-wizard.svg HTTP/1.1
Host: www.navyfederal.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.navyfederal.org/
Connection: keep-alive
Cookie: _abck=DC80667D0074DA1B3BEF3F54E8921A40~0~YAAQoQVJF8Fa0VeEAQAAnTqIYgi/nj+T4rm31e4sHb7PwvDgqViCOtOD0fiBRFdYqJz0dyA9hJGa4EKA25STY/GpHMVGFfC14EoCo7/tP22D3oHMr+5qp8G9NqHsUnR9yTKnR1gDMzNSabdwOgdWeiR3wmDDs5rdE0m0wQzp8PQTsrURuGjWfWyVuuFEzWEkI579VbdKmXleunDtM/Ey4wOAt5iK/CTF3/Ox6XLe57BJT51t1Kp9a679k5gUjfUPfeeH8XqRQJAWfjqES0NyrJhRBCsqtN2916Y4kNjL0f4762Odoe5Vkt1X2B5+mTKei0UGyrs39M4nJdzzGgojv8WKyQr/lqHy3zLvS+H/XpPCfgOBRc7VprY+7xU+4EZsxrhZvuX/kBO7CdPIxPQKcmhbnBFgYpODAx2Rzc2/~-1~-1~-1; ak_bmsc=CD3D104392607DD4CA7FAC81BDEADF02~000000000000000000000000000000~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; bm_sz=7B5052FB392BE93F5C4C18559FA2BAF5~YAAQoQVJFyRZ0VeEAQAAmjKIYhHpUahXFvdsAaQJmpC1C/Df62CHAJDHM90z1RUp3QYAryRGAWuFC63uafX4GOkO57t7PdFyJs0XxIz5olBO3T9gRurFzQzMLiGaiM7O2AqD14VfNPCCfxbfSR0CGBwnPloUAjk2zoSqL59EY4oA2fSfgNIeU2cpPgd3HyKRc4ce1Ft94xdw4pwO9Bo/no2AgzdZdAouR7qP/2L4sQY9BsHYp+FbYEG2SoEO1s/Dhy/4pHmCti2x4rseqlAZCGfJxDa+2dhblc4CR2cyAMesg9pSn8wYHA==~3683650~3491383; AMCV_9BD537045330573C0A490D44%40AdobeOrg=-408604571%7CMCIDTS%7C19307%7CMCMID%7C33042062579560787242129122377797597997%7CMCAID%7C31B6989A896721D6-600000887BFA0850%7CMCOPTOUT-1668107601s%7CNONE%7CMCAAMLH-1668705201%7C6%7CMCAAMB-1668705201%7Cj8Odv6LonN4r3an7LhD3WZrU1bUpAkFkkiY1ncBR96t2PTI%7CMCSYNCSOP%7C411-19314%7CvVersion%7C4.6.0; mbox=session#27f2b4d776194ac890c08bce568e0ec9#1668104100|PC#27f2b4d776194ac890c08bce568e0ec9.37_0#1731345202; bm_sv=954F8CEE59ED3B7CD609760D612EE728~YAAQoQVJF31v1VeEAQAAfkOkYhFZfngVyGtvE1jEMugBAOx8rdR39TKSJLov3+dGr3sQWNNpst3PMguu9gqYfeCU+tqRLIjlPx3Tv4TcEIu8oOujX5Nv9YFCLdilZG95AQSzy2/qmLLvVKqc+9rxhwhYroVEpVrBY1/jX61AlVb56CbOJOwC8INzjYdz3Bp/DhO4ybihMQ0bSTUodXXnRIGkqAcVrOfVRVNTkc4ADTsBTKRjS/M5SIzAfCJjkWfzuHO0AMk=~1; _gcl_au=1.1.673889086.1668100401; _tq_id.TV-8181450918-1.e1be=86abe9320f0166bf.1668100401.0.1668100401..; s_vi=[CS]v1|31B6989A896721D6-600000887BFA0850[CE]; s_ecid=MCMID%7C33042062579560787242129122377797597997; _uetsid=fab387e0611a11eda9dab92fb9fdb0c8; _uetvid=fab39b90611a11ed9ee669e5c018eeb2; _fbp=fb.1.1668100402534.1388787247; LPVID=ZkNTEwZjU1Yjk1ZWRkNzY5; at_check=true
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: Apache/2.4.54 (Unix) OpenSSL/1.1.1k Communique/4.3.3
last-modified: Wed, 05 Aug 2020 20:10:56 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-frame-options: SAMEORIGIN, SAMEORIGIN
referrer-policy: same-origin
x-content-type-options: nosniff
content-length: 656
content-type: image/svg+xml
cache-control: max-age=86400
expires: Fri, 11 Nov 2022 17:44:03 GMT
date: Thu, 10 Nov 2022 17:44:03 GMT
permissions-policy: interest-cohort=()
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2

www.navyfederal.org/content/dam/card-art/amex/more-rewards-elevated-right-tilt.png/jcr:content/renditions/nfcu.small.428.209.png

104.66.116.9

200 OK

51 kB

URL HTTP/2
www.navyfederal.org/content/dam/card-art/amex/more-rewards-elevated-right-tilt.png/jcr:content/renditions/nfcu.small.428.209.png
IP
104.66.116.9:0
ASN
#16625 AKAMAI-AS

File type
PNG image data, 428 x 187, 8-bit/color RGBA, non-interlaced\012- data
Size
51 kB (50751 bytes)
Hash
132d1222ab2f5999e158923b19eaf48c
b5f97e488afb670e587f29c1bf5cd3b1c62b3436
5314dea793df7da7253d1397b1c6d2ad0b2b112749014e030a2456790f7695f2

HTTP Headers

GET /content/dam/card-art/amex/more-rewards-elevated-right-tilt.png/jcr:content/renditions/nfcu.small.428.209.png HTTP/1.1
Host: www.navyfederal.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.navyfederal.org/
Connection: keep-alive
Cookie: _abck=DC80667D0074DA1B3BEF3F54E8921A40~0~YAAQoQVJF8Fa0VeEAQAAnTqIYgi/nj+T4rm31e4sHb7PwvDgqViCOtOD0fiBRFdYqJz0dyA9hJGa4EKA25STY/GpHMVGFfC14EoCo7/tP22D3oHMr+5qp8G9NqHsUnR9yTKnR1gDMzNSabdwOgdWeiR3wmDDs5rdE0m0wQzp8PQTsrURuGjWfWyVuuFEzWEkI579VbdKmXleunDtM/Ey4wOAt5iK/CTF3/Ox6XLe57BJT51t1Kp9a679k5gUjfUPfeeH8XqRQJAWfjqES0NyrJhRBCsqtN2916Y4kNjL0f4762Odoe5Vkt1X2B5+mTKei0UGyrs39M4nJdzzGgojv8WKyQr/lqHy3zLvS+H/XpPCfgOBRc7VprY+7xU+4EZsxrhZvuX/kBO7CdPIxPQKcmhbnBFgYpODAx2Rzc2/~-1~-1~-1; ak_bmsc=CD3D104392607DD4CA7FAC81BDEADF02~000000000000000000000000000000~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; bm_sz=7B5052FB392BE93F5C4C18559FA2BAF5~YAAQoQVJFyRZ0VeEAQAAmjKIYhHpUahXFvdsAaQJmpC1C/Df62CHAJDHM90z1RUp3QYAryRGAWuFC63uafX4GOkO57t7PdFyJs0XxIz5olBO3T9gRurFzQzMLiGaiM7O2AqD14VfNPCCfxbfSR0CGBwnPloUAjk2zoSqL59EY4oA2fSfgNIeU2cpPgd3HyKRc4ce1Ft94xdw4pwO9Bo/no2AgzdZdAouR7qP/2L4sQY9BsHYp+FbYEG2SoEO1s/Dhy/4pHmCti2x4rseqlAZCGfJxDa+2dhblc4CR2cyAMesg9pSn8wYHA==~3683650~3491383; AMCV_9BD537045330573C0A490D44%40AdobeOrg=-408604571%7CMCIDTS%7C19307%7CMCMID%7C33042062579560787242129122377797597997%7CMCAID%7C31B6989A896721D6-600000887BFA0850%7CMCOPTOUT-1668107601s%7CNONE%7CMCAAMLH-1668705201%7C6%7CMCAAMB-1668705201%7Cj8Odv6LonN4r3an7LhD3WZrU1bUpAkFkkiY1ncBR96t2PTI%7CMCSYNCSOP%7C411-19314%7CvVersion%7C4.6.0; mbox=session#27f2b4d776194ac890c08bce568e0ec9#1668104100|PC#27f2b4d776194ac890c08bce568e0ec9.37_0#1731345202; bm_sv=954F8CEE59ED3B7CD609760D612EE728~YAAQoQVJF31v1VeEAQAAfkOkYhFZfngVyGtvE1jEMugBAOx8rdR39TKSJLov3+dGr3sQWNNpst3PMguu9gqYfeCU+tqRLIjlPx3Tv4TcEIu8oOujX5Nv9YFCLdilZG95AQSzy2/qmLLvVKqc+9rxhwhYroVEpVrBY1/jX61AlVb56CbOJOwC8INzjYdz3Bp/DhO4ybihMQ0bSTUodXXnRIGkqAcVrOfVRVNTkc4ADTsBTKRjS/M5SIzAfCJjkWfzuHO0AMk=~1; _gcl_au=1.1.673889086.1668100401; _tq_id.TV-8181450918-1.e1be=86abe9320f0166bf.1668100401.0.1668100401..; s_vi=[CS]v1|31B6989A896721D6-600000887BFA0850[CE]; s_ecid=MCMID%7C33042062579560787242129122377797597997; _uetsid=fab387e0611a11eda9dab92fb9fdb0c8; _uetvid=fab39b90611a11ed9ee669e5c018eeb2; _fbp=fb.1.1668100402534.1388787247; LPVID=ZkNTEwZjU1Yjk1ZWRkNzY5; at_check=true
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: Apache/2.4.54 (Unix) OpenSSL/1.1.1k Communique/4.3.3
x-content-type-options: nosniff
content-disposition: attachment
content-length: 50751
x-frame-options: SAMEORIGIN, SAMEORIGIN
referrer-policy: same-origin
content-type: image/png
cache-control: max-age=86400
expires: Fri, 11 Nov 2022 17:44:03 GMT
date: Thu, 10 Nov 2022 17:44:03 GMT
permissions-policy: interest-cohort=()
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2

www.navyfederal.org/content/dam/icons/two-tone/va-loans-logo.svg

104.66.116.9

200 OK

722 B

URL HTTP/2
www.navyfederal.org/content/dam/icons/two-tone/va-loans-logo.svg
IP
104.66.116.9:0
ASN
#16625 AKAMAI-AS

File type
SVG Scalable Vector Graphics image\012- HTML document, ASCII text, with very long lines (1813), with no line terminators
Size
722 B (722 bytes)
Hash
7d44eac9f3e120e84317abdfc52385eb
c3dc6df6bf476b4eaa73545ec8e3fe8df62d184c
c25da93ee890d9fed1a1bb6029d0f2f2666c1f13e02be72936e70e7c679ac8ab

HTTP Headers

GET /content/dam/icons/two-tone/va-loans-logo.svg HTTP/1.1
Host: www.navyfederal.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.navyfederal.org/
Connection: keep-alive
Cookie: _abck=DC80667D0074DA1B3BEF3F54E8921A40~0~YAAQoQVJF8Fa0VeEAQAAnTqIYgi/nj+T4rm31e4sHb7PwvDgqViCOtOD0fiBRFdYqJz0dyA9hJGa4EKA25STY/GpHMVGFfC14EoCo7/tP22D3oHMr+5qp8G9NqHsUnR9yTKnR1gDMzNSabdwOgdWeiR3wmDDs5rdE0m0wQzp8PQTsrURuGjWfWyVuuFEzWEkI579VbdKmXleunDtM/Ey4wOAt5iK/CTF3/Ox6XLe57BJT51t1Kp9a679k5gUjfUPfeeH8XqRQJAWfjqES0NyrJhRBCsqtN2916Y4kNjL0f4762Odoe5Vkt1X2B5+mTKei0UGyrs39M4nJdzzGgojv8WKyQr/lqHy3zLvS+H/XpPCfgOBRc7VprY+7xU+4EZsxrhZvuX/kBO7CdPIxPQKcmhbnBFgYpODAx2Rzc2/~-1~-1~-1; ak_bmsc=CD3D104392607DD4CA7FAC81BDEADF02~000000000000000000000000000000~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; bm_sz=7B5052FB392BE93F5C4C18559FA2BAF5~YAAQoQVJFyRZ0VeEAQAAmjKIYhHpUahXFvdsAaQJmpC1C/Df62CHAJDHM90z1RUp3QYAryRGAWuFC63uafX4GOkO57t7PdFyJs0XxIz5olBO3T9gRurFzQzMLiGaiM7O2AqD14VfNPCCfxbfSR0CGBwnPloUAjk2zoSqL59EY4oA2fSfgNIeU2cpPgd3HyKRc4ce1Ft94xdw4pwO9Bo/no2AgzdZdAouR7qP/2L4sQY9BsHYp+FbYEG2SoEO1s/Dhy/4pHmCti2x4rseqlAZCGfJxDa+2dhblc4CR2cyAMesg9pSn8wYHA==~3683650~3491383; AMCV_9BD537045330573C0A490D44%40AdobeOrg=-408604571%7CMCIDTS%7C19307%7CMCMID%7C33042062579560787242129122377797597997%7CMCAID%7C31B6989A896721D6-600000887BFA0850%7CMCOPTOUT-1668107601s%7CNONE%7CMCAAMLH-1668705201%7C6%7CMCAAMB-1668705201%7Cj8Odv6LonN4r3an7LhD3WZrU1bUpAkFkkiY1ncBR96t2PTI%7CMCSYNCSOP%7C411-19314%7CvVersion%7C4.6.0; mbox=session#27f2b4d776194ac890c08bce568e0ec9#1668104100|PC#27f2b4d776194ac890c08bce568e0ec9.37_0#1731345202; bm_sv=954F8CEE59ED3B7CD609760D612EE728~YAAQoQVJF31v1VeEAQAAfkOkYhFZfngVyGtvE1jEMugBAOx8rdR39TKSJLov3+dGr3sQWNNpst3PMguu9gqYfeCU+tqRLIjlPx3Tv4TcEIu8oOujX5Nv9YFCLdilZG95AQSzy2/qmLLvVKqc+9rxhwhYroVEpVrBY1/jX61AlVb56CbOJOwC8INzjYdz3Bp/DhO4ybihMQ0bSTUodXXnRIGkqAcVrOfVRVNTkc4ADTsBTKRjS/M5SIzAfCJjkWfzuHO0AMk=~1; _gcl_au=1.1.673889086.1668100401; _tq_id.TV-8181450918-1.e1be=86abe9320f0166bf.1668100401.0.1668100401..; s_vi=[CS]v1|31B6989A896721D6-600000887BFA0850[CE]; s_ecid=MCMID%7C33042062579560787242129122377797597997; _uetsid=fab387e0611a11eda9dab92fb9fdb0c8; _uetvid=fab39b90611a11ed9ee669e5c018eeb2; _fbp=fb.1.1668100402534.1388787247; LPVID=ZkNTEwZjU1Yjk1ZWRkNzY5; at_check=true
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: Apache/2.4.54 (Unix) OpenSSL/1.1.1k Communique/4.3.3
last-modified: Fri, 15 Jul 2022 12:42:38 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-frame-options: SAMEORIGIN, SAMEORIGIN
referrer-policy: same-origin
x-content-type-options: nosniff
content-length: 722
content-type: image/svg+xml
cache-control: max-age=86400
expires: Fri, 11 Nov 2022 17:44:03 GMT
date: Thu, 10 Nov 2022 17:44:03 GMT
permissions-policy: interest-cohort=()
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2

www.navyfederal.org/content/dam/illustrations/books-college-cap.svg

104.66.116.9

200 OK

3.0 kB

URL HTTP/2
www.navyfederal.org/content/dam/illustrations/books-college-cap.svg
IP
104.66.116.9:0
ASN
#16625 AKAMAI-AS

File type
SVG Scalable Vector Graphics image\012- HTML document, ASCII text, with very long lines (650)
Size
3.0 kB (3039 bytes)
Hash
eb74385880e07529598ff356fc194351
6625d0fa3a69b3330a40fb01d187b0fbcc5d4fcc
1737f6f5d9ed9eeebc29a03aaecf5df418c3993c3dc1acaa315fae36f94eaa0c

HTTP Headers

GET /content/dam/illustrations/books-college-cap.svg HTTP/1.1
Host: www.navyfederal.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.navyfederal.org/
Connection: keep-alive
Cookie: _abck=DC80667D0074DA1B3BEF3F54E8921A40~0~YAAQoQVJF8Fa0VeEAQAAnTqIYgi/nj+T4rm31e4sHb7PwvDgqViCOtOD0fiBRFdYqJz0dyA9hJGa4EKA25STY/GpHMVGFfC14EoCo7/tP22D3oHMr+5qp8G9NqHsUnR9yTKnR1gDMzNSabdwOgdWeiR3wmDDs5rdE0m0wQzp8PQTsrURuGjWfWyVuuFEzWEkI579VbdKmXleunDtM/Ey4wOAt5iK/CTF3/Ox6XLe57BJT51t1Kp9a679k5gUjfUPfeeH8XqRQJAWfjqES0NyrJhRBCsqtN2916Y4kNjL0f4762Odoe5Vkt1X2B5+mTKei0UGyrs39M4nJdzzGgojv8WKyQr/lqHy3zLvS+H/XpPCfgOBRc7VprY+7xU+4EZsxrhZvuX/kBO7CdPIxPQKcmhbnBFgYpODAx2Rzc2/~-1~-1~-1; ak_bmsc=CD3D104392607DD4CA7FAC81BDEADF02~000000000000000000000000000000~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; bm_sz=7B5052FB392BE93F5C4C18559FA2BAF5~YAAQoQVJFyRZ0VeEAQAAmjKIYhHpUahXFvdsAaQJmpC1C/Df62CHAJDHM90z1RUp3QYAryRGAWuFC63uafX4GOkO57t7PdFyJs0XxIz5olBO3T9gRurFzQzMLiGaiM7O2AqD14VfNPCCfxbfSR0CGBwnPloUAjk2zoSqL59EY4oA2fSfgNIeU2cpPgd3HyKRc4ce1Ft94xdw4pwO9Bo/no2AgzdZdAouR7qP/2L4sQY9BsHYp+FbYEG2SoEO1s/Dhy/4pHmCti2x4rseqlAZCGfJxDa+2dhblc4CR2cyAMesg9pSn8wYHA==~3683650~3491383; AMCV_9BD537045330573C0A490D44%40AdobeOrg=-408604571%7CMCIDTS%7C19307%7CMCMID%7C33042062579560787242129122377797597997%7CMCAID%7C31B6989A896721D6-600000887BFA0850%7CMCOPTOUT-1668107601s%7CNONE%7CMCAAMLH-1668705201%7C6%7CMCAAMB-1668705201%7Cj8Odv6LonN4r3an7LhD3WZrU1bUpAkFkkiY1ncBR96t2PTI%7CMCSYNCSOP%7C411-19314%7CvVersion%7C4.6.0; mbox=session#27f2b4d776194ac890c08bce568e0ec9#1668104100|PC#27f2b4d776194ac890c08bce568e0ec9.37_0#1731345202; bm_sv=954F8CEE59ED3B7CD609760D612EE728~YAAQoQVJF31v1VeEAQAAfkOkYhFZfngVyGtvE1jEMugBAOx8rdR39TKSJLov3+dGr3sQWNNpst3PMguu9gqYfeCU+tqRLIjlPx3Tv4TcEIu8oOujX5Nv9YFCLdilZG95AQSzy2/qmLLvVKqc+9rxhwhYroVEpVrBY1/jX61AlVb56CbOJOwC8INzjYdz3Bp/DhO4ybihMQ0bSTUodXXnRIGkqAcVrOfVRVNTkc4ADTsBTKRjS/M5SIzAfCJjkWfzuHO0AMk=~1; _gcl_au=1.1.673889086.1668100401; _tq_id.TV-8181450918-1.e1be=86abe9320f0166bf.1668100401.0.1668100401..; s_vi=[CS]v1|31B6989A896721D6-600000887BFA0850[CE]; s_ecid=MCMID%7C33042062579560787242129122377797597997; _uetsid=fab387e0611a11eda9dab92fb9fdb0c8; _uetvid=fab39b90611a11ed9ee669e5c018eeb2; _fbp=fb.1.1668100402534.1388787247; LPVID=ZkNTEwZjU1Yjk1ZWRkNzY5; at_check=true
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: Apache/2.4.54 (Unix) OpenSSL/1.1.1k Communique/4.3.3
last-modified: Mon, 10 Feb 2020 20:22:38 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-frame-options: SAMEORIGIN, SAMEORIGIN
referrer-policy: same-origin
x-content-type-options: nosniff
content-length: 3039
content-type: image/svg+xml
cache-control: max-age=86400
expires: Fri, 11 Nov 2022 17:44:03 GMT
date: Thu, 10 Nov 2022 17:44:03 GMT
permissions-policy: interest-cohort=()
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2

www.navyfederal.org/content/dam/logos/third-party/liberty-mutual-logo-blk.png/jcr:content/renditions/nfcu.small.428.209.png

104.66.116.9

200 OK

22 kB

URL HTTP/2
www.navyfederal.org/content/dam/logos/third-party/liberty-mutual-logo-blk.png/jcr:content/renditions/nfcu.small.428.209.png
IP
104.66.116.9:0
ASN
#16625 AKAMAI-AS

File type
PNG image data, 428 x 125, 8-bit/color RGBA, non-interlaced\012- data
Size
22 kB (21923 bytes)
Hash
d90d48a6518414d8a7b63198d73bb09a
2f92740b1641724204b92d4f1dde0e36e8a8a966
645cf94f86bf235a8bf74889ae495445d28105f0185606bf6aa74aecf3bc8193

HTTP Headers

GET /content/dam/logos/third-party/liberty-mutual-logo-blk.png/jcr:content/renditions/nfcu.small.428.209.png HTTP/1.1
Host: www.navyfederal.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.navyfederal.org/
Connection: keep-alive
Cookie: _abck=DC80667D0074DA1B3BEF3F54E8921A40~0~YAAQoQVJF8Fa0VeEAQAAnTqIYgi/nj+T4rm31e4sHb7PwvDgqViCOtOD0fiBRFdYqJz0dyA9hJGa4EKA25STY/GpHMVGFfC14EoCo7/tP22D3oHMr+5qp8G9NqHsUnR9yTKnR1gDMzNSabdwOgdWeiR3wmDDs5rdE0m0wQzp8PQTsrURuGjWfWyVuuFEzWEkI579VbdKmXleunDtM/Ey4wOAt5iK/CTF3/Ox6XLe57BJT51t1Kp9a679k5gUjfUPfeeH8XqRQJAWfjqES0NyrJhRBCsqtN2916Y4kNjL0f4762Odoe5Vkt1X2B5+mTKei0UGyrs39M4nJdzzGgojv8WKyQr/lqHy3zLvS+H/XpPCfgOBRc7VprY+7xU+4EZsxrhZvuX/kBO7CdPIxPQKcmhbnBFgYpODAx2Rzc2/~-1~-1~-1; ak_bmsc=CD3D104392607DD4CA7FAC81BDEADF02~000000000000000000000000000000~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; bm_sz=7B5052FB392BE93F5C4C18559FA2BAF5~YAAQoQVJFyRZ0VeEAQAAmjKIYhHpUahXFvdsAaQJmpC1C/Df62CHAJDHM90z1RUp3QYAryRGAWuFC63uafX4GOkO57t7PdFyJs0XxIz5olBO3T9gRurFzQzMLiGaiM7O2AqD14VfNPCCfxbfSR0CGBwnPloUAjk2zoSqL59EY4oA2fSfgNIeU2cpPgd3HyKRc4ce1Ft94xdw4pwO9Bo/no2AgzdZdAouR7qP/2L4sQY9BsHYp+FbYEG2SoEO1s/Dhy/4pHmCti2x4rseqlAZCGfJxDa+2dhblc4CR2cyAMesg9pSn8wYHA==~3683650~3491383; AMCV_9BD537045330573C0A490D44%40AdobeOrg=-408604571%7CMCIDTS%7C19307%7CMCMID%7C33042062579560787242129122377797597997%7CMCAID%7C31B6989A896721D6-600000887BFA0850%7CMCOPTOUT-1668107601s%7CNONE%7CMCAAMLH-1668705201%7C6%7CMCAAMB-1668705201%7Cj8Odv6LonN4r3an7LhD3WZrU1bUpAkFkkiY1ncBR96t2PTI%7CMCSYNCSOP%7C411-19314%7CvVersion%7C4.6.0; mbox=session#27f2b4d776194ac890c08bce568e0ec9#1668104100|PC#27f2b4d776194ac890c08bce568e0ec9.37_0#1731345202; bm_sv=954F8CEE59ED3B7CD609760D612EE728~YAAQoQVJF31v1VeEAQAAfkOkYhFZfngVyGtvE1jEMugBAOx8rdR39TKSJLov3+dGr3sQWNNpst3PMguu9gqYfeCU+tqRLIjlPx3Tv4TcEIu8oOujX5Nv9YFCLdilZG95AQSzy2/qmLLvVKqc+9rxhwhYroVEpVrBY1/jX61AlVb56CbOJOwC8INzjYdz3Bp/DhO4ybihMQ0bSTUodXXnRIGkqAcVrOfVRVNTkc4ADTsBTKRjS/M5SIzAfCJjkWfzuHO0AMk=~1; _gcl_au=1.1.673889086.1668100401; _tq_id.TV-8181450918-1.e1be=86abe9320f0166bf.1668100401.0.1668100401..; s_vi=[CS]v1|31B6989A896721D6-600000887BFA0850[CE]; s_ecid=MCMID%7C33042062579560787242129122377797597997; _uetsid=fab387e0611a11eda9dab92fb9fdb0c8; _uetvid=fab39b90611a11ed9ee669e5c018eeb2; _fbp=fb.1.1668100402534.1388787247; LPVID=ZkNTEwZjU1Yjk1ZWRkNzY5; at_check=true
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: Apache/2.4.54 (Unix) OpenSSL/1.1.1k Communique/4.3.3
x-content-type-options: nosniff
content-disposition: attachment
content-length: 21923
x-frame-options: SAMEORIGIN, SAMEORIGIN
referrer-policy: same-origin
content-type: image/png
cache-control: max-age=86400
expires: Fri, 11 Nov 2022 17:44:03 GMT
date: Thu, 10 Nov 2022 17:44:03 GMT
permissions-policy: interest-cohort=()
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2

www.navyfederal.org/content/dam/photography/vehicle/gettyimages-690137724.jpg/jcr:content/renditions/nfcu.retina-large.2048.1000.jpg

104.66.116.9

200 OK

232 kB

URL HTTP/2
www.navyfederal.org/content/dam/photography/vehicle/gettyimages-690137724.jpg/jcr:content/renditions/nfcu.retina-large.2048.1000.jpg
IP
104.66.116.9:0
ASN
#16625 AKAMAI-AS

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, baseline, precision 8, 1476x1000, components 3\012- data
Size
232 kB (231841 bytes)
Hash
ef01af7628ec6e213a88f0a67c8c5660
b830da6ca9eba135d629425a136bd8232becb2a9
e91b4b9ff6047417f773693edac952c458e2f133766c6602ace74feef1c87562

HTTP Headers

GET /content/dam/photography/vehicle/gettyimages-690137724.jpg/jcr:content/renditions/nfcu.retina-large.2048.1000.jpg HTTP/1.1
Host: www.navyfederal.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.navyfederal.org/
Connection: keep-alive
Cookie: _abck=DC80667D0074DA1B3BEF3F54E8921A40~0~YAAQoQVJF8Fa0VeEAQAAnTqIYgi/nj+T4rm31e4sHb7PwvDgqViCOtOD0fiBRFdYqJz0dyA9hJGa4EKA25STY/GpHMVGFfC14EoCo7/tP22D3oHMr+5qp8G9NqHsUnR9yTKnR1gDMzNSabdwOgdWeiR3wmDDs5rdE0m0wQzp8PQTsrURuGjWfWyVuuFEzWEkI579VbdKmXleunDtM/Ey4wOAt5iK/CTF3/Ox6XLe57BJT51t1Kp9a679k5gUjfUPfeeH8XqRQJAWfjqES0NyrJhRBCsqtN2916Y4kNjL0f4762Odoe5Vkt1X2B5+mTKei0UGyrs39M4nJdzzGgojv8WKyQr/lqHy3zLvS+H/XpPCfgOBRc7VprY+7xU+4EZsxrhZvuX/kBO7CdPIxPQKcmhbnBFgYpODAx2Rzc2/~-1~-1~-1; ak_bmsc=CD3D104392607DD4CA7FAC81BDEADF02~000000000000000000000000000000~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; bm_sz=7B5052FB392BE93F5C4C18559FA2BAF5~YAAQoQVJFyRZ0VeEAQAAmjKIYhHpUahXFvdsAaQJmpC1C/Df62CHAJDHM90z1RUp3QYAryRGAWuFC63uafX4GOkO57t7PdFyJs0XxIz5olBO3T9gRurFzQzMLiGaiM7O2AqD14VfNPCCfxbfSR0CGBwnPloUAjk2zoSqL59EY4oA2fSfgNIeU2cpPgd3HyKRc4ce1Ft94xdw4pwO9Bo/no2AgzdZdAouR7qP/2L4sQY9BsHYp+FbYEG2SoEO1s/Dhy/4pHmCti2x4rseqlAZCGfJxDa+2dhblc4CR2cyAMesg9pSn8wYHA==~3683650~3491383; AMCV_9BD537045330573C0A490D44%40AdobeOrg=-408604571%7CMCIDTS%7C19307%7CMCMID%7C33042062579560787242129122377797597997%7CMCAID%7C31B6989A896721D6-600000887BFA0850%7CMCOPTOUT-1668107601s%7CNONE%7CMCAAMLH-1668705201%7C6%7CMCAAMB-1668705201%7Cj8Odv6LonN4r3an7LhD3WZrU1bUpAkFkkiY1ncBR96t2PTI%7CMCSYNCSOP%7C411-19314%7CvVersion%7C4.6.0; mbox=session#27f2b4d776194ac890c08bce568e0ec9#1668104100|PC#27f2b4d776194ac890c08bce568e0ec9.37_0#1731345202; bm_sv=954F8CEE59ED3B7CD609760D612EE728~YAAQoQVJF31v1VeEAQAAfkOkYhFZfngVyGtvE1jEMugBAOx8rdR39TKSJLov3+dGr3sQWNNpst3PMguu9gqYfeCU+tqRLIjlPx3Tv4TcEIu8oOujX5Nv9YFCLdilZG95AQSzy2/qmLLvVKqc+9rxhwhYroVEpVrBY1/jX61AlVb56CbOJOwC8INzjYdz3Bp/DhO4ybihMQ0bSTUodXXnRIGkqAcVrOfVRVNTkc4ADTsBTKRjS/M5SIzAfCJjkWfzuHO0AMk=~1; _gcl_au=1.1.673889086.1668100401; _tq_id.TV-8181450918-1.e1be=86abe9320f0166bf.1668100401.0.1668100401..; s_vi=[CS]v1|31B6989A896721D6-600000887BFA0850[CE]; s_ecid=MCMID%7C33042062579560787242129122377797597997; _uetsid=fab387e0611a11eda9dab92fb9fdb0c8; _uetvid=fab39b90611a11ed9ee669e5c018eeb2; _fbp=fb.1.1668100402534.1388787247; LPVID=ZkNTEwZjU1Yjk1ZWRkNzY5; at_check=true
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: Apache/2.4.54 (Unix) OpenSSL/1.1.1k Communique/4.3.3
last-modified: Mon, 28 Mar 2022 15:29:19 GMT
accept-ranges: bytes
content-length: 231841
x-frame-options: SAMEORIGIN, SAMEORIGIN
referrer-policy: same-origin
x-content-type-options: nosniff
content-type: image/jpeg
cache-control: max-age=86400
expires: Fri, 11 Nov 2022 17:44:03 GMT
date: Thu, 10 Nov 2022 17:44:03 GMT
permissions-policy: interest-cohort=()
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2

ocsp.sca1b.amazontrust.com/

54.230.245.39

200 OK

471 B

URL HTTP/1.1
ocsp.sca1b.amazontrust.com/
IP
54.230.245.39:0
ASN
#16509 AMAZON-02

File type
data
Size
471 B (471 bytes)
Hash
afd30c4bf8135bba56a29115900bee1c
9840ee07ae640d993938e37a88843d59cdf5bc72
93be8eb5d7ba33bd77265d1bb54a879e67857b856a88f9c3ddc99368cd569bc8

