dcutest.com/
104.17.91.69301 Moved Permanently 167 B IP 104.17.91.69:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash f5d40b7259645010f9a248858ad14178
b3051d17a6ec8c9e166bf09a62b48261ab86957b
7f5007068d2b56ea9735e2490d60cff2e72cae312024ac1f6c91158eba47d05d
Analyzer Verdict Alert openphish Digital Federal Credit Union
fortinet Phishing
GET / HTTP/1.1
Host: dcutest.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Sat, 04 Feb 2023 09:05:01 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Location: https://dcutest.com/
X-Cache: Redirect from cloudfront
Via: 1.1 80d21802b1b80c40e55ccf83433b8eac.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: SbG5R3d334gUUNUD6vmsn_zOIxcMEVofF9lAuJbbyefFtG8WsLBgBA==
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 79423e023fd71bfa-OSL
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 81713f952b51a865ad9764cde68e3fdb
278c3a9c4bb2a0ffb7375f90d89a1ba6e90a766a
c2eb0d8a24ecb51af28f1c71db4b9a95c568dcf6c94b41ee8c78787a4ebebcef
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C2EB0D8A24ECB51AF28F1C71DB4B9A95C568DCF6C94B41EE8C78787A4EBEBCEF"
Last-Modified: Fri, 03 Feb 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2499
Expires: Sat, 04 Feb 2023 09:46:41 GMT
Date: Sat, 04 Feb 2023 09:05:02 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash ec47f9eed203ae063b9c210009de54a9
19ff156471b9cffbc2432c5b65543bdd18e36271
3974208ce1840f6c9467287b7e220379ed881d76db64939f411dbc500c103d48
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "3974208CE1840F6C9467287B7E220379ED881D76DB64939F411DBC500C103D48"
Last-Modified: Thu, 02 Feb 2023 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=19686
Expires: Sat, 04 Feb 2023 14:33:08 GMT
Date: Sat, 04 Feb 2023 09:05:02 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash fb7b6b46e708ad73eaaa3c21e74569ae
950663c025acad81556af5aa3022ecc9d55097fe
763f58b9fb838378c92033b59907b036f4c33081f5103d9bcc2ca2a8de500d64
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "763F58B9FB838378C92033B59907B036F4C33081F5103D9BCC2CA2A8DE500D64"
Last-Modified: Sat, 04 Feb 2023 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18054
Expires: Sat, 04 Feb 2023 14:05:56 GMT
Date: Sat, 04 Feb 2023 09:05:02 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash ff250d3ef3fa45322bf05039a0122a9f
b3e7a2c383bce1bab807dbe1a03c375258b51f1d
d07f109a96e0ae6ec7b1d46ce8761b3f06fe845769ce65d69e053dd40aa561ba
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Retry-After, Backoff, Content-Type, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sat, 04 Feb 2023 08:43:37 GMT
content-type: application/json
age: 1285
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: vTC5sGxB4eeEqZCBJslrchvt8W7Y2cufH3/gpfCB3+tK+6BF7uF9rZmvAK9y+s7FOpIuUTAqbVo=
x-amz-request-id: C2J5T8J3JTDNX3FZ
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sat, 04 Feb 2023 08:23:55 GMT
age: 2467
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 09:05:02 GMT
content-type: application/json
content-length: 12
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-credentials: true
access-control-expose-headers: content-type
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Retry-After, Last-Modified, Cache-Control, Pragma, ETag, Backoff, Content-Type, Alert, Expires
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sat, 04 Feb 2023 08:07:19 GMT
age: 3463
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash dedf9c519ac38c4bece9c5bc895787d7
4911175c3f8a435978c5301c33c7a99a5e00a1d5
bddd7e3a4939f863642a7c5348c1c8b9bc569b35c10a27f4cf5ec71f7e6b9698
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BDDD7E3A4939F863642A7C5348C1C8B9BC569B35C10A27F4CF5EC71F7E6B9698"
Last-Modified: Fri, 03 Feb 2023 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7864
Expires: Sat, 04 Feb 2023 11:16:06 GMT
Date: Sat, 04 Feb 2023 09:05:02 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 774cd68fd1bce07edee4674877f5741f
d2a5f0402e42e38a91686b227446ed829f5a4179
95b5a9bf4f5a0db8887f06488c55523cc19e6be7294566b466bb4164f0aee9f6
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3802
Cache-Control: max-age=166662
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 09:05:02 GMT
Etag: "63ddf8ea-117"
Expires: Mon, 06 Feb 2023 07:22:44 GMT
Last-Modified: Sat, 04 Feb 2023 06:19:22 GMT
Server: ECS (ska/F6FC)
X-Cache: HIT
Content-Length: 279
cdn.cookielaw.org/scripttemplates/otSDKStub.js
104.16.149.64200 OK 8.4 kB URL HTTP/2 cdn.cookielaw.org/scripttemplates/otSDKStub.js
IP 104.16.149.64:0
File type ASCII text, with very long lines (25592)
Hash e248bb3ed9070ee48f0b5bc674e6a49d
46a6ac373399405df390e910c580cf850dce9886
74fd866eaf62b63cec2b85eadf2245e9302107f4c8fabc25f9c3e5cd49f40a6b
GET /scripttemplates/otSDKStub.js HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dcutest.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 04 Feb 2023 09:05:02 GMT
content-type: application/javascript
content-length: 8384
content-encoding: gzip
content-md5: 4ki7PtkHDuSPC1vGdOaknQ==
last-modified: Thu, 02 Feb 2023 13:33:36 GMT
etag: 0x8DB05221689032C
x-ms-request-id: 3a8b6a68-201e-0101-2064-379f4e000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: max-age=86400
cf-cache-status: HIT
age: 51991
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 79423e093cadfab4-OSL
X-Firefox-Spdy: h2
push.services.mozilla.com/
34.213.53.184101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 34.213.53.184:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: ux1Eg/RcEF/0l7+mcxGyyw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: 9hjerpjwSveQrpVm4YTLtHXOdTo=
dcutest.com/content/dam/dcu/global/home/illustrations/member-referral-green-icon.svg
104.17.91.69200 OK 1.5 kB URL HTTP/2 dcutest.com/content/dam/dcu/global/home/illustrations/member-referral-green-icon.svg
IP 104.17.91.69:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 7a632f5a2efedc28c838b262bd69c59e
62d689b05032aaddf15a3a6ada6ae2893029cabb
3571f4f3d6296b67f49e8ce43528192615a4f1f1afe61738430dce31318a279c
Analyzer Verdict Alert openphish Digital Federal Credit Union
fortinet Phishing
GET /content/dam/dcu/global/home/illustrations/member-referral-green-icon.svg HTTP/1.1
Host: dcutest.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dcutest.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 09:05:03 GMT
content-type: image/svg+xml
content-length: 1519
x-dispatcher: dispatcher1useast1
x-vhost: publish
content-disposition: inline
x-content-type-options: nosniff
last-modified: Thu, 10 Nov 2022 14:05:46 GMT
etag: "cd8-5ed1e45004280-gzip"
content-encoding: gzip
cache-control: public, max-age=31536000
strict-transport-security: max-age=31536000; includeSubDomains
content-security-policy: default-src *.quantummetric.com 'unsafe-inline' 'unsafe-eval' 'self' blob:; worker-src blob:; child-src blob:; object-src 'self'; media-src 'self' blob: usassets.chat.pega.com firefly-chat-production.s3.amazonaws.com https://www.dcu.org https://manifest.prod.boltdns.net/ https://dcu-dev-65.adobecqms.net/ https://players.brightcove.net/ https://vjs.zencdn.net/ https://bcbolt446c5271-a.akamaihd.net/; script-src 'self' 'unsafe-inline' 'unsafe-eval' blob: https://usuat.cobrowse.pega.com/ https://usuatassets.cobrowse.pega.com https://player.vimeo.com/ https://memchat.dcu-online.org/ https://geolocation.onetrust.com https://www.google.com https://cdn.cookielaw.org https://js-staging.poshdevelopment.com/ https://js.poshdevelopment.com https://api.poshdevelopment.com https://staging.poshdevelopment.com *.quantummetric.com http://dfcumanagedservicesstageenvironment.112.2o7.net https://analytics.twitter.com/ *.ads-twitter.com https://us.cobrowse.pega.com https://usassets.cobrowse.pega.com *.steelhousemedia.com https://dcu-mkt-stage1.campaign.adobe.com https://dcu.campaign.adobe.com https://www.calcxml.com/ *.cloudflare.com https://googleads.g.doubleclick.net https://chat.usefirefly.com https://usefirefly.com https://connect.facebook.net www.google-analytics.com assets.adobedtm.com *.timevaluecalculators.com *.bazaarvoice.com *.iesnare.com https://ajax.googleapis.com/ *.googleapis.com *.dcuinsurance.com tagmanager.google.com www.googletagmanager.com https://www.google-analytics.com https://firefly-chat-production.s3.amazonaws.com http://www.googleadservices.com https://connect.facebook.net http://digitalfederalcreditunion.sc.omtrdc.net https://digitalfederalcreditunion.sc.omtrdc.net https://dcu-dev-65.adobecqms.net/ https://dcu-qa-65.adobecqms.net/ https://dcu-stage-65.adobecqms.net/ https://stage.dcu.org/ *.dcu.org https://dculocator.wave2.io/ https://snap.licdn.com https://bat.bing.com https://up.pixel.ad https://ssl.google-analytics.com/ https://www.dcu.org/ https://static.ads-twitter.com/ https://players.brightcove.net/ https://vjs.zencdn.net/ https://bcbolt446c5271-a.akamaihd.net/ https://widget.use1.chat.pega.digital/ *.qualtrics.com; connect-src 'self' *.ads-twitter.com *.quantummetric.com https://dcu-mkt-stage1.campaign.adobe.com https://dcu.campaign.adobe.com wss://usefirefly.com https://usefirefly.com * *.cloudflare.com https://www.calcxml.com/ *.dcu.org *.omtrdc.net *.demdex.net *.bazaarvoice.com wss://chat.usefirefly.com https://www.google-analytics.com https://www.dcuinsurance.com http://digitalfederalcreditunion.sc.omtrdc.net https://digitalfederalcreditunion.sc.omtrdc.net https://www.dcu.org/ https://static.ads-twitter.com/; img-src 'self' *.com *.yahoo.com http://t.co/ dsum.casalemedia.com su.addthis.com s.thebrighttag.com image2.pubmatic.com ads.scorecardresearch.com t.mookie1.com x.bidswitch.net usermatch.krxd.net match.sharethrough.com cm.g.doubleclick.net ads.yahoo.com pixel.advertising.com insight.adsrvr.org www.facebook.com usassets.chat.pega.com firefly-chat-production.s3.amazonaws.com *.bazaarvoice.com https://www.dcu.org https://www.google.co.in https://www.google.com *.timevaluecalculators.com *.everesttech.net *.demdex.net *.omtrdc.net *.googleapis.com *.gstatic.com *.112.2o7.net https://stats.g.doubleclick.net https://www.calcxml.com/ www.google-analytics.com *.doubleclick.net/ https://bcbolt446c5271-a.akamaihd.net/ https://players.brightcove.net/ https://www.dcu.org/ data:; style-src 'self' 'unsafe-inline' *.cloudflare.com https://usuatassets.cobrowse.pega.com https://usassets.cobrowse.pega.com https://usefirefly.com https://dcu-mkt-stage1.campaign.adobe.com https://dcu.campaign.adobe.com https://www.calcxml.com/ https://tagmanager.google.com usassets.chat.pega.com *.timevaluecalculators.com https://fonts.googleapis.com/ *.googleapis.com *.bazaarvoice.com https://match.adsrvr.org https://match.prod.bidr.io https://dcu-dev-65.adobecqms.net/ https://dcu-qa-65.adobecqms.net/ https://dcu-stage-65.adobecqms.net/ https://stage.dcu.org/ *.dcu.org https://dculocator.wave2.io/ https://www.dcu.org/; font-src 'self' https://fonts.gstatic.com/ fonts.gstatic.com https://www.dcu.org/ data:; frame-src 'self' https://player.vimeo.com/ *.quantummetric.com https://dcu.secure.nonprofitsoapbox.com https://americasaves.org/ https://app.loanspq.com/ https://dcu.mortgagewebcenter.com/ https://apps.rps.ascensus.com/ https://forms.fivision.com/ *.doubleclick.net *.culookup.com *.dcu.org *.demdex.net https://dcu.demdex.net *.locatorsearch.com *.bazaarvoice.com https://www.fmsi-lts.com/DIG_WS https://fmsi-lts.com/ *.adobecqms.net http://cookies.onetrust.mgr.consensu.org/ stage.dcu.org https://stage.dcu.org/ https://dcu-stage-65.adobecqms.net/ http://dcu-stage-65.adobecqms.net/ https://dcu-dev-65.adobecqms.net/ https://dcu-qa-65.adobecqms.net/ https://dcu-stage.adobecqms.net/ *.dcu.org https://dcu-mkt-stage1.campaign.adobe.com https://dcu.campaign.adobe.com https://js-staging.poshdevelopment.com/ https://js.poshdevelopment.com https://api.poshdevelopment.com https://staging.poshdevelopment.com *.youtube.com https://dculocator.wave2.io/ https://www.dcu.org/ https://pixel.sitescout.com/ https://memchat.dcu-online.org/ *.qualtrics.com
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 aa34a836095df9de9d246a53dd63f1d6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: n5cK-7OjHsK6wTs4otVu4jsfwSv0a7Ko273ZfjnGl2DZbyvrsBqSlQ==
cf-cache-status: MISS
expires: Sun, 04 Feb 2024 09:05:03 GMT
accept-ranges: bytes
server: cloudflare
cf-ray: 79423e08ea9cb529-OSL
X-Firefox-Spdy: h2
dcutest.com/etc.clientlibs/dcu/clientlibs/clientlib-site/resources/images/svg/posh-chat-icon.svg
104.17.91.69200 OK 567 B URL HTTP/2 dcutest.com/etc.clientlibs/dcu/clientlibs/clientlib-site/resources/images/svg/posh-chat-icon.svg
IP 104.17.91.69:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document, ASCII text, with very long lines (754)
Hash 4e4793ca6397e0855cd97819324ca7d7
d797a61156294a85a44e34006409035ecea61965
44933b60d0e73b84be91fa2042a4d7d8bdc2f2df3dae42c2a57bf8f167fb8528
Analyzer Verdict Alert openphish Digital Federal Credit Union
fortinet Phishing
GET /etc.clientlibs/dcu/clientlibs/clientlib-site/resources/images/svg/posh-chat-icon.svg HTTP/1.1
Host: dcutest.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dcutest.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 09:05:03 GMT
content-type: image/svg+xml
content-length: 567
x-dispatcher: dispatcher1useast1
x-vhost: publish
cache-control: public, max-age=31536000
x-content-type-options: nosniff
last-modified: Fri, 24 Sep 2021 12:01:25 GMT
etag: "3ff-5ccbc81abef40-gzip"
content-encoding: gzip
strict-transport-security: max-age=31536000; includeSubDomains
content-security-policy: default-src *.quantummetric.com 'unsafe-inline' 'unsafe-eval' 'self' blob:; worker-src blob:; child-src blob:; object-src 'self'; media-src 'self' blob: usassets.chat.pega.com firefly-chat-production.s3.amazonaws.com https://www.dcu.org https://manifest.prod.boltdns.net/ https://dcu-dev-65.adobecqms.net/ https://players.brightcove.net/ https://vjs.zencdn.net/ https://bcbolt446c5271-a.akamaihd.net/; script-src 'self' 'unsafe-inline' 'unsafe-eval' blob: https://usuat.cobrowse.pega.com/ https://usuatassets.cobrowse.pega.com https://player.vimeo.com/ https://memchat.dcu-online.org/ https://geolocation.onetrust.com https://www.google.com https://cdn.cookielaw.org https://js-staging.poshdevelopment.com/ https://js.poshdevelopment.com https://api.poshdevelopment.com https://staging.poshdevelopment.com *.quantummetric.com http://dfcumanagedservicesstageenvironment.112.2o7.net https://analytics.twitter.com/ *.ads-twitter.com https://us.cobrowse.pega.com https://usassets.cobrowse.pega.com *.steelhousemedia.com https://dcu-mkt-stage1.campaign.adobe.com https://dcu.campaign.adobe.com https://www.calcxml.com/ *.cloudflare.com https://googleads.g.doubleclick.net https://chat.usefirefly.com https://usefirefly.com https://connect.facebook.net www.google-analytics.com assets.adobedtm.com *.timevaluecalculators.com *.bazaarvoice.com *.iesnare.com https://ajax.googleapis.com/ *.googleapis.com *.dcuinsurance.com tagmanager.google.com www.googletagmanager.com https://www.google-analytics.com https://firefly-chat-production.s3.amazonaws.com http://www.googleadservices.com https://connect.facebook.net http://digitalfederalcreditunion.sc.omtrdc.net https://digitalfederalcreditunion.sc.omtrdc.net https://dcu-dev-65.adobecqms.net/ https://dcu-qa-65.adobecqms.net/ https://dcu-stage-65.adobecqms.net/ https://stage.dcu.org/ *.dcu.org https://dculocator.wave2.io/ https://snap.licdn.com https://bat.bing.com https://up.pixel.ad https://ssl.google-analytics.com/ https://www.dcu.org/ https://static.ads-twitter.com/ https://players.brightcove.net/ https://vjs.zencdn.net/ https://bcbolt446c5271-a.akamaihd.net/ https://widget.use1.chat.pega.digital/ *.qualtrics.com; connect-src 'self' *.ads-twitter.com *.quantummetric.com https://dcu-mkt-stage1.campaign.adobe.com https://dcu.campaign.adobe.com wss://usefirefly.com https://usefirefly.com * *.cloudflare.com https://www.calcxml.com/ *.dcu.org *.omtrdc.net *.demdex.net *.bazaarvoice.com wss://chat.usefirefly.com https://www.google-analytics.com https://www.dcuinsurance.com http://digitalfederalcreditunion.sc.omtrdc.net https://digitalfederalcreditunion.sc.omtrdc.net https://www.dcu.org/ https://static.ads-twitter.com/; img-src 'self' *.com *.yahoo.com http://t.co/ dsum.casalemedia.com su.addthis.com s.thebrighttag.com image2.pubmatic.com ads.scorecardresearch.com t.mookie1.com x.bidswitch.net usermatch.krxd.net match.sharethrough.com cm.g.doubleclick.net ads.yahoo.com pixel.advertising.com insight.adsrvr.org www.facebook.com usassets.chat.pega.com firefly-chat-production.s3.amazonaws.com *.bazaarvoice.com https://www.dcu.org https://www.google.co.in https://www.google.com *.timevaluecalculators.com *.everesttech.net *.demdex.net *.omtrdc.net *.googleapis.com *.gstatic.com *.112.2o7.net https://stats.g.doubleclick.net https://www.calcxml.com/ www.google-analytics.com *.doubleclick.net/ https://bcbolt446c5271-a.akamaihd.net/ https://players.brightcove.net/ https://www.dcu.org/ data:; style-src 'self' 'unsafe-inline' *.cloudflare.com https://usuatassets.cobrowse.pega.com https://usassets.cobrowse.pega.com https://usefirefly.com https://dcu-mkt-stage1.campaign.adobe.com https://dcu.campaign.adobe.com https://www.calcxml.com/ https://tagmanager.google.com usassets.chat.pega.com *.timevaluecalculators.com https://fonts.googleapis.com/ *.googleapis.com *.bazaarvoice.com https://match.adsrvr.org https://match.prod.bidr.io https://dcu-dev-65.adobecqms.net/ https://dcu-qa-65.adobecqms.net/ https://dcu-stage-65.adobecqms.net/ https://stage.dcu.org/ *.dcu.org https://dculocator.wave2.io/ https://www.dcu.org/; font-src 'self' https://fonts.gstatic.com/ fonts.gstatic.com https://www.dcu.org/ data:; frame-src 'self' https://player.vimeo.com/ *.quantummetric.com https://dcu.secure.nonprofitsoapbox.com https://americasaves.org/ https://app.loanspq.com/ https://dcu.mortgagewebcenter.com/ https://apps.rps.ascensus.com/ https://forms.fivision.com/ *.doubleclick.net *.culookup.com *.dcu.org *.demdex.net https://dcu.demdex.net *.locatorsearch.com *.bazaarvoice.com https://www.fmsi-lts.com/DIG_WS https://fmsi-lts.com/ *.adobecqms.net http://cookies.onetrust.mgr.consensu.org/ stage.dcu.org https://stage.dcu.org/ https://dcu-stage-65.adobecqms.net/ http://dcu-stage-65.adobecqms.net/ https://dcu-dev-65.adobecqms.net/ https://dcu-qa-65.adobecqms.net/ https://dcu-stage.adobecqms.net/ *.dcu.org https://dcu-mkt-stage1.campaign.adobe.com https://dcu.campaign.adobe.com https://js-staging.poshdevelopment.com/ https://js.poshdevelopment.com https://api.poshdevelopment.com https://staging.poshdevelopment.com *.youtube.com https://dculocator.wave2.io/ https://www.dcu.org/ https://pixel.sitescout.com/ https://memchat.dcu-online.org/ *.qualtrics.com
content-disposition: inline
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 6480520a5e02f3163410e3134bd77baa.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: icUTXudEDkVZ6LgiImMBdwcq5V2JhZdRnm3VBM3V0qBhpLatOuQx9Q==
cf-cache-status: MISS
expires: Sun, 04 Feb 2024 09:05:03 GMT
accept-ranges: bytes
server: cloudflare
cf-ray: 79423e08da8ab529-OSL
X-Firefox-Spdy: h2
dcutest.com/content/dam/dcu/global/home/illustrations/DCU_ILLUS_LOC_HomePage_C08_GrowthFountain_01.svg.svg
104.17.91.69200 OK 4.8 kB URL HTTP/2 dcutest.com/content/dam/dcu/global/home/illustrations/DCU_ILLUS_LOC_HomePage_C08_GrowthFountain_01.svg.svg
IP 104.17.91.69:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (10419)
Hash dcc56f6d817dcf562c1d3ae9f1efdc7c
940917911e9ce58460120fdc72f380b6dd2403fa
2c5eb43b71198a01d8bc84152bf3cbe2117c1ab2259734157ae1672099000e1c
Analyzer Verdict Alert openphish Digital Federal Credit Union
fortinet Phishing
GET /content/dam/dcu/global/home/illustrations/DCU_ILLUS_LOC_HomePage_C08_GrowthFountain_01.svg.svg HTTP/1.1
Host: dcutest.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dcutest.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 09:05:03 GMT
content-type: image/svg+xml
content-length: 4848
x-dispatcher: dispatcher2useast1
x-vhost: publish
content-disposition: inline
x-content-type-options: nosniff
last-modified: Tue, 13 Aug 2019 20:47:59 GMT
etag: "2ac2-59005c17d3dc0-gzip"
content-encoding: gzip
cache-control: public, max-age=31536000
strict-transport-security: max-age=31536000; includeSubDomains
content-security-policy: default-src *.quantummetric.com 'unsafe-inline' 'unsafe-eval' 'self' blob:; worker-src blob:; child-src blob:; object-src 'self'; media-src 'self' blob: usassets.chat.pega.com firefly-chat-production.s3.amazonaws.com https://www.dcu.org https://manifest.prod.boltdns.net/ https://dcu-dev-65.adobecqms.net/ https://players.brightcove.net/ https://vjs.zencdn.net/ https://bcbolt446c5271-a.akamaihd.net/; script-src 'self' 'unsafe-inline' 'unsafe-eval' blob: https://usuat.cobrowse.pega.com/ https://usuatassets.cobrowse.pega.com https://player.vimeo.com/ https://memchat.dcu-online.org/ https://geolocation.onetrust.com https://www.google.com https://cdn.cookielaw.org https://js-staging.poshdevelopment.com/ https://js.poshdevelopment.com https://api.poshdevelopment.com https://staging.poshdevelopment.com *.quantummetric.com http://dfcumanagedservicesstageenvironment.112.2o7.net https://analytics.twitter.com/ *.ads-twitter.com https://us.cobrowse.pega.com https://usassets.cobrowse.pega.com *.steelhousemedia.com https://dcu-mkt-stage1.campaign.adobe.com https://dcu.campaign.adobe.com https://www.calcxml.com/ *.cloudflare.com https://googleads.g.doubleclick.net https://chat.usefirefly.com https://usefirefly.com https://connect.facebook.net www.google-analytics.com assets.adobedtm.com *.timevaluecalculators.com *.bazaarvoice.com *.iesnare.com https://ajax.googleapis.com/ *.googleapis.com *.dcuinsurance.com tagmanager.google.com www.googletagmanager.com https://www.google-analytics.com https://firefly-chat-production.s3.amazonaws.com http://www.googleadservices.com https://connect.facebook.net http://digitalfederalcreditunion.sc.omtrdc.net https://digitalfederalcreditunion.sc.omtrdc.net https://dcu-dev-65.adobecqms.net/ https://dcu-qa-65.adobecqms.net/ https://dcu-stage-65.adobecqms.net/ https://stage.dcu.org/ *.dcu.org https://dculocator.wave2.io/ https://snap.licdn.com https://bat.bing.com https://up.pixel.ad https://ssl.google-analytics.com/ https://www.dcu.org/ https://static.ads-twitter.com/ https://players.brightcove.net/ https://vjs.zencdn.net/ https://bcbolt446c5271-a.akamaihd.net/ https://widget.use1.chat.pega.digital/ *.qualtrics.com; connect-src 'self' *.ads-twitter.com *.quantummetric.com https://dcu-mkt-stage1.campaign.adobe.com https://dcu.campaign.adobe.com wss://usefirefly.com https://usefirefly.com * *.cloudflare.com https://www.calcxml.com/ *.dcu.org *.omtrdc.net *.demdex.net *.bazaarvoice.com wss://chat.usefirefly.com https://www.google-analytics.com https://www.dcuinsurance.com http://digitalfederalcreditunion.sc.omtrdc.net https://digitalfederalcreditunion.sc.omtrdc.net https://www.dcu.org/ https://static.ads-twitter.com/; img-src 'self' *.com *.yahoo.com http://t.co/ dsum.casalemedia.com su.addthis.com s.thebrighttag.com image2.pubmatic.com ads.scorecardresearch.com t.mookie1.com x.bidswitch.net usermatch.krxd.net match.sharethrough.com cm.g.doubleclick.net ads.yahoo.com pixel.advertising.com insight.adsrvr.org www.facebook.com usassets.chat.pega.com firefly-chat-production.s3.amazonaws.com *.bazaarvoice.com https://www.dcu.org https://www.google.co.in https://www.google.com *.timevaluecalculators.com *.everesttech.net *.demdex.net *.omtrdc.net *.googleapis.com *.gstatic.com *.112.2o7.net https://stats.g.doubleclick.net https://www.calcxml.com/ www.google-analytics.com *.doubleclick.net/ https://bcbolt446c5271-a.akamaihd.net/ https://players.brightcove.net/ https://www.dcu.org/ data:; style-src 'self' 'unsafe-inline' *.cloudflare.com https://usuatassets.cobrowse.pega.com https://usassets.cobrowse.pega.com https://usefirefly.com https://dcu-mkt-stage1.campaign.adobe.com https://dcu.campaign.adobe.com https://www.calcxml.com/ https://tagmanager.google.com usassets.chat.pega.com *.timevaluecalculators.com https://fonts.googleapis.com/ *.googleapis.com *.bazaarvoice.com https://match.adsrvr.org https://match.prod.bidr.io https://dcu-dev-65.adobecqms.net/ https://dcu-qa-65.adobecqms.net/ https://dcu-stage-65.adobecqms.net/ https://stage.dcu.org/ *.dcu.org https://dculocator.wave2.io/ https://www.dcu.org/; font-src 'self' https://fonts.gstatic.com/ fonts.gstatic.com https://www.dcu.org/ data:; frame-src 'self' https://player.vimeo.com/ *.quantummetric.com https://dcu.secure.nonprofitsoapbox.com https://americasaves.org/ https://app.loanspq.com/ https://dcu.mortgagewebcenter.com/ https://apps.rps.ascensus.com/ https://forms.fivision.com/ *.doubleclick.net *.culookup.com *.dcu.org *.demdex.net https://dcu.demdex.net *.locatorsearch.com *.bazaarvoice.com https://www.fmsi-lts.com/DIG_WS https://fmsi-lts.com/ *.adobecqms.net http://cookies.onetrust.mgr.consensu.org/ stage.dcu.org https://stage.dcu.org/ https://dcu-stage-65.adobecqms.net/ http://dcu-stage-65.adobecqms.net/ https://dcu-dev-65.adobecqms.net/ https://dcu-qa-65.adobecqms.net/ https://dcu-stage.adobecqms.net/ *.dcu.org https://dcu-mkt-stage1.campaign.adobe.com https://dcu.campaign.adobe.com https://js-staging.poshdevelopment.com/ https://js.poshdevelopment.com https://api.poshdevelopment.com https://staging.poshdevelopment.com *.youtube.com https://dculocator.wave2.io/ https://www.dcu.org/ https://pixel.sitescout.com/ https://memchat.dcu-online.org/ *.qualtrics.com
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 095562e8748e634f880ee3c4ada2b6d0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: -R2HtgS-I5CN7mru3bPDDt7YpwvM1x5v1h8PeyKGhlsJU_mGvdoy5w==
cf-cache-status: MISS
expires: Sun, 04 Feb 2024 09:05:03 GMT
accept-ranges: bytes
server: cloudflare
cf-ray: 79423e08faaeb529-OSL
X-Firefox-Spdy: h2
dcutest.com/content/dam/dcu/global/iconography/icon-make-payment.svg
104.17.91.69200 OK 1.5 kB URL HTTP/2 dcutest.com/content/dam/dcu/global/iconography/icon-make-payment.svg
IP 104.17.91.69:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (592)
Hash 3df58c301d53978042c6f4aabd4498d1
045615d0ee7c63ada4b88c23500789097b4a5bec
eba1cdbdab080f5604fd8063b32df4a477e60af46822694140f7a8cb8250d59d
Analyzer Verdict Alert openphish Digital Federal Credit Union
fortinet Phishing
GET /content/dam/dcu/global/iconography/icon-make-payment.svg HTTP/1.1
Host: dcutest.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dcutest.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 09:05:03 GMT
content-type: image/svg+xml
content-length: 1535
x-dispatcher: dispatcher2useast1
x-vhost: publish
content-disposition: inline
x-content-type-options: nosniff
last-modified: Tue, 24 May 2022 19:24:15 GMT
etag: "1aab-5dfc6e6f6b5c0-gzip"
content-encoding: gzip
cache-control: public, max-age=31536000
strict-transport-security: max-age=31536000; includeSubDomains
content-security-policy: default-src *.quantummetric.com 'unsafe-inline' 'unsafe-eval' 'self' blob:; worker-src blob:; child-src blob:; object-src 'self'; media-src 'self' blob: usassets.chat.pega.com firefly-chat-production.s3.amazonaws.com https://www.dcu.org https://manifest.prod.boltdns.net/ https://dcu-dev-65.adobecqms.net/ https://players.brightcove.net/ https://vjs.zencdn.net/ https://bcbolt446c5271-a.akamaihd.net/; script-src 'self' 'unsafe-inline' 'unsafe-eval' blob: https://usuat.cobrowse.pega.com/ https://usuatassets.cobrowse.pega.com https://player.vimeo.com/ https://memchat.dcu-online.org/ https://geolocation.onetrust.com https://www.google.com https://cdn.cookielaw.org https://js-staging.poshdevelopment.com/ https://js.poshdevelopment.com https://api.poshdevelopment.com https://staging.poshdevelopment.com *.quantummetric.com http://dfcumanagedservicesstageenvironment.112.2o7.net https://analytics.twitter.com/ *.ads-twitter.com https://us.cobrowse.pega.com https://usassets.cobrowse.pega.com *.steelhousemedia.com https://dcu-mkt-stage1.campaign.adobe.com https://dcu.campaign.adobe.com https://www.calcxml.com/ *.cloudflare.com https://googleads.g.doubleclick.net https://chat.usefirefly.com https://usefirefly.com https://connect.facebook.net www.google-analytics.com assets.adobedtm.com *.timevaluecalculators.com *.bazaarvoice.com *.iesnare.com https://ajax.googleapis.com/ *.googleapis.com *.dcuinsurance.com tagmanager.google.com www.googletagmanager.com https://www.google-analytics.com https://firefly-chat-production.s3.amazonaws.com http://www.googleadservices.com https://connect.facebook.net http://digitalfederalcreditunion.sc.omtrdc.net https://digitalfederalcreditunion.sc.omtrdc.net https://dcu-dev-65.adobecqms.net/ https://dcu-qa-65.adobecqms.net/ https://dcu-stage-65.adobecqms.net/ https://stage.dcu.org/ *.dcu.org https://dculocator.wave2.io/ https://snap.licdn.com https://bat.bing.com https://up.pixel.ad https://ssl.google-analytics.com/ https://www.dcu.org/ https://static.ads-twitter.com/ https://players.brightcove.net/ https://vjs.zencdn.net/ https://bcbolt446c5271-a.akamaihd.net/ https://widget.use1.chat.pega.digital/ *.qualtrics.com; connect-src 'self' *.ads-twitter.com *.quantummetric.com https://dcu-mkt-stage1.campaign.adobe.com https://dcu.campaign.adobe.com wss://usefirefly.com https://usefirefly.com * *.cloudflare.com https://www.calcxml.com/ *.dcu.org *.omtrdc.net *.demdex.net *.bazaarvoice.com wss://chat.usefirefly.com https://www.google-analytics.com https://www.dcuinsurance.com http://digitalfederalcreditunion.sc.omtrdc.net https://digitalfederalcreditunion.sc.omtrdc.net https://www.dcu.org/ https://static.ads-twitter.com/; img-src 'self' *.com *.yahoo.com http://t.co/ dsum.casalemedia.com su.addthis.com s.thebrighttag.com image2.pubmatic.com ads.scorecardresearch.com t.mookie1.com x.bidswitch.net usermatch.krxd.net match.sharethrough.com cm.g.doubleclick.net ads.yahoo.com pixel.advertising.com insight.adsrvr.org www.facebook.com usassets.chat.pega.com firefly-chat-production.s3.amazonaws.com *.bazaarvoice.com https://www.dcu.org https://www.google.co.in https://www.google.com *.timevaluecalculators.com *.everesttech.net *.demdex.net *.omtrdc.net *.googleapis.com *.gstatic.com *.112.2o7.net https://stats.g.doubleclick.net https://www.calcxml.com/ www.google-analytics.com *.doubleclick.net/ https://bcbolt446c5271-a.akamaihd.net/ https://players.brightcove.net/ https://www.dcu.org/ data:; style-src 'self' 'unsafe-inline' *.cloudflare.com https://usuatassets.cobrowse.pega.com https://usassets.cobrowse.pega.com https://usefirefly.com https://dcu-mkt-stage1.campaign.adobe.com https://dcu.campaign.adobe.com https://www.calcxml.com/ https://tagmanager.google.com usassets.chat.pega.com *.timevaluecalculators.com https://fonts.googleapis.com/ *.googleapis.com *.bazaarvoice.com https://match.adsrvr.org https://match.prod.bidr.io https://dcu-dev-65.adobecqms.net/ https://dcu-qa-65.adobecqms.net/ https://dcu-stage-65.adobecqms.net/ https://stage.dcu.org/ *.dcu.org https://dculocator.wave2.io/ https://www.dcu.org/; font-src 'self' https://fonts.gstatic.com/ fonts.gstatic.com https://www.dcu.org/ data:; frame-src 'self' https://player.vimeo.com/ *.quantummetric.com https://dcu.secure.nonprofitsoapbox.com https://americasaves.org/ https://app.loanspq.com/ https://dcu.mortgagewebcenter.com/ https://apps.rps.ascensus.com/ https://forms.fivision.com/ *.doubleclick.net *.culookup.com *.dcu.org *.demdex.net https://dcu.demdex.net *.locatorsearch.com *.bazaarvoice.com https://www.fmsi-lts.com/DIG_WS https://fmsi-lts.com/ *.adobecqms.net http://cookies.onetrust.mgr.consensu.org/ stage.dcu.org https://stage.dcu.org/ https://dcu-stage-65.adobecqms.net/ http://dcu-stage-65.adobecqms.net/ https://dcu-dev-65.adobecqms.net/ https://dcu-qa-65.adobecqms.net/ https://dcu-stage.adobecqms.net/ *.dcu.org https://dcu-mkt-stage1.campaign.adobe.com https://dcu.campaign.adobe.com https://js-staging.poshdevelopment.com/ https://js.poshdevelopment.com https://api.poshdevelopment.com https://staging.poshdevelopment.com *.youtube.com https://dculocator.wave2.io/ https://www.dcu.org/ https://pixel.sitescout.com/ https://memchat.dcu-online.org/ *.qualtrics.com
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 5de23153ac267c206221751e1cccb6e8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: Fq9g3pejKSWUiE3jrn2Qpf3DvmR34qKaOQoZ04RyUFek7Lk0I34R2w==
cf-cache-status: MISS
expires: Sun, 04 Feb 2024 09:05:03 GMT
accept-ranges: bytes
server: cloudflare
cf-ray: 79423e08ea9fb529-OSL
X-Firefox-Spdy: h2
dcutest.com/content/dam/dcu/global/iconography/icon-app-status.svg
104.17.91.69200 OK 1.8 kB URL HTTP/2 dcutest.com/content/dam/dcu/global/iconography/icon-app-status.svg
IP 104.17.91.69:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (339)
Hash 403af0a956212e795e932c9a769d3908
e538f3605664943317f3d267ca2aba5b095b2727
8f4ec9cb4565091dc7bdcbf152e542b77d13c73099ab317b8147574d8061df01
Analyzer Verdict Alert openphish Digital Federal Credit Union
fortinet Phishing
GET /content/dam/dcu/global/iconography/icon-app-status.svg HTTP/1.1
Host: dcutest.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dcutest.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 09:05:03 GMT
content-type: image/svg+xml
content-length: 1820
x-dispatcher: dispatcher2useast1
x-vhost: publish
content-disposition: inline
x-content-type-options: nosniff
last-modified: Thu, 02 Jun 2022 20:21:29 GMT
etag: "292f-5e07cc037c440-gzip"
content-encoding: gzip
cache-control: public, max-age=31536000
strict-transport-security: max-age=31536000; includeSubDomains
content-security-policy: default-src *.quantummetric.com 'unsafe-inline' 'unsafe-eval' 'self' blob:; worker-src blob:; child-src blob:; object-src 'self'; media-src 'self' blob: usassets.chat.pega.com firefly-chat-production.s3.amazonaws.com https://www.dcu.org https://manifest.prod.boltdns.net/ https://dcu-dev-65.adobecqms.net/ https://players.brightcove.net/ https://vjs.zencdn.net/ https://bcbolt446c5271-a.akamaihd.net/; script-src 'self' 'unsafe-inline' 'unsafe-eval' blob: https://usuat.cobrowse.pega.com/ https://usuatassets.cobrowse.pega.com https://player.vimeo.com/ https://memchat.dcu-online.org/ https://geolocation.onetrust.com https://www.google.com https://cdn.cookielaw.org https://js-staging.poshdevelopment.com/ https://js.poshdevelopment.com https://api.poshdevelopment.com https://staging.poshdevelopment.com *.quantummetric.com http://dfcumanagedservicesstageenvironment.112.2o7.net https://analytics.twitter.com/ *.ads-twitter.com https://us.cobrowse.pega.com https://usassets.cobrowse.pega.com *.steelhousemedia.com https://dcu-mkt-stage1.campaign.adobe.com https://dcu.campaign.adobe.com https://www.calcxml.com/ *.cloudflare.com https://googleads.g.doubleclick.net https://chat.usefirefly.com https://usefirefly.com https://connect.facebook.net www.google-analytics.com assets.adobedtm.com *.timevaluecalculators.com *.bazaarvoice.com *.iesnare.com https://ajax.googleapis.com/ *.googleapis.com *.dcuinsurance.com tagmanager.google.com www.googletagmanager.com https://www.google-analytics.com https://firefly-chat-production.s3.amazonaws.com http://www.googleadservices.com https://connect.facebook.net http://digitalfederalcreditunion.sc.omtrdc.net https://digitalfederalcreditunion.sc.omtrdc.net https://dcu-dev-65.adobecqms.net/ https://dcu-qa-65.adobecqms.net/ https://dcu-stage-65.adobecqms.net/ https://stage.dcu.org/ *.dcu.org https://dculocator.wave2.io/ https://snap.licdn.com https://bat.bing.com https://up.pixel.ad https://ssl.google-analytics.com/ https://www.dcu.org/ https://static.ads-twitter.com/ https://players.brightcove.net/ https://vjs.zencdn.net/ https://bcbolt446c5271-a.akamaihd.net/ https://widget.use1.chat.pega.digital/ *.qualtrics.com; connect-src 'self' *.ads-twitter.com *.quantummetric.com https://dcu-mkt-stage1.campaign.adobe.com https://dcu.campaign.adobe.com wss://usefirefly.com https://usefirefly.com * *.cloudflare.com https://www.calcxml.com/ *.dcu.org *.omtrdc.net *.demdex.net *.bazaarvoice.com wss://chat.usefirefly.com https://www.google-analytics.com https://www.dcuinsurance.com http://digitalfederalcreditunion.sc.omtrdc.net https://digitalfederalcreditunion.sc.omtrdc.net https://www.dcu.org/ https://static.ads-twitter.com/; img-src 'self' *.com *.yahoo.com http://t.co/ dsum.casalemedia.com su.addthis.com s.thebrighttag.com image2.pubmatic.com ads.scorecardresearch.com t.mookie1.com x.bidswitch.net usermatch.krxd.net match.sharethrough.com cm.g.doubleclick.net ads.yahoo.com pixel.advertising.com insight.adsrvr.org www.facebook.com usassets.chat.pega.com firefly-chat-production.s3.amazonaws.com *.bazaarvoice.com https://www.dcu.org https://www.google.co.in https://www.google.com *.timevaluecalculators.com *.everesttech.net *.demdex.net *.omtrdc.net *.googleapis.com *.gstatic.com *.112.2o7.net https://stats.g.doubleclick.net https://www.calcxml.com/ www.google-analytics.com *.doubleclick.net/ https://bcbolt446c5271-a.akamaihd.net/ https://players.brightcove.net/ https://www.dcu.org/ data:; style-src 'self' 'unsafe-inline' *.cloudflare.com https://usuatassets.cobrowse.pega.com https://usassets.cobrowse.pega.com https://usefirefly.com https://dcu-mkt-stage1.campaign.adobe.com https://dcu.campaign.adobe.com https://www.calcxml.com/ https://tagmanager.google.com usassets.chat.pega.com *.timevaluecalculators.com https://fonts.googleapis.com/ *.googleapis.com *.bazaarvoice.com https://match.adsrvr.org https://match.prod.bidr.io https://dcu-dev-65.adobecqms.net/ https://dcu-qa-65.adobecqms.net/ https://dcu-stage-65.adobecqms.net/ https://stage.dcu.org/ *.dcu.org https://dculocator.wave2.io/ https://www.dcu.org/; font-src 'self' https://fonts.gstatic.com/ fonts.gstatic.com https://www.dcu.org/ data:; frame-src 'self' https://player.vimeo.com/ *.quantummetric.com https://dcu.secure.nonprofitsoapbox.com https://americasaves.org/ https://app.loanspq.com/ https://dcu.mortgagewebcenter.com/ https://apps.rps.ascensus.com/ https://forms.fivision.com/ *.doubleclick.net *.culookup.com *.dcu.org *.demdex.net https://dcu.demdex.net *.locatorsearch.com *.bazaarvoice.com https://www.fmsi-lts.com/DIG_WS https://fmsi-lts.com/ *.adobecqms.net http://cookies.onetrust.mgr.consensu.org/ stage.dcu.org https://stage.dcu.org/ https://dcu-stage-65.adobecqms.net/ http://dcu-stage-65.adobecqms.net/ https://dcu-dev-65.adobecqms.net/ https://dcu-qa-65.adobecqms.net/ https://dcu-stage.adobecqms.net/ *.dcu.org https://dcu-mkt-stage1.campaign.adobe.com https://dcu.campaign.adobe.com https://js-staging.poshdevelopment.com/ https://js.poshdevelopment.com https://api.poshdevelopment.com https://staging.poshdevelopment.com *.youtube.com https://dculocator.wave2.io/ https://www.dcu.org/ https://pixel.sitescout.com/ https://memchat.dcu-online.org/ *.qualtrics.com
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 095562e8748e634f880ee3c4ada2b6d0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: gzXGiiMv_WwSMTNsyLG8N5V1Su1vhuG-x7eUr5-3GZ3ZG3BrvDSEfQ==
cf-cache-status: MISS
expires: Sun, 04 Feb 2024 09:05:03 GMT
accept-ranges: bytes
server: cloudflare
cf-ray: 79423e08ea9eb529-OSL
X-Firefox-Spdy: h2
dcutest.com/content/dam/dcu/global/home/images/job-fair-community-carousel-desktop.jpg
104.17.91.69200 OK 24 kB URL HTTP/2 dcutest.com/content/dam/dcu/global/home/images/job-fair-community-carousel-desktop.jpg
IP 104.17.91.69:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1121x424, components 3\012- data
Hash 2636c0e9c7568fd8e7690efe7b1b5901
489a9268d020dae25fc0e5e5c41a7391a60a381e
b48e8e89851cb0d93dbd4f0f4def705671415d1dd18b7c5c58b775aeb921778b
Analyzer Verdict Alert openphish Digital Federal Credit Union
GET /content/dam/dcu/global/home/images/job-fair-community-carousel-desktop.jpg HTTP/1.1
Host: dcutest.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dcutest.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 09:05:03 GMT
content-type: image/jpeg
content-length: 23730
x-dispatcher: dispatcher2useast1
x-vhost: publish
content-disposition: inline
x-content-type-options: nosniff
last-modified: Wed, 23 Oct 2019 13:43:27 GMT
etag: "5cb2-5959419f8fdc0"
cache-control: public, max-age=31536000
strict-transport-security: max-age=31536000; includeSubDomains