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=109890
Date: Thu, 10 Nov 2022 17:44:03 GMT
Etag: "636c32ab-1d7"
Expires: Sat, 12 Nov 2022 00:15:33 GMT
Last-Modified: Wed, 09 Nov 2022 23:07:23 GMT
Server: ECS (bsa/EB1E)
X-Cache: Miss from cloudfront
Via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: s6dDxOGSuLnysQP5VoriKMEazByki3KjjoAknl_JSkAfWPrgICkwBA==
Age: 4090

ocsp.godaddy.com/

192.124.249.24

200 OK

1.8 kB

URL HTTP/1.1
ocsp.godaddy.com/
IP
192.124.249.24:0
ASN
#30148 SUCURI-SEC

File type
data
Size
1.8 kB (1778 bytes)
Hash
d9581c012d64fbfa699568a29090bab2
cce0d2a8e176c9b7c734ee7bfdf6eb28e46c5d3e
95221bc482b81fa04388966a49306a11917516ae953970c41a3b6c9df9b57a4e

HTTP Headers

POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 76
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Thu, 10 Nov 2022 17:44:03 GMT
Content-Type: application/ocsp-response
Content-Length: 1778
Connection: keep-alive
X-Sucuri-ID: 19024
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Thu, 10 Nov 2022 04:56:05 GMT
Expires: Fri, 11 Nov 2022 04:56:05 GMT
ETag: "cce0d2a8e176c9b7c734ee7bfdf6eb28e46c5d3e"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"

ocsp.godaddy.com/

192.124.249.24

200 OK

1.8 kB

URL HTTP/1.1
ocsp.godaddy.com/
IP
192.124.249.24:0
ASN
#30148 SUCURI-SEC

File type
data
Size
1.8 kB (1778 bytes)
Hash
d9581c012d64fbfa699568a29090bab2
cce0d2a8e176c9b7c734ee7bfdf6eb28e46c5d3e
95221bc482b81fa04388966a49306a11917516ae953970c41a3b6c9df9b57a4e

HTTP Headers

POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 76
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Thu, 10 Nov 2022 17:44:03 GMT
Content-Type: application/ocsp-response
Content-Length: 1778
Connection: keep-alive
X-Sucuri-ID: 19024
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Thu, 10 Nov 2022 04:56:05 GMT
Expires: Fri, 11 Nov 2022 04:56:05 GMT
ETag: "cce0d2a8e176c9b7c734ee7bfdf6eb28e46c5d3e"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"

ocsp.godaddy.com/

192.124.249.24

200 OK

1.8 kB

URL HTTP/1.1
ocsp.godaddy.com/
IP
192.124.249.24:0
ASN
#30148 SUCURI-SEC

File type
data
Size
1.8 kB (1778 bytes)
Hash
d9581c012d64fbfa699568a29090bab2
cce0d2a8e176c9b7c734ee7bfdf6eb28e46c5d3e
95221bc482b81fa04388966a49306a11917516ae953970c41a3b6c9df9b57a4e

HTTP Headers

POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 76
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Thu, 10 Nov 2022 17:44:03 GMT
Content-Type: application/ocsp-response
Content-Length: 1778
Connection: keep-alive
X-Sucuri-ID: 19024
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Thu, 10 Nov 2022 04:56:05 GMT
Expires: Fri, 11 Nov 2022 04:56:05 GMT
ETag: "cce0d2a8e176c9b7c734ee7bfdf6eb28e46c5d3e"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"

ocsp.godaddy.com/

192.124.249.24

200 OK

1.8 kB

URL HTTP/1.1
ocsp.godaddy.com/
IP
192.124.249.24:0
ASN
#30148 SUCURI-SEC

File type
data
Size
1.8 kB (1778 bytes)
Hash
d9581c012d64fbfa699568a29090bab2
cce0d2a8e176c9b7c734ee7bfdf6eb28e46c5d3e
95221bc482b81fa04388966a49306a11917516ae953970c41a3b6c9df9b57a4e

HTTP Headers

POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 76
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Thu, 10 Nov 2022 17:44:03 GMT
Content-Type: application/ocsp-response
Content-Length: 1778
Connection: keep-alive
X-Sucuri-ID: 19024
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Thu, 10 Nov 2022 04:56:05 GMT
Expires: Fri, 11 Nov 2022 04:56:05 GMT
ETag: "cce0d2a8e176c9b7c734ee7bfdf6eb28e46c5d3e"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"

ocsp.pki.goog/gts1c3

142.250.74.35

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
da6ea2384d89dcf08521ba15aaa8c085
141a73f1f12700389cecb3548d37c2d5286e7a95
db36322a9271b8e877ba3b1b59c0b8783eb5e9ac8cddd9ecce4180904e7a1088

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 10 Nov 2022 17:44:03 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

t.myvisualiq.net/impression_pixel?r=9755795&et=i&ago=212&ao=832&aca=[campaign_id]&si=[site_id]&ci=[creative_id]&pi=[placement_id]&ad=[ad_id]&advt=[advertiser_id]&chnl=-62&vndr=101&sz=8685&u=nfcuhelp-secured.authorizeddns.us|https%3A%2F%2Fwww.navyfederal.org%2F&pt=i&othercookie_id=MCMID%7C33042062579560787242129122377797597997

3.123.165.27

302 Moved Temporarily

0 B

URL HTTP/1.1
t.myvisualiq.net/impression_pixel?r=9755795&et=i&ago=212&ao=832&aca=[campaign_id]&si=[site_id]&ci=[creative_id]&pi=[placement_id]&ad=[ad_id]&advt=[advertiser_id]&chnl=-62&vndr=101&sz=8685&u=nfcuhelp-secured.authorizeddns.us|https%3A%2F%2Fwww.navyfederal.org%2F&pt=i&othercookie_id=MCMID%7C33042062579560787242129122377797597997
IP
3.123.165.27:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /impression_pixel?r=9755795&et=i&ago=212&ao=832&aca=[campaign_id]&si=[site_id]&ci=[creative_id]&pi=[placement_id]&ad=[ad_id]&advt=[advertiser_id]&chnl=-62&vndr=101&sz=8685&u=nfcuhelp-secured.authorizeddns.us|https%3A%2F%2Fwww.navyfederal.org%2F&pt=i&othercookie_id=MCMID%7C33042062579560787242129122377797597997 HTTP/1.1
Host: t.myvisualiq.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 302 Moved Temporarily
Cache-Control: no-cache, no-store, must-revalidate
Date: Thu, 10 Nov 2022 17:44:03 GMT
Location: https://t.myvisualiq.net/ul_cb/impression_pixel?r=9755795&et=i&ago=212&ao=832&aca=[campaign_id]&si=[site_id]&ci=[creative_id]&pi=[placement_id]&ad=[ad_id]&advt=[advertiser_id]&chnl=-62&vndr=101&sz=8685&u=nfcuhelp-secured.authorizeddns.us|https%3A%2F%2Fwww.navyfederal.org%2F&pt=i&othercookie_id=MCMID%7C33042062579560787242129122377797597997
Set-Cookie: tuuid=4c36ac2d-0c02-4e58-9cfc-0af331c36ca8; path=/; expires=Sat, 09-Nov-2024 17:44:03 GMT; domain=.myvisualiq.net
c=1668102243; path=/; expires=Sat, 09-Nov-2024 17:44:03 GMT; domain=.myvisualiq.net
tuuid_lu=1668102243; path=/; expires=Sat, 09-Nov-2024 17:44:03 GMT; domain=.myvisualiq.net
Content-Length: 0
Connection: keep-alive

t.myvisualiq.net/sync?prid=123&ao=0&red=https%3A%2F%2Fwww.facebook.com%2Ftr%3Fid%3D125275241484882%26ev%3DPageView%26cd%5Border_id%5D%3D%24%7BUUID%7D%26dpo%3D

3.123.165.27

302 Moved Temporarily

0 B

URL HTTP/1.1
t.myvisualiq.net/sync?prid=123&ao=0&red=https%3A%2F%2Fwww.facebook.com%2Ftr%3Fid%3D125275241484882%26ev%3DPageView%26cd%5Border_id%5D%3D%24%7BUUID%7D%26dpo%3D
IP
3.123.165.27:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /sync?prid=123&ao=0&red=https%3A%2F%2Fwww.facebook.com%2Ftr%3Fid%3D125275241484882%26ev%3DPageView%26cd%5Border_id%5D%3D%24%7BUUID%7D%26dpo%3D HTTP/1.1
Host: t.myvisualiq.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 302 Moved Temporarily
Cache-Control: no-cache, no-store, must-revalidate
Date: Thu, 10 Nov 2022 17:44:03 GMT
Location: https://t.myvisualiq.net/ul_cb/sync?prid=123&ao=0&red=https%3A%2F%2Fwww.facebook.com%2Ftr%3Fid%3D125275241484882%26ev%3DPageView%26cd%5Border_id%5D%3D%24%7BUUID%7D%26dpo%3D
Set-Cookie: tuuid=7291dd61-27c3-4e0d-82da-eba6bf8247f5; path=/; expires=Sat, 09-Nov-2024 17:44:03 GMT; domain=.myvisualiq.net
c=1668102243; path=/; expires=Sat, 09-Nov-2024 17:44:03 GMT; domain=.myvisualiq.net
tuuid_lu=1668102243; path=/; expires=Sat, 09-Nov-2024 17:44:03 GMT; domain=.myvisualiq.net
Content-Length: 0
Connection: keep-alive

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
5b99fde0259db3e8b51b62ee9534edd3
24579a985b3e5ed4a14ab83f92986b5ec1c0f98f
f3b892dd118cd5eda4dec2dfc337ebee978a7aebb175e0e7001e50c99e015e98

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3260
Cache-Control: max-age=134233
Content-Type: application/ocsp-response
Date: Thu, 10 Nov 2022 17:44:03 GMT
Etag: "636c9500-1d7"
Expires: Sat, 12 Nov 2022 07:01:16 GMT
Last-Modified: Thu, 10 Nov 2022 06:06:56 GMT
Server: ECS (ska/F713)
X-Cache: HIT
Content-Length: 471

ocsp.pki.goog/gts1c3

142.250.74.35

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
da6ea2384d89dcf08521ba15aaa8c085
141a73f1f12700389cecb3548d37c2d5286e7a95
db36322a9271b8e877ba3b1b59c0b8783eb5e9ac8cddd9ecce4180904e7a1088

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 10 Nov 2022 17:44:03 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

t.myvisualiq.net/sync?prid=BUKIPNR1&red=https://tags.bluekai.com/site/21398?id=$%7BUUID%7D

3.123.165.27

302 Moved Temporarily

0 B

URL HTTP/1.1
t.myvisualiq.net/sync?prid=BUKIPNR1&red=https://tags.bluekai.com/site/21398?id=$%7BUUID%7D
IP
3.123.165.27:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /sync?prid=BUKIPNR1&red=https://tags.bluekai.com/site/21398?id=$%7BUUID%7D HTTP/1.1
Host: t.myvisualiq.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 302 Moved Temporarily
access-control-allow-origin: *
Cache-Control: no-cache, no-store, must-revalidate
cross-origin-resource-policy: cross-origin
Date: Thu, 10 Nov 2022 17:44:03 GMT
Location: https://tags.bluekai.com/site/21398?id=0-739cfc79-cc5d-4b69-aab4-d6919aa81e87
Content-Length: 0
Connection: keep-alive

www.navyfederal.org/etc.clientlibs/nfo/clientlibs/uife/clientlib-uife-basePage.min.1667712500.js

104.66.116.9

200 OK

0 B

URL HTTP/2
www.navyfederal.org/etc.clientlibs/nfo/clientlibs/uife/clientlib-uife-basePage.min.1667712500.js
IP
104.66.116.9:0
ASN
#16625 AKAMAI-AS

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /etc.clientlibs/nfo/clientlibs/uife/clientlib-uife-basePage.min.1667712500.js HTTP/1.1
Host: www.navyfederal.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.navyfederal.org/
Connection: keep-alive
Cookie: _abck=DC80667D0074DA1B3BEF3F54E8921A40~0~YAAQoQVJF8Fa0VeEAQAAnTqIYgi/nj+T4rm31e4sHb7PwvDgqViCOtOD0fiBRFdYqJz0dyA9hJGa4EKA25STY/GpHMVGFfC14EoCo7/tP22D3oHMr+5qp8G9NqHsUnR9yTKnR1gDMzNSabdwOgdWeiR3wmDDs5rdE0m0wQzp8PQTsrURuGjWfWyVuuFEzWEkI579VbdKmXleunDtM/Ey4wOAt5iK/CTF3/Ox6XLe57BJT51t1Kp9a679k5gUjfUPfeeH8XqRQJAWfjqES0NyrJhRBCsqtN2916Y4kNjL0f4762Odoe5Vkt1X2B5+mTKei0UGyrs39M4nJdzzGgojv8WKyQr/lqHy3zLvS+H/XpPCfgOBRc7VprY+7xU+4EZsxrhZvuX/kBO7CdPIxPQKcmhbnBFgYpODAx2Rzc2/~-1~-1~-1; ak_bmsc=CD3D104392607DD4CA7FAC81BDEADF02~000000000000000000000000000000~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; bm_sz=7B5052FB392BE93F5C4C18559FA2BAF5~YAAQoQVJFyRZ0VeEAQAAmjKIYhHpUahXFvdsAaQJmpC1C/Df62CHAJDHM90z1RUp3QYAryRGAWuFC63uafX4GOkO57t7PdFyJs0XxIz5olBO3T9gRurFzQzMLiGaiM7O2AqD14VfNPCCfxbfSR0CGBwnPloUAjk2zoSqL59EY4oA2fSfgNIeU2cpPgd3HyKRc4ce1Ft94xdw4pwO9Bo/no2AgzdZdAouR7qP/2L4sQY9BsHYp+FbYEG2SoEO1s/Dhy/4pHmCti2x4rseqlAZCGfJxDa+2dhblc4CR2cyAMesg9pSn8wYHA==~3683650~3491383; AMCV_9BD537045330573C0A490D44%40AdobeOrg=-408604571%7CMCIDTS%7C19307%7CMCMID%7C33042062579560787242129122377797597997%7CMCAID%7C31B6989A896721D6-600000887BFA0850%7CMCOPTOUT-1668107601s%7CNONE%7CMCAAMLH-1668705201%7C6%7CMCAAMB-1668705201%7Cj8Odv6LonN4r3an7LhD3WZrU1bUpAkFkkiY1ncBR96t2PTI%7CMCSYNCSOP%7C411-19314%7CvVersion%7C4.6.0; mbox=session#27f2b4d776194ac890c08bce568e0ec9#1668102262|PC#27f2b4d776194ac890c08bce568e0ec9.37_0#1731345202; bm_sv=954F8CEE59ED3B7CD609760D612EE728~YAAQoQVJFytv1VeEAQAAU0CkYhFY94LP0BCkV7y5UggpUqTQEhLj/WJUmY/EmDJDMv8JsN35QUh9t1bLa8ZO6UBEIc5FtF77Tfj6yeFXCari3S2o6PNjSAUJKv0z+SdBNboQNOOUONcgpyEtguzrGCwKeeLCUNY5I7AXS4mf82DL9fAVitWIUJRxQLMzKNaGrrIqKMvFR+fwyxQk+4i1gMy3GoWwF+GZalTpHJlLuFCEsCWlMWMBJq8PJbZtg78BNAyRF1o=~1; _gcl_au=1.1.673889086.1668100401; _tq_id.TV-8181450918-1.e1be=86abe9320f0166bf.1668100401.0.1668100401..; s_vi=[CS]v1|31B6989A896721D6-600000887BFA0850[CE]; s_ecid=MCMID%7C33042062579560787242129122377797597997; _uetsid=fab387e0611a11eda9dab92fb9fdb0c8; _uetvid=fab39b90611a11ed9ee669e5c018eeb2; _fbp=fb.1.1668100402534.1388787247; LPVID=ZkNTEwZjU1Yjk1ZWRkNzY5
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: Apache/2.4.54 (Unix) OpenSSL/1.1.1k Communique/4.3.3
last-modified: Sun, 06 Nov 2022 05:32:03 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-frame-options: SAMEORIGIN, SAMEORIGIN
referrer-policy: same-origin
x-content-type-options: nosniff
content-length: 23443
content-type: application/javascript;charset=utf-8
cache-control: max-age=86400
expires: Fri, 11 Nov 2022 17:44:02 GMT
date: Thu, 10 Nov 2022 17:44:02 GMT
permissions-policy: interest-cohort=()
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2

t.myvisualiq.net/sync?prid=AOEPNR1&ao=0&red=https%3A%2F%2Fdpm.demdex.net%2Fibs%3Adpid%3D125310%26dpuuid%3D%24%7BUUID%7D%26redir%3Dhttps%253A%252F%252Ft.myvisualiq.net%252Fsync%253Fprid%253DAOEPNR1%2526ao%253D0%2526pruuid%253D%2524%257BDD_UUID%257D%250A

3.123.165.27

302 Moved Temporarily

0 B

URL HTTP/1.1
t.myvisualiq.net/sync?prid=AOEPNR1&ao=0&red=https%3A%2F%2Fdpm.demdex.net%2Fibs%3Adpid%3D125310%26dpuuid%3D%24%7BUUID%7D%26redir%3Dhttps%253A%252F%252Ft.myvisualiq.net%252Fsync%253Fprid%253DAOEPNR1%2526ao%253D0%2526pruuid%253D%2524%257BDD_UUID%257D%250A
IP
3.123.165.27:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /sync?prid=AOEPNR1&ao=0&red=https%3A%2F%2Fdpm.demdex.net%2Fibs%3Adpid%3D125310%26dpuuid%3D%24%7BUUID%7D%26redir%3Dhttps%253A%252F%252Ft.myvisualiq.net%252Fsync%253Fprid%253DAOEPNR1%2526ao%253D0%2526pruuid%253D%2524%257BDD_UUID%257D%250A HTTP/1.1
Host: t.myvisualiq.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 302 Moved Temporarily
access-control-allow-origin: *
Cache-Control: no-cache, no-store, must-revalidate
cross-origin-resource-policy: cross-origin
Date: Thu, 10 Nov 2022 17:44:03 GMT
Location: https://dpm.demdex.net/ibs:dpid=125310&dpuuid=0-0b3786f6-0563-46d8-b727-61e4a1b5f2b2&redir=https%3A%2F%2Ft.myvisualiq.net%2Fsync%3Fprid%3DAOEPNR1%26ao%3D0%26pruuid%3D%24%7BDD_UUID%7D
Content-Length: 0
Connection: keep-alive

ocsp.godaddy.com/

192.124.249.24

200 OK

1.8 kB

URL HTTP/1.1
ocsp.godaddy.com/
IP
192.124.249.24:0
ASN
#30148 SUCURI-SEC

File type
data
Size
1.8 kB (1778 bytes)
Hash
d9581c012d64fbfa699568a29090bab2
cce0d2a8e176c9b7c734ee7bfdf6eb28e46c5d3e
95221bc482b81fa04388966a49306a11917516ae953970c41a3b6c9df9b57a4e

HTTP Headers

POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 76
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Thu, 10 Nov 2022 17:44:03 GMT
Content-Type: application/ocsp-response
Content-Length: 1778
Connection: keep-alive
X-Sucuri-ID: 19024
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Thu, 10 Nov 2022 04:56:05 GMT
Expires: Fri, 11 Nov 2022 04:56:05 GMT
ETag: "cce0d2a8e176c9b7c734ee7bfdf6eb28e46c5d3e"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"

collector-11598.tvsquared.com/tv2track.js

13.58.136.78

200 OK

8.5 kB

URL HTTP/1.1
collector-11598.tvsquared.com/tv2track.js
IP
13.58.136.78:0
ASN
#16509 AMAZON-02

File type
ASCII text, with very long lines (1162)
Size
8.5 kB (8499 bytes)
Hash
541a38b4f06e41464c0d654e841ac424
d8e6cdf23733cbe85120de52b58c2c7dbe746758
55df73bbedbdb87259af7ccc47efce4497781d0a3154e97a8e07ff059ace234d

HTTP Headers

GET /tv2track.js HTTP/1.1
Host: collector-11598.tvsquared.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Cache-Control: max-age=600
Content-Encoding: gzip
Content-Type: application/javascript
Date: Thu, 10 Nov 2022 17:44:03 GMT
ETag: "6305f9ab-2133"
Expires: Thu, 10 Nov 2022 17:54:03 GMT
Last-Modified: Wed, 24 Aug 2022 10:12:59 GMT
Server: nginx
X-Robots-Tag: noindex
Content-Length: 8499
Connection: keep-alive

t.myvisualiq.net/ul_cb/impression_pixel?r=9755795&et=i&ago=212&ao=832&aca=[campaign_id]&si=[site_id]&ci=[creative_id]&pi=[placement_id]&ad=[ad_id]&advt=[advertiser_id]&chnl=-62&vndr=101&sz=8685&u=nfcuhelp-secured.authorizeddns.us|https%3A%2F%2Fwww.navyfederal.org%2F&pt=i&othercookie_id=MCMID%7C33042062579560787242129122377797597997

3.123.165.27

200 OK

43 B

URL HTTP/1.1
t.myvisualiq.net/ul_cb/impression_pixel?r=9755795&et=i&ago=212&ao=832&aca=[campaign_id]&si=[site_id]&ci=[creative_id]&pi=[placement_id]&ad=[ad_id]&advt=[advertiser_id]&chnl=-62&vndr=101&sz=8685&u=nfcuhelp-secured.authorizeddns.us|https%3A%2F%2Fwww.navyfederal.org%2F&pt=i&othercookie_id=MCMID%7C33042062579560787242129122377797597997
IP
3.123.165.27:0
ASN
#16509 AMAZON-02

File type
GIF image data, version 89a, 1 x 1\012- data
Size
43 B (43 bytes)
Hash
df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87

HTTP Headers

GET /ul_cb/impression_pixel?r=9755795&et=i&ago=212&ao=832&aca=[campaign_id]&si=[site_id]&ci=[creative_id]&pi=[placement_id]&ad=[ad_id]&advt=[advertiser_id]&chnl=-62&vndr=101&sz=8685&u=nfcuhelp-secured.authorizeddns.us|https%3A%2F%2Fwww.navyfederal.org%2F&pt=i&othercookie_id=MCMID%7C33042062579560787242129122377797597997 HTTP/1.1
Host: t.myvisualiq.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
access-control-allow-origin: *
Cache-Control: no-cache, no-store, must-revalidate
Content-Type: image/gif
cross-origin-resource-policy: cross-origin
Date: Thu, 10 Nov 2022 17:44:03 GMT
Content-Length: 43
Connection: keep-alive

t.myvisualiq.net/ul_cb/sync?prid=123&ao=0&red=https%3A%2F%2Fwww.facebook.com%2Ftr%3Fid%3D125275241484882%26ev%3DPageView%26cd%5Border_id%5D%3D%24%7BUUID%7D%26dpo%3D

3.123.165.27

302 Moved Temporarily

0 B

URL HTTP/1.1
t.myvisualiq.net/ul_cb/sync?prid=123&ao=0&red=https%3A%2F%2Fwww.facebook.com%2Ftr%3Fid%3D125275241484882%26ev%3DPageView%26cd%5Border_id%5D%3D%24%7BUUID%7D%26dpo%3D
IP
3.123.165.27:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /ul_cb/sync?prid=123&ao=0&red=https%3A%2F%2Fwww.facebook.com%2Ftr%3Fid%3D125275241484882%26ev%3DPageView%26cd%5Border_id%5D%3D%24%7BUUID%7D%26dpo%3D HTTP/1.1
Host: t.myvisualiq.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 302 Moved Temporarily
access-control-allow-origin: *
Cache-Control: no-cache, no-store, must-revalidate
cross-origin-resource-policy: cross-origin
Date: Thu, 10 Nov 2022 17:44:03 GMT
Location: https://www.facebook.com/tr?id=125275241484882&ev=PageView&cd[order_id]=0-8e96860d-8a93-43c6-9378-d73e1e837eff&dpo=
Content-Length: 0
Connection: keep-alive

t.myvisualiq.net/sync_pixel?r=9745875&ago=212&ao=832&p1_uid=MCMID%7C33042062579560787242129122377797597997&p1_cid=&p1_eml=|||

3.123.165.27

200 OK

43 B

URL HTTP/1.1
t.myvisualiq.net/sync_pixel?r=9745875&ago=212&ao=832&p1_uid=MCMID%7C33042062579560787242129122377797597997&p1_cid=&p1_eml=|||
IP
3.123.165.27:0
ASN
#16509 AMAZON-02

File type
GIF image data, version 89a, 1 x 1\012- data
Size
43 B (43 bytes)
Hash
df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87

HTTP Headers

GET /sync_pixel?r=9745875&ago=212&ao=832&p1_uid=MCMID%7C33042062579560787242129122377797597997&p1_cid=&p1_eml=||| HTTP/1.1
Host: t.myvisualiq.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
access-control-allow-origin: *
Cache-Control: no-cache, no-store, must-revalidate
Content-Type: image/gif
cross-origin-resource-policy: cross-origin
Date: Thu, 10 Nov 2022 17:44:03 GMT
Content-Length: 43
Connection: keep-alive

dpm.demdex.net/id?d_visid_ver=4.6.0&d_fieldgroup=MC&d_rtbd=json&d_ver=2&d_orgid=9BD537045330573C0A490D44%40AdobeOrg&d_nsid=0&d_mid=33042062579560787242129122377797597997&d_blob=j8Odv6LonN4r3an7LhD3WZrU1bUpAkFkkiY1ncBR96t2PTI&d_cid_ic=AVID%0131B6989A896721D6-600000887BFA0850&ts=1668102239505

54.154.180.60

200 OK

302 B

URL HTTP/1.1
dpm.demdex.net/id?d_visid_ver=4.6.0&d_fieldgroup=MC&d_rtbd=json&d_ver=2&d_orgid=9BD537045330573C0A490D44%40AdobeOrg&d_nsid=0&d_mid=33042062579560787242129122377797597997&d_blob=j8Odv6LonN4r3an7LhD3WZrU1bUpAkFkkiY1ncBR96t2PTI&d_cid_ic=AVID%0131B6989A896721D6-600000887BFA0850&ts=1668102239505
IP
54.154.180.60:0
ASN
#16509 AMAZON-02

File type
JSON data\012- , ASCII text, with very long lines (358), with no line terminators
Size
302 B (302 bytes)
Hash
e6df463010832741c76f7316c457d9e2
5fe0b0db3b9e2f1552ad8d47480816f070e2d93e
16e227bbb2631e5872476405524c1b1c2f63cc55b3512d9699d618ba238c229a

HTTP Headers

GET /id?d_visid_ver=4.6.0&d_fieldgroup=MC&d_rtbd=json&d_ver=2&d_orgid=9BD537045330573C0A490D44%40AdobeOrg&d_nsid=0&d_mid=33042062579560787242129122377797597997&d_blob=j8Odv6LonN4r3an7LhD3WZrU1bUpAkFkkiY1ncBR96t2PTI&d_cid_ic=AVID%0131B6989A896721D6-600000887BFA0850&ts=1668102239505 HTTP/1.1
Host: dpm.demdex.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Origin: https://www.navyfederal.org
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://www.navyfederal.org
Cache-Control: no-cache,no-store,must-revalidate,max-age=0,proxy-revalidate,no-transform,private
content-encoding: gzip
Content-Type: application/json;charset=utf-8
DCS: dcs-prod-irl1-1-v045-073c16f88.edge-irl1.demdex.com 2 ms
Expires: Thu, 01 Jan 1970 00:00:00 UTC
P3P: policyref="/w3c/p3p.xml", CP="NOI NID CURa ADMa DEVa PSAa PSDa OUR SAMa BUS PUR COM NAV INT"
Pragma: no-cache
set-cookie: demdex=88805928836206604721524154726404804208; Max-Age=15552000; Expires=Tue, 09 May 2023 17:44:03 GMT; Path=/; Domain=.demdex.net; Secure; SameSite=None
Strict-Transport-Security: max-age=31536000; includeSubDomains
Vary: Origin
X-TID: xaRF1qDpSIc=
Content-Length: 302
Connection: keep-alive

ocsp.pki.goog/gts1c3

142.250.74.35

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
aac9a44d90ef332039316f3f8e75ef7f
7f14695c3512f762b53a5f2d4577c3b831ffd3e2
a190e6eaacda76e8f75d18d36d7a65916550ca96acceb6f597d7b0d3055e9113

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 10 Nov 2022 17:44:03 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.navyfederal.org/content/dam/icons/single-tone/white/military.svg

104.66.116.9

200 OK

519 B

URL HTTP/2
www.navyfederal.org/content/dam/icons/single-tone/white/military.svg
IP
104.66.116.9:0
ASN
#16625 AKAMAI-AS

File type
SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
519 B (519 bytes)
Hash
970c62122bcdf5293e6fac37b193f9b9
a9fe62f9ad26171a6821135c152685f2e2effb19
3504334d5b7e62673f1a2d61e34d8b9bb2105d61449720445b485a79d048233f

HTTP Headers

GET /content/dam/icons/single-tone/white/military.svg HTTP/1.1
Host: www.navyfederal.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.navyfederal.org/
Connection: keep-alive
Cookie: _abck=DC80667D0074DA1B3BEF3F54E8921A40~0~YAAQoQVJF8Fa0VeEAQAAnTqIYgi/nj+T4rm31e4sHb7PwvDgqViCOtOD0fiBRFdYqJz0dyA9hJGa4EKA25STY/GpHMVGFfC14EoCo7/tP22D3oHMr+5qp8G9NqHsUnR9yTKnR1gDMzNSabdwOgdWeiR3wmDDs5rdE0m0wQzp8PQTsrURuGjWfWyVuuFEzWEkI579VbdKmXleunDtM/Ey4wOAt5iK/CTF3/Ox6XLe57BJT51t1Kp9a679k5gUjfUPfeeH8XqRQJAWfjqES0NyrJhRBCsqtN2916Y4kNjL0f4762Odoe5Vkt1X2B5+mTKei0UGyrs39M4nJdzzGgojv8WKyQr/lqHy3zLvS+H/XpPCfgOBRc7VprY+7xU+4EZsxrhZvuX/kBO7CdPIxPQKcmhbnBFgYpODAx2Rzc2/~-1~-1~-1; ak_bmsc=CD3D104392607DD4CA7FAC81BDEADF02~000000000000000000000000000000~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; bm_sz=7B5052FB392BE93F5C4C18559FA2BAF5~YAAQoQVJFyRZ0VeEAQAAmjKIYhHpUahXFvdsAaQJmpC1C/Df62CHAJDHM90z1RUp3QYAryRGAWuFC63uafX4GOkO57t7PdFyJs0XxIz5olBO3T9gRurFzQzMLiGaiM7O2AqD14VfNPCCfxbfSR0CGBwnPloUAjk2zoSqL59EY4oA2fSfgNIeU2cpPgd3HyKRc4ce1Ft94xdw4pwO9Bo/no2AgzdZdAouR7qP/2L4sQY9BsHYp+FbYEG2SoEO1s/Dhy/4pHmCti2x4rseqlAZCGfJxDa+2dhblc4CR2cyAMesg9pSn8wYHA==~3683650~3491383; AMCV_9BD537045330573C0A490D44%40AdobeOrg=-408604571%7CMCIDTS%7C19307%7CMCMID%7C33042062579560787242129122377797597997%7CMCAID%7C31B6989A896721D6-600000887BFA0850%7CMCOPTOUT-1668107601s%7CNONE%7CMCAAMLH-1668705201%7C6%7CMCAAMB-1668705201%7Cj8Odv6LonN4r3an7LhD3WZrU1bUpAkFkkiY1ncBR96t2PTI%7CMCSYNCSOP%7C411-19314%7CvVersion%7C4.6.0; mbox=session#27f2b4d776194ac890c08bce568e0ec9#1668104100|PC#27f2b4d776194ac890c08bce568e0ec9.37_0#1731345202; bm_sv=954F8CEE59ED3B7CD609760D612EE728~YAAQoQVJF31v1VeEAQAAfkOkYhFZfngVyGtvE1jEMugBAOx8rdR39TKSJLov3+dGr3sQWNNpst3PMguu9gqYfeCU+tqRLIjlPx3Tv4TcEIu8oOujX5Nv9YFCLdilZG95AQSzy2/qmLLvVKqc+9rxhwhYroVEpVrBY1/jX61AlVb56CbOJOwC8INzjYdz3Bp/DhO4ybihMQ0bSTUodXXnRIGkqAcVrOfVRVNTkc4ADTsBTKRjS/M5SIzAfCJjkWfzuHO0AMk=~1; _gcl_au=1.1.673889086.1668100401; _tq_id.TV-8181450918-1.e1be=86abe9320f0166bf.1668100401.0.1668102240..; s_vi=[CS]v1|31B6989A896721D6-600000887BFA0850[CE]; s_ecid=MCMID%7C33042062579560787242129122377797597997; _uetsid=fab387e0611a11eda9dab92fb9fdb0c8; _uetvid=fab39b90611a11ed9ee669e5c018eeb2; _fbp=fb.1.1668100402534.1388787247; LPVID=ZkNTEwZjU1Yjk1ZWRkNzY5; at_check=true
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: Apache/2.4.54 (Unix) OpenSSL/1.1.1k Communique/4.3.3
last-modified: Thu, 28 May 2020 12:50:19 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-frame-options: SAMEORIGIN, SAMEORIGIN
referrer-policy: same-origin
x-content-type-options: nosniff
content-length: 519
content-type: image/svg+xml
cache-control: max-age=86400
expires: Fri, 11 Nov 2022 17:44:03 GMT
date: Thu, 10 Nov 2022 17:44:03 GMT
permissions-policy: interest-cohort=()
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2

www.navyfederal.org/content/dam/icons/single-tone/white/makingcents.svg

104.66.116.9

200 OK

636 B

URL HTTP/2
www.navyfederal.org/content/dam/icons/single-tone/white/makingcents.svg
IP
104.66.116.9:0
ASN
#16625 AKAMAI-AS

File type
SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
636 B (636 bytes)
Hash
8a998cb2181b5e1ead624d07bb51415b
61cadb094b1611869f15677b4239eb5616b024af
a38876db0a454e5b99dc7ce59f84c275174b60b88bdced67b256ba25d1e9048d

HTTP Headers

GET /content/dam/icons/single-tone/white/makingcents.svg HTTP/1.1
Host: www.navyfederal.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.navyfederal.org/
Connection: keep-alive
Cookie: _abck=DC80667D0074DA1B3BEF3F54E8921A40~0~YAAQoQVJF8Fa0VeEAQAAnTqIYgi/nj+T4rm31e4sHb7PwvDgqViCOtOD0fiBRFdYqJz0dyA9hJGa4EKA25STY/GpHMVGFfC14EoCo7/tP22D3oHMr+5qp8G9NqHsUnR9yTKnR1gDMzNSabdwOgdWeiR3wmDDs5rdE0m0wQzp8PQTsrURuGjWfWyVuuFEzWEkI579VbdKmXleunDtM/Ey4wOAt5iK/CTF3/Ox6XLe57BJT51t1Kp9a679k5gUjfUPfeeH8XqRQJAWfjqES0NyrJhRBCsqtN2916Y4kNjL0f4762Odoe5Vkt1X2B5+mTKei0UGyrs39M4nJdzzGgojv8WKyQr/lqHy3zLvS+H/XpPCfgOBRc7VprY+7xU+4EZsxrhZvuX/kBO7CdPIxPQKcmhbnBFgYpODAx2Rzc2/~-1~-1~-1; ak_bmsc=CD3D104392607DD4CA7FAC81BDEADF02~000000000000000000000000000000~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; bm_sz=7B5052FB392BE93F5C4C18559FA2BAF5~YAAQoQVJFyRZ0VeEAQAAmjKIYhHpUahXFvdsAaQJmpC1C/Df62CHAJDHM90z1RUp3QYAryRGAWuFC63uafX4GOkO57t7PdFyJs0XxIz5olBO3T9gRurFzQzMLiGaiM7O2AqD14VfNPCCfxbfSR0CGBwnPloUAjk2zoSqL59EY4oA2fSfgNIeU2cpPgd3HyKRc4ce1Ft94xdw4pwO9Bo/no2AgzdZdAouR7qP/2L4sQY9BsHYp+FbYEG2SoEO1s/Dhy/4pHmCti2x4rseqlAZCGfJxDa+2dhblc4CR2cyAMesg9pSn8wYHA==~3683650~3491383; AMCV_9BD537045330573C0A490D44%40AdobeOrg=-408604571%7CMCIDTS%7C19307%7CMCMID%7C33042062579560787242129122377797597997%7CMCAID%7C31B6989A896721D6-600000887BFA0850%7CMCOPTOUT-1668107601s%7CNONE%7CMCAAMLH-1668705201%7C6%7CMCAAMB-1668705201%7Cj8Odv6LonN4r3an7LhD3WZrU1bUpAkFkkiY1ncBR96t2PTI%7CMCSYNCSOP%7C411-19314%7CvVersion%7C4.6.0; mbox=session#27f2b4d776194ac890c08bce568e0ec9#1668104100|PC#27f2b4d776194ac890c08bce568e0ec9.37_0#1731345202; bm_sv=954F8CEE59ED3B7CD609760D612EE728~YAAQoQVJF31v1VeEAQAAfkOkYhFZfngVyGtvE1jEMugBAOx8rdR39TKSJLov3+dGr3sQWNNpst3PMguu9gqYfeCU+tqRLIjlPx3Tv4TcEIu8oOujX5Nv9YFCLdilZG95AQSzy2/qmLLvVKqc+9rxhwhYroVEpVrBY1/jX61AlVb56CbOJOwC8INzjYdz3Bp/DhO4ybihMQ0bSTUodXXnRIGkqAcVrOfVRVNTkc4ADTsBTKRjS/M5SIzAfCJjkWfzuHO0AMk=~1; _gcl_au=1.1.673889086.1668100401; _tq_id.TV-8181450918-1.e1be=86abe9320f0166bf.1668100401.0.1668102240..; s_vi=[CS]v1|31B6989A896721D6-600000887BFA0850[CE]; s_ecid=MCMID%7C33042062579560787242129122377797597997; _uetsid=fab387e0611a11eda9dab92fb9fdb0c8; _uetvid=fab39b90611a11ed9ee669e5c018eeb2; _fbp=fb.1.1668100402534.1388787247; LPVID=ZkNTEwZjU1Yjk1ZWRkNzY5; at_check=true
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: Apache/2.4.54 (Unix) OpenSSL/1.1.1k Communique/4.3.3
last-modified: Thu, 28 May 2020 12:50:18 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-frame-options: SAMEORIGIN, SAMEORIGIN
referrer-policy: same-origin
x-content-type-options: nosniff
content-length: 636
content-type: image/svg+xml
cache-control: max-age=86400
expires: Fri, 11 Nov 2022 17:44:03 GMT
date: Thu, 10 Nov 2022 17:44:03 GMT
permissions-policy: interest-cohort=()
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2

collector-11598.tvsquared.com/tv2track.php?action_name=Navy%20Federal%20Credit%20Union%20%7C%20Banking%2C%20Loans%2C%20Mortgages%20%26%20Credit%20Cards%20%7C%20Navy%20Federal%20Credit%20Union&idsite=TV-8181450918-1&rec=1&r=753045&h=17&m=43&s=59&url=https%3A%2F%2Fwww.navyfederal.org%2F&urlref=https%3A%2F%2Fnfcuhelp-secured.authorizeddns.us%2F&_id=86abe9320f0166bf&_idts=1668100401&_idvc=0&_idn=0&_viewts=&cookie=1&res=1280x1024&gt_ms=286

13.58.136.78

200 OK

42 B

URL HTTP/1.1
collector-11598.tvsquared.com/tv2track.php?action_name=Navy%20Federal%20Credit%20Union%20%7C%20Banking%2C%20Loans%2C%20Mortgages%20%26%20Credit%20Cards%20%7C%20Navy%20Federal%20Credit%20Union&idsite=TV-8181450918-1&rec=1&r=753045&h=17&m=43&s=59&url=https%3A%2F%2Fwww.navyfederal.org%2F&urlref=https%3A%2F%2Fnfcuhelp-secured.authorizeddns.us%2F&_id=86abe9320f0166bf&_idts=1668100401&_idvc=0&_idn=0&_viewts=&cookie=1&res=1280x1024&gt_ms=286
IP
13.58.136.78:0
ASN
#16509 AMAZON-02

File type
GIF image data, version 89a, 1 x 1\012- data
Size
42 B (42 bytes)
Hash
00657dd79637a8daf5e6196ca17f1887
3e064855d1fe7c6eac52981a646ec5840ba7efb5
f0c71e3da5b3fcab3c66af1cf0cdbf262c97b9330b7b37116f1ae2ab18bdc660

HTTP Headers

GET /tv2track.php?action_name=Navy%20Federal%20Credit%20Union%20%7C%20Banking%2C%20Loans%2C%20Mortgages%20%26%20Credit%20Cards%20%7C%20Navy%20Federal%20Credit%20Union&idsite=TV-8181450918-1&rec=1&r=753045&h=17&m=43&s=59&url=https%3A%2F%2Fwww.navyfederal.org%2F&urlref=https%3A%2F%2Fnfcuhelp-secured.authorizeddns.us%2F&_id=86abe9320f0166bf&_idts=1668100401&_idvc=0&_idn=0&_viewts=&cookie=1&res=1280x1024&gt_ms=286 HTTP/1.1
Host: collector-11598.tvsquared.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Content-Type: image/gif
Date: Thu, 10 Nov 2022 17:44:03 GMT
P3p: CP='OTI DSP COR NID STP UNI OTPa OUR'
Request-Id: 7b5ef2f7-8391-4a41-a881-1503b77756f7
Server: nginx
Content-Length: 42
Connection: keep-alive

www.navyfederal.org/content/dam/photography/lifestyle/dining/kitchen_0365_nfcu_0521.jpg/jcr:content/renditions/nfcu.small.380.380.jpg

104.66.116.9

200 OK

102 kB

URL HTTP/2
www.navyfederal.org/content/dam/photography/lifestyle/dining/kitchen_0365_nfcu_0521.jpg/jcr:content/renditions/nfcu.small.380.380.jpg
IP
104.66.116.9:0
ASN
#16625 AKAMAI-AS

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, baseline, precision 8, 380x253, components 3\012- data
Size
102 kB (102251 bytes)
Hash
a2773579544dd11e56730021e5d5ae77
3685c45b2a7a7122dd282504ddb2697a69b19135
87486efcea36427e69fd20363a46eef973742ead3e386589bff84abd00eb690d

HTTP Headers

GET /content/dam/photography/lifestyle/dining/kitchen_0365_nfcu_0521.jpg/jcr:content/renditions/nfcu.small.380.380.jpg HTTP/1.1
Host: www.navyfederal.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.navyfederal.org/
Connection: keep-alive
Cookie: _abck=DC80667D0074DA1B3BEF3F54E8921A40~0~YAAQoQVJF8Fa0VeEAQAAnTqIYgi/nj+T4rm31e4sHb7PwvDgqViCOtOD0fiBRFdYqJz0dyA9hJGa4EKA25STY/GpHMVGFfC14EoCo7/tP22D3oHMr+5qp8G9NqHsUnR9yTKnR1gDMzNSabdwOgdWeiR3wmDDs5rdE0m0wQzp8PQTsrURuGjWfWyVuuFEzWEkI579VbdKmXleunDtM/Ey4wOAt5iK/CTF3/Ox6XLe57BJT51t1Kp9a679k5gUjfUPfeeH8XqRQJAWfjqES0NyrJhRBCsqtN2916Y4kNjL0f4762Odoe5Vkt1X2B5+mTKei0UGyrs39M4nJdzzGgojv8WKyQr/lqHy3zLvS+H/XpPCfgOBRc7VprY+7xU+4EZsxrhZvuX/kBO7CdPIxPQKcmhbnBFgYpODAx2Rzc2/~-1~-1~-1; ak_bmsc=CD3D104392607DD4CA7FAC81BDEADF02~000000000000000000000000000000~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; bm_sz=7B5052FB392BE93F5C4C18559FA2BAF5~YAAQoQVJFyRZ0VeEAQAAmjKIYhHpUahXFvdsAaQJmpC1C/Df62CHAJDHM90z1RUp3QYAryRGAWuFC63uafX4GOkO57t7PdFyJs0XxIz5olBO3T9gRurFzQzMLiGaiM7O2AqD14VfNPCCfxbfSR0CGBwnPloUAjk2zoSqL59EY4oA2fSfgNIeU2cpPgd3HyKRc4ce1Ft94xdw4pwO9Bo/no2AgzdZdAouR7qP/2L4sQY9BsHYp+FbYEG2SoEO1s/Dhy/4pHmCti2x4rseqlAZCGfJxDa+2dhblc4CR2cyAMesg9pSn8wYHA==~3683650~3491383; AMCV_9BD537045330573C0A490D44%40AdobeOrg=-408604571%7CMCIDTS%7C19307%7CMCMID%7C33042062579560787242129122377797597997%7CMCAID%7C31B6989A896721D6-600000887BFA0850%7CMCOPTOUT-1668107601s%7CNONE%7CMCAAMLH-1668705201%7C6%7CMCAAMB-1668705201%7Cj8Odv6LonN4r3an7LhD3WZrU1bUpAkFkkiY1ncBR96t2PTI%7CMCSYNCSOP%7C411-19314%7CvVersion%7C4.6.0; mbox=session#27f2b4d776194ac890c08bce568e0ec9#1668104100|PC#27f2b4d776194ac890c08bce568e0ec9.37_0#1731345202; bm_sv=954F8CEE59ED3B7CD609760D612EE728~YAAQoQVJF31v1VeEAQAAfkOkYhFZfngVyGtvE1jEMugBAOx8rdR39TKSJLov3+dGr3sQWNNpst3PMguu9gqYfeCU+tqRLIjlPx3Tv4TcEIu8oOujX5Nv9YFCLdilZG95AQSzy2/qmLLvVKqc+9rxhwhYroVEpVrBY1/jX61AlVb56CbOJOwC8INzjYdz3Bp/DhO4ybihMQ0bSTUodXXnRIGkqAcVrOfVRVNTkc4ADTsBTKRjS/M5SIzAfCJjkWfzuHO0AMk=~1; _gcl_au=1.1.673889086.1668100401; _tq_id.TV-8181450918-1.e1be=86abe9320f0166bf.1668100401.0.1668102240..; s_vi=[CS]v1|31B6989A896721D6-600000887BFA0850[CE]; s_ecid=MCMID%7C33042062579560787242129122377797597997; _uetsid=fab387e0611a11eda9dab92fb9fdb0c8; _uetvid=fab39b90611a11ed9ee669e5c018eeb2; _fbp=fb.1.1668100402534.1388787247; LPVID=ZkNTEwZjU1Yjk1ZWRkNzY5; at_check=true
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: Apache/2.4.54 (Unix) OpenSSL/1.1.1k Communique/4.3.3
x-content-type-options: nosniff
content-disposition: attachment
content-length: 102251
x-frame-options: SAMEORIGIN, SAMEORIGIN
referrer-policy: same-origin
content-type: image/jpeg
cache-control: max-age=86400
expires: Fri, 11 Nov 2022 17:44:03 GMT
date: Thu, 10 Nov 2022 17:44:03 GMT
permissions-policy: interest-cohort=()
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2

www.navyfederal.org/content/dam/photography/article-images-only-cropped/191121_nfcu_metro2_walking_163.jpg/jcr:content/renditions/nfcu.small.428.209.jpg

104.66.116.9

200 OK

67 kB

URL HTTP/2
www.navyfederal.org/content/dam/photography/article-images-only-cropped/191121_nfcu_metro2_walking_163.jpg/jcr:content/renditions/nfcu.small.428.209.jpg
IP
104.66.116.9:0
ASN
#16625 AKAMAI-AS

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 428x209, components 3\012- data
Size
67 kB (67042 bytes)
Hash
6f96054ab146af3c80e82c21dc69b96a
81a4dc945063f9a66853de7b50583276d94a0015
ef7b9aec5e107a3c8a207f980856a0114032ecb8b9859ce79b16e8f1a24c0baa

HTTP Headers

GET /content/dam/photography/article-images-only-cropped/191121_nfcu_metro2_walking_163.jpg/jcr:content/renditions/nfcu.small.428.209.jpg HTTP/1.1
Host: www.navyfederal.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.navyfederal.org/
Connection: keep-alive
Cookie: _abck=DC80667D0074DA1B3BEF3F54E8921A40~0~YAAQoQVJF8Fa0VeEAQAAnTqIYgi/nj+T4rm31e4sHb7PwvDgqViCOtOD0fiBRFdYqJz0dyA9hJGa4EKA25STY/GpHMVGFfC14EoCo7/tP22D3oHMr+5qp8G9NqHsUnR9yTKnR1gDMzNSabdwOgdWeiR3wmDDs5rdE0m0wQzp8PQTsrURuGjWfWyVuuFEzWEkI579VbdKmXleunDtM/Ey4wOAt5iK/CTF3/Ox6XLe57BJT51t1Kp9a679k5gUjfUPfeeH8XqRQJAWfjqES0NyrJhRBCsqtN2916Y4kNjL0f4762Odoe5Vkt1X2B5+mTKei0UGyrs39M4nJdzzGgojv8WKyQr/lqHy3zLvS+H/XpPCfgOBRc7VprY+7xU+4EZsxrhZvuX/kBO7CdPIxPQKcmhbnBFgYpODAx2Rzc2/~-1~-1~-1; ak_bmsc=CD3D104392607DD4CA7FAC81BDEADF02~000000000000000000000000000000~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; bm_sz=7B5052FB392BE93F5C4C18559FA2BAF5~YAAQoQVJFyRZ0VeEAQAAmjKIYhHpUahXFvdsAaQJmpC1C/Df62CHAJDHM90z1RUp3QYAryRGAWuFC63uafX4GOkO57t7PdFyJs0XxIz5olBO3T9gRurFzQzMLiGaiM7O2AqD14VfNPCCfxbfSR0CGBwnPloUAjk2zoSqL59EY4oA2fSfgNIeU2cpPgd3HyKRc4ce1Ft94xdw4pwO9Bo/no2AgzdZdAouR7qP/2L4sQY9BsHYp+FbYEG2SoEO1s/Dhy/4pHmCti2x4rseqlAZCGfJxDa+2dhblc4CR2cyAMesg9pSn8wYHA==~3683650~3491383; AMCV_9BD537045330573C0A490D44%40AdobeOrg=-408604571%7CMCIDTS%7C19307%7CMCMID%7C33042062579560787242129122377797597997%7CMCAID%7C31B6989A896721D6-600000887BFA0850%7CMCOPTOUT-1668107601s%7CNONE%7CMCAAMLH-1668705201%7C6%7CMCAAMB-1668705201%7Cj8Odv6LonN4r3an7LhD3WZrU1bUpAkFkkiY1ncBR96t2PTI%7CMCSYNCSOP%7C411-19314%7CvVersion%7C4.6.0; mbox=session#27f2b4d776194ac890c08bce568e0ec9#1668104100|PC#27f2b4d776194ac890c08bce568e0ec9.37_0#1731345202; bm_sv=954F8CEE59ED3B7CD609760D612EE728~YAAQoQVJF31v1VeEAQAAfkOkYhFZfngVyGtvE1jEMugBAOx8rdR39TKSJLov3+dGr3sQWNNpst3PMguu9gqYfeCU+tqRLIjlPx3Tv4TcEIu8oOujX5Nv9YFCLdilZG95AQSzy2/qmLLvVKqc+9rxhwhYroVEpVrBY1/jX61AlVb56CbOJOwC8INzjYdz3Bp/DhO4ybihMQ0bSTUodXXnRIGkqAcVrOfVRVNTkc4ADTsBTKRjS/M5SIzAfCJjkWfzuHO0AMk=~1; _gcl_au=1.1.673889086.1668100401; _tq_id.TV-8181450918-1.e1be=86abe9320f0166bf.1668100401.0.1668102240..; s_vi=[CS]v1|31B6989A896721D6-600000887BFA0850[CE]; s_ecid=MCMID%7C33042062579560787242129122377797597997; _uetsid=fab387e0611a11eda9dab92fb9fdb0c8; _uetvid=fab39b90611a11ed9ee669e5c018eeb2; _fbp=fb.1.1668100402534.1388787247; LPVID=ZkNTEwZjU1Yjk1ZWRkNzY5; at_check=true
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: Apache/2.4.54 (Unix) OpenSSL/1.1.1k Communique/4.3.3
last-modified: Fri, 22 Jan 2021 13:38:45 GMT
accept-ranges: bytes
content-length: 67042
x-frame-options: SAMEORIGIN, SAMEORIGIN
referrer-policy: same-origin
x-content-type-options: nosniff
content-type: image/jpeg
cache-control: max-age=86400
expires: Fri, 11 Nov 2022 17:44:03 GMT
date: Thu, 10 Nov 2022 17:44:03 GMT
permissions-policy: interest-cohort=()
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2

www.navyfederal.org/content/dam/photography/lifestyle/dining/gettyimages-1020053724.jpg/jcr:content/renditions/nfcu.small.428.209.jpg

104.66.116.9

200 OK

81 kB

URL HTTP/2
www.navyfederal.org/content/dam/photography/lifestyle/dining/gettyimages-1020053724.jpg/jcr:content/renditions/nfcu.small.428.209.jpg
IP
104.66.116.9:0
ASN
#16625 AKAMAI-AS

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, baseline, precision 8, 314x209, components 3\012- data
Size
81 kB (81068 bytes)
Hash
7642f04b3d35b10dbe7e7a5cfc393167
3ea20a8652171f38a3b78d442feb9c0e37cd1206
fb31f67c788bf158bbeecd71f43f5145a35d4c1b00c0400db85162c8de0f13bb

HTTP Headers

GET /content/dam/photography/lifestyle/dining/gettyimages-1020053724.jpg/jcr:content/renditions/nfcu.small.428.209.jpg HTTP/1.1
Host: www.navyfederal.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.navyfederal.org/
Connection: keep-alive
Cookie: _abck=DC80667D0074DA1B3BEF3F54E8921A40~0~YAAQoQVJF8Fa0VeEAQAAnTqIYgi/nj+T4rm31e4sHb7PwvDgqViCOtOD0fiBRFdYqJz0dyA9hJGa4EKA25STY/GpHMVGFfC14EoCo7/tP22D3oHMr+5qp8G9NqHsUnR9yTKnR1gDMzNSabdwOgdWeiR3wmDDs5rdE0m0wQzp8PQTsrURuGjWfWyVuuFEzWEkI579VbdKmXleunDtM/Ey4wOAt5iK/CTF3/Ox6XLe57BJT51t1Kp9a679k5gUjfUPfeeH8XqRQJAWfjqES0NyrJhRBCsqtN2916Y4kNjL0f4762Odoe5Vkt1X2B5+mTKei0UGyrs39M4nJdzzGgojv8WKyQr/lqHy3zLvS+H/XpPCfgOBRc7VprY+7xU+4EZsxrhZvuX/kBO7CdPIxPQKcmhbnBFgYpODAx2Rzc2/~-1~-1~-1; ak_bmsc=CD3D104392607DD4CA7FAC81BDEADF02~000000000000000000000000000000~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; bm_sz=7B5052FB392BE93F5C4C18559FA2BAF5~YAAQoQVJFyRZ0VeEAQAAmjKIYhHpUahXFvdsAaQJmpC1C/Df62CHAJDHM90z1RUp3QYAryRGAWuFC63uafX4GOkO57t7PdFyJs0XxIz5olBO3T9gRurFzQzMLiGaiM7O2AqD14VfNPCCfxbfSR0CGBwnPloUAjk2zoSqL59EY4oA2fSfgNIeU2cpPgd3HyKRc4ce1Ft94xdw4pwO9Bo/no2AgzdZdAouR7qP/2L4sQY9BsHYp+FbYEG2SoEO1s/Dhy/4pHmCti2x4rseqlAZCGfJxDa+2dhblc4CR2cyAMesg9pSn8wYHA==~3683650~3491383; AMCV_9BD537045330573C0A490D44%40AdobeOrg=-408604571%7CMCIDTS%7C19307%7CMCMID%7C33042062579560787242129122377797597997%7CMCAID%7C31B6989A896721D6-600000887BFA0850%7CMCOPTOUT-1668107601s%7CNONE%7CMCAAMLH-1668705201%7C6%7CMCAAMB-1668705201%7Cj8Odv6LonN4r3an7LhD3WZrU1bUpAkFkkiY1ncBR96t2PTI%7CMCSYNCSOP%7C411-19314%7CvVersion%7C4.6.0; mbox=session#27f2b4d776194ac890c08bce568e0ec9#1668104100|PC#27f2b4d776194ac890c08bce568e0ec9.37_0#1731345202; bm_sv=954F8CEE59ED3B7CD609760D612EE728~YAAQoQVJF31v1VeEAQAAfkOkYhFZfngVyGtvE1jEMugBAOx8rdR39TKSJLov3+dGr3sQWNNpst3PMguu9gqYfeCU+tqRLIjlPx3Tv4TcEIu8oOujX5Nv9YFCLdilZG95AQSzy2/qmLLvVKqc+9rxhwhYroVEpVrBY1/jX61AlVb56CbOJOwC8INzjYdz3Bp/DhO4ybihMQ0bSTUodXXnRIGkqAcVrOfVRVNTkc4ADTsBTKRjS/M5SIzAfCJjkWfzuHO0AMk=~1; _gcl_au=1.1.673889086.1668100401; _tq_id.TV-8181450918-1.e1be=86abe9320f0166bf.1668100401.0.1668102240..; s_vi=[CS]v1|31B6989A896721D6-600000887BFA0850[CE]; s_ecid=MCMID%7C33042062579560787242129122377797597997; _uetsid=fab387e0611a11eda9dab92fb9fdb0c8; _uetvid=fab39b90611a11ed9ee669e5c018eeb2; _fbp=fb.1.1668100402534.1388787247; LPVID=ZkNTEwZjU1Yjk1ZWRkNzY5; at_check=true
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: Apache/2.4.54 (Unix) OpenSSL/1.1.1k Communique/4.3.3
last-modified: Tue, 29 Dec 2020 18:18:23 GMT
accept-ranges: bytes
content-length: 81068
x-frame-options: SAMEORIGIN, SAMEORIGIN
referrer-policy: same-origin
x-content-type-options: nosniff
content-type: image/jpeg
cache-control: max-age=86400
expires: Fri, 11 Nov 2022 17:44:03 GMT
date: Thu, 10 Nov 2022 17:44:03 GMT
permissions-policy: interest-cohort=()
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2

dpm.demdex.net/ibs:dpid=125310&dpuuid=0-0b3786f6-0563-46d8-b727-61e4a1b5f2b2&redir=https%3A%2F%2Ft.myvisualiq.net%2Fsync%3Fprid%3DAOEPNR1%26ao%3D0%26pruuid%3D%24%7BDD_UUID%7D