content-security-policy: default-src *.quantummetric.com 'unsafe-inline' 'unsafe-eval' 'self' blob:; worker-src blob:; child-src blob:; object-src 'self'; media-src 'self' blob: usassets.chat.pega.com firefly-chat-production.s3.amazonaws.com https://www.dcu.org https://manifest.prod.boltdns.net/ https://dcu-dev-65.adobecqms.net/ https://players.brightcove.net/ https://vjs.zencdn.net/ https://bcbolt446c5271-a.akamaihd.net/; script-src 'self' 'unsafe-inline' 'unsafe-eval' blob: https://usuat.cobrowse.pega.com/ https://usuatassets.cobrowse.pega.com https://player.vimeo.com/ https://memchat.dcu-online.org/ https://geolocation.onetrust.com https://www.google.com https://cdn.cookielaw.org https://js-staging.poshdevelopment.com/ https://js.poshdevelopment.com https://api.poshdevelopment.com https://staging.poshdevelopment.com *.quantummetric.com http://dfcumanagedservicesstageenvironment.112.2o7.net https://analytics.twitter.com/ *.ads-twitter.com https://us.cobrowse.pega.com https://usassets.cobrowse.pega.com *.steelhousemedia.com https://dcu-mkt-stage1.campaign.adobe.com https://dcu.campaign.adobe.com https://www.calcxml.com/ *.cloudflare.com https://googleads.g.doubleclick.net https://chat.usefirefly.com https://usefirefly.com https://connect.facebook.net www.google-analytics.com assets.adobedtm.com *.timevaluecalculators.com *.bazaarvoice.com *.iesnare.com https://ajax.googleapis.com/ *.googleapis.com *.dcuinsurance.com tagmanager.google.com www.googletagmanager.com https://www.google-analytics.com https://firefly-chat-production.s3.amazonaws.com http://www.googleadservices.com https://connect.facebook.net http://digitalfederalcreditunion.sc.omtrdc.net https://digitalfederalcreditunion.sc.omtrdc.net https://dcu-dev-65.adobecqms.net/ https://dcu-qa-65.adobecqms.net/ https://dcu-stage-65.adobecqms.net/ https://stage.dcu.org/ *.dcu.org https://dculocator.wave2.io/ https://snap.licdn.com https://bat.bing.com https://up.pixel.ad https://ssl.google-analytics.com/ https://www.dcu.org/ https://static.ads-twitter.com/ https://players.brightcove.net/ https://vjs.zencdn.net/ https://bcbolt446c5271-a.akamaihd.net/ https://widget.use1.chat.pega.digital/ *.qualtrics.com; connect-src 'self' *.ads-twitter.com *.quantummetric.com https://dcu-mkt-stage1.campaign.adobe.com https://dcu.campaign.adobe.com wss://usefirefly.com https://usefirefly.com * *.cloudflare.com https://www.calcxml.com/ *.dcu.org *.omtrdc.net *.demdex.net *.bazaarvoice.com wss://chat.usefirefly.com https://www.google-analytics.com https://www.dcuinsurance.com http://digitalfederalcreditunion.sc.omtrdc.net https://digitalfederalcreditunion.sc.omtrdc.net https://www.dcu.org/ https://static.ads-twitter.com/; img-src 'self' *.com *.yahoo.com http://t.co/ dsum.casalemedia.com su.addthis.com s.thebrighttag.com image2.pubmatic.com ads.scorecardresearch.com t.mookie1.com x.bidswitch.net usermatch.krxd.net match.sharethrough.com cm.g.doubleclick.net ads.yahoo.com pixel.advertising.com insight.adsrvr.org www.facebook.com usassets.chat.pega.com firefly-chat-production.s3.amazonaws.com *.bazaarvoice.com https://www.dcu.org https://www.google.co.in https://www.google.com *.timevaluecalculators.com *.everesttech.net *.demdex.net *.omtrdc.net *.googleapis.com *.gstatic.com *.112.2o7.net https://stats.g.doubleclick.net https://www.calcxml.com/ www.google-analytics.com *.doubleclick.net/ https://bcbolt446c5271-a.akamaihd.net/ https://players.brightcove.net/ https://www.dcu.org/ data:; style-src 'self' 'unsafe-inline' *.cloudflare.com https://usuatassets.cobrowse.pega.com https://usassets.cobrowse.pega.com https://usefirefly.com https://dcu-mkt-stage1.campaign.adobe.com https://dcu.campaign.adobe.com https://www.calcxml.com/ https://tagmanager.google.com usassets.chat.pega.com *.timevaluecalculators.com https://fonts.googleapis.com/ *.googleapis.com *.bazaarvoice.com https://match.adsrvr.org https://match.prod.bidr.io https://dcu-dev-65.adobecqms.net/ https://dcu-qa-65.adobecqms.net/ https://dcu-stage-65.adobecqms.net/ https://stage.dcu.org/ *.dcu.org https://dculocator.wave2.io/ https://www.dcu.org/; font-src 'self' https://fonts.gstatic.com/ fonts.gstatic.com https://www.dcu.org/ data:; frame-src 'self' https://player.vimeo.com/ *.quantummetric.com https://dcu.secure.nonprofitsoapbox.com https://americasaves.org/ https://app.loanspq.com/ https://dcu.mortgagewebcenter.com/ https://apps.rps.ascensus.com/ https://forms.fivision.com/ *.doubleclick.net *.culookup.com *.dcu.org *.demdex.net https://dcu.demdex.net *.locatorsearch.com *.bazaarvoice.com https://www.fmsi-lts.com/DIG_WS https://fmsi-lts.com/ *.adobecqms.net http://cookies.onetrust.mgr.consensu.org/ stage.dcu.org https://stage.dcu.org/ https://dcu-stage-65.adobecqms.net/ http://dcu-stage-65.adobecqms.net/ https://dcu-dev-65.adobecqms.net/ https://dcu-qa-65.adobecqms.net/ https://dcu-stage.adobecqms.net/ *.dcu.org https://dcu-mkt-stage1.campaign.adobe.com https://dcu.campaign.adobe.com https://js-staging.poshdevelopment.com/ https://js.poshdevelopment.com https://api.poshdevelopment.com https://staging.poshdevelopment.com *.youtube.com https://dculocator.wave2.io/ https://www.dcu.org/ https://pixel.sitescout.com/ https://memchat.dcu-online.org/ *.qualtrics.com
x-cache: Hit from cloudfront
via: 1.1 2afd697fc5d0058ea30d6c4b939e714c.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: YlKINoFa8p27M5VO3Gw8paIB7t2pd8s1sKl9ZCLvZMx4_zzrskxF_Q==
cf-cache-status: MISS
expires: Sun, 04 Feb 2024 09:05:03 GMT
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 79423e08eaa4b529-OSL
X-Firefox-Spdy: h2
dcutest.com/content/dam/dcu/global/home/illustrations/DCU_ILLUS_LOC_HomePage_C08_Balance_01.svg.svg
104.17.91.69200 OK 2.0 kB URL HTTP/2 dcutest.com/content/dam/dcu/global/home/illustrations/DCU_ILLUS_LOC_HomePage_C08_Balance_01.svg.svg
IP 104.17.91.69:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (4148)
Hash 278c4fbf6df837b53e2fe0ca62a869a5
6237b5c9170d7664eb7c0209ccdbdad4ac7df2c7
442a3acc978ca85fad635f233b5a7422479f0b7e371ca47213f01c28ea3fe45c
Analyzer Verdict Alert openphish Digital Federal Credit Union
fortinet Phishing
GET /content/dam/dcu/global/home/illustrations/DCU_ILLUS_LOC_HomePage_C08_Balance_01.svg.svg HTTP/1.1
Host: dcutest.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dcutest.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 09:05:03 GMT
content-type: image/svg+xml
content-length: 1957
x-dispatcher: dispatcher2useast1
x-vhost: publish
content-disposition: inline
x-content-type-options: nosniff
last-modified: Tue, 13 Aug 2019 20:47:59 GMT
etag: "122d-59005c17d3dc0-gzip"
content-encoding: gzip
cache-control: public, max-age=31536000
strict-transport-security: max-age=31536000; includeSubDomains
content-security-policy: default-src *.quantummetric.com 'unsafe-inline' 'unsafe-eval' 'self' blob:; worker-src blob:; child-src blob:; object-src 'self'; media-src 'self' blob: usassets.chat.pega.com firefly-chat-production.s3.amazonaws.com https://www.dcu.org https://manifest.prod.boltdns.net/ https://dcu-dev-65.adobecqms.net/ https://players.brightcove.net/ https://vjs.zencdn.net/ https://bcbolt446c5271-a.akamaihd.net/; script-src 'self' 'unsafe-inline' 'unsafe-eval' blob: https://usuat.cobrowse.pega.com/ https://usuatassets.cobrowse.pega.com https://player.vimeo.com/ https://memchat.dcu-online.org/ https://geolocation.onetrust.com https://www.google.com https://cdn.cookielaw.org https://js-staging.poshdevelopment.com/ https://js.poshdevelopment.com https://api.poshdevelopment.com https://staging.poshdevelopment.com *.quantummetric.com http://dfcumanagedservicesstageenvironment.112.2o7.net https://analytics.twitter.com/ *.ads-twitter.com https://us.cobrowse.pega.com https://usassets.cobrowse.pega.com *.steelhousemedia.com https://dcu-mkt-stage1.campaign.adobe.com https://dcu.campaign.adobe.com https://www.calcxml.com/ *.cloudflare.com https://googleads.g.doubleclick.net https://chat.usefirefly.com https://usefirefly.com https://connect.facebook.net www.google-analytics.com assets.adobedtm.com *.timevaluecalculators.com *.bazaarvoice.com *.iesnare.com https://ajax.googleapis.com/ *.googleapis.com *.dcuinsurance.com tagmanager.google.com www.googletagmanager.com https://www.google-analytics.com https://firefly-chat-production.s3.amazonaws.com http://www.googleadservices.com https://connect.facebook.net http://digitalfederalcreditunion.sc.omtrdc.net https://digitalfederalcreditunion.sc.omtrdc.net https://dcu-dev-65.adobecqms.net/ https://dcu-qa-65.adobecqms.net/ https://dcu-stage-65.adobecqms.net/ https://stage.dcu.org/ *.dcu.org https://dculocator.wave2.io/ https://snap.licdn.com https://bat.bing.com https://up.pixel.ad https://ssl.google-analytics.com/ https://www.dcu.org/ https://static.ads-twitter.com/ https://players.brightcove.net/ https://vjs.zencdn.net/ https://bcbolt446c5271-a.akamaihd.net/ https://widget.use1.chat.pega.digital/ *.qualtrics.com; connect-src 'self' *.ads-twitter.com *.quantummetric.com https://dcu-mkt-stage1.campaign.adobe.com https://dcu.campaign.adobe.com wss://usefirefly.com https://usefirefly.com * *.cloudflare.com https://www.calcxml.com/ *.dcu.org *.omtrdc.net *.demdex.net *.bazaarvoice.com wss://chat.usefirefly.com https://www.google-analytics.com https://www.dcuinsurance.com http://digitalfederalcreditunion.sc.omtrdc.net https://digitalfederalcreditunion.sc.omtrdc.net https://www.dcu.org/ https://static.ads-twitter.com/; img-src 'self' *.com *.yahoo.com http://t.co/ dsum.casalemedia.com su.addthis.com s.thebrighttag.com image2.pubmatic.com ads.scorecardresearch.com t.mookie1.com x.bidswitch.net usermatch.krxd.net match.sharethrough.com cm.g.doubleclick.net ads.yahoo.com pixel.advertising.com insight.adsrvr.org www.facebook.com usassets.chat.pega.com firefly-chat-production.s3.amazonaws.com *.bazaarvoice.com https://www.dcu.org https://www.google.co.in https://www.google.com *.timevaluecalculators.com *.everesttech.net *.demdex.net *.omtrdc.net *.googleapis.com *.gstatic.com *.112.2o7.net https://stats.g.doubleclick.net https://www.calcxml.com/ www.google-analytics.com *.doubleclick.net/ https://bcbolt446c5271-a.akamaihd.net/ https://players.brightcove.net/ https://www.dcu.org/ data:; style-src 'self' 'unsafe-inline' *.cloudflare.com https://usuatassets.cobrowse.pega.com https://usassets.cobrowse.pega.com https://usefirefly.com https://dcu-mkt-stage1.campaign.adobe.com https://dcu.campaign.adobe.com https://www.calcxml.com/ https://tagmanager.google.com usassets.chat.pega.com *.timevaluecalculators.com https://fonts.googleapis.com/ *.googleapis.com *.bazaarvoice.com https://match.adsrvr.org https://match.prod.bidr.io https://dcu-dev-65.adobecqms.net/ https://dcu-qa-65.adobecqms.net/ https://dcu-stage-65.adobecqms.net/ https://stage.dcu.org/ *.dcu.org https://dculocator.wave2.io/ https://www.dcu.org/; font-src 'self' https://fonts.gstatic.com/ fonts.gstatic.com https://www.dcu.org/ data:; frame-src 'self' https://player.vimeo.com/ *.quantummetric.com https://dcu.secure.nonprofitsoapbox.com https://americasaves.org/ https://app.loanspq.com/ https://dcu.mortgagewebcenter.com/ https://apps.rps.ascensus.com/ https://forms.fivision.com/ *.doubleclick.net *.culookup.com *.dcu.org *.demdex.net https://dcu.demdex.net *.locatorsearch.com *.bazaarvoice.com https://www.fmsi-lts.com/DIG_WS https://fmsi-lts.com/ *.adobecqms.net http://cookies.onetrust.mgr.consensu.org/ stage.dcu.org https://stage.dcu.org/ https://dcu-stage-65.adobecqms.net/ http://dcu-stage-65.adobecqms.net/ https://dcu-dev-65.adobecqms.net/ https://dcu-qa-65.adobecqms.net/ https://dcu-stage.adobecqms.net/ *.dcu.org https://dcu-mkt-stage1.campaign.adobe.com https://dcu.campaign.adobe.com https://js-staging.poshdevelopment.com/ https://js.poshdevelopment.com https://api.poshdevelopment.com https://staging.poshdevelopment.com *.youtube.com https://dculocator.wave2.io/ https://www.dcu.org/ https://pixel.sitescout.com/ https://memchat.dcu-online.org/ *.qualtrics.com
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 8e6dce34fd223e0c9d89fd938d1784a2.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: O2I9k3PuKP9LsCfM131y9yKkzp8bUpUZMMXFvLL8tiaJDGErhopzHA==
cf-cache-status: MISS
expires: Sun, 04 Feb 2024 09:05:03 GMT
accept-ranges: bytes
server: cloudflare
cf-ray: 79423e08eaa7b529-OSL
X-Firefox-Spdy: h2
dcutest.com/content/dam/dcu/global/home/illustrations/DCU_ILLUS_LOC_HomePage_C08_FinTech_01.svg.svg
104.17.91.69200 OK 1.4 kB URL HTTP/2 dcutest.com/content/dam/dcu/global/home/illustrations/DCU_ILLUS_LOC_HomePage_C08_FinTech_01.svg.svg
IP 104.17.91.69:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (2579)
Hash 960b5eb94e34b35bff95366440df554c
1e1a7f5df25f26594c4f75e35cccd49e7fabc3a2
0548b9b7967ec6e8102a85bb5a3fdad708f2c91d8300aca32507d06e07fb55ab
Analyzer Verdict Alert openphish Digital Federal Credit Union
fortinet Phishing
GET /content/dam/dcu/global/home/illustrations/DCU_ILLUS_LOC_HomePage_C08_FinTech_01.svg.svg HTTP/1.1
Host: dcutest.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dcutest.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 09:05:03 GMT
content-type: image/svg+xml
content-length: 1418
x-dispatcher: dispatcher1useast1
x-vhost: publish
content-disposition: inline
x-content-type-options: nosniff
last-modified: Tue, 13 Aug 2019 20:48:00 GMT
etag: "c12-59005c18c8000-gzip"
content-encoding: gzip
cache-control: public, max-age=31536000
strict-transport-security: max-age=31536000; includeSubDomains
content-security-policy: default-src *.quantummetric.com 'unsafe-inline' 'unsafe-eval' 'self' blob:; worker-src blob:; child-src blob:; object-src 'self'; media-src 'self' blob: usassets.chat.pega.com firefly-chat-production.s3.amazonaws.com https://www.dcu.org https://manifest.prod.boltdns.net/ https://dcu-dev-65.adobecqms.net/ https://players.brightcove.net/ https://vjs.zencdn.net/ https://bcbolt446c5271-a.akamaihd.net/; script-src 'self' 'unsafe-inline' 'unsafe-eval' blob: https://usuat.cobrowse.pega.com/ https://usuatassets.cobrowse.pega.com https://player.vimeo.com/ https://memchat.dcu-online.org/ https://geolocation.onetrust.com https://www.google.com https://cdn.cookielaw.org https://js-staging.poshdevelopment.com/ https://js.poshdevelopment.com https://api.poshdevelopment.com https://staging.poshdevelopment.com *.quantummetric.com http://dfcumanagedservicesstageenvironment.112.2o7.net https://analytics.twitter.com/ *.ads-twitter.com https://us.cobrowse.pega.com https://usassets.cobrowse.pega.com *.steelhousemedia.com https://dcu-mkt-stage1.campaign.adobe.com https://dcu.campaign.adobe.com https://www.calcxml.com/ *.cloudflare.com https://googleads.g.doubleclick.net https://chat.usefirefly.com https://usefirefly.com https://connect.facebook.net www.google-analytics.com assets.adobedtm.com *.timevaluecalculators.com *.bazaarvoice.com *.iesnare.com https://ajax.googleapis.com/ *.googleapis.com *.dcuinsurance.com tagmanager.google.com www.googletagmanager.com https://www.google-analytics.com https://firefly-chat-production.s3.amazonaws.com http://www.googleadservices.com https://connect.facebook.net http://digitalfederalcreditunion.sc.omtrdc.net https://digitalfederalcreditunion.sc.omtrdc.net https://dcu-dev-65.adobecqms.net/ https://dcu-qa-65.adobecqms.net/ https://dcu-stage-65.adobecqms.net/ https://stage.dcu.org/ *.dcu.org https://dculocator.wave2.io/ https://snap.licdn.com https://bat.bing.com https://up.pixel.ad https://ssl.google-analytics.com/ https://www.dcu.org/ https://static.ads-twitter.com/ https://players.brightcove.net/ https://vjs.zencdn.net/ https://bcbolt446c5271-a.akamaihd.net/ https://widget.use1.chat.pega.digital/ *.qualtrics.com; connect-src 'self' *.ads-twitter.com *.quantummetric.com https://dcu-mkt-stage1.campaign.adobe.com https://dcu.campaign.adobe.com wss://usefirefly.com https://usefirefly.com * *.cloudflare.com https://www.calcxml.com/ *.dcu.org *.omtrdc.net *.demdex.net *.bazaarvoice.com wss://chat.usefirefly.com https://www.google-analytics.com https://www.dcuinsurance.com http://digitalfederalcreditunion.sc.omtrdc.net https://digitalfederalcreditunion.sc.omtrdc.net https://www.dcu.org/ https://static.ads-twitter.com/; img-src 'self' *.com *.yahoo.com http://t.co/ dsum.casalemedia.com su.addthis.com s.thebrighttag.com image2.pubmatic.com ads.scorecardresearch.com t.mookie1.com x.bidswitch.net usermatch.krxd.net match.sharethrough.com cm.g.doubleclick.net ads.yahoo.com pixel.advertising.com insight.adsrvr.org www.facebook.com usassets.chat.pega.com firefly-chat-production.s3.amazonaws.com *.bazaarvoice.com https://www.dcu.org https://www.google.co.in https://www.google.com *.timevaluecalculators.com *.everesttech.net *.demdex.net *.omtrdc.net *.googleapis.com *.gstatic.com *.112.2o7.net https://stats.g.doubleclick.net https://www.calcxml.com/ www.google-analytics.com *.doubleclick.net/ https://bcbolt446c5271-a.akamaihd.net/ https://players.brightcove.net/ https://www.dcu.org/ data:; style-src 'self' 'unsafe-inline' *.cloudflare.com https://usuatassets.cobrowse.pega.com https://usassets.cobrowse.pega.com https://usefirefly.com https://dcu-mkt-stage1.campaign.adobe.com https://dcu.campaign.adobe.com https://www.calcxml.com/ https://tagmanager.google.com usassets.chat.pega.com *.timevaluecalculators.com https://fonts.googleapis.com/ *.googleapis.com *.bazaarvoice.com https://match.adsrvr.org https://match.prod.bidr.io https://dcu-dev-65.adobecqms.net/ https://dcu-qa-65.adobecqms.net/ https://dcu-stage-65.adobecqms.net/ https://stage.dcu.org/ *.dcu.org https://dculocator.wave2.io/ https://www.dcu.org/; font-src 'self' https://fonts.gstatic.com/ fonts.gstatic.com https://www.dcu.org/ data:; frame-src 'self' https://player.vimeo.com/ *.quantummetric.com https://dcu.secure.nonprofitsoapbox.com https://americasaves.org/ https://app.loanspq.com/ https://dcu.mortgagewebcenter.com/ https://apps.rps.ascensus.com/ https://forms.fivision.com/ *.doubleclick.net *.culookup.com *.dcu.org *.demdex.net https://dcu.demdex.net *.locatorsearch.com *.bazaarvoice.com https://www.fmsi-lts.com/DIG_WS https://fmsi-lts.com/ *.adobecqms.net http://cookies.onetrust.mgr.consensu.org/ stage.dcu.org https://stage.dcu.org/ https://dcu-stage-65.adobecqms.net/ http://dcu-stage-65.adobecqms.net/ https://dcu-dev-65.adobecqms.net/ https://dcu-qa-65.adobecqms.net/ https://dcu-stage.adobecqms.net/ *.dcu.org https://dcu-mkt-stage1.campaign.adobe.com https://dcu.campaign.adobe.com https://js-staging.poshdevelopment.com/ https://js.poshdevelopment.com https://api.poshdevelopment.com https://staging.poshdevelopment.com *.youtube.com https://dculocator.wave2.io/ https://www.dcu.org/ https://pixel.sitescout.com/ https://memchat.dcu-online.org/ *.qualtrics.com
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 50584ad285d5f627ddebae74efdd0770.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: g1dyak9yHWo-MkNe8ce6sPm57xYntIUnrQ2oA2w2LB8p643SXdSQrw==
cf-cache-status: MISS
expires: Sun, 04 Feb 2024 09:05:03 GMT
accept-ranges: bytes
server: cloudflare
cf-ray: 79423e08eaa9b529-OSL
X-Firefox-Spdy: h2
dcutest.com/content/dam/dcu/global/home/illustrations/DCU_ILLUS_LOC_HomePage_C08_YourOpinion_01.svg.svg
104.17.91.69200 OK 1.1 kB URL HTTP/2 dcutest.com/content/dam/dcu/global/home/illustrations/DCU_ILLUS_LOC_HomePage_C08_YourOpinion_01.svg.svg
IP 104.17.91.69:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (1840)
Hash 870f059bd1c6c9e9032489ddd84f899f
21764cb30d7754106e3d3a981576ab1361f2b387
224a78a580c983c109b26beb1550abef97f32a5c8bb17262c085073e659a6944
Analyzer Verdict Alert openphish Digital Federal Credit Union
fortinet Phishing
GET /content/dam/dcu/global/home/illustrations/DCU_ILLUS_LOC_HomePage_C08_YourOpinion_01.svg.svg HTTP/1.1
Host: dcutest.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dcutest.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 09:05:03 GMT
content-type: image/svg+xml
content-length: 1086
x-dispatcher: dispatcher1useast1
x-vhost: publish
content-disposition: inline
x-content-type-options: nosniff
last-modified: Tue, 13 Aug 2019 20:47:59 GMT
etag: "93b-59005c17d3dc0-gzip"
content-encoding: gzip
cache-control: public, max-age=31536000
strict-transport-security: max-age=31536000; includeSubDomains
content-security-policy: default-src *.quantummetric.com 'unsafe-inline' 'unsafe-eval' 'self' blob:; worker-src blob:; child-src blob:; object-src 'self'; media-src 'self' blob: usassets.chat.pega.com firefly-chat-production.s3.amazonaws.com https://www.dcu.org https://manifest.prod.boltdns.net/ https://dcu-dev-65.adobecqms.net/ https://players.brightcove.net/ https://vjs.zencdn.net/ https://bcbolt446c5271-a.akamaihd.net/; script-src 'self' 'unsafe-inline' 'unsafe-eval' blob: https://usuat.cobrowse.pega.com/ https://usuatassets.cobrowse.pega.com https://player.vimeo.com/ https://memchat.dcu-online.org/ https://geolocation.onetrust.com https://www.google.com https://cdn.cookielaw.org https://js-staging.poshdevelopment.com/ https://js.poshdevelopment.com https://api.poshdevelopment.com https://staging.poshdevelopment.com *.quantummetric.com http://dfcumanagedservicesstageenvironment.112.2o7.net https://analytics.twitter.com/ *.ads-twitter.com https://us.cobrowse.pega.com https://usassets.cobrowse.pega.com *.steelhousemedia.com https://dcu-mkt-stage1.campaign.adobe.com https://dcu.campaign.adobe.com https://www.calcxml.com/ *.cloudflare.com https://googleads.g.doubleclick.net https://chat.usefirefly.com https://usefirefly.com https://connect.facebook.net www.google-analytics.com assets.adobedtm.com *.timevaluecalculators.com *.bazaarvoice.com *.iesnare.com https://ajax.googleapis.com/ *.googleapis.com *.dcuinsurance.com tagmanager.google.com www.googletagmanager.com https://www.google-analytics.com https://firefly-chat-production.s3.amazonaws.com http://www.googleadservices.com https://connect.facebook.net http://digitalfederalcreditunion.sc.omtrdc.net https://digitalfederalcreditunion.sc.omtrdc.net https://dcu-dev-65.adobecqms.net/ https://dcu-qa-65.adobecqms.net/ https://dcu-stage-65.adobecqms.net/ https://stage.dcu.org/ *.dcu.org https://dculocator.wave2.io/ https://snap.licdn.com https://bat.bing.com https://up.pixel.ad https://ssl.google-analytics.com/ https://www.dcu.org/ https://static.ads-twitter.com/ https://players.brightcove.net/ https://vjs.zencdn.net/ https://bcbolt446c5271-a.akamaihd.net/ https://widget.use1.chat.pega.digital/ *.qualtrics.com; connect-src 'self' *.ads-twitter.com *.quantummetric.com https://dcu-mkt-stage1.campaign.adobe.com https://dcu.campaign.adobe.com wss://usefirefly.com https://usefirefly.com * *.cloudflare.com https://www.calcxml.com/ *.dcu.org *.omtrdc.net *.demdex.net *.bazaarvoice.com wss://chat.usefirefly.com https://www.google-analytics.com https://www.dcuinsurance.com http://digitalfederalcreditunion.sc.omtrdc.net https://digitalfederalcreditunion.sc.omtrdc.net https://www.dcu.org/ https://static.ads-twitter.com/; img-src 'self' *.com *.yahoo.com http://t.co/ dsum.casalemedia.com su.addthis.com s.thebrighttag.com image2.pubmatic.com ads.scorecardresearch.com t.mookie1.com x.bidswitch.net usermatch.krxd.net match.sharethrough.com cm.g.doubleclick.net ads.yahoo.com pixel.advertising.com insight.adsrvr.org www.facebook.com usassets.chat.pega.com firefly-chat-production.s3.amazonaws.com *.bazaarvoice.com https://www.dcu.org https://www.google.co.in https://www.google.com *.timevaluecalculators.com *.everesttech.net *.demdex.net *.omtrdc.net *.googleapis.com *.gstatic.com *.112.2o7.net https://stats.g.doubleclick.net https://www.calcxml.com/ www.google-analytics.com *.doubleclick.net/ https://bcbolt446c5271-a.akamaihd.net/ https://players.brightcove.net/ https://www.dcu.org/ data:; style-src 'self' 'unsafe-inline' *.cloudflare.com https://usuatassets.cobrowse.pega.com https://usassets.cobrowse.pega.com https://usefirefly.com https://dcu-mkt-stage1.campaign.adobe.com https://dcu.campaign.adobe.com https://www.calcxml.com/ https://tagmanager.google.com usassets.chat.pega.com *.timevaluecalculators.com https://fonts.googleapis.com/ *.googleapis.com *.bazaarvoice.com https://match.adsrvr.org https://match.prod.bidr.io https://dcu-dev-65.adobecqms.net/ https://dcu-qa-65.adobecqms.net/ https://dcu-stage-65.adobecqms.net/ https://stage.dcu.org/ *.dcu.org https://dculocator.wave2.io/ https://www.dcu.org/; font-src 'self' https://fonts.gstatic.com/ fonts.gstatic.com https://www.dcu.org/ data:; frame-src 'self' https://player.vimeo.com/ *.quantummetric.com https://dcu.secure.nonprofitsoapbox.com https://americasaves.org/ https://app.loanspq.com/ https://dcu.mortgagewebcenter.com/ https://apps.rps.ascensus.com/ https://forms.fivision.com/ *.doubleclick.net *.culookup.com *.dcu.org *.demdex.net https://dcu.demdex.net *.locatorsearch.com *.bazaarvoice.com https://www.fmsi-lts.com/DIG_WS https://fmsi-lts.com/ *.adobecqms.net http://cookies.onetrust.mgr.consensu.org/ stage.dcu.org https://stage.dcu.org/ https://dcu-stage-65.adobecqms.net/ http://dcu-stage-65.adobecqms.net/ https://dcu-dev-65.adobecqms.net/ https://dcu-qa-65.adobecqms.net/ https://dcu-stage.adobecqms.net/ *.dcu.org https://dcu-mkt-stage1.campaign.adobe.com https://dcu.campaign.adobe.com https://js-staging.poshdevelopment.com/ https://js.poshdevelopment.com https://api.poshdevelopment.com https://staging.poshdevelopment.com *.youtube.com https://dculocator.wave2.io/ https://www.dcu.org/ https://pixel.sitescout.com/ https://memchat.dcu-online.org/ *.qualtrics.com
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 f46f7100ad6fc83a021f62212f945830.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: q2THXHhPjIRKDwBlA-TkL-kLyzvuGjt6-fRwDU_IF5kln89VLAHf6g==
cf-cache-status: MISS
expires: Sun, 04 Feb 2024 09:05:03 GMT
accept-ranges: bytes
server: cloudflare
cf-ray: 79423e08eaa5b529-OSL
X-Firefox-Spdy: h2
dcutest.com/content/dam/dcu/global/home/images/DCU_IMG_LOC_HomePage_C03_292_440_Desktop_MegaNavLearn_01.jpg
104.17.91.69200 OK 36 kB URL HTTP/2 dcutest.com/content/dam/dcu/global/home/images/DCU_IMG_LOC_HomePage_C03_292_440_Desktop_MegaNavLearn_01.jpg
IP 104.17.91.69:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=1, software=Adobe Photoshop CC 2019 (Macintosh)\012- GLS_BINARY_LSB_FIRST], baseline, precision 8, 440x292, components 3\012- data
Hash 7421f489aa4c64f5407f5ac8394b3b37
fb7906eb70324ef630c668b97d1e04d3eed25a88
0425a61674698dabd616971a8990cf6249c12192c33d4b974a8eb73f9ca2de99
Analyzer Verdict Alert openphish Digital Federal Credit Union
GET /content/dam/dcu/global/home/images/DCU_IMG_LOC_HomePage_C03_292_440_Desktop_MegaNavLearn_01.jpg HTTP/1.1
Host: dcutest.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dcutest.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 09:05:03 GMT
content-type: image/jpeg
content-length: 36348
x-dispatcher: dispatcher2useast1
x-vhost: publish
content-disposition: inline
x-content-type-options: nosniff
last-modified: Tue, 13 Aug 2019 20:48:21 GMT
etag: "8dfc-59005c2ccef40"
cache-control: public, max-age=31536000
strict-transport-security: max-age=31536000; includeSubDomains
content-security-policy: default-src *.quantummetric.com 'unsafe-inline' 'unsafe-eval' 'self' blob:; worker-src blob:; child-src blob:; object-src 'self'; media-src 'self' blob: usassets.chat.pega.com firefly-chat-production.s3.amazonaws.com https://www.dcu.org https://manifest.prod.boltdns.net/ https://dcu-dev-65.adobecqms.net/ https://players.brightcove.net/ https://vjs.zencdn.net/ https://bcbolt446c5271-a.akamaihd.net/; script-src 'self' 'unsafe-inline' 'unsafe-eval' blob: https://usuat.cobrowse.pega.com/ https://usuatassets.cobrowse.pega.com https://player.vimeo.com/ https://memchat.dcu-online.org/ https://geolocation.onetrust.com https://www.google.com https://cdn.cookielaw.org https://js-staging.poshdevelopment.com/ https://js.poshdevelopment.com https://api.poshdevelopment.com https://staging.poshdevelopment.com *.quantummetric.com http://dfcumanagedservicesstageenvironment.112.2o7.net https://analytics.twitter.com/ *.ads-twitter.com https://us.cobrowse.pega.com https://usassets.cobrowse.pega.com *.steelhousemedia.com https://dcu-mkt-stage1.campaign.adobe.com https://dcu.campaign.adobe.com https://www.calcxml.com/ *.cloudflare.com https://googleads.g.doubleclick.net https://chat.usefirefly.com https://usefirefly.com https://connect.facebook.net www.google-analytics.com assets.adobedtm.com *.timevaluecalculators.com *.bazaarvoice.com *.iesnare.com https://ajax.googleapis.com/ *.googleapis.com *.dcuinsurance.com tagmanager.google.com www.googletagmanager.com https://www.google-analytics.com https://firefly-chat-production.s3.amazonaws.com http://www.googleadservices.com https://connect.facebook.net http://digitalfederalcreditunion.sc.omtrdc.net https://digitalfederalcreditunion.sc.omtrdc.net https://dcu-dev-65.adobecqms.net/ https://dcu-qa-65.adobecqms.net/ https://dcu-stage-65.adobecqms.net/ https://stage.dcu.org/ *.dcu.org https://dculocator.wave2.io/ https://snap.licdn.com https://bat.bing.com https://up.pixel.ad https://ssl.google-analytics.com/ https://www.dcu.org/ https://static.ads-twitter.com/ https://players.brightcove.net/ https://vjs.zencdn.net/ https://bcbolt446c5271-a.akamaihd.net/ https://widget.use1.chat.pega.digital/ *.qualtrics.com; connect-src 'self' *.ads-twitter.com *.quantummetric.com https://dcu-mkt-stage1.campaign.adobe.com https://dcu.campaign.adobe.com wss://usefirefly.com https://usefirefly.com * *.cloudflare.com https://www.calcxml.com/ *.dcu.org *.omtrdc.net *.demdex.net *.bazaarvoice.com wss://chat.usefirefly.com https://www.google-analytics.com https://www.dcuinsurance.com http://digitalfederalcreditunion.sc.omtrdc.net https://digitalfederalcreditunion.sc.omtrdc.net https://www.dcu.org/ https://static.ads-twitter.com/; img-src 'self' *.com *.yahoo.com http://t.co/ dsum.casalemedia.com su.addthis.com s.thebrighttag.com image2.pubmatic.com ads.scorecardresearch.com t.mookie1.com x.bidswitch.net usermatch.krxd.net match.sharethrough.com cm.g.doubleclick.net ads.yahoo.com pixel.advertising.com insight.adsrvr.org www.facebook.com usassets.chat.pega.com firefly-chat-production.s3.amazonaws.com *.bazaarvoice.com https://www.dcu.org https://www.google.co.in https://www.google.com *.timevaluecalculators.com *.everesttech.net *.demdex.net *.omtrdc.net *.googleapis.com *.gstatic.com *.112.2o7.net https://stats.g.doubleclick.net https://www.calcxml.com/ www.google-analytics.com *.doubleclick.net/ https://bcbolt446c5271-a.akamaihd.net/ https://players.brightcove.net/ https://www.dcu.org/ data:; style-src 'self' 'unsafe-inline' *.cloudflare.com https://usuatassets.cobrowse.pega.com https://usassets.cobrowse.pega.com https://usefirefly.com https://dcu-mkt-stage1.campaign.adobe.com https://dcu.campaign.adobe.com https://www.calcxml.com/ https://tagmanager.google.com usassets.chat.pega.com *.timevaluecalculators.com https://fonts.googleapis.com/ *.googleapis.com *.bazaarvoice.com https://match.adsrvr.org https://match.prod.bidr.io https://dcu-dev-65.adobecqms.net/ https://dcu-qa-65.adobecqms.net/ https://dcu-stage-65.adobecqms.net/ https://stage.dcu.org/ *.dcu.org https://dculocator.wave2.io/ https://www.dcu.org/; font-src 'self' https://fonts.gstatic.com/ fonts.gstatic.com https://www.dcu.org/ data:; frame-src 'self' https://player.vimeo.com/ *.quantummetric.com https://dcu.secure.nonprofitsoapbox.com https://americasaves.org/ https://app.loanspq.com/ https://dcu.mortgagewebcenter.com/ https://apps.rps.ascensus.com/ https://forms.fivision.com/ *.doubleclick.net *.culookup.com *.dcu.org *.demdex.net https://dcu.demdex.net *.locatorsearch.com *.bazaarvoice.com https://www.fmsi-lts.com/DIG_WS https://fmsi-lts.com/ *.adobecqms.net http://cookies.onetrust.mgr.consensu.org/ stage.dcu.org https://stage.dcu.org/ https://dcu-stage-65.adobecqms.net/ http://dcu-stage-65.adobecqms.net/ https://dcu-dev-65.adobecqms.net/ https://dcu-qa-65.adobecqms.net/ https://dcu-stage.adobecqms.net/ *.dcu.org https://dcu-mkt-stage1.campaign.adobe.com https://dcu.campaign.adobe.com https://js-staging.poshdevelopment.com/ https://js.poshdevelopment.com https://api.poshdevelopment.com https://staging.poshdevelopment.com *.youtube.com https://dculocator.wave2.io/ https://www.dcu.org/ https://pixel.sitescout.com/ https://memchat.dcu-online.org/ *.qualtrics.com
x-cache: Hit from cloudfront
via: 1.1 e49f22f18c16784c0f42291e768d1daa.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: GkvETLEcWblIB8HwqggqMYptT8n0dqy3EdVVbdQnubEAf8Nufr6tIw==
cf-cache-status: MISS
expires: Sun, 04 Feb 2024 09:05:03 GMT
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 79423e08da84b529-OSL
X-Firefox-Spdy: h2
dcutest.com/content/dam/dcu/global/generic/logos/DCU_LOG_GLO_HomePage_C02_EqualHousing_02.svg
104.17.91.69200 OK 1.6 kB URL HTTP/2 dcutest.com/content/dam/dcu/global/generic/logos/DCU_LOG_GLO_HomePage_C02_EqualHousing_02.svg
IP 104.17.91.69:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 2968ab1212a1ff157e5ca314c1aa54d3
f257a8a671284e5e4fb6be5bc20456abd76d3270
cb061b760018a2935c3ff66382111cf3800b8c26f6749346fc7276e8b5188552
Analyzer Verdict Alert openphish Digital Federal Credit Union
fortinet Phishing
GET /content/dam/dcu/global/generic/logos/DCU_LOG_GLO_HomePage_C02_EqualHousing_02.svg HTTP/1.1
Host: dcutest.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dcutest.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 09:05:03 GMT
content-type: image/svg+xml
content-length: 1641
x-dispatcher: dispatcher1useast1
x-vhost: publish
content-disposition: inline
x-content-type-options: nosniff
last-modified: Fri, 16 Aug 2019 11:02:11 GMT
etag: "de9-59039ec0772c0-gzip"
content-encoding: gzip
cache-control: public, max-age=31536000
strict-transport-security: max-age=31536000; includeSubDomains
content-security-policy: default-src *.quantummetric.com 'unsafe-inline' 'unsafe-eval' 'self' blob:; worker-src blob:; child-src blob:; object-src 'self'; media-src 'self' blob: usassets.chat.pega.com firefly-chat-production.s3.amazonaws.com https://www.dcu.org https://manifest.prod.boltdns.net/ https://dcu-dev-65.adobecqms.net/ https://players.brightcove.net/ https://vjs.zencdn.net/ https://bcbolt446c5271-a.akamaihd.net/; script-src 'self' 'unsafe-inline' 'unsafe-eval' blob: https://usuat.cobrowse.pega.com/ https://usuatassets.cobrowse.pega.com https://player.vimeo.com/ https://memchat.dcu-online.org/ https://geolocation.onetrust.com https://www.google.com https://cdn.cookielaw.org https://js-staging.poshdevelopment.com/ https://js.poshdevelopment.com https://api.poshdevelopment.com https://staging.poshdevelopment.com *.quantummetric.com http://dfcumanagedservicesstageenvironment.112.2o7.net https://analytics.twitter.com/ *.ads-twitter.com https://us.cobrowse.pega.com https://usassets.cobrowse.pega.com *.steelhousemedia.com https://dcu-mkt-stage1.campaign.adobe.com https://dcu.campaign.adobe.com https://www.calcxml.com/ *.cloudflare.com https://googleads.g.doubleclick.net https://chat.usefirefly.com https://usefirefly.com https://connect.facebook.net www.google-analytics.com assets.adobedtm.com *.timevaluecalculators.com *.bazaarvoice.com *.iesnare.com https://ajax.googleapis.com/ *.googleapis.com *.dcuinsurance.com tagmanager.google.com www.googletagmanager.com https://www.google-analytics.com https://firefly-chat-production.s3.amazonaws.com http://www.googleadservices.com https://connect.facebook.net http://digitalfederalcreditunion.sc.omtrdc.net https://digitalfederalcreditunion.sc.omtrdc.net https://dcu-dev-65.adobecqms.net/ https://dcu-qa-65.adobecqms.net/ https://dcu-stage-65.adobecqms.net/ https://stage.dcu.org/ *.dcu.org https://dculocator.wave2.io/ https://snap.licdn.com https://bat.bing.com https://up.pixel.ad https://ssl.google-analytics.com/ https://www.dcu.org/ https://static.ads-twitter.com/ https://players.brightcove.net/ https://vjs.zencdn.net/ https://bcbolt446c5271-a.akamaihd.net/ https://widget.use1.chat.pega.digital/ *.qualtrics.com; connect-src 'self' *.ads-twitter.com *.quantummetric.com https://dcu-mkt-stage1.campaign.adobe.com https://dcu.campaign.adobe.com wss://usefirefly.com https://usefirefly.com * *.cloudflare.com https://www.calcxml.com/ *.dcu.org *.omtrdc.net *.demdex.net *.bazaarvoice.com wss://chat.usefirefly.com https://www.google-analytics.com https://www.dcuinsurance.com http://digitalfederalcreditunion.sc.omtrdc.net https://digitalfederalcreditunion.sc.omtrdc.net https://www.dcu.org/ https://static.ads-twitter.com/; img-src 'self' *.com *.yahoo.com http://t.co/ dsum.casalemedia.com su.addthis.com s.thebrighttag.com image2.pubmatic.com ads.scorecardresearch.com t.mookie1.com x.bidswitch.net usermatch.krxd.net match.sharethrough.com cm.g.doubleclick.net ads.yahoo.com pixel.advertising.com insight.adsrvr.org www.facebook.com usassets.chat.pega.com firefly-chat-production.s3.amazonaws.com *.bazaarvoice.com https://www.dcu.org https://www.google.co.in https://www.google.com *.timevaluecalculators.com *.everesttech.net *.demdex.net *.omtrdc.net *.googleapis.com *.gstatic.com *.112.2o7.net https://stats.g.doubleclick.net https://www.calcxml.com/ www.google-analytics.com *.doubleclick.net/ https://bcbolt446c5271-a.akamaihd.net/ https://players.brightcove.net/ https://www.dcu.org/ data:; style-src 'self' 'unsafe-inline' *.cloudflare.com https://usuatassets.cobrowse.pega.com https://usassets.cobrowse.pega.com https://usefirefly.com https://dcu-mkt-stage1.campaign.adobe.com https://dcu.campaign.adobe.com https://www.calcxml.com/ https://tagmanager.google.com usassets.chat.pega.com *.timevaluecalculators.com https://fonts.googleapis.com/ *.googleapis.com *.bazaarvoice.com https://match.adsrvr.org https://match.prod.bidr.io https://dcu-dev-65.adobecqms.net/ https://dcu-qa-65.adobecqms.net/ https://dcu-stage-65.adobecqms.net/ https://stage.dcu.org/ *.dcu.org https://dculocator.wave2.io/ https://www.dcu.org/; font-src 'self' https://fonts.gstatic.com/ fonts.gstatic.com https://www.dcu.org/ data:; frame-src 'self' https://player.vimeo.com/ *.quantummetric.com https://dcu.secure.nonprofitsoapbox.com https://americasaves.org/ https://app.loanspq.com/ https://dcu.mortgagewebcenter.com/ https://apps.rps.ascensus.com/ https://forms.fivision.com/ *.doubleclick.net *.culookup.com *.dcu.org *.demdex.net https://dcu.demdex.net *.locatorsearch.com *.bazaarvoice.com https://www.fmsi-lts.com/DIG_WS https://fmsi-lts.com/ *.adobecqms.net http://cookies.onetrust.mgr.consensu.org/ stage.dcu.org https://stage.dcu.org/ https://dcu-stage-65.adobecqms.net/ http://dcu-stage-65.adobecqms.net/ https://dcu-dev-65.adobecqms.net/ https://dcu-qa-65.adobecqms.net/ https://dcu-stage.adobecqms.net/ *.dcu.org https://dcu-mkt-stage1.campaign.adobe.com https://dcu.campaign.adobe.com https://js-staging.poshdevelopment.com/ https://js.poshdevelopment.com https://api.poshdevelopment.com https://staging.poshdevelopment.com *.youtube.com https://dculocator.wave2.io/ https://www.dcu.org/ https://pixel.sitescout.com/ https://memchat.dcu-online.org/ *.qualtrics.com
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 185768229530368be94556dcab1c486a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: wYU2GDZTq6CAgigQkgf4Lzh7hIJFVk4nx9kHOpec1x06B_Kjb_4fSg==
cf-cache-status: MISS
expires: Sun, 04 Feb 2024 09:05:03 GMT
accept-ranges: bytes
server: cloudflare
cf-ray: 79423e08fabfb529-OSL
X-Firefox-Spdy: h2
dcutest.com/etc.clientlibs/dcu/clientlibs/clientlib-site/resources/images/svg/DCUGreen.svg
104.17.91.69200 OK 2.6 kB URL HTTP/2 dcutest.com/etc.clientlibs/dcu/clientlibs/clientlib-site/resources/images/svg/DCUGreen.svg
IP 104.17.91.69:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (5511)
Hash 0ab6312e007f4585a5ffa7a970aa11ea
96517db50231089403dadb8be5592d23dab567dc
d20b6c800c1576be4510d2dfebc7c1ac4396a54d8d95067cd30eac5e951902be
Analyzer Verdict Alert openphish Digital Federal Credit Union
fortinet Phishing
GET /etc.clientlibs/dcu/clientlibs/clientlib-site/resources/images/svg/DCUGreen.svg HTTP/1.1
Host: dcutest.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dcutest.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 09:05:03 GMT
content-type: image/svg+xml
content-length: 2632
x-dispatcher: dispatcher1useast1
x-vhost: publish
cache-control: public, max-age=31536000
x-content-type-options: nosniff
last-modified: Fri, 22 Feb 2019 16:55:19 GMT
etag: "1747-5827e74b40bc0-gzip"
content-encoding: gzip
strict-transport-security: max-age=31536000; includeSubDomains