54.154.180.60

302 Found

0 B

URL HTTP/1.1
dpm.demdex.net/ibs:dpid=125310&dpuuid=0-0b3786f6-0563-46d8-b727-61e4a1b5f2b2&redir=https%3A%2F%2Ft.myvisualiq.net%2Fsync%3Fprid%3DAOEPNR1%26ao%3D0%26pruuid%3D%24%7BDD_UUID%7D
IP
54.154.180.60:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /ibs:dpid=125310&dpuuid=0-0b3786f6-0563-46d8-b727-61e4a1b5f2b2&redir=https%3A%2F%2Ft.myvisualiq.net%2Fsync%3Fprid%3DAOEPNR1%26ao%3D0%26pruuid%3D%24%7BDD_UUID%7D HTTP/1.1
Host: dpm.demdex.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 302 Found
Cache-Control: no-cache,no-store,must-revalidate,max-age=0,proxy-revalidate,no-transform,private
DCS: dcs-prod-irl1-2-v045-03da2f349.edge-irl1.demdex.com 0 ms
Expires: Thu, 01 Jan 1970 00:00:00 UTC
Location: https://dpm.demdex.net/demconf.jpg?et:ibs%7cdata:dpid=125310&dpuuid=0-0b3786f6-0563-46d8-b727-61e4a1b5f2b2&redir=https%3A%2F%2Ft.myvisualiq.net%2Fsync%3Fprid%3DAOEPNR1%26ao%3D0%26pruuid%3D%24%7BDD_UUID%7D
P3P: policyref="/w3c/p3p.xml", CP="NOI NID CURa ADMa DEVa PSAa PSDa OUR SAMa BUS PUR COM NAV INT"
Pragma: no-cache
set-cookie: demdex=81557748488901949572609422233793877140; Max-Age=15552000; Expires=Tue, 09 May 2023 17:44:03 GMT; Path=/; Domain=.demdex.net; Secure; SameSite=None
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-TID: HhOXMWRAS2U=
Content-Length: 0
Connection: keep-alive

www.navyfederal.org/etc.clientlibs/nfculibs/clientlibs/uife/clientlib-uife-nfculibs-site/resources/images/favicon.ico

104.66.116.9

200 OK

1.2 kB

URL HTTP/2
www.navyfederal.org/etc.clientlibs/nfculibs/clientlibs/uife/clientlib-uife-nfculibs-site/resources/images/favicon.ico
IP
104.66.116.9:0
ASN
#16625 AKAMAI-AS

File type
MS Windows icon resource - 1 icon, 16x16, 32 bits/pixel\012- data
Size
1.2 kB (1150 bytes)
Hash
69b045d3cad30a137a1eb0ecfc471224
bec1b04ad2f3c2c8237277e3015afd97beabba84
3adc614acaa6918cfb31a80d3589231c0d38fba7401e05d6f7302c4054aaace0

HTTP Headers

GET /etc.clientlibs/nfculibs/clientlibs/uife/clientlib-uife-nfculibs-site/resources/images/favicon.ico HTTP/1.1
Host: www.navyfederal.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.navyfederal.org/
Connection: keep-alive
Cookie: _abck=DC80667D0074DA1B3BEF3F54E8921A40~0~YAAQoQVJF8Fa0VeEAQAAnTqIYgi/nj+T4rm31e4sHb7PwvDgqViCOtOD0fiBRFdYqJz0dyA9hJGa4EKA25STY/GpHMVGFfC14EoCo7/tP22D3oHMr+5qp8G9NqHsUnR9yTKnR1gDMzNSabdwOgdWeiR3wmDDs5rdE0m0wQzp8PQTsrURuGjWfWyVuuFEzWEkI579VbdKmXleunDtM/Ey4wOAt5iK/CTF3/Ox6XLe57BJT51t1Kp9a679k5gUjfUPfeeH8XqRQJAWfjqES0NyrJhRBCsqtN2916Y4kNjL0f4762Odoe5Vkt1X2B5+mTKei0UGyrs39M4nJdzzGgojv8WKyQr/lqHy3zLvS+H/XpPCfgOBRc7VprY+7xU+4EZsxrhZvuX/kBO7CdPIxPQKcmhbnBFgYpODAx2Rzc2/~-1~-1~-1; ak_bmsc=CD3D104392607DD4CA7FAC81BDEADF02~000000000000000000000000000000~YAAQoQVJFy5a0VeEAQAA6zeIYhGGIYw4yKNy7uZPTNAMli+81ot0IGUszqrRkYrQnoVWvmTSwFwTz7PQ2Af93ROgb9XNe+wbRdu9LzmQ+NE2dOvP0DPsZiOtNyP5MEtkBjjE4v59wX2G8WWiBp+iT+ROOkHB4Upwpt8lzTMpOvmaxMgT5yv+Nogfd5oLokD0KjDMB7DJlXsSXQhd7jylrU7I58lcz2JdUNTQT528hNH9/iNsqCxYa/Y9GX9mk9T6bzVfKs2ERj7Qu1t9J85cbdUXlpVExtICrsh7nKC/rILmbq8IP9zmX0Zh9cwTXW53i4K+gNQHOeVYSHuRdHYAze04EYxWlGfVR/GbIH32O3I/qjGVvBKdpY6eydP7m6KTjetu1dFRkfinak3XDzEVyj5GXpB7X7MktQiFrm0batseCDQkiKxk6m9aHjnmzHIzGp1ZdhQf30G1r+eC02BsRgnI2QskJSBmCwi7uN3FzDnWwVU+Y8xC1I9jhqVWFg==; bm_sz=7B5052FB392BE93F5C4C18559FA2BAF5~YAAQoQVJFyRZ0VeEAQAAmjKIYhHpUahXFvdsAaQJmpC1C/Df62CHAJDHM90z1RUp3QYAryRGAWuFC63uafX4GOkO57t7PdFyJs0XxIz5olBO3T9gRurFzQzMLiGaiM7O2AqD14VfNPCCfxbfSR0CGBwnPloUAjk2zoSqL59EY4oA2fSfgNIeU2cpPgd3HyKRc4ce1Ft94xdw4pwO9Bo/no2AgzdZdAouR7qP/2L4sQY9BsHYp+FbYEG2SoEO1s/Dhy/4pHmCti2x4rseqlAZCGfJxDa+2dhblc4CR2cyAMesg9pSn8wYHA==~3683650~3491383; AMCV_9BD537045330573C0A490D44%40AdobeOrg=-408604571%7CMCIDTS%7C19307%7CMCMID%7C33042062579560787242129122377797597997%7CMCAID%7C31B6989A896721D6-600000887BFA0850%7CMCOPTOUT-1668109439s%7CNONE%7CMCAAMLH-1668707039%7C6%7CMCAAMB-1668707039%7Cj8Odv6LonN4r3an7LhD3WZrU1bUpAkFkkiY1ncBR96t2PTI%7CMCSYNCSOP%7C411-19314%7CvVersion%7C4.6.0; mbox=session#27f2b4d776194ac890c08bce568e0ec9#1668104100|PC#27f2b4d776194ac890c08bce568e0ec9.37_0#1731345202; bm_sv=954F8CEE59ED3B7CD609760D612EE728~YAAQoQVJF31v1VeEAQAAfkOkYhFZfngVyGtvE1jEMugBAOx8rdR39TKSJLov3+dGr3sQWNNpst3PMguu9gqYfeCU+tqRLIjlPx3Tv4TcEIu8oOujX5Nv9YFCLdilZG95AQSzy2/qmLLvVKqc+9rxhwhYroVEpVrBY1/jX61AlVb56CbOJOwC8INzjYdz3Bp/DhO4ybihMQ0bSTUodXXnRIGkqAcVrOfVRVNTkc4ADTsBTKRjS/M5SIzAfCJjkWfzuHO0AMk=~1; _gcl_au=1.1.673889086.1668100401; _tq_id.TV-8181450918-1.e1be=86abe9320f0166bf.1668100401.0.1668102240..; s_vi=[CS]v1|31B6989A896721D6-600000887BFA0850[CE]; s_ecid=MCMID%7C33042062579560787242129122377797597997; _uetsid=fab387e0611a11eda9dab92fb9fdb0c8; _uetvid=fab39b90611a11ed9ee669e5c018eeb2; _fbp=fb.1.1668100402534.1388787247; LPVID=ZkNTEwZjU1Yjk1ZWRkNzY5; at_check=true; AMCVS_9BD537045330573C0A490D44%40AdobeOrg=1; ttc_c14=1668102239774
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: Apache/2.4.54 (Unix) OpenSSL/1.1.1k Communique/4.3.3
last-modified: Sun, 20 Mar 2022 05:33:10 GMT
accept-ranges: bytes
content-length: 1150
x-frame-options: SAMEORIGIN, SAMEORIGIN
referrer-policy: same-origin
x-content-type-options: nosniff
content-type: image/vnd.microsoft.icon
cache-control: public, max-age=86400
expires: Fri, 11 Nov 2022 17:44:03 GMT
date: Thu, 10 Nov 2022 17:44:03 GMT
permissions-policy: interest-cohort=()
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
afc55511c7066ad08de213ef5e860002
d5a172a4998270aed3e79d606cd2c332d9c25b58
db868938549b28cc9920ca94971023fd3b010e7bec9fda2faac83fae034eb78c

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4894
Cache-Control: max-age=100950
Content-Type: application/ocsp-response
Date: Thu, 10 Nov 2022 17:44:03 GMT
Etag: "636c0c9b-1d7"
Expires: Fri, 11 Nov 2022 21:46:33 GMT
Last-Modified: Wed, 09 Nov 2022 20:24:59 GMT
Server: ECS (ska/F713)
X-Cache: HIT
Content-Length: 471

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
16a93e9f6c621cf5a2415e1e35fdacc1
5f42fad357873b4e115382e62ed6e3d9c5de878f
1abf8317ed79b911f261fcebcbf5d5c386eb3a93a544b6e17d1a5b61897e10ad

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5888
Cache-Control: max-age=129638
Content-Type: application/ocsp-response
Date: Thu, 10 Nov 2022 17:44:03 GMT
Etag: "636c78ca-1d7"
Expires: Sat, 12 Nov 2022 05:44:41 GMT
Last-Modified: Thu, 10 Nov 2022 04:06:34 GMT
Server: ECS (ska/F713)
X-Cache: HIT
Content-Length: 471

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
afc55511c7066ad08de213ef5e860002
d5a172a4998270aed3e79d606cd2c332d9c25b58
db868938549b28cc9920ca94971023fd3b010e7bec9fda2faac83fae034eb78c

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4894
Cache-Control: max-age=100950
Content-Type: application/ocsp-response
Date: Thu, 10 Nov 2022 17:44:03 GMT
Etag: "636c0c9b-1d7"
Expires: Fri, 11 Nov 2022 21:46:33 GMT
Last-Modified: Wed, 09 Nov 2022 20:24:59 GMT
Server: ECS (ska/F713)
X-Cache: HIT
Content-Length: 471

static.ads-twitter.com/uwt.js

151.101.84.157

200 OK

15 kB

URL HTTP/2
static.ads-twitter.com/uwt.js
IP
151.101.84.157:0
ASN
#54113 FASTLY

File type
ASCII text, with very long lines (57596), with no line terminators
Size
15 kB (15375 bytes)
Hash
573e6a7f86f6f3063763360ef0672c01
b12eab3b4ac8872d49ac6e15f9cd17741765c0cf
02445eb022a04139531f0ce8d8980c31083a1c670936f1477f5cfc4d252133f7

HTTP Headers

GET /uwt.js HTTP/1.1
Host: static.ads-twitter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
last-modified: Thu, 27 Oct 2022 18:55:37 GMT
cache-control: no-cache
content-type: application/javascript; charset=utf-8
content-encoding: gzip
etag: "32ad004436155ec972bc50e6238b5b67+gzip+gzip"
accept-ranges: bytes
date: Thu, 10 Nov 2022 17:44:03 GMT
x-served-by: cache-iad-kjyo7100147-IAD, cache-bma1629-BMA
x-cache: HIT, HIT
vary: Accept-Encoding,Host
p3p: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT"
x-tw-cdn: FT
content-length: 15375
X-Firefox-Spdy: h2

bat.bing.com/bat.js

204.79.197.200

200 OK

11 kB

URL HTTP/2
bat.bing.com/bat.js
IP
204.79.197.200:0
ASN
#8068 MICROSOFT-CORP-MSN-AS-BLOCK

File type
Unicode text, UTF-8 text, with very long lines (38826), with no line terminators
Size
11 kB (11367 bytes)
Hash
293ae3e0fc8b0d5c143fdf9d8490228d
3976c659b908e70818a3a1ac71860b497fe2d1a9
04a840d967ae836e14179bde574cabf14a1fc871182ca0f8193e7a0b06c727ab

HTTP Headers

GET /bat.js HTTP/1.1
Host: bat.bing.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
cache-control: private,max-age=1800
content-length: 11367
content-type: application/javascript
content-encoding: gzip
last-modified: Thu, 28 Jul 2022 17:32:37 GMT
accept-ranges: bytes
etag: "80a8697a8a2d81:0"
vary: Accept-Encoding
set-cookie: MUID=063DFACE08766B88259BE89609836A2E; domain=.bing.com; expires=Tue, 05-Dec-2023 17:44:03 GMT; path=/; SameSite=None; Secure; Priority=High;
strict-transport-security: max-age=31536000; includeSubDomains; preload
access-control-allow-origin: *
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 648D4A47FF11492B87EA938B3B077861 Ref B: OSL30EDGE0222 Ref C: 2022-11-10T17:44:03Z
date: Thu, 10 Nov 2022 17:44:03 GMT
X-Firefox-Spdy: h2

connect.facebook.net/en_US/fbevents.js

31.13.72.12

200 OK

27 kB

URL HTTP/2
connect.facebook.net/en_US/fbevents.js
IP
31.13.72.12:0
ASN
#32934 FACEBOOK

File type
ASCII text, with very long lines (64348)
Size
27 kB (27337 bytes)
Hash
0ac10debd3a9ea8147a26d045bb93e6e
ff45f3442508e8695f2303701682ebdb6e016464
5dee7b453b2c72c07ff1d62432493a044507835a8031ea62edf2fa7cc26219b9

HTTP Headers

GET /en_US/fbevents.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
content-type: application/x-javascript; charset=utf-8
content-security-policy: default-src facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com data: blob: 'self';script-src *.fbcdn.net *.facebook.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src data: blob: 'unsafe-inline' facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com;connect-src *.fbcdn.net *.facebook.net wss://*.fbcdn.net attachment.fbsbx.com blob: 'self';block-all-mixed-content;upgrade-insecure-requests;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
pragma: public
cache-control: public, max-age=1200
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
x-fb-debug: l81i2cvQkR9mfwdYtghdAtgz/lQfYK5nofA5PUHpzYK8KnyJ9za5LUuGsUK6e1LUuJYEjoxCa+cDLVjYQ/eIZA==
priority: u=3,i
content-length: 27337
x-fb-trip-id: 1904183273
date: Thu, 10 Nov 2022 17:44:03 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

tapestry.tapad.com/tapestry/1?ta_partner_id=950&ta_redirect=https%3A%2F%2Ft.myvisualiq.net%2Fsync%3Fprid%3D1001%26ao%3D0%26pruuid%3DTAPAD_%24%7BIDS%3Akey%7D

35.227.248.159

302 Found

0 B

URL HTTP/2
tapestry.tapad.com/tapestry/1?ta_partner_id=950&ta_redirect=https%3A%2F%2Ft.myvisualiq.net%2Fsync%3Fprid%3D1001%26ao%3D0%26pruuid%3DTAPAD_%24%7BIDS%3Akey%7D
IP
35.227.248.159:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /tapestry/1?ta_partner_id=950&ta_redirect=https%3A%2F%2Ft.myvisualiq.net%2Fsync%3Fprid%3D1001%26ao%3D0%26pruuid%3DTAPAD_%24%7BIDS%3Akey%7D HTTP/1.1
Host: tapestry.tapad.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 302 Found
date: Thu, 10 Nov 2022 17:44:03 GMT
strict-transport-security: max-age=31536000
set-cookie: TapAd_TS=1668102243815;Expires=Mon, 09 Jan 2023 17:44:03 GMT;Path=/;Domain=.tapad.com;Secure;SameSite=None
TapAd_DID=1148687e-308a-4823-8645-d0c4008a8554;Expires=Mon, 09 Jan 2023 17:44:03 GMT;Path=/;Domain=.tapad.com;Secure;SameSite=None
p3p: policyref="http://tapad-taptags.s3.amazonaws.com/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
location: https://t.myvisualiq.net/sync?prid=1001&ao=0&pruuid=TAPAD_1148687e-308a-4823-8645-d0c4008a8554
content-length: 0
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
16a93e9f6c621cf5a2415e1e35fdacc1
5f42fad357873b4e115382e62ed6e3d9c5de878f
1abf8317ed79b911f261fcebcbf5d5c386eb3a93a544b6e17d1a5b61897e10ad

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5888
Cache-Control: max-age=129638
Content-Type: application/ocsp-response
Date: Thu, 10 Nov 2022 17:44:03 GMT
Etag: "636c78ca-1d7"
Expires: Sat, 12 Nov 2022 05:44:41 GMT
Last-Modified: Thu, 10 Nov 2022 04:06:34 GMT
Server: ECS (ska/F713)
X-Cache: HIT
Content-Length: 471

www.navyfederal.org/content/dam/campaign-only/veterans/veteransday_container.png/jcr:content/renditions/nfcu.small.428.209.png

104.66.116.9

200 OK

36 kB

URL HTTP/2
www.navyfederal.org/content/dam/campaign-only/veterans/veteransday_container.png/jcr:content/renditions/nfcu.small.428.209.png
IP
104.66.116.9:0
ASN
#16625 AKAMAI-AS

File type
PNG image data, 231 x 209, 8-bit/color RGBA, non-interlaced\012- data
Size
36 kB (36535 bytes)
Hash
32c82ef820376612cdc2d1119e9376cf
5142199a7c49315982357bd72d264fd37b14a5c6
d009038b0747e70a82ce9bd224eaf9baac45118a0130d0156021abff21c9fc06

HTTP Headers

GET /content/dam/campaign-only/veterans/veteransday_container.png/jcr:content/renditions/nfcu.small.428.209.png HTTP/1.1
Host: www.navyfederal.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.navyfederal.org/
Connection: keep-alive
Cookie: _abck=DC80667D0074DA1B3BEF3F54E8921A40~0~YAAQoQVJF8Fa0VeEAQAAnTqIYgi/nj+T4rm31e4sHb7PwvDgqViCOtOD0fiBRFdYqJz0dyA9hJGa4EKA25STY/GpHMVGFfC14EoCo7/tP22D3oHMr+5qp8G9NqHsUnR9yTKnR1gDMzNSabdwOgdWeiR3wmDDs5rdE0m0wQzp8PQTsrURuGjWfWyVuuFEzWEkI579VbdKmXleunDtM/Ey4wOAt5iK/CTF3/Ox6XLe57BJT51t1Kp9a679k5gUjfUPfeeH8XqRQJAWfjqES0NyrJhRBCsqtN2916Y4kNjL0f4762Odoe5Vkt1X2B5+mTKei0UGyrs39M4nJdzzGgojv8WKyQr/lqHy3zLvS+H/XpPCfgOBRc7VprY+7xU+4EZsxrhZvuX/kBO7CdPIxPQKcmhbnBFgYpODAx2Rzc2/~-1~-1~-1; ak_bmsc=CD3D104392607DD4CA7FAC81BDEADF02~000000000000000000000000000000~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; bm_sz=7B5052FB392BE93F5C4C18559FA2BAF5~YAAQoQVJFyRZ0VeEAQAAmjKIYhHpUahXFvdsAaQJmpC1C/Df62CHAJDHM90z1RUp3QYAryRGAWuFC63uafX4GOkO57t7PdFyJs0XxIz5olBO3T9gRurFzQzMLiGaiM7O2AqD14VfNPCCfxbfSR0CGBwnPloUAjk2zoSqL59EY4oA2fSfgNIeU2cpPgd3HyKRc4ce1Ft94xdw4pwO9Bo/no2AgzdZdAouR7qP/2L4sQY9BsHYp+FbYEG2SoEO1s/Dhy/4pHmCti2x4rseqlAZCGfJxDa+2dhblc4CR2cyAMesg9pSn8wYHA==~3683650~3491383; AMCV_9BD537045330573C0A490D44%40AdobeOrg=-408604571%7CMCIDTS%7C19307%7CMCMID%7C33042062579560787242129122377797597997%7CMCAID%7C31B6989A896721D6-600000887BFA0850%7CMCOPTOUT-1668109439s%7CNONE%7CMCAAMLH-1668707039%7C6%7CMCAAMB-1668707039%7Cj8Odv6LonN4r3an7LhD3WZrU1bUpAkFkkiY1ncBR96t2PTI%7CMCSYNCSOP%7C411-19314%7CvVersion%7C4.6.0; mbox=session#27f2b4d776194ac890c08bce568e0ec9#1668104100|PC#27f2b4d776194ac890c08bce568e0ec9.37_0#1731345202; bm_sv=954F8CEE59ED3B7CD609760D612EE728~YAAQoQVJF31v1VeEAQAAfkOkYhFZfngVyGtvE1jEMugBAOx8rdR39TKSJLov3+dGr3sQWNNpst3PMguu9gqYfeCU+tqRLIjlPx3Tv4TcEIu8oOujX5Nv9YFCLdilZG95AQSzy2/qmLLvVKqc+9rxhwhYroVEpVrBY1/jX61AlVb56CbOJOwC8INzjYdz3Bp/DhO4ybihMQ0bSTUodXXnRIGkqAcVrOfVRVNTkc4ADTsBTKRjS/M5SIzAfCJjkWfzuHO0AMk=~1; _gcl_au=1.1.673889086.1668100401; _tq_id.TV-8181450918-1.e1be=86abe9320f0166bf.1668100401.0.1668102240..; s_vi=[CS]v1|31B6989A896721D6-600000887BFA0850[CE]; s_ecid=MCMID%7C33042062579560787242129122377797597997; _fbp=fb.1.1668100402534.1388787247; LPVID=ZkNTEwZjU1Yjk1ZWRkNzY5; at_check=true; AMCVS_9BD537045330573C0A490D44%40AdobeOrg=1; ttc_c14=1668102239774; gpv_page=nfo%3Ahome; s_ppv=nfo%253Ahome%2C42%2C42%2C939%2C1%2C2; s_ips=939; s_tp=2257; s_cc=true; _uetsid=fab387e0611a11eda9dab92fb9fdb0c8; _uetvid=fab39b90611a11ed9ee669e5c018eeb2
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: Apache/2.4.54 (Unix) OpenSSL/1.1.1k Communique/4.3.3
x-content-type-options: nosniff
content-disposition: attachment
content-length: 36535
x-frame-options: SAMEORIGIN, SAMEORIGIN
referrer-policy: same-origin
content-type: image/png
cache-control: max-age=86400
expires: Fri, 11 Nov 2022 17:44:03 GMT
date: Thu, 10 Nov 2022 17:44:03 GMT
permissions-policy: interest-cohort=()
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2

nfcu.demdex.net/dest5.html?d_nsid=0

34.250.104.41

200 OK

2.8 kB

URL HTTP/1.1
nfcu.demdex.net/dest5.html?d_nsid=0
IP
34.250.104.41:0
ASN
#16509 AMAZON-02

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (550)
Size
2.8 kB (2791 bytes)
Hash
ccbdcb1e84c241950763ec4cd516cdfc
55dfa8d4b09c5c3a80fcd101152f6ebed3d27a2c
de9ccb9b168945a24f20edc28c39be4135b328129ba8ee378401a7aedc925d12

HTTP Headers

GET /dest5.html?d_nsid=0 HTTP/1.1
Host: nfcu.demdex.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: no-cache,no-store,must-revalidate,max-age=0,proxy-revalidate,no-transform,private
content-encoding: gzip
Content-Type: text/html;charset=UTF-8
date: Thu, 10 Nov 2022 17:44:03 GMT
DCS: dcs-prod-irl1-2-v045-0ebeee8d5.edge-irl1.demdex.com 0 ms
Expires: Thu, 01 Jan 1970 00:00:00 UTC
last-modified: Fri, 28 Oct 2022 11:22:24 GMT
P3P: policyref="/w3c/p3p.xml", CP="NOI NID CURa ADMa DEVa PSAa PSDa OUR SAMa BUS PUR COM NAV INT"
Pragma: no-cache
Strict-Transport-Security: max-age=31536000; includeSubDomains
vary: accept-encoding
X-TID: nRMcQElvSyo=
transfer-encoding: chunked
Connection: keep-alive

tags.bluekai.com/site/21398?id=0-739cfc79-cc5d-4b69-aab4-d6919aa81e87

23.38.201.22

200 OK

62 B

URL HTTP/2
tags.bluekai.com/site/21398?id=0-739cfc79-cc5d-4b69-aab4-d6919aa81e87
IP
23.38.201.22:0
ASN
#16625 AKAMAI-AS

File type
GIF image data, version 89a, 1 x 1\012- data
Size
62 B (62 bytes)
Hash
3f386f5061436a0338a64e0910db495d
599fe4a552c991a2b3ce5a1660732bf7b21fb901
0af3aae90b7de9fdceee2ab421378ea2f54c74be81ef43fc6c1790a032755d80

HTTP Headers

GET /site/21398?id=0-739cfc79-cc5d-4b69-aab4-d6919aa81e87 HTTP/1.1
Host: tags.bluekai.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: image/gif
content-length: 62
p3p: CP="NOI DSP COR CUR ADMo DEVo PSAo PSDo OUR SAMo BUS UNI NAV", policyref="http://tags.bluekai.com/w3c/p3p.xml"
date: Thu, 10 Nov 2022 17:44:03 GMT
X-Firefox-Spdy: h2

ocsp.godaddy.com/

192.124.249.24

200 OK

1.8 kB

URL HTTP/1.1
ocsp.godaddy.com/
IP
192.124.249.24:0
ASN
#30148 SUCURI-SEC

File type
data
Size
1.8 kB (1777 bytes)
Hash
86624c5a61207f982998962379acc96c
d4c625a89f2d62ccc958f0b2ab3336600be3c5de
2fc13e98d7408b954e5cc2722c9492d3bb7f3cf2f6bbf8aa1bffc033516ffda4

HTTP Headers

POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 75
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Thu, 10 Nov 2022 17:44:04 GMT
Content-Type: application/ocsp-response
Content-Length: 1777
Connection: keep-alive
X-Sucuri-ID: 19024
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Wed, 09 Nov 2022 20:17:26 GMT
Expires: Thu, 10 Nov 2022 20:17:26 GMT
ETag: "d4c625a89f2d62ccc958f0b2ab3336600be3c5de"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"

ocsp.sca1b.amazontrust.com/

54.230.245.39

200 OK

471 B

URL HTTP/1.1
ocsp.sca1b.amazontrust.com/
IP
54.230.245.39:0
ASN
#16509 AMAZON-02

File type
data
Size
471 B (471 bytes)
Hash
d59fc618df7bedc7ee0dc6a981ffb367
c6a34614c12b4cf56d53bb940cfdfaa7986c247b
bd9d6d46c0b2535967b1408e9b62c33e8a773868e1f5e5ffae7b7764a652707b

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=152141
Date: Thu, 10 Nov 2022 17:44:03 GMT
Etag: "636cd723-1d7"
Expires: Sat, 12 Nov 2022 11:59:44 GMT
Last-Modified: Thu, 10 Nov 2022 10:49:07 GMT
Server: ECS (nyb/1D1B)
X-Cache: Miss from cloudfront
Via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: 0lDuEO7y7o8ToKOccCvDl6aUeuo1QjI6vViVnmHyaEliYO9A6Rj7pg==
Age: 4237

ocsp.sectigo.com/

172.64.155.188

200 OK

471 B

URL HTTP/1.1
ocsp.sectigo.com/
IP
172.64.155.188:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
471 B (471 bytes)
Hash
cc4e3eb8710f88a05222eedb9848e0ee
2f2c541048ba27356279d0625e4eba8937aeb03d
207db185311648d9a5b4e6974670ecc88cb8a8461edc4f3e791837fce15173d8

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Thu, 10 Nov 2022 17:44:03 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Wed, 09 Nov 2022 13:42:55 GMT
Expires: Wed, 16 Nov 2022 13:42:54 GMT
Etag: "2f2c541048ba27356279d0625e4eba8937aeb03d"
Cache-Control: max-age=503330,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7680980fb997b523-OSL

ocsp.digicert.com/

93.184.220.29

200 OK

313 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
313 B (313 bytes)
Hash
4bf0be174da9ec482b5eb3920b844ad6
00e2f90f3279562d5d4636564dbdc10d921a9576
495bba3389510f9cd70fdd951b0f2fba95d6cc9d266c485b2bd382e6c6ac542b

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6097
Cache-Control: max-age=157942
Content-Type: application/ocsp-response
Date: Thu, 10 Nov 2022 17:44:04 GMT
Etag: "636ce689-139"
Expires: Sat, 12 Nov 2022 13:36:26 GMT
Last-Modified: Thu, 10 Nov 2022 11:54:49 GMT
Server: ECS (ska/F713)
X-Cache: HIT
Content-Length: 313

c1.rfihub.net/js/tc.min.js

54.230.111.57

200 OK

6.2 kB

URL HTTP/2
c1.rfihub.net/js/tc.min.js
IP
54.230.111.57:0
ASN
#16509 AMAZON-02

File type
C source, ASCII text, with very long lines (19497)
Size
6.2 kB (6162 bytes)
Hash
ab5a2e3f2414c0a2b622e48c0b6da2fd
1a894787bde6cbf9b58d47b8f4245607420112ad
a5ef19cf7ca85f760c462ed2f228430c8d0a6d9daf3aa34894a5c42113cfdb8f

HTTP Headers

GET /js/tc.min.js HTTP/1.1
Host: c1.rfihub.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://9749892.fls.doubleclick.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: application/x-javascript
content-length: 6162
date: Thu, 10 Nov 2022 16:48:00 GMT
p3p: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
cache-control: public, max-age=3600
expires: Thu, 10 Nov 2022 17:48:00 GMT
last-modified: Thu, 10 Nov 2022 16:47:50 GMT
content-encoding: gzip
server: Jetty(9.3.29.v20201019)
x-cache: Hit from cloudfront
via: 1.1 4c07121ca6e32bcda85cc9091b92050e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 7pP9dXHvcayp_gNylW-8zzNI97x4XXg8YUJOWR1XbYjv8Ub7nUkVKA==
age: 3364
X-Firefox-Spdy: h2

ocsp.sectigo.com/

172.64.155.188

200 OK

472 B

URL HTTP/1.1
ocsp.sectigo.com/
IP
172.64.155.188:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
472 B (472 bytes)
Hash
7f8e0fc0c21e58c8861535dbc3798992
c58668c0fd5fc1a981917025580f1064eb2c3744
27dc5ed4893e7e608cd11c09bf2d82e80119a994354a80dd8de4644c3333665e

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Thu, 10 Nov 2022 17:44:04 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Wed, 09 Nov 2022 03:43:27 GMT
Expires: Wed, 16 Nov 2022 03:43:26 GMT
Etag: "c58668c0fd5fc1a981917025580f1064eb2c3744"
Cache-Control: max-age=467361,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb4
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 768098102be90b69-OSL

ct.pinterest.com/v3/?tid=2617254381486&noscript=1

23.38.200.197

200 OK

35 B

URL HTTP/2
ct.pinterest.com/v3/?tid=2617254381486&noscript=1
IP
23.38.200.197:0
ASN
#16625 AKAMAI-AS

File type
GIF image data, version 89a, 1 x 1\012- data
Size
35 B (35 bytes)
Hash
9b8d19f4310c758344e40bf17fbc7e85
2290ef058812d5f5e398736e2316cba8cf8093cf
37b17c5135a176a9474521af147d96dfa1fb4ca0f43f00d1400bd1885be3ab9b

HTTP Headers

GET /v3/?tid=2617254381486&noscript=1 HTTP/1.1
Host: ct.pinterest.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://9749892.fls.doubleclick.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
cache-control: no-cache,no-store,must-revalidate,max-age=0
pragma: no-cache
expires: Sat, 01 Jan 2000 00:00:00 GMT
content-type: image/gif
content-length: 35
access-control-allow-origin: *
x-envoy-upstream-service-time: 2
referrer-policy: origin
x-pinterest-rid: 1816883489078667
date: Thu, 10 Nov 2022 17:44:04 GMT
set-cookie: _pinterest_ct_ua="TWc9PSZjeWFkTWhUWFFYMU0vM1Q2K1FSaloxckNvdEl3RnZodUViZncvK0tIem8ra3ZvK3VKdmxPZzlpR24rTG90ZytOdmQ2bHNkSnp5M0p3d2k1UmpFTGF3Y0VMWnpzTHQvTHFmWDM1RUs5NDM3UT0majhMbi9FZVRmbmFUL25sb3UwQlAyeVhJelBVPQ=="; Expires=Fri, 10 Nov 2023 17:44:04 GMT; Path=/; Domain=ct.pinterest.com; Secure; SameSite=None
akamai-grn: 0.274f2417.1668102244.6a55b1ea
x-cdn: akamai
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
X-Firefox-Spdy: h2

ct.pinterest.com/v3/?event=PageView&tid=2617254381486&noscript=1

23.38.200.197

200 OK

35 B

URL HTTP/2
ct.pinterest.com/v3/?event=PageView&tid=2617254381486&noscript=1
IP
23.38.200.197:0
ASN
#16625 AKAMAI-AS

File type
GIF image data, version 89a, 1 x 1\012- data
Size
35 B (35 bytes)
Hash
9b8d19f4310c758344e40bf17fbc7e85
2290ef058812d5f5e398736e2316cba8cf8093cf
37b17c5135a176a9474521af147d96dfa1fb4ca0f43f00d1400bd1885be3ab9b

HTTP Headers

GET /v3/?event=PageView&tid=2617254381486&noscript=1 HTTP/1.1
Host: ct.pinterest.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://9749892.fls.doubleclick.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
cache-control: no-cache,no-store,must-revalidate,max-age=0
pragma: no-cache
expires: Sat, 01 Jan 2000 00:00:00 GMT
content-type: image/gif
content-length: 35
access-control-allow-origin: *
x-envoy-upstream-service-time: 2
referrer-policy: origin
x-pinterest-rid: 1383697063252566
date: Thu, 10 Nov 2022 17:44:04 GMT
set-cookie: _pinterest_ct_ua="TWc9PSZCam1wWjk5STNUMW1SaDVucjE2K0Vta3M3elM2RzhLYnBRMHRiTVhxNFdCcHo4WUZjUTBadDZsZUxqRDRROE1YTHMzSGE0bWczcHZCb1E1ZnJsbWQ1NW5UU3p0N0Q3eFFVTk5IbzlHMkJHRT0maHRPcVh2L3FBR0lWT0tHeWM3TDFmbnBSVnhRPQ=="; Expires=Fri, 10 Nov 2023 17:44:04 GMT; Path=/; Domain=ct.pinterest.com; Secure; SameSite=None
akamai-grn: 0.274f2417.1668102244.6a55b26d
x-cdn: akamai
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
X-Firefox-Spdy: h2

ocsp.globalsign.com/gsgccr3dvtlsca2020

104.18.20.226

200 OK

1.4 kB

URL HTTP/1.1
ocsp.globalsign.com/gsgccr3dvtlsca2020
IP
104.18.20.226:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
1.4 kB (1414 bytes)
Hash
261f69625c7812c0340c9123376a93fe
131198d0e84847b239ad2e5540c9f948634df5be
6542c34dec0fcd33bf85074d44a319f79d4b559975370ff8616ab8e67eebc8e5

HTTP Headers

POST /gsgccr3dvtlsca2020 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Thu, 10 Nov 2022 17:44:04 GMT
Content-Type: application/ocsp-response
Content-Length: 1414
Connection: keep-alive
Expires: Mon, 14 Nov 2022 15:09:13 GMT
ETag: "131198d0e84847b239ad2e5540c9f948634df5be"
Last-Modified: Thu, 10 Nov 2022 15:09:14 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 2872
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 768098117e26b518-OSL

www.navyfederal.org/content/dam/photography/home/exterior/boxesmovingtruck_0048_nfcu_0422-1.jpg/jcr:content/renditions/nfcu.small.428.209.jpg

104.66.116.9

200 OK

84 kB

URL HTTP/2
www.navyfederal.org/content/dam/photography/home/exterior/boxesmovingtruck_0048_nfcu_0422-1.jpg/jcr:content/renditions/nfcu.small.428.209.jpg
IP
104.66.116.9:0
ASN
#16625 AKAMAI-AS

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, baseline, precision 8, 313x209, components 3\012- data
Size
84 kB (84370 bytes)
Hash
284ecaa973220e48c50178ef8e39b1ac
5e738dfff17dc512a20ff5d00621360c96049d1d
ad2bb987b054f0b599162a908f26d2f034a8243866ac12b5de1ec3101b5f58bb

HTTP Headers

GET /content/dam/photography/home/exterior/boxesmovingtruck_0048_nfcu_0422-1.jpg/jcr:content/renditions/nfcu.small.428.209.jpg HTTP/1.1
Host: www.navyfederal.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.navyfederal.org/
Connection: keep-alive
Cookie: _abck=DC80667D0074DA1B3BEF3F54E8921A40~0~YAAQoQVJF8Fa0VeEAQAAnTqIYgi/nj+T4rm31e4sHb7PwvDgqViCOtOD0fiBRFdYqJz0dyA9hJGa4EKA25STY/GpHMVGFfC14EoCo7/tP22D3oHMr+5qp8G9NqHsUnR9yTKnR1gDMzNSabdwOgdWeiR3wmDDs5rdE0m0wQzp8PQTsrURuGjWfWyVuuFEzWEkI579VbdKmXleunDtM/Ey4wOAt5iK/CTF3/Ox6XLe57BJT51t1Kp9a679k5gUjfUPfeeH8XqRQJAWfjqES0NyrJhRBCsqtN2916Y4kNjL0f4762Odoe5Vkt1X2B5+mTKei0UGyrs39M4nJdzzGgojv8WKyQr/lqHy3zLvS+H/XpPCfgOBRc7VprY+7xU+4EZsxrhZvuX/kBO7CdPIxPQKcmhbnBFgYpODAx2Rzc2/~-1~-1~-1; ak_bmsc=CD3D104392607DD4CA7FAC81BDEADF02~000000000000000000000000000000~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; bm_sz=7B5052FB392BE93F5C4C18559FA2BAF5~YAAQoQVJFyRZ0VeEAQAAmjKIYhHpUahXFvdsAaQJmpC1C/Df62CHAJDHM90z1RUp3QYAryRGAWuFC63uafX4GOkO57t7PdFyJs0XxIz5olBO3T9gRurFzQzMLiGaiM7O2AqD14VfNPCCfxbfSR0CGBwnPloUAjk2zoSqL59EY4oA2fSfgNIeU2cpPgd3HyKRc4ce1Ft94xdw4pwO9Bo/no2AgzdZdAouR7qP/2L4sQY9BsHYp+FbYEG2SoEO1s/Dhy/4pHmCti2x4rseqlAZCGfJxDa+2dhblc4CR2cyAMesg9pSn8wYHA==~3683650~3491383; AMCV_9BD537045330573C0A490D44%40AdobeOrg=-408604571%7CMCIDTS%7C19307%7CMCMID%7C33042062579560787242129122377797597997%7CMCAID%7C31B6989A896721D6-600000887BFA0850%7CMCOPTOUT-1668109439s%7CNONE%7CMCAAMLH-1668707039%7C6%7CMCAAMB-1668707039%7Cj8Odv6LonN4r3an7LhD3WZrU1bUpAkFkkiY1ncBR96t2PTI%7CMCSYNCSOP%7C411-19314%7CvVersion%7C4.6.0; mbox=session#27f2b4d776194ac890c08bce568e0ec9#1668104100|PC#27f2b4d776194ac890c08bce568e0ec9.37_0#1731345202; bm_sv=954F8CEE59ED3B7CD609760D612EE728~YAAQoQVJF31v1VeEAQAAfkOkYhFZfngVyGtvE1jEMugBAOx8rdR39TKSJLov3+dGr3sQWNNpst3PMguu9gqYfeCU+tqRLIjlPx3Tv4TcEIu8oOujX5Nv9YFCLdilZG95AQSzy2/qmLLvVKqc+9rxhwhYroVEpVrBY1/jX61AlVb56CbOJOwC8INzjYdz3Bp/DhO4ybihMQ0bSTUodXXnRIGkqAcVrOfVRVNTkc4ADTsBTKRjS/M5SIzAfCJjkWfzuHO0AMk=~1; _gcl_au=1.1.673889086.1668100401; _tq_id.TV-8181450918-1.e1be=86abe9320f0166bf.1668100401.0.1668102240..; s_vi=[CS]v1|31B6989A896721D6-600000887BFA0850[CE]; s_ecid=MCMID%7C33042062579560787242129122377797597997; _fbp=fb.1.1668100402534.1388787247; LPVID=ZkNTEwZjU1Yjk1ZWRkNzY5; at_check=true; AMCVS_9BD537045330573C0A490D44%40AdobeOrg=1; ttc_c14=1668102239774; gpv_page=nfo%3Ahome; s_ppv=nfo%253Ahome%2C42%2C42%2C939%2C1%2C2; s_ips=939; s_tp=2257; s_cc=true; _uetsid=fab387e0611a11eda9dab92fb9fdb0c8; _uetvid=fab39b90611a11ed9ee669e5c018eeb2
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: Apache/2.4.54 (Unix) OpenSSL/1.1.1k Communique/4.3.3
x-content-type-options: nosniff
content-disposition: attachment
content-length: 84370
x-frame-options: SAMEORIGIN, SAMEORIGIN
referrer-policy: same-origin
content-type: image/jpeg
cache-control: max-age=86400
expires: Fri, 11 Nov 2022 17:44:04 GMT
date: Thu, 10 Nov 2022 17:44:04 GMT
permissions-policy: interest-cohort=()
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2

lptag.liveperson.net/tag/tag.js?site=11478817

178.249.101.23

200 OK

7.6 kB

URL HTTP/2
lptag.liveperson.net/tag/tag.js?site=11478817
IP
178.249.101.23:0
ASN
#11054 LIVEPERSON

File type
ASCII text, with very long lines (21652), with no line terminators
Size
7.6 kB (7567 bytes)
Hash
6b675640425ec8551a433e26a377d954
7234f02cce1ccb2a4facf2b34b9185cfcf27299d
8c9716f14d2e964be7c93d3d8c28819cb35c529fce6206a79061cda509e05bfd

HTTP Headers

GET /tag/tag.js?site=11478817 HTTP/1.1
Host: lptag.liveperson.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Thu, 10 Nov 2022 17:44:04 GMT
content-type: application/javascript
content-length: 7567
last-modified: Thu, 03 Sep 2020 08:27:49 GMT
etag: "5f50a905-1d8f"
content-encoding: gzip
server: ws
strict-transport-security: max-age=300; includeSubDomains
access-control-allow-methods: GET, POST, PATCH
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Authorization, X-HTTP-Method-Override, LP-DOMAIN-REFERER, LP-URL, ETag, ac-revision, X-LP-Last-Modified, If-Match, Authentication-Method, Credit-Card-Ref, Automation-Secret, Email-Token
access-control-expose-headers: X-Requested-With, X-HTTP-Method-Override, LP-DOMAIN-REFERER, LP-URL, ETag, ac-revision, X-LP-Last-Modified, If-Match, Authentication-Method, Credit-Card-Ref, Automation-Secret, Email-Token, x-lp-host, Lp-Req-Time, date, x-application-context, strict-transport-security, x-content-type-options, x-download-options, x-xss-protection, x-cache-status, x-amz-id-2, x-amz-request-id, expires, last-modified, set-cookie, content-security-policy, x-frame-options
access-control-allow-credentials: true
cache-control: public, max-age=630
x-content-type-options: nosniff
X-Firefox-Spdy: h2

b.videoamp.com/d2/bf474ba2-6d98-11ec-9997-2d0ad9c70a7f/2873/impression?dnt=false&vpxid=2873&bwb=35&us_privacy={{US_PRIVACY_STRING}}

54.211.88.233

200 OK

42 B

URL HTTP/2
b.videoamp.com/d2/bf474ba2-6d98-11ec-9997-2d0ad9c70a7f/2873/impression?dnt=false&vpxid=2873&bwb=35&us_privacy={{US_PRIVACY_STRING}}
IP
54.211.88.233:0
ASN
#14618 AMAZON-AES

File type
GIF image data, version 89a, 1 x 1\012- data
Size
42 B (42 bytes)
Hash
d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629

HTTP Headers

GET /d2/bf474ba2-6d98-11ec-9997-2d0ad9c70a7f/2873/impression?dnt=false&vpxid=2873&bwb=35&us_privacy={{US_PRIVACY_STRING}} HTTP/1.1
Host: b.videoamp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://9749892.fls.doubleclick.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Thu, 10 Nov 2022 17:44:04 GMT
content-type: image/gif
content-length: 42
server: Beacon Server
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Content-Type
set-cookie: vampid=a19b5a7f-5e33-44b2-a96b-f93a071cdfd9; expires=Fri, 10 Nov 2023 17:44:04 GMT; domain=.videoamp.com; path=/; SameSite=None
X-Firefox-Spdy: h2

ocsp.sectigo.com/

172.64.155.188

200 OK

471 B

URL HTTP/1.1
ocsp.sectigo.com/
IP
172.64.155.188:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
471 B (471 bytes)
Hash
cc4e3eb8710f88a05222eedb9848e0ee
2f2c541048ba27356279d0625e4eba8937aeb03d
207db185311648d9a5b4e6974670ecc88cb8a8461edc4f3e791837fce15173d8

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Thu, 10 Nov 2022 17:44:04 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Wed, 09 Nov 2022 13:42:55 GMT
Expires: Wed, 16 Nov 2022 13:42:54 GMT
Etag: "2f2c541048ba27356279d0625e4eba8937aeb03d"
Cache-Control: max-age=503329,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 768098106e08b512-OSL

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
2bfc2a3dc7a2796b10a5b92cb2973a72
764536d3b44d1fa51f7efed91078acc6613a3082
42a8092c381efc6ac61bc8116972978f623af388441321fb17695ada6d0bbb87

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=123441
Content-Type: application/ocsp-response
Date: Thu, 10 Nov 2022 17:44:04 GMT
Etag: "636c7795-1d7"
Expires: Sat, 12 Nov 2022 04:01:25 GMT
Last-Modified: Thu, 10 Nov 2022 04:01:25 GMT
Server: nginx
Content-Length: 471

t.co/i/adsct?bci=3&eci=2&event_id=e424c320-e224-4306-8eb4-f2012464febd&events=%5B%5B%22pageview%22%2C%7B%7D%5D%5D&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=ce1ddef8-448f-4c91-9a26-a1fad99196e3&tw_document_href=https%3A%2F%2Fwww.navyfederal.org%2F&tw_iframe_status=0&tw_order_quantity=0&tw_sale_amount=0&txn_id=o4vdx&type=javascript&version=2.3.29

104.244.42.133

200 OK

43 B

URL HTTP/2
t.co/i/adsct?bci=3&eci=2&event_id=e424c320-e224-4306-8eb4-f2012464febd&events=%5B%5B%22pageview%22%2C%7B%7D%5D%5D&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=ce1ddef8-448f-4c91-9a26-a1fad99196e3&tw_document_href=https%3A%2F%2Fwww.navyfederal.org%2F&tw_iframe_status=0&tw_order_quantity=0&tw_sale_amount=0&txn_id=o4vdx&type=javascript&version=2.3.29
IP
104.244.42.133:0
ASN
#13414 TWITTER

File type
GIF image data, version 89a, 1 x 1\012- data
Size
43 B (43 bytes)
Hash
377d257f2d2e294916143c069141c1c5
b7cae69682cf31dd670b65088db8395acda6ed3e
ac8778041fdb7f2e08ceb574c9a766247ea26f1a7d90fa854c4efcf4b361a957

HTTP Headers

GET /i/adsct?bci=3&eci=2&event_id=e424c320-e224-4306-8eb4-f2012464febd&events=%5B%5B%22pageview%22%2C%7B%7D%5D%5D&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=ce1ddef8-448f-4c91-9a26-a1fad99196e3&tw_document_href=https%3A%2F%2Fwww.navyfederal.org%2F&tw_iframe_status=0&tw_order_quantity=0&tw_sale_amount=0&txn_id=o4vdx&type=javascript&version=2.3.29 HTTP/1.1
Host: t.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: muc_ads=3594b195-9879-49a5-b566-983622cbaeb1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Thu, 10 Nov 2022 17:44:03 GMT
perf: 7626143928
server: tsa_o
content-type: image/gif;charset=utf-8
cache-control: no-cache, no-store, max-age=0
content-length: 43
x-transaction-id: 7fe0afb25d60d939
strict-transport-security: max-age=0
x-response-time: 110
x-connection-hash: 49fa25375f29ba1839340a3c6496bbd46c64ed702b29204d819ce9a306dd0d14
X-Firefox-Spdy: h2

analytics.navyfederal.org/b/ss/nfcuprod/1/JS-2.20.0-LCXS/s36006006693115?AQB=1&ndh=1&pf=1&t=10%2F10%2F2022%2017%3A43%3A59%204%200&sdid=5C529B33A4599597-62992B94E08B8350&mid=33042062579560787242129122377797597997&aid=31B6989A896721D6-600000887BFA0850&aamlh=6&ce=UTF-8&pageName=nfo%3Ahome&g=https%3A%2F%2Fwww.navyfederal.org%2F&r=https%3A%2F%2Fnfcuhelp-secured.authorizeddns.us%2F&cc=USD&aamb=j8Odv6LonN4r3an7LhD3WZrU1bUpAkFkkiY1ncBR96t2PTI&v1=nfo&c4=12%3A43PM&v4=12%3A43PM&c5=Thursday&v5=Thursday&c11=Build%20Date%3A%202022-10-20T12%3A57%3A19Z%20%7CJS%3A%202.20.0%20%7CECID%3A%204.6.0&c15=AEM&v15=AEM&v16=33042062579560787242129122377797597997&v30=nfo%3Ahome&c51=D%3Dg&c59=D%3Dv59&v59=Mozilla%2F5.0%20%28Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0%29%20Gecko%2F20100101%20Firefox%2F105.0&s=1280x1024&c=24&j=1.6&v=N&k=Y&bw=1280&bh=939&mcorgid=9BD537045330573C0A490D44%40AdobeOrg&AQE=1

63.140.38.178

200 OK

43 B

URL HTTP/2
analytics.navyfederal.org/b/ss/nfcuprod/1/JS-2.20.0-LCXS/s36006006693115?AQB=1&ndh=1&pf=1&t=10%2F10%2F2022%2017%3A43%3A59%204%200&sdid=5C529B33A4599597-62992B94E08B8350&mid=33042062579560787242129122377797597997&aid=31B6989A896721D6-600000887BFA0850&aamlh=6&ce=UTF-8&pageName=nfo%3Ahome&g=https%3A%2F%2Fwww.navyfederal.org%2F&r=https%3A%2F%2Fnfcuhelp-secured.authorizeddns.us%2F&cc=USD&aamb=j8Odv6LonN4r3an7LhD3WZrU1bUpAkFkkiY1ncBR96t2PTI&v1=nfo&c4=12%3A43PM&v4=12%3A43PM&c5=Thursday&v5=Thursday&c11=Build%20Date%3A%202022-10-20T12%3A57%3A19Z%20%7CJS%3A%202.20.0%20%7CECID%3A%204.6.0&c15=AEM&v15=AEM&v16=33042062579560787242129122377797597997&v30=nfo%3Ahome&c51=D%3Dg&c59=D%3Dv59&v59=Mozilla%2F5.0%20%28Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0%29%20Gecko%2F20100101%20Firefox%2F105.0&s=1280x1024&c=24&j=1.6&v=N&k=Y&bw=1280&bh=939&mcorgid=9BD537045330573C0A490D44%40AdobeOrg&AQE=1
IP
63.140.38.178:0
ASN
#14618 AMAZON-AES

File type
GIF image data, version 89a, 2 x 2\012- data
Size
43 B (43 bytes)
Hash
ad480fd0732d0f6f1a8b06359e3a42bb
a544538683a2dfe574eeb2e358ac8fcc78289d50
a1ecbaed793a1f564c49c671f2dd0ce36f858534ef6d26b55783a06b884cc506

HTTP Headers

GET /b/ss/nfcuprod/1/JS-2.20.0-LCXS/s36006006693115?AQB=1&ndh=1&pf=1&t=10%2F10%2F2022%2017%3A43%3A59%204%200&sdid=5C529B33A4599597-62992B94E08B8350&mid=33042062579560787242129122377797597997&aid=31B6989A896721D6-600000887BFA0850&aamlh=6&ce=UTF-8&pageName=nfo%3Ahome&g=https%3A%2F%2Fwww.navyfederal.org%2F&r=https%3A%2F%2Fnfcuhelp-secured.authorizeddns.us%2F&cc=USD&aamb=j8Odv6LonN4r3an7LhD3WZrU1bUpAkFkkiY1ncBR96t2PTI&v1=nfo&c4=12%3A43PM&v4=12%3A43PM&c5=Thursday&v5=Thursday&c11=Build%20Date%3A%202022-10-20T12%3A57%3A19Z%20%7CJS%3A%202.20.0%20%7CECID%3A%204.6.0&c15=AEM&v15=AEM&v16=33042062579560787242129122377797597997&v30=nfo%3Ahome&c51=D%3Dg&c59=D%3Dv59&v59=Mozilla%2F5.0%20%28Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0%29%20Gecko%2F20100101%20Firefox%2F105.0&s=1280x1024&c=24&j=1.6&v=N&k=Y&bw=1280&bh=939&mcorgid=9BD537045330573C0A490D44%40AdobeOrg&AQE=1 HTTP/1.1
Host: analytics.navyfederal.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: _abck=DC80667D0074DA1B3BEF3F54E8921A40~0~YAAQoQVJF8Fa0VeEAQAAnTqIYgi/nj+T4rm31e4sHb7PwvDgqViCOtOD0fiBRFdYqJz0dyA9hJGa4EKA25STY/GpHMVGFfC14EoCo7/tP22D3oHMr+5qp8G9NqHsUnR9yTKnR1gDMzNSabdwOgdWeiR3wmDDs5rdE0m0wQzp8PQTsrURuGjWfWyVuuFEzWEkI579VbdKmXleunDtM/Ey4wOAt5iK/CTF3/Ox6XLe57BJT51t1Kp9a679k5gUjfUPfeeH8XqRQJAWfjqES0NyrJhRBCsqtN2916Y4kNjL0f4762Odoe5Vkt1X2B5+mTKei0UGyrs39M4nJdzzGgojv8WKyQr/lqHy3zLvS+H/XpPCfgOBRc7VprY+7xU+4EZsxrhZvuX/kBO7CdPIxPQKcmhbnBFgYpODAx2Rzc2/~-1~-1~-1; ak_bmsc=CD3D104392607DD4CA7FAC81BDEADF02~000000000000000000000000000000~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; bm_sz=7B5052FB392BE93F5C4C18559FA2BAF5~YAAQoQVJFyRZ0VeEAQAAmjKIYhHpUahXFvdsAaQJmpC1C/Df62CHAJDHM90z1RUp3QYAryRGAWuFC63uafX4GOkO57t7PdFyJs0XxIz5olBO3T9gRurFzQzMLiGaiM7O2AqD14VfNPCCfxbfSR0CGBwnPloUAjk2zoSqL59EY4oA2fSfgNIeU2cpPgd3HyKRc4ce1Ft94xdw4pwO9Bo/no2AgzdZdAouR7qP/2L4sQY9BsHYp+FbYEG2SoEO1s/Dhy/4pHmCti2x4rseqlAZCGfJxDa+2dhblc4CR2cyAMesg9pSn8wYHA==~3683650~3491383; AMCV_9BD537045330573C0A490D44%40AdobeOrg=-408604571%7CMCIDTS%7C19307%7CMCMID%7C33042062579560787242129122377797597997%7CMCAID%7C31B6989A896721D6-600000887BFA0850%7CMCOPTOUT-1668109439s%7CNONE%7CMCAAMLH-1668707039%7C6%7CMCAAMB-1668707039%7Cj8Odv6LonN4r3an7LhD3WZrU1bUpAkFkkiY1ncBR96t2PTI%7CMCSYNCSOP%7C411-19314%7CvVersion%7C4.6.0; mbox=session#27f2b4d776194ac890c08bce568e0ec9#1668104100|PC#27f2b4d776194ac890c08bce568e0ec9.37_0#1731345202; bm_sv=954F8CEE59ED3B7CD609760D612EE728~YAAQoQVJF31v1VeEAQAAfkOkYhFZfngVyGtvE1jEMugBAOx8rdR39TKSJLov3+dGr3sQWNNpst3PMguu9gqYfeCU+tqRLIjlPx3Tv4TcEIu8oOujX5Nv9YFCLdilZG95AQSzy2/qmLLvVKqc+9rxhwhYroVEpVrBY1/jX61AlVb56CbOJOwC8INzjYdz3Bp/DhO4ybihMQ0bSTUodXXnRIGkqAcVrOfVRVNTkc4ADTsBTKRjS/M5SIzAfCJjkWfzuHO0AMk=~1; _gcl_au=1.1.673889086.1668100401; s_vi=[CS]v1|31B6989A896721D6-600000887BFA0850[CE]; s_ecid=MCMID%7C33042062579560787242129122377797597997; _uetsid=fab387e0611a11eda9dab92fb9fdb0c8; _uetvid=fab39b90611a11ed9ee669e5c018eeb2; _fbp=fb.1.1668100402534.1388787247; LPVID=ZkNTEwZjU1Yjk1ZWRkNzY5; at_check=true; AMCVS_9BD537045330573C0A490D44%40AdobeOrg=1; ttc_c14=1668102239774; gpv_page=nfo%3Ahome; s_ppv=nfo%253Ahome%2C42%2C42%2C939%2C1%2C2; s_ips=939; s_tp=2257; s_cc=true
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site

HTTP/2 200 OK
access-control-allow-origin: *
date: Thu, 10 Nov 2022 17:44:04 GMT
expires: Wed, 09 Nov 2022 17:44:04 GMT
last-modified: Fri, 11 Nov 2022 17:44:04 GMT
pragma: no-cache
p3p: CP="This is not a P3P policy"
server: jag
set-cookie: s_ecid=MCMID%7C33042062579560787242129122377797597997; Path=/; Domain=navyfederal.org; Max-Age=63072000; Expires=Sat, 09 Nov 2024 17:44:44 GMT;
s_vi=[CS]v1|31B6989A896721D6-600000887BFA0850[CE]; Path=/; Domain=navyfederal.org; Max-Age=63072000; Expires=Sat, 09 Nov 2024 17:44:44 GMT;
etag: 3582222293542862848-4619738776024503641
vary: *
content-type: image/gif;charset=utf-8
content-length: 43
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: no-cache, no-store, max-age=0, no-transform, private
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
X-Firefox-Spdy: h2

t.myvisualiq.net/sync?prid=1001&ao=0&pruuid=TAPAD_1148687e-308a-4823-8645-d0c4008a8554

3.123.165.27

200 OK

43 B

URL HTTP/1.1
t.myvisualiq.net/sync?prid=1001&ao=0&pruuid=TAPAD_1148687e-308a-4823-8645-d0c4008a8554
IP
3.123.165.27:0
ASN
#16509 AMAZON-02

File type
GIF image data, version 89a, 1 x 1\012- data
Size
43 B (43 bytes)
Hash
df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87

HTTP Headers

GET /sync?prid=1001&ao=0&pruuid=TAPAD_1148687e-308a-4823-8645-d0c4008a8554 HTTP/1.1
Host: t.myvisualiq.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
access-control-allow-origin: *
Cache-Control: no-cache, no-store, must-revalidate
Content-Type: image/gif
cross-origin-resource-policy: cross-origin
Date: Thu, 10 Nov 2022 17:44:04 GMT
Content-Length: 43
Connection: keep-alive

dpm.demdex.net/demconf.jpg?et:ibs%7cdata:dpid=125310&dpuuid=0-0b3786f6-0563-46d8-b727-61e4a1b5f2b2&redir=https%3A%2F%2Ft.myvisualiq.net%2Fsync%3Fprid%3DAOEPNR1%26ao%3D0%26pruuid%3D%24%7BDD_UUID%7D

54.154.180.60

200 OK

59 B

URL HTTP/1.1
dpm.demdex.net/demconf.jpg?et:ibs%7cdata:dpid=125310&dpuuid=0-0b3786f6-0563-46d8-b727-61e4a1b5f2b2&redir=https%3A%2F%2Ft.myvisualiq.net%2Fsync%3Fprid%3DAOEPNR1%26ao%3D0%26pruuid%3D%24%7BDD_UUID%7D
IP
54.154.180.60:0
ASN
#16509 AMAZON-02

File type
GIF image data, version 89a, 1 x 1\012- data
Size
59 B (59 bytes)
Hash
1251cd5e5c2def4c046309375f87c1c1
e02d6b0c6a5c495c15985e2832e335eda8528c80
4e7010cc46fa361c88e57e3346d27421cf3b8a8bf5f39b43fc45997c60cb1c13