content-security-policy: default-src *.quantummetric.com 'unsafe-inline' 'unsafe-eval' 'self' blob:; worker-src blob:; child-src blob:; object-src 'self'; media-src 'self' blob: usassets.chat.pega.com firefly-chat-production.s3.amazonaws.com https://www.dcu.org https://manifest.prod.boltdns.net/ https://dcu-dev-65.adobecqms.net/ https://players.brightcove.net/ https://vjs.zencdn.net/ https://bcbolt446c5271-a.akamaihd.net/; script-src 'self' 'unsafe-inline' 'unsafe-eval' blob: https://usuat.cobrowse.pega.com/ https://usuatassets.cobrowse.pega.com https://player.vimeo.com/ https://memchat.dcu-online.org/ https://geolocation.onetrust.com https://www.google.com https://cdn.cookielaw.org https://js-staging.poshdevelopment.com/ https://js.poshdevelopment.com https://api.poshdevelopment.com https://staging.poshdevelopment.com *.quantummetric.com http://dfcumanagedservicesstageenvironment.112.2o7.net https://analytics.twitter.com/ *.ads-twitter.com https://us.cobrowse.pega.com https://usassets.cobrowse.pega.com *.steelhousemedia.com https://dcu-mkt-stage1.campaign.adobe.com https://dcu.campaign.adobe.com https://www.calcxml.com/ *.cloudflare.com https://googleads.g.doubleclick.net https://chat.usefirefly.com https://usefirefly.com https://connect.facebook.net www.google-analytics.com assets.adobedtm.com *.timevaluecalculators.com *.bazaarvoice.com *.iesnare.com https://ajax.googleapis.com/ *.googleapis.com *.dcuinsurance.com tagmanager.google.com www.googletagmanager.com https://www.google-analytics.com https://firefly-chat-production.s3.amazonaws.com http://www.googleadservices.com https://connect.facebook.net http://digitalfederalcreditunion.sc.omtrdc.net https://digitalfederalcreditunion.sc.omtrdc.net https://dcu-dev-65.adobecqms.net/ https://dcu-qa-65.adobecqms.net/ https://dcu-stage-65.adobecqms.net/ https://stage.dcu.org/ *.dcu.org https://dculocator.wave2.io/ https://snap.licdn.com https://bat.bing.com https://up.pixel.ad https://ssl.google-analytics.com/ https://www.dcu.org/ https://static.ads-twitter.com/ https://players.brightcove.net/ https://vjs.zencdn.net/ https://bcbolt446c5271-a.akamaihd.net/ https://widget.use1.chat.pega.digital/ *.qualtrics.com; connect-src 'self' *.ads-twitter.com *.quantummetric.com https://dcu-mkt-stage1.campaign.adobe.com https://dcu.campaign.adobe.com wss://usefirefly.com https://usefirefly.com * *.cloudflare.com https://www.calcxml.com/ *.dcu.org *.omtrdc.net *.demdex.net *.bazaarvoice.com wss://chat.usefirefly.com https://www.google-analytics.com https://www.dcuinsurance.com http://digitalfederalcreditunion.sc.omtrdc.net https://digitalfederalcreditunion.sc.omtrdc.net https://www.dcu.org/ https://static.ads-twitter.com/; img-src 'self' *.com *.yahoo.com http://t.co/ dsum.casalemedia.com su.addthis.com s.thebrighttag.com image2.pubmatic.com ads.scorecardresearch.com t.mookie1.com x.bidswitch.net usermatch.krxd.net match.sharethrough.com cm.g.doubleclick.net ads.yahoo.com pixel.advertising.com insight.adsrvr.org www.facebook.com usassets.chat.pega.com firefly-chat-production.s3.amazonaws.com *.bazaarvoice.com https://www.dcu.org https://www.google.co.in https://www.google.com *.timevaluecalculators.com *.everesttech.net *.demdex.net *.omtrdc.net *.googleapis.com *.gstatic.com *.112.2o7.net https://stats.g.doubleclick.net https://www.calcxml.com/ www.google-analytics.com *.doubleclick.net/ https://bcbolt446c5271-a.akamaihd.net/ https://players.brightcove.net/ https://www.dcu.org/ data:; style-src 'self' 'unsafe-inline' *.cloudflare.com https://usuatassets.cobrowse.pega.com https://usassets.cobrowse.pega.com https://usefirefly.com https://dcu-mkt-stage1.campaign.adobe.com https://dcu.campaign.adobe.com https://www.calcxml.com/ https://tagmanager.google.com usassets.chat.pega.com *.timevaluecalculators.com https://fonts.googleapis.com/ *.googleapis.com *.bazaarvoice.com https://match.adsrvr.org https://match.prod.bidr.io https://dcu-dev-65.adobecqms.net/ https://dcu-qa-65.adobecqms.net/ https://dcu-stage-65.adobecqms.net/ https://stage.dcu.org/ *.dcu.org https://dculocator.wave2.io/ https://www.dcu.org/; font-src 'self' https://fonts.gstatic.com/ fonts.gstatic.com https://www.dcu.org/ data:; frame-src 'self' https://player.vimeo.com/ *.quantummetric.com https://dcu.secure.nonprofitsoapbox.com https://americasaves.org/ https://app.loanspq.com/ https://dcu.mortgagewebcenter.com/ https://apps.rps.ascensus.com/ https://forms.fivision.com/ *.doubleclick.net *.culookup.com *.dcu.org *.demdex.net https://dcu.demdex.net *.locatorsearch.com *.bazaarvoice.com https://www.fmsi-lts.com/DIG_WS https://fmsi-lts.com/ *.adobecqms.net http://cookies.onetrust.mgr.consensu.org/ stage.dcu.org https://stage.dcu.org/ https://dcu-stage-65.adobecqms.net/ http://dcu-stage-65.adobecqms.net/ https://dcu-dev-65.adobecqms.net/ https://dcu-qa-65.adobecqms.net/ https://dcu-stage.adobecqms.net/ *.dcu.org https://dcu-mkt-stage1.campaign.adobe.com https://dcu.campaign.adobe.com https://js-staging.poshdevelopment.com/ https://js.poshdevelopment.com https://api.poshdevelopment.com https://staging.poshdevelopment.com *.youtube.com https://dculocator.wave2.io/ https://www.dcu.org/ https://pixel.sitescout.com/ https://memchat.dcu-online.org/ *.qualtrics.com
content-disposition: inline
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 6cb1d4b545e7beb4ead790454f4807c6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 6xlPgVm31_g0JkTUBmPDN4ZHD6-lhH4G8v9jSdLXFSXFiKx8tvjAfA==
cf-cache-status: MISS
expires: Sun, 04 Feb 2024 09:05:03 GMT
accept-ranges: bytes
server: cloudflare
cf-ray: 79423e08da83b529-OSL
X-Firefox-Spdy: h2
dcutest.com/content/dam/dcu/global/generic/logos/DCU_LOG_GLO_HomePage_C02_GooglePlaystore_01.svg
104.17.91.69200 OK 18 kB URL HTTP/2 dcutest.com/content/dam/dcu/global/generic/logos/DCU_LOG_GLO_HomePage_C02_GooglePlaystore_01.svg
IP 104.17.91.69:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (23196)
Hash c5d64d91e59d980f715c800ee3f2af42
29f4bf8c6a32795f34d587c569afd4027895ca39
03113dbf3e2b4c248f5a8fc712d7a7ddbf6a2ece8d9340c541793699a8c9722c
Analyzer Verdict Alert openphish Digital Federal Credit Union
fortinet Phishing
GET /content/dam/dcu/global/generic/logos/DCU_LOG_GLO_HomePage_C02_GooglePlaystore_01.svg HTTP/1.1
Host: dcutest.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dcutest.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 09:05:03 GMT
content-type: image/svg+xml
content-length: 17567
x-dispatcher: dispatcher2useast1
x-vhost: publish
content-disposition: inline
x-content-type-options: nosniff
last-modified: Tue, 13 Aug 2019 20:50:13 GMT
etag: "5d5d-59005c979eb40-gzip"
content-encoding: gzip
cache-control: public, max-age=31536000
strict-transport-security: max-age=31536000; includeSubDomains
content-security-policy: default-src *.quantummetric.com 'unsafe-inline' 'unsafe-eval' 'self' blob:; worker-src blob:; child-src blob:; object-src 'self'; media-src 'self' blob: usassets.chat.pega.com firefly-chat-production.s3.amazonaws.com https://www.dcu.org https://manifest.prod.boltdns.net/ https://dcu-dev-65.adobecqms.net/ https://players.brightcove.net/ https://vjs.zencdn.net/ https://bcbolt446c5271-a.akamaihd.net/; script-src 'self' 'unsafe-inline' 'unsafe-eval' blob: https://usuat.cobrowse.pega.com/ https://usuatassets.cobrowse.pega.com https://player.vimeo.com/ https://memchat.dcu-online.org/ https://geolocation.onetrust.com https://www.google.com https://cdn.cookielaw.org https://js-staging.poshdevelopment.com/ https://js.poshdevelopment.com https://api.poshdevelopment.com https://staging.poshdevelopment.com *.quantummetric.com http://dfcumanagedservicesstageenvironment.112.2o7.net https://analytics.twitter.com/ *.ads-twitter.com https://us.cobrowse.pega.com https://usassets.cobrowse.pega.com *.steelhousemedia.com https://dcu-mkt-stage1.campaign.adobe.com https://dcu.campaign.adobe.com https://www.calcxml.com/ *.cloudflare.com https://googleads.g.doubleclick.net https://chat.usefirefly.com https://usefirefly.com https://connect.facebook.net www.google-analytics.com assets.adobedtm.com *.timevaluecalculators.com *.bazaarvoice.com *.iesnare.com https://ajax.googleapis.com/ *.googleapis.com *.dcuinsurance.com tagmanager.google.com www.googletagmanager.com https://www.google-analytics.com https://firefly-chat-production.s3.amazonaws.com http://www.googleadservices.com https://connect.facebook.net http://digitalfederalcreditunion.sc.omtrdc.net https://digitalfederalcreditunion.sc.omtrdc.net https://dcu-dev-65.adobecqms.net/ https://dcu-qa-65.adobecqms.net/ https://dcu-stage-65.adobecqms.net/ https://stage.dcu.org/ *.dcu.org https://dculocator.wave2.io/ https://snap.licdn.com https://bat.bing.com https://up.pixel.ad https://ssl.google-analytics.com/ https://www.dcu.org/ https://static.ads-twitter.com/ https://players.brightcove.net/ https://vjs.zencdn.net/ https://bcbolt446c5271-a.akamaihd.net/ https://widget.use1.chat.pega.digital/ *.qualtrics.com; connect-src 'self' *.ads-twitter.com *.quantummetric.com https://dcu-mkt-stage1.campaign.adobe.com https://dcu.campaign.adobe.com wss://usefirefly.com https://usefirefly.com * *.cloudflare.com https://www.calcxml.com/ *.dcu.org *.omtrdc.net *.demdex.net *.bazaarvoice.com wss://chat.usefirefly.com https://www.google-analytics.com https://www.dcuinsurance.com http://digitalfederalcreditunion.sc.omtrdc.net https://digitalfederalcreditunion.sc.omtrdc.net https://www.dcu.org/ https://static.ads-twitter.com/; img-src 'self' *.com *.yahoo.com http://t.co/ dsum.casalemedia.com su.addthis.com s.thebrighttag.com image2.pubmatic.com ads.scorecardresearch.com t.mookie1.com x.bidswitch.net usermatch.krxd.net match.sharethrough.com cm.g.doubleclick.net ads.yahoo.com pixel.advertising.com insight.adsrvr.org www.facebook.com usassets.chat.pega.com firefly-chat-production.s3.amazonaws.com *.bazaarvoice.com https://www.dcu.org https://www.google.co.in https://www.google.com *.timevaluecalculators.com *.everesttech.net *.demdex.net *.omtrdc.net *.googleapis.com *.gstatic.com *.112.2o7.net https://stats.g.doubleclick.net https://www.calcxml.com/ www.google-analytics.com *.doubleclick.net/ https://bcbolt446c5271-a.akamaihd.net/ https://players.brightcove.net/ https://www.dcu.org/ data:; style-src 'self' 'unsafe-inline' *.cloudflare.com https://usuatassets.cobrowse.pega.com https://usassets.cobrowse.pega.com https://usefirefly.com https://dcu-mkt-stage1.campaign.adobe.com https://dcu.campaign.adobe.com https://www.calcxml.com/ https://tagmanager.google.com usassets.chat.pega.com *.timevaluecalculators.com https://fonts.googleapis.com/ *.googleapis.com *.bazaarvoice.com https://match.adsrvr.org https://match.prod.bidr.io https://dcu-dev-65.adobecqms.net/ https://dcu-qa-65.adobecqms.net/ https://dcu-stage-65.adobecqms.net/ https://stage.dcu.org/ *.dcu.org https://dculocator.wave2.io/ https://www.dcu.org/; font-src 'self' https://fonts.gstatic.com/ fonts.gstatic.com https://www.dcu.org/ data:; frame-src 'self' https://player.vimeo.com/ *.quantummetric.com https://dcu.secure.nonprofitsoapbox.com https://americasaves.org/ https://app.loanspq.com/ https://dcu.mortgagewebcenter.com/ https://apps.rps.ascensus.com/ https://forms.fivision.com/ *.doubleclick.net *.culookup.com *.dcu.org *.demdex.net https://dcu.demdex.net *.locatorsearch.com *.bazaarvoice.com https://www.fmsi-lts.com/DIG_WS https://fmsi-lts.com/ *.adobecqms.net http://cookies.onetrust.mgr.consensu.org/ stage.dcu.org https://stage.dcu.org/ https://dcu-stage-65.adobecqms.net/ http://dcu-stage-65.adobecqms.net/ https://dcu-dev-65.adobecqms.net/ https://dcu-qa-65.adobecqms.net/ https://dcu-stage.adobecqms.net/ *.dcu.org https://dcu-mkt-stage1.campaign.adobe.com https://dcu.campaign.adobe.com https://js-staging.poshdevelopment.com/ https://js.poshdevelopment.com https://api.poshdevelopment.com https://staging.poshdevelopment.com *.youtube.com https://dculocator.wave2.io/ https://www.dcu.org/ https://pixel.sitescout.com/ https://memchat.dcu-online.org/ *.qualtrics.com
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 71c98156ae29b36a903974f9dd2568f8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: LBOiid-b_KZOgTDULBIuINCY4v7-eh_NhrYQ6JzXDHUeLKnKHgprtg==
cf-cache-status: MISS
expires: Sun, 04 Feb 2024 09:05:03 GMT
accept-ranges: bytes
server: cloudflare
cf-ray: 79423e08fabab529-OSL
X-Firefox-Spdy: h2
dcutest.com/content/dam/dcu/global/generic/logos/DCU_LOG_GLO_HomePage_C02_NCUA_01.svg
104.17.91.69200 OK 11 kB URL HTTP/2 dcutest.com/content/dam/dcu/global/generic/logos/DCU_LOG_GLO_HomePage_C02_NCUA_01.svg
IP 104.17.91.69:0
File type SVG Scalable Vector Graphics image\012- HTML document text\012- HTML document, ASCII text, with very long lines (59083), with no line terminators
Hash db217b145da10ef208bb37e6eea2b0af
64c429e08667f0c4868090ceaed3f048c9a20d99
baeeb2e98e48240ee5c61bf705ce4c0aa4b6fe05f7fc2c30b80a75b5cbb19fd1
Analyzer Verdict Alert openphish Digital Federal Credit Union
fortinet Phishing
GET /content/dam/dcu/global/generic/logos/DCU_LOG_GLO_HomePage_C02_NCUA_01.svg HTTP/1.1
Host: dcutest.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dcutest.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 09:05:03 GMT
content-type: image/svg+xml
content-length: 11120
x-dispatcher: dispatcher2useast1
x-vhost: publish
content-disposition: inline
x-content-type-options: nosniff
last-modified: Tue, 13 Aug 2019 20:50:13 GMT
etag: "e6cb-59005c979eb40-gzip"
content-encoding: gzip
cache-control: public, max-age=31536000
strict-transport-security: max-age=31536000; includeSubDomains
content-security-policy: default-src *.quantummetric.com 'unsafe-inline' 'unsafe-eval' 'self' blob:; worker-src blob:; child-src blob:; object-src 'self'; media-src 'self' blob: usassets.chat.pega.com firefly-chat-production.s3.amazonaws.com https://www.dcu.org https://manifest.prod.boltdns.net/ https://dcu-dev-65.adobecqms.net/ https://players.brightcove.net/ https://vjs.zencdn.net/ https://bcbolt446c5271-a.akamaihd.net/; script-src 'self' 'unsafe-inline' 'unsafe-eval' blob: https://usuat.cobrowse.pega.com/ https://usuatassets.cobrowse.pega.com https://player.vimeo.com/ https://memchat.dcu-online.org/ https://geolocation.onetrust.com https://www.google.com https://cdn.cookielaw.org https://js-staging.poshdevelopment.com/ https://js.poshdevelopment.com https://api.poshdevelopment.com https://staging.poshdevelopment.com *.quantummetric.com http://dfcumanagedservicesstageenvironment.112.2o7.net https://analytics.twitter.com/ *.ads-twitter.com https://us.cobrowse.pega.com https://usassets.cobrowse.pega.com *.steelhousemedia.com https://dcu-mkt-stage1.campaign.adobe.com https://dcu.campaign.adobe.com https://www.calcxml.com/ *.cloudflare.com https://googleads.g.doubleclick.net https://chat.usefirefly.com https://usefirefly.com https://connect.facebook.net www.google-analytics.com assets.adobedtm.com *.timevaluecalculators.com *.bazaarvoice.com *.iesnare.com https://ajax.googleapis.com/ *.googleapis.com *.dcuinsurance.com tagmanager.google.com www.googletagmanager.com https://www.google-analytics.com https://firefly-chat-production.s3.amazonaws.com http://www.googleadservices.com https://connect.facebook.net http://digitalfederalcreditunion.sc.omtrdc.net https://digitalfederalcreditunion.sc.omtrdc.net https://dcu-dev-65.adobecqms.net/ https://dcu-qa-65.adobecqms.net/ https://dcu-stage-65.adobecqms.net/ https://stage.dcu.org/ *.dcu.org https://dculocator.wave2.io/ https://snap.licdn.com https://bat.bing.com https://up.pixel.ad https://ssl.google-analytics.com/ https://www.dcu.org/ https://static.ads-twitter.com/ https://players.brightcove.net/ https://vjs.zencdn.net/ https://bcbolt446c5271-a.akamaihd.net/ https://widget.use1.chat.pega.digital/ *.qualtrics.com; connect-src 'self' *.ads-twitter.com *.quantummetric.com https://dcu-mkt-stage1.campaign.adobe.com https://dcu.campaign.adobe.com wss://usefirefly.com https://usefirefly.com * *.cloudflare.com https://www.calcxml.com/ *.dcu.org *.omtrdc.net *.demdex.net *.bazaarvoice.com wss://chat.usefirefly.com https://www.google-analytics.com https://www.dcuinsurance.com http://digitalfederalcreditunion.sc.omtrdc.net https://digitalfederalcreditunion.sc.omtrdc.net https://www.dcu.org/ https://static.ads-twitter.com/; img-src 'self' *.com *.yahoo.com http://t.co/ dsum.casalemedia.com su.addthis.com s.thebrighttag.com image2.pubmatic.com ads.scorecardresearch.com t.mookie1.com x.bidswitch.net usermatch.krxd.net match.sharethrough.com cm.g.doubleclick.net ads.yahoo.com pixel.advertising.com insight.adsrvr.org www.facebook.com usassets.chat.pega.com firefly-chat-production.s3.amazonaws.com *.bazaarvoice.com https://www.dcu.org https://www.google.co.in https://www.google.com *.timevaluecalculators.com *.everesttech.net *.demdex.net *.omtrdc.net *.googleapis.com *.gstatic.com *.112.2o7.net https://stats.g.doubleclick.net https://www.calcxml.com/ www.google-analytics.com *.doubleclick.net/ https://bcbolt446c5271-a.akamaihd.net/ https://players.brightcove.net/ https://www.dcu.org/ data:; style-src 'self' 'unsafe-inline' *.cloudflare.com https://usuatassets.cobrowse.pega.com https://usassets.cobrowse.pega.com https://usefirefly.com https://dcu-mkt-stage1.campaign.adobe.com https://dcu.campaign.adobe.com https://www.calcxml.com/ https://tagmanager.google.com usassets.chat.pega.com *.timevaluecalculators.com https://fonts.googleapis.com/ *.googleapis.com *.bazaarvoice.com https://match.adsrvr.org https://match.prod.bidr.io https://dcu-dev-65.adobecqms.net/ https://dcu-qa-65.adobecqms.net/ https://dcu-stage-65.adobecqms.net/ https://stage.dcu.org/ *.dcu.org https://dculocator.wave2.io/ https://www.dcu.org/; font-src 'self' https://fonts.gstatic.com/ fonts.gstatic.com https://www.dcu.org/ data:; frame-src 'self' https://player.vimeo.com/ *.quantummetric.com https://dcu.secure.nonprofitsoapbox.com https://americasaves.org/ https://app.loanspq.com/ https://dcu.mortgagewebcenter.com/ https://apps.rps.ascensus.com/ https://forms.fivision.com/ *.doubleclick.net *.culookup.com *.dcu.org *.demdex.net https://dcu.demdex.net *.locatorsearch.com *.bazaarvoice.com https://www.fmsi-lts.com/DIG_WS https://fmsi-lts.com/ *.adobecqms.net http://cookies.onetrust.mgr.consensu.org/ stage.dcu.org https://stage.dcu.org/ https://dcu-stage-65.adobecqms.net/ http://dcu-stage-65.adobecqms.net/ https://dcu-dev-65.adobecqms.net/ https://dcu-qa-65.adobecqms.net/ https://dcu-stage.adobecqms.net/ *.dcu.org https://dcu-mkt-stage1.campaign.adobe.com https://dcu.campaign.adobe.com https://js-staging.poshdevelopment.com/ https://js.poshdevelopment.com https://api.poshdevelopment.com https://staging.poshdevelopment.com *.youtube.com https://dculocator.wave2.io/ https://www.dcu.org/ https://pixel.sitescout.com/ https://memchat.dcu-online.org/ *.qualtrics.com
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 a9120cc3ff449047c990e82a4d5566ba.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 2cxshLzmRPlD4ZPEOe1frDyrMYiCpMsbYiv8yyWp9fv0k_dvgh3now==
cf-cache-status: MISS
expires: Sun, 04 Feb 2024 09:05:03 GMT
accept-ranges: bytes
server: cloudflare
cf-ray: 79423e08fabdb529-OSL
X-Firefox-Spdy: h2
dcutest.com/content/dam/dcu/global/home/illustrations/DCU_ILLUS_LOC_HomePage_C08_ForWholeFamily_01.svg.svg
104.17.91.69200 OK 1.2 kB URL HTTP/2 dcutest.com/content/dam/dcu/global/home/illustrations/DCU_ILLUS_LOC_HomePage_C08_ForWholeFamily_01.svg.svg
IP 104.17.91.69:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (2179)
Hash 0b066d2bb709429ce7235ab05fd76b10
0ab0b2824ef62e5cef84dc27402c5eb54f892572
5cb2ad370414394f26a49cbdd95ff78072e8035b9058d63f7cf14cfc16f81115
Analyzer Verdict Alert openphish Digital Federal Credit Union
fortinet Phishing
GET /content/dam/dcu/global/home/illustrations/DCU_ILLUS_LOC_HomePage_C08_ForWholeFamily_01.svg.svg HTTP/1.1
Host: dcutest.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dcutest.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 09:05:03 GMT
content-type: image/svg+xml
content-length: 1170
x-dispatcher: dispatcher1useast1
x-vhost: publish
content-disposition: inline
x-content-type-options: nosniff
last-modified: Tue, 13 Aug 2019 20:47:59 GMT
etag: "a90-59005c17d3dc0-gzip"
content-encoding: gzip
cache-control: public, max-age=31536000
strict-transport-security: max-age=31536000; includeSubDomains
content-security-policy: default-src *.quantummetric.com 'unsafe-inline' 'unsafe-eval' 'self' blob:; worker-src blob:; child-src blob:; object-src 'self'; media-src 'self' blob: usassets.chat.pega.com firefly-chat-production.s3.amazonaws.com https://www.dcu.org https://manifest.prod.boltdns.net/ https://dcu-dev-65.adobecqms.net/ https://players.brightcove.net/ https://vjs.zencdn.net/ https://bcbolt446c5271-a.akamaihd.net/; script-src 'self' 'unsafe-inline' 'unsafe-eval' blob: https://usuat.cobrowse.pega.com/ https://usuatassets.cobrowse.pega.com https://player.vimeo.com/ https://memchat.dcu-online.org/ https://geolocation.onetrust.com https://www.google.com https://cdn.cookielaw.org https://js-staging.poshdevelopment.com/ https://js.poshdevelopment.com https://api.poshdevelopment.com https://staging.poshdevelopment.com *.quantummetric.com http://dfcumanagedservicesstageenvironment.112.2o7.net https://analytics.twitter.com/ *.ads-twitter.com https://us.cobrowse.pega.com https://usassets.cobrowse.pega.com *.steelhousemedia.com https://dcu-mkt-stage1.campaign.adobe.com https://dcu.campaign.adobe.com https://www.calcxml.com/ *.cloudflare.com https://googleads.g.doubleclick.net https://chat.usefirefly.com https://usefirefly.com https://connect.facebook.net www.google-analytics.com assets.adobedtm.com *.timevaluecalculators.com *.bazaarvoice.com *.iesnare.com https://ajax.googleapis.com/ *.googleapis.com *.dcuinsurance.com tagmanager.google.com www.googletagmanager.com https://www.google-analytics.com https://firefly-chat-production.s3.amazonaws.com http://www.googleadservices.com https://connect.facebook.net http://digitalfederalcreditunion.sc.omtrdc.net https://digitalfederalcreditunion.sc.omtrdc.net https://dcu-dev-65.adobecqms.net/ https://dcu-qa-65.adobecqms.net/ https://dcu-stage-65.adobecqms.net/ https://stage.dcu.org/ *.dcu.org https://dculocator.wave2.io/ https://snap.licdn.com https://bat.bing.com https://up.pixel.ad https://ssl.google-analytics.com/ https://www.dcu.org/ https://static.ads-twitter.com/ https://players.brightcove.net/ https://vjs.zencdn.net/ https://bcbolt446c5271-a.akamaihd.net/ https://widget.use1.chat.pega.digital/ *.qualtrics.com; connect-src 'self' *.ads-twitter.com *.quantummetric.com https://dcu-mkt-stage1.campaign.adobe.com https://dcu.campaign.adobe.com wss://usefirefly.com https://usefirefly.com * *.cloudflare.com https://www.calcxml.com/ *.dcu.org *.omtrdc.net *.demdex.net *.bazaarvoice.com wss://chat.usefirefly.com https://www.google-analytics.com https://www.dcuinsurance.com http://digitalfederalcreditunion.sc.omtrdc.net https://digitalfederalcreditunion.sc.omtrdc.net https://www.dcu.org/ https://static.ads-twitter.com/; img-src 'self' *.com *.yahoo.com http://t.co/ dsum.casalemedia.com su.addthis.com s.thebrighttag.com image2.pubmatic.com ads.scorecardresearch.com t.mookie1.com x.bidswitch.net usermatch.krxd.net match.sharethrough.com cm.g.doubleclick.net ads.yahoo.com pixel.advertising.com insight.adsrvr.org www.facebook.com usassets.chat.pega.com firefly-chat-production.s3.amazonaws.com *.bazaarvoice.com https://www.dcu.org https://www.google.co.in https://www.google.com *.timevaluecalculators.com *.everesttech.net *.demdex.net *.omtrdc.net *.googleapis.com *.gstatic.com *.112.2o7.net https://stats.g.doubleclick.net https://www.calcxml.com/ www.google-analytics.com *.doubleclick.net/ https://bcbolt446c5271-a.akamaihd.net/ https://players.brightcove.net/ https://www.dcu.org/ data:; style-src 'self' 'unsafe-inline' *.cloudflare.com https://usuatassets.cobrowse.pega.com https://usassets.cobrowse.pega.com https://usefirefly.com https://dcu-mkt-stage1.campaign.adobe.com https://dcu.campaign.adobe.com https://www.calcxml.com/ https://tagmanager.google.com usassets.chat.pega.com *.timevaluecalculators.com https://fonts.googleapis.com/ *.googleapis.com *.bazaarvoice.com https://match.adsrvr.org https://match.prod.bidr.io https://dcu-dev-65.adobecqms.net/ https://dcu-qa-65.adobecqms.net/ https://dcu-stage-65.adobecqms.net/ https://stage.dcu.org/ *.dcu.org https://dculocator.wave2.io/ https://www.dcu.org/; font-src 'self' https://fonts.gstatic.com/ fonts.gstatic.com https://www.dcu.org/ data:; frame-src 'self' https://player.vimeo.com/ *.quantummetric.com https://dcu.secure.nonprofitsoapbox.com https://americasaves.org/ https://app.loanspq.com/ https://dcu.mortgagewebcenter.com/ https://apps.rps.ascensus.com/ https://forms.fivision.com/ *.doubleclick.net *.culookup.com *.dcu.org *.demdex.net https://dcu.demdex.net *.locatorsearch.com *.bazaarvoice.com https://www.fmsi-lts.com/DIG_WS https://fmsi-lts.com/ *.adobecqms.net http://cookies.onetrust.mgr.consensu.org/ stage.dcu.org https://stage.dcu.org/ https://dcu-stage-65.adobecqms.net/ http://dcu-stage-65.adobecqms.net/ https://dcu-dev-65.adobecqms.net/ https://dcu-qa-65.adobecqms.net/ https://dcu-stage.adobecqms.net/ *.dcu.org https://dcu-mkt-stage1.campaign.adobe.com https://dcu.campaign.adobe.com https://js-staging.poshdevelopment.com/ https://js.poshdevelopment.com https://api.poshdevelopment.com https://staging.poshdevelopment.com *.youtube.com https://dculocator.wave2.io/ https://www.dcu.org/ https://pixel.sitescout.com/ https://memchat.dcu-online.org/ *.qualtrics.com
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 41dc61beb3fe8e8c2c299a2522d8330c.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 0WbJIAQskwWvChzJ4otxz-H7tHvVKRi306u9qEWJNFVMyrH3qkScLw==
cf-cache-status: MISS
expires: Sun, 04 Feb 2024 09:05:03 GMT
accept-ranges: bytes
server: cloudflare
cf-ray: 79423e08eaa6b529-OSL
X-Firefox-Spdy: h2
dcutest.com/content/dam/dcu/global/home/illustrations/DCU_ILLUS_LOC_HomePage_C08_DCUKids_01.svg
104.17.91.69200 OK 3.0 kB URL HTTP/2 dcutest.com/content/dam/dcu/global/home/illustrations/DCU_ILLUS_LOC_HomePage_C08_DCUKids_01.svg
IP 104.17.91.69:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (7106)
Hash ae78cc4b85f92b9d5c09c79d085d3c84
68c0e4e56615a83c092ae06c5db7364a08577ae0
4a467c08b447821fbb4db555c9225ea1afe3f9a9304bbef718154ea80898ebab
Analyzer Verdict Alert openphish Digital Federal Credit Union
fortinet Phishing
GET /content/dam/dcu/global/home/illustrations/DCU_ILLUS_LOC_HomePage_C08_DCUKids_01.svg HTTP/1.1
Host: dcutest.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dcutest.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 09:05:03 GMT
content-type: image/svg+xml
content-length: 2988
x-dispatcher: dispatcher1useast1
x-vhost: publish
content-disposition: inline
x-content-type-options: nosniff
last-modified: Tue, 13 Aug 2019 20:47:59 GMT
etag: "1dc1-59005c17d3dc0-gzip"
content-encoding: gzip
cache-control: public, max-age=31536000
strict-transport-security: max-age=31536000; includeSubDomains
content-security-policy: default-src *.quantummetric.com 'unsafe-inline' 'unsafe-eval' 'self' blob:; worker-src blob:; child-src blob:; object-src 'self'; media-src 'self' blob: usassets.chat.pega.com firefly-chat-production.s3.amazonaws.com https://www.dcu.org https://manifest.prod.boltdns.net/ https://dcu-dev-65.adobecqms.net/ https://players.brightcove.net/ https://vjs.zencdn.net/ https://bcbolt446c5271-a.akamaihd.net/; script-src 'self' 'unsafe-inline' 'unsafe-eval' blob: https://usuat.cobrowse.pega.com/ https://usuatassets.cobrowse.pega.com https://player.vimeo.com/ https://memchat.dcu-online.org/ https://geolocation.onetrust.com https://www.google.com https://cdn.cookielaw.org https://js-staging.poshdevelopment.com/ https://js.poshdevelopment.com https://api.poshdevelopment.com https://staging.poshdevelopment.com *.quantummetric.com http://dfcumanagedservicesstageenvironment.112.2o7.net https://analytics.twitter.com/ *.ads-twitter.com https://us.cobrowse.pega.com https://usassets.cobrowse.pega.com *.steelhousemedia.com https://dcu-mkt-stage1.campaign.adobe.com https://dcu.campaign.adobe.com https://www.calcxml.com/ *.cloudflare.com https://googleads.g.doubleclick.net https://chat.usefirefly.com https://usefirefly.com https://connect.facebook.net www.google-analytics.com assets.adobedtm.com *.timevaluecalculators.com *.bazaarvoice.com *.iesnare.com https://ajax.googleapis.com/ *.googleapis.com *.dcuinsurance.com tagmanager.google.com www.googletagmanager.com https://www.google-analytics.com https://firefly-chat-production.s3.amazonaws.com http://www.googleadservices.com https://connect.facebook.net http://digitalfederalcreditunion.sc.omtrdc.net https://digitalfederalcreditunion.sc.omtrdc.net https://dcu-dev-65.adobecqms.net/ https://dcu-qa-65.adobecqms.net/ https://dcu-stage-65.adobecqms.net/ https://stage.dcu.org/ *.dcu.org https://dculocator.wave2.io/ https://snap.licdn.com https://bat.bing.com https://up.pixel.ad https://ssl.google-analytics.com/ https://www.dcu.org/ https://static.ads-twitter.com/ https://players.brightcove.net/ https://vjs.zencdn.net/ https://bcbolt446c5271-a.akamaihd.net/ https://widget.use1.chat.pega.digital/ *.qualtrics.com; connect-src 'self' *.ads-twitter.com *.quantummetric.com https://dcu-mkt-stage1.campaign.adobe.com https://dcu.campaign.adobe.com wss://usefirefly.com https://usefirefly.com * *.cloudflare.com https://www.calcxml.com/ *.dcu.org *.omtrdc.net *.demdex.net *.bazaarvoice.com wss://chat.usefirefly.com https://www.google-analytics.com https://www.dcuinsurance.com http://digitalfederalcreditunion.sc.omtrdc.net https://digitalfederalcreditunion.sc.omtrdc.net https://www.dcu.org/ https://static.ads-twitter.com/; img-src 'self' *.com *.yahoo.com http://t.co/ dsum.casalemedia.com su.addthis.com s.thebrighttag.com image2.pubmatic.com ads.scorecardresearch.com t.mookie1.com x.bidswitch.net usermatch.krxd.net match.sharethrough.com cm.g.doubleclick.net ads.yahoo.com pixel.advertising.com insight.adsrvr.org www.facebook.com usassets.chat.pega.com firefly-chat-production.s3.amazonaws.com *.bazaarvoice.com https://www.dcu.org https://www.google.co.in https://www.google.com *.timevaluecalculators.com *.everesttech.net *.demdex.net *.omtrdc.net *.googleapis.com *.gstatic.com *.112.2o7.net https://stats.g.doubleclick.net https://www.calcxml.com/ www.google-analytics.com *.doubleclick.net/ https://bcbolt446c5271-a.akamaihd.net/ https://players.brightcove.net/ https://www.dcu.org/ data:; style-src 'self' 'unsafe-inline' *.cloudflare.com https://usuatassets.cobrowse.pega.com https://usassets.cobrowse.pega.com https://usefirefly.com https://dcu-mkt-stage1.campaign.adobe.com https://dcu.campaign.adobe.com https://www.calcxml.com/ https://tagmanager.google.com usassets.chat.pega.com *.timevaluecalculators.com https://fonts.googleapis.com/ *.googleapis.com *.bazaarvoice.com https://match.adsrvr.org https://match.prod.bidr.io https://dcu-dev-65.adobecqms.net/ https://dcu-qa-65.adobecqms.net/ https://dcu-stage-65.adobecqms.net/ https://stage.dcu.org/ *.dcu.org https://dculocator.wave2.io/ https://www.dcu.org/; font-src 'self' https://fonts.gstatic.com/ fonts.gstatic.com https://www.dcu.org/ data:; frame-src 'self' https://player.vimeo.com/ *.quantummetric.com https://dcu.secure.nonprofitsoapbox.com https://americasaves.org/ https://app.loanspq.com/ https://dcu.mortgagewebcenter.com/ https://apps.rps.ascensus.com/ https://forms.fivision.com/ *.doubleclick.net *.culookup.com *.dcu.org *.demdex.net https://dcu.demdex.net *.locatorsearch.com *.bazaarvoice.com https://www.fmsi-lts.com/DIG_WS https://fmsi-lts.com/ *.adobecqms.net http://cookies.onetrust.mgr.consensu.org/ stage.dcu.org https://stage.dcu.org/ https://dcu-stage-65.adobecqms.net/ http://dcu-stage-65.adobecqms.net/ https://dcu-dev-65.adobecqms.net/ https://dcu-qa-65.adobecqms.net/ https://dcu-stage.adobecqms.net/ *.dcu.org https://dcu-mkt-stage1.campaign.adobe.com https://dcu.campaign.adobe.com https://js-staging.poshdevelopment.com/ https://js.poshdevelopment.com https://api.poshdevelopment.com https://staging.poshdevelopment.com *.youtube.com https://dculocator.wave2.io/ https://www.dcu.org/ https://pixel.sitescout.com/ https://memchat.dcu-online.org/ *.qualtrics.com
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 475d4ecb64796af058573c6f1048e898.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: ARFtkNP-rd9cvOqwhbsZ2QkOEQwTVgmVaBdttyfmJVzF-hbIxmo7-w==
cf-cache-status: MISS
expires: Sun, 04 Feb 2024 09:05:03 GMT
accept-ranges: bytes
server: cloudflare
cf-ray: 79423e08faabb529-OSL
X-Firefox-Spdy: h2
dcutest.com/content/dam/dcu/global/generic/logos/DCU_LOG_GLO_HomePage_C02_DCULogo-white_01.svg
104.17.91.69200 OK 2.6 kB URL HTTP/2 dcutest.com/content/dam/dcu/global/generic/logos/DCU_LOG_GLO_HomePage_C02_DCULogo-white_01.svg
IP 104.17.91.69:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (5511)
Hash d478f123327330ee76380f4700ab3aa7
e37cffb3739d105c8c29a28fb50c5081892e737a
6ba0bd2da225ae7189675e27ededb97edfa59934b70d0380ea17cc9b2fcc5176
Analyzer Verdict Alert openphish Digital Federal Credit Union
fortinet Phishing
GET /content/dam/dcu/global/generic/logos/DCU_LOG_GLO_HomePage_C02_DCULogo-white_01.svg HTTP/1.1
Host: dcutest.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dcutest.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 09:05:03 GMT
content-type: image/svg+xml
content-length: 2631
x-dispatcher: dispatcher1useast1
x-vhost: publish
content-disposition: inline
x-content-type-options: nosniff
last-modified: Tue, 13 Aug 2019 20:50:14 GMT
etag: "1747-59005c9892d80-gzip"
content-encoding: gzip
cache-control: public, max-age=31536000
strict-transport-security: max-age=31536000; includeSubDomains
content-security-policy: default-src *.quantummetric.com 'unsafe-inline' 'unsafe-eval' 'self' blob:; worker-src blob:; child-src blob:; object-src 'self'; media-src 'self' blob: usassets.chat.pega.com firefly-chat-production.s3.amazonaws.com https://www.dcu.org https://manifest.prod.boltdns.net/ https://dcu-dev-65.adobecqms.net/ https://players.brightcove.net/ https://vjs.zencdn.net/ https://bcbolt446c5271-a.akamaihd.net/; script-src 'self' 'unsafe-inline' 'unsafe-eval' blob: https://usuat.cobrowse.pega.com/ https://usuatassets.cobrowse.pega.com https://player.vimeo.com/ https://memchat.dcu-online.org/ https://geolocation.onetrust.com https://www.google.com https://cdn.cookielaw.org https://js-staging.poshdevelopment.com/ https://js.poshdevelopment.com https://api.poshdevelopment.com https://staging.poshdevelopment.com *.quantummetric.com http://dfcumanagedservicesstageenvironment.112.2o7.net https://analytics.twitter.com/ *.ads-twitter.com https://us.cobrowse.pega.com https://usassets.cobrowse.pega.com *.steelhousemedia.com https://dcu-mkt-stage1.campaign.adobe.com https://dcu.campaign.adobe.com https://www.calcxml.com/ *.cloudflare.com https://googleads.g.doubleclick.net https://chat.usefirefly.com https://usefirefly.com https://connect.facebook.net www.google-analytics.com assets.adobedtm.com *.timevaluecalculators.com *.bazaarvoice.com *.iesnare.com https://ajax.googleapis.com/ *.googleapis.com *.dcuinsurance.com tagmanager.google.com www.googletagmanager.com https://www.google-analytics.com https://firefly-chat-production.s3.amazonaws.com http://www.googleadservices.com https://connect.facebook.net http://digitalfederalcreditunion.sc.omtrdc.net https://digitalfederalcreditunion.sc.omtrdc.net https://dcu-dev-65.adobecqms.net/ https://dcu-qa-65.adobecqms.net/ https://dcu-stage-65.adobecqms.net/ https://stage.dcu.org/ *.dcu.org https://dculocator.wave2.io/ https://snap.licdn.com https://bat.bing.com https://up.pixel.ad https://ssl.google-analytics.com/ https://www.dcu.org/ https://static.ads-twitter.com/ https://players.brightcove.net/ https://vjs.zencdn.net/ https://bcbolt446c5271-a.akamaihd.net/ https://widget.use1.chat.pega.digital/ *.qualtrics.com; connect-src 'self' *.ads-twitter.com *.quantummetric.com https://dcu-mkt-stage1.campaign.adobe.com https://dcu.campaign.adobe.com wss://usefirefly.com https://usefirefly.com * *.cloudflare.com https://www.calcxml.com/ *.dcu.org *.omtrdc.net *.demdex.net *.bazaarvoice.com wss://chat.usefirefly.com https://www.google-analytics.com https://www.dcuinsurance.com http://digitalfederalcreditunion.sc.omtrdc.net https://digitalfederalcreditunion.sc.omtrdc.net https://www.dcu.org/ https://static.ads-twitter.com/; img-src 'self' *.com *.yahoo.com http://t.co/ dsum.casalemedia.com su.addthis.com s.thebrighttag.com image2.pubmatic.com ads.scorecardresearch.com t.mookie1.com x.bidswitch.net usermatch.krxd.net match.sharethrough.com cm.g.doubleclick.net ads.yahoo.com pixel.advertising.com insight.adsrvr.org www.facebook.com usassets.chat.pega.com firefly-chat-production.s3.amazonaws.com *.bazaarvoice.com https://www.dcu.org https://www.google.co.in https://www.google.com *.timevaluecalculators.com *.everesttech.net *.demdex.net *.omtrdc.net *.googleapis.com *.gstatic.com *.112.2o7.net https://stats.g.doubleclick.net https://www.calcxml.com/ www.google-analytics.com *.doubleclick.net/ https://bcbolt446c5271-a.akamaihd.net/ https://players.brightcove.net/ https://www.dcu.org/ data:; style-src 'self' 'unsafe-inline' *.cloudflare.com https://usuatassets.cobrowse.pega.com https://usassets.cobrowse.pega.com https://usefirefly.com https://dcu-mkt-stage1.campaign.adobe.com https://dcu.campaign.adobe.com https://www.calcxml.com/ https://tagmanager.google.com usassets.chat.pega.com *.timevaluecalculators.com https://fonts.googleapis.com/ *.googleapis.com *.bazaarvoice.com https://match.adsrvr.org https://match.prod.bidr.io https://dcu-dev-65.adobecqms.net/ https://dcu-qa-65.adobecqms.net/ https://dcu-stage-65.adobecqms.net/ https://stage.dcu.org/ *.dcu.org https://dculocator.wave2.io/ https://www.dcu.org/; font-src 'self' https://fonts.gstatic.com/ fonts.gstatic.com https://www.dcu.org/ data:; frame-src 'self' https://player.vimeo.com/ *.quantummetric.com https://dcu.secure.nonprofitsoapbox.com https://americasaves.org/ https://app.loanspq.com/ https://dcu.mortgagewebcenter.com/ https://apps.rps.ascensus.com/ https://forms.fivision.com/ *.doubleclick.net *.culookup.com *.dcu.org *.demdex.net https://dcu.demdex.net *.locatorsearch.com *.bazaarvoice.com https://www.fmsi-lts.com/DIG_WS https://fmsi-lts.com/ *.adobecqms.net http://cookies.onetrust.mgr.consensu.org/ stage.dcu.org https://stage.dcu.org/ https://dcu-stage-65.adobecqms.net/ http://dcu-stage-65.adobecqms.net/ https://dcu-dev-65.adobecqms.net/ https://dcu-qa-65.adobecqms.net/ https://dcu-stage.adobecqms.net/ *.dcu.org https://dcu-mkt-stage1.campaign.adobe.com https://dcu.campaign.adobe.com https://js-staging.poshdevelopment.com/ https://js.poshdevelopment.com https://api.poshdevelopment.com https://staging.poshdevelopment.com *.youtube.com https://dculocator.wave2.io/ https://www.dcu.org/ https://pixel.sitescout.com/ https://memchat.dcu-online.org/ *.qualtrics.com
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 9dd61138197a68f8d69f12574aab6930.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 5t-KtaxbpTcTxT6__dMJKh-rQw-tBB7_Iq-s6f-d4HFIRxtiFLrgFw==
cf-cache-status: MISS
expires: Sun, 04 Feb 2024 09:05:03 GMT
accept-ranges: bytes
server: cloudflare
cf-ray: 79423e08fab6b529-OSL
X-Firefox-Spdy: h2
dcutest.com/content/dam/dcu/global/home/images/SurchargeFreeATMs_Homepage_Desktop_IMG_DCU_785x480.jpg
104.17.91.69200 OK 95 kB URL HTTP/2 dcutest.com/content/dam/dcu/global/home/images/SurchargeFreeATMs_Homepage_Desktop_IMG_DCU_785x480.jpg
IP 104.17.91.69:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 785x480, components 3\012- data
Hash e67b238cbd780b7b3303a3eae56aecb2
849043e77f0cf46d5a14da0ae3576fe1f7a0343a
181f6ba84ec96d475388d9ec01aee17ff45a088441f642731fad54c48b268e9a
Analyzer Verdict Alert openphish Digital Federal Credit Union
GET /content/dam/dcu/global/home/images/SurchargeFreeATMs_Homepage_Desktop_IMG_DCU_785x480.jpg HTTP/1.1
Host: dcutest.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dcutest.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 09:05:03 GMT
content-type: image/jpeg
content-length: 95150
x-dispatcher: dispatcher1useast1
x-vhost: publish
content-disposition: inline
x-content-type-options: nosniff
last-modified: Wed, 04 Sep 2019 19:56:59 GMT
etag: "173ae-591bf9b9b98c0"
cache-control: public, max-age=31536000
strict-transport-security: max-age=31536000; includeSubDomains
content-security-policy: default-src *.quantummetric.com 'unsafe-inline' 'unsafe-eval' 'self' blob:; worker-src blob:; child-src blob:; object-src 'self'; media-src 'self' blob: usassets.chat.pega.com firefly-chat-production.s3.amazonaws.com https://www.dcu.org https://manifest.prod.boltdns.net/ https://dcu-dev-65.adobecqms.net/ https://players.brightcove.net/ https://vjs.zencdn.net/ https://bcbolt446c5271-a.akamaihd.net/; script-src 'self' 'unsafe-inline' 'unsafe-eval' blob: https://usuat.cobrowse.pega.com/ https://usuatassets.cobrowse.pega.com https://player.vimeo.com/ https://memchat.dcu-online.org/ https://geolocation.onetrust.com https://www.google.com https://cdn.cookielaw.org https://js-staging.poshdevelopment.com/ https://js.poshdevelopment.com https://api.poshdevelopment.com https://staging.poshdevelopment.com *.quantummetric.com http://dfcumanagedservicesstageenvironment.112.2o7.net https://analytics.twitter.com/ *.ads-twitter.com https://us.cobrowse.pega.com https://usassets.cobrowse.pega.com *.steelhousemedia.com https://dcu-mkt-stage1.campaign.adobe.com https://dcu.campaign.adobe.com https://www.calcxml.com/ *.cloudflare.com https://googleads.g.doubleclick.net https://chat.usefirefly.com https://usefirefly.com https://connect.facebook.net www.google-analytics.com assets.adobedtm.com *.timevaluecalculators.com *.bazaarvoice.com *.iesnare.com https://ajax.googleapis.com/ *.googleapis.com *.dcuinsurance.com tagmanager.google.com www.googletagmanager.com https://www.google-analytics.com https://firefly-chat-production.s3.amazonaws.com http://www.googleadservices.com https://connect.facebook.net http://digitalfederalcreditunion.sc.omtrdc.net https://digitalfederalcreditunion.sc.omtrdc.net https://dcu-dev-65.adobecqms.net/ https://dcu-qa-65.adobecqms.net/ https://dcu-stage-65.adobecqms.net/ https://stage.dcu.org/ *.dcu.org https://dculocator.wave2.io/ https://snap.licdn.com https://bat.bing.com https://up.pixel.ad https://ssl.google-analytics.com/ https://www.dcu.org/ https://static.ads-twitter.com/ https://players.brightcove.net/ https://vjs.zencdn.net/ https://bcbolt446c5271-a.akamaihd.net/ https://widget.use1.chat.pega.digital/ *.qualtrics.com; connect-src 'self' *.ads-twitter.com *.quantummetric.com https://dcu-mkt-stage1.campaign.adobe.com https://dcu.campaign.adobe.com wss://usefirefly.com https://usefirefly.com * *.cloudflare.com https://www.calcxml.com/ *.dcu.org *.omtrdc.net *.demdex.net *.bazaarvoice.com wss://chat.usefirefly.com https://www.google-analytics.com https://www.dcuinsurance.com http://digitalfederalcreditunion.sc.omtrdc.net https://digitalfederalcreditunion.sc.omtrdc.net https://www.dcu.org/ https://static.ads-twitter.com/; img-src 'self' *.com *.yahoo.com http://t.co/ dsum.casalemedia.com su.addthis.com s.thebrighttag.com image2.pubmatic.com ads.scorecardresearch.com t.mookie1.com x.bidswitch.net usermatch.krxd.net match.sharethrough.com cm.g.doubleclick.net ads.yahoo.com pixel.advertising.com insight.adsrvr.org www.facebook.com usassets.chat.pega.com firefly-chat-production.s3.amazonaws.com *.bazaarvoice.com https://www.dcu.org https://www.google.co.in https://www.google.com *.timevaluecalculators.com *.everesttech.net *.demdex.net *.omtrdc.net *.googleapis.com *.gstatic.com *.112.2o7.net https://stats.g.doubleclick.net https://www.calcxml.com/ www.google-analytics.com *.doubleclick.net/ https://bcbolt446c5271-a.akamaihd.net/ https://players.brightcove.net/ https://www.dcu.org/ data:; style-src 'self' 'unsafe-inline' *.cloudflare.com https://usuatassets.cobrowse.pega.com https://usassets.cobrowse.pega.com https://usefirefly.com https://dcu-mkt-stage1.campaign.adobe.com https://dcu.campaign.adobe.com https://www.calcxml.com/ https://tagmanager.google.com usassets.chat.pega.com *.timevaluecalculators.com https://fonts.googleapis.com/ *.googleapis.com *.bazaarvoice.com https://match.adsrvr.org https://match.prod.bidr.io https://dcu-dev-65.adobecqms.net/ https://dcu-qa-65.adobecqms.net/ https://dcu-stage-65.adobecqms.net/ https://stage.dcu.org/ *.dcu.org https://dculocator.wave2.io/ https://www.dcu.org/; font-src 'self' https://fonts.gstatic.com/ fonts.gstatic.com https://www.dcu.org/ data:; frame-src 'self' https://player.vimeo.com/ *.quantummetric.com https://dcu.secure.nonprofitsoapbox.com https://americasaves.org/ https://app.loanspq.com/ https://dcu.mortgagewebcenter.com/ https://apps.rps.ascensus.com/ https://forms.fivision.com/ *.doubleclick.net *.culookup.com *.dcu.org *.demdex.net https://dcu.demdex.net *.locatorsearch.com *.bazaarvoice.com https://www.fmsi-lts.com/DIG_WS https://fmsi-lts.com/ *.adobecqms.net http://cookies.onetrust.mgr.consensu.org/ stage.dcu.org https://stage.dcu.org/ https://dcu-stage-65.adobecqms.net/ http://dcu-stage-65.adobecqms.net/ https://dcu-dev-65.adobecqms.net/ https://dcu-qa-65.adobecqms.net/ https://dcu-stage.adobecqms.net/ *.dcu.org https://dcu-mkt-stage1.campaign.adobe.com https://dcu.campaign.adobe.com https://js-staging.poshdevelopment.com/ https://js.poshdevelopment.com https://api.poshdevelopment.com https://staging.poshdevelopment.com *.youtube.com https://dculocator.wave2.io/ https://www.dcu.org/ https://pixel.sitescout.com/ https://memchat.dcu-online.org/ *.qualtrics.com