HTTP Headers

GET /demconf.jpg?et:ibs%7cdata:dpid=125310&dpuuid=0-0b3786f6-0563-46d8-b727-61e4a1b5f2b2&redir=https%3A%2F%2Ft.myvisualiq.net%2Fsync%3Fprid%3DAOEPNR1%26ao%3D0%26pruuid%3D%24%7BDD_UUID%7D HTTP/1.1
Host: dpm.demdex.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Cache-Control: no-cache,no-store,must-revalidate,max-age=0,proxy-revalidate,no-transform,private
content-encoding: gzip
Content-Type: image/gif
DCS: dcs-prod-irl1-2-v045-037643fd0.edge-irl1.demdex.com 0 ms
Expires: Thu, 01 Jan 1970 00:00:00 UTC
P3P: policyref="/w3c/p3p.xml", CP="NOI NID CURa ADMa DEVa PSAa PSDa OUR SAMa BUS PUR COM NAV INT"
Pragma: no-cache
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Content-Type-Options: nosniff
X-TID: MTVn+J0MRgc=
Content-Length: 59
Connection: keep-alive

bat.bing.com/action/0?ti=25148914&tm=al001&Ver=2&mid=817ce78b-a25a-4615-b2bd-8a6e773bc95d&sid=fab387e0611a11eda9dab92fb9fdb0c8&vid=fab39b90611a11ed9ee669e5c018eeb2&vids=0&msclkid=N&pi=0&lg=en-US&sw=1280&sh=1024&sc=24&tl=Navy%20Federal%20Credit%20Union%20%7C%20Banking,%20Loans,%20Mortgages%20%26%20Credit%20Cards%20%7C%20Navy%20Federal%20Credit%20Union&p=https%3A%2F%2Fwww.navyfederal.org%2F&r=https%3A%2F%2Fnfcuhelp-secured.authorizeddns.us%2F&lt=1245&pt=1668102238027,,,,,0,65,104,104,142,117,142,418,428,421,1210,1242,1245,,,&pn=255,0&evt=pageLoad&sv=1&rn=152524

204.79.197.200

204 No Content

0 B

URL HTTP/2
bat.bing.com/action/0?ti=25148914&tm=al001&Ver=2&mid=817ce78b-a25a-4615-b2bd-8a6e773bc95d&sid=fab387e0611a11eda9dab92fb9fdb0c8&vid=fab39b90611a11ed9ee669e5c018eeb2&vids=0&msclkid=N&pi=0&lg=en-US&sw=1280&sh=1024&sc=24&tl=Navy%20Federal%20Credit%20Union%20%7C%20Banking,%20Loans,%20Mortgages%20%26%20Credit%20Cards%20%7C%20Navy%20Federal%20Credit%20Union&p=https%3A%2F%2Fwww.navyfederal.org%2F&r=https%3A%2F%2Fnfcuhelp-secured.authorizeddns.us%2F&lt=1245&pt=1668102238027,,,,,0,65,104,104,142,117,142,418,428,421,1210,1242,1245,,,&pn=255,0&evt=pageLoad&sv=1&rn=152524
IP
204.79.197.200:0
ASN
#8068 MICROSOFT-CORP-MSN-AS-BLOCK

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /action/0?ti=25148914&tm=al001&Ver=2&mid=817ce78b-a25a-4615-b2bd-8a6e773bc95d&sid=fab387e0611a11eda9dab92fb9fdb0c8&vid=fab39b90611a11ed9ee669e5c018eeb2&vids=0&msclkid=N&pi=0&lg=en-US&sw=1280&sh=1024&sc=24&tl=Navy%20Federal%20Credit%20Union%20%7C%20Banking,%20Loans,%20Mortgages%20%26%20Credit%20Cards%20%7C%20Navy%20Federal%20Credit%20Union&p=https%3A%2F%2Fwww.navyfederal.org%2F&r=https%3A%2F%2Fnfcuhelp-secured.authorizeddns.us%2F&lt=1245&pt=1668102238027,,,,,0,65,104,104,142,117,142,418,428,421,1210,1242,1245,,,&pn=255,0&evt=pageLoad&sv=1&rn=152524 HTTP/1.1
Host: bat.bing.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 204 No Content
cache-control: no-cache, must-revalidate
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
set-cookie: MUID=03CF7C5FF55F676C33F86E07F4AA66F0; domain=.bing.com; expires=Tue, 05-Dec-2023 17:44:04 GMT; path=/; SameSite=None; Secure; Priority=High;
strict-transport-security: max-age=31536000; includeSubDomains; preload
access-control-allow-origin: *
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 8BC0AF6484084AD9941504FD81468896 Ref B: OSL30EDGE0222 Ref C: 2022-11-10T17:44:04Z
date: Thu, 10 Nov 2022 17:44:03 GMT
X-Firefox-Spdy: h2

ocsp.sca1b.amazontrust.com/

54.230.245.39

200 OK

471 B

URL HTTP/1.1
ocsp.sca1b.amazontrust.com/
IP
54.230.245.39:0
ASN
#16509 AMAZON-02

File type
data
Size
471 B (471 bytes)
Hash
6fd0ee419f99aa1acfa08e8bcc49b973
a1ebf478de73a0867bd85ae5cb3bd7380f7f1dda
d7c670cfe8ffaa9e11e20cabd20b756e67ab8eff2241b7d6ecb9f75fafb57beb

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=165241
Date: Thu, 10 Nov 2022 17:44:04 GMT
Etag: "636d06fa-1d7"
Expires: Sat, 12 Nov 2022 15:38:05 GMT
Last-Modified: Thu, 10 Nov 2022 14:13:14 GMT
Server: ECS (nyb/1D35)
X-Cache: Miss from cloudfront
Via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: fbKEAROGLtKODQPJs1t6BYeaz-zn2RtR-b04BZfmmeEPJB3j3CKFKQ==
Age: 5091

ocsp.sca1b.amazontrust.com/

54.230.245.39

200 OK

471 B

URL HTTP/1.1
ocsp.sca1b.amazontrust.com/
IP
54.230.245.39:0
ASN
#16509 AMAZON-02

File type
data
Size
471 B (471 bytes)
Hash
6fd0ee419f99aa1acfa08e8bcc49b973
a1ebf478de73a0867bd85ae5cb3bd7380f7f1dda
d7c670cfe8ffaa9e11e20cabd20b756e67ab8eff2241b7d6ecb9f75fafb57beb

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=164317
Date: Thu, 10 Nov 2022 17:44:04 GMT
Etag: "636d06fa-1d7"
Expires: Sat, 12 Nov 2022 15:22:41 GMT
Last-Modified: Thu, 10 Nov 2022 14:13:14 GMT
Server: ECS (nyb/1D16)
X-Cache: Miss from cloudfront
Via: 1.1 d9fb4c3794a085bb4ee2c5798c2cb1b8.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: 9p-Zn4gt3SHWmkiEpVW05Thvxs3HNuw7qFRDRLnCNjjqVzzILnUqbA==
Age: 4167

www.navyfederal.org/content/dam/campaign-only/hr-taq-containers/a30937_military_spouse_hiring.png/jcr:content/renditions/nfcu.small.428.209.png

104.66.116.9

200 OK

57 kB

URL HTTP/2
www.navyfederal.org/content/dam/campaign-only/hr-taq-containers/a30937_military_spouse_hiring.png/jcr:content/renditions/nfcu.small.428.209.png
IP
104.66.116.9:0
ASN
#16625 AKAMAI-AS

File type
PNG image data, 238 x 209, 8-bit/color RGBA, non-interlaced\012- data
Size
57 kB (56840 bytes)
Hash
044593751eeac2b80f3a552240cd4b9e
1bfbba6e3d4eb4531b89588ed0baa29d41c48c67
866efdc34bf73cf120b4bf53227f431c683a64f893e4d76b9c8c25454d44b81b

HTTP Headers

GET /content/dam/campaign-only/hr-taq-containers/a30937_military_spouse_hiring.png/jcr:content/renditions/nfcu.small.428.209.png HTTP/1.1
Host: www.navyfederal.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.navyfederal.org/
Connection: keep-alive
Cookie: _abck=DC80667D0074DA1B3BEF3F54E8921A40~0~YAAQoQVJF8Fa0VeEAQAAnTqIYgi/nj+T4rm31e4sHb7PwvDgqViCOtOD0fiBRFdYqJz0dyA9hJGa4EKA25STY/GpHMVGFfC14EoCo7/tP22D3oHMr+5qp8G9NqHsUnR9yTKnR1gDMzNSabdwOgdWeiR3wmDDs5rdE0m0wQzp8PQTsrURuGjWfWyVuuFEzWEkI579VbdKmXleunDtM/Ey4wOAt5iK/CTF3/Ox6XLe57BJT51t1Kp9a679k5gUjfUPfeeH8XqRQJAWfjqES0NyrJhRBCsqtN2916Y4kNjL0f4762Odoe5Vkt1X2B5+mTKei0UGyrs39M4nJdzzGgojv8WKyQr/lqHy3zLvS+H/XpPCfgOBRc7VprY+7xU+4EZsxrhZvuX/kBO7CdPIxPQKcmhbnBFgYpODAx2Rzc2/~-1~-1~-1; ak_bmsc=CD3D104392607DD4CA7FAC81BDEADF02~000000000000000000000000000000~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; bm_sz=7B5052FB392BE93F5C4C18559FA2BAF5~YAAQoQVJFyRZ0VeEAQAAmjKIYhHpUahXFvdsAaQJmpC1C/Df62CHAJDHM90z1RUp3QYAryRGAWuFC63uafX4GOkO57t7PdFyJs0XxIz5olBO3T9gRurFzQzMLiGaiM7O2AqD14VfNPCCfxbfSR0CGBwnPloUAjk2zoSqL59EY4oA2fSfgNIeU2cpPgd3HyKRc4ce1Ft94xdw4pwO9Bo/no2AgzdZdAouR7qP/2L4sQY9BsHYp+FbYEG2SoEO1s/Dhy/4pHmCti2x4rseqlAZCGfJxDa+2dhblc4CR2cyAMesg9pSn8wYHA==~3683650~3491383; AMCV_9BD537045330573C0A490D44%40AdobeOrg=-408604571%7CMCIDTS%7C19307%7CMCMID%7C33042062579560787242129122377797597997%7CMCAID%7C31B6989A896721D6-600000887BFA0850%7CMCOPTOUT-1668109439s%7CNONE%7CMCAAMLH-1668707039%7C6%7CMCAAMB-1668707039%7Cj8Odv6LonN4r3an7LhD3WZrU1bUpAkFkkiY1ncBR96t2PTI%7CMCSYNCSOP%7C411-19314%7CvVersion%7C4.6.0; mbox=session#27f2b4d776194ac890c08bce568e0ec9#1668104100|PC#27f2b4d776194ac890c08bce568e0ec9.37_0#1731345202; bm_sv=954F8CEE59ED3B7CD609760D612EE728~YAAQoQVJF31v1VeEAQAAfkOkYhFZfngVyGtvE1jEMugBAOx8rdR39TKSJLov3+dGr3sQWNNpst3PMguu9gqYfeCU+tqRLIjlPx3Tv4TcEIu8oOujX5Nv9YFCLdilZG95AQSzy2/qmLLvVKqc+9rxhwhYroVEpVrBY1/jX61AlVb56CbOJOwC8INzjYdz3Bp/DhO4ybihMQ0bSTUodXXnRIGkqAcVrOfVRVNTkc4ADTsBTKRjS/M5SIzAfCJjkWfzuHO0AMk=~1; _gcl_au=1.1.673889086.1668100401; _tq_id.TV-8181450918-1.e1be=86abe9320f0166bf.1668100401.0.1668102240..; s_vi=[CS]v1|31B6989A896721D6-600000887BFA0850[CE]; s_ecid=MCMID%7C33042062579560787242129122377797597997; _fbp=fb.1.1668100402534.1388787247; LPVID=ZkNTEwZjU1Yjk1ZWRkNzY5; at_check=true; AMCVS_9BD537045330573C0A490D44%40AdobeOrg=1; ttc_c14=1668102239774; gpv_page=nfo%3Ahome; s_ppv=nfo%253Ahome%2C42%2C42%2C939%2C1%2C2; s_ips=939; s_tp=2257; s_cc=true; _uetsid=fab387e0611a11eda9dab92fb9fdb0c8; _uetvid=fab39b90611a11ed9ee669e5c018eeb2
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: Apache/2.4.54 (Unix) OpenSSL/1.1.1k Communique/4.3.3
last-modified: Wed, 02 Mar 2022 18:41:49 GMT
accept-ranges: bytes
content-length: 56840
x-frame-options: SAMEORIGIN, SAMEORIGIN
referrer-policy: same-origin
x-content-type-options: nosniff
content-type: image/png
cache-control: max-age=86400
expires: Fri, 11 Nov 2022 17:44:04 GMT
date: Thu, 10 Nov 2022 17:44:04 GMT
permissions-policy: interest-cohort=()
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

312 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
312 B (312 bytes)
Hash
986b0717b2543e38d359045ec907ae5d
eeb764df6944ad35d1e13c1c53e91a7d826b24a5
b75464c98a24b4db1f3a4d7020b6be747a05ecc99fdde331ebc749b917a3d0c3

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6152
Cache-Control: max-age=112620
Content-Type: application/ocsp-response
Date: Thu, 10 Nov 2022 17:44:04 GMT
Etag: "636c3549-138"
Expires: Sat, 12 Nov 2022 01:01:04 GMT
Last-Modified: Wed, 09 Nov 2022 23:18:33 GMT
Server: ECS (ska/F713)
X-Cache: HIT
Content-Length: 312

ocsp.sectigo.com/

172.64.155.188

200 OK

471 B

URL HTTP/1.1
ocsp.sectigo.com/
IP
172.64.155.188:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
471 B (471 bytes)
Hash
048cfd3ed3aeda60e448a66d151dfc45
183f18422f78d31953eb593066cc4c81e10e9243
5f7512917b0b6b30991eea43aa2ccaafadf7b919bdd9546886275ed409263b5a

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Thu, 10 Nov 2022 17:44:04 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Wed, 09 Nov 2022 02:15:46 GMT
Expires: Wed, 16 Nov 2022 02:15:45 GMT
Etag: "183f18422f78d31953eb593066cc4c81e10e9243"
Cache-Control: max-age=462100,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb4
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 76809811ed840b69-OSL

bat.bing.com/p/action/25148914.js

204.79.197.200

204 No Content

0 B

URL HTTP/2
bat.bing.com/p/action/25148914.js
IP
204.79.197.200:0
ASN
#8068 MICROSOFT-CORP-MSN-AS-BLOCK

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /p/action/25148914.js HTTP/1.1
Host: bat.bing.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 204 No Content
cache-control: private,max-age=1800
set-cookie: MUID=115DB7BA45536F9B16E8A5E244A66E05; domain=.bing.com; expires=Tue, 05-Dec-2023 17:44:04 GMT; path=/; SameSite=None; Secure; Priority=High;
strict-transport-security: max-age=31536000; includeSubDomains; preload
access-control-allow-origin: *
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: D7266BC4B0854C219CE4D3B071AC374A Ref B: OSL30EDGE0222 Ref C: 2022-11-10T17:44:04Z
date: Thu, 10 Nov 2022 17:44:03 GMT
X-Firefox-Spdy: h2

20823298p.rfihub.com/ca.html?ver=9&rb=39468&ca=20823298&_o=39468&_t=20823298&pe=https%3A%2F%2F9749892.fls.doubleclick.net%2Fddm%2Ffls%2Fr%2Fsrc%3D9749892%3Btype%3Dgener0%3Bcat%3Dnfcu_0%3Bord%3D8441939540690%3Bgtm%3D2odb70%3Bauiddc%3D673889086.1668100401%3B%7Eoref%3Dhttps%253A%252F%252Fwww.navyfederal.org%252F&pf=https%3A%2F%2Fadservice.google.com%2F&ra=1829537102304195

193.0.160.129

302 Found

0 B

URL HTTP/1.1
20823298p.rfihub.com/ca.html?ver=9&rb=39468&ca=20823298&_o=39468&_t=20823298&pe=https%3A%2F%2F9749892.fls.doubleclick.net%2Fddm%2Ffls%2Fr%2Fsrc%3D9749892%3Btype%3Dgener0%3Bcat%3Dnfcu_0%3Bord%3D8441939540690%3Bgtm%3D2odb70%3Bauiddc%3D673889086.1668100401%3B%7Eoref%3Dhttps%253A%252F%252Fwww.navyfederal.org%252F&pf=https%3A%2F%2Fadservice.google.com%2F&ra=1829537102304195
IP
193.0.160.129:0
ASN
#54312 ROCKETFUEL

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /ca.html?ver=9&rb=39468&ca=20823298&_o=39468&_t=20823298&pe=https%3A%2F%2F9749892.fls.doubleclick.net%2Fddm%2Ffls%2Fr%2Fsrc%3D9749892%3Btype%3Dgener0%3Bcat%3Dnfcu_0%3Bord%3D8441939540690%3Bgtm%3D2odb70%3Bauiddc%3D673889086.1668100401%3B%7Eoref%3Dhttps%253A%252F%252Fwww.navyfederal.org%252F&pf=https%3A%2F%2Fadservice.google.com%2F&ra=1829537102304195 HTTP/1.1
Host: 20823298p.rfihub.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://9749892.fls.doubleclick.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

HTTP/1.1 302 Found
Date: Thu, 10 Nov 2022 17:44:04 GMT
P3P: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
Set-Cookie: ruds=H4sIAAAAAAAA_-MSNjU0NjY2sjQ1MrK0NDIyMTY2MBHiM9S1LDcJC_b384wMdE4BAM6yDYAlAAAA; Path=/; Domain=.rfihub.com; Secure; SameSite=None
rud=H4sIAAAAAAAA_-MSNjU0NjY2sjQ1MrK0NDIyMTY2MBHiM9S1LDcJC_b384wMdE4BAM6yDYAlAAAA; Path=/; Domain=.rfihub.com; Expires=Tue, 5 Dec 2023 17:44:04 GMT; Secure; SameSite=None
Location: https://secure.adnxs.com/seg?add=27742454&t=1&ver=9&pe=https%3A%2F%2F9749892.fls.doubleclick.net%2Fddm%2Ffls%2Fr%2Fsrc%3D9749892%3Btype%3Dgener0%3Bcat%3Dnfcu_0%3Bord%3D8441939540690%3Bgtm%3D2odb70%3Bauiddc%3D673889086.1668100401%3B%7Eoref%3Dhttps%253A%252F%252Fwww.navyfederal.org%252F&pf=https%3A%2F%2Fadservice.google.com%2F
Content-Length: 0
Server: Jetty(9.3.29.v20201019)

p.tvpixel.com/com.snowplowanalytics.snowplow/tp2

3.232.222.33

200 OK

0 B

URL HTTP/2
p.tvpixel.com/com.snowplowanalytics.snowplow/tp2
IP
3.232.222.33:0
ASN
#14618 AMAZON-AES

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

OPTIONS /com.snowplowanalytics.snowplow/tp2 HTTP/1.1
Host: p.tvpixel.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://9749892.fls.doubleclick.net/
Origin: https://9749892.fls.doubleclick.net
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Thu, 10 Nov 2022 17:44:04 GMT
content-length: 0
server: nginx
access-control-allow-origin: https://9749892.fls.doubleclick.net
access-control-allow-credentials: true
access-control-allow-headers: Content-Type, SP-Anonymous
access-control-max-age: 600
X-Firefox-Spdy: h2

analytics.twitter.com/i/adsct?bci=3&eci=2&event_id=e424c320-e224-4306-8eb4-f2012464febd&events=%5B%5B%22pageview%22%2C%7B%7D%5D%5D&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=ce1ddef8-448f-4c91-9a26-a1fad99196e3&tw_document_href=https%3A%2F%2Fwww.navyfederal.org%2F&tw_iframe_status=0&tw_order_quantity=0&tw_sale_amount=0&txn_id=o4vdx&type=javascript&version=2.3.29

104.244.42.3

200 OK

43 B

URL HTTP/2
analytics.twitter.com/i/adsct?bci=3&eci=2&event_id=e424c320-e224-4306-8eb4-f2012464febd&events=%5B%5B%22pageview%22%2C%7B%7D%5D%5D&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=ce1ddef8-448f-4c91-9a26-a1fad99196e3&tw_document_href=https%3A%2F%2Fwww.navyfederal.org%2F&tw_iframe_status=0&tw_order_quantity=0&tw_sale_amount=0&txn_id=o4vdx&type=javascript&version=2.3.29
IP
104.244.42.3:0
ASN
#13414 TWITTER

File type
GIF image data, version 89a, 1 x 1\012- data
Size
43 B (43 bytes)
Hash
377d257f2d2e294916143c069141c1c5
b7cae69682cf31dd670b65088db8395acda6ed3e
ac8778041fdb7f2e08ceb574c9a766247ea26f1a7d90fa854c4efcf4b361a957

HTTP Headers

GET /i/adsct?bci=3&eci=2&event_id=e424c320-e224-4306-8eb4-f2012464febd&events=%5B%5B%22pageview%22%2C%7B%7D%5D%5D&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=ce1ddef8-448f-4c91-9a26-a1fad99196e3&tw_document_href=https%3A%2F%2Fwww.navyfederal.org%2F&tw_iframe_status=0&tw_order_quantity=0&tw_sale_amount=0&txn_id=o4vdx&type=javascript&version=2.3.29 HTTP/1.1
Host: analytics.twitter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Thu, 10 Nov 2022 17:44:03 GMT
perf: 7626143928
server: tsa_o
set-cookie: personalization_id="v1_lunWLZ9fUUYJbxokB7y6Tg=="; Max-Age=63072000; Expires=Sat, 09 Nov 2024 17:44:04 GMT; Path=/; Domain=.twitter.com; Secure; SameSite=None
content-type: image/gif;charset=utf-8
cache-control: no-cache, no-store, max-age=0
content-length: 43
x-transaction-id: 15cec132fe866707
strict-transport-security: max-age=631138519
x-response-time: 111
x-connection-hash: 3bfe7d6cd4cf446cf0e0a7065ea78c37fc1023540e6ce6de3d37fb0bc6a05951
X-Firefox-Spdy: h2

ocsp.sectigo.com/

172.64.155.188

200 OK

471 B

URL HTTP/1.1
ocsp.sectigo.com/
IP
172.64.155.188:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
471 B (471 bytes)
Hash
1401906e971d6454d551be10512364df
42477b706a643400cbfd8f7532a4473723eb5630
507faf27ee84039f10c7f8b7e7f08beed1fa19ffb2466221521de708de2d9e4e

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Thu, 10 Nov 2022 17:44:04 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Tue, 08 Nov 2022 07:53:46 GMT
Expires: Tue, 15 Nov 2022 07:53:45 GMT
Etag: "42477b706a643400cbfd8f7532a4473723eb5630"
Cache-Control: max-age=395980,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 768098124d96b523-OSL

lptag.liveperson.net/lptag/api/account/11478817/configuration/applications/taglets/.jsonp?v=2.0&df=0&b=3

178.249.101.23

200 OK

102 kB

URL HTTP/2
lptag.liveperson.net/lptag/api/account/11478817/configuration/applications/taglets/.jsonp?v=2.0&df=0&b=3
IP
178.249.101.23:0
ASN
#11054 LIVEPERSON

File type
data
Size
102 kB (101638 bytes)
Hash
dde4ee46fca270b92140646abab62c5b
a28dad0591e351de60f49c0c4e0b180fc3945e0b
162901fbe43e24174403ee163b6b4bdec88cd01f2549d0faf59a054fb2a1ce31

HTTP Headers

GET /lptag/api/account/11478817/configuration/applications/taglets/.jsonp?v=2.0&df=0&b=3 HTTP/1.1
Host: lptag.liveperson.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Thu, 10 Nov 2022 17:44:04 GMT
content-type: application/x-javascript
cache-control: public, max-age=630
server: ws
strict-transport-security: max-age=300; includeSubDomains
access-control-allow-methods: GET, POST, PATCH
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Authorization, X-HTTP-Method-Override, LP-DOMAIN-REFERER, LP-URL, ETag, ac-revision, X-LP-Last-Modified, If-Match, Authentication-Method, Credit-Card-Ref, Automation-Secret, Email-Token
access-control-expose-headers: X-Requested-With, X-HTTP-Method-Override, LP-DOMAIN-REFERER, LP-URL, ETag, ac-revision, X-LP-Last-Modified, If-Match, Authentication-Method, Credit-Card-Ref, Automation-Secret, Email-Token, x-lp-host, Lp-Req-Time, date, x-application-context, strict-transport-security, x-content-type-options, x-download-options, x-xss-protection, x-cache-status, x-amz-id-2, x-amz-request-id, expires, last-modified, set-cookie, content-security-policy, x-frame-options
access-control-allow-credentials: true
x-cache-status: HIT
x-content-type-options: nosniff
content-encoding: gzip
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
89022aed9a161196e6bd19947e1127ba
fb57ed9daf3330e5db74b23dea2c30ebafa69e4c
5acf97e966359fe4fa32d4ec5062c7214ef81d06b5a2148b3467025a3e462534

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3221
Cache-Control: max-age=143556
Content-Type: application/ocsp-response
Date: Thu, 10 Nov 2022 17:44:04 GMT
Etag: "636cb993-1d7"
Expires: Sat, 12 Nov 2022 09:36:40 GMT
Last-Modified: Thu, 10 Nov 2022 08:42:59 GMT
Server: ECS (ska/F6FE)
X-Cache: HIT
Content-Length: 471

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
89022aed9a161196e6bd19947e1127ba
fb57ed9daf3330e5db74b23dea2c30ebafa69e4c
5acf97e966359fe4fa32d4ec5062c7214ef81d06b5a2148b3467025a3e462534

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3312
Cache-Control: max-age=143647
Content-Type: application/ocsp-response
Date: Thu, 10 Nov 2022 17:44:04 GMT
Etag: "636cb993-1d7"
Expires: Sat, 12 Nov 2022 09:38:11 GMT
Last-Modified: Thu, 10 Nov 2022 08:42:59 GMT
Server: ECS (ska/F713)
X-Cache: HIT
Content-Length: 471

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
89022aed9a161196e6bd19947e1127ba
fb57ed9daf3330e5db74b23dea2c30ebafa69e4c
5acf97e966359fe4fa32d4ec5062c7214ef81d06b5a2148b3467025a3e462534

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3221
Cache-Control: max-age=143556
Content-Type: application/ocsp-response
Date: Thu, 10 Nov 2022 17:44:04 GMT
Etag: "636cb993-1d7"
Expires: Sat, 12 Nov 2022 09:36:40 GMT
Last-Modified: Thu, 10 Nov 2022 08:42:59 GMT
Server: ECS (ska/F6FE)
X-Cache: HIT
Content-Length: 471

secure.adnxs.com/seg?add=27742454&t=1&ver=9&pe=https%3A%2F%2F9749892.fls.doubleclick.net%2Fddm%2Ffls%2Fr%2Fsrc%3D9749892%3Btype%3Dgener0%3Bcat%3Dnfcu_0%3Bord%3D8441939540690%3Bgtm%3D2odb70%3Bauiddc%3D673889086.1668100401%3B%7Eoref%3Dhttps%253A%252F%252Fwww.navyfederal.org%252F&pf=https%3A%2F%2Fadservice.google.com%2F

37.252.171.53

307 Redirection

0 B

URL HTTP/1.1
secure.adnxs.com/seg?add=27742454&t=1&ver=9&pe=https%3A%2F%2F9749892.fls.doubleclick.net%2Fddm%2Ffls%2Fr%2Fsrc%3D9749892%3Btype%3Dgener0%3Bcat%3Dnfcu_0%3Bord%3D8441939540690%3Bgtm%3D2odb70%3Bauiddc%3D673889086.1668100401%3B%7Eoref%3Dhttps%253A%252F%252Fwww.navyfederal.org%252F&pf=https%3A%2F%2Fadservice.google.com%2F
IP
37.252.171.53:0
ASN
#29990 ASN-APPNEX

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /seg?add=27742454&t=1&ver=9&pe=https%3A%2F%2F9749892.fls.doubleclick.net%2Fddm%2Ffls%2Fr%2Fsrc%3D9749892%3Btype%3Dgener0%3Bcat%3Dnfcu_0%3Bord%3D8441939540690%3Bgtm%3D2odb70%3Bauiddc%3D673889086.1668100401%3B%7Eoref%3Dhttps%253A%252F%252Fwww.navyfederal.org%252F&pf=https%3A%2F%2Fadservice.google.com%2F HTTP/1.1
Host: secure.adnxs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://9749892.fls.doubleclick.net/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

HTTP/1.1 307 Redirection
Server: nginx/1.21.3
Date: Thu, 10 Nov 2022 17:44:04 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 0
Connection: keep-alive
Cache-Control: no-store, no-cache, private
Pragma: no-cache
Expires: Sat, 15 Nov 2008 16:00:00 GMT
P3P: policyref="http://cdn.adnxs-simple.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
X-XSS-Protection: 0
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: *
Accept-CH: Sec-CH-UA-Full-Version-List,Sec-CH-UA-Arch,Sec-CH-UA-Model,Sec-CH-UA-Platform-Version,Sec-CH-UA-Bitness
Location: https://secure.adnxs.com/bounce?%2Fseg%3Fadd%3D27742454%26t%3D1%26ver%3D9%26pe%3Dhttps%253A%252F%252F9749892.fls.doubleclick.net%252Fddm%252Ffls%252Fr%252Fsrc%253D9749892%253Btype%253Dgener0%253Bcat%253Dnfcu_0%253Bord%253D8441939540690%253Bgtm%253D2odb70%253Bauiddc%253D673889086.1668100401%253B%257Eoref%253Dhttps%25253A%25252F%25252Fwww.navyfederal.org%25252F%26pf%3Dhttps%253A%252F%252Fadservice.google.com%252F
AN-X-Request-Uuid: 4661254d-5f37-4ec2-b0cc-595dd45f1029
Set-Cookie: uuid2=261874696821433215; SameSite=None; Path=/; Max-Age=7776000; Expires=Wed, 08-Feb-2023 17:44:04 GMT; Domain=.adnxs.com; Secure; HttpOnly
X-Proxy-Origin: 91.90.42.154; 91.90.42.154; 1003.bm-nginx-loadbalancer.mgmt.fra1.adnexus.net; adnxs.com

ocsp.sectigo.com/

172.64.155.188

200 OK

471 B

URL HTTP/1.1
ocsp.sectigo.com/
IP
172.64.155.188:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
471 B (471 bytes)
Hash
1c931d4d23f9d6b83f3348f51f5194c7
268301f0694b3dac30bcb360b4af97eb2efadd06
dbeb068aec178fa13e25c8468b91d1bab663839b12922ea16257024ca73cc2ed

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Thu, 10 Nov 2022 17:44:04 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Tue, 08 Nov 2022 04:31:54 GMT
Expires: Tue, 15 Nov 2022 04:31:53 GMT
Etag: "268301f0694b3dac30bcb360b4af97eb2efadd06"
Cache-Control: max-age=383868,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 768098147fe00b69-OSL

ocsp.sectigo.com/

172.64.155.188

200 OK

471 B

URL HTTP/1.1
ocsp.sectigo.com/
IP
172.64.155.188:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
471 B (471 bytes)
Hash
1c931d4d23f9d6b83f3348f51f5194c7
268301f0694b3dac30bcb360b4af97eb2efadd06
dbeb068aec178fa13e25c8468b91d1bab663839b12922ea16257024ca73cc2ed

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Thu, 10 Nov 2022 17:44:04 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Tue, 08 Nov 2022 04:31:54 GMT
Expires: Tue, 15 Nov 2022 04:31:53 GMT
Etag: "268301f0694b3dac30bcb360b4af97eb2efadd06"
Cache-Control: max-age=383868,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 768098147b6db512-OSL

secure.adnxs.com/bounce?%2Fseg%3Fadd%3D27742454%26t%3D1%26ver%3D9%26pe%3Dhttps%253A%252F%252F9749892.fls.doubleclick.net%252Fddm%252Ffls%252Fr%252Fsrc%253D9749892%253Btype%253Dgener0%253Bcat%253Dnfcu_0%253Bord%253D8441939540690%253Bgtm%253D2odb70%253Bauiddc%253D673889086.1668100401%253B%257Eoref%253Dhttps%25253A%25252F%25252Fwww.navyfederal.org%25252F%26pf%3Dhttps%253A%252F%252Fadservice.google.com%252F

37.252.171.53

200 OK

0 B

URL HTTP/1.1
secure.adnxs.com/bounce?%2Fseg%3Fadd%3D27742454%26t%3D1%26ver%3D9%26pe%3Dhttps%253A%252F%252F9749892.fls.doubleclick.net%252Fddm%252Ffls%252Fr%252Fsrc%253D9749892%253Btype%253Dgener0%253Bcat%253Dnfcu_0%253Bord%253D8441939540690%253Bgtm%253D2odb70%253Bauiddc%253D673889086.1668100401%253B%257Eoref%253Dhttps%25253A%25252F%25252Fwww.navyfederal.org%25252F%26pf%3Dhttps%253A%252F%252Fadservice.google.com%252F
IP
37.252.171.53:0
ASN
#29990 ASN-APPNEX

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /bounce?%2Fseg%3Fadd%3D27742454%26t%3D1%26ver%3D9%26pe%3Dhttps%253A%252F%252F9749892.fls.doubleclick.net%252Fddm%252Ffls%252Fr%252Fsrc%253D9749892%253Btype%253Dgener0%253Bcat%253Dnfcu_0%253Bord%253D8441939540690%253Bgtm%253D2odb70%253Bauiddc%253D673889086.1668100401%253B%257Eoref%253Dhttps%25253A%25252F%25252Fwww.navyfederal.org%25252F%26pf%3Dhttps%253A%252F%252Fadservice.google.com%252F HTTP/1.1
Host: secure.adnxs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://9749892.fls.doubleclick.net/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: nginx/1.21.3
Date: Thu, 10 Nov 2022 17:44:04 GMT
Content-Type: application/javascript; charset=utf-8
Content-Length: 0
Connection: keep-alive
Cache-Control: no-store, no-cache, private
Pragma: no-cache
Expires: Sat, 15 Nov 2008 16:00:00 GMT
P3P: policyref="http://cdn.adnxs-simple.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
X-XSS-Protection: 0
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: *
Accept-CH: Sec-CH-UA-Full-Version-List,Sec-CH-UA-Arch,Sec-CH-UA-Model,Sec-CH-UA-Platform-Version,Sec-CH-UA-Bitness
AN-X-Request-Uuid: 77237329-28aa-43b8-917c-06022813fba0
Set-Cookie: anj=dTM7k!M4/8CxrEQF']wIg2E?_nUL*$!]tbP6j2F-XstGt!@E!I%!:30; SameSite=None; Path=/; Max-Age=7776000; Expires=Wed, 08-Feb-2023 17:44:04 GMT; Domain=.adnxs.com; Secure; HttpOnly
X-Proxy-Origin: 91.90.42.154; 91.90.42.154; 1003.bm-nginx-loadbalancer.mgmt.fra1.adnexus.net; adnxs.com

trkn.us/pixel/conv/ppt=17946;g=sitewide_visits;gid=40999;ord=401695239%20height=

3.212.26.31

200 OK

42 B

URL HTTP/1.1
trkn.us/pixel/conv/ppt=17946;g=sitewide_visits;gid=40999;ord=401695239%20height=
IP
3.212.26.31:0
ASN
#14618 AMAZON-AES

File type
GIF image data, version 89a, 1 x 1\012- data
Size
42 B (42 bytes)
Hash
9b5e8704c89f018cff215cb5ed3e0128
2a9fa3661b326c503e492b89cdd9130d12ead03d
b2c78c910f5ea29e3a9d223dabc203c055c8708b1fe7d83788b490638126db4d

HTTP Headers

GET /pixel/conv/ppt=17946;g=sitewide_visits;gid=40999;ord=401695239%20height= HTTP/1.1
Host: trkn.us
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://9749892.fls.doubleclick.net/
Cookie: barometric[cuid]=cuid_ee85cd13-f25e-4367-9faf-3ebda049d703
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-cache=Set-Cookie, proxy-revalidate
Content-Type: image/gif
Date: Thu, 10 Nov 2022 17:44:04 GMT
Expires: Sun, 9 Nov 1980 12:58:00 GMT
Last-Modified: Sun, 9 Nov 1980 12:59:00 GMT
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Pragma: no-cache
Server: Apache
Set-Cookie: barometric[cuid]=cuid_ee85cd13-f25e-4367-9faf-3ebda049d703; expires=Fri, 10-Nov-2023 17:44:04 GMT; Max-Age=31536000; path=/; SameSite=None; Secure; domain=.trkn.us
barometric[idfa]=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/; SameSite=None; Secure; domain=.trkn.us
X-Content-Type-Options: nosniff
Content-Length: 42
Connection: keep-alive

liveengage.navyfederal.org/le_unified_window/10.21.0.1-release_5545/surveylogicinstance.min.js?version=10.21.0.1-release_5545

178.249.97.98

200 OK

2.7 kB

URL HTTP/2
liveengage.navyfederal.org/le_unified_window/10.21.0.1-release_5545/surveylogicinstance.min.js?version=10.21.0.1-release_5545
IP
178.249.97.98:0
ASN
#11054 LIVEPERSON

File type
ASCII text, with very long lines (7866), with no line terminators
Size
2.7 kB (2656 bytes)
Hash
2655f729fc1ba38f1b304c633d4f1a9f
7900c78c5c2533ed4b27d0b688d40069a4734924
f77081d7af6d1a28f06f9fa3718fa4944d4220c7249ac2f155abcc6ed53fabf5

HTTP Headers

GET /le_unified_window/10.21.0.1-release_5545/surveylogicinstance.min.js?version=10.21.0.1-release_5545 HTTP/1.1
Host: liveengage.navyfederal.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: _abck=DC80667D0074DA1B3BEF3F54E8921A40~0~YAAQoQVJF8Fa0VeEAQAAnTqIYgi/nj+T4rm31e4sHb7PwvDgqViCOtOD0fiBRFdYqJz0dyA9hJGa4EKA25STY/GpHMVGFfC14EoCo7/tP22D3oHMr+5qp8G9NqHsUnR9yTKnR1gDMzNSabdwOgdWeiR3wmDDs5rdE0m0wQzp8PQTsrURuGjWfWyVuuFEzWEkI579VbdKmXleunDtM/Ey4wOAt5iK/CTF3/Ox6XLe57BJT51t1Kp9a679k5gUjfUPfeeH8XqRQJAWfjqES0NyrJhRBCsqtN2916Y4kNjL0f4762Odoe5Vkt1X2B5+mTKei0UGyrs39M4nJdzzGgojv8WKyQr/lqHy3zLvS+H/XpPCfgOBRc7VprY+7xU+4EZsxrhZvuX/kBO7CdPIxPQKcmhbnBFgYpODAx2Rzc2/~-1~-1~-1; ak_bmsc=CD3D104392607DD4CA7FAC81BDEADF02~000000000000000000000000000000~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; bm_sz=7B5052FB392BE93F5C4C18559FA2BAF5~YAAQoQVJFyRZ0VeEAQAAmjKIYhHpUahXFvdsAaQJmpC1C/Df62CHAJDHM90z1RUp3QYAryRGAWuFC63uafX4GOkO57t7PdFyJs0XxIz5olBO3T9gRurFzQzMLiGaiM7O2AqD14VfNPCCfxbfSR0CGBwnPloUAjk2zoSqL59EY4oA2fSfgNIeU2cpPgd3HyKRc4ce1Ft94xdw4pwO9Bo/no2AgzdZdAouR7qP/2L4sQY9BsHYp+FbYEG2SoEO1s/Dhy/4pHmCti2x4rseqlAZCGfJxDa+2dhblc4CR2cyAMesg9pSn8wYHA==~3683650~3491383; AMCV_9BD537045330573C0A490D44%40AdobeOrg=-408604571%7CMCIDTS%7C19307%7CMCMID%7C33042062579560787242129122377797597997%7CMCAID%7C31B6989A896721D6-600000887BFA0850%7CMCOPTOUT-1668109439s%7CNONE%7CMCAAMLH-1668707039%7C6%7CMCAAMB-1668707039%7Cj8Odv6LonN4r3an7LhD3WZrU1bUpAkFkkiY1ncBR96t2PTI%7CMCSYNCSOP%7C411-19314%7CvVersion%7C4.6.0; mbox=session#27f2b4d776194ac890c08bce568e0ec9#1668104100|PC#27f2b4d776194ac890c08bce568e0ec9.37_0#1731345202; bm_sv=954F8CEE59ED3B7CD609760D612EE728~YAAQoQVJF31v1VeEAQAAfkOkYhFZfngVyGtvE1jEMugBAOx8rdR39TKSJLov3+dGr3sQWNNpst3PMguu9gqYfeCU+tqRLIjlPx3Tv4TcEIu8oOujX5Nv9YFCLdilZG95AQSzy2/qmLLvVKqc+9rxhwhYroVEpVrBY1/jX61AlVb56CbOJOwC8INzjYdz3Bp/DhO4ybihMQ0bSTUodXXnRIGkqAcVrOfVRVNTkc4ADTsBTKRjS/M5SIzAfCJjkWfzuHO0AMk=~1; _gcl_au=1.1.673889086.1668100401; s_vi=[CS]v1|31B6989A896721D6-600000887BFA0850[CE]; s_ecid=MCMID%7C33042062579560787242129122377797597997; _fbp=fb.1.1668100402534.1388787247; LPVID=ZkNTEwZjU1Yjk1ZWRkNzY5; at_check=true; AMCVS_9BD537045330573C0A490D44%40AdobeOrg=1; ttc_c14=1668102239774; gpv_page=nfo%3Ahome; s_ppv=nfo%253Ahome%2C42%2C42%2C939%2C1%2C2; s_ips=939; s_tp=2257; s_cc=true; _uetsid=fab387e0611a11eda9dab92fb9fdb0c8; _uetvid=fab39b90611a11ed9ee669e5c018eeb2
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site

HTTP/2 200 OK
date: Thu, 10 Nov 2022 17:44:04 GMT
content-type: application/javascript
last-modified: Mon, 26 Sep 2022 02:04:42 GMT
content-encoding: gzip
server: ws
vary: Origin
access-control-allow-methods: GET, POST, PATCH
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Authorization, X-HTTP-Method-Override, LP-DOMAIN-REFERER, LP-URL, ETag, ac-revision, X-LP-Last-Modified, If-Match, Authentication-Method, Credit-Card-Ref, Automation-Secret, Email-Token, x-lp-state-rev
access-control-expose-headers: X-Requested-With, X-HTTP-Method-Override, LP-DOMAIN-REFERER, LP-URL, ETag, ac-revision, X-LP-Last-Modified, If-Match, Authentication-Method, Credit-Card-Ref, Automation-Secret, Email-Token, x-lp-host, Lp-Req-Time, date, x-application-context, strict-transport-security, x-content-type-options, x-download-options, x-xss-protection, x-cache-status, x-amz-id-2, x-amz-request-id, expires, last-modified, set-cookie, content-security-policy, x-frame-options, x-lp-state-rev
access-control-allow-credentials: true
expires: Fri, 10 Nov 2023 17:44:04 GMT
cache-control: max-age=31536000
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains
x-cache-status: HIT
X-Firefox-Spdy: h2

navyfederal.org/events

104.66.116.9

301 Moved Permanently

0 B

URL HTTP/2
navyfederal.org/events
IP
104.66.116.9:0
ASN
#16625 AKAMAI-AS

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /events HTTP/1.1
Host: navyfederal.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 455
Origin: https://www.navyfederal.org
Connection: keep-alive
Cookie: _abck=DC80667D0074DA1B3BEF3F54E8921A40~0~YAAQoQVJF8Fa0VeEAQAAnTqIYgi/nj+T4rm31e4sHb7PwvDgqViCOtOD0fiBRFdYqJz0dyA9hJGa4EKA25STY/GpHMVGFfC14EoCo7/tP22D3oHMr+5qp8G9NqHsUnR9yTKnR1gDMzNSabdwOgdWeiR3wmDDs5rdE0m0wQzp8PQTsrURuGjWfWyVuuFEzWEkI579VbdKmXleunDtM/Ey4wOAt5iK/CTF3/Ox6XLe57BJT51t1Kp9a679k5gUjfUPfeeH8XqRQJAWfjqES0NyrJhRBCsqtN2916Y4kNjL0f4762Odoe5Vkt1X2B5+mTKei0UGyrs39M4nJdzzGgojv8WKyQr/lqHy3zLvS+H/XpPCfgOBRc7VprY+7xU+4EZsxrhZvuX/kBO7CdPIxPQKcmhbnBFgYpODAx2Rzc2/~-1~-1~-1; ak_bmsc=CD3D104392607DD4CA7FAC81BDEADF02~000000000000000000000000000000~YAAQoQVJFy5a0VeEAQAA6zeIYhGGIYw4yKNy7uZPTNAMli+81ot0IGUszqrRkYrQnoVWvmTSwFwTz7PQ2Af93ROgb9XNe+wbRdu9LzmQ+NE2dOvP0DPsZiOtNyP5MEtkBjjE4v59wX2G8WWiBp+iT+ROOkHB4Upwpt8lzTMpOvmaxMgT5yv+Nogfd5oLokD0KjDMB7DJlXsSXQhd7jylrU7I58lcz2JdUNTQT528hNH9/iNsqCxYa/Y9GX9mk9T6bzVfKs2ERj7Qu1t9J85cbdUXlpVExtICrsh7nKC/rILmbq8IP9zmX0Zh9cwTXW53i4K+gNQHOeVYSHuRdHYAze04EYxWlGfVR/GbIH32O3I/qjGVvBKdpY6eydP7m6KTjetu1dFRkfinak3XDzEVyj5GXpB7X7MktQiFrm0batseCDQkiKxk6m9aHjnmzHIzGp1ZdhQf30G1r+eC02BsRgnI2QskJSBmCwi7uN3FzDnWwVU+Y8xC1I9jhqVWFg==; bm_sz=7B5052FB392BE93F5C4C18559FA2BAF5~YAAQoQVJFyRZ0VeEAQAAmjKIYhHpUahXFvdsAaQJmpC1C/Df62CHAJDHM90z1RUp3QYAryRGAWuFC63uafX4GOkO57t7PdFyJs0XxIz5olBO3T9gRurFzQzMLiGaiM7O2AqD14VfNPCCfxbfSR0CGBwnPloUAjk2zoSqL59EY4oA2fSfgNIeU2cpPgd3HyKRc4ce1Ft94xdw4pwO9Bo/no2AgzdZdAouR7qP/2L4sQY9BsHYp+FbYEG2SoEO1s/Dhy/4pHmCti2x4rseqlAZCGfJxDa+2dhblc4CR2cyAMesg9pSn8wYHA==~3683650~3491383; AMCV_9BD537045330573C0A490D44%40AdobeOrg=-408604571%7CMCIDTS%7C19307%7CMCMID%7C33042062579560787242129122377797597997%7CMCAID%7C31B6989A896721D6-600000887BFA0850%7CMCOPTOUT-1668109439s%7CNONE%7CMCAAMLH-1668707039%7C6%7CMCAAMB-1668707039%7Cj8Odv6LonN4r3an7LhD3WZrU1bUpAkFkkiY1ncBR96t2PTI%7CMCSYNCSOP%7C411-19314%7CvVersion%7C4.6.0; mbox=session#27f2b4d776194ac890c08bce568e0ec9#1668104100|PC#27f2b4d776194ac890c08bce568e0ec9.37_0#1731345202; bm_sv=954F8CEE59ED3B7CD609760D612EE728~YAAQoQVJF31v1VeEAQAAfkOkYhFZfngVyGtvE1jEMugBAOx8rdR39TKSJLov3+dGr3sQWNNpst3PMguu9gqYfeCU+tqRLIjlPx3Tv4TcEIu8oOujX5Nv9YFCLdilZG95AQSzy2/qmLLvVKqc+9rxhwhYroVEpVrBY1/jX61AlVb56CbOJOwC8INzjYdz3Bp/DhO4ybihMQ0bSTUodXXnRIGkqAcVrOfVRVNTkc4ADTsBTKRjS/M5SIzAfCJjkWfzuHO0AMk=~1; _gcl_au=1.1.673889086.1668100401; s_vi=[CS]v1|31B6989A896721D6-600000887BFA0850[CE]; s_ecid=MCMID%7C33042062579560787242129122377797597997; _fbp=fb.1.1668100402534.1388787247; LPVID=ZkNTEwZjU1Yjk1ZWRkNzY5; at_check=true; AMCVS_9BD537045330573C0A490D44%40AdobeOrg=1; ttc_c14=1668102239774; gpv_page=nfo%3Ahome; s_ppv=nfo%253Ahome%2C42%2C42%2C939%2C1%2C2; s_ips=939; s_tp=2257; s_cc=true; _uetsid=fab387e0611a11eda9dab92fb9fdb0c8; _uetvid=fab39b90611a11ed9ee669e5c018eeb2
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 301 Moved Permanently
server: AkamaiGHost
content-length: 0
location: https://www.navyfederal.org/events
date: Thu, 10 Nov 2022 17:44:04 GMT
permissions-policy: interest-cohort=()
X-Firefox-Spdy: h2

liveengage.navyfederal.org/le_unified_window/10.21.0.1-release_5545/desktopEmbedded.js?version=10.21.0.1-release_5545

178.249.97.98

200 OK

521 kB

URL HTTP/2
liveengage.navyfederal.org/le_unified_window/10.21.0.1-release_5545/desktopEmbedded.js?version=10.21.0.1-release_5545
IP
178.249.97.98:0
ASN
#11054 LIVEPERSON

File type
data
Size
521 kB (521202 bytes)
Hash
b23ce681f59d871119ea9f58cd4d01c6
9542230c99bcc2dbb6a4659d74491b932cd1c15e
c71b13908e0454c54d37a9ae8adfaf514126ec15d406fa29ce22d2e5c32f99c4

HTTP Headers

GET /le_unified_window/10.21.0.1-release_5545/desktopEmbedded.js?version=10.21.0.1-release_5545 HTTP/1.1
Host: liveengage.navyfederal.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: _abck=DC80667D0074DA1B3BEF3F54E8921A40~0~YAAQoQVJF8Fa0VeEAQAAnTqIYgi/nj+T4rm31e4sHb7PwvDgqViCOtOD0fiBRFdYqJz0dyA9hJGa4EKA25STY/GpHMVGFfC14EoCo7/tP22D3oHMr+5qp8G9NqHsUnR9yTKnR1gDMzNSabdwOgdWeiR3wmDDs5rdE0m0wQzp8PQTsrURuGjWfWyVuuFEzWEkI579VbdKmXleunDtM/Ey4wOAt5iK/CTF3/Ox6XLe57BJT51t1Kp9a679k5gUjfUPfeeH8XqRQJAWfjqES0NyrJhRBCsqtN2916Y4kNjL0f4762Odoe5Vkt1X2B5+mTKei0UGyrs39M4nJdzzGgojv8WKyQr/lqHy3zLvS+H/XpPCfgOBRc7VprY+7xU+4EZsxrhZvuX/kBO7CdPIxPQKcmhbnBFgYpODAx2Rzc2/~-1~-1~-1; ak_bmsc=CD3D104392607DD4CA7FAC81BDEADF02~000000000000000000000000000000~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; bm_sz=7B5052FB392BE93F5C4C18559FA2BAF5~YAAQoQVJFyRZ0VeEAQAAmjKIYhHpUahXFvdsAaQJmpC1C/Df62CHAJDHM90z1RUp3QYAryRGAWuFC63uafX4GOkO57t7PdFyJs0XxIz5olBO3T9gRurFzQzMLiGaiM7O2AqD14VfNPCCfxbfSR0CGBwnPloUAjk2zoSqL59EY4oA2fSfgNIeU2cpPgd3HyKRc4ce1Ft94xdw4pwO9Bo/no2AgzdZdAouR7qP/2L4sQY9BsHYp+FbYEG2SoEO1s/Dhy/4pHmCti2x4rseqlAZCGfJxDa+2dhblc4CR2cyAMesg9pSn8wYHA==~3683650~3491383; AMCV_9BD537045330573C0A490D44%40AdobeOrg=-408604571%7CMCIDTS%7C19307%7CMCMID%7C33042062579560787242129122377797597997%7CMCAID%7C31B6989A896721D6-600000887BFA0850%7CMCOPTOUT-1668109439s%7CNONE%7CMCAAMLH-1668707039%7C6%7CMCAAMB-1668707039%7Cj8Odv6LonN4r3an7LhD3WZrU1bUpAkFkkiY1ncBR96t2PTI%7CMCSYNCSOP%7C411-19314%7CvVersion%7C4.6.0; mbox=session#27f2b4d776194ac890c08bce568e0ec9#1668104100|PC#27f2b4d776194ac890c08bce568e0ec9.37_0#1731345202; bm_sv=954F8CEE59ED3B7CD609760D612EE728~YAAQoQVJF31v1VeEAQAAfkOkYhFZfngVyGtvE1jEMugBAOx8rdR39TKSJLov3+dGr3sQWNNpst3PMguu9gqYfeCU+tqRLIjlPx3Tv4TcEIu8oOujX5Nv9YFCLdilZG95AQSzy2/qmLLvVKqc+9rxhwhYroVEpVrBY1/jX61AlVb56CbOJOwC8INzjYdz3Bp/DhO4ybihMQ0bSTUodXXnRIGkqAcVrOfVRVNTkc4ADTsBTKRjS/M5SIzAfCJjkWfzuHO0AMk=~1; _gcl_au=1.1.673889086.1668100401; s_vi=[CS]v1|31B6989A896721D6-600000887BFA0850[CE]; s_ecid=MCMID%7C33042062579560787242129122377797597997; _fbp=fb.1.1668100402534.1388787247; LPVID=ZkNTEwZjU1Yjk1ZWRkNzY5; at_check=true; AMCVS_9BD537045330573C0A490D44%40AdobeOrg=1; ttc_c14=1668102239774; gpv_page=nfo%3Ahome; s_ppv=nfo%253Ahome%2C42%2C42%2C939%2C1%2C2; s_ips=939; s_tp=2257; s_cc=true; _uetsid=fab387e0611a11eda9dab92fb9fdb0c8; _uetvid=fab39b90611a11ed9ee669e5c018eeb2
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
date: Thu, 10 Nov 2022 17:44:04 GMT
content-type: application/javascript
last-modified: Mon, 26 Sep 2022 02:04:42 GMT
content-encoding: gzip
server: ws
vary: Origin
access-control-allow-methods: GET, POST, PATCH
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Authorization, X-HTTP-Method-Override, LP-DOMAIN-REFERER, LP-URL, ETag, ac-revision, X-LP-Last-Modified, If-Match, Authentication-Method, Credit-Card-Ref, Automation-Secret, Email-Token, x-lp-state-rev
access-control-expose-headers: X-Requested-With, X-HTTP-Method-Override, LP-DOMAIN-REFERER, LP-URL, ETag, ac-revision, X-LP-Last-Modified, If-Match, Authentication-Method, Credit-Card-Ref, Automation-Secret, Email-Token, x-lp-host, Lp-Req-Time, date, x-application-context, strict-transport-security, x-content-type-options, x-download-options, x-xss-protection, x-cache-status, x-amz-id-2, x-amz-request-id, expires, last-modified, set-cookie, content-security-policy, x-frame-options, x-lp-state-rev
access-control-allow-credentials: true
expires: Fri, 10 Nov 2023 17:44:04 GMT
cache-control: max-age=31536000
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains
x-cache-status: HIT
X-Firefox-Spdy: h2

insight.adsrvr.org/track/pxl/?adv=pcl8biy&ct=0:3qygypv&fmt=3

15.197.193.217

200 OK

31 kB

URL HTTP/2
insight.adsrvr.org/track/pxl/?adv=pcl8biy&ct=0:3qygypv&fmt=3
IP
15.197.193.217:0
ASN
#16509 AMAZON-02

File type
GIF image data, version 89a, 1 x 1\012- data
Size
31 kB (31070 bytes)
Hash
7329211b94898ef3712491de54153217
1eadb1f6d9a555a66ec1cde68de6b6c13b9de082
ab761669918c5db80f88106bd8cdbc966de891c0f3be9c9d85688e3cf89a61a8

HTTP Headers

GET /track/pxl/?adv=pcl8biy&ct=0:3qygypv&fmt=3 HTTP/1.1
Host: insight.adsrvr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://9749892.fls.doubleclick.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Thu, 10 Nov 2022 17:44:04 GMT
content-type: image/gif
cache-control: private,no-cache, must-revalidate
pragma: no-cache
x-aspnet-version: 4.0.30319
p3p: CP="NOI DSP COR CUR ADMo DEVo PSAo PSDo OUR SAMo BUS UNI NAV"
X-Firefox-Spdy: h2

liveengage.navyfederal.org/le_unified_window/10.21.0.1-release_5545/UMSClientAPI.min.js?version=10.21.0.1-release_5545

178.249.97.98

200 OK

30 kB

URL HTTP/2
liveengage.navyfederal.org/le_unified_window/10.21.0.1-release_5545/UMSClientAPI.min.js?version=10.21.0.1-release_5545
IP
178.249.97.98:0
ASN
#11054 LIVEPERSON

File type
ASCII text, with very long lines (32003)
Size
30 kB (29590 bytes)
Hash
befb347da25fe637c8445f45be42315d
6b81f86df41a44dc3fca13a75aa27383b59e5249
742aa454ef95535912e157bb1991dd23474191a9fae856ac0f7bc33c8de8c724

HTTP Headers

GET /le_unified_window/10.21.0.1-release_5545/UMSClientAPI.min.js?version=10.21.0.1-release_5545 HTTP/1.1
Host: liveengage.navyfederal.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: _abck=DC80667D0074DA1B3BEF3F54E8921A40~0~YAAQoQVJF8Fa0VeEAQAAnTqIYgi/nj+T4rm31e4sHb7PwvDgqViCOtOD0fiBRFdYqJz0dyA9hJGa4EKA25STY/GpHMVGFfC14EoCo7/tP22D3oHMr+5qp8G9NqHsUnR9yTKnR1gDMzNSabdwOgdWeiR3wmDDs5rdE0m0wQzp8PQTsrURuGjWfWyVuuFEzWEkI579VbdKmXleunDtM/Ey4wOAt5iK/CTF3/Ox6XLe57BJT51t1Kp9a679k5gUjfUPfeeH8XqRQJAWfjqES0NyrJhRBCsqtN2916Y4kNjL0f4762Odoe5Vkt1X2B5+mTKei0UGyrs39M4nJdzzGgojv8WKyQr/lqHy3zLvS+H/XpPCfgOBRc7VprY+7xU+4EZsxrhZvuX/kBO7CdPIxPQKcmhbnBFgYpODAx2Rzc2/~-1~-1~-1; ak_bmsc=CD3D104392607DD4CA7FAC81BDEADF02~000000000000000000000000000000~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; bm_sz=7B5052FB392BE93F5C4C18559FA2BAF5~YAAQoQVJFyRZ0VeEAQAAmjKIYhHpUahXFvdsAaQJmpC1C/Df62CHAJDHM90z1RUp3QYAryRGAWuFC63uafX4GOkO57t7PdFyJs0XxIz5olBO3T9gRurFzQzMLiGaiM7O2AqD14VfNPCCfxbfSR0CGBwnPloUAjk2zoSqL59EY4oA2fSfgNIeU2cpPgd3HyKRc4ce1Ft94xdw4pwO9Bo/no2AgzdZdAouR7qP/2L4sQY9BsHYp+FbYEG2SoEO1s/Dhy/4pHmCti2x4rseqlAZCGfJxDa+2dhblc4CR2cyAMesg9pSn8wYHA==~3683650~3491383; AMCV_9BD537045330573C0A490D44%40AdobeOrg=-408604571%7CMCIDTS%7C19307%7CMCMID%7C33042062579560787242129122377797597997%7CMCAID%7C31B6989A896721D6-600000887BFA0850%7CMCOPTOUT-1668109439s%7CNONE%7CMCAAMLH-1668707039%7C6%7CMCAAMB-1668707039%7Cj8Odv6LonN4r3an7LhD3WZrU1bUpAkFkkiY1ncBR96t2PTI%7CMCSYNCSOP%7C411-19314%7CvVersion%7C4.6.0; mbox=session#27f2b4d776194ac890c08bce568e0ec9#1668104100|PC#27f2b4d776194ac890c08bce568e0ec9.37_0#1731345202; bm_sv=954F8CEE59ED3B7CD609760D612EE728~YAAQoQVJF31v1VeEAQAAfkOkYhFZfngVyGtvE1jEMugBAOx8rdR39TKSJLov3+dGr3sQWNNpst3PMguu9gqYfeCU+tqRLIjlPx3Tv4TcEIu8oOujX5Nv9YFCLdilZG95AQSzy2/qmLLvVKqc+9rxhwhYroVEpVrBY1/jX61AlVb56CbOJOwC8INzjYdz3Bp/DhO4ybihMQ0bSTUodXXnRIGkqAcVrOfVRVNTkc4ADTsBTKRjS/M5SIzAfCJjkWfzuHO0AMk=~1; _gcl_au=1.1.673889086.1668100401; s_vi=[CS]v1|31B6989A896721D6-600000887BFA0850[CE]; s_ecid=MCMID%7C33042062579560787242129122377797597997; _fbp=fb.1.1668100402534.1388787247; LPVID=ZkNTEwZjU1Yjk1ZWRkNzY5; at_check=true; AMCVS_9BD537045330573C0A490D44%40AdobeOrg=1; ttc_c14=1668102239774; gpv_page=nfo%3Ahome; s_ppv=nfo%253Ahome%2C42%2C42%2C939%2C1%2C2; s_ips=939; s_tp=2257; s_cc=true; _uetsid=fab387e0611a11eda9dab92fb9fdb0c8; _uetvid=fab39b90611a11ed9ee669e5c018eeb2
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site