x-cache: Hit from cloudfront
via: 1.1 6cb1d4b545e7beb4ead790454f4807c6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: z5JsZa-OIQeonKRV2dvhNs4WGfElC89yo9IdLifqpSjILas65Cqsnw==
cf-cache-status: MISS
expires: Sun, 04 Feb 2024 09:05:03 GMT
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 79423e08fab4b529-OSL
X-Firefox-Spdy: h2
dcutest.com/content/dam/dcu/global/generic/logos/DCU_LOG_GLO_HomePage_C02_AppleStore_01.svg
104.17.91.69200 OK 5.3 kB URL HTTP/2 dcutest.com/content/dam/dcu/global/generic/logos/DCU_LOG_GLO_HomePage_C02_AppleStore_01.svg
IP 104.17.91.69:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (1799)
Hash cf37e39e0006511ea3c9932677146edd
dec90daf68c4a84e4d4268ab5d6c2abe3dbb2bda
a0b3e6ef304b4dccb1d9f45a86c4da6b414e3bb2633ec4821f18992ee7ce734a
Analyzer Verdict Alert openphish Digital Federal Credit Union
fortinet Phishing
GET /content/dam/dcu/global/generic/logos/DCU_LOG_GLO_HomePage_C02_AppleStore_01.svg HTTP/1.1
Host: dcutest.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dcutest.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 09:05:03 GMT
content-type: image/svg+xml
content-length: 5302
x-dispatcher: dispatcher2useast1
x-vhost: publish
content-disposition: inline
x-content-type-options: nosniff
last-modified: Tue, 13 Aug 2019 20:50:13 GMT
etag: "3e8f-59005c979eb40-gzip"
content-encoding: gzip
cache-control: public, max-age=31536000
strict-transport-security: max-age=31536000; includeSubDomains
content-security-policy: default-src *.quantummetric.com 'unsafe-inline' 'unsafe-eval' 'self' blob:; worker-src blob:; child-src blob:; object-src 'self'; media-src 'self' blob: usassets.chat.pega.com firefly-chat-production.s3.amazonaws.com https://www.dcu.org https://manifest.prod.boltdns.net/ https://dcu-dev-65.adobecqms.net/ https://players.brightcove.net/ https://vjs.zencdn.net/ https://bcbolt446c5271-a.akamaihd.net/; script-src 'self' 'unsafe-inline' 'unsafe-eval' blob: https://usuat.cobrowse.pega.com/ https://usuatassets.cobrowse.pega.com https://player.vimeo.com/ https://memchat.dcu-online.org/ https://geolocation.onetrust.com https://www.google.com https://cdn.cookielaw.org https://js-staging.poshdevelopment.com/ https://js.poshdevelopment.com https://api.poshdevelopment.com https://staging.poshdevelopment.com *.quantummetric.com http://dfcumanagedservicesstageenvironment.112.2o7.net https://analytics.twitter.com/ *.ads-twitter.com https://us.cobrowse.pega.com https://usassets.cobrowse.pega.com *.steelhousemedia.com https://dcu-mkt-stage1.campaign.adobe.com https://dcu.campaign.adobe.com https://www.calcxml.com/ *.cloudflare.com https://googleads.g.doubleclick.net https://chat.usefirefly.com https://usefirefly.com https://connect.facebook.net www.google-analytics.com assets.adobedtm.com *.timevaluecalculators.com *.bazaarvoice.com *.iesnare.com https://ajax.googleapis.com/ *.googleapis.com *.dcuinsurance.com tagmanager.google.com www.googletagmanager.com https://www.google-analytics.com https://firefly-chat-production.s3.amazonaws.com http://www.googleadservices.com https://connect.facebook.net http://digitalfederalcreditunion.sc.omtrdc.net https://digitalfederalcreditunion.sc.omtrdc.net https://dcu-dev-65.adobecqms.net/ https://dcu-qa-65.adobecqms.net/ https://dcu-stage-65.adobecqms.net/ https://stage.dcu.org/ *.dcu.org https://dculocator.wave2.io/ https://snap.licdn.com https://bat.bing.com https://up.pixel.ad https://ssl.google-analytics.com/ https://www.dcu.org/ https://static.ads-twitter.com/ https://players.brightcove.net/ https://vjs.zencdn.net/ https://bcbolt446c5271-a.akamaihd.net/ https://widget.use1.chat.pega.digital/ *.qualtrics.com; connect-src 'self' *.ads-twitter.com *.quantummetric.com https://dcu-mkt-stage1.campaign.adobe.com https://dcu.campaign.adobe.com wss://usefirefly.com https://usefirefly.com * *.cloudflare.com https://www.calcxml.com/ *.dcu.org *.omtrdc.net *.demdex.net *.bazaarvoice.com wss://chat.usefirefly.com https://www.google-analytics.com https://www.dcuinsurance.com http://digitalfederalcreditunion.sc.omtrdc.net https://digitalfederalcreditunion.sc.omtrdc.net https://www.dcu.org/ https://static.ads-twitter.com/; img-src 'self' *.com *.yahoo.com http://t.co/ dsum.casalemedia.com su.addthis.com s.thebrighttag.com image2.pubmatic.com ads.scorecardresearch.com t.mookie1.com x.bidswitch.net usermatch.krxd.net match.sharethrough.com cm.g.doubleclick.net ads.yahoo.com pixel.advertising.com insight.adsrvr.org www.facebook.com usassets.chat.pega.com firefly-chat-production.s3.amazonaws.com *.bazaarvoice.com https://www.dcu.org https://www.google.co.in https://www.google.com *.timevaluecalculators.com *.everesttech.net *.demdex.net *.omtrdc.net *.googleapis.com *.gstatic.com *.112.2o7.net https://stats.g.doubleclick.net https://www.calcxml.com/ www.google-analytics.com *.doubleclick.net/ https://bcbolt446c5271-a.akamaihd.net/ https://players.brightcove.net/ https://www.dcu.org/ data:; style-src 'self' 'unsafe-inline' *.cloudflare.com https://usuatassets.cobrowse.pega.com https://usassets.cobrowse.pega.com https://usefirefly.com https://dcu-mkt-stage1.campaign.adobe.com https://dcu.campaign.adobe.com https://www.calcxml.com/ https://tagmanager.google.com usassets.chat.pega.com *.timevaluecalculators.com https://fonts.googleapis.com/ *.googleapis.com *.bazaarvoice.com https://match.adsrvr.org https://match.prod.bidr.io https://dcu-dev-65.adobecqms.net/ https://dcu-qa-65.adobecqms.net/ https://dcu-stage-65.adobecqms.net/ https://stage.dcu.org/ *.dcu.org https://dculocator.wave2.io/ https://www.dcu.org/; font-src 'self' https://fonts.gstatic.com/ fonts.gstatic.com https://www.dcu.org/ data:; frame-src 'self' https://player.vimeo.com/ *.quantummetric.com https://dcu.secure.nonprofitsoapbox.com https://americasaves.org/ https://app.loanspq.com/ https://dcu.mortgagewebcenter.com/ https://apps.rps.ascensus.com/ https://forms.fivision.com/ *.doubleclick.net *.culookup.com *.dcu.org *.demdex.net https://dcu.demdex.net *.locatorsearch.com *.bazaarvoice.com https://www.fmsi-lts.com/DIG_WS https://fmsi-lts.com/ *.adobecqms.net http://cookies.onetrust.mgr.consensu.org/ stage.dcu.org https://stage.dcu.org/ https://dcu-stage-65.adobecqms.net/ http://dcu-stage-65.adobecqms.net/ https://dcu-dev-65.adobecqms.net/ https://dcu-qa-65.adobecqms.net/ https://dcu-stage.adobecqms.net/ *.dcu.org https://dcu-mkt-stage1.campaign.adobe.com https://dcu.campaign.adobe.com https://js-staging.poshdevelopment.com/ https://js.poshdevelopment.com https://api.poshdevelopment.com https://staging.poshdevelopment.com *.youtube.com https://dculocator.wave2.io/ https://www.dcu.org/ https://pixel.sitescout.com/ https://memchat.dcu-online.org/ *.qualtrics.com
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 a2b4f68a89fc87406bff22c95fc07fba.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: lXCoes0hmb42d3dPbS29yPREQ-T1-BAl8G7s4CDVuLLjLQSAGBMfVQ==
cf-cache-status: MISS
expires: Sun, 04 Feb 2024 09:05:03 GMT
accept-ranges: bytes
server: cloudflare
cf-ray: 79423e08fab9b529-OSL
X-Firefox-Spdy: h2
dcutest.com/content/dam/dcu/global/iconography/icon-appointment.svg
104.17.91.69200 OK 860 B URL HTTP/2 dcutest.com/content/dam/dcu/global/iconography/icon-appointment.svg
IP 104.17.91.69:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (353)
Hash 50a3a070cc48c517c8d986bf959044f8
2bc0c7e3d0dd7c1750ea1fc69fd45e2655b1be8c
a0652661caaa09e2ec709b9e11205315f026c370fdbde5d6fe63c8633d722e95
Analyzer Verdict Alert openphish Digital Federal Credit Union
fortinet Phishing
GET /content/dam/dcu/global/iconography/icon-appointment.svg HTTP/1.1
Host: dcutest.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dcutest.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 09:05:03 GMT
content-type: image/svg+xml
content-length: 860
x-dispatcher: dispatcher2useast1
x-vhost: publish
content-disposition: inline
x-content-type-options: nosniff
last-modified: Tue, 24 May 2022 19:24:14 GMT
etag: "124f-5dfc6e6e77380-gzip"
content-encoding: gzip
cache-control: public, max-age=31536000
strict-transport-security: max-age=31536000; includeSubDomains
content-security-policy: default-src *.quantummetric.com 'unsafe-inline' 'unsafe-eval' 'self' blob:; worker-src blob:; child-src blob:; object-src 'self'; media-src 'self' blob: usassets.chat.pega.com firefly-chat-production.s3.amazonaws.com https://www.dcu.org https://manifest.prod.boltdns.net/ https://dcu-dev-65.adobecqms.net/ https://players.brightcove.net/ https://vjs.zencdn.net/ https://bcbolt446c5271-a.akamaihd.net/; script-src 'self' 'unsafe-inline' 'unsafe-eval' blob: https://usuat.cobrowse.pega.com/ https://usuatassets.cobrowse.pega.com https://player.vimeo.com/ https://memchat.dcu-online.org/ https://geolocation.onetrust.com https://www.google.com https://cdn.cookielaw.org https://js-staging.poshdevelopment.com/ https://js.poshdevelopment.com https://api.poshdevelopment.com https://staging.poshdevelopment.com *.quantummetric.com http://dfcumanagedservicesstageenvironment.112.2o7.net https://analytics.twitter.com/ *.ads-twitter.com https://us.cobrowse.pega.com https://usassets.cobrowse.pega.com *.steelhousemedia.com https://dcu-mkt-stage1.campaign.adobe.com https://dcu.campaign.adobe.com https://www.calcxml.com/ *.cloudflare.com https://googleads.g.doubleclick.net https://chat.usefirefly.com https://usefirefly.com https://connect.facebook.net www.google-analytics.com assets.adobedtm.com *.timevaluecalculators.com *.bazaarvoice.com *.iesnare.com https://ajax.googleapis.com/ *.googleapis.com *.dcuinsurance.com tagmanager.google.com www.googletagmanager.com https://www.google-analytics.com https://firefly-chat-production.s3.amazonaws.com http://www.googleadservices.com https://connect.facebook.net http://digitalfederalcreditunion.sc.omtrdc.net https://digitalfederalcreditunion.sc.omtrdc.net https://dcu-dev-65.adobecqms.net/ https://dcu-qa-65.adobecqms.net/ https://dcu-stage-65.adobecqms.net/ https://stage.dcu.org/ *.dcu.org https://dculocator.wave2.io/ https://snap.licdn.com https://bat.bing.com https://up.pixel.ad https://ssl.google-analytics.com/ https://www.dcu.org/ https://static.ads-twitter.com/ https://players.brightcove.net/ https://vjs.zencdn.net/ https://bcbolt446c5271-a.akamaihd.net/ https://widget.use1.chat.pega.digital/ *.qualtrics.com; connect-src 'self' *.ads-twitter.com *.quantummetric.com https://dcu-mkt-stage1.campaign.adobe.com https://dcu.campaign.adobe.com wss://usefirefly.com https://usefirefly.com * *.cloudflare.com https://www.calcxml.com/ *.dcu.org *.omtrdc.net *.demdex.net *.bazaarvoice.com wss://chat.usefirefly.com https://www.google-analytics.com https://www.dcuinsurance.com http://digitalfederalcreditunion.sc.omtrdc.net https://digitalfederalcreditunion.sc.omtrdc.net https://www.dcu.org/ https://static.ads-twitter.com/; img-src 'self' *.com *.yahoo.com http://t.co/ dsum.casalemedia.com su.addthis.com s.thebrighttag.com image2.pubmatic.com ads.scorecardresearch.com t.mookie1.com x.bidswitch.net usermatch.krxd.net match.sharethrough.com cm.g.doubleclick.net ads.yahoo.com pixel.advertising.com insight.adsrvr.org www.facebook.com usassets.chat.pega.com firefly-chat-production.s3.amazonaws.com *.bazaarvoice.com https://www.dcu.org https://www.google.co.in https://www.google.com *.timevaluecalculators.com *.everesttech.net *.demdex.net *.omtrdc.net *.googleapis.com *.gstatic.com *.112.2o7.net https://stats.g.doubleclick.net https://www.calcxml.com/ www.google-analytics.com *.doubleclick.net/ https://bcbolt446c5271-a.akamaihd.net/ https://players.brightcove.net/ https://www.dcu.org/ data:; style-src 'self' 'unsafe-inline' *.cloudflare.com https://usuatassets.cobrowse.pega.com https://usassets.cobrowse.pega.com https://usefirefly.com https://dcu-mkt-stage1.campaign.adobe.com https://dcu.campaign.adobe.com https://www.calcxml.com/ https://tagmanager.google.com usassets.chat.pega.com *.timevaluecalculators.com https://fonts.googleapis.com/ *.googleapis.com *.bazaarvoice.com https://match.adsrvr.org https://match.prod.bidr.io https://dcu-dev-65.adobecqms.net/ https://dcu-qa-65.adobecqms.net/ https://dcu-stage-65.adobecqms.net/ https://stage.dcu.org/ *.dcu.org https://dculocator.wave2.io/ https://www.dcu.org/; font-src 'self' https://fonts.gstatic.com/ fonts.gstatic.com https://www.dcu.org/ data:; frame-src 'self' https://player.vimeo.com/ *.quantummetric.com https://dcu.secure.nonprofitsoapbox.com https://americasaves.org/ https://app.loanspq.com/ https://dcu.mortgagewebcenter.com/ https://apps.rps.ascensus.com/ https://forms.fivision.com/ *.doubleclick.net *.culookup.com *.dcu.org *.demdex.net https://dcu.demdex.net *.locatorsearch.com *.bazaarvoice.com https://www.fmsi-lts.com/DIG_WS https://fmsi-lts.com/ *.adobecqms.net http://cookies.onetrust.mgr.consensu.org/ stage.dcu.org https://stage.dcu.org/ https://dcu-stage-65.adobecqms.net/ http://dcu-stage-65.adobecqms.net/ https://dcu-dev-65.adobecqms.net/ https://dcu-qa-65.adobecqms.net/ https://dcu-stage.adobecqms.net/ *.dcu.org https://dcu-mkt-stage1.campaign.adobe.com https://dcu.campaign.adobe.com https://js-staging.poshdevelopment.com/ https://js.poshdevelopment.com https://api.poshdevelopment.com https://staging.poshdevelopment.com *.youtube.com https://dculocator.wave2.io/ https://www.dcu.org/ https://pixel.sitescout.com/ https://memchat.dcu-online.org/ *.qualtrics.com
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 8ddb6d7670d8c5a85c04a10525a71b90.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: E0SHf_R_tYbPx2S_j_36s6-6oXOWuTM9hLFMOrcAhud2C1Ac4dNgLw==
cf-cache-status: MISS
expires: Sun, 04 Feb 2024 09:05:03 GMT
accept-ranges: bytes
server: cloudflare
cf-ray: 79423e08eaa0b529-OSL
X-Firefox-Spdy: h2
dcutest.com/content/dam/dcu/global/home/images/DCUBranches_Homepage_Desktop_IMG_DCU_785x480.jpg
104.17.91.69200 OK 35 kB URL HTTP/2 dcutest.com/content/dam/dcu/global/home/images/DCUBranches_Homepage_Desktop_IMG_DCU_785x480.jpg
IP 104.17.91.69:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 785x480, components 3\012- data
Hash f0bbb2b37d6830778baa161cfee85ff5
99c0c3758ebcd1ee182a49f7f5f5a71be590ac7c
e5c351391bd830196022c5e12b73a5ce48c0795ef297714993a315f4acf95343
Analyzer Verdict Alert openphish Digital Federal Credit Union
GET /content/dam/dcu/global/home/images/DCUBranches_Homepage_Desktop_IMG_DCU_785x480.jpg HTTP/1.1
Host: dcutest.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dcutest.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 09:05:03 GMT
content-type: image/jpeg
content-length: 35239
x-dispatcher: dispatcher1useast1
x-vhost: publish
content-disposition: inline
x-content-type-options: nosniff
last-modified: Wed, 04 Sep 2019 19:56:58 GMT
etag: "89a7-591bf9b8c5680"
cache-control: public, max-age=31536000
strict-transport-security: max-age=31536000; includeSubDomains
content-security-policy: default-src *.quantummetric.com 'unsafe-inline' 'unsafe-eval' 'self' blob:; worker-src blob:; child-src blob:; object-src 'self'; media-src 'self' blob: usassets.chat.pega.com firefly-chat-production.s3.amazonaws.com https://www.dcu.org https://manifest.prod.boltdns.net/ https://dcu-dev-65.adobecqms.net/ https://players.brightcove.net/ https://vjs.zencdn.net/ https://bcbolt446c5271-a.akamaihd.net/; script-src 'self' 'unsafe-inline' 'unsafe-eval' blob: https://usuat.cobrowse.pega.com/ https://usuatassets.cobrowse.pega.com https://player.vimeo.com/ https://memchat.dcu-online.org/ https://geolocation.onetrust.com https://www.google.com https://cdn.cookielaw.org https://js-staging.poshdevelopment.com/ https://js.poshdevelopment.com https://api.poshdevelopment.com https://staging.poshdevelopment.com *.quantummetric.com http://dfcumanagedservicesstageenvironment.112.2o7.net https://analytics.twitter.com/ *.ads-twitter.com https://us.cobrowse.pega.com https://usassets.cobrowse.pega.com *.steelhousemedia.com https://dcu-mkt-stage1.campaign.adobe.com https://dcu.campaign.adobe.com https://www.calcxml.com/ *.cloudflare.com https://googleads.g.doubleclick.net https://chat.usefirefly.com https://usefirefly.com https://connect.facebook.net www.google-analytics.com assets.adobedtm.com *.timevaluecalculators.com *.bazaarvoice.com *.iesnare.com https://ajax.googleapis.com/ *.googleapis.com *.dcuinsurance.com tagmanager.google.com www.googletagmanager.com https://www.google-analytics.com https://firefly-chat-production.s3.amazonaws.com http://www.googleadservices.com https://connect.facebook.net http://digitalfederalcreditunion.sc.omtrdc.net https://digitalfederalcreditunion.sc.omtrdc.net https://dcu-dev-65.adobecqms.net/ https://dcu-qa-65.adobecqms.net/ https://dcu-stage-65.adobecqms.net/ https://stage.dcu.org/ *.dcu.org https://dculocator.wave2.io/ https://snap.licdn.com https://bat.bing.com https://up.pixel.ad https://ssl.google-analytics.com/ https://www.dcu.org/ https://static.ads-twitter.com/ https://players.brightcove.net/ https://vjs.zencdn.net/ https://bcbolt446c5271-a.akamaihd.net/ https://widget.use1.chat.pega.digital/ *.qualtrics.com; connect-src 'self' *.ads-twitter.com *.quantummetric.com https://dcu-mkt-stage1.campaign.adobe.com https://dcu.campaign.adobe.com wss://usefirefly.com https://usefirefly.com * *.cloudflare.com https://www.calcxml.com/ *.dcu.org *.omtrdc.net *.demdex.net *.bazaarvoice.com wss://chat.usefirefly.com https://www.google-analytics.com https://www.dcuinsurance.com http://digitalfederalcreditunion.sc.omtrdc.net https://digitalfederalcreditunion.sc.omtrdc.net https://www.dcu.org/ https://static.ads-twitter.com/; img-src 'self' *.com *.yahoo.com http://t.co/ dsum.casalemedia.com su.addthis.com s.thebrighttag.com image2.pubmatic.com ads.scorecardresearch.com t.mookie1.com x.bidswitch.net usermatch.krxd.net match.sharethrough.com cm.g.doubleclick.net ads.yahoo.com pixel.advertising.com insight.adsrvr.org www.facebook.com usassets.chat.pega.com firefly-chat-production.s3.amazonaws.com *.bazaarvoice.com https://www.dcu.org https://www.google.co.in https://www.google.com *.timevaluecalculators.com *.everesttech.net *.demdex.net *.omtrdc.net *.googleapis.com *.gstatic.com *.112.2o7.net https://stats.g.doubleclick.net https://www.calcxml.com/ www.google-analytics.com *.doubleclick.net/ https://bcbolt446c5271-a.akamaihd.net/ https://players.brightcove.net/ https://www.dcu.org/ data:; style-src 'self' 'unsafe-inline' *.cloudflare.com https://usuatassets.cobrowse.pega.com https://usassets.cobrowse.pega.com https://usefirefly.com https://dcu-mkt-stage1.campaign.adobe.com https://dcu.campaign.adobe.com https://www.calcxml.com/ https://tagmanager.google.com usassets.chat.pega.com *.timevaluecalculators.com https://fonts.googleapis.com/ *.googleapis.com *.bazaarvoice.com https://match.adsrvr.org https://match.prod.bidr.io https://dcu-dev-65.adobecqms.net/ https://dcu-qa-65.adobecqms.net/ https://dcu-stage-65.adobecqms.net/ https://stage.dcu.org/ *.dcu.org https://dculocator.wave2.io/ https://www.dcu.org/; font-src 'self' https://fonts.gstatic.com/ fonts.gstatic.com https://www.dcu.org/ data:; frame-src 'self' https://player.vimeo.com/ *.quantummetric.com https://dcu.secure.nonprofitsoapbox.com https://americasaves.org/ https://app.loanspq.com/ https://dcu.mortgagewebcenter.com/ https://apps.rps.ascensus.com/ https://forms.fivision.com/ *.doubleclick.net *.culookup.com *.dcu.org *.demdex.net https://dcu.demdex.net *.locatorsearch.com *.bazaarvoice.com https://www.fmsi-lts.com/DIG_WS https://fmsi-lts.com/ *.adobecqms.net http://cookies.onetrust.mgr.consensu.org/ stage.dcu.org https://stage.dcu.org/ https://dcu-stage-65.adobecqms.net/ http://dcu-stage-65.adobecqms.net/ https://dcu-dev-65.adobecqms.net/ https://dcu-qa-65.adobecqms.net/ https://dcu-stage.adobecqms.net/ *.dcu.org https://dcu-mkt-stage1.campaign.adobe.com https://dcu.campaign.adobe.com https://js-staging.poshdevelopment.com/ https://js.poshdevelopment.com https://api.poshdevelopment.com https://staging.poshdevelopment.com *.youtube.com https://dculocator.wave2.io/ https://www.dcu.org/ https://pixel.sitescout.com/ https://memchat.dcu-online.org/ *.qualtrics.com
x-cache: Hit from cloudfront
via: 1.1 d4fd24ae65d4d2b97cfdea8d2f0c21a6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: WtcFZXDEFiQWe-J_FgduZsSxMWU6EtsNJOsSxFiSuhtf6v9pJZwGeg==
cf-cache-status: MISS
expires: Sun, 04 Feb 2024 09:05:03 GMT
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 79423e08fab5b529-OSL
X-Firefox-Spdy: h2
dcutest.com/etc.clientlibs/dcu/clientlibs/clientlib-site/resources/images/svg/posh-x-preview.svg
104.17.91.69200 OK 505 B URL HTTP/2 dcutest.com/etc.clientlibs/dcu/clientlibs/clientlib-site/resources/images/svg/posh-x-preview.svg
IP 104.17.91.69:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1151), with no line terminators
Hash 47804c3e35653b452e0f06f188a678c8
8896c52b07c84e2e8eb3b055de45dcce57f403e3
6846d04c05f0b7d3af912d81a2ede1f3ff61d3bedc93bf78e5bc7b34f470e3d2
Analyzer Verdict Alert openphish Digital Federal Credit Union
fortinet Phishing
GET /etc.clientlibs/dcu/clientlibs/clientlib-site/resources/images/svg/posh-x-preview.svg HTTP/1.1
Host: dcutest.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dcutest.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 09:05:03 GMT
content-type: image/svg+xml
content-length: 505
x-dispatcher: dispatcher1useast1
x-vhost: publish
cache-control: public, max-age=31536000
x-content-type-options: nosniff
last-modified: Fri, 24 Sep 2021 12:01:25 GMT
etag: "47f-5ccbc81abef40-gzip"
content-encoding: gzip
strict-transport-security: max-age=31536000; includeSubDomains
content-security-policy: default-src *.quantummetric.com 'unsafe-inline' 'unsafe-eval' 'self' blob:; worker-src blob:; child-src blob:; object-src 'self'; media-src 'self' blob: usassets.chat.pega.com firefly-chat-production.s3.amazonaws.com https://www.dcu.org https://manifest.prod.boltdns.net/ https://dcu-dev-65.adobecqms.net/ https://players.brightcove.net/ https://vjs.zencdn.net/ https://bcbolt446c5271-a.akamaihd.net/; script-src 'self' 'unsafe-inline' 'unsafe-eval' blob: https://usuat.cobrowse.pega.com/ https://usuatassets.cobrowse.pega.com https://player.vimeo.com/ https://memchat.dcu-online.org/ https://geolocation.onetrust.com https://www.google.com https://cdn.cookielaw.org https://js-staging.poshdevelopment.com/ https://js.poshdevelopment.com https://api.poshdevelopment.com https://staging.poshdevelopment.com *.quantummetric.com http://dfcumanagedservicesstageenvironment.112.2o7.net https://analytics.twitter.com/ *.ads-twitter.com https://us.cobrowse.pega.com https://usassets.cobrowse.pega.com *.steelhousemedia.com https://dcu-mkt-stage1.campaign.adobe.com https://dcu.campaign.adobe.com https://www.calcxml.com/ *.cloudflare.com https://googleads.g.doubleclick.net https://chat.usefirefly.com https://usefirefly.com https://connect.facebook.net www.google-analytics.com assets.adobedtm.com *.timevaluecalculators.com *.bazaarvoice.com *.iesnare.com https://ajax.googleapis.com/ *.googleapis.com *.dcuinsurance.com tagmanager.google.com www.googletagmanager.com https://www.google-analytics.com https://firefly-chat-production.s3.amazonaws.com http://www.googleadservices.com https://connect.facebook.net http://digitalfederalcreditunion.sc.omtrdc.net https://digitalfederalcreditunion.sc.omtrdc.net https://dcu-dev-65.adobecqms.net/ https://dcu-qa-65.adobecqms.net/ https://dcu-stage-65.adobecqms.net/ https://stage.dcu.org/ *.dcu.org https://dculocator.wave2.io/ https://snap.licdn.com https://bat.bing.com https://up.pixel.ad https://ssl.google-analytics.com/ https://www.dcu.org/ https://static.ads-twitter.com/ https://players.brightcove.net/ https://vjs.zencdn.net/ https://bcbolt446c5271-a.akamaihd.net/ https://widget.use1.chat.pega.digital/ *.qualtrics.com; connect-src 'self' *.ads-twitter.com *.quantummetric.com https://dcu-mkt-stage1.campaign.adobe.com https://dcu.campaign.adobe.com wss://usefirefly.com https://usefirefly.com * *.cloudflare.com https://www.calcxml.com/ *.dcu.org *.omtrdc.net *.demdex.net *.bazaarvoice.com wss://chat.usefirefly.com https://www.google-analytics.com https://www.dcuinsurance.com http://digitalfederalcreditunion.sc.omtrdc.net https://digitalfederalcreditunion.sc.omtrdc.net https://www.dcu.org/ https://static.ads-twitter.com/; img-src 'self' *.com *.yahoo.com http://t.co/ dsum.casalemedia.com su.addthis.com s.thebrighttag.com image2.pubmatic.com ads.scorecardresearch.com t.mookie1.com x.bidswitch.net usermatch.krxd.net match.sharethrough.com cm.g.doubleclick.net ads.yahoo.com pixel.advertising.com insight.adsrvr.org www.facebook.com usassets.chat.pega.com firefly-chat-production.s3.amazonaws.com *.bazaarvoice.com https://www.dcu.org https://www.google.co.in https://www.google.com *.timevaluecalculators.com *.everesttech.net *.demdex.net *.omtrdc.net *.googleapis.com *.gstatic.com *.112.2o7.net https://stats.g.doubleclick.net https://www.calcxml.com/ www.google-analytics.com *.doubleclick.net/ https://bcbolt446c5271-a.akamaihd.net/ https://players.brightcove.net/ https://www.dcu.org/ data:; style-src 'self' 'unsafe-inline' *.cloudflare.com https://usuatassets.cobrowse.pega.com https://usassets.cobrowse.pega.com https://usefirefly.com https://dcu-mkt-stage1.campaign.adobe.com https://dcu.campaign.adobe.com https://www.calcxml.com/ https://tagmanager.google.com usassets.chat.pega.com *.timevaluecalculators.com https://fonts.googleapis.com/ *.googleapis.com *.bazaarvoice.com https://match.adsrvr.org https://match.prod.bidr.io https://dcu-dev-65.adobecqms.net/ https://dcu-qa-65.adobecqms.net/ https://dcu-stage-65.adobecqms.net/ https://stage.dcu.org/ *.dcu.org https://dculocator.wave2.io/ https://www.dcu.org/; font-src 'self' https://fonts.gstatic.com/ fonts.gstatic.com https://www.dcu.org/ data:; frame-src 'self' https://player.vimeo.com/ *.quantummetric.com https://dcu.secure.nonprofitsoapbox.com https://americasaves.org/ https://app.loanspq.com/ https://dcu.mortgagewebcenter.com/ https://apps.rps.ascensus.com/ https://forms.fivision.com/ *.doubleclick.net *.culookup.com *.dcu.org *.demdex.net https://dcu.demdex.net *.locatorsearch.com *.bazaarvoice.com https://www.fmsi-lts.com/DIG_WS https://fmsi-lts.com/ *.adobecqms.net http://cookies.onetrust.mgr.consensu.org/ stage.dcu.org https://stage.dcu.org/ https://dcu-stage-65.adobecqms.net/ http://dcu-stage-65.adobecqms.net/ https://dcu-dev-65.adobecqms.net/ https://dcu-qa-65.adobecqms.net/ https://dcu-stage.adobecqms.net/ *.dcu.org https://dcu-mkt-stage1.campaign.adobe.com https://dcu.campaign.adobe.com https://js-staging.poshdevelopment.com/ https://js.poshdevelopment.com https://api.poshdevelopment.com https://staging.poshdevelopment.com *.youtube.com https://dculocator.wave2.io/ https://www.dcu.org/ https://pixel.sitescout.com/ https://memchat.dcu-online.org/ *.qualtrics.com
content-disposition: inline
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 410f51195842d9b592b15d6588c36654.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: Sx1m58oo3ADZfadwVnDMx0G7yletBmhY7g80RSr_YmzghLWyFtVicQ==
cf-cache-status: MISS
expires: Sun, 04 Feb 2024 09:05:03 GMT
accept-ranges: bytes
server: cloudflare
cf-ray: 79423e08da87b529-OSL
X-Firefox-Spdy: h2
dcutest.com/content/dam/dcu/global/iconography/icon-support-center.svg
104.17.91.69200 OK 833 B URL HTTP/2 dcutest.com/content/dam/dcu/global/iconography/icon-support-center.svg
IP 104.17.91.69:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (412)
Hash 98d461ff8451ae030327443cfbb2f2f9
e6bce8bb64ace6851a33550364e9057bb4e5c36a
b3566b0f1319899ad38c0d8c36f002679b1dcb4c592af847c6ace2008edfbecd
Analyzer Verdict Alert openphish Digital Federal Credit Union
fortinet Phishing
GET /content/dam/dcu/global/iconography/icon-support-center.svg HTTP/1.1
Host: dcutest.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dcutest.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 09:05:03 GMT
content-type: image/svg+xml
content-length: 833
x-dispatcher: dispatcher1useast1
x-vhost: publish
content-disposition: inline
x-content-type-options: nosniff
last-modified: Tue, 20 Sep 2022 17:47:06 GMT
etag: "aec-5e91f6aa4da80-gzip"
content-encoding: gzip
cache-control: public, max-age=31536000
strict-transport-security: max-age=31536000; includeSubDomains
content-security-policy: default-src *.quantummetric.com 'unsafe-inline' 'unsafe-eval' 'self' blob:; worker-src blob:; child-src blob:; object-src 'self'; media-src 'self' blob: usassets.chat.pega.com firefly-chat-production.s3.amazonaws.com https://www.dcu.org https://manifest.prod.boltdns.net/ https://dcu-dev-65.adobecqms.net/ https://players.brightcove.net/ https://vjs.zencdn.net/ https://bcbolt446c5271-a.akamaihd.net/; script-src 'self' 'unsafe-inline' 'unsafe-eval' blob: https://usuat.cobrowse.pega.com/ https://usuatassets.cobrowse.pega.com https://player.vimeo.com/ https://memchat.dcu-online.org/ https://geolocation.onetrust.com https://www.google.com https://cdn.cookielaw.org https://js-staging.poshdevelopment.com/ https://js.poshdevelopment.com https://api.poshdevelopment.com https://staging.poshdevelopment.com *.quantummetric.com http://dfcumanagedservicesstageenvironment.112.2o7.net https://analytics.twitter.com/ *.ads-twitter.com https://us.cobrowse.pega.com https://usassets.cobrowse.pega.com *.steelhousemedia.com https://dcu-mkt-stage1.campaign.adobe.com https://dcu.campaign.adobe.com https://www.calcxml.com/ *.cloudflare.com https://googleads.g.doubleclick.net https://chat.usefirefly.com https://usefirefly.com https://connect.facebook.net www.google-analytics.com assets.adobedtm.com *.timevaluecalculators.com *.bazaarvoice.com *.iesnare.com https://ajax.googleapis.com/ *.googleapis.com *.dcuinsurance.com tagmanager.google.com www.googletagmanager.com https://www.google-analytics.com https://firefly-chat-production.s3.amazonaws.com http://www.googleadservices.com https://connect.facebook.net http://digitalfederalcreditunion.sc.omtrdc.net https://digitalfederalcreditunion.sc.omtrdc.net https://dcu-dev-65.adobecqms.net/ https://dcu-qa-65.adobecqms.net/ https://dcu-stage-65.adobecqms.net/ https://stage.dcu.org/ *.dcu.org https://dculocator.wave2.io/ https://snap.licdn.com https://bat.bing.com https://up.pixel.ad https://ssl.google-analytics.com/ https://www.dcu.org/ https://static.ads-twitter.com/ https://players.brightcove.net/ https://vjs.zencdn.net/ https://bcbolt446c5271-a.akamaihd.net/ https://widget.use1.chat.pega.digital/ *.qualtrics.com; connect-src 'self' *.ads-twitter.com *.quantummetric.com https://dcu-mkt-stage1.campaign.adobe.com https://dcu.campaign.adobe.com wss://usefirefly.com https://usefirefly.com * *.cloudflare.com https://www.calcxml.com/ *.dcu.org *.omtrdc.net *.demdex.net *.bazaarvoice.com wss://chat.usefirefly.com https://www.google-analytics.com https://www.dcuinsurance.com http://digitalfederalcreditunion.sc.omtrdc.net https://digitalfederalcreditunion.sc.omtrdc.net https://www.dcu.org/ https://static.ads-twitter.com/; img-src 'self' *.com *.yahoo.com http://t.co/ dsum.casalemedia.com su.addthis.com s.thebrighttag.com image2.pubmatic.com ads.scorecardresearch.com t.mookie1.com x.bidswitch.net usermatch.krxd.net match.sharethrough.com cm.g.doubleclick.net ads.yahoo.com pixel.advertising.com insight.adsrvr.org www.facebook.com usassets.chat.pega.com firefly-chat-production.s3.amazonaws.com *.bazaarvoice.com https://www.dcu.org https://www.google.co.in https://www.google.com *.timevaluecalculators.com *.everesttech.net *.demdex.net *.omtrdc.net *.googleapis.com *.gstatic.com *.112.2o7.net https://stats.g.doubleclick.net https://www.calcxml.com/ www.google-analytics.com *.doubleclick.net/ https://bcbolt446c5271-a.akamaihd.net/ https://players.brightcove.net/ https://www.dcu.org/ data:; style-src 'self' 'unsafe-inline' *.cloudflare.com https://usuatassets.cobrowse.pega.com https://usassets.cobrowse.pega.com https://usefirefly.com https://dcu-mkt-stage1.campaign.adobe.com https://dcu.campaign.adobe.com https://www.calcxml.com/ https://tagmanager.google.com usassets.chat.pega.com *.timevaluecalculators.com https://fonts.googleapis.com/ *.googleapis.com *.bazaarvoice.com https://match.adsrvr.org https://match.prod.bidr.io https://dcu-dev-65.adobecqms.net/ https://dcu-qa-65.adobecqms.net/ https://dcu-stage-65.adobecqms.net/ https://stage.dcu.org/ *.dcu.org https://dculocator.wave2.io/ https://www.dcu.org/; font-src 'self' https://fonts.gstatic.com/ fonts.gstatic.com https://www.dcu.org/ data:; frame-src 'self' https://player.vimeo.com/ *.quantummetric.com https://dcu.secure.nonprofitsoapbox.com https://americasaves.org/ https://app.loanspq.com/ https://dcu.mortgagewebcenter.com/ https://apps.rps.ascensus.com/ https://forms.fivision.com/ *.doubleclick.net *.culookup.com *.dcu.org *.demdex.net https://dcu.demdex.net *.locatorsearch.com *.bazaarvoice.com https://www.fmsi-lts.com/DIG_WS https://fmsi-lts.com/ *.adobecqms.net http://cookies.onetrust.mgr.consensu.org/ stage.dcu.org https://stage.dcu.org/ https://dcu-stage-65.adobecqms.net/ http://dcu-stage-65.adobecqms.net/ https://dcu-dev-65.adobecqms.net/ https://dcu-qa-65.adobecqms.net/ https://dcu-stage.adobecqms.net/ *.dcu.org https://dcu-mkt-stage1.campaign.adobe.com https://dcu.campaign.adobe.com https://js-staging.poshdevelopment.com/ https://js.poshdevelopment.com https://api.poshdevelopment.com https://staging.poshdevelopment.com *.youtube.com https://dculocator.wave2.io/ https://www.dcu.org/ https://pixel.sitescout.com/ https://memchat.dcu-online.org/ *.qualtrics.com
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 6480520a5e02f3163410e3134bd77baa.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: nMbarmw05VoVW1wyr0dLViGoU3lm31VNt3xv690MGsk50p5hB_QRxg==
cf-cache-status: MISS
expires: Sun, 04 Feb 2024 09:05:03 GMT
accept-ranges: bytes
server: cloudflare
cf-ray: 79423e08ea9db529-OSL
X-Firefox-Spdy: h2
dcutest.com/content/dam/dcu/global/pdp/images/DCU_IMG_LOC_PDP_Ltd-Savings_C10_1280_920_Mobile_PageHero_01.jpg
104.17.91.69200 OK 169 kB URL HTTP/2 dcutest.com/content/dam/dcu/global/pdp/images/DCU_IMG_LOC_PDP_Ltd-Savings_C10_1280_920_Mobile_PageHero_01.jpg
IP 104.17.91.69:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1280x920, components 3\012- data
Size 169 kB (169222 bytes)
Hash db873e62cf1e7ab82fa3310c85403e35
8b879860383041bf5f4ddde9f03369a6f6e97025
d687c275d569e985c6e9a555bea147d19c7d0eddf9b476591d15a04422d24b8d
Analyzer Verdict Alert openphish Digital Federal Credit Union
GET /content/dam/dcu/global/pdp/images/DCU_IMG_LOC_PDP_Ltd-Savings_C10_1280_920_Mobile_PageHero_01.jpg HTTP/1.1
Host: dcutest.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dcutest.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 09:05:03 GMT
content-type: image/jpeg
content-length: 169222
x-dispatcher: dispatcher2useast1
x-vhost: publish
content-disposition: inline
x-content-type-options: nosniff
last-modified: Tue, 16 Mar 2021 12:43:29 GMT
etag: "29506-5bda6b6951e40"
cache-control: public, max-age=31536000
strict-transport-security: max-age=31536000; includeSubDomains
content-security-policy: default-src *.quantummetric.com 'unsafe-inline' 'unsafe-eval' 'self' blob:; worker-src blob:; child-src blob:; object-src 'self'; media-src 'self' blob: usassets.chat.pega.com firefly-chat-production.s3.amazonaws.com https://www.dcu.org https://manifest.prod.boltdns.net/ https://dcu-dev-65.adobecqms.net/ https://players.brightcove.net/ https://vjs.zencdn.net/ https://bcbolt446c5271-a.akamaihd.net/; script-src 'self' 'unsafe-inline' 'unsafe-eval' blob: https://usuat.cobrowse.pega.com/ https://usuatassets.cobrowse.pega.com https://player.vimeo.com/ https://memchat.dcu-online.org/ https://geolocation.onetrust.com https://www.google.com https://cdn.cookielaw.org https://js-staging.poshdevelopment.com/ https://js.poshdevelopment.com https://api.poshdevelopment.com https://staging.poshdevelopment.com *.quantummetric.com http://dfcumanagedservicesstageenvironment.112.2o7.net https://analytics.twitter.com/ *.ads-twitter.com https://us.cobrowse.pega.com https://usassets.cobrowse.pega.com *.steelhousemedia.com https://dcu-mkt-stage1.campaign.adobe.com https://dcu.campaign.adobe.com https://www.calcxml.com/ *.cloudflare.com https://googleads.g.doubleclick.net https://chat.usefirefly.com https://usefirefly.com https://connect.facebook.net www.google-analytics.com assets.adobedtm.com *.timevaluecalculators.com *.bazaarvoice.com *.iesnare.com https://ajax.googleapis.com/ *.googleapis.com *.dcuinsurance.com tagmanager.google.com www.googletagmanager.com https://www.google-analytics.com https://firefly-chat-production.s3.amazonaws.com http://www.googleadservices.com https://connect.facebook.net http://digitalfederalcreditunion.sc.omtrdc.net https://digitalfederalcreditunion.sc.omtrdc.net https://dcu-dev-65.adobecqms.net/ https://dcu-qa-65.adobecqms.net/ https://dcu-stage-65.adobecqms.net/ https://stage.dcu.org/ *.dcu.org https://dculocator.wave2.io/ https://snap.licdn.com https://bat.bing.com https://up.pixel.ad https://ssl.google-analytics.com/ https://www.dcu.org/ https://static.ads-twitter.com/ https://players.brightcove.net/ https://vjs.zencdn.net/ https://bcbolt446c5271-a.akamaihd.net/ https://widget.use1.chat.pega.digital/ *.qualtrics.com; connect-src 'self' *.ads-twitter.com *.quantummetric.com https://dcu-mkt-stage1.campaign.adobe.com https://dcu.campaign.adobe.com wss://usefirefly.com https://usefirefly.com * *.cloudflare.com https://www.calcxml.com/ *.dcu.org *.omtrdc.net *.demdex.net *.bazaarvoice.com wss://chat.usefirefly.com https://www.google-analytics.com https://www.dcuinsurance.com http://digitalfederalcreditunion.sc.omtrdc.net https://digitalfederalcreditunion.sc.omtrdc.net https://www.dcu.org/ https://static.ads-twitter.com/; img-src 'self' *.com *.yahoo.com http://t.co/ dsum.casalemedia.com su.addthis.com s.thebrighttag.com image2.pubmatic.com ads.scorecardresearch.com t.mookie1.com x.bidswitch.net usermatch.krxd.net match.sharethrough.com cm.g.doubleclick.net ads.yahoo.com pixel.advertising.com insight.adsrvr.org www.facebook.com usassets.chat.pega.com firefly-chat-production.s3.amazonaws.com *.bazaarvoice.com https://www.dcu.org https://www.google.co.in https://www.google.com *.timevaluecalculators.com *.everesttech.net *.demdex.net *.omtrdc.net *.googleapis.com *.gstatic.com *.112.2o7.net https://stats.g.doubleclick.net https://www.calcxml.com/ www.google-analytics.com *.doubleclick.net/ https://bcbolt446c5271-a.akamaihd.net/ https://players.brightcove.net/ https://www.dcu.org/ data:; style-src 'self' 'unsafe-inline' *.cloudflare.com https://usuatassets.cobrowse.pega.com https://usassets.cobrowse.pega.com https://usefirefly.com https://dcu-mkt-stage1.campaign.adobe.com https://dcu.campaign.adobe.com https://www.calcxml.com/ https://tagmanager.google.com usassets.chat.pega.com *.timevaluecalculators.com https://fonts.googleapis.com/ *.googleapis.com *.bazaarvoice.com https://match.adsrvr.org https://match.prod.bidr.io https://dcu-dev-65.adobecqms.net/ https://dcu-qa-65.adobecqms.net/ https://dcu-stage-65.adobecqms.net/ https://stage.dcu.org/ *.dcu.org https://dculocator.wave2.io/ https://www.dcu.org/; font-src 'self' https://fonts.gstatic.com/ fonts.gstatic.com https://www.dcu.org/ data:; frame-src 'self' https://player.vimeo.com/ *.quantummetric.com https://dcu.secure.nonprofitsoapbox.com https://americasaves.org/ https://app.loanspq.com/ https://dcu.mortgagewebcenter.com/ https://apps.rps.ascensus.com/ https://forms.fivision.com/ *.doubleclick.net *.culookup.com *.dcu.org *.demdex.net https://dcu.demdex.net *.locatorsearch.com *.bazaarvoice.com https://www.fmsi-lts.com/DIG_WS https://fmsi-lts.com/ *.adobecqms.net http://cookies.onetrust.mgr.consensu.org/ stage.dcu.org https://stage.dcu.org/ https://dcu-stage-65.adobecqms.net/ http://dcu-stage-65.adobecqms.net/ https://dcu-dev-65.adobecqms.net/ https://dcu-qa-65.adobecqms.net/ https://dcu-stage.adobecqms.net/ *.dcu.org https://dcu-mkt-stage1.campaign.adobe.com https://dcu.campaign.adobe.com https://js-staging.poshdevelopment.com/ https://js.poshdevelopment.com https://api.poshdevelopment.com https://staging.poshdevelopment.com *.youtube.com https://dculocator.wave2.io/ https://www.dcu.org/ https://pixel.sitescout.com/ https://memchat.dcu-online.org/ *.qualtrics.com
x-cache: Hit from cloudfront
via: 1.1 f66e3db0f0449307dba3fbf72bbf3bac.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: dZFNmW2inbgh_IKeWSNGBOgf75PRM1TV5V6cu5fJTCZX9slfAFgJEw==
cf-cache-status: MISS
expires: Sun, 04 Feb 2024 09:05:03 GMT
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 79423e08da85b529-OSL
X-Firefox-Spdy: h2
dcutest.com/content/dam/dcu/global/home/images/0621-branches-open-homepage-carousel-desktop-sd.jpg
104.17.91.69200 OK 140 kB URL HTTP/2 dcutest.com/content/dam/dcu/global/home/images/0621-branches-open-homepage-carousel-desktop-sd.jpg
IP 104.17.91.69:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1600x375, components 3\012- data
Size 140 kB (139715 bytes)
Hash ef47a3fcd41f5293abe0869b99d26dc7
3aead55194c0b86386969dcbd223fc5e0719f493
4269004add68585a86d8e3acf9d2440b7da1af9afe7aaeecf019a08afec2ef90
Analyzer Verdict Alert openphish Digital Federal Credit Union
GET /content/dam/dcu/global/home/images/0621-branches-open-homepage-carousel-desktop-sd.jpg HTTP/1.1
Host: dcutest.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dcutest.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 09:05:03 GMT
content-type: image/jpeg
content-length: 139715
x-dispatcher: dispatcher2useast1
x-vhost: publish
content-disposition: inline
x-content-type-options: nosniff
last-modified: Sun, 13 Jun 2021 22:51:32 GMT
etag: "221c3-5c4ad9503e500"
cache-control: public, max-age=31536000
strict-transport-security: max-age=31536000; includeSubDomains
content-security-policy: default-src *.quantummetric.com 'unsafe-inline' 'unsafe-eval' 'self' blob:; worker-src blob:; child-src blob:; object-src 'self'; media-src 'self' blob: usassets.chat.pega.com firefly-chat-production.s3.amazonaws.com https://www.dcu.org https://manifest.prod.boltdns.net/ https://dcu-dev-65.adobecqms.net/ https://players.brightcove.net/ https://vjs.zencdn.net/ https://bcbolt446c5271-a.akamaihd.net/; script-src 'self' 'unsafe-inline' 'unsafe-eval' blob: https://usuat.cobrowse.pega.com/ https://usuatassets.cobrowse.pega.com https://player.vimeo.com/ https://memchat.dcu-online.org/ https://geolocation.onetrust.com https://www.google.com https://cdn.cookielaw.org https://js-staging.poshdevelopment.com/ https://js.poshdevelopment.com https://api.poshdevelopment.com https://staging.poshdevelopment.com *.quantummetric.com http://dfcumanagedservicesstageenvironment.112.2o7.net https://analytics.twitter.com/ *.ads-twitter.com https://us.cobrowse.pega.com https://usassets.cobrowse.pega.com *.steelhousemedia.com https://dcu-mkt-stage1.campaign.adobe.com https://dcu.campaign.adobe.com https://www.calcxml.com/ *.cloudflare.com https://googleads.g.doubleclick.net https://chat.usefirefly.com https://usefirefly.com https://connect.facebook.net www.google-analytics.com assets.adobedtm.com *.timevaluecalculators.com *.bazaarvoice.com *.iesnare.com https://ajax.googleapis.com/ *.googleapis.com *.dcuinsurance.com tagmanager.google.com www.googletagmanager.com https://www.google-analytics.com https://firefly-chat-production.s3.amazonaws.com http://www.googleadservices.com https://connect.facebook.net http://digitalfederalcreditunion.sc.omtrdc.net https://digitalfederalcreditunion.sc.omtrdc.net https://dcu-dev-65.adobecqms.net/ https://dcu-qa-65.adobecqms.net/ https://dcu-stage-65.adobecqms.net/ https://stage.dcu.org/ *.dcu.org https://dculocator.wave2.io/ https://snap.licdn.com https://bat.bing.com https://up.pixel.ad https://ssl.google-analytics.com/ https://www.dcu.org/ https://static.ads-twitter.com/ https://players.brightcove.net/ https://vjs.zencdn.net/ https://bcbolt446c5271-a.akamaihd.net/ https://widget.use1.chat.pega.digital/ *.qualtrics.com; connect-src 'self' *.ads-twitter.com *.quantummetric.com https://dcu-mkt-stage1.campaign.adobe.com https://dcu.campaign.adobe.com wss://usefirefly.com https://usefirefly.com * *.cloudflare.com https://www.calcxml.com/ *.dcu.org *.omtrdc.net *.demdex.net *.bazaarvoice.com wss://chat.usefirefly.com https://www.google-analytics.com https://www.dcuinsurance.com http://digitalfederalcreditunion.sc.omtrdc.net https://digitalfederalcreditunion.sc.omtrdc.net https://www.dcu.org/ https://static.ads-twitter.com/; img-src 'self' *.com *.yahoo.com http://t.co/ dsum.casalemedia.com su.addthis.com s.thebrighttag.com image2.pubmatic.com ads.scorecardresearch.com t.mookie1.com x.bidswitch.net usermatch.krxd.net match.sharethrough.com cm.g.doubleclick.net ads.yahoo.com pixel.advertising.com insight.adsrvr.org www.facebook.com usassets.chat.pega.com firefly-chat-production.s3.amazonaws.com *.bazaarvoice.com https://www.dcu.org https://www.google.co.in https://www.google.com *.timevaluecalculators.com *.everesttech.net *.demdex.net *.omtrdc.net *.googleapis.com *.gstatic.com *.112.2o7.net https://stats.g.doubleclick.net https://www.calcxml.com/ www.google-analytics.com *.doubleclick.net/ https://bcbolt446c5271-a.akamaihd.net/ https://players.brightcove.net/ https://www.dcu.org/ data:; style-src 'self' 'unsafe-inline' *.cloudflare.com https://usuatassets.cobrowse.pega.com https://usassets.cobrowse.pega.com https://usefirefly.com https://dcu-mkt-stage1.campaign.adobe.com https://dcu.campaign.adobe.com https://www.calcxml.com/ https://tagmanager.google.com usassets.chat.pega.com *.timevaluecalculators.com https://fonts.googleapis.com/ *.googleapis.com *.bazaarvoice.com https://match.adsrvr.org https://match.prod.bidr.io https://dcu-dev-65.adobecqms.net/ https://dcu-qa-65.adobecqms.net/ https://dcu-stage-65.adobecqms.net/ https://stage.dcu.org/ *.dcu.org https://dculocator.wave2.io/ https://www.dcu.org/; font-src 'self' https://fonts.gstatic.com/ fonts.gstatic.com https://www.dcu.org/ data:; frame-src 'self' https://player.vimeo.com/ *.quantummetric.com https://dcu.secure.nonprofitsoapbox.com https://americasaves.org/ https://app.loanspq.com/ https://dcu.mortgagewebcenter.com/ https://apps.rps.ascensus.com/ https://forms.fivision.com/ *.doubleclick.net *.culookup.com *.dcu.org *.demdex.net https://dcu.demdex.net *.locatorsearch.com *.bazaarvoice.com https://www.fmsi-lts.com/DIG_WS https://fmsi-lts.com/ *.adobecqms.net http://cookies.onetrust.mgr.consensu.org/ stage.dcu.org https://stage.dcu.org/ https://dcu-stage-65.adobecqms.net/ http://dcu-stage-65.adobecqms.net/ https://dcu-dev-65.adobecqms.net/ https://dcu-qa-65.adobecqms.net/ https://dcu-stage.adobecqms.net/ *.dcu.org https://dcu-mkt-stage1.campaign.adobe.com https://dcu.campaign.adobe.com https://js-staging.poshdevelopment.com/ https://js.poshdevelopment.com https://api.poshdevelopment.com https://staging.poshdevelopment.com *.youtube.com https://dculocator.wave2.io/ https://www.dcu.org/ https://pixel.sitescout.com/ https://memchat.dcu-online.org/ *.qualtrics.com
x-cache: Hit from cloudfront
via: 1.1 f66e3db0f0449307dba3fbf72bbf3bac.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: uHukIa2i2s0PUdsfHViKKX6hSiyoMMtcOLFAK7_sWoWgQP88Yq2Ynw==
cf-cache-status: MISS
expires: Sun, 04 Feb 2024 09:05:03 GMT
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 79423e08da92b529-OSL
X-Firefox-Spdy: h2
dcutest.com/content/dam/dcu/global/home/images/march-db-carousel-desktop.jpg
104.17.91.69200 OK 174 kB URL HTTP/2 dcutest.com/content/dam/dcu/global/home/images/march-db-carousel-desktop.jpg
IP 104.17.91.69:0
File type JPEG image data, JFIF standard 1.02, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 1600x375, components 3\012- data
Size 174 kB (174212 bytes)
Hash 7503c32ccdf480e9c89be532dfb693a9
5cc5d39df54b989e316daf116736c87fd9106618
86386a40c20ecbe084a928d847baa15e843bb523aaed4c4fdf224d128b013a80
Analyzer Verdict Alert openphish Digital Federal Credit Union
GET /content/dam/dcu/global/home/images/march-db-carousel-desktop.jpg HTTP/1.1
Host: dcutest.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dcutest.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 09:05:03 GMT
content-type: image/jpeg
content-length: 174212
x-dispatcher: dispatcher1useast1
x-vhost: publish
content-disposition: inline
x-content-type-options: nosniff
last-modified: Thu, 31 Mar 2022 15:20:47 GMT
etag: "2a884-5db8534d411c0"
cache-control: public, max-age=31536000
strict-transport-security: max-age=31536000; includeSubDomains
content-security-policy: default-src *.quantummetric.com 'unsafe-inline' 'unsafe-eval' 'self' blob:; worker-src blob:; child-src blob:; object-src 'self'; media-src 'self' blob: usassets.chat.pega.com firefly-chat-production.s3.amazonaws.com https://www.dcu.org https://manifest.prod.boltdns.net/ https://dcu-dev-65.adobecqms.net/ https://players.brightcove.net/ https://vjs.zencdn.net/ https://bcbolt446c5271-a.akamaihd.net/; script-src 'self' 'unsafe-inline' 'unsafe-eval' blob: https://usuat.cobrowse.pega.com/ https://usuatassets.cobrowse.pega.com https://player.vimeo.com/ https://memchat.dcu-online.org/ https://geolocation.onetrust.com https://www.google.com https://cdn.cookielaw.org https://js-staging.poshdevelopment.com/ https://js.poshdevelopment.com https://api.poshdevelopment.com https://staging.poshdevelopment.com *.quantummetric.com http://dfcumanagedservicesstageenvironment.112.2o7.net https://analytics.twitter.com/ *.ads-twitter.com https://us.cobrowse.pega.com https://usassets.cobrowse.pega.com *.steelhousemedia.com https://dcu-mkt-stage1.campaign.adobe.com https://dcu.campaign.adobe.com https://www.calcxml.com/ *.cloudflare.com https://googleads.g.doubleclick.net https://chat.usefirefly.com https://usefirefly.com https://connect.facebook.net www.google-analytics.com assets.adobedtm.com *.timevaluecalculators.com *.bazaarvoice.com *.iesnare.com https://ajax.googleapis.com/ *.googleapis.com *.dcuinsurance.com tagmanager.google.com www.googletagmanager.com https://www.google-analytics.com https://firefly-chat-production.s3.amazonaws.com http://www.googleadservices.com https://connect.facebook.net http://digitalfederalcreditunion.sc.omtrdc.net https://digitalfederalcreditunion.sc.omtrdc.net https://dcu-dev-65.adobecqms.net/ https://dcu-qa-65.adobecqms.net/ https://dcu-stage-65.adobecqms.net/ https://stage.dcu.org/ *.dcu.org https://dculocator.wave2.io/ https://snap.licdn.com https://bat.bing.com https://up.pixel.ad https://ssl.google-analytics.com/ https://www.dcu.org/ https://static.ads-twitter.com/ https://players.brightcove.net/ https://vjs.zencdn.net/ https://bcbolt446c5271-a.akamaihd.net/ https://widget.use1.chat.pega.digital/ *.qualtrics.com; connect-src 'self' *.ads-twitter.com *.quantummetric.com https://dcu-mkt-stage1.campaign.adobe.com https://dcu.campaign.adobe.com wss://usefirefly.com https://usefirefly.com * *.cloudflare.com https://www.calcxml.com/ *.dcu.org *.omtrdc.net *.demdex.net *.bazaarvoice.com wss://chat.usefirefly.com https://www.google-analytics.com https://www.dcuinsurance.com http://digitalfederalcreditunion.sc.omtrdc.net https://digitalfederalcreditunion.sc.omtrdc.net https://www.dcu.org/ https://static.ads-twitter.com/; img-src 'self' *.com *.yahoo.com http://t.co/ dsum.casalemedia.com su.addthis.com s.thebrighttag.com image2.pubmatic.com ads.scorecardresearch.com t.mookie1.com x.bidswitch.net usermatch.krxd.net match.sharethrough.com cm.g.doubleclick.net ads.yahoo.com pixel.advertising.com insight.adsrvr.org www.facebook.com usassets.chat.pega.com firefly-chat-production.s3.amazonaws.com *.bazaarvoice.com https://www.dcu.org https://www.google.co.in https://www.google.com *.timevaluecalculators.com *.everesttech.net *.demdex.net *.omtrdc.net *.googleapis.com *.gstatic.com *.112.2o7.net https://stats.g.doubleclick.net https://www.calcxml.com/ www.google-analytics.com *.doubleclick.net/ https://bcbolt446c5271-a.akamaihd.net/ https://players.brightcove.net/ https://www.dcu.org/ data:; style-src 'self' 'unsafe-inline' *.cloudflare.com https://usuatassets.cobrowse.pega.com https://usassets.cobrowse.pega.com https://usefirefly.com https://dcu-mkt-stage1.campaign.adobe.com https://dcu.campaign.adobe.com https://www.calcxml.com/ https://tagmanager.google.com usassets.chat.pega.com *.timevaluecalculators.com https://fonts.googleapis.com/ *.googleapis.com *.bazaarvoice.com https://match.adsrvr.org https://match.prod.bidr.io https://dcu-dev-65.adobecqms.net/ https://dcu-qa-65.adobecqms.net/ https://dcu-stage-65.adobecqms.net/ https://stage.dcu.org/ *.dcu.org https://dculocator.wave2.io/ https://www.dcu.org/; font-src 'self' https://fonts.gstatic.com/ fonts.gstatic.com https://www.dcu.org/ data:; frame-src 'self' https://player.vimeo.com/ *.quantummetric.com https://dcu.secure.nonprofitsoapbox.com https://americasaves.org/ https://app.loanspq.com/ https://dcu.mortgagewebcenter.com/ https://apps.rps.ascensus.com/ https://forms.fivision.com/ *.doubleclick.net *.culookup.com *.dcu.org *.demdex.net https://dcu.demdex.net *.locatorsearch.com *.bazaarvoice.com https://www.fmsi-lts.com/DIG_WS https://fmsi-lts.com/ *.adobecqms.net http://cookies.onetrust.mgr.consensu.org/ stage.dcu.org https://stage.dcu.org/ https://dcu-stage-65.adobecqms.net/ http://dcu-stage-65.adobecqms.net/ https://dcu-dev-65.adobecqms.net/ https://dcu-qa-65.adobecqms.net/ https://dcu-stage.adobecqms.net/ *.dcu.org https://dcu-mkt-stage1.campaign.adobe.com https://dcu.campaign.adobe.com https://js-staging.poshdevelopment.com/ https://js.poshdevelopment.com https://api.poshdevelopment.com https://staging.poshdevelopment.com *.youtube.com https://dculocator.wave2.io/ https://www.dcu.org/ https://pixel.sitescout.com/ https://memchat.dcu-online.org/ *.qualtrics.com
x-cache: Hit from cloudfront
via: 1.1 5de23153ac267c206221751e1cccb6e8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: bvimxXw8UK7Jt1kmuD74-7qELtB0eVDrCNB27nTnRJxq0KfvZJOytg==
cf-cache-status: MISS
expires: Sun, 04 Feb 2024 09:05:03 GMT
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 79423e08da90b529-OSL
X-Firefox-Spdy: h2
dcutest.com/content/dam/dcu/global/home/images/auto149-desktop.jpg
104.17.91.69200 OK 281 kB URL HTTP/2 dcutest.com/content/dam/dcu/global/home/images/auto149-desktop.jpg
IP 104.17.91.69:0
File type JPEG image data, JFIF standard 1.02, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 1600x376, components 3\012- data
Size 281 kB (281388 bytes)
Hash 7f48e38598595662d767e5d023bb1bb8
65da89f15eddf77520a85810310446c682d2ab5a
a34d79902a072dd25fc43cfa4c0b22c8be18afdb19d45ac74c05a72f8261fcce
Analyzer Verdict Alert openphish Digital Federal Credit Union
GET /content/dam/dcu/global/home/images/auto149-desktop.jpg HTTP/1.1
Host: dcutest.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dcutest.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 09:05:03 GMT
content-type: image/jpeg
content-length: 281388
x-dispatcher: dispatcher2useast1
x-vhost: publish
content-disposition: inline
x-content-type-options: nosniff
last-modified: Wed, 23 Feb 2022 15:02:40 GMT
etag: "44b2c-5d8b0c1c04400"
cache-control: public, max-age=31536000
strict-transport-security: max-age=31536000; includeSubDomains
content-security-policy: default-src *.quantummetric.com 'unsafe-inline' 'unsafe-eval' 'self' blob:; worker-src blob:; child-src blob:; object-src 'self'; media-src 'self' blob: usassets.chat.pega.com firefly-chat-production.s3.amazonaws.com https://www.dcu.org https://manifest.prod.boltdns.net/ https://dcu-dev-65.adobecqms.net/ https://players.brightcove.net/ https://vjs.zencdn.net/ https://bcbolt446c5271-a.akamaihd.net/; script-src 'self' 'unsafe-inline' 'unsafe-eval' blob: https://usuat.cobrowse.pega.com/ https://usuatassets.cobrowse.pega.com https://player.vimeo.com/ https://memchat.dcu-online.org/ https://geolocation.onetrust.com https://www.google.com https://cdn.cookielaw.org https://js-staging.poshdevelopment.com/ https://js.poshdevelopment.com https://api.poshdevelopment.com https://staging.poshdevelopment.com *.quantummetric.com http://dfcumanagedservicesstageenvironment.112.2o7.net https://analytics.twitter.com/ *.ads-twitter.com https://us.cobrowse.pega.com https://usassets.cobrowse.pega.com *.steelhousemedia.com https://dcu-mkt-stage1.campaign.adobe.com https://dcu.campaign.adobe.com https://www.calcxml.com/ *.cloudflare.com https://googleads.g.doubleclick.net https://chat.usefirefly.com https://usefirefly.com https://connect.facebook.net www.google-analytics.com assets.adobedtm.com *.timevaluecalculators.com *.bazaarvoice.com *.iesnare.com https://ajax.googleapis.com/ *.googleapis.com *.dcuinsurance.com tagmanager.google.com www.googletagmanager.com https://www.google-analytics.com https://firefly-chat-production.s3.amazonaws.com http://www.googleadservices.com https://connect.facebook.net http://digitalfederalcreditunion.sc.omtrdc.net https://digitalfederalcreditunion.sc.omtrdc.net https://dcu-dev-65.adobecqms.net/ https://dcu-qa-65.adobecqms.net/ https://dcu-stage-65.adobecqms.net/ https://stage.dcu.org/ *.dcu.org https://dculocator.wave2.io/ https://snap.licdn.com https://bat.bing.com https://up.pixel.ad https://ssl.google-analytics.com/ https://www.dcu.org/ https://static.ads-twitter.com/ https://players.brightcove.net/ https://vjs.zencdn.net/ https://bcbolt446c5271-a.akamaihd.net/ https://widget.use1.chat.pega.digital/ *.qualtrics.com; connect-src 'self' *.ads-twitter.com *.quantummetric.com https://dcu-mkt-stage1.campaign.adobe.com https://dcu.campaign.adobe.com wss://usefirefly.com https://usefirefly.com * *.cloudflare.com https://www.calcxml.com/ *.dcu.org *.omtrdc.net *.demdex.net *.bazaarvoice.com wss://chat.usefirefly.com https://www.google-analytics.com https://www.dcuinsurance.com http://digitalfederalcreditunion.sc.omtrdc.net https://digitalfederalcreditunion.sc.omtrdc.net https://www.dcu.org/ https://static.ads-twitter.com/; img-src 'self' *.com *.yahoo.com http://t.co/ dsum.casalemedia.com su.addthis.com s.thebrighttag.com image2.pubmatic.com ads.scorecardresearch.com t.mookie1.com x.bidswitch.net usermatch.krxd.net match.sharethrough.com cm.g.doubleclick.net ads.yahoo.com pixel.advertising.com insight.adsrvr.org www.facebook.com usassets.chat.pega.com firefly-chat-production.s3.amazonaws.com *.bazaarvoice.com https://www.dcu.org https://www.google.co.in https://www.google.com *.timevaluecalculators.com *.everesttech.net *.demdex.net *.omtrdc.net *.googleapis.com *.gstatic.com *.112.2o7.net https://stats.g.doubleclick.net https://www.calcxml.com/ www.google-analytics.com *.doubleclick.net/ https://bcbolt446c5271-a.akamaihd.net/ https://players.brightcove.net/ https://www.dcu.org/ data:; style-src 'self' 'unsafe-inline' *.cloudflare.com https://usuatassets.cobrowse.pega.com https://usassets.cobrowse.pega.com https://usefirefly.com https://dcu-mkt-stage1.campaign.adobe.com https://dcu.campaign.adobe.com https://www.calcxml.com/ https://tagmanager.google.com usassets.chat.pega.com *.timevaluecalculators.com https://fonts.googleapis.com/ *.googleapis.com *.bazaarvoice.com https://match.adsrvr.org https://match.prod.bidr.io https://dcu-dev-65.adobecqms.net/ https://dcu-qa-65.adobecqms.net/ https://dcu-stage-65.adobecqms.net/ https://stage.dcu.org/ *.dcu.org https://dculocator.wave2.io/ https://www.dcu.org/; font-src 'self' https://fonts.gstatic.com/ fonts.gstatic.com https://www.dcu.org/ data:; frame-src 'self' https://player.vimeo.com/ *.quantummetric.com https://dcu.secure.nonprofitsoapbox.com https://americasaves.org/ https://app.loanspq.com/ https://dcu.mortgagewebcenter.com/ https://apps.rps.ascensus.com/ https://forms.fivision.com/ *.doubleclick.net *.culookup.com *.dcu.org *.demdex.net https://dcu.demdex.net *.locatorsearch.com *.bazaarvoice.com https://www.fmsi-lts.com/DIG_WS https://fmsi-lts.com/ *.adobecqms.net http://cookies.onetrust.mgr.consensu.org/ stage.dcu.org https://stage.dcu.org/ https://dcu-stage-65.adobecqms.net/ http://dcu-stage-65.adobecqms.net/ https://dcu-dev-65.adobecqms.net/ https://dcu-qa-65.adobecqms.net/ https://dcu-stage.adobecqms.net/ *.dcu.org https://dcu-mkt-stage1.campaign.adobe.com https://dcu.campaign.adobe.com https://js-staging.poshdevelopment.com/ https://js.poshdevelopment.com https://api.poshdevelopment.com https://staging.poshdevelopment.com *.youtube.com https://dculocator.wave2.io/ https://www.dcu.org/ https://pixel.sitescout.com/ https://memchat.dcu-online.org/ *.qualtrics.com
x-cache: Hit from cloudfront
via: 1.1 095562e8748e634f880ee3c4ada2b6d0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: Wc4jgUsNB5Y3Qor05Oy2Ca-WJkN1I4eNEpKiRxB-3zt47dZE2advNQ==
cf-cache-status: MISS
expires: Sun, 04 Feb 2024 09:05:03 GMT
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 79423e08da95b529-OSL
X-Firefox-Spdy: h2
dcutest.com/content/dam/dcu/global/community-images/cares-community-desktop.jpg
104.17.91.69200 OK 231 kB URL HTTP/2 dcutest.com/content/dam/dcu/global/community-images/cares-community-desktop.jpg
IP 104.17.91.69:0
File type JPEG image data, progressive, precision 8, 1136x424, components 3\012- data
Size 231 kB (231071 bytes)
Hash 959ecf7f5b9b96e8d8002e4f941be362
e9a0d8fd8ad78a444d006c00d84b2cb2a5d13977
9efabdc02b60e20724ec6ffde66503d5809659a8019635a221dcc6771a07f0a5
Analyzer Verdict Alert openphish Digital Federal Credit Union
GET /content/dam/dcu/global/community-images/cares-community-desktop.jpg HTTP/1.1
Host: dcutest.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dcutest.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 09:05:03 GMT
content-type: image/jpeg
content-length: 231071
x-dispatcher: dispatcher2useast1
x-vhost: publish
content-disposition: inline
x-content-type-options: nosniff
last-modified: Fri, 29 Apr 2022 16:31:16 GMT
etag: "3869f-5ddcd924b5d00"
cache-control: public, max-age=31536000
strict-transport-security: max-age=31536000; includeSubDomains
content-security-policy: default-src *.quantummetric.com 'unsafe-inline' 'unsafe-eval' 'self' blob:; worker-src blob:; child-src blob:; object-src 'self'; media-src 'self' blob: usassets.chat.pega.com firefly-chat-production.s3.amazonaws.com https://www.dcu.org https://manifest.prod.boltdns.net/ https://dcu-dev-65.adobecqms.net/ https://players.brightcove.net/ https://vjs.zencdn.net/ https://bcbolt446c5271-a.akamaihd.net/; script-src 'self' 'unsafe-inline' 'unsafe-eval' blob: https://usuat.cobrowse.pega.com/ https://usuatassets.cobrowse.pega.com https://player.vimeo.com/ https://memchat.dcu-online.org/ https://geolocation.onetrust.com https://www.google.com https://cdn.cookielaw.org https://js-staging.poshdevelopment.com/ https://js.poshdevelopment.com https://api.poshdevelopment.com https://staging.poshdevelopment.com *.quantummetric.com http://dfcumanagedservicesstageenvironment.112.2o7.net https://analytics.twitter.com/ *.ads-twitter.com https://us.cobrowse.pega.com https://usassets.cobrowse.pega.com *.steelhousemedia.com https://dcu-mkt-stage1.campaign.adobe.com https://dcu.campaign.adobe.com https://www.calcxml.com/ *.cloudflare.com https://googleads.g.doubleclick.net https://chat.usefirefly.com https://usefirefly.com https://connect.facebook.net www.google-analytics.com assets.adobedtm.com *.timevaluecalculators.com *.bazaarvoice.com *.iesnare.com https://ajax.googleapis.com/ *.googleapis.com *.dcuinsurance.com tagmanager.google.com www.googletagmanager.com https://www.google-analytics.com https://firefly-chat-production.s3.amazonaws.com http://www.googleadservices.com https://connect.facebook.net http://digitalfederalcreditunion.sc.omtrdc.net https://digitalfederalcreditunion.sc.omtrdc.net https://dcu-dev-65.adobecqms.net/ https://dcu-qa-65.adobecqms.net/ https://dcu-stage-65.adobecqms.net/ https://stage.dcu.org/ *.dcu.org https://dculocator.wave2.io/ https://snap.licdn.com https://bat.bing.com https://up.pixel.ad https://ssl.google-analytics.com/ https://www.dcu.org/ https://static.ads-twitter.com/ https://players.brightcove.net/ https://vjs.zencdn.net/ https://bcbolt446c5271-a.akamaihd.net/ https://widget.use1.chat.pega.digital/ *.qualtrics.com; connect-src 'self' *.ads-twitter.com *.quantummetric.com https://dcu-mkt-stage1.campaign.adobe.com https://dcu.campaign.adobe.com wss://usefirefly.com https://usefirefly.com * *.cloudflare.com https://www.calcxml.com/ *.dcu.org *.omtrdc.net *.demdex.net *.bazaarvoice.com wss://chat.usefirefly.com https://www.google-analytics.com https://www.dcuinsurance.com http://digitalfederalcreditunion.sc.omtrdc.net https://digitalfederalcreditunion.sc.omtrdc.net https://www.dcu.org/ https://static.ads-twitter.com/; img-src 'self' *.com *.yahoo.com http://t.co/ dsum.casalemedia.com su.addthis.com s.thebrighttag.com image2.pubmatic.com ads.scorecardresearch.com t.mookie1.com x.bidswitch.net usermatch.krxd.net match.sharethrough.com cm.g.doubleclick.net ads.yahoo.com pixel.advertising.com insight.adsrvr.org www.facebook.com usassets.chat.pega.com firefly-chat-production.s3.amazonaws.com *.bazaarvoice.com https://www.dcu.org https://www.google.co.in https://www.google.com *.timevaluecalculators.com *.everesttech.net *.demdex.net *.omtrdc.net *.googleapis.com *.gstatic.com *.112.2o7.net https://stats.g.doubleclick.net https://www.calcxml.com/ www.google-analytics.com *.doubleclick.net/ https://bcbolt446c5271-a.akamaihd.net/ https://players.brightcove.net/ https://www.dcu.org/ data:; style-src 'self' 'unsafe-inline' *.cloudflare.com https://usuatassets.cobrowse.pega.com https://usassets.cobrowse.pega.com https://usefirefly.com https://dcu-mkt-stage1.campaign.adobe.com https://dcu.campaign.adobe.com https://www.calcxml.com/ https://tagmanager.google.com usassets.chat.pega.com *.timevaluecalculators.com https://fonts.googleapis.com/ *.googleapis.com *.bazaarvoice.com https://match.adsrvr.org https://match.prod.bidr.io https://dcu-dev-65.adobecqms.net/ https://dcu-qa-65.adobecqms.net/ https://dcu-stage-65.adobecqms.net/ https://stage.dcu.org/ *.dcu.org https://dculocator.wave2.io/ https://www.dcu.org/; font-src 'self' https://fonts.gstatic.com/ fonts.gstatic.com https://www.dcu.org/ data:; frame-src 'self' https://player.vimeo.com/ *.quantummetric.com https://dcu.secure.nonprofitsoapbox.com https://americasaves.org/ https://app.loanspq.com/ https://dcu.mortgagewebcenter.com/ https://apps.rps.ascensus.com/ https://forms.fivision.com/ *.doubleclick.net *.culookup.com *.dcu.org *.demdex.net https://dcu.demdex.net *.locatorsearch.com *.bazaarvoice.com https://www.fmsi-lts.com/DIG_WS https://fmsi-lts.com/ *.adobecqms.net http://cookies.onetrust.mgr.consensu.org/ stage.dcu.org https://stage.dcu.org/ https://dcu-stage-65.adobecqms.net/ http://dcu-stage-65.adobecqms.net/ https://dcu-dev-65.adobecqms.net/ https://dcu-qa-65.adobecqms.net/ https://dcu-stage.adobecqms.net/ *.dcu.org https://dcu-mkt-stage1.campaign.adobe.com https://dcu.campaign.adobe.com https://js-staging.poshdevelopment.com/ https://js.poshdevelopment.com https://api.poshdevelopment.com https://staging.poshdevelopment.com *.youtube.com https://dculocator.wave2.io/ https://www.dcu.org/ https://pixel.sitescout.com/ https://memchat.dcu-online.org/ *.qualtrics.com
x-cache: Hit from cloudfront
via: 1.1 aac54e3fe9825ce24d51e0204433c2c0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: LE1MbzA9bVvt9PqD_tW4Catxch6uj0NN7EOPClWiIdMpMefIwkr7AQ==
cf-cache-status: MISS
expires: Sun, 04 Feb 2024 09:05:03 GMT
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 79423e08eaa2b529-OSL
X-Firefox-Spdy: h2
dcutest.com/content/dam/dcu/global/home/images/Checking-home-carousel-desktop-sd.jpg
104.17.91.69200 OK 537 kB URL HTTP/2 dcutest.com/content/dam/dcu/global/home/images/Checking-home-carousel-desktop-sd.jpg
IP 104.17.91.69:0
File type JPEG image data, baseline, precision 8, 1600x375, components 3\012- data
Size 537 kB (536717 bytes)
Hash 8fcfd552ffec552592f214680cf136c8
9986327b1dca708b5970e90638fb237190618da3
ad0ddcb72ecf5af15402ad6bdddb48f2fc6b0bd8c0e2223e1c42b197fed92d48
Analyzer Verdict Alert openphish Digital Federal Credit Union
GET /content/dam/dcu/global/home/images/Checking-home-carousel-desktop-sd.jpg HTTP/1.1
Host: dcutest.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dcutest.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 09:05:03 GMT
content-type: image/jpeg
content-length: 536717
x-dispatcher: dispatcher1useast1
x-vhost: publish
content-disposition: inline
x-content-type-options: nosniff
last-modified: Fri, 23 Apr 2021 18:27:27 GMT
etag: "8308d-5c0a7f2ac41c0"
cache-control: public, max-age=31536000
strict-transport-security: max-age=31536000; includeSubDomains
content-security-policy: default-src *.quantummetric.com 'unsafe-inline' 'unsafe-eval' 'self' blob:; worker-src blob:; child-src blob:; object-src 'self'; media-src 'self' blob: usassets.chat.pega.com firefly-chat-production.s3.amazonaws.com https://www.dcu.org https://manifest.prod.boltdns.net/ https://dcu-dev-65.adobecqms.net/ https://players.brightcove.net/ https://vjs.zencdn.net/ https://bcbolt446c5271-a.akamaihd.net/; script-src 'self' 'unsafe-inline' 'unsafe-eval' blob: https://usuat.cobrowse.pega.com/ https://usuatassets.cobrowse.pega.com https://player.vimeo.com/ https://memchat.dcu-online.org/ https://geolocation.onetrust.com https://www.google.com https://cdn.cookielaw.org https://js-staging.poshdevelopment.com/ https://js.poshdevelopment.com https://api.poshdevelopment.com https://staging.poshdevelopment.com *.quantummetric.com http://dfcumanagedservicesstageenvironment.112.2o7.net https://analytics.twitter.com/ *.ads-twitter.com https://us.cobrowse.pega.com https://usassets.cobrowse.pega.com *.steelhousemedia.com https://dcu-mkt-stage1.campaign.adobe.com https://dcu.campaign.adobe.com https://www.calcxml.com/ *.cloudflare.com https://googleads.g.doubleclick.net https://chat.usefirefly.com https://usefirefly.com https://connect.facebook.net www.google-analytics.com assets.adobedtm.com *.timevaluecalculators.com *.bazaarvoice.com *.iesnare.com https://ajax.googleapis.com/ *.googleapis.com *.dcuinsurance.com tagmanager.google.com www.googletagmanager.com https://www.google-analytics.com https://firefly-chat-production.s3.amazonaws.com http://www.googleadservices.com https://connect.facebook.net http://digitalfederalcreditunion.sc.omtrdc.net https://digitalfederalcreditunion.sc.omtrdc.net https://dcu-dev-65.adobecqms.net/ https://dcu-qa-65.adobecqms.net/ https://dcu-stage-65.adobecqms.net/ https://stage.dcu.org/ *.dcu.org https://dculocator.wave2.io/ https://snap.licdn.com https://bat.bing.com https://up.pixel.ad https://ssl.google-analytics.com/ https://www.dcu.org/ https://static.ads-twitter.com/ https://players.brightcove.net/ https://vjs.zencdn.net/ https://bcbolt446c5271-a.akamaihd.net/ https://widget.use1.chat.pega.digital/ *.qualtrics.com; connect-src 'self' *.ads-twitter.com *.quantummetric.com https://dcu-mkt-stage1.campaign.adobe.com https://dcu.campaign.adobe.com wss://usefirefly.com https://usefirefly.com * *.cloudflare.com https://www.calcxml.com/ *.dcu.org *.omtrdc.net *.demdex.net *.bazaarvoice.com wss://chat.usefirefly.com https://www.google-analytics.com https://www.dcuinsurance.com http://digitalfederalcreditunion.sc.omtrdc.net https://digitalfederalcreditunion.sc.omtrdc.net https://www.dcu.org/ https://static.ads-twitter.com/; img-src 'self' *.com *.yahoo.com http://t.co/ dsum.casalemedia.com su.addthis.com s.thebrighttag.com image2.pubmatic.com ads.scorecardresearch.com t.mookie1.com x.bidswitch.net usermatch.krxd.net match.sharethrough.com cm.g.doubleclick.net ads.yahoo.com pixel.advertising.com insight.adsrvr.org www.facebook.com usassets.chat.pega.com firefly-chat-production.s3.amazonaws.com *.bazaarvoice.com https://www.dcu.org https://www.google.co.in https://www.google.com *.timevaluecalculators.com *.everesttech.net *.demdex.net *.omtrdc.net *.googleapis.com *.gstatic.com *.112.2o7.net https://stats.g.doubleclick.net https://www.calcxml.com/ www.google-analytics.com *.doubleclick.net/ https://bcbolt446c5271-a.akamaihd.net/ https://players.brightcove.net/ https://www.dcu.org/ data:; style-src 'self' 'unsafe-inline' *.cloudflare.com https://usuatassets.cobrowse.pega.com https://usassets.cobrowse.pega.com https://usefirefly.com https://dcu-mkt-stage1.campaign.adobe.com https://dcu.campaign.adobe.com https://www.calcxml.com/ https://tagmanager.google.com usassets.chat.pega.com *.timevaluecalculators.com https://fonts.googleapis.com/ *.googleapis.com *.bazaarvoice.com https://match.adsrvr.org https://match.prod.bidr.io https://dcu-dev-65.adobecqms.net/ https://dcu-qa-65.adobecqms.net/ https://dcu-stage-65.adobecqms.net/ https://stage.dcu.org/ *.dcu.org https://dculocator.wave2.io/ https://www.dcu.org/; font-src 'self' https://fonts.gstatic.com/ fonts.gstatic.com https://www.dcu.org/ data:; frame-src 'self' https://player.vimeo.com/ *.quantummetric.com https://dcu.secure.nonprofitsoapbox.com https://americasaves.org/ https://app.loanspq.com/ https://dcu.mortgagewebcenter.com/ https://apps.rps.ascensus.com/ https://forms.fivision.com/ *.doubleclick.net *.culookup.com *.dcu.org *.demdex.net https://dcu.demdex.net *.locatorsearch.com *.bazaarvoice.com https://www.fmsi-lts.com/DIG_WS https://fmsi-lts.com/ *.adobecqms.net http://cookies.onetrust.mgr.consensu.org/ stage.dcu.org https://stage.dcu.org/ https://dcu-stage-65.adobecqms.net/ http://dcu-stage-65.adobecqms.net/ https://dcu-dev-65.adobecqms.net/ https://dcu-qa-65.adobecqms.net/ https://dcu-stage.adobecqms.net/ *.dcu.org https://dcu-mkt-stage1.campaign.adobe.com https://dcu.campaign.adobe.com https://js-staging.poshdevelopment.com/ https://js.poshdevelopment.com https://api.poshdevelopment.com https://staging.poshdevelopment.com *.youtube.com https://dculocator.wave2.io/ https://www.dcu.org/ https://pixel.sitescout.com/ https://memchat.dcu-online.org/ *.qualtrics.com
x-cache: Hit from cloudfront
via: 1.1 bb1da7862c4968b28920b91b324095c0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: xJYfB-2UBYUA7MvD95zqP7eSYFixtkUHol7YSff0TTvmwHWGDwpsYQ==
cf-cache-status: MISS
expires: Sun, 04 Feb 2024 09:05:03 GMT
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 79423e08ea9ab529-OSL
X-Firefox-Spdy: h2
dcutest.com/content/dam/dcu/global/home/images/CoOpSharedBranches_Homepage_Desktop_IMG_DCU_785x480.jpg
104.17.91.69200 OK 96 kB URL HTTP/2 dcutest.com/content/dam/dcu/global/home/images/CoOpSharedBranches_Homepage_Desktop_IMG_DCU_785x480.jpg
IP 104.17.91.69:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 785x480, components 3\012- data
Hash 4ce75c5b571f6afb0ffa0d84101854e7
2f3966b6a4b7671c7c48b1e9178ce1d297d2e454
25d8f88f86ff9a987a10d958e7fc68ade676fd926c772c65278e4ef1951e9806
Analyzer Verdict Alert openphish Digital Federal Credit Union
GET /content/dam/dcu/global/home/images/CoOpSharedBranches_Homepage_Desktop_IMG_DCU_785x480.jpg HTTP/1.1
Host: dcutest.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dcutest.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 09:05:03 GMT
content-type: image/jpeg
content-length: 95942
x-dispatcher: dispatcher1useast1
x-vhost: publish
content-disposition: inline
x-content-type-options: nosniff
last-modified: Wed, 04 Sep 2019 19:56:58 GMT
etag: "176c6-591bf9b8c5680"
cache-control: public, max-age=31536000
strict-transport-security: max-age=31536000; includeSubDomains
content-security-policy: default-src *.quantummetric.com 'unsafe-inline' 'unsafe-eval' 'self' blob:; worker-src blob:; child-src blob:; object-src 'self'; media-src 'self' blob: usassets.chat.pega.com firefly-chat-production.s3.amazonaws.com https://www.dcu.org https://manifest.prod.boltdns.net/ https://dcu-dev-65.adobecqms.net/ https://players.brightcove.net/ https://vjs.zencdn.net/ https://bcbolt446c5271-a.akamaihd.net/; script-src 'self' 'unsafe-inline' 'unsafe-eval' blob: https://usuat.cobrowse.pega.com/ https://usuatassets.cobrowse.pega.com https://player.vimeo.com/ https://memchat.dcu-online.org/ https://geolocation.onetrust.com https://www.google.com https://cdn.cookielaw.org https://js-staging.poshdevelopment.com/ https://js.poshdevelopment.com https://api.poshdevelopment.com https://staging.poshdevelopment.com *.quantummetric.com http://dfcumanagedservicesstageenvironment.112.2o7.net https://analytics.twitter.com/ *.ads-twitter.com https://us.cobrowse.pega.com https://usassets.cobrowse.pega.com *.steelhousemedia.com https://dcu-mkt-stage1.campaign.adobe.com https://dcu.campaign.adobe.com https://www.calcxml.com/ *.cloudflare.com https://googleads.g.doubleclick.net https://chat.usefirefly.com https://usefirefly.com https://connect.facebook.net www.google-analytics.com assets.adobedtm.com *.timevaluecalculators.com *.bazaarvoice.com *.iesnare.com https://ajax.googleapis.com/ *.googleapis.com *.dcuinsurance.com tagmanager.google.com www.googletagmanager.com https://www.google-analytics.com https://firefly-chat-production.s3.amazonaws.com http://www.googleadservices.com https://connect.facebook.net http://digitalfederalcreditunion.sc.omtrdc.net https://digitalfederalcreditunion.sc.omtrdc.net https://dcu-dev-65.adobecqms.net/ https://dcu-qa-65.adobecqms.net/ https://dcu-stage-65.adobecqms.net/ https://stage.dcu.org/ *.dcu.org https://dculocator.wave2.io/ https://snap.licdn.com https://bat.bing.com https://up.pixel.ad https://ssl.google-analytics.com/ https://www.dcu.org/ https://static.ads-twitter.com/ https://players.brightcove.net/ https://vjs.zencdn.net/ https://bcbolt446c5271-a.akamaihd.net/ https://widget.use1.chat.pega.digital/ *.qualtrics.com; connect-src 'self' *.ads-twitter.com *.quantummetric.com https://dcu-mkt-stage1.campaign.adobe.com https://dcu.campaign.adobe.com wss://usefirefly.com https://usefirefly.com * *.cloudflare.com https://www.calcxml.com/ *.dcu.org *.omtrdc.net *.demdex.net *.bazaarvoice.com wss://chat.usefirefly.com https://www.google-analytics.com https://www.dcuinsurance.com http://digitalfederalcreditunion.sc.omtrdc.net https://digitalfederalcreditunion.sc.omtrdc.net https://www.dcu.org/ https://static.ads-twitter.com/; img-src 'self' *.com *.yahoo.com http://t.co/ dsum.casalemedia.com su.addthis.com s.thebrighttag.com image2.pubmatic.com ads.scorecardresearch.com t.mookie1.com x.bidswitch.net usermatch.krxd.net match.sharethrough.com cm.g.doubleclick.net ads.yahoo.com pixel.advertising.com insight.adsrvr.org www.facebook.com usassets.chat.pega.com firefly-chat-production.s3.amazonaws.com *.bazaarvoice.com https://www.dcu.org https://www.google.co.in https://www.google.com *.timevaluecalculators.com *.everesttech.net *.demdex.net *.omtrdc.net *.googleapis.com *.gstatic.com *.112.2o7.net https://stats.g.doubleclick.net https://www.calcxml.com/ www.google-analytics.com *.doubleclick.net/ https://bcbolt446c5271-a.akamaihd.net/ https://players.brightcove.net/ https://www.dcu.org/ data:; style-src 'self' 'unsafe-inline' *.cloudflare.com https://usuatassets.cobrowse.pega.com https://usassets.cobrowse.pega.com https://usefirefly.com https://dcu-mkt-stage1.campaign.adobe.com https://dcu.campaign.adobe.com https://www.calcxml.com/ https://tagmanager.google.com usassets.chat.pega.com *.timevaluecalculators.com https://fonts.googleapis.com/ *.googleapis.com *.bazaarvoice.com https://match.adsrvr.org https://match.prod.bidr.io https://dcu-dev-65.adobecqms.net/ https://dcu-qa-65.adobecqms.net/ https://dcu-stage-65.adobecqms.net/ https://stage.dcu.org/ *.dcu.org https://dculocator.wave2.io/ https://www.dcu.org/; font-src 'self' https://fonts.gstatic.com/ fonts.gstatic.com https://www.dcu.org/ data:; frame-src 'self' https://player.vimeo.com/ *.quantummetric.com https://dcu.secure.nonprofitsoapbox.com https://americasaves.org/ https://app.loanspq.com/ https://dcu.mortgagewebcenter.com/ https://apps.rps.ascensus.com/ https://forms.fivision.com/ *.doubleclick.net *.culookup.com *.dcu.org *.demdex.net https://dcu.demdex.net *.locatorsearch.com *.bazaarvoice.com https://www.fmsi-lts.com/DIG_WS https://fmsi-lts.com/ *.adobecqms.net http://cookies.onetrust.mgr.consensu.org/ stage.dcu.org https://stage.dcu.org/ https://dcu-stage-65.adobecqms.net/ http://dcu-stage-65.adobecqms.net/ https://dcu-dev-65.adobecqms.net/ https://dcu-qa-65.adobecqms.net/ https://dcu-stage.adobecqms.net/ *.dcu.org https://dcu-mkt-stage1.campaign.adobe.com https://dcu.campaign.adobe.com https://js-staging.poshdevelopment.com/ https://js.poshdevelopment.com https://api.poshdevelopment.com https://staging.poshdevelopment.com *.youtube.com https://dculocator.wave2.io/ https://www.dcu.org/ https://pixel.sitescout.com/ https://memchat.dcu-online.org/ *.qualtrics.com
x-cache: Hit from cloudfront
via: 1.1 1d8cf7c8865ed1078c19a98771ad34ca.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: HOI2n_h7s1n6kobQW8wveNA6G3nZ72NNWyqUWBORiwtulpWEu2GA4w==
cf-cache-status: MISS
expires: Sun, 04 Feb 2024 09:05:03 GMT
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 79423e08fab3b529-OSL
X-Firefox-Spdy: h2
dcutest.com/content/dam/dcu/global/community-images/asw22-comm-carousel-desktop.jpg
104.17.91.69200 OK 172 kB URL HTTP/2 dcutest.com/content/dam/dcu/global/community-images/asw22-comm-carousel-desktop.jpg
IP 104.17.91.69:0
File type JPEG image data, progressive, precision 8, 1136x424, components 3\012- data
Size 172 kB (171792 bytes)
Hash 318d350d1f6fb6827feb6a5838b47941
3ef64f63532279d98d3b38fcfa5533e3c647ef06
0b0d4250bd2b571e489c4cabbe3bcfac773718982d26974394f57b357e1f4647
Analyzer Verdict Alert openphish Digital Federal Credit Union
GET /content/dam/dcu/global/community-images/asw22-comm-carousel-desktop.jpg HTTP/1.1
Host: dcutest.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dcutest.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 09:05:03 GMT
content-type: image/jpeg
content-length: 171792
x-dispatcher: dispatcher2useast1
x-vhost: publish
content-disposition: inline
x-content-type-options: nosniff
last-modified: Wed, 23 Feb 2022 17:04:54 GMT
etag: "29f10-5d8b276e43980"
cache-control: public, max-age=31536000
strict-transport-security: max-age=31536000; includeSubDomains
content-security-policy: default-src *.quantummetric.com 'unsafe-inline' 'unsafe-eval' 'self' blob:; worker-src blob:; child-src blob:; object-src 'self'; media-src 'self' blob: usassets.chat.pega.com firefly-chat-production.s3.amazonaws.com https://www.dcu.org https://manifest.prod.boltdns.net/ https://dcu-dev-65.adobecqms.net/ https://players.brightcove.net/ https://vjs.zencdn.net/ https://bcbolt446c5271-a.akamaihd.net/; script-src 'self' 'unsafe-inline' 'unsafe-eval' blob: https://usuat.cobrowse.pega.com/ https://usuatassets.cobrowse.pega.com https://player.vimeo.com/ https://memchat.dcu-online.org/ https://geolocation.onetrust.com https://www.google.com https://cdn.cookielaw.org https://js-staging.poshdevelopment.com/ https://js.poshdevelopment.com https://api.poshdevelopment.com https://staging.poshdevelopment.com *.quantummetric.com http://dfcumanagedservicesstageenvironment.112.2o7.net https://analytics.twitter.com/ *.ads-twitter.com https://us.cobrowse.pega.com https://usassets.cobrowse.pega.com *.steelhousemedia.com https://dcu-mkt-stage1.campaign.adobe.com https://dcu.campaign.adobe.com https://www.calcxml.com/ *.cloudflare.com https://googleads.g.doubleclick.net https://chat.usefirefly.com https://usefirefly.com https://connect.facebook.net www.google-analytics.com assets.adobedtm.com *.timevaluecalculators.com *.bazaarvoice.com *.iesnare.com https://ajax.googleapis.com/ *.googleapis.com *.dcuinsurance.com tagmanager.google.com www.googletagmanager.com https://www.google-analytics.com https://firefly-chat-production.s3.amazonaws.com http://www.googleadservices.com https://connect.facebook.net http://digitalfederalcreditunion.sc.omtrdc.net https://digitalfederalcreditunion.sc.omtrdc.net https://dcu-dev-65.adobecqms.net/ https://dcu-qa-65.adobecqms.net/ https://dcu-stage-65.adobecqms.net/ https://stage.dcu.org/ *.dcu.org https://dculocator.wave2.io/ https://snap.licdn.com https://bat.bing.com https://up.pixel.ad https://ssl.google-analytics.com/ https://www.dcu.org/ https://static.ads-twitter.com/ https://players.brightcove.net/ https://vjs.zencdn.net/ https://bcbolt446c5271-a.akamaihd.net/ https://widget.use1.chat.pega.digital/ *.qualtrics.com; connect-src 'self' *.ads-twitter.com *.quantummetric.com https://dcu-mkt-stage1.campaign.adobe.com https://dcu.campaign.adobe.com wss://usefirefly.com https://usefirefly.com * *.cloudflare.com https://www.calcxml.com/ *.dcu.org *.omtrdc.net *.demdex.net *.bazaarvoice.com wss://chat.usefirefly.com https://www.google-analytics.com https://www.dcuinsurance.com http://digitalfederalcreditunion.sc.omtrdc.net https://digitalfederalcreditunion.sc.omtrdc.net https://www.dcu.org/ https://static.ads-twitter.com/; img-src 'self' *.com *.yahoo.com http://t.co/ dsum.casalemedia.com su.addthis.com s.thebrighttag.com image2.pubmatic.com ads.scorecardresearch.com t.mookie1.com x.bidswitch.net usermatch.krxd.net match.sharethrough.com cm.g.doubleclick.net ads.yahoo.com pixel.advertising.com insight.adsrvr.org www.facebook.com usassets.chat.pega.com firefly-chat-production.s3.amazonaws.com *.bazaarvoice.com https://www.dcu.org https://www.google.co.in https://www.google.com *.timevaluecalculators.com *.everesttech.net *.demdex.net *.omtrdc.net *.googleapis.com *.gstatic.com *.112.2o7.net https://stats.g.doubleclick.net https://www.calcxml.com/ www.google-analytics.com *.doubleclick.net/ https://bcbolt446c5271-a.akamaihd.net/ https://players.brightcove.net/ https://www.dcu.org/ data:; style-src 'self' 'unsafe-inline' *.cloudflare.com https://usuatassets.cobrowse.pega.com https://usassets.cobrowse.pega.com https://usefirefly.com https://dcu-mkt-stage1.campaign.adobe.com https://dcu.campaign.adobe.com https://www.calcxml.com/ https://tagmanager.google.com usassets.chat.pega.com *.timevaluecalculators.com https://fonts.googleapis.com/ *.googleapis.com *.bazaarvoice.com https://match.adsrvr.org https://match.prod.bidr.io https://dcu-dev-65.adobecqms.net/ https://dcu-qa-65.adobecqms.net/ https://dcu-stage-65.adobecqms.net/ https://stage.dcu.org/ *.dcu.org https://dculocator.wave2.io/ https://www.dcu.org/; font-src 'self' https://fonts.gstatic.com/ fonts.gstatic.com https://www.dcu.org/ data:; frame-src 'self' https://player.vimeo.com/ *.quantummetric.com https://dcu.secure.nonprofitsoapbox.com https://americasaves.org/ https://app.loanspq.com/ https://dcu.mortgagewebcenter.com/ https://apps.rps.ascensus.com/ https://forms.fivision.com/ *.doubleclick.net *.culookup.com *.dcu.org *.demdex.net https://dcu.demdex.net *.locatorsearch.com *.bazaarvoice.com https://www.fmsi-lts.com/DIG_WS https://fmsi-lts.com/ *.adobecqms.net http://cookies.onetrust.mgr.consensu.org/ stage.dcu.org https://stage.dcu.org/ https://dcu-stage-65.adobecqms.net/ http://dcu-stage-65.adobecqms.net/ https://dcu-dev-65.adobecqms.net/ https://dcu-qa-65.adobecqms.net/ https://dcu-stage.adobecqms.net/ *.dcu.org https://dcu-mkt-stage1.campaign.adobe.com https://dcu.campaign.adobe.com https://js-staging.poshdevelopment.com/ https://js.poshdevelopment.com https://api.poshdevelopment.com https://staging.poshdevelopment.com *.youtube.com https://dculocator.wave2.io/ https://www.dcu.org/ https://pixel.sitescout.com/ https://memchat.dcu-online.org/ *.qualtrics.com
x-cache: Hit from cloudfront
via: 1.1 bcd5dadccb0831729969c938747ff79a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 3mhMJvlVt7FNOMLSYpGS4We9f6fRdwREROtCxNa7HJGA70mHE_eJRQ==
cf-cache-status: MISS
expires: Sun, 04 Feb 2024 09:05:03 GMT
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 79423e08eaa3b529-OSL
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 471 B IP 142.250.74.163:0
Hash c181c51a9326d56e60915a792c306c2c
de1cc0ce1384905e65a9fa9575743091d785e528
b74bc74e2920124b3288a980f9a7b59e3450ba63f2333027440cd6ebbdfdbf8d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 09:05:03 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.googleapis.com/css?family=Nunito+Sans:300,400,600,700,800
142.250.74.74200 OK 1.1 kB URL HTTP/2 fonts.googleapis.com/css?family=Nunito+Sans:300,400,600,700,800
IP 142.250.74.74:0
Hash 048ab5ae23e7d1f582a337c66d2e3530
bd57aeb230a9659cb17278d8aafe5c6276d3fcfd
463b0b605dc17020453c7199e2a09d38283fdcb437c0146233a236415d8fe8a6
GET /css?family=Nunito+Sans:300,400,600,700,800 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dcutest.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sat, 04 Feb 2023 09:05:03 GMT
date: Sat, 04 Feb 2023 09:05:03 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
dcutest.com/etc.clientlibs/dcu/clientlibs/clientlib-site-layout.min.css
104.17.91.69200 OK 5.4 kB URL HTTP/2 dcutest.com/etc.clientlibs/dcu/clientlibs/clientlib-site-layout.min.css
IP 104.17.91.69:0
Hash 2f8a02cd1db2c96147b95abd42496a7c
2f0a49f91e660e88678e2d5a779bb04121de60a6
df0d9bfee957ad9d95383c9a5c1f33cd76b5640fd5c0dbc8ce22dfd65a585c45
Analyzer Verdict Alert openphish Digital Federal Credit Union
GET /etc.clientlibs/dcu/clientlibs/clientlib-site-layout.min.css HTTP/1.1
Host: dcutest.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dcutest.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 09:05:03 GMT
content-type: text/css;charset=utf-8
content-length: 5436
x-dispatcher: dispatcher2useast1
x-vhost: publish
x-content-type-options: nosniff
last-modified: Mon, 24 Oct 2022 19:51:49 GMT
content-encoding: gzip
cache-control: public, max-age=14400
strict-transport-security: max-age=31536000; includeSubDomains
content-security-policy: default-src *.quantummetric.com 'unsafe-inline' 'unsafe-eval' 'self' blob:; worker-src blob:; child-src blob:; object-src 'self'; media-src 'self' blob: usassets.chat.pega.com firefly-chat-production.s3.amazonaws.com https://www.dcu.org https://manifest.prod.boltdns.net/ https://dcu-dev-65.adobecqms.net/ https://players.brightcove.net/ https://vjs.zencdn.net/ https://bcbolt446c5271-a.akamaihd.net/; script-src 'self' 'unsafe-inline' 'unsafe-eval' blob: https://usuat.cobrowse.pega.com/ https://usuatassets.cobrowse.pega.com https://player.vimeo.com/ https://memchat.dcu-online.org/ https://geolocation.onetrust.com https://www.google.com https://cdn.cookielaw.org https://js-staging.poshdevelopment.com/ https://js.poshdevelopment.com https://api.poshdevelopment.com https://staging.poshdevelopment.com *.quantummetric.com http://dfcumanagedservicesstageenvironment.112.2o7.net https://analytics.twitter.com/ *.ads-twitter.com https://us.cobrowse.pega.com https://usassets.cobrowse.pega.com *.steelhousemedia.com https://dcu-mkt-stage1.campaign.adobe.com https://dcu.campaign.adobe.com https://www.calcxml.com/ *.cloudflare.com https://googleads.g.doubleclick.net https://chat.usefirefly.com https://usefirefly.com https://connect.facebook.net www.google-analytics.com assets.adobedtm.com *.timevaluecalculators.com *.bazaarvoice.com *.iesnare.com https://ajax.googleapis.com/ *.googleapis.com *.dcuinsurance.com tagmanager.google.com www.googletagmanager.com https://www.google-analytics.com https://firefly-chat-production.s3.amazonaws.com http://www.googleadservices.com https://connect.facebook.net http://digitalfederalcreditunion.sc.omtrdc.net https://digitalfederalcreditunion.sc.omtrdc.net https://dcu-dev-65.adobecqms.net/ https://dcu-qa-65.adobecqms.net/ https://dcu-stage-65.adobecqms.net/ https://stage.dcu.org/ *.dcu.org https://dculocator.wave2.io/ https://snap.licdn.com https://bat.bing.com https://up.pixel.ad https://ssl.google-analytics.com/ https://www.dcu.org/ https://static.ads-twitter.com/ https://players.brightcove.net/ https://vjs.zencdn.net/ https://bcbolt446c5271-a.akamaihd.net/ https://widget.use1.chat.pega.digital/ *.qualtrics.com; connect-src 'self' *.ads-twitter.com *.quantummetric.com https://dcu-mkt-stage1.campaign.adobe.com https://dcu.campaign.adobe.com wss://usefirefly.com https://usefirefly.com * *.cloudflare.com https://www.calcxml.com/ *.dcu.org *.omtrdc.net *.demdex.net *.bazaarvoice.com wss://chat.usefirefly.com https://www.google-analytics.com https://www.dcuinsurance.com http://digitalfederalcreditunion.sc.omtrdc.net https://digitalfederalcreditunion.sc.omtrdc.net https://www.dcu.org/ https://static.ads-twitter.com/; img-src 'self' *.com *.yahoo.com http://t.co/ dsum.casalemedia.com su.addthis.com s.thebrighttag.com image2.pubmatic.com ads.scorecardresearch.com t.mookie1.com x.bidswitch.net usermatch.krxd.net match.sharethrough.com cm.g.doubleclick.net ads.yahoo.com pixel.advertising.com insight.adsrvr.org www.facebook.com usassets.chat.pega.com firefly-chat-production.s3.amazonaws.com *.bazaarvoice.com https://www.dcu.org https://www.google.co.in https://www.google.com *.timevaluecalculators.com *.everesttech.net *.demdex.net *.omtrdc.net *.googleapis.com *.gstatic.com *.112.2o7.net https://stats.g.doubleclick.net https://www.calcxml.com/ www.google-analytics.com *.doubleclick.net/ https://bcbolt446c5271-a.akamaihd.net/ https://players.brightcove.net/ https://www.dcu.org/ data:; style-src 'self' 'unsafe-inline' *.cloudflare.com https://usuatassets.cobrowse.pega.com https://usassets.cobrowse.pega.com https://usefirefly.com https://dcu-mkt-stage1.campaign.adobe.com https://dcu.campaign.adobe.com https://www.calcxml.com/ https://tagmanager.google.com usassets.chat.pega.com *.timevaluecalculators.com https://fonts.googleapis.com/ *.googleapis.com *.bazaarvoice.com https://match.adsrvr.org https://match.prod.bidr.io https://dcu-dev-65.adobecqms.net/ https://dcu-qa-65.adobecqms.net/ https://dcu-stage-65.adobecqms.net/ https://stage.dcu.org/ *.dcu.org https://dculocator.wave2.io/ https://www.dcu.org/; font-src 'self' https://fonts.gstatic.com/ fonts.gstatic.com https://www.dcu.org/ data:; frame-src 'self' https://player.vimeo.com/ *.quantummetric.com https://dcu.secure.nonprofitsoapbox.com https://americasaves.org/ https://app.loanspq.com/ https://dcu.mortgagewebcenter.com/ https://apps.rps.ascensus.com/ https://forms.fivision.com/ *.doubleclick.net *.culookup.com *.dcu.org *.demdex.net https://dcu.demdex.net *.locatorsearch.com *.bazaarvoice.com https://www.fmsi-lts.com/DIG_WS https://fmsi-lts.com/ *.adobecqms.net http://cookies.onetrust.mgr.consensu.org/ stage.dcu.org https://stage.dcu.org/ https://dcu-stage-65.adobecqms.net/ http://dcu-stage-65.adobecqms.net/ https://dcu-dev-65.adobecqms.net/ https://dcu-qa-65.adobecqms.net/ https://dcu-stage.adobecqms.net/ *.dcu.org https://dcu-mkt-stage1.campaign.adobe.com https://dcu.campaign.adobe.com https://js-staging.poshdevelopment.com/ https://js.poshdevelopment.com https://api.poshdevelopment.com https://staging.poshdevelopment.com *.youtube.com https://dculocator.wave2.io/ https://www.dcu.org/ https://pixel.sitescout.com/ https://memchat.dcu-online.org/ *.qualtrics.com
etag: "19435-5ebcd1f451f40-gzip"
vary: Accept-Encoding
x-cache: Miss from cloudfront
via: 1.1 aa34a836095df9de9d246a53dd63f1d6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: a9yue_D47gz4qciyZ4GB8vn3axBZaILz6nxBQdjDOBvh0_y2MYNtlQ==
cf-cache-status: MISS
expires: Sat, 04 Feb 2023 13:05:03 GMT
accept-ranges: bytes
server: cloudflare
cf-ray: 79423e08ca7db529-OSL
X-Firefox-Spdy: h2
dcutest.com/etc.clientlibs/dcu/clientlibs/clientlib-site.min.js
104.17.91.69200 OK 50 kB URL HTTP/2 dcutest.com/etc.clientlibs/dcu/clientlibs/clientlib-site.min.js
IP 104.17.91.69:0
Hash d8b1c6c7d276054483f85f4e63bcc2ba
e97b4bdf87c4dd76b8f7d2445139d409206f4927
9c159ac2f60cbb9a18e6069713e28dfbd93399f520c0a4a89226812ba285d87d
Analyzer Verdict Alert openphish Digital Federal Credit Union
fortinet Phishing
GET /etc.clientlibs/dcu/clientlibs/clientlib-site.min.js HTTP/1.1
Host: dcutest.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dcutest.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 09:05:03 GMT
content-type: application/javascript;charset=utf-8
content-length: 49773
x-dispatcher: dispatcher1useast1
x-vhost: publish
x-content-type-options: nosniff
last-modified: Thu, 02 Feb 2023 16:21:17 GMT
etag: "3f567-5f3b9f450f940-gzip"
content-encoding: gzip
cache-control: public, max-age=14400
strict-transport-security: max-age=31536000; includeSubDomains
content-security-policy: default-src *.quantummetric.com 'unsafe-inline' 'unsafe-eval' 'self' blob:; worker-src blob:; child-src blob:; object-src 'self'; media-src 'self' blob: usassets.chat.pega.com firefly-chat-production.s3.amazonaws.com https://www.dcu.org https://manifest.prod.boltdns.net/ https://dcu-dev-65.adobecqms.net/ https://players.brightcove.net/ https://vjs.zencdn.net/ https://bcbolt446c5271-a.akamaihd.net/; script-src 'self' 'unsafe-inline' 'unsafe-eval' blob: https://usuat.cobrowse.pega.com/ https://usuatassets.cobrowse.pega.com https://player.vimeo.com/ https://memchat.dcu-online.org/ https://geolocation.onetrust.com https://www.google.com https://cdn.cookielaw.org https://js-staging.poshdevelopment.com/ https://js.poshdevelopment.com https://api.poshdevelopment.com https://staging.poshdevelopment.com *.quantummetric.com http://dfcumanagedservicesstageenvironment.112.2o7.net https://analytics.twitter.com/ *.ads-twitter.com https://us.cobrowse.pega.com https://usassets.cobrowse.pega.com *.steelhousemedia.com https://dcu-mkt-stage1.campaign.adobe.com https://dcu.campaign.adobe.com https://www.calcxml.com/ *.cloudflare.com https://googleads.g.doubleclick.net https://chat.usefirefly.com https://usefirefly.com https://connect.facebook.net www.google-analytics.com assets.adobedtm.com *.timevaluecalculators.com *.bazaarvoice.com *.iesnare.com https://ajax.googleapis.com/ *.googleapis.com *.dcuinsurance.com tagmanager.google.com www.googletagmanager.com https://www.google-analytics.com https://firefly-chat-production.s3.amazonaws.com http://www.googleadservices.com https://connect.facebook.net http://digitalfederalcreditunion.sc.omtrdc.net https://digitalfederalcreditunion.sc.omtrdc.net https://dcu-dev-65.adobecqms.net/ https://dcu-qa-65.adobecqms.net/ https://dcu-stage-65.adobecqms.net/ https://stage.dcu.org/ *.dcu.org https://dculocator.wave2.io/ https://snap.licdn.com https://bat.bing.com https://up.pixel.ad https://ssl.google-analytics.com/ https://www.dcu.org/ https://static.ads-twitter.com/ https://players.brightcove.net/ https://vjs.zencdn.net/ https://bcbolt446c5271-a.akamaihd.net/ https://widget.use1.chat.pega.digital/ *.qualtrics.com; connect-src 'self' *.ads-twitter.com *.quantummetric.com https://dcu-mkt-stage1.campaign.adobe.com https://dcu.campaign.adobe.com wss://usefirefly.com https://usefirefly.com * *.cloudflare.com https://www.calcxml.com/ *.dcu.org *.omtrdc.net *.demdex.net *.bazaarvoice.com wss://chat.usefirefly.com https://www.google-analytics.com https://www.dcuinsurance.com http://digitalfederalcreditunion.sc.omtrdc.net https://digitalfederalcreditunion.sc.omtrdc.net https://www.dcu.org/ https://static.ads-twitter.com/; img-src 'self' *.com *.yahoo.com http://t.co/ dsum.casalemedia.com su.addthis.com s.thebrighttag.com image2.pubmatic.com ads.scorecardresearch.com t.mookie1.com x.bidswitch.net usermatch.krxd.net match.sharethrough.com cm.g.doubleclick.net ads.yahoo.com pixel.advertising.com insight.adsrvr.org www.facebook.com usassets.chat.pega.com firefly-chat-production.s3.amazonaws.com *.bazaarvoice.com https://www.dcu.org https://www.google.co.in https://www.google.com *.timevaluecalculators.com *.everesttech.net *.demdex.net *.omtrdc.net *.googleapis.com *.gstatic.com *.112.2o7.net https://stats.g.doubleclick.net https://www.calcxml.com/ www.google-analytics.com *.doubleclick.net/ https://bcbolt446c5271-a.akamaihd.net/ https://players.brightcove.net/ https://www.dcu.org/ data:; style-src 'self' 'unsafe-inline' *.cloudflare.com https://usuatassets.cobrowse.pega.com https://usassets.cobrowse.pega.com https://usefirefly.com https://dcu-mkt-stage1.campaign.adobe.com https://dcu.campaign.adobe.com https://www.calcxml.com/ https://tagmanager.google.com usassets.chat.pega.com *.timevaluecalculators.com https://fonts.googleapis.com/ *.googleapis.com *.bazaarvoice.com https://match.adsrvr.org https://match.prod.bidr.io https://dcu-dev-65.adobecqms.net/ https://dcu-qa-65.adobecqms.net/ https://dcu-stage-65.adobecqms.net/ https://stage.dcu.org/ *.dcu.org https://dculocator.wave2.io/ https://www.dcu.org/; font-src 'self' https://fonts.gstatic.com/ fonts.gstatic.com https://www.dcu.org/ data:; frame-src 'self' https://player.vimeo.com/ *.quantummetric.com https://dcu.secure.nonprofitsoapbox.com https://americasaves.org/ https://app.loanspq.com/ https://dcu.mortgagewebcenter.com/ https://apps.rps.ascensus.com/ https://forms.fivision.com/ *.doubleclick.net *.culookup.com *.dcu.org *.demdex.net https://dcu.demdex.net *.locatorsearch.com *.bazaarvoice.com https://www.fmsi-lts.com/DIG_WS https://fmsi-lts.com/ *.adobecqms.net http://cookies.onetrust.mgr.consensu.org/ stage.dcu.org https://stage.dcu.org/ https://dcu-stage-65.adobecqms.net/ http://dcu-stage-65.adobecqms.net/ https://dcu-dev-65.adobecqms.net/ https://dcu-qa-65.adobecqms.net/ https://dcu-stage.adobecqms.net/ *.dcu.org https://dcu-mkt-stage1.campaign.adobe.com https://dcu.campaign.adobe.com https://js-staging.poshdevelopment.com/ https://js.poshdevelopment.com https://api.poshdevelopment.com https://staging.poshdevelopment.com *.youtube.com https://dculocator.wave2.io/ https://www.dcu.org/ https://pixel.sitescout.com/ https://memchat.dcu-online.org/ *.qualtrics.com
vary: Accept-Encoding
x-cache: Miss from cloudfront
via: 1.1 a7d2a4ec2f50830f128dc406960aef9a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: yyBfVWpk33qj9hg9XSgxwKxAazED5u_leUxTNYHVX7sop-5J59G7MQ==
cf-cache-status: MISS
expires: Sat, 04 Feb 2023 13:05:03 GMT
accept-ranges: bytes
server: cloudflare
cf-ray: 79423e090ac8b529-OSL
X-Firefox-Spdy: h2
dcutest.com/etc.clientlibs/dcu/clientlibs/clientlib-dependencies.min.css
104.17.91.69200 OK 12 kB URL HTTP/2 dcutest.com/etc.clientlibs/dcu/clientlibs/clientlib-dependencies.min.css
IP 104.17.91.69:0
File type Unicode text, UTF-8 text, with very long lines (1609)
Hash 478060c84ebc7271580904115871ec45
5b707d21595106fbf541594860f07095bdb25ef9
20d6c75f51e93f710806ceffe7186110debb6d0e0c121c544225c15825105d18
Analyzer Verdict Alert openphish Digital Federal Credit Union
GET /etc.clientlibs/dcu/clientlibs/clientlib-dependencies.min.css HTTP/1.1
Host: dcutest.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dcutest.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 09:05:03 GMT
content-type: text/css;charset=utf-8
content-length: 12254
x-dispatcher: dispatcher2useast1
x-vhost: publish
x-content-type-options: nosniff
last-modified: Mon, 24 Oct 2022 21:43:10 GMT
etag: "ee6e-5ebcead7d1780-gzip"
content-encoding: gzip
cache-control: public, max-age=14400
strict-transport-security: max-age=31536000; includeSubDomains
content-security-policy: default-src *.quantummetric.com 'unsafe-inline' 'unsafe-eval' 'self' blob:; worker-src blob:; child-src blob:; object-src 'self'; media-src 'self' blob: usassets.chat.pega.com firefly-chat-production.s3.amazonaws.com https://www.dcu.org https://manifest.prod.boltdns.net/ https://dcu-dev-65.adobecqms.net/ https://players.brightcove.net/ https://vjs.zencdn.net/ https://bcbolt446c5271-a.akamaihd.net/; script-src 'self' 'unsafe-inline' 'unsafe-eval' blob: https://usuat.cobrowse.pega.com/ https://usuatassets.cobrowse.pega.com https://player.vimeo.com/ https://memchat.dcu-online.org/ https://geolocation.onetrust.com https://www.google.com https://cdn.cookielaw.org https://js-staging.poshdevelopment.com/ https://js.poshdevelopment.com https://api.poshdevelopment.com https://staging.poshdevelopment.com *.quantummetric.com http://dfcumanagedservicesstageenvironment.112.2o7.net https://analytics.twitter.com/ *.ads-twitter.com https://us.cobrowse.pega.com https://usassets.cobrowse.pega.com *.steelhousemedia.com https://dcu-mkt-stage1.campaign.adobe.com https://dcu.campaign.adobe.com https://www.calcxml.com/ *.cloudflare.com https://googleads.g.doubleclick.net https://chat.usefirefly.com https://usefirefly.com https://connect.facebook.net www.google-analytics.com assets.adobedtm.com *.timevaluecalculators.com *.bazaarvoice.com *.iesnare.com https://ajax.googleapis.com/ *.googleapis.com *.dcuinsurance.com tagmanager.google.com www.googletagmanager.com https://www.google-analytics.com https://firefly-chat-production.s3.amazonaws.com http://www.googleadservices.com https://connect.facebook.net http://digitalfederalcreditunion.sc.omtrdc.net https://digitalfederalcreditunion.sc.omtrdc.net https://dcu-dev-65.adobecqms.net/ https://dcu-qa-65.adobecqms.net/ https://dcu-stage-65.adobecqms.net/ https://stage.dcu.org/ *.dcu.org https://dculocator.wave2.io/ https://snap.licdn.com https://bat.bing.com https://up.pixel.ad https://ssl.google-analytics.com/ https://www.dcu.org/ https://static.ads-twitter.com/ https://players.brightcove.net/ https://vjs.zencdn.net/ https://bcbolt446c5271-a.akamaihd.net/ https://widget.use1.chat.pega.digital/ *.qualtrics.com; connect-src 'self' *.ads-twitter.com *.quantummetric.com https://dcu-mkt-stage1.campaign.adobe.com https://dcu.campaign.adobe.com wss://usefirefly.com https://usefirefly.com * *.cloudflare.com https://www.calcxml.com/ *.dcu.org *.omtrdc.net *.demdex.net *.bazaarvoice.com wss://chat.usefirefly.com https://www.google-analytics.com https://www.dcuinsurance.com http://digitalfederalcreditunion.sc.omtrdc.net https://digitalfederalcreditunion.sc.omtrdc.net https://www.dcu.org/ https://static.ads-twitter.com/; img-src 'self' *.com *.yahoo.com http://t.co/ dsum.casalemedia.com su.addthis.com s.thebrighttag.com image2.pubmatic.com ads.scorecardresearch.com t.mookie1.com x.bidswitch.net usermatch.krxd.net match.sharethrough.com cm.g.doubleclick.net ads.yahoo.com pixel.advertising.com insight.adsrvr.org www.facebook.com usassets.chat.pega.com firefly-chat-production.s3.amazonaws.com *.bazaarvoice.com https://www.dcu.org https://www.google.co.in https://www.google.com *.timevaluecalculators.com *.everesttech.net *.demdex.net *.omtrdc.net *.googleapis.com *.gstatic.com *.112.2o7.net https://stats.g.doubleclick.net https://www.calcxml.com/ www.google-analytics.com *.doubleclick.net/ https://bcbolt446c5271-a.akamaihd.net/ https://players.brightcove.net/ https://www.dcu.org/ data:; style-src 'self' 'unsafe-inline' *.cloudflare.com https://usuatassets.cobrowse.pega.com https://usassets.cobrowse.pega.com https://usefirefly.com https://dcu-mkt-stage1.campaign.adobe.com https://dcu.campaign.adobe.com https://www.calcxml.com/ https://tagmanager.google.com usassets.chat.pega.com *.timevaluecalculators.com https://fonts.googleapis.com/ *.googleapis.com *.bazaarvoice.com https://match.adsrvr.org https://match.prod.bidr.io https://dcu-dev-65.adobecqms.net/ https://dcu-qa-65.adobecqms.net/ https://dcu-stage-65.adobecqms.net/ https://stage.dcu.org/ *.dcu.org https://dculocator.wave2.io/ https://www.dcu.org/; font-src 'self' https://fonts.gstatic.com/ fonts.gstatic.com https://www.dcu.org/ data:; frame-src 'self' https://player.vimeo.com/ *.quantummetric.com https://dcu.secure.nonprofitsoapbox.com https://americasaves.org/ https://app.loanspq.com/ https://dcu.mortgagewebcenter.com/ https://apps.rps.ascensus.com/ https://forms.fivision.com/ *.doubleclick.net *.culookup.com *.dcu.org *.demdex.net https://dcu.demdex.net *.locatorsearch.com *.bazaarvoice.com https://www.fmsi-lts.com/DIG_WS https://fmsi-lts.com/ *.adobecqms.net http://cookies.onetrust.mgr.consensu.org/ stage.dcu.org https://stage.dcu.org/ https://dcu-stage-65.adobecqms.net/ http://dcu-stage-65.adobecqms.net/ https://dcu-dev-65.adobecqms.net/ https://dcu-qa-65.adobecqms.net/ https://dcu-stage.adobecqms.net/ *.dcu.org https://dcu-mkt-stage1.campaign.adobe.com https://dcu.campaign.adobe.com https://js-staging.poshdevelopment.com/ https://js.poshdevelopment.com https://api.poshdevelopment.com https://staging.poshdevelopment.com *.youtube.com https://dculocator.wave2.io/ https://www.dcu.org/ https://pixel.sitescout.com/ https://memchat.dcu-online.org/ *.qualtrics.com
vary: Accept-Encoding
x-cache: Miss from cloudfront
via: 1.1 96c778ce6156d12f24b8b6cdaa0cbf66.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: GiCUpg7i4FyPizKTDM-ygRfNMGsC6kDotKHgRVSOtvMsPXatt0w9Cg==
cf-cache-status: MISS
expires: Sat, 04 Feb 2023 13:05:03 GMT
accept-ranges: bytes
server: cloudflare
cf-ray: 79423e08ca7bb529-OSL
X-Firefox-Spdy: h2
cdn.cookielaw.org/consent/c0559bcc-8507-4dc8-b64d-5f9540de4716/c0559bcc-8507-4dc8-b64d-5f9540de4716.json
104.16.149.64200 OK 1.2 kB URL HTTP/2 cdn.cookielaw.org/consent/c0559bcc-8507-4dc8-b64d-5f9540de4716/c0559bcc-8507-4dc8-b64d-5f9540de4716.json
IP 104.16.149.64:0
File type JSON data\012- , ASCII text, with very long lines (2880), with no line terminators
Hash a95f555f905d2150b81f6c24eab68a3c
e94b45c565cfb419868ca36d790682b4ae00d21f
49c3660c1d56205aa2cda0653f765305e88e2af55cef780fdfcc0c287e64d40a
GET /consent/c0559bcc-8507-4dc8-b64d-5f9540de4716/c0559bcc-8507-4dc8-b64d-5f9540de4716.json HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://dcutest.com
Connection: keep-alive
Referer: https://dcutest.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 04 Feb 2023 09:05:03 GMT
content-type: application/x-javascript
content-length: 1177
cache-control: public, max-age=86400
content-encoding: gzip
content-md5: qV9VX5BdIVC4H2wk6raKPA==
last-modified: Thu, 15 Apr 2021 16:17:55 GMT
etag: 0x8D9002A070B9E88
x-ms-request-id: 036286c0-f01e-0165-55d8-362fee000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Cache-Control,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cf-cache-status: HIT
expires: Sun, 05 Feb 2023 09:05:03 GMT
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 79423e0dda66b521-OSL
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 471 B IP 142.250.74.163:0
Hash 23287a0337047631e479bb3cbe8b0fcd
15ec24f5ee1990ee456a6fd3bbcbdbe27bf62c99
da05b381eec3589d2689bc5fab2b89eb5d65f9a5652f9254f3353e30a4540034
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 09:05:03 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 471 B IP 142.250.74.163:0
Hash 23287a0337047631e479bb3cbe8b0fcd
15ec24f5ee1990ee456a6fd3bbcbdbe27bf62c99
da05b381eec3589d2689bc5fab2b89eb5d65f9a5652f9254f3353e30a4540034
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 09:05:03 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/nunitosans/v12/pe0qMImSLYBIv1o4X1M8cce9I9s.woff2
216.58.207.227200 OK 17 kB URL HTTP/2 fonts.gstatic.com/s/nunitosans/v12/pe0qMImSLYBIv1o4X1M8cce9I9s.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 16980, version 1.0\012- data
Hash 8a97f720d330e75ccdbda9ae0e9f5e90
8e4fee916581ab48d385187705667cebc7500afe
97d5a594e7f76c7e50045b67667fd6b74b268515efe6425097be1b2647079787
GET /s/nunitosans/v12/pe0qMImSLYBIv1o4X1M8cce9I9s.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://dcutest.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 16980
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 02 Feb 2023 00:36:48 GMT
expires: Fri, 02 Feb 2024 00:36:48 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 09 May 2022 18:33:54 GMT
content-type: font/woff2
age: 203295
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 471 B IP 142.250.74.163:0
Hash 23287a0337047631e479bb3cbe8b0fcd
15ec24f5ee1990ee456a6fd3bbcbdbe27bf62c99
da05b381eec3589d2689bc5fab2b89eb5d65f9a5652f9254f3353e30a4540034
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 09:05:03 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 471 B IP 142.250.74.163:0
Hash 23287a0337047631e479bb3cbe8b0fcd
15ec24f5ee1990ee456a6fd3bbcbdbe27bf62c99
da05b381eec3589d2689bc5fab2b89eb5d65f9a5652f9254f3353e30a4540034
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 09:05:03 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/nunitosans/v12/pe03MImSLYBIv1o4X1M8cc8WAc5tU1E.woff2
216.58.207.227200 OK 17 kB URL HTTP/2 fonts.gstatic.com/s/nunitosans/v12/pe03MImSLYBIv1o4X1M8cc8WAc5tU1E.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 16920, version 1.0\012- data
Hash 875cd87a3bfd0a454005f2b07ba35328
2ee20c6c9d1549d8d38b538e00903a75f5e02307
976177894b0cca88ff93ab02c6da363f2d55cce5d940139db955b251fcdd19a6
GET /s/nunitosans/v12/pe03MImSLYBIv1o4X1M8cc8WAc5tU1E.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://dcutest.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 16920
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 02 Feb 2023 10:05:59 GMT
expires: Fri, 02 Feb 2024 10:05:59 GMT
cache-control: public, max-age=31536000
age: 169144
last-modified: Mon, 09 May 2022 18:31:06 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/nunitosans/v12/pe03MImSLYBIv1o4X1M8cc8GBs5tU1E.woff2
216.58.207.227200 OK 17 kB URL HTTP/2 fonts.gstatic.com/s/nunitosans/v12/pe03MImSLYBIv1o4X1M8cc8GBs5tU1E.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 17116, version 1.0\012- data
Hash bcf3a3fb620dfbee774f84e2c8e71530
40a79d240acdd7e5a95e165515ac7c0958a37971
280aaa8929329764ac3213ca093c63505cfcc665347939c79905c426d33867c5
GET /s/nunitosans/v12/pe03MImSLYBIv1o4X1M8cc8GBs5tU1E.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://dcutest.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 17116
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 02 Feb 2023 00:53:41 GMT
expires: Fri, 02 Feb 2024 00:53:41 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 09 May 2022 18:31:19 GMT
content-type: font/woff2
age: 202282
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/nunitosans/v12/pe03MImSLYBIv1o4X1M8cc8aBc5tU1E.woff2
216.58.207.227200 OK 17 kB URL HTTP/2 fonts.gstatic.com/s/nunitosans/v12/pe03MImSLYBIv1o4X1M8cc8aBc5tU1E.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 17324, version 1.0\012- data
Hash 51ca5ce70497b58a8cc96b2b26ce2e19
7eb7e4f38f8ebe09b504f6dcc3226a8de63a9042
6fce8ebc3557b63496f8fafe1c182f2aa8669550f9398b4d9beebddd43306ed3
GET /s/nunitosans/v12/pe03MImSLYBIv1o4X1M8cc8aBc5tU1E.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://dcutest.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 17324
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 03 Feb 2023 10:15:07 GMT
expires: Sat, 03 Feb 2024 10:15:07 GMT
cache-control: public, max-age=31536000
age: 82196
last-modified: Mon, 09 May 2022 18:31:14 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 471 B IP 142.250.74.163:0
Hash 23287a0337047631e479bb3cbe8b0fcd
15ec24f5ee1990ee456a6fd3bbcbdbe27bf62c99
da05b381eec3589d2689bc5fab2b89eb5d65f9a5652f9254f3353e30a4540034
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 09:05:03 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
dcutest.com/content/dam/dcu/global/iconography/icon_alert_bell.svg
104.17.91.69200 OK 691 B URL HTTP/2 dcutest.com/content/dam/dcu/global/iconography/icon_alert_bell.svg
IP 104.17.91.69:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (335)
Hash 5f74d21f0498d6c1b760899552b3de38
c171a4a6725b3dd4089537a60998efe1dc400f18
7469de1dce4521497a867f1d3a233206fdc0add31bd806da660c4a6e1b41a9c4
Analyzer Verdict Alert openphish Digital Federal Credit Union
fortinet Phishing
GET /content/dam/dcu/global/iconography/icon_alert_bell.svg HTTP/1.1
Host: dcutest.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dcutest.com/etc.clientlibs/dcu/clientlibs/clientlib-site.min.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 09:05:03 GMT
content-type: image/svg+xml
content-length: 691
x-dispatcher: dispatcher1useast1
x-vhost: publish
content-disposition: inline
x-content-type-options: nosniff
last-modified: Mon, 23 May 2022 18:49:22 GMT
etag: "8df-5dfb24c5eb080-gzip"
content-encoding: gzip
cache-control: public, max-age=31536000
strict-transport-security: max-age=31536000; includeSubDomains
content-security-policy: default-src *.quantummetric.com 'unsafe-inline' 'unsafe-eval' 'self' blob:; worker-src blob:; child-src blob:; object-src 'self'; media-src 'self' blob: usassets.chat.pega.com firefly-chat-production.s3.amazonaws.com https://www.dcu.org https://manifest.prod.boltdns.net/ https://dcu-dev-65.adobecqms.net/ https://players.brightcove.net/ https://vjs.zencdn.net/ https://bcbolt446c5271-a.akamaihd.net/; script-src 'self' 'unsafe-inline' 'unsafe-eval' blob: https://usuat.cobrowse.pega.com/ https://usuatassets.cobrowse.pega.com https://player.vimeo.com/ https://memchat.dcu-online.org/ https://geolocation.onetrust.com https://www.google.com https://cdn.cookielaw.org https://js-staging.poshdevelopment.com/ https://js.poshdevelopment.com https://api.poshdevelopment.com https://staging.poshdevelopment.com *.quantummetric.com http://dfcumanagedservicesstageenvironment.112.2o7.net https://analytics.twitter.com/ *.ads-twitter.com https://us.cobrowse.pega.com https://usassets.cobrowse.pega.com *.steelhousemedia.com https://dcu-mkt-stage1.campaign.adobe.com https://dcu.campaign.adobe.com https://www.calcxml.com/ *.cloudflare.com https://googleads.g.doubleclick.net https://chat.usefirefly.com https://usefirefly.com https://connect.facebook.net www.google-analytics.com assets.adobedtm.com *.timevaluecalculators.com *.bazaarvoice.com *.iesnare.com https://ajax.googleapis.com/ *.googleapis.com *.dcuinsurance.com tagmanager.google.com www.googletagmanager.com https://www.google-analytics.com https://firefly-chat-production.s3.amazonaws.com http://www.googleadservices.com https://connect.facebook.net http://digitalfederalcreditunion.sc.omtrdc.net https://digitalfederalcreditunion.sc.omtrdc.net https://dcu-dev-65.adobecqms.net/ https://dcu-qa-65.adobecqms.net/ https://dcu-stage-65.adobecqms.net/ https://stage.dcu.org/ *.dcu.org https://dculocator.wave2.io/ https://snap.licdn.com https://bat.bing.com https://up.pixel.ad https://ssl.google-analytics.com/ https://www.dcu.org/ https://static.ads-twitter.com/ https://players.brightcove.net/ https://vjs.zencdn.net/ https://bcbolt446c5271-a.akamaihd.net/ https://widget.use1.chat.pega.digital/ *.qualtrics.com; connect-src 'self' *.ads-twitter.com *.quantummetric.com https://dcu-mkt-stage1.campaign.adobe.com https://dcu.campaign.adobe.com wss://usefirefly.com https://usefirefly.com * *.cloudflare.com https://www.calcxml.com/ *.dcu.org *.omtrdc.net *.demdex.net *.bazaarvoice.com wss://chat.usefirefly.com https://www.google-analytics.com https://www.dcuinsurance.com http://digitalfederalcreditunion.sc.omtrdc.net https://digitalfederalcreditunion.sc.omtrdc.net https://www.dcu.org/ https://static.ads-twitter.com/; img-src 'self' *.com *.yahoo.com http://t.co/ dsum.casalemedia.com su.addthis.com s.thebrighttag.com image2.pubmatic.com ads.scorecardresearch.com t.mookie1.com x.bidswitch.net usermatch.krxd.net match.sharethrough.com cm.g.doubleclick.net ads.yahoo.com pixel.advertising.com insight.adsrvr.org www.facebook.com usassets.chat.pega.com firefly-chat-production.s3.amazonaws.com *.bazaarvoice.com https://www.dcu.org https://www.google.co.in https://www.google.com *.timevaluecalculators.com *.everesttech.net *.demdex.net *.omtrdc.net *.googleapis.com *.gstatic.com *.112.2o7.net https://stats.g.doubleclick.net https://www.calcxml.com/ www.google-analytics.com *.doubleclick.net/ https://bcbolt446c5271-a.akamaihd.net/ https://players.brightcove.net/ https://www.dcu.org/ data:; style-src 'self' 'unsafe-inline' *.cloudflare.com https://usuatassets.cobrowse.pega.com https://usassets.cobrowse.pega.com https://usefirefly.com https://dcu-mkt-stage1.campaign.adobe.com https://dcu.campaign.adobe.com https://www.calcxml.com/ https://tagmanager.google.com usassets.chat.pega.com *.timevaluecalculators.com https://fonts.googleapis.com/ *.googleapis.com *.bazaarvoice.com https://match.adsrvr.org https://match.prod.bidr.io https://dcu-dev-65.adobecqms.net/ https://dcu-qa-65.adobecqms.net/ https://dcu-stage-65.adobecqms.net/ https://stage.dcu.org/ *.dcu.org https://dculocator.wave2.io/ https://www.dcu.org/; font-src 'self' https://fonts.gstatic.com/ fonts.gstatic.com https://www.dcu.org/ data:; frame-src 'self' https://player.vimeo.com/ *.quantummetric.com https://dcu.secure.nonprofitsoapbox.com https://americasaves.org/ https://app.loanspq.com/ https://dcu.mortgagewebcenter.com/ https://apps.rps.ascensus.com/ https://forms.fivision.com/ *.doubleclick.net *.culookup.com *.dcu.org *.demdex.net https://dcu.demdex.net *.locatorsearch.com *.bazaarvoice.com https://www.fmsi-lts.com/DIG_WS https://fmsi-lts.com/ *.adobecqms.net http://cookies.onetrust.mgr.consensu.org/ stage.dcu.org https://stage.dcu.org/ https://dcu-stage-65.adobecqms.net/ http://dcu-stage-65.adobecqms.net/ https://dcu-dev-65.adobecqms.net/ https://dcu-qa-65.adobecqms.net/ https://dcu-stage.adobecqms.net/ *.dcu.org https://dcu-mkt-stage1.campaign.adobe.com https://dcu.campaign.adobe.com https://js-staging.poshdevelopment.com/ https://js.poshdevelopment.com https://api.poshdevelopment.com https://staging.poshdevelopment.com *.youtube.com https://dculocator.wave2.io/ https://www.dcu.org/ https://pixel.sitescout.com/ https://memchat.dcu-online.org/ *.qualtrics.com
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 b9f0050ca4d212d7c855e005be54b1ac.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: fzg6yTetunv-Z5ljCPb_KDdDVqlF511pKdrPh0_NUbD03MXKq9DOLQ==
cf-cache-status: MISS
expires: Sun, 04 Feb 2024 09:05:03 GMT
accept-ranges: bytes
server: cloudflare
cf-ray: 79423e0dffcdb529-OSL
X-Firefox-Spdy: h2
dcutest.com/content/dam/dcu/global/merchbox/online-deposit-d1-desktop-v2.svg
104.17.91.69200 OK 14 kB URL HTTP/2 dcutest.com/content/dam/dcu/global/merchbox/online-deposit-d1-desktop-v2.svg
IP 104.17.91.69:0
File type SVG Scalable Vector Graphics image\012- HTML document, ASCII text, with very long lines (37693), with no line terminators
Hash a6bee29a66bc2381beee651fbfb6c6b2
2af013ec03bbabf34bf440a0a20dfc7c789c61f0
6efc891d9a09a1b052eae455afb29135385d8f653ed121ec681c670d278fc950
Analyzer Verdict Alert openphish Digital Federal Credit Union
fortinet Phishing
GET /content/dam/dcu/global/merchbox/online-deposit-d1-desktop-v2.svg HTTP/1.1
Host: dcutest.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dcutest.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 09:05:03 GMT
content-type: image/svg+xml
content-length: 13961
x-dispatcher: dispatcher2useast1
x-vhost: publish
content-disposition: inline
x-content-type-options: nosniff
last-modified: Wed, 06 Oct 2021 15:37:49 GMT
etag: "933d-5cdb0edac8d40-gzip"
content-encoding: gzip
cache-control: public, max-age=31536000
strict-transport-security: max-age=31536000; includeSubDomains
content-security-policy: default-src *.quantummetric.com 'unsafe-inline' 'unsafe-eval' 'self' blob:; worker-src blob:; child-src blob:; object-src 'self'; media-src 'self' blob: usassets.chat.pega.com firefly-chat-production.s3.amazonaws.com https://www.dcu.org https://manifest.prod.boltdns.net/ https://dcu-dev-65.adobecqms.net/ https://players.brightcove.net/ https://vjs.zencdn.net/ https://bcbolt446c5271-a.akamaihd.net/; script-src 'self' 'unsafe-inline' 'unsafe-eval' blob: https://usuat.cobrowse.pega.com/ https://usuatassets.cobrowse.pega.com https://player.vimeo.com/ https://memchat.dcu-online.org/ https://geolocation.onetrust.com https://www.google.com https://cdn.cookielaw.org https://js-staging.poshdevelopment.com/ https://js.poshdevelopment.com https://api.poshdevelopment.com https://staging.poshdevelopment.com *.quantummetric.com http://dfcumanagedservicesstageenvironment.112.2o7.net https://analytics.twitter.com/ *.ads-twitter.com https://us.cobrowse.pega.com https://usassets.cobrowse.pega.com *.steelhousemedia.com https://dcu-mkt-stage1.campaign.adobe.com https://dcu.campaign.adobe.com https://www.calcxml.com/ *.cloudflare.com https://googleads.g.doubleclick.net https://chat.usefirefly.com https://usefirefly.com https://connect.facebook.net www.google-analytics.com assets.adobedtm.com *.timevaluecalculators.com *.bazaarvoice.com *.iesnare.com https://ajax.googleapis.com/ *.googleapis.com *.dcuinsurance.com tagmanager.google.com www.googletagmanager.com https://www.google-analytics.com https://firefly-chat-production.s3.amazonaws.com http://www.googleadservices.com https://connect.facebook.net http://digitalfederalcreditunion.sc.omtrdc.net https://digitalfederalcreditunion.sc.omtrdc.net https://dcu-dev-65.adobecqms.net/ https://dcu-qa-65.adobecqms.net/ https://dcu-stage-65.adobecqms.net/ https://stage.dcu.org/ *.dcu.org https://dculocator.wave2.io/ https://snap.licdn.com https://bat.bing.com https://up.pixel.ad https://ssl.google-analytics.com/ https://www.dcu.org/ https://static.ads-twitter.com/ https://players.brightcove.net/ https://vjs.zencdn.net/ https://bcbolt446c5271-a.akamaihd.net/ https://widget.use1.chat.pega.digital/ *.qualtrics.com; connect-src 'self' *.ads-twitter.com *.quantummetric.com https://dcu-mkt-stage1.campaign.adobe.com https://dcu.campaign.adobe.com wss://usefirefly.com https://usefirefly.com * *.cloudflare.com https://www.calcxml.com/ *.dcu.org *.omtrdc.net *.demdex.net *.bazaarvoice.com wss://chat.usefirefly.com https://www.google-analytics.com https://www.dcuinsurance.com http://digitalfederalcreditunion.sc.omtrdc.net https://digitalfederalcreditunion.sc.omtrdc.net https://www.dcu.org/ https://static.ads-twitter.com/; img-src 'self' *.com *.yahoo.com http://t.co/ dsum.casalemedia.com su.addthis.com s.thebrighttag.com image2.pubmatic.com ads.scorecardresearch.com t.mookie1.com x.bidswitch.net usermatch.krxd.net match.sharethrough.com cm.g.doubleclick.net ads.yahoo.com pixel.advertising.com insight.adsrvr.org www.facebook.com usassets.chat.pega.com firefly-chat-production.s3.amazonaws.com *.bazaarvoice.com https://www.dcu.org https://www.google.co.in https://www.google.com *.timevaluecalculators.com *.everesttech.net *.demdex.net *.omtrdc.net *.googleapis.com *.gstatic.com *.112.2o7.net https://stats.g.doubleclick.net https://www.calcxml.com/ www.google-analytics.com *.doubleclick.net/ https://bcbolt446c5271-a.akamaihd.net/ https://players.brightcove.net/ https://www.dcu.org/ data:; style-src 'self' 'unsafe-inline' *.cloudflare.com https://usuatassets.cobrowse.pega.com https://usassets.cobrowse.pega.com https://usefirefly.com https://dcu-mkt-stage1.campaign.adobe.com https://dcu.campaign.adobe.com https://www.calcxml.com/ https://tagmanager.google.com usassets.chat.pega.com *.timevaluecalculators.com https://fonts.googleapis.com/ *.googleapis.com *.bazaarvoice.com https://match.adsrvr.org https://match.prod.bidr.io https://dcu-dev-65.adobecqms.net/ https://dcu-qa-65.adobecqms.net/ https://dcu-stage-65.adobecqms.net/ https://stage.dcu.org/ *.dcu.org https://dculocator.wave2.io/ https://www.dcu.org/; font-src 'self' https://fonts.gstatic.com/ fonts.gstatic.com https://www.dcu.org/ data:; frame-src 'self' https://player.vimeo.com/ *.quantummetric.com https://dcu.secure.nonprofitsoapbox.com https://americasaves.org/ https://app.loanspq.com/ https://dcu.mortgagewebcenter.com/ https://apps.rps.ascensus.com/ https://forms.fivision.com/ *.doubleclick.net *.culookup.com *.dcu.org *.demdex.net https://dcu.demdex.net *.locatorsearch.com *.bazaarvoice.com https://www.fmsi-lts.com/DIG_WS https://fmsi-lts.com/ *.adobecqms.net http://cookies.onetrust.mgr.consensu.org/ stage.dcu.org https://stage.dcu.org/ https://dcu-stage-65.adobecqms.net/ http://dcu-stage-65.adobecqms.net/ https://dcu-dev-65.adobecqms.net/ https://dcu-qa-65.adobecqms.net/ https://dcu-stage.adobecqms.net/ *.dcu.org https://dcu-mkt-stage1.campaign.adobe.com https://dcu.campaign.adobe.com https://js-staging.poshdevelopment.com/ https://js.poshdevelopment.com https://api.poshdevelopment.com https://staging.poshdevelopment.com *.youtube.com https://dculocator.wave2.io/ https://www.dcu.org/ https://pixel.sitescout.com/ https://memchat.dcu-online.org/ *.qualtrics.com
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 8ddb6d7670d8c5a85c04a10525a71b90.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: _y8dipT6pfbJ1Vh83F-GLNR30eXrFhx3Q_pJuR-AeJwSXpnNTN34SQ==
cf-cache-status: MISS
expires: Sun, 04 Feb 2024 09:05:03 GMT
accept-ranges: bytes
server: cloudflare
cf-ray: 79423e0e1fedb529-OSL
X-Firefox-Spdy: h2
assets.adobedtm.com/extensions/EP171e731c9ba34f1c950c36d26e3efd61/AppMeasurement.min.js
23.38.200.237200 OK 12 kB URL HTTP/2 assets.adobedtm.com/extensions/EP171e731c9ba34f1c950c36d26e3efd61/AppMeasurement.min.js
IP 23.38.200.237:0
File type ASCII text, with very long lines (32768)
Hash e616df092766c7ab7904619f971a35cc
a960429c42802a43e3ce728fc4d1e8bdab10e606
082ae7647bfdb639846791e5c0ca39b96544dff3aed0c365973c9589cd5b091e
GET /extensions/EP171e731c9ba34f1c950c36d26e3efd61/AppMeasurement.min.js HTTP/1.1
Host: assets.adobedtm.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dcutest.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
content-type: application/x-javascript
etag: "d860c16ac938f7d839f0ec158d02d0f0:1644856531.418573"
last-modified: Mon, 14 Feb 2022 16:35:31 GMT
server: AkamaiNetStorage
vary: Accept-Encoding
content-encoding: gzip
content-length: 12163
expires: Sat, 04 Feb 2023 10:05:03 GMT
date: Sat, 04 Feb 2023 09:05:03 GMT
cache-control: no-cache
access-control-allow-origin: https://dcutest.com
timing-allow-origin: *
X-Firefox-Spdy: h2
assets.adobedtm.com/extensions/EP171e731c9ba34f1c950c36d26e3efd61/AppMeasurement_Module_ActivityMap.min.js
23.38.200.237200 OK 1.6 kB URL HTTP/2 assets.adobedtm.com/extensions/EP171e731c9ba34f1c950c36d26e3efd61/AppMeasurement_Module_ActivityMap.min.js
IP 23.38.200.237:0
File type ASCII text, with very long lines (3155)
Hash e672de61b277fc72de4299829bfbb31c
157a7409922d58a02dad3ba879d04eb2a3ef8f3d
e1a1c2a6f2ed4ffb63ebfda157eaf12c6ee3973be4da649eb63e0402c0d29215
GET /extensions/EP171e731c9ba34f1c950c36d26e3efd61/AppMeasurement_Module_ActivityMap.min.js HTTP/1.1
Host: assets.adobedtm.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dcutest.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
content-type: application/x-javascript
etag: "2d1382c349d480b6b41574ac0c1af066:1644856531.739514"
last-modified: Mon, 14 Feb 2022 16:35:31 GMT
server: AkamaiNetStorage
vary: Accept-Encoding
content-encoding: gzip
content-length: 1597
expires: Sat, 04 Feb 2023 10:05:03 GMT
date: Sat, 04 Feb 2023 09:05:03 GMT
cache-control: no-cache
access-control-allow-origin: https://dcutest.com
timing-allow-origin: *
X-Firefox-Spdy: h2
dcutest.com/etc.clientlibs/dcu/clientlibs/clientlib-site.min.css
104.17.91.69200 OK 94 kB URL HTTP/2 dcutest.com/etc.clientlibs/dcu/clientlibs/clientlib-site.min.css
IP 104.17.91.69:0
File type Unicode text, UTF-8 text, with very long lines (878)
Hash ad380946a6f4422221e2a90a4b5222bc
5a144702e54384dc8e90e64841ccafc5e6350db3
310dd919e59dba6b316c2313a30e0d83bcf433d717967b2c5f5ca44f960f5003
Analyzer Verdict Alert openphish Digital Federal Credit Union
GET /etc.clientlibs/dcu/clientlibs/clientlib-site.min.css HTTP/1.1
Host: dcutest.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dcutest.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 09:05:03 GMT
content-type: text/css;charset=utf-8
x-dispatcher: dispatcher2useast1
x-vhost: publish
x-content-type-options: nosniff
last-modified: Mon, 16 Jan 2023 06:28:44 GMT
content-encoding: gzip
cache-control: public, max-age=14400
strict-transport-security: max-age=31536000; includeSubDomains
content-security-policy: default-src *.quantummetric.com 'unsafe-inline' 'unsafe-eval' 'self' blob:; worker-src blob:; child-src blob:; object-src 'self'; media-src 'self' blob: usassets.chat.pega.com firefly-chat-production.s3.amazonaws.com https://www.dcu.org https://manifest.prod.boltdns.net/ https://dcu-dev-65.adobecqms.net/ https://players.brightcove.net/ https://vjs.zencdn.net/ https://bcbolt446c5271-a.akamaihd.net/; script-src 'self' 'unsafe-inline' 'unsafe-eval' blob: https://usuat.cobrowse.pega.com/ https://usuatassets.cobrowse.pega.com https://player.vimeo.com/ https://memchat.dcu-online.org/ https://geolocation.onetrust.com https://www.google.com https://cdn.cookielaw.org https://js-staging.poshdevelopment.com/ https://js.poshdevelopment.com https://api.poshdevelopment.com https://staging.poshdevelopment.com *.quantummetric.com http://dfcumanagedservicesstageenvironment.112.2o7.net https://analytics.twitter.com/ *.ads-twitter.com https://us.cobrowse.pega.com https://usassets.cobrowse.pega.com *.steelhousemedia.com https://dcu-mkt-stage1.campaign.adobe.com https://dcu.campaign.adobe.com https://www.calcxml.com/ *.cloudflare.com https://googleads.g.doubleclick.net https://chat.usefirefly.com https://usefirefly.com https://connect.facebook.net www.google-analytics.com assets.adobedtm.com *.timevaluecalculators.com *.bazaarvoice.com *.iesnare.com https://ajax.googleapis.com/ *.googleapis.com *.dcuinsurance.com tagmanager.google.com www.googletagmanager.com https://www.google-analytics.com https://firefly-chat-production.s3.amazonaws.com http://www.googleadservices.com https://connect.facebook.net http://digitalfederalcreditunion.sc.omtrdc.net https://digitalfederalcreditunion.sc.omtrdc.net https://dcu-dev-65.adobecqms.net/ https://dcu-qa-65.adobecqms.net/ https://dcu-stage-65.adobecqms.net/ https://stage.dcu.org/ *.dcu.org https://dculocator.wave2.io/ https://snap.licdn.com https://bat.bing.com https://up.pixel.ad https://ssl.google-analytics.com/ https://www.dcu.org/ https://static.ads-twitter.com/ https://players.brightcove.net/ https://vjs.zencdn.net/ https://bcbolt446c5271-a.akamaihd.net/ https://widget.use1.chat.pega.digital/ *.qualtrics.com; connect-src 'self' *.ads-twitter.com *.quantummetric.com https://dcu-mkt-stage1.campaign.adobe.com https://dcu.campaign.adobe.com wss://usefirefly.com https://usefirefly.com * *.cloudflare.com https://www.calcxml.com/ *.dcu.org *.omtrdc.net *.demdex.net *.bazaarvoice.com wss://chat.usefirefly.com https://www.google-analytics.com https://www.dcuinsurance.com http://digitalfederalcreditunion.sc.omtrdc.net https://digitalfederalcreditunion.sc.omtrdc.net https://www.dcu.org/ https://static.ads-twitter.com/; img-src 'self' *.com *.yahoo.com http://t.co/ dsum.casalemedia.com su.addthis.com s.thebrighttag.com image2.pubmatic.com ads.scorecardresearch.com t.mookie1.com x.bidswitch.net usermatch.krxd.net match.sharethrough.com cm.g.doubleclick.net ads.yahoo.com pixel.advertising.com insight.adsrvr.org www.facebook.com usassets.chat.pega.com firefly-chat-production.s3.amazonaws.com *.bazaarvoice.com https://www.dcu.org https://www.google.co.in https://www.google.com *.timevaluecalculators.com *.everesttech.net *.demdex.net *.omtrdc.net *.googleapis.com *.gstatic.com *.112.2o7.net https://stats.g.doubleclick.net https://www.calcxml.com/ www.google-analytics.com *.doubleclick.net/ https://bcbolt446c5271-a.akamaihd.net/ https://players.brightcove.net/ https://www.dcu.org/ data:; style-src 'self' 'unsafe-inline' *.cloudflare.com https://usuatassets.cobrowse.pega.com https://usassets.cobrowse.pega.com https://usefirefly.com https://dcu-mkt-stage1.campaign.adobe.com https://dcu.campaign.adobe.com https://www.calcxml.com/ https://tagmanager.google.com usassets.chat.pega.com *.timevaluecalculators.com https://fonts.googleapis.com/ *.googleapis.com *.bazaarvoice.com https://match.adsrvr.org https://match.prod.bidr.io https://dcu-dev-65.adobecqms.net/ https://dcu-qa-65.adobecqms.net/ https://dcu-stage-65.adobecqms.net/ https://stage.dcu.org/ *.dcu.org https://dculocator.wave2.io/ https://www.dcu.org/; font-src 'self' https://fonts.gstatic.com/ fonts.gstatic.com https://www.dcu.org/ data:; frame-src 'self' https://player.vimeo.com/ *.quantummetric.com https://dcu.secure.nonprofitsoapbox.com https://americasaves.org/ https://app.loanspq.com/ https://dcu.mortgagewebcenter.com/ https://apps.rps.ascensus.com/ https://forms.fivision.com/ *.doubleclick.net *.culookup.com *.dcu.org *.demdex.net https://dcu.demdex.net *.locatorsearch.com *.bazaarvoice.com https://www.fmsi-lts.com/DIG_WS https://fmsi-lts.com/ *.adobecqms.net http://cookies.onetrust.mgr.consensu.org/ stage.dcu.org https://stage.dcu.org/ https://dcu-stage-65.adobecqms.net/ http://dcu-stage-65.adobecqms.net/ https://dcu-dev-65.adobecqms.net/ https://dcu-qa-65.adobecqms.net/ https://dcu-stage.adobecqms.net/ *.dcu.org https://dcu-mkt-stage1.campaign.adobe.com https://dcu.campaign.adobe.com https://js-staging.poshdevelopment.com/ https://js.poshdevelopment.com https://api.poshdevelopment.com https://staging.poshdevelopment.com *.youtube.com https://dculocator.wave2.io/ https://www.dcu.org/ https://pixel.sitescout.com/ https://memchat.dcu-online.org/ *.qualtrics.com
etag: "8f756-5f25bb1e3df00-gzip"
vary: Accept-Encoding
x-cache: Miss from cloudfront
via: 1.1 aa34a836095df9de9d246a53dd63f1d6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: POv0g8et9PEvM5eDVqym6aMK5l5nukhCmQd-NKWUOMLWiu82QeMoBg==
cf-cache-status: MISS
expires: Sat, 04 Feb 2023 13:05:03 GMT
server: cloudflare
cf-ray: 79423e08da7fb529-OSL
X-Firefox-Spdy: h2
assets.adobedtm.com/extensions/EP171e731c9ba34f1c950c36d26e3efd61/AppMeasurement_Module_AudienceManagement.min.js
23.38.200.237200 OK 8.8 kB URL HTTP/2 assets.adobedtm.com/extensions/EP171e731c9ba34f1c950c36d26e3efd61/AppMeasurement_Module_AudienceManagement.min.js
IP 23.38.200.237:0
File type exported SGML document, ASCII text, with very long lines (24999)
Hash 6f56f25549f094ee43918a26715f4c6b
0b75d52207556fa7879017f81a9445006a637047
57a0cc8a8dfd7a1ab1aa40a84c53b0db4caf025c5c5499bea095b91924139a96
GET /extensions/EP171e731c9ba34f1c950c36d26e3efd61/AppMeasurement_Module_AudienceManagement.min.js HTTP/1.1
Host: assets.adobedtm.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dcutest.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
content-type: application/x-javascript
etag: "26a8cd142b539700557eb4710c3d56bd:1644856531.982003"
last-modified: Mon, 14 Feb 2022 16:35:31 GMT
server: AkamaiNetStorage
vary: Accept-Encoding
content-encoding: gzip
expires: Sat, 04 Feb 2023 10:05:03 GMT
date: Sat, 04 Feb 2023 09:05:03 GMT
content-length: 8753
cache-control: no-cache
access-control-allow-origin: https://dcutest.com
timing-allow-origin: *
X-Firefox-Spdy: h2
dcutest.com/content/dam/dcu/global/merchbox/car-refinance-d1-desktop-v2.svg
104.17.91.69200 OK 9.9 kB URL HTTP/2 dcutest.com/content/dam/dcu/global/merchbox/car-refinance-d1-desktop-v2.svg
IP 104.17.91.69:0
File type SVG Scalable Vector Graphics image\012- HTML document, ASCII text, with very long lines (28114), with no line terminators
Hash b758202e46c6894523c788243b632001
d13514f74194107d32fa93674e34dc3b3841115a
6d493f43e9bec326da623a286d6fa5acafb1907cfb657b1361195a9fa6faf9d7
Analyzer Verdict Alert openphish Digital Federal Credit Union
fortinet Phishing
GET /content/dam/dcu/global/merchbox/car-refinance-d1-desktop-v2.svg HTTP/1.1
Host: dcutest.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dcutest.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 09:05:03 GMT
content-type: image/svg+xml
content-length: 9881
x-dispatcher: dispatcher2useast1
x-vhost: publish
content-disposition: inline
x-content-type-options: nosniff
last-modified: Wed, 06 Oct 2021 15:37:48 GMT
etag: "6dd2-5cdb0ed9d4b00-gzip"
content-encoding: gzip
cache-control: public, max-age=31536000
strict-transport-security: max-age=31536000; includeSubDomains
content-security-policy: default-src *.quantummetric.com 'unsafe-inline' 'unsafe-eval' 'self' blob:; worker-src blob:; child-src blob:; object-src 'self'; media-src 'self' blob: usassets.chat.pega.com firefly-chat-production.s3.amazonaws.com https://www.dcu.org https://manifest.prod.boltdns.net/ https://dcu-dev-65.adobecqms.net/ https://players.brightcove.net/ https://vjs.zencdn.net/ https://bcbolt446c5271-a.akamaihd.net/; script-src 'self' 'unsafe-inline' 'unsafe-eval' blob: https://usuat.cobrowse.pega.com/ https://usuatassets.cobrowse.pega.com https://player.vimeo.com/ https://memchat.dcu-online.org/ https://geolocation.onetrust.com https://www.google.com https://cdn.cookielaw.org https://js-staging.poshdevelopment.com/ https://js.poshdevelopment.com https://api.poshdevelopment.com https://staging.poshdevelopment.com *.quantummetric.com http://dfcumanagedservicesstageenvironment.112.2o7.net https://analytics.twitter.com/ *.ads-twitter.com https://us.cobrowse.pega.com https://usassets.cobrowse.pega.com *.steelhousemedia.com https://dcu-mkt-stage1.campaign.adobe.com https://dcu.campaign.adobe.com https://www.calcxml.com/ *.cloudflare.com https://googleads.g.doubleclick.net https://chat.usefirefly.com https://usefirefly.com https://connect.facebook.net www.google-analytics.com assets.adobedtm.com *.timevaluecalculators.com *.bazaarvoice.com *.iesnare.com https://ajax.googleapis.com/ *.googleapis.com *.dcuinsurance.com tagmanager.google.com www.googletagmanager.com https://www.google-analytics.com https://firefly-chat-production.s3.amazonaws.com http://www.googleadservices.com https://connect.facebook.net http://digitalfederalcreditunion.sc.omtrdc.net https://digitalfederalcreditunion.sc.omtrdc.net https://dcu-dev-65.adobecqms.net/ https://dcu-qa-65.adobecqms.net/ https://dcu-stage-65.adobecqms.net/ https://stage.dcu.org/ *.dcu.org https://dculocator.wave2.io/ https://snap.licdn.com https://bat.bing.com https://up.pixel.ad https://ssl.google-analytics.com/ https://www.dcu.org/ https://static.ads-twitter.com/ https://players.brightcove.net/ https://vjs.zencdn.net/ https://bcbolt446c5271-a.akamaihd.net/ https://widget.use1.chat.pega.digital/ *.qualtrics.com; connect-src 'self' *.ads-twitter.com *.quantummetric.com https://dcu-mkt-stage1.campaign.adobe.com https://dcu.campaign.adobe.com wss://usefirefly.com https://usefirefly.com * *.cloudflare.com https://www.calcxml.com/ *.dcu.org *.omtrdc.net *.demdex.net *.bazaarvoice.com wss://chat.usefirefly.com https://www.google-analytics.com https://www.dcuinsurance.com http://digitalfederalcreditunion.sc.omtrdc.net https://digitalfederalcreditunion.sc.omtrdc.net https://www.dcu.org/ https://static.ads-twitter.com/; img-src 'self' *.com *.yahoo.com http://t.co/ dsum.casalemedia.com su.addthis.com s.thebrighttag.com image2.pubmatic.com ads.scorecardresearch.com t.mookie1.com x.bidswitch.net usermatch.krxd.net match.sharethrough.com cm.g.doubleclick.net ads.yahoo.com pixel.advertising.com insight.adsrvr.org www.facebook.com usassets.chat.pega.com firefly-chat-production.s3.amazonaws.com *.bazaarvoice.com https://www.dcu.org https://www.google.co.in https://www.google.com *.timevaluecalculators.com *.everesttech.net *.demdex.net *.omtrdc.net *.googleapis.com *.gstatic.com *.112.2o7.net https://stats.g.doubleclick.net https://www.calcxml.com/ www.google-analytics.com *.doubleclick.net/ https://bcbolt446c5271-a.akamaihd.net/ https://players.brightcove.net/ https://www.dcu.org/ data:; style-src 'self' 'unsafe-inline' *.cloudflare.com https://usuatassets.cobrowse.pega.com https://usassets.cobrowse.pega.com https://usefirefly.com https://dcu-mkt-stage1.campaign.adobe.com https://dcu.campaign.adobe.com https://www.calcxml.com/ https://tagmanager.google.com usassets.chat.pega.com *.timevaluecalculators.com https://fonts.googleapis.com/ *.googleapis.com *.bazaarvoice.com https://match.adsrvr.org https://match.prod.bidr.io https://dcu-dev-65.adobecqms.net/ https://dcu-qa-65.adobecqms.net/ https://dcu-stage-65.adobecqms.net/ https://stage.dcu.org/ *.dcu.org https://dculocator.wave2.io/ https://www.dcu.org/; font-src 'self' https://fonts.gstatic.com/ fonts.gstatic.com https://www.dcu.org/ data:; frame-src 'self' https://player.vimeo.com/ *.quantummetric.com https://dcu.secure.nonprofitsoapbox.com https://americasaves.org/ https://app.loanspq.com/ https://dcu.mortgagewebcenter.com/ https://apps.rps.ascensus.com/ https://forms.fivision.com/ *.doubleclick.net *.culookup.com *.dcu.org *.demdex.net https://dcu.demdex.net *.locatorsearch.com *.bazaarvoice.com https://www.fmsi-lts.com/DIG_WS https://fmsi-lts.com/ *.adobecqms.net http://cookies.onetrust.mgr.consensu.org/ stage.dcu.org https://stage.dcu.org/ https://dcu-stage-65.adobecqms.net/ http://dcu-stage-65.adobecqms.net/ https://dcu-dev-65.adobecqms.net/ https://dcu-qa-65.adobecqms.net/ https://dcu-stage.adobecqms.net/ *.dcu.org https://dcu-mkt-stage1.campaign.adobe.com https://dcu.campaign.adobe.com https://js-staging.poshdevelopment.com/ https://js.poshdevelopment.com https://api.poshdevelopment.com https://staging.poshdevelopment.com *.youtube.com https://dculocator.wave2.io/ https://www.dcu.org/ https://pixel.sitescout.com/ https://memchat.dcu-online.org/ *.qualtrics.com
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 41dc61beb3fe8e8c2c299a2522d8330c.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 1L8y95jWDi6FyEQeH-Qr6gaHrQFY9q5z6muBjrawljanRopAWvkPbg==
cf-cache-status: MISS
expires: Sun, 04 Feb 2024 09:05:03 GMT
accept-ranges: bytes
server: cloudflare
cf-ray: 79423e0e2ffab529-OSL
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 472 B IP 142.250.74.163:0
Hash 7d482750bf7fdfcaa38c0efd583ef4dc
a4f68a124e4be130bc838e70f23fd4c6d2f4ef2d
5e6f1cadf4bc425664bb26fa2b384cf13900461b689c77d0916b1d2edd41337c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 09:05:04 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 472 B IP 142.250.74.163:0
Hash 7d482750bf7fdfcaa38c0efd583ef4dc
a4f68a124e4be130bc838e70f23fd4c6d2f4ef2d
5e6f1cadf4bc425664bb26fa2b384cf13900461b689c77d0916b1d2edd41337c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 09:05:04 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.googletagmanager.com/gtag/js?id=DC-8387124
142.250.74.40200 OK 44 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=DC-8387124
IP 142.250.74.40:0
File type ASCII text, with very long lines (1759)
Hash 54dcc9f0b1a06ee1951d53a080f24a8e
679e2c2bcf4836f6e0a26c62965a9ebfee8e7515
f72a6d86a25197ae5dd4fb6b6266629a204a984a45c4f9a02f079909fbef4a5c
GET /gtag/js?id=DC-8387124 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dcutest.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sat, 04 Feb 2023 09:05:04 GMT
expires: Sat, 04 Feb 2023 09:05:04 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 44195
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.googletagmanager.com/gtm.js?id=GTM-P275CCS
142.250.74.40200 OK 60 kB URL HTTP/2 www.googletagmanager.com/gtm.js?id=GTM-P275CCS
IP 142.250.74.40:0
File type ASCII text, with very long lines (12602)
Hash 52d1015c1b11284dc8e129b831a6fbce
c4ffa5da6d0947e2b766bc970a8e8051c5155488
d272610e5d7d0fe197dea847074793a3a7f011f41df77eba03658b41d842dd38
GET /gtm.js?id=GTM-P275CCS HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dcutest.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sat, 04 Feb 2023 09:05:04 GMT
expires: Sat, 04 Feb 2023 09:05:04 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 59457
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 472 B IP 142.250.74.163:0
Hash 7d482750bf7fdfcaa38c0efd583ef4dc
a4f68a124e4be130bc838e70f23fd4c6d2f4ef2d
5e6f1cadf4bc425664bb26fa2b384cf13900461b689c77d0916b1d2edd41337c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 09:05:04 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 3a8f191b6804fc7779af2631165a23cb
d64c7ccd78c831820e1fbe0f96f012bd8a1ea7f8
3d1128de7ff22ad54dc569850cff7895140ead9c34009a0be3a7872694f03869
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6448
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 09:05:04 GMT
Last-Modified: Sat, 04 Feb 2023 07:17:36 GMT
Server: ECS (ska/F6FC)
X-Cache: HIT
Content-Length: 471
dpm.demdex.net/id?d_visid_ver=5.4.0&d_fieldgroup=MC&d_rtbd=json&d_ver=2&d_orgid=46051B125B89FACB0A495DD6%40AdobeOrg&d_nsid=0&ts=1675501538799
3.248.89.226200 OK 837 B URL HTTP/1.1 dpm.demdex.net/id?d_visid_ver=5.4.0&d_fieldgroup=MC&d_rtbd=json&d_ver=2&d_orgid=46051B125B89FACB0A495DD6%40AdobeOrg&d_nsid=0&ts=1675501538799
IP 3.248.89.226:0
File type JSON data\012- , ASCII text, with very long lines (2304), with no line terminators
Hash 6896dd124f0adbc4c822db035a75e7b7
4e5f232bc52e4cc47f8f1a22c7c519787ae5f2bd
6a7ecf308ea5c4edbe0810eccca51fdb25a9fa9f65f84df09ff3c6f867db4f33
GET /id?d_visid_ver=5.4.0&d_fieldgroup=MC&d_rtbd=json&d_ver=2&d_orgid=46051B125B89FACB0A495DD6%40AdobeOrg&d_nsid=0&ts=1675501538799 HTTP/1.1
Host: dpm.demdex.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Origin: https://dcutest.com
Connection: keep-alive
Referer: https://dcutest.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://dcutest.com
Cache-Control: no-cache,no-store,must-revalidate,max-age=0,proxy-revalidate,no-transform,private
content-encoding: gzip
Content-Type: application/json;charset=utf-8
DCS: dcs-prod-irl1-1-v045-0078c8bc4.edge-irl1.demdex.com 2 ms
Expires: Thu, 01 Jan 1970 00:00:00 UTC
P3P: policyref="/w3c/p3p.xml", CP="NOI NID CURa ADMa DEVa PSAa PSDa OUR SAMa BUS PUR COM NAV INT"
Pragma: no-cache
set-cookie: demdex=70891435432836008170793104714113206744; Max-Age=15552000; Expires=Thu, 03 Aug 2023 09:05:04 GMT; Path=/; Domain=.demdex.net; Secure; SameSite=None
Strict-Transport-Security: max-age=31536000; includeSubDomains
Vary: Origin
X-TID: m9ST71aOQRk=
Content-Length: 837
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash d719402de0cd695e55dab2767247da49
f12f4795987a284820f6785ec16b5032b9861d79
98a14bd950cec10aeb3d76fa956fe13514f52c742adbded7a0fcef218c7195ba
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "98A14BD950CEC10AEB3D76FA956FE13514F52C742ADBDED7A0FCEF218C7195BA"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4769
Expires: Sat, 04 Feb 2023 10:24:33 GMT
Date: Sat, 04 Feb 2023 09:05:04 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash d719402de0cd695e55dab2767247da49
f12f4795987a284820f6785ec16b5032b9861d79
98a14bd950cec10aeb3d76fa956fe13514f52c742adbded7a0fcef218c7195ba
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "98A14BD950CEC10AEB3D76FA956FE13514F52C742ADBDED7A0FCEF218C7195BA"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4769
Expires: Sat, 04 Feb 2023 10:24:33 GMT
Date: Sat, 04 Feb 2023 09:05:04 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash d719402de0cd695e55dab2767247da49
f12f4795987a284820f6785ec16b5032b9861d79
98a14bd950cec10aeb3d76fa956fe13514f52c742adbded7a0fcef218c7195ba
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "98A14BD950CEC10AEB3D76FA956FE13514F52C742ADBDED7A0FCEF218C7195BA"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4769
Expires: Sat, 04 Feb 2023 10:24:33 GMT
Date: Sat, 04 Feb 2023 09:05:04 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash eb1d94392cb0489cab0b66e2fca72b46
df0f2a2b658dda2bc458a1ace1263a5cddcccbb3
f5e3b0479232be8dc66d34eba806a8111fdd447105455ee08e2e741a2fc4f06c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F5E3B0479232BE8DC66D34EBA806A8111FDD447105455EE08E2E741A2FC4F06C"
Last-Modified: Thu, 02 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=19422
Expires: Sat, 04 Feb 2023 14:28:46 GMT
Date: Sat, 04 Feb 2023 09:05:04 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F10640252-429d-4110-bf18-1908ac233402.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F10640252-429d-4110-bf18-1908ac233402.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 392b61306c346508d3ac4a2f28218f9c
d2de32b52e0d3f4fc6acaf687b3521294b01dc03
018712a4d6734b84ac1777124f97dae4d93b1e5b297a5dcfe0955b52710b8a35
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F10640252-429d-4110-bf18-1908ac233402.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10253
x-amzn-requestid: a90cb6b3-8a72-4b4b-b4f5-6dafc8c6752a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fyD7GGv5IAMFu8A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dd8046-3ca59e7c52800a4e44bda8fd;Sampled=0
x-amzn-remapped-date: Fri, 03 Feb 2023 21:44:38 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: jBxNmhfAeUgxg8w4XpQHZ1QoN9GatdUV7V7r2tHd7YePJYPHpesd2Q==
via: 1.1 9c60d6224ac0b44e908b5c9dcf70e9a4.cloudfront.net (CloudFront), 1.1 1b74ccf4cb51eacf97a0e6d60ae46a3e.cloudfront.net (CloudFront), 1.1 google
date: Fri, 03 Feb 2023 22:05:21 GMT
age: 39583
etag: "d2de32b52e0d3f4fc6acaf687b3521294b01dc03"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F64144d1c-f524-496f-8b52-ba63714dbfc5.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F64144d1c-f524-496f-8b52-ba63714dbfc5.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash e366b32074025aaf60bbae8bdb08d330
a52c2883bad98fa20333aa639a5dd3a5bf544c8e
9d661c26effaec9efee16833f6459d6ecbe4f77b822c9c46e2a6433bda816e5c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F64144d1c-f524-496f-8b52-ba63714dbfc5.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11565
x-amzn-requestid: 87a84ffd-1176-4656-aac4-e98f38ec2cd9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fboIrFGboAMFyyQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d48704-162ed8114aa1809204500548;Sampled=0
x-amzn-remapped-date: Sat, 28 Jan 2023 02:23:00 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: lsQxPtozrh2Ty1T-3d-1crDfi8HgVKRafOXb1UFl033bCx3kAzTS7w==
via: 1.1 d83ae0e1ba84e92e58bc1efc23a0c652.cloudfront.net (CloudFront), 1.1 caf6806821bc479b28a6f1ce3043b8a6.cloudfront.net (CloudFront), 1.1 google
date: Sat, 04 Feb 2023 06:20:04 GMT
age: 9900
etag: "a52c2883bad98fa20333aa639a5dd3a5bf544c8e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F18e70636-fb7d-4a6e-9742-a039e4d7253d.jpeg
34.120.237.76200 OK 7.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F18e70636-fb7d-4a6e-9742-a039e4d7253d.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 41580a501cc07c328e6ab6b167a110dc
a4dfa0f479b5f9a036b75b2eea6dffabd3a3486e
0fa45161e563101b3f1293f951a3edf84c88c9f3b29bed9b54f952ca325bf21d
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F18e70636-fb7d-4a6e-9742-a039e4d7253d.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7101
x-amzn-requestid: 479d8004-430a-45b9-99fa-11cbcc605a7c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fyD7EHxqoAMFaug=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dd8046-25ac3c54427748bc191fd1ba;Sampled=0
x-amzn-remapped-date: Fri, 03 Feb 2023 21:44:38 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 1-NjCSeyrUAwvL2BDl1JXYK0WY0ze5FZz5-chZ6x2IEnDQBw9rEv6w==
via: 1.1 1b0911478686968732f973d6e5e31d10.cloudfront.net (CloudFront), 1.1 f9d716a351f14a0ac1fac2449734849a.cloudfront.net (CloudFront), 1.1 google
date: Fri, 03 Feb 2023 22:11:51 GMT
age: 39193
etag: "a4dfa0f479b5f9a036b75b2eea6dffabd3a3486e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3a6c7026-85a2-4419-bd6b-ba1bac463dda.jpeg
34.120.237.76200 OK 8.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3a6c7026-85a2-4419-bd6b-ba1bac463dda.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 6661b7263315f5eb3cd2465f671e1fcd
b7b5831c6b3ccc41d7a980b6088adc10ff8785f1
eb25507950d81db4b54a1af7fadaceee1bcff780eb28b6a04dbfb3886785f5b7
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3a6c7026-85a2-4419-bd6b-ba1bac463dda.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8527
x-amzn-requestid: 6a8c6487-6069-47d1-afa1-648626f85439
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fyDqqGg5oAMFV-A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dd7fdd-0a772cde1e6fba6d7da97435;Sampled=0
x-amzn-remapped-date: Fri, 03 Feb 2023 21:42:53 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: CHWhIpyzhoPtMUplzh1430Q9FfCM1wkTc_hQsgQk6InM9tYBPGYnNg==
via: 1.1 e5af640ced3aa8764b82c4bc3f7af38e.cloudfront.net (CloudFront), 1.1 2bedbeaa49b4a77447d30097858cb81a.cloudfront.net (CloudFront), 1.1 google
date: Fri, 03 Feb 2023 22:05:44 GMT
age: 39560
etag: "b7b5831c6b3ccc41d7a980b6088adc10ff8785f1"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe387e59d-188b-44a0-b94c-033d7d635117.jpeg
34.120.237.76200 OK 6.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe387e59d-188b-44a0-b94c-033d7d635117.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 45c6a062f8637e689819f505b019dc0e
61665688f1039c4fad848853a68e28d057718ad1
c9b14113eba535a2e1a6cbbf121a818ad0204fc6dd7b2ea9b592830ab927d6d1
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe387e59d-188b-44a0-b94c-033d7d635117.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6718
x-amzn-requestid: 662f889b-4c25-4dec-85d4-ea9dfa8b8974
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fyD7DE5boAMF_cA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dd8046-33ca99fc7b6eac8d5486d6c1;Sampled=0
x-amzn-remapped-date: Fri, 03 Feb 2023 21:44:38 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: WvNs1hPPXHBJs5rTIBqH3DbqLLX6si9jHF46KrsuT9BFB2N2V3zeUA==
via: 1.1 8f22423015641505b8c857a37450d6c0.cloudfront.net (CloudFront), 1.1 98aedae6661e3904540676966998ed88.cloudfront.net (CloudFront), 1.1 google
date: Fri, 03 Feb 2023 22:06:20 GMT
age: 39524
etag: "61665688f1039c4fad848853a68e28d057718ad1"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
dcutest.com/etc.clientlibs/dcu/clientlibs/clientlib-site/resources/fonts/icons-v2/dcu-iconset.woff2
104.17.91.69200 OK 9.3 kB URL HTTP/2 dcutest.com/etc.clientlibs/dcu/clientlibs/clientlib-site/resources/fonts/icons-v2/dcu-iconset.woff2
IP 104.17.91.69:0
File type Web Open Font Format (Version 2), TrueType, length 3420, version 1.0\012- data
Hash 4675498a428c93fb30a4346072ac5931
8e22bd35571be509c8a2456a9ebd030fb3d5f800
87ea8aded352a8f7ba82f4181d755d011ef76e6338336f995323e9cd152cedac
Analyzer Verdict Alert openphish Digital Federal Credit Union
fortinet Phishing
GET /etc.clientlibs/dcu/clientlibs/clientlib-site/resources/fonts/icons-v2/dcu-iconset.woff2 HTTP/1.1
Host: dcutest.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://dcutest.com/etc.clientlibs/dcu/clientlibs/clientlib-site.min.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 09:05:04 GMT
content-type: application/octet-stream
x-dispatcher: dispatcher2useast1
x-vhost: publish
cache-control: public, max-age=14400
x-content-type-options: nosniff
last-modified: Fri, 22 Feb 2019 16:55:19 GMT
strict-transport-security: max-age=31536000; includeSubDomains
content-security-policy: default-src *.quantummetric.com 'unsafe-inline' 'unsafe-eval' 'self' blob:; worker-src blob:; child-src blob:; object-src 'self'; media-src 'self' blob: usassets.chat.pega.com firefly-chat-production.s3.amazonaws.com https://www.dcu.org https://manifest.prod.boltdns.net/ https://dcu-dev-65.adobecqms.net/ https://players.brightcove.net/ https://vjs.zencdn.net/ https://bcbolt446c5271-a.akamaihd.net/; script-src 'self' 'unsafe-inline' 'unsafe-eval' blob: https://usuat.cobrowse.pega.com/ https://usuatassets.cobrowse.pega.com https://player.vimeo.com/ https://memchat.dcu-online.org/ https://geolocation.onetrust.com https://www.google.com https://cdn.cookielaw.org https://js-staging.poshdevelopment.com/ https://js.poshdevelopment.com https://api.poshdevelopment.com https://staging.poshdevelopment.com *.quantummetric.com http://dfcumanagedservicesstageenvironment.112.2o7.net https://analytics.twitter.com/ *.ads-twitter.com https://us.cobrowse.pega.com https://usassets.cobrowse.pega.com *.steelhousemedia.com https://dcu-mkt-stage1.campaign.adobe.com https://dcu.campaign.adobe.com https://www.calcxml.com/ *.cloudflare.com https://googleads.g.doubleclick.net https://chat.usefirefly.com https://usefirefly.com https://connect.facebook.net www.google-analytics.com assets.adobedtm.com *.timevaluecalculators.com *.bazaarvoice.com *.iesnare.com https://ajax.googleapis.com/ *.googleapis.com *.dcuinsurance.com tagmanager.google.com www.googletagmanager.com https://www.google-analytics.com https://firefly-chat-production.s3.amazonaws.com http://www.googleadservices.com https://connect.facebook.net http://digitalfederalcreditunion.sc.omtrdc.net https://digitalfederalcreditunion.sc.omtrdc.net https://dcu-dev-65.adobecqms.net/ https://dcu-qa-65.adobecqms.net/ https://dcu-stage-65.adobecqms.net/ https://stage.dcu.org/ *.dcu.org https://dculocator.wave2.io/ https://snap.licdn.com https://bat.bing.com https://up.pixel.ad https://ssl.google-analytics.com/ https://www.dcu.org/ https://static.ads-twitter.com/ https://players.brightcove.net/ https://vjs.zencdn.net/ https://bcbolt446c5271-a.akamaihd.net/ https://widget.use1.chat.pega.digital/ *.qualtrics.com; connect-src 'self' *.ads-twitter.com *.quantummetric.com https://dcu-mkt-stage1.campaign.adobe.com https://dcu.campaign.adobe.com wss://usefirefly.com https://usefirefly.com * *.cloudflare.com https://www.calcxml.com/ *.dcu.org *.omtrdc.net *.demdex.net *.bazaarvoice.com wss://chat.usefirefly.com https://www.google-analytics.com https://www.dcuinsurance.com http://digitalfederalcreditunion.sc.omtrdc.net https://digitalfederalcreditunion.sc.omtrdc.net https://www.dcu.org/ https://static.ads-twitter.com/; img-src 'self' *.com *.yahoo.com http://t.co/ dsum.casalemedia.com su.addthis.com s.thebrighttag.com image2.pubmatic.com ads.scorecardresearch.com t.mookie1.com x.bidswitch.net usermatch.krxd.net match.sharethrough.com cm.g.doubleclick.net ads.yahoo.com pixel.advertising.com insight.adsrvr.org www.facebook.com usassets.chat.pega.com firefly-chat-production.s3.amazonaws.com *.bazaarvoice.com https://www.dcu.org https://www.google.co.in https://www.google.com *.timevaluecalculators.com *.everesttech.net *.demdex.net *.omtrdc.net *.googleapis.com *.gstatic.com *.112.2o7.net https://stats.g.doubleclick.net https://www.calcxml.com/ www.google-analytics.com *.doubleclick.net/ https://bcbolt446c5271-a.akamaihd.net/ https://players.brightcove.net/ https://www.dcu.org/ data:; style-src 'self' 'unsafe-inline' *.cloudflare.com https://usuatassets.cobrowse.pega.com https://usassets.cobrowse.pega.com https://usefirefly.com https://dcu-mkt-stage1.campaign.adobe.com https://dcu.campaign.adobe.com https://www.calcxml.com/ https://tagmanager.google.com usassets.chat.pega.com *.timevaluecalculators.com https://fonts.googleapis.com/ *.googleapis.com *.bazaarvoice.com https://match.adsrvr.org https://match.prod.bidr.io https://dcu-dev-65.adobecqms.net/ https://dcu-qa-65.adobecqms.net/ https://dcu-stage-65.adobecqms.net/ https://stage.dcu.org/ *.dcu.org https://dculocator.wave2.io/ https://www.dcu.org/; font-src 'self' https://fonts.gstatic.com/ fonts.gstatic.com https://www.dcu.org/ data:; frame-src 'self' https://player.vimeo.com/ *.quantummetric.com https://dcu.secure.nonprofitsoapbox.com https://americasaves.org/ https://app.loanspq.com/ https://dcu.mortgagewebcenter.com/ https://apps.rps.ascensus.com/ https://forms.fivision.com/ *.doubleclick.net *.culookup.com *.dcu.org *.demdex.net https://dcu.demdex.net *.locatorsearch.com *.bazaarvoice.com https://www.fmsi-lts.com/DIG_WS https://fmsi-lts.com/ *.adobecqms.net http://cookies.onetrust.mgr.consensu.org/ stage.dcu.org https://stage.dcu.org/ https://dcu-stage-65.adobecqms.net/ http://dcu-stage-65.adobecqms.net/ https://dcu-dev-65.adobecqms.net/ https://dcu-qa-65.adobecqms.net/ https://dcu-stage.adobecqms.net/ *.dcu.org https://dcu-mkt-stage1.campaign.adobe.com https://dcu.campaign.adobe.com https://js-staging.poshdevelopment.com/ https://js.poshdevelopment.com https://api.poshdevelopment.com https://staging.poshdevelopment.com *.youtube.com https://dculocator.wave2.io/ https://www.dcu.org/ https://pixel.sitescout.com/ https://memchat.dcu-online.org/ *.qualtrics.com
etag: W/"d5c-5827e74b40bc0-gzip"
vary: Accept-Encoding
x-cache: Miss from cloudfront
via: 1.1 6480520a5e02f3163410e3134bd77baa.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: MI2FoxbPHBnbRJJMUyWdOo1ZrCBdYUjz10PV_czp02Wpmd9lN2A5qA==
cf-cache-status: MISS
expires: Sat, 04 Feb 2023 13:05:04 GMT
server: cloudflare
cf-ray: 79423e0e2ffdb529-OSL
X-Firefox-Spdy: h2
content-cdn.com/404/dWdnY2Y6Ly9xcGhncmZnLnBiei8=.gif
54.205.54.115200 OK 43 B URL HTTP/2 content-cdn.com/404/dWdnY2Y6Ly9xcGhncmZnLnBiei8=.gif
IP 54.205.54.115:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /404/dWdnY2Y6Ly9xcGhncmZnLnBiei8=.gif HTTP/1.1
Host: content-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dcutest.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: envoy
date: Sat, 04 Feb 2023 09:05:04 GMT
content-type: image/gif
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
x-envoy-upstream-service-time: 5
strict-transport-security: max-age=31536000; includeSubDomains; preload
X-Firefox-Spdy: h2
assets.adobedtm.com/c710ed4af822/9928f11b8b77/1fdcb61dcc7c/RCf7fcd89d8991451b8863814935e70d0d-source.min.js
23.38.200.237200 OK 251 B URL HTTP/2 assets.adobedtm.com/c710ed4af822/9928f11b8b77/1fdcb61dcc7c/RCf7fcd89d8991451b8863814935e70d0d-source.min.js
IP 23.38.200.237:0
File type HTML document, ASCII text
Hash ec4aee6ac14d605199d4df0b041e5c71
fc6e301cbbd3e29277238302f0182032e122acfc
fdf3c3c529e374ce20e58005d8417eb85c2a2f1299493bc49b70aa5a9cb0cfe0
GET /c710ed4af822/9928f11b8b77/1fdcb61dcc7c/RCf7fcd89d8991451b8863814935e70d0d-source.min.js HTTP/1.1
Host: assets.adobedtm.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dcutest.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
content-type: application/x-javascript
etag: "048c95de6cbcd6f598c868bcd5dafd53:1675236858.488417"
last-modified: Wed, 01 Feb 2023 07:34:18 GMT
server: AkamaiNetStorage
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=3600
expires: Sat, 04 Feb 2023 10:05:04 GMT
date: Sat, 04 Feb 2023 09:05:04 GMT
content-length: 251
access-control-allow-origin: https://dcutest.com
timing-allow-origin: *
X-Firefox-Spdy: h2
assets.adobedtm.com/c710ed4af822/9928f11b8b77/1fdcb61dcc7c/RC62a2ef1e23d34429ad32513353526ffa-source.min.js
23.38.200.237200 OK 230 B URL HTTP/2 assets.adobedtm.com/c710ed4af822/9928f11b8b77/1fdcb61dcc7c/RC62a2ef1e23d34429ad32513353526ffa-source.min.js
IP 23.38.200.237:0
Hash 554b101c54f76008c0dbb434be3fe8a7
a16b8e63bd7bfcc67a384998e1e6e1d653557c9d
b39e566a303b0793e40570d58059ce5dd6e15a1a449aaceeeff37ac43f0d7c3b
GET /c710ed4af822/9928f11b8b77/1fdcb61dcc7c/RC62a2ef1e23d34429ad32513353526ffa-source.min.js HTTP/1.1
Host: assets.adobedtm.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dcutest.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
content-type: application/x-javascript
etag: "048c95de6cbcd6f598c868bcd5dafd53:1675236858.488417"
last-modified: Wed, 01 Feb 2023 07:34:18 GMT
server: AkamaiNetStorage
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=3600
expires: Sat, 04 Feb 2023 10:05:04 GMT
date: Sat, 04 Feb 2023 09:05:04 GMT
content-length: 230
access-control-allow-origin: https://dcutest.com
timing-allow-origin: *
X-Firefox-Spdy: h2
dcutest.com/etc.clientlibs/dcu/clientlibs/clientlib-site/resources/fonts/streamline-icons/streamline.ttf?i3lmg7
104.17.91.69200 OK 5.9 kB URL HTTP/2 dcutest.com/etc.clientlibs/dcu/clientlibs/clientlib-site/resources/fonts/streamline-icons/streamline.ttf?i3lmg7
IP 104.17.91.69:0
File type TrueType Font data, 11 tables, 1st "OS/2", 14 names, Macintosh, type 1 string, streamline \012- data
Hash 852d84bea554d0f6903a0b0fc40f0a30
b4d7714eb9a62182ef7dff2cacfb65cd1aac5525
9e39ed4085aca0011849868ef41dc5a047a99187a6e803d88760196728cb284a
GET /etc.clientlibs/dcu/clientlibs/clientlib-site/resources/fonts/streamline-icons/streamline.ttf?i3lmg7 HTTP/1.1
Host: dcutest.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dcutest.com/etc.clientlibs/dcu/clientlibs/clientlib-site.min.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 09:05:04 GMT
content-type: application/x-font-ttf
content-length: 5875
x-dispatcher: dispatcher1useast1
x-vhost: publish
x-content-type-options: nosniff
cache-control: public, max-age=14400
last-modified: Wed, 01 Jun 2022 13:54:51 GMT
content-encoding: gzip
strict-transport-security: max-age=31536000; includeSubDomains
content-security-policy: default-src *.quantummetric.com 'unsafe-inline' 'unsafe-eval' 'self' blob:; worker-src blob:; child-src blob:; object-src 'self'; media-src 'self' blob: usassets.chat.pega.com firefly-chat-production.s3.amazonaws.com https://www.dcu.org https://manifest.prod.boltdns.net/ https://dcu-dev-65.adobecqms.net/ https://players.brightcove.net/ https://vjs.zencdn.net/ https://bcbolt446c5271-a.akamaihd.net/; script-src 'self' 'unsafe-inline' 'unsafe-eval' blob: https://usuat.cobrowse.pega.com/ https://usuatassets.cobrowse.pega.com https://player.vimeo.com/ https://memchat.dcu-online.org/ https://geolocation.onetrust.com https://www.google.com https://cdn.cookielaw.org https://js-staging.poshdevelopment.com/ https://js.poshdevelopment.com https://api.poshdevelopment.com https://staging.poshdevelopment.com *.quantummetric.com http://dfcumanagedservicesstageenvironment.112.2o7.net https://analytics.twitter.com/ *.ads-twitter.com https://us.cobrowse.pega.com https://usassets.cobrowse.pega.com *.steelhousemedia.com https://dcu-mkt-stage1.campaign.adobe.com https://dcu.campaign.adobe.com https://www.calcxml.com/ *.cloudflare.com https://googleads.g.doubleclick.net https://chat.usefirefly.com https://usefirefly.com https://connect.facebook.net www.google-analytics.com assets.adobedtm.com *.timevaluecalculators.com *.bazaarvoice.com *.iesnare.com https://ajax.googleapis.com/ *.googleapis.com *.dcuinsurance.com tagmanager.google.com www.googletagmanager.com https://www.google-analytics.com https://firefly-chat-production.s3.amazonaws.com http://www.googleadservices.com https://connect.facebook.net http://digitalfederalcreditunion.sc.omtrdc.net https://digitalfederalcreditunion.sc.omtrdc.net https://dcu-dev-65.adobecqms.net/ https://dcu-qa-65.adobecqms.net/ https://dcu-stage-65.adobecqms.net/ https://stage.dcu.org/ *.dcu.org https://dculocator.wave2.io/ https://snap.licdn.com https://bat.bing.com https://up.pixel.ad https://ssl.google-analytics.com/ https://www.dcu.org/ https://static.ads-twitter.com/ https://players.brightcove.net/ https://vjs.zencdn.net/ https://bcbolt446c5271-a.akamaihd.net/ https://widget.use1.chat.pega.digital/ *.qualtrics.com; connect-src 'self' *.ads-twitter.com *.quantummetric.com https://dcu-mkt-stage1.campaign.adobe.com https://dcu.campaign.adobe.com wss://usefirefly.com https://usefirefly.com * *.cloudflare.com https://www.calcxml.com/ *.dcu.org *.omtrdc.net *.demdex.net *.bazaarvoice.com wss://chat.usefirefly.com https://www.google-analytics.com https://www.dcuinsurance.com http://digitalfederalcreditunion.sc.omtrdc.net https://digitalfederalcreditunion.sc.omtrdc.net https://www.dcu.org/ https://static.ads-twitter.com/; img-src 'self' *.com *.yahoo.com http://t.co/ dsum.casalemedia.com su.addthis.com s.thebrighttag.com image2.pubmatic.com ads.scorecardresearch.com t.mookie1.com x.bidswitch.net usermatch.krxd.net match.sharethrough.com cm.g.doubleclick.net ads.yahoo.com pixel.advertising.com insight.adsrvr.org www.facebook.com usassets.chat.pega.com firefly-chat-production.s3.amazonaws.com *.bazaarvoice.com https://www.dcu.org https://www.google.co.in https://www.google.com *.timevaluecalculators.com *.everesttech.net *.demdex.net *.omtrdc.net *.googleapis.com *.gstatic.com *.112.2o7.net https://stats.g.doubleclick.net https://www.calcxml.com/ www.google-analytics.com *.doubleclick.net/ https://bcbolt446c5271-a.akamaihd.net/ https://players.brightcove.net/ https://www.dcu.org/ data:; style-src 'self' 'unsafe-inline' *.cloudflare.com https://usuatassets.cobrowse.pega.com https://usassets.cobrowse.pega.com https://usefirefly.com https://dcu-mkt-stage1.campaign.adobe.com https://dcu.campaign.adobe.com https://www.calcxml.com/ https://tagmanager.google.com usassets.chat.pega.com *.timevaluecalculators.com https://fonts.googleapis.com/ *.googleapis.com *.bazaarvoice.com https://match.adsrvr.org https://match.prod.bidr.io https://dcu-dev-65.adobecqms.net/ https://dcu-qa-65.adobecqms.net/ https://dcu-stage-65.adobecqms.net/ https://stage.dcu.org/ *.dcu.org https://dculocator.wave2.io/ https://www.dcu.org/; font-src 'self' https://fonts.gstatic.com/ fonts.gstatic.com https://www.dcu.org/ data:; frame-src 'self' https://player.vimeo.com/ *.quantummetric.com https://dcu.secure.nonprofitsoapbox.com https://americasaves.org/ https://app.loanspq.com/ https://dcu.mortgagewebcenter.com/ https://apps.rps.ascensus.com/ https://forms.fivision.com/ *.doubleclick.net *.culookup.com *.dcu.org *.demdex.net https://dcu.demdex.net *.locatorsearch.com *.bazaarvoice.com https://www.fmsi-lts.com/DIG_WS https://fmsi-lts.com/ *.adobecqms.net http://cookies.onetrust.mgr.consensu.org/ stage.dcu.org https://stage.dcu.org/ https://dcu-stage-65.adobecqms.net/ http://dcu-stage-65.adobecqms.net/ https://dcu-dev-65.adobecqms.net/ https://dcu-qa-65.adobecqms.net/ https://dcu-stage.adobecqms.net/ *.dcu.org https://dcu-mkt-stage1.campaign.adobe.com https://dcu.campaign.adobe.com https://js-staging.poshdevelopment.com/ https://js.poshdevelopment.com https://api.poshdevelopment.com https://staging.poshdevelopment.com *.youtube.com https://dculocator.wave2.io/ https://www.dcu.org/ https://pixel.sitescout.com/ https://memchat.dcu-online.org/ *.qualtrics.com
vary: Accept-Encoding
x-cache: Miss from cloudfront
via: 1.1 aac54e3fe9825ce24d51e0204433c2c0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: d_sz0q3-7-gITPomth-ASHwa-uTlsUDZzErshjuF2mRG6W5pQsxlFA==
cf-cache-status: MISS
expires: Sat, 04 Feb 2023 13:05:04 GMT
accept-ranges: bytes
server: cloudflare
cf-ray: 79423e0e6842b529-OSL
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 280 B IP 93.184.220.29:0
Hash 114ad279908587d66b2888bab13bbd3f
ce202869a9874ec805f88a205d9754d9a92bc94d
75ca287d6e6952846b18534876133783dd4f5dd507b1fc36364b2379150c8cf9
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1501
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 09:05:04 GMT
Last-Modified: Sat, 04 Feb 2023 08:40:03 GMT
Server: ECS (ska/F6FC)
X-Cache: HIT
Content-Length: 280
cdn.cookielaw.org/scripttemplates/6.6.0/otBannerSdk.js
104.16.149.64200 OK 73 kB URL HTTP/2 cdn.cookielaw.org/scripttemplates/6.6.0/otBannerSdk.js
IP 104.16.149.64:0
File type ASCII text, with very long lines (65456)
Hash 5ece01a65a40ed057ece4458a68dfec0
2d4afd3be007919bdabf87b2edf10ee5f4069a02
373aa44e78421faaf42f713f339f2a65ea1c511735fda6d018e08424d31848ab
GET /scripttemplates/6.6.0/otBannerSdk.js HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dcutest.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 09:05:04 GMT
content-type: application/javascript
content-length: 73082
content-encoding: gzip
content-md5: Xs4BplpA7QV+zkRYpo3+wA==
last-modified: Thu, 10 Sep 2020 01:36:33 GMT
etag: 0x8D85529F2EBAD26
x-ms-request-id: fb775127-f01e-002e-5f6c-c45821000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: max-age=86400
cf-cache-status: HIT
age: 19549
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 79423e156c9ffab4-OSL
X-Firefox-Spdy: h2
dcutest.com/etc.clientlibs/dcu/clientlibs/clientlib-dependencies.min.js
104.17.91.69200 OK 69 kB URL HTTP/2 dcutest.com/etc.clientlibs/dcu/clientlibs/clientlib-dependencies.min.js
IP 104.17.91.69:0
File type Unicode text, UTF-8 text, with very long lines (629)
Hash b8c084bc4a8fd4a35f12f99db45af836
32e6e79b742660787b15fbf37661b7275469eb6e
049b0f927d368879809170da818fb1581a35cf668b051a16d358f1e3ba61c8aa
Analyzer Verdict Alert openphish Digital Federal Credit Union
fortinet Phishing
GET /etc.clientlibs/dcu/clientlibs/clientlib-dependencies.min.js HTTP/1.1
Host: dcutest.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dcutest.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 09:05:03 GMT
content-type: application/javascript;charset=utf-8
x-dispatcher: dispatcher1useast1
x-vhost: publish
x-content-type-options: nosniff
last-modified: Mon, 24 Oct 2022 21:43:14 GMT
content-encoding: gzip
cache-control: public, max-age=14400
strict-transport-security: max-age=31536000; includeSubDomains
content-security-policy: default-src *.quantummetric.com 'unsafe-inline' 'unsafe-eval' 'self' blob:; worker-src blob:; child-src blob:; object-src 'self'; media-src 'self' blob: usassets.chat.pega.com firefly-chat-production.s3.amazonaws.com https://www.dcu.org https://manifest.prod.boltdns.net/ https://dcu-dev-65.adobecqms.net/ https://players.brightcove.net/ https://vjs.zencdn.net/ https://bcbolt446c5271-a.akamaihd.net/; script-src 'self' 'unsafe-inline' 'unsafe-eval' blob: https://usuat.cobrowse.pega.com/ https://usuatassets.cobrowse.pega.com https://player.vimeo.com/ https://memchat.dcu-online.org/ https://geolocation.onetrust.com https://www.google.com https://cdn.cookielaw.org https://js-staging.poshdevelopment.com/ https://js.poshdevelopment.com https://api.poshdevelopment.com https://staging.poshdevelopment.com *.quantummetric.com http://dfcumanagedservicesstageenvironment.112.2o7.net https://analytics.twitter.com/ *.ads-twitter.com https://us.cobrowse.pega.com https://usassets.cobrowse.pega.com *.steelhousemedia.com https://dcu-mkt-stage1.campaign.adobe.com https://dcu.campaign.adobe.com https://www.calcxml.com/ *.cloudflare.com https://googleads.g.doubleclick.net https://chat.usefirefly.com https://usefirefly.com https://connect.facebook.net www.google-analytics.com assets.adobedtm.com *.timevaluecalculators.com *.bazaarvoice.com *.iesnare.com https://ajax.googleapis.com/ *.googleapis.com *.dcuinsurance.com tagmanager.google.com www.googletagmanager.com https://www.google-analytics.com https://firefly-chat-production.s3.amazonaws.com http://www.googleadservices.com https://connect.facebook.net http://digitalfederalcreditunion.sc.omtrdc.net https://digitalfederalcreditunion.sc.omtrdc.net https://dcu-dev-65.adobecqms.net/ https://dcu-qa-65.adobecqms.net/ https://dcu-stage-65.adobecqms.net/ https://stage.dcu.org/ *.dcu.org https://dculocator.wave2.io/ https://snap.licdn.com https://bat.bing.com https://up.pixel.ad https://ssl.google-analytics.com/ https://www.dcu.org/ https://static.ads-twitter.com/ https://players.brightcove.net/ https://vjs.zencdn.net/ https://bcbolt446c5271-a.akamaihd.net/ https://widget.use1.chat.pega.digital/ *.qualtrics.com; connect-src 'self' *.ads-twitter.com *.quantummetric.com https://dcu-mkt-stage1.campaign.adobe.com https://dcu.campaign.adobe.com wss://usefirefly.com https://usefirefly.com * *.cloudflare.com https://www.calcxml.com/ *.dcu.org *.omtrdc.net *.demdex.net *.bazaarvoice.com wss://chat.usefirefly.com https://www.google-analytics.com https://www.dcuinsurance.com http://digitalfederalcreditunion.sc.omtrdc.net https://digitalfederalcreditunion.sc.omtrdc.net https://www.dcu.org/ https://static.ads-twitter.com/; img-src 'self' *.com *.yahoo.com http://t.co/ dsum.casalemedia.com su.addthis.com s.thebrighttag.com image2.pubmatic.com ads.scorecardresearch.com t.mookie1.com x.bidswitch.net usermatch.krxd.net match.sharethrough.com cm.g.doubleclick.net ads.yahoo.com pixel.advertising.com insight.adsrvr.org www.facebook.com usassets.chat.pega.com firefly-chat-production.s3.amazonaws.com *.bazaarvoice.com https://www.dcu.org https://www.google.co.in https://www.google.com *.timevaluecalculators.com *.everesttech.net *.demdex.net *.omtrdc.net *.googleapis.com *.gstatic.com *.112.2o7.net https://stats.g.doubleclick.net https://www.calcxml.com/ www.google-analytics.com *.doubleclick.net/ https://bcbolt446c5271-a.akamaihd.net/ https://players.brightcove.net/ https://www.dcu.org/ data:; style-src 'self' 'unsafe-inline' *.cloudflare.com https://usuatassets.cobrowse.pega.com https://usassets.cobrowse.pega.com https://usefirefly.com https://dcu-mkt-stage1.campaign.adobe.com https://dcu.campaign.adobe.com https://www.calcxml.com/ https://tagmanager.google.com usassets.chat.pega.com *.timevaluecalculators.com https://fonts.googleapis.com/ *.googleapis.com *.bazaarvoice.com https://match.adsrvr.org https://match.prod.bidr.io https://dcu-dev-65.adobecqms.net/ https://dcu-qa-65.adobecqms.net/ https://dcu-stage-65.adobecqms.net/ https://stage.dcu.org/ *.dcu.org https://dculocator.wave2.io/ https://www.dcu.org/; font-src 'self' https://fonts.gstatic.com/ fonts.gstatic.com https://www.dcu.org/ data:; frame-src 'self' https://player.vimeo.com/ *.quantummetric.com https://dcu.secure.nonprofitsoapbox.com https://americasaves.org/ https://app.loanspq.com/ https://dcu.mortgagewebcenter.com/ https://apps.rps.ascensus.com/ https://forms.fivision.com/ *.doubleclick.net *.culookup.com *.dcu.org *.demdex.net https://dcu.demdex.net *.locatorsearch.com *.bazaarvoice.com https://www.fmsi-lts.com/DIG_WS https://fmsi-lts.com/ *.adobecqms.net http://cookies.onetrust.mgr.consensu.org/ stage.dcu.org https://stage.dcu.org/ https://dcu-stage-65.adobecqms.net/ http://dcu-stage-65.adobecqms.net/ https://dcu-dev-65.adobecqms.net/ https://dcu-qa-65.adobecqms.net/ https://dcu-stage.adobecqms.net/ *.dcu.org https://dcu-mkt-stage1.campaign.adobe.com https://dcu.campaign.adobe.com https://js-staging.poshdevelopment.com/ https://js.poshdevelopment.com https://api.poshdevelopment.com https://staging.poshdevelopment.com *.youtube.com https://dculocator.wave2.io/ https://www.dcu.org/ https://pixel.sitescout.com/ https://memchat.dcu-online.org/ *.qualtrics.com
etag: "3fc8a-5ebceadba2080-gzip"
vary: Accept-Encoding
x-cache: Miss from cloudfront
via: 1.1 c9f2a4d2bcd548d1a3cbe1617a22f216.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: JAdJInxtXR2zcz5GIZhx3v6eOAYJseq7PUQiCVvoR8VcMnCeSG7WNQ==
cf-cache-status: MISS
expires: Sat, 04 Feb 2023 13:05:03 GMT
server: cloudflare
cf-ray: 79423e08fac5b529-OSL
X-Firefox-Spdy: h2
dcu.demdex.net/dest5.html?d_nsid=0
34.255.210.6200 OK 2.8 kB URL HTTP/1.1 dcu.demdex.net/dest5.html?d_nsid=0
IP 34.255.210.6:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (550)
Hash ccbdcb1e84c241950763ec4cd516cdfc
55dfa8d4b09c5c3a80fcd101152f6ebed3d27a2c
de9ccb9b168945a24f20edc28c39be4135b328129ba8ee378401a7aedc925d12
GET /dest5.html?d_nsid=0 HTTP/1.1
Host: dcu.demdex.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dcutest.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: no-cache,no-store,must-revalidate,max-age=0,proxy-revalidate,no-transform,private
content-encoding: gzip
Content-Type: text/html;charset=UTF-8
date: Sat, 4 Feb 2023 09:05:04 GMT
DCS: dcs-prod-irl1-2-v045-0f822ad5b.edge-irl1.demdex.com 0 ms
Expires: Thu, 01 Jan 1970 00:00:00 UTC
last-modified: Fri, 28 Oct 2022 11:22:23 GMT
P3P: policyref="/w3c/p3p.xml", CP="NOI NID CURa ADMa DEVa PSAa PSDa OUR SAMa BUS PUR COM NAV INT"
Pragma: no-cache
Strict-Transport-Security: max-age=31536000; includeSubDomains
vary: accept-encoding
X-TID: eRfJEFRzQo4=
Content-Length: 2791
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash d3e050cf67675c3c19014a74517e3747
9931fd6a416e220e15ef5eccad6d0cb12edf3995
8411e23b7bfeba91b6252f15de6ed18b8cff1f752af0efc4f5429b54fccb0da4
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5740
Cache-Control: max-age=87950
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 09:05:04 GMT
Etag: "63dcbde2-1d7"
Expires: Sun, 05 Feb 2023 09:30:54 GMT
Last-Modified: Fri, 03 Feb 2023 07:55:14 GMT
Server: ECS (ska/F6FC)
X-Cache: HIT
Content-Length: 471
connect.facebook.net/en_US/fbevents.js
31.13.72.12200 OK 28 kB URL HTTP/2 connect.facebook.net/en_US/fbevents.js
IP 31.13.72.12:0
File type ASCII text, with very long lines (64348)
Hash dd1f85cc598419df61e254e53f9ec1ef
f86c0ee563f5b7a01e1d40b566f2bc184a32380f
c06f52b233c835b03292f39cb847507a03bb971066bf91341b58a580244398c0
GET /en_US/fbevents.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dcutest.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
content-type: application/x-javascript; charset=utf-8
report-to: {"max_age":86400,"endpoints":[{"url":"https:\/\/www.facebook.com\/browser_reporting\/?minimize=0"}],"group":"coep_report"}
content-security-policy: default-src facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com data: blob: 'self';script-src *.fbcdn.net *.facebook.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src data: blob: 'unsafe-inline' facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com;connect-src *.fbcdn.net *.facebook.net wss://*.fbcdn.net attachment.fbsbx.com blob: 'self';block-all-mixed-content;upgrade-insecure-requests;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy-report-only: require-corp;report-to="coep_report"
cross-origin-opener-policy: same-origin-allow-popups
pragma: public
cache-control: public, max-age=1200
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
x-fb-debug: xLcyyWQyyw+hcBi9BV48enNQrpK+g+6vgZAIcyE7RmZguWKAvj8OTSB6JPfbvgdDDsG7+2bbdu4LQznngnFBDw==
content-length: 27843
x-fb-trip-id: 1904183273
date: Sat, 04 Feb 2023 09:05:04 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.cookielaw.org/consent/c0559bcc-8507-4dc8-b64d-5f9540de4716/f04be161-8ac5-4016-a475-250c8ea79fa3/en.json
104.16.149.64200 OK 16 kB URL HTTP/2 cdn.cookielaw.org/consent/c0559bcc-8507-4dc8-b64d-5f9540de4716/f04be161-8ac5-4016-a475-250c8ea79fa3/en.json
IP 104.16.149.64:0
File type JSON data\012- HTML document, Unicode text, UTF-8 text, with very long lines (65494), with no line terminators
Hash 9bdd014fcc09f487a8506aeef9fbbd75
d6f6534c842a6d202c02bca4ecd57e89bfeb9581
2c730534233b5e8d2373d13c27ea97e697e94ba9fdc50cb56f64a4e5c34d493e
GET /consent/c0559bcc-8507-4dc8-b64d-5f9540de4716/f04be161-8ac5-4016-a475-250c8ea79fa3/en.json HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://dcutest.com/
Origin: https://dcutest.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 09:05:04 GMT
content-type: application/x-javascript
content-length: 15738
cache-control: public, max-age=86400
content-encoding: gzip
content-md5: m90BT8wJ9IeoUGru+fu9dQ==
last-modified: Thu, 15 Apr 2021 16:18:03 GMT
etag: 0x8D9002A0BBA200A
x-ms-request-id: de142b9b-d01e-013d-13d8-362b95000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Cache-Control,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cf-cache-status: HIT
expires: Sun, 05 Feb 2023 09:05:04 GMT
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 79423e15fbb4b521-OSL
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash d3e050cf67675c3c19014a74517e3747
9931fd6a416e220e15ef5eccad6d0cb12edf3995
8411e23b7bfeba91b6252f15de6ed18b8cff1f752af0efc4f5429b54fccb0da4
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5741
Cache-Control: max-age=87950
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 09:05:05 GMT
Etag: "63dcbde2-1d7"
Expires: Sun, 05 Feb 2023 09:30:55 GMT
Last-Modified: Fri, 03 Feb 2023 07:55:14 GMT
Server: ECS (ska/F6FC)
X-Cache: HIT
Content-Length: 471
cdn.cookielaw.org/scripttemplates/6.6.0/assets/v2/otPcCenter.json
104.16.149.64200 OK 11 kB URL HTTP/2 cdn.cookielaw.org/scripttemplates/6.6.0/assets/v2/otPcCenter.json
IP 104.16.149.64:0
File type JSON data\012- , ASCII text, with very long lines (35353)
Hash c02d6ca4a5811af86c8689866913ef0d
5a0a11caf578da67f36184cdce46225bea179e81
4fbf0073dc91cd15e0f6ffbb329bcab7bdf9ff1d1eaee05cf6908ca0c1869601
GET /scripttemplates/6.6.0/assets/v2/otPcCenter.json HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://dcutest.com/
Origin: https://dcutest.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 09:05:05 GMT
content-type: application/json
content-length: 11200
content-encoding: gzip
content-md5: wC1spKWBGvhshomGaRPvDQ==
last-modified: Thu, 10 Sep 2020 01:36:26 GMT
etag: 0x8D85529EF3215A4
x-ms-request-id: 3f3cbb4f-b01e-00ee-54f6-37d265000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: max-age=86400
cf-cache-status: HIT
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 79423e16bccdb521-OSL
X-Firefox-Spdy: h2
cdn.cookielaw.org/scripttemplates/6.6.0/assets/otFlat.json
104.16.149.64200 OK 3.2 kB URL HTTP/2 cdn.cookielaw.org/scripttemplates/6.6.0/assets/otFlat.json
IP 104.16.149.64:0
File type JSON data\012- , ASCII text, with very long lines (9672)
Hash 47ba8eaf55829668400cecdbcf9b3e07
e280e33dff680d601fad7ba2d8f41eff11da0d7c
571f78123a1c0c3ebcb93b3fe97f5a2f69e53c48c5a16d1f32c72943f6e85145
GET /scripttemplates/6.6.0/assets/otFlat.json HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://dcutest.com/
Origin: https://dcutest.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 09:05:05 GMT
content-type: application/json
content-length: 3248
content-encoding: gzip
content-md5: R7qOr1WClmhADOzbz5s+Bw==
last-modified: Thu, 10 Sep 2020 01:36:24 GMT
etag: 0x8D85529EDFDCA3B
x-ms-request-id: 93e8ff13-101e-0109-0ab5-36843d000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: max-age=86400
cf-cache-status: HIT
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 79423e16bcccb521-OSL
X-Firefox-Spdy: h2
dcutest.com/etc.clientlibs/dcu/clientlibs/clientlib-site/resources/fonts/icons-v5/dcu-iconset.woff2
104.17.91.69200 OK 4.1 kB URL HTTP/2 dcutest.com/etc.clientlibs/dcu/clientlibs/clientlib-site/resources/fonts/icons-v5/dcu-iconset.woff2
IP 104.17.91.69:0
File type Web Open Font Format, CFF, length 3612, version 1.0\012- data
Hash 4b2c0c2a9444bea62d6604f8d94b871e
ab63a9c8f62da43f03adcfbf87017e4207167023
4720c77b1da7f34e23e448e9be998ccfa2cd23195ceaf85114ea48fc345ff7e8
Analyzer Verdict Alert openphish Digital Federal Credit Union
fortinet Phishing
GET /etc.clientlibs/dcu/clientlibs/clientlib-site/resources/fonts/icons-v5/dcu-iconset.woff2 HTTP/1.1
Host: dcutest.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://dcutest.com/etc.clientlibs/dcu/clientlibs/clientlib-site.min.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 09:05:04 GMT
content-type: application/octet-stream
x-dispatcher: dispatcher1useast1
x-vhost: publish
cache-control: public, max-age=14400
x-content-type-options: nosniff
last-modified: Fri, 22 Feb 2019 16:55:19 GMT
strict-transport-security: max-age=31536000; includeSubDomains
content-security-policy: default-src *.quantummetric.com 'unsafe-inline' 'unsafe-eval' 'self' blob:; worker-src blob:; child-src blob:; object-src 'self'; media-src 'self' blob: usassets.chat.pega.com firefly-chat-production.s3.amazonaws.com https://www.dcu.org https://manifest.prod.boltdns.net/ https://dcu-dev-65.adobecqms.net/ https://players.brightcove.net/ https://vjs.zencdn.net/ https://bcbolt446c5271-a.akamaihd.net/; script-src 'self' 'unsafe-inline' 'unsafe-eval' blob: https://usuat.cobrowse.pega.com/ https://usuatassets.cobrowse.pega.com https://player.vimeo.com/ https://memchat.dcu-online.org/ https://geolocation.onetrust.com https://www.google.com https://cdn.cookielaw.org https://js-staging.poshdevelopment.com/ https://js.poshdevelopment.com https://api.poshdevelopment.com https://staging.poshdevelopment.com *.quantummetric.com http://dfcumanagedservicesstageenvironment.112.2o7.net https://analytics.twitter.com/ *.ads-twitter.com https://us.cobrowse.pega.com https://usassets.cobrowse.pega.com *.steelhousemedia.com https://dcu-mkt-stage1.campaign.adobe.com https://dcu.campaign.adobe.com https://www.calcxml.com/ *.cloudflare.com https://googleads.g.doubleclick.net https://chat.usefirefly.com https://usefirefly.com https://connect.facebook.net www.google-analytics.com assets.adobedtm.com *.timevaluecalculators.com *.bazaarvoice.com *.iesnare.com https://ajax.googleapis.com/ *.googleapis.com *.dcuinsurance.com tagmanager.google.com www.googletagmanager.com https://www.google-analytics.com https://firefly-chat-production.s3.amazonaws.com http://www.googleadservices.com https://connect.facebook.net http://digitalfederalcreditunion.sc.omtrdc.net https://digitalfederalcreditunion.sc.omtrdc.net https://dcu-dev-65.adobecqms.net/ https://dcu-qa-65.adobecqms.net/ https://dcu-stage-65.adobecqms.net/ https://stage.dcu.org/ *.dcu.org https://dculocator.wave2.io/ https://snap.licdn.com https://bat.bing.com https://up.pixel.ad https://ssl.google-analytics.com/ https://www.dcu.org/ https://static.ads-twitter.com/ https://players.brightcove.net/ https://vjs.zencdn.net/ https://bcbolt446c5271-a.akamaihd.net/ https://widget.use1.chat.pega.digital/ *.qualtrics.com; connect-src 'self' *.ads-twitter.com *.quantummetric.com https://dcu-mkt-stage1.campaign.adobe.com https://dcu.campaign.adobe.com wss://usefirefly.com https://usefirefly.com * *.cloudflare.com https://www.calcxml.com/ *.dcu.org *.omtrdc.net *.demdex.net *.bazaarvoice.com wss://chat.usefirefly.com https://www.google-analytics.com https://www.dcuinsurance.com http://digitalfederalcreditunion.sc.omtrdc.net https://digitalfederalcreditunion.sc.omtrdc.net https://www.dcu.org/ https://static.ads-twitter.com/; img-src 'self' *.com *.yahoo.com http://t.co/ dsum.casalemedia.com su.addthis.com s.thebrighttag.com image2.pubmatic.com ads.scorecardresearch.com t.mookie1.com x.bidswitch.net usermatch.krxd.net match.sharethrough.com cm.g.doubleclick.net ads.yahoo.com pixel.advertising.com insight.adsrvr.org www.facebook.com usassets.chat.pega.com firefly-chat-production.s3.amazonaws.com *.bazaarvoice.com https://www.dcu.org https://www.google.co.in https://www.google.com *.timevaluecalculators.com *.everesttech.net *.demdex.net *.omtrdc.net *.googleapis.com *.gstatic.com *.112.2o7.net https://stats.g.doubleclick.net https://www.calcxml.com/ www.google-analytics.com *.doubleclick.net/ https://bcbolt446c5271-a.akamaihd.net/ https://players.brightcove.net/ https://www.dcu.org/ data:; style-src 'self' 'unsafe-inline' *.cloudflare.com https://usuatassets.cobrowse.pega.com https://usassets.cobrowse.pega.com https://usefirefly.com https://dcu-mkt-stage1.campaign.adobe.com https://dcu.campaign.adobe.com https://www.calcxml.com/ https://tagmanager.google.com usassets.chat.pega.com *.timevaluecalculators.com https://fonts.googleapis.com/ *.googleapis.com *.bazaarvoice.com https://match.adsrvr.org https://match.prod.bidr.io https://dcu-dev-65.adobecqms.net/ https://dcu-qa-65.adobecqms.net/ https://dcu-stage-65.adobecqms.net/ https://stage.dcu.org/ *.dcu.org https://dculocator.wave2.io/ https://www.dcu.org/; font-src 'self' https://fonts.gstatic.com/ fonts.gstatic.com https://www.dcu.org/ data:; frame-src 'self' https://player.vimeo.com/ *.quantummetric.com https://dcu.secure.nonprofitsoapbox.com https://americasaves.org/ https://app.loanspq.com/ https://dcu.mortgagewebcenter.com/ https://apps.rps.ascensus.com/ https://forms.fivision.com/ *.doubleclick.net *.culookup.com *.dcu.org *.demdex.net https://dcu.demdex.net *.locatorsearch.com *.bazaarvoice.com https://www.fmsi-lts.com/DIG_WS https://fmsi-lts.com/ *.adobecqms.net http://cookies.onetrust.mgr.consensu.org/ stage.dcu.org https://stage.dcu.org/ https://dcu-stage-65.adobecqms.net/ http://dcu-stage-65.adobecqms.net/ https://dcu-dev-65.adobecqms.net/ https://dcu-qa-65.adobecqms.net/ https://dcu-stage.adobecqms.net/ *.dcu.org https://dcu-mkt-stage1.campaign.adobe.com https://dcu.campaign.adobe.com https://js-staging.poshdevelopment.com/ https://js.poshdevelopment.com https://api.poshdevelopment.com https://staging.poshdevelopment.com *.youtube.com https://dculocator.wave2.io/ https://www.dcu.org/ https://pixel.sitescout.com/ https://memchat.dcu-online.org/ *.qualtrics.com
etag: W/"e1c-5827e74b40bc0-gzip"
vary: Accept-Encoding
x-cache: Miss from cloudfront
via: 1.1 dbfaae0db03f11cf713bbcbdb25be4a2.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: jmH4i6hC_wAbQ-oqldOU8DGWlZiuJVfDcqDHwXC24--mRzwbCV5aGg==
cf-cache-status: MISS
expires: Sat, 04 Feb 2023 13:05:04 GMT
server: cloudflare
cf-ray: 79423e0e4827b529-OSL
X-Firefox-Spdy: h2
dcutest.com/etc.clientlibs/dcu/clientlibs/clientlib-site/resources/favicons/android-icon-192x192.png
104.17.91.69200 OK 9.4 kB URL HTTP/2 dcutest.com/etc.clientlibs/dcu/clientlibs/clientlib-site/resources/favicons/android-icon-192x192.png
IP 104.17.91.69:0
File type PNG image data, 192 x 192, 8-bit/color RGBA, non-interlaced\012- data
Hash 7216a21919985c76db508e4a4970b336
cebc61315ef6c571077cc8320a022fad579da63a
d10834ba712b4029f758befeb40c55920c3873a0de72e287b712184f3a8c8afb
Analyzer Verdict Alert openphish Digital Federal Credit Union
GET /etc.clientlibs/dcu/clientlibs/clientlib-site/resources/favicons/android-icon-192x192.png HTTP/1.1
Host: dcutest.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dcutest.com/
Cookie: AMCV_46051B125B89FACB0A495DD6%40AdobeOrg=1176715910%7CMCIDTS%7C19393%7CMCMID%7C71058198921410280650863828544901609096%7CMCAAMLH-1676106339%7C6%7CMCAAMB-1676106339%7C6G1ynYcLPuiQxYZrsz_pkqfLG9yMXBpb2zX5dvJdYQJzPXImdj0y%7CMCOPTOUT-1675508739s%7CNONE%7CvVersion%7C5.4.0; firstvisit=yes; _gcl_au=1.1.617997405.1675501540; AMCVS_46051B125B89FACB0A495DD6%40AdobeOrg=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 09:05:05 GMT
content-type: image/png
content-length: 9441
x-dispatcher: dispatcher2useast1
x-vhost: publish
cache-control: public, max-age=31536000
x-content-type-options: nosniff
last-modified: Wed, 20 Mar 2019 05:24:11 GMT
etag: "24e1-5847fd4e454c0"
strict-transport-security: max-age=31536000; includeSubDomains
content-security-policy: default-src *.quantummetric.com 'unsafe-inline' 'unsafe-eval' 'self' blob:; worker-src blob:; child-src blob:; object-src 'self'; media-src 'self' blob: usassets.chat.pega.com firefly-chat-production.s3.amazonaws.com https://www.dcu.org https://manifest.prod.boltdns.net/ https://dcu-dev-65.adobecqms.net/ https://players.brightcove.net/ https://vjs.zencdn.net/ https://bcbolt446c5271-a.akamaihd.net/; script-src 'self' 'unsafe-inline' 'unsafe-eval' blob: https://usuat.cobrowse.pega.com/ https://usuatassets.cobrowse.pega.com https://player.vimeo.com/ https://memchat.dcu-online.org/ https://geolocation.onetrust.com https://www.google.com https://cdn.cookielaw.org https://js-staging.poshdevelopment.com/ https://js.poshdevelopment.com https://api.poshdevelopment.com https://staging.poshdevelopment.com *.quantummetric.com http://dfcumanagedservicesstageenvironment.112.2o7.net https://analytics.twitter.com/ *.ads-twitter.com https://us.cobrowse.pega.com https://usassets.cobrowse.pega.com *.steelhousemedia.com https://dcu-mkt-stage1.campaign.adobe.com https://dcu.campaign.adobe.com https://www.calcxml.com/ *.cloudflare.com https://googleads.g.doubleclick.net https://chat.usefirefly.com https://usefirefly.com https://connect.facebook.net www.google-analytics.com assets.adobedtm.com *.timevaluecalculators.com *.bazaarvoice.com *.iesnare.com https://ajax.googleapis.com/ *.googleapis.com *.dcuinsurance.com tagmanager.google.com www.googletagmanager.com https://www.google-analytics.com https://firefly-chat-production.s3.amazonaws.com http://www.googleadservices.com https://connect.facebook.net http://digitalfederalcreditunion.sc.omtrdc.net https://digitalfederalcreditunion.sc.omtrdc.net https://dcu-dev-65.adobecqms.net/ https://dcu-qa-65.adobecqms.net/ https://dcu-stage-65.adobecqms.net/ https://stage.dcu.org/ *.dcu.org https://dculocator.wave2.io/ https://snap.licdn.com https://bat.bing.com https://up.pixel.ad https://ssl.google-analytics.com/ https://www.dcu.org/ https://static.ads-twitter.com/ https://players.brightcove.net/ https://vjs.zencdn.net/ https://bcbolt446c5271-a.akamaihd.net/ https://widget.use1.chat.pega.digital/ *.qualtrics.com; connect-src 'self' *.ads-twitter.com *.quantummetric.com https://dcu-mkt-stage1.campaign.adobe.com https://dcu.campaign.adobe.com wss://usefirefly.com https://usefirefly.com * *.cloudflare.com https://www.calcxml.com/ *.dcu.org *.omtrdc.net *.demdex.net *.bazaarvoice.com wss://chat.usefirefly.com https://www.google-analytics.com https://www.dcuinsurance.com http://digitalfederalcreditunion.sc.omtrdc.net https://digitalfederalcreditunion.sc.omtrdc.net https://www.dcu.org/ https://static.ads-twitter.com/; img-src 'self' *.com *.yahoo.com http://t.co/ dsum.casalemedia.com su.addthis.com s.thebrighttag.com image2.pubmatic.com ads.scorecardresearch.com t.mookie1.com x.bidswitch.net usermatch.krxd.net match.sharethrough.com cm.g.doubleclick.net ads.yahoo.com pixel.advertising.com insight.adsrvr.org www.facebook.com usassets.chat.pega.com firefly-chat-production.s3.amazonaws.com *.bazaarvoice.com https://www.dcu.org https://www.google.co.in https://www.google.com *.timevaluecalculators.com *.everesttech.net *.demdex.net *.omtrdc.net *.googleapis.com *.gstatic.com *.112.2o7.net https://stats.g.doubleclick.net https://www.calcxml.com/ www.google-analytics.com *.doubleclick.net/ https://bcbolt446c5271-a.akamaihd.net/ https://players.brightcove.net/ https://www.dcu.org/ data:; style-src 'self' 'unsafe-inline' *.cloudflare.com https://usuatassets.cobrowse.pega.com https://usassets.cobrowse.pega.com https://usefirefly.com https://dcu-mkt-stage1.campaign.adobe.com https://dcu.campaign.adobe.com https://www.calcxml.com/ https://tagmanager.google.com usassets.chat.pega.com *.timevaluecalculators.com https://fonts.googleapis.com/ *.googleapis.com *.bazaarvoice.com https://match.adsrvr.org https://match.prod.bidr.io https://dcu-dev-65.adobecqms.net/ https://dcu-qa-65.adobecqms.net/ https://dcu-stage-65.adobecqms.net/ https://stage.dcu.org/ *.dcu.org https://dculocator.wave2.io/ https://www.dcu.org/; font-src 'self' https://fonts.gstatic.com/ fonts.gstatic.com https://www.dcu.org/ data:; frame-src 'self' https://player.vimeo.com/ *.quantummetric.com https://dcu.secure.nonprofitsoapbox.com https://americasaves.org/ https://app.loanspq.com/ https://dcu.mortgagewebcenter.com/ https://apps.rps.ascensus.com/ https://forms.fivision.com/ *.doubleclick.net *.culookup.com *.dcu.org *.demdex.net https://dcu.demdex.net *.locatorsearch.com *.bazaarvoice.com https://www.fmsi-lts.com/DIG_WS https://fmsi-lts.com/ *.adobecqms.net http://cookies.onetrust.mgr.consensu.org/ stage.dcu.org https://stage.dcu.org/ https://dcu-stage-65.adobecqms.net/ http://dcu-stage-65.adobecqms.net/ https://dcu-dev-65.adobecqms.net/ https://dcu-qa-65.adobecqms.net/ https://dcu-stage.adobecqms.net/ *.dcu.org https://dcu-mkt-stage1.campaign.adobe.com https://dcu.campaign.adobe.com https://js-staging.poshdevelopment.com/ https://js.poshdevelopment.com https://api.poshdevelopment.com https://staging.poshdevelopment.com *.youtube.com https://dculocator.wave2.io/ https://www.dcu.org/ https://pixel.sitescout.com/ https://memchat.dcu-online.org/ *.qualtrics.com
content-disposition: inline
x-cache: Miss from cloudfront
via: 1.1 a370d34019720f60dd35cbe89cb3994a.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN1-C1
x-amz-cf-id: G6HrsCpj7Z8xi4FQmq7ghxwkmPA-gCe8y99NJCjiKvbBerbhT9lbNw==
cf-cache-status: HIT
expires: Sun, 04 Feb 2024 09:05:05 GMT
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 79423e15e94fb529-OSL
X-Firefox-Spdy: h2
cm.everesttech.net/cm/dd?d_uuid=70891435432836008170793104714113206744
18.201.4.185302 0 B URL HTTP/1.1 cm.everesttech.net/cm/dd?d_uuid=70891435432836008170793104714113206744
IP 18.201.4.185:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cm/dd?d_uuid=70891435432836008170793104714113206744 HTTP/1.1
Host: cm.everesttech.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dcutest.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302
Date: Sat, 04 Feb 2023 09:05:05 GMT
Content-Length: 0
Connection: keep-alive
Set-Cookie: everest_g_v2=g_surferid~Y94fwQAAANN22QMx; Domain=.everesttech.net; Expires=Sun, 04-Feb-2024 09:05:05 GMT; Path=/
everest_session_v2=Y94fwQAAANN22gMx; Domain=.everesttech.net; Path=/
P3P: CP="NOI NID DEVa PSAa PSDa OUR IND PUR COM NAV INT DEM"
Cache-Control: no-cache
Location: https://dpm.demdex.net/ibs:dpid=411&dpuuid=Y94fwQAAANN22QMx
Server: AMO-cookiemap/1.1
fonts.gstatic.com/s/nunitosans/v12/pe03MImSLYBIv1o4X1M8cc9iB85tU1E.woff2
216.58.207.227200 OK 17 kB URL HTTP/2 fonts.gstatic.com/s/nunitosans/v12/pe03MImSLYBIv1o4X1M8cc9iB85tU1E.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 17156, version 1.0\012- data
Hash 7e344afc10a492d516789f072fa6edfd
f38bd0b4e9d0577528f533b8ecd80801a0c6340f
c84423c305779f2aab07847a2e3870ac1ea4072e470d5eb149c01e0e0497eae3
GET /s/nunitosans/v12/pe03MImSLYBIv1o4X1M8cc9iB85tU1E.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://dcutest.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 17156
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 03 Feb 2023 02:06:35 GMT
expires: Sat, 03 Feb 2024 02:06:35 GMT
cache-control: public, max-age=31536000
age: 111510
last-modified: Mon, 09 May 2022 18:33:24 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
dpm.demdex.net/ibs:dpid=411&dpuuid=Y94fwQAAANN22QMx
3.248.89.226302 Found 0 B URL HTTP/1.1 dpm.demdex.net/ibs:dpid=411&dpuuid=Y94fwQAAANN22QMx
IP 3.248.89.226:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ibs:dpid=411&dpuuid=Y94fwQAAANN22QMx HTTP/1.1
Host: dpm.demdex.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://dcutest.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Cache-Control: no-cache,no-store,must-revalidate,max-age=0,proxy-revalidate,no-transform,private
DCS: dcs-prod-irl1-2-v045-0df7a788e.edge-irl1.demdex.com 0 ms
Expires: Thu, 01 Jan 1970 00:00:00 UTC
Location: https://dpm.demdex.net/demconf.jpg?et:ibs%7cdata:dpid=411&dpuuid=Y94fwQAAANN22QMx
P3P: policyref="/w3c/p3p.xml", CP="NOI NID CURa ADMa DEVa PSAa PSDa OUR SAMa BUS PUR COM NAV INT"
Pragma: no-cache
set-cookie: demdex=36972769808110253382936936056505234083; Max-Age=15552000; Expires=Thu, 03 Aug 2023 09:05:05 GMT; Path=/; Domain=.demdex.net; Secure; SameSite=None
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-TID: 8POS5VcpT64=
Content-Length: 0
Connection: keep-alive
dpm.demdex.net/demconf.jpg?et:ibs%7cdata:dpid=411&dpuuid=Y94fwQAAANN22QMx
3.248.89.226200 OK 59 B URL HTTP/1.1 dpm.demdex.net/demconf.jpg?et:ibs%7cdata:dpid=411&dpuuid=Y94fwQAAANN22QMx
IP 3.248.89.226:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 1251cd5e5c2def4c046309375f87c1c1
e02d6b0c6a5c495c15985e2832e335eda8528c80
4e7010cc46fa361c88e57e3346d27421cf3b8a8bf5f39b43fc45997c60cb1c13
GET /demconf.jpg?et:ibs%7cdata:dpid=411&dpuuid=Y94fwQAAANN22QMx HTTP/1.1
Host: dpm.demdex.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://dcutest.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: no-cache,no-store,must-revalidate,max-age=0,proxy-revalidate,no-transform,private
content-encoding: gzip
Content-Type: image/gif
DCS: dcs-prod-irl1-2-v045-0cfa310b8.edge-irl1.demdex.com 0 ms
Expires: Thu, 01 Jan 1970 00:00:00 UTC
P3P: policyref="/w3c/p3p.xml", CP="NOI NID CURa ADMa DEVa PSAa PSDa OUR SAMa BUS PUR COM NAV INT"
Pragma: no-cache
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Content-Type-Options: nosniff
X-TID: 3LfNkB5RSKk=
Content-Length: 59
Connection: keep-alive
dcutest.com/etc.clientlibs/dcu/clientlibs/clientlib-site/resources/favicons/favicon-16x16.png
104.17.91.69200 OK 1.1 kB URL HTTP/2 dcutest.com/etc.clientlibs/dcu/clientlibs/clientlib-site/resources/favicons/favicon-16x16.png
IP 104.17.91.69:0
File type PNG image data, 16 x 16, 8-bit colormap, non-interlaced\012- data
Hash 414d99abbdc026b925083131bead7772
29a161f355738459f3564a587d4e3b8a2c9c0da2
6d2f4d1923705abbcf68264b60d21b32037923c2b5ceaf934150cd92f50d497f
Analyzer Verdict Alert openphish Digital Federal Credit Union
GET /etc.clientlibs/dcu/