HTTP/2 200 OK
date: Thu, 10 Nov 2022 17:44:04 GMT
content-type: application/javascript
last-modified: Mon, 26 Sep 2022 02:04:42 GMT
content-encoding: gzip
server: ws
vary: Origin
access-control-allow-methods: GET, POST, PATCH
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Authorization, X-HTTP-Method-Override, LP-DOMAIN-REFERER, LP-URL, ETag, ac-revision, X-LP-Last-Modified, If-Match, Authentication-Method, Credit-Card-Ref, Automation-Secret, Email-Token, x-lp-state-rev
access-control-expose-headers: X-Requested-With, X-HTTP-Method-Override, LP-DOMAIN-REFERER, LP-URL, ETag, ac-revision, X-LP-Last-Modified, If-Match, Authentication-Method, Credit-Card-Ref, Automation-Secret, Email-Token, x-lp-host, Lp-Req-Time, date, x-application-context, strict-transport-security, x-content-type-options, x-download-options, x-xss-protection, x-cache-status, x-amz-id-2, x-amz-request-id, expires, last-modified, set-cookie, content-security-policy, x-frame-options, x-lp-state-rev
access-control-allow-credentials: true
expires: Fri, 10 Nov 2023 17:44:04 GMT
cache-control: max-age=31536000
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains
x-cache-status: HIT
X-Firefox-Spdy: h2

s.amazon-adsystem.com/iu3?d=generic&ex-fargs=%3Fid%3D6cb2375c-3341-8cb2-b12d-8b0616d5966e%26type%3D55%26m%3D1&ex-fch=416613&ex-src=https://www.navyfederal.org/&ex-hargs=v%3D1.0%3Bc%3D7933585099447%3Bp%3D6CB2375C-3341-8CB2-B12D-8B0616D5966E&cb=517908511085461760&dcc=t

52.46.143.56

200 OK

65 B

URL HTTP/1.1
s.amazon-adsystem.com/iu3?d=generic&ex-fargs=%3Fid%3D6cb2375c-3341-8cb2-b12d-8b0616d5966e%26type%3D55%26m%3D1&ex-fch=416613&ex-src=https://www.navyfederal.org/&ex-hargs=v%3D1.0%3Bc%3D7933585099447%3Bp%3D6CB2375C-3341-8CB2-B12D-8B0616D5966E&cb=517908511085461760&dcc=t
IP
52.46.143.56:0
ASN
#16509 AMAZON-02

File type
HTML document, ASCII text
Size
65 B (65 bytes)
Hash
22fdf49482d8200e8f305bbe262eff14
f254bd4053267c2cf46675613e689016d8b7f775
115d83ece49fd1c5769409aab9d78572eed86cd38a0556b4cdeeac82c83091d3

HTTP Headers

GET /iu3?d=generic&ex-fargs=%3Fid%3D6cb2375c-3341-8cb2-b12d-8b0616d5966e%26type%3D55%26m%3D1&ex-fch=416613&ex-src=https://www.navyfederal.org/&ex-hargs=v%3D1.0%3Bc%3D7933585099447%3Bp%3D6CB2375C-3341-8CB2-B12D-8B0616D5966E&cb=517908511085461760&dcc=t HTTP/1.1
Host: s.amazon-adsystem.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: Server
Date: Thu, 10 Nov 2022 17:44:05 GMT
Content-Type: text/html;charset=ISO-8859-1
Content-Length: 65
Connection: keep-alive
x-amz-rid: 3GG1HSAFYJ6EQ7GDQ2KH
Cache-Control: max-age=0, no-cache, no-store, private, must-revalidate, s-maxage=0
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
p3p: policyref="https://www.amazon.com/w3c/p3p.xml", CP="PSAo PSDo OUR SAM OTR DSP COR"
Vary: Content-Type,Accept-Encoding,User-Agent
Strict-Transport-Security: max-age=47474747; includeSubDomains; preload

bttrack.com/Pixel/Retarget/2233

192.132.33.46

404 Not Found

17 kB

URL HTTP/2
bttrack.com/Pixel/Retarget/2233
IP
192.132.33.46:0
ASN
#18568 BIDTELLECT

File type
data
Size
17 kB (17164 bytes)
Hash
a9edb93a607990245c48f87b24d6ad86
cfeddacc97c200884bb8ea3cbb3fc6b94a5e1f7f
efb4221a37f6b37ef0bb3abd0ec127c4efc1620cbb022862f86777a38aaa7ef9

HTTP Headers

GET /Pixel/Retarget/2233 HTTP/1.1
Host: bttrack.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://9749892.fls.doubleclick.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 404 Not Found
cache-control: private,no-cache
pragma: no-cache
content-type: text/html
expires: -1
server: Microsoft-IIS/8.5
x-aspnetmvc-version: 5.2
x-aspnet-version: 4.0.30319
p3p: CP="CAO DSP COR ADMo DEVo PSAo PSDo HISo IVAo IVDo OUR IND OTC"
x-servername: Track001-iad
date: Thu, 10 Nov 2022 17:43:27 GMT
X-Firefox-Spdy: h2

34.120.237.76

200 OK

13 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F61e5641a-68af-473c-af88-cf2c9e3c69d5.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
13 kB (12758 bytes)
Hash
d398b5d30ea461015a3abba3b028ef97
9036a9a8a0904abf68a8f6046505a806c840e056
2cf47136f257e9484ea11928b181976c4961a58b95020d1abb8e68d280099931

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F61e5641a-68af-473c-af88-cf2c9e3c69d5.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
content-length: 12758
x-amzn-requestid: 8c503d98-3659-40e7-9337-9f02502e9536
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bWlniH4YoAMFfBw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-636c1c96-6feb60720a37636e21e1be8f;Sampled=0
x-amzn-remapped-date: Wed, 09 Nov 2022 21:33:10 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: BCrex9BLIjqBvqO2vWb93rNfP73MDM4zF-zB4ng9fJwmWbDaPgFu_Q==
via: 1.1 eece508272520f70691e4eebdc5a6dea.cloudfront.net (CloudFront), 1.1 476c2ba6d9f6cd69dbcedbd65688cbc0.cloudfront.net (CloudFront), 1.1 google
date: Wed, 09 Nov 2022 21:42:11 GMT
age: 72118
etag: "9036a9a8a0904abf68a8f6046505a806c840e056"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

c.tvpixel.com/js/current/dpm_pixel_min.js?aid=navy-federal-credit-union-ab4e3950-2e70-405c-b377-dcb1b8bfbe47

54.230.111.58

200 OK

0 B

URL HTTP/2
c.tvpixel.com/js/current/dpm_pixel_min.js?aid=navy-federal-credit-union-ab4e3950-2e70-405c-b377-dcb1b8bfbe47
IP
54.230.111.58:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /js/current/dpm_pixel_min.js?aid=navy-federal-credit-union-ab4e3950-2e70-405c-b377-dcb1b8bfbe47 HTTP/1.1
Host: c.tvpixel.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://9749892.fls.doubleclick.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: application/javascript
last-modified: Thu, 16 Sep 2021 18:14:59 GMT
x-amz-version-id: oMk5SFqHXboEDRm2.vDWImtx_4ARYxEl
server: AmazonS3
content-encoding: gzip
date: Thu, 10 Nov 2022 01:15:56 GMT
etag: W/"08e770c8a17bf087d50cec01af0892c2"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 fc5e625db631bc657fc73f189d53fa14.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: sj564ijL0in168A8lD50b2cNGshhEWIbO6ousyG3rfotuFwIY9hlqg==
age: 59288
X-Firefox-Spdy: h2

accdn.lpsnmedia.net/api/account/11478817/configuration/le-campaigns/zones?fields=id&fields=zoneValue&cb=lpZonesStaticCB

178.249.101.99

200 OK

0 B

URL HTTP/2
accdn.lpsnmedia.net/api/account/11478817/configuration/le-campaigns/zones?fields=id&fields=zoneValue&cb=lpZonesStaticCB
IP
178.249.101.99:0
ASN
#11054 LIVEPERSON

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /api/account/11478817/configuration/le-campaigns/zones?fields=id&fields=zoneValue&cb=lpZonesStaticCB HTTP/1.1
Host: accdn.lpsnmedia.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Thu, 10 Nov 2022 17:44:04 GMT
content-type: application/javascript
set-cookie: ADRUM_BTa=R:0|g:30d0da08-f542-4d9a-b30d-c444c63bebda; Max-Age=30; Expires=Thu, 10-Nov-2022 17:44:34 GMT; Path=/
ADRUM_BTa=R:0|g:30d0da08-f542-4d9a-b30d-c444c63bebda|n:livepersonltd_93a08561-b03e-475e-b29b-9ad4aa207daf; Max-Age=30; Expires=Thu, 10-Nov-2022 17:44:34 GMT; Path=/
SameSite=None; Max-Age=30; Expires=Thu, 10-Nov-2022 17:44:34 GMT; Path=/; Secure
ADRUM_BT1=R:0|i:2241585; Max-Age=30; Expires=Thu, 10-Nov-2022 17:44:34 GMT; Path=/
ADRUM_BT1=R:0|i:2241585|e:5; Max-Age=30; Expires=Thu, 10-Nov-2022 17:44:34 GMT; Path=/
vary: Accept
expires: Thu, 10 Nov 2022 17:45:04 GMT
x-envoy-upstream-service-time: 3
server: ws
strict-transport-security: max-age=99999999999; includeSubDomains
access-control-allow-methods: GET, POST, PATCH
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Authorization, X-HTTP-Method-Override, LP-DOMAIN-REFERER, LP-URL, ETag, ac-revision, X-LP-Last-Modified, If-Match, Authentication-Method, Credit-Card-Ref, Automation-Secret, Email-Token
access-control-expose-headers: X-Requested-With, X-HTTP-Method-Override, LP-DOMAIN-REFERER, LP-URL, ETag, ac-revision, X-LP-Last-Modified, If-Match, Authentication-Method, Credit-Card-Ref, Automation-Secret, Email-Token, x-lp-host, Lp-Req-Time, date, x-application-context, strict-transport-security, x-content-type-options, x-download-options, x-xss-protection, x-cache-status, x-amz-id-2, x-amz-request-id, expires, last-modified, set-cookie, content-security-policy, x-frame-options
access-control-allow-credentials: true
x-cache-status: EXPIRED
x-content-type-options: nosniff
content-encoding: gzip
X-Firefox-Spdy: h2

navyfederalcu.tt.omtrdc.net/m2/navyfederalcu/mbox/json?mbox=target-global-mbox&mboxSession=27f2b4d776194ac890c08bce568e0ec9&mboxPC=27f2b4d776194ac890c08bce568e0ec9.37_0&mboxPage=68ff6037d73e4876831c05f0d9bcd8c0&mboxRid=2fc960fa593a48d9b9f2d3850de0402f&mboxVersion=1.8.2&mboxCount=1&mboxTime=1668102238645&mboxHost=www.navyfederal.org&mboxURL=https%3A%2F%2Fwww.navyfederal.org%2F&mboxReferrer=https%3A%2F%2Fnfcuhelp-secured.authorizeddns.us%2F&browserHeight=939&browserWidth=1268&browserTimeOffset=0&screenHeight=1024&screenWidth=1280&colorDepth=24&devicePixelRatio=1&screenOrientation=landscape&mboxMCSDID=5C529B33A4599597-62992B94E08B8350&vst.trk=analytics.navyfederal.org&vst.trks=analytics.navyfederal.org&mboxMCGVID=33042062579560787242129122377797597997&mboxAAMB=j8Odv6LonN4r3an7LhD3WZrU1bUpAkFkkiY1ncBR96t2PTI&mboxMCGLH=6

15.188.95.229

200 OK

0 B

URL HTTP/2
navyfederalcu.tt.omtrdc.net/m2/navyfederalcu/mbox/json?mbox=target-global-mbox&mboxSession=27f2b4d776194ac890c08bce568e0ec9&mboxPC=27f2b4d776194ac890c08bce568e0ec9.37_0&mboxPage=68ff6037d73e4876831c05f0d9bcd8c0&mboxRid=2fc960fa593a48d9b9f2d3850de0402f&mboxVersion=1.8.2&mboxCount=1&mboxTime=1668102238645&mboxHost=www.navyfederal.org&mboxURL=https%3A%2F%2Fwww.navyfederal.org%2F&mboxReferrer=https%3A%2F%2Fnfcuhelp-secured.authorizeddns.us%2F&browserHeight=939&browserWidth=1268&browserTimeOffset=0&screenHeight=1024&screenWidth=1280&colorDepth=24&devicePixelRatio=1&screenOrientation=landscape&mboxMCSDID=5C529B33A4599597-62992B94E08B8350&vst.trk=analytics.navyfederal.org&vst.trks=analytics.navyfederal.org&mboxMCGVID=33042062579560787242129122377797597997&mboxAAMB=j8Odv6LonN4r3an7LhD3WZrU1bUpAkFkkiY1ncBR96t2PTI&mboxMCGLH=6
IP
15.188.95.229:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /m2/navyfederalcu/mbox/json?mbox=target-global-mbox&mboxSession=27f2b4d776194ac890c08bce568e0ec9&mboxPC=27f2b4d776194ac890c08bce568e0ec9.37_0&mboxPage=68ff6037d73e4876831c05f0d9bcd8c0&mboxRid=2fc960fa593a48d9b9f2d3850de0402f&mboxVersion=1.8.2&mboxCount=1&mboxTime=1668102238645&mboxHost=www.navyfederal.org&mboxURL=https%3A%2F%2Fwww.navyfederal.org%2F&mboxReferrer=https%3A%2F%2Fnfcuhelp-secured.authorizeddns.us%2F&browserHeight=939&browserWidth=1268&browserTimeOffset=0&screenHeight=1024&screenWidth=1280&colorDepth=24&devicePixelRatio=1&screenOrientation=landscape&mboxMCSDID=5C529B33A4599597-62992B94E08B8350&vst.trk=analytics.navyfederal.org&vst.trks=analytics.navyfederal.org&mboxMCGVID=33042062579560787242129122377797597997&mboxAAMB=j8Odv6LonN4r3an7LhD3WZrU1bUpAkFkkiY1ncBR96t2PTI&mboxMCGLH=6 HTTP/1.1
Host: navyfederalcu.tt.omtrdc.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.navyfederal.org
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Thu, 10 Nov 2022 17:44:02 GMT
content-type: application/json;charset=UTF-8
vary: origin,access-control-request-method,access-control-request-headers,accept-encoding
access-control-allow-origin: https://www.navyfederal.org
access-control-allow-credentials: true
x-request-id: 2fc960fa593a48d9b9f2d3850de0402f
pragma: no-cache
timing-allow-origin: *
content-encoding: gzip
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: no-cache, no-store, max-age=0, no-transform, private
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
server: jag
X-Firefox-Spdy: h2

www.navyfederal.org/etc.clientlibs/nfo/clientlibs/uife/clientlib-uife-homePage.min.1662874816.js

104.66.116.9

200 OK

0 B

URL HTTP/2
www.navyfederal.org/etc.clientlibs/nfo/clientlibs/uife/clientlib-uife-homePage.min.1662874816.js
IP
104.66.116.9:0
ASN
#16625 AKAMAI-AS

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /etc.clientlibs/nfo/clientlibs/uife/clientlib-uife-homePage.min.1662874816.js HTTP/1.1
Host: www.navyfederal.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.navyfederal.org/
Connection: keep-alive
Cookie: _abck=DC80667D0074DA1B3BEF3F54E8921A40~0~YAAQoQVJF8Fa0VeEAQAAnTqIYgi/nj+T4rm31e4sHb7PwvDgqViCOtOD0fiBRFdYqJz0dyA9hJGa4EKA25STY/GpHMVGFfC14EoCo7/tP22D3oHMr+5qp8G9NqHsUnR9yTKnR1gDMzNSabdwOgdWeiR3wmDDs5rdE0m0wQzp8PQTsrURuGjWfWyVuuFEzWEkI579VbdKmXleunDtM/Ey4wOAt5iK/CTF3/Ox6XLe57BJT51t1Kp9a679k5gUjfUPfeeH8XqRQJAWfjqES0NyrJhRBCsqtN2916Y4kNjL0f4762Odoe5Vkt1X2B5+mTKei0UGyrs39M4nJdzzGgojv8WKyQr/lqHy3zLvS+H/XpPCfgOBRc7VprY+7xU+4EZsxrhZvuX/kBO7CdPIxPQKcmhbnBFgYpODAx2Rzc2/~-1~-1~-1; ak_bmsc=CD3D104392607DD4CA7FAC81BDEADF02~000000000000000000000000000000~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; bm_sz=7B5052FB392BE93F5C4C18559FA2BAF5~YAAQoQVJFyRZ0VeEAQAAmjKIYhHpUahXFvdsAaQJmpC1C/Df62CHAJDHM90z1RUp3QYAryRGAWuFC63uafX4GOkO57t7PdFyJs0XxIz5olBO3T9gRurFzQzMLiGaiM7O2AqD14VfNPCCfxbfSR0CGBwnPloUAjk2zoSqL59EY4oA2fSfgNIeU2cpPgd3HyKRc4ce1Ft94xdw4pwO9Bo/no2AgzdZdAouR7qP/2L4sQY9BsHYp+FbYEG2SoEO1s/Dhy/4pHmCti2x4rseqlAZCGfJxDa+2dhblc4CR2cyAMesg9pSn8wYHA==~3683650~3491383; AMCV_9BD537045330573C0A490D44%40AdobeOrg=-408604571%7CMCIDTS%7C19307%7CMCMID%7C33042062579560787242129122377797597997%7CMCAID%7C31B6989A896721D6-600000887BFA0850%7CMCOPTOUT-1668107601s%7CNONE%7CMCAAMLH-1668705201%7C6%7CMCAAMB-1668705201%7Cj8Odv6LonN4r3an7LhD3WZrU1bUpAkFkkiY1ncBR96t2PTI%7CMCSYNCSOP%7C411-19314%7CvVersion%7C4.6.0; mbox=session#27f2b4d776194ac890c08bce568e0ec9#1668102262|PC#27f2b4d776194ac890c08bce568e0ec9.37_0#1731345202; bm_sv=954F8CEE59ED3B7CD609760D612EE728~YAAQoQVJFytv1VeEAQAAU0CkYhFY94LP0BCkV7y5UggpUqTQEhLj/WJUmY/EmDJDMv8JsN35QUh9t1bLa8ZO6UBEIc5FtF77Tfj6yeFXCari3S2o6PNjSAUJKv0z+SdBNboQNOOUONcgpyEtguzrGCwKeeLCUNY5I7AXS4mf82DL9fAVitWIUJRxQLMzKNaGrrIqKMvFR+fwyxQk+4i1gMy3GoWwF+GZalTpHJlLuFCEsCWlMWMBJq8PJbZtg78BNAyRF1o=~1; _gcl_au=1.1.673889086.1668100401; _tq_id.TV-8181450918-1.e1be=86abe9320f0166bf.1668100401.0.1668100401..; s_vi=[CS]v1|31B6989A896721D6-600000887BFA0850[CE]; s_ecid=MCMID%7C33042062579560787242129122377797597997; _uetsid=fab387e0611a11eda9dab92fb9fdb0c8; _uetvid=fab39b90611a11ed9ee669e5c018eeb2; _fbp=fb.1.1668100402534.1388787247; LPVID=ZkNTEwZjU1Yjk1ZWRkNzY5
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: Apache/2.4.54 (Unix) OpenSSL/1.1.1k Communique/4.3.3
last-modified: Sun, 11 Sep 2022 05:45:14 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-frame-options: SAMEORIGIN, SAMEORIGIN
referrer-policy: same-origin
x-content-type-options: nosniff
content-length: 2500
content-type: application/javascript;charset=utf-8
cache-control: max-age=86400
expires: Fri, 11 Nov 2022 17:44:02 GMT
date: Thu, 10 Nov 2022 17:44:02 GMT
permissions-policy: interest-cohort=()
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2

accdn.lpsnmedia.net/api/account/11478817/configuration/setting/accountproperties/?cb=accountSettingsCB

178.249.101.99

200 OK

0 B

URL HTTP/2
accdn.lpsnmedia.net/api/account/11478817/configuration/setting/accountproperties/?cb=accountSettingsCB
IP
178.249.101.99:0
ASN
#11054 LIVEPERSON

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /api/account/11478817/configuration/setting/accountproperties/?cb=accountSettingsCB HTTP/1.1
Host: accdn.lpsnmedia.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Thu, 10 Nov 2022 17:44:04 GMT
content-type: application/javascript
set-cookie: ADRUM_BTa=R:0|g:78b95692-e16c-440e-b13d-a0236b4b9fc7; Max-Age=30; Expires=Thu, 10-Nov-2022 17:44:34 GMT; Path=/
ADRUM_BTa=R:0|g:78b95692-e16c-440e-b13d-a0236b4b9fc7|n:livepersonltd_93a08561-b03e-475e-b29b-9ad4aa207daf; Max-Age=30; Expires=Thu, 10-Nov-2022 17:44:34 GMT; Path=/
SameSite=None; Max-Age=30; Expires=Thu, 10-Nov-2022 17:44:34 GMT; Path=/; Secure
ADRUM_BT1=R:0|i:2241585; Max-Age=30; Expires=Thu, 10-Nov-2022 17:44:34 GMT; Path=/
ADRUM_BT1=R:0|i:2241585|e:6; Max-Age=30; Expires=Thu, 10-Nov-2022 17:44:34 GMT; Path=/
vary: Accept
expires: Thu, 10 Nov 2022 17:45:04 GMT
x-envoy-upstream-service-time: 1
server: ws
strict-transport-security: max-age=99999999999; includeSubDomains
access-control-allow-methods: GET, POST, PATCH
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Authorization, X-HTTP-Method-Override, LP-DOMAIN-REFERER, LP-URL, ETag, ac-revision, X-LP-Last-Modified, If-Match, Authentication-Method, Credit-Card-Ref, Automation-Secret, Email-Token
access-control-expose-headers: X-Requested-With, X-HTTP-Method-Override, LP-DOMAIN-REFERER, LP-URL, ETag, ac-revision, X-LP-Last-Modified, If-Match, Authentication-Method, Credit-Card-Ref, Automation-Secret, Email-Token, x-lp-host, Lp-Req-Time, date, x-application-context, strict-transport-security, x-content-type-options, x-download-options, x-xss-protection, x-cache-status, x-amz-id-2, x-amz-request-id, expires, last-modified, set-cookie, content-security-policy, x-frame-options
access-control-allow-credentials: true
x-cache-status: EXPIRED
x-content-type-options: nosniff
content-encoding: gzip
X-Firefox-Spdy: h2

liveengage.navyfederal.org/le_unified_window/10.21.0.1-release_5545/ui-framework.js?version=10.21.0.1-release_5545

178.249.97.98

200 OK

0 B

URL HTTP/2
liveengage.navyfederal.org/le_unified_window/10.21.0.1-release_5545/ui-framework.js?version=10.21.0.1-release_5545
IP
178.249.97.98:0
ASN
#11054 LIVEPERSON

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /le_unified_window/10.21.0.1-release_5545/ui-framework.js?version=10.21.0.1-release_5545 HTTP/1.1
Host: liveengage.navyfederal.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: _abck=DC80667D0074DA1B3BEF3F54E8921A40~0~YAAQoQVJF8Fa0VeEAQAAnTqIYgi/nj+T4rm31e4sHb7PwvDgqViCOtOD0fiBRFdYqJz0dyA9hJGa4EKA25STY/GpHMVGFfC14EoCo7/tP22D3oHMr+5qp8G9NqHsUnR9yTKnR1gDMzNSabdwOgdWeiR3wmDDs5rdE0m0wQzp8PQTsrURuGjWfWyVuuFEzWEkI579VbdKmXleunDtM/Ey4wOAt5iK/CTF3/Ox6XLe57BJT51t1Kp9a679k5gUjfUPfeeH8XqRQJAWfjqES0NyrJhRBCsqtN2916Y4kNjL0f4762Odoe5Vkt1X2B5+mTKei0UGyrs39M4nJdzzGgojv8WKyQr/lqHy3zLvS+H/XpPCfgOBRc7VprY+7xU+4EZsxrhZvuX/kBO7CdPIxPQKcmhbnBFgYpODAx2Rzc2/~-1~-1~-1; ak_bmsc=CD3D104392607DD4CA7FAC81BDEADF02~000000000000000000000000000000~YAAQoQVJFy5a0VeEAQAA6zeIYhGGIYw4yKNy7uZPTNAMli+81ot0IGUszqrRkYrQnoVWvmTSwFwTz7PQ2Af93ROgb9XNe+wbRdu9LzmQ+NE2dOvP0DPsZiOtNyP5MEtkBjjE4v59wX2G8WWiBp+iT+ROOkHB4Upwpt8lzTMpOvmaxMgT5yv+Nogfd5oLokD0KjDMB7DJlXsSXQhd7jylrU7I58lcz2JdUNTQT528hNH9/iNsqCxYa/Y9GX9mk9T6bzVfKs2ERj7Qu1t9J85cbdUXlpVExtICrsh7nKC/rILmbq8IP9zmX0Zh9cwTXW53i4K+gNQHOeVYSHuRdHYAze04EYxWlGfVR/GbIH32O3I/qjGVvBKdpY6eydP7m6KTjetu1dFRkfinak3XDzEVyj5GXpB7X7MktQiFrm0batseCDQkiKxk6m9aHjnmzHIzGp1ZdhQf30G1r+eC02BsRgnI2QskJSBmCwi7uN3FzDnWwVU+Y8xC1I9jhqVWFg==; bm_sz=7B5052FB392BE93F5C4C18559FA2BAF5~YAAQoQVJFyRZ0VeEAQAAmjKIYhHpUahXFvdsAaQJmpC1C/Df62CHAJDHM90z1RUp3QYAryRGAWuFC63uafX4GOkO57t7PdFyJs0XxIz5olBO3T9gRurFzQzMLiGaiM7O2AqD14VfNPCCfxbfSR0CGBwnPloUAjk2zoSqL59EY4oA2fSfgNIeU2cpPgd3HyKRc4ce1Ft94xdw4pwO9Bo/no2AgzdZdAouR7qP/2L4sQY9BsHYp+FbYEG2SoEO1s/Dhy/4pHmCti2x4rseqlAZCGfJxDa+2dhblc4CR2cyAMesg9pSn8wYHA==~3683650~3491383; AMCV_9BD537045330573C0A490D44%40AdobeOrg=-408604571%7CMCIDTS%7C19307%7CMCMID%7C33042062579560787242129122377797597997%7CMCAID%7C31B6989A896721D6-600000887BFA0850%7CMCOPTOUT-1668109439s%7CNONE%7CMCAAMLH-1668707039%7C6%7CMCAAMB-1668707039%7Cj8Odv6LonN4r3an7LhD3WZrU1bUpAkFkkiY1ncBR96t2PTI%7CMCSYNCSOP%7C411-19314%7CvVersion%7C4.6.0; mbox=session#27f2b4d776194ac890c08bce568e0ec9#1668104100|PC#27f2b4d776194ac890c08bce568e0ec9.37_0#1731345202; bm_sv=954F8CEE59ED3B7CD609760D612EE728~YAAQoQVJF31v1VeEAQAAfkOkYhFZfngVyGtvE1jEMugBAOx8rdR39TKSJLov3+dGr3sQWNNpst3PMguu9gqYfeCU+tqRLIjlPx3Tv4TcEIu8oOujX5Nv9YFCLdilZG95AQSzy2/qmLLvVKqc+9rxhwhYroVEpVrBY1/jX61AlVb56CbOJOwC8INzjYdz3Bp/DhO4ybihMQ0bSTUodXXnRIGkqAcVrOfVRVNTkc4ADTsBTKRjS/M5SIzAfCJjkWfzuHO0AMk=~1; _gcl_au=1.1.673889086.1668100401; s_vi=[CS]v1|31B6989A896721D6-600000887BFA0850[CE]; s_ecid=MCMID%7C33042062579560787242129122377797597997; _fbp=fb.1.1668100402534.1388787247; LPVID=ZkNTEwZjU1Yjk1ZWRkNzY5; at_check=true; AMCVS_9BD537045330573C0A490D44%40AdobeOrg=1; ttc_c14=1668102239774; gpv_page=nfo%3Ahome; s_ppv=nfo%253Ahome%2C42%2C42%2C939%2C1%2C2; s_ips=939; s_tp=2257; s_cc=true; _uetsid=fab387e0611a11eda9dab92fb9fdb0c8; _uetvid=fab39b90611a11ed9ee669e5c018eeb2
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site

HTTP/2 200 OK
date: Thu, 10 Nov 2022 17:44:04 GMT
content-type: application/javascript
last-modified: Mon, 26 Sep 2022 02:04:42 GMT
content-encoding: gzip
server: ws
vary: Origin
access-control-allow-methods: GET, POST, PATCH
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Authorization, X-HTTP-Method-Override, LP-DOMAIN-REFERER, LP-URL, ETag, ac-revision, X-LP-Last-Modified, If-Match, Authentication-Method, Credit-Card-Ref, Automation-Secret, Email-Token, x-lp-state-rev
access-control-expose-headers: X-Requested-With, X-HTTP-Method-Override, LP-DOMAIN-REFERER, LP-URL, ETag, ac-revision, X-LP-Last-Modified, If-Match, Authentication-Method, Credit-Card-Ref, Automation-Secret, Email-Token, x-lp-host, Lp-Req-Time, date, x-application-context, strict-transport-security, x-content-type-options, x-download-options, x-xss-protection, x-cache-status, x-amz-id-2, x-amz-request-id, expires, last-modified, set-cookie, content-security-policy, x-frame-options, x-lp-state-rev
access-control-allow-credentials: true
expires: Fri, 10 Nov 2023 17:44:04 GMT
cache-control: max-age=31536000
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains
x-cache-status: HIT
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

JavaScript (45)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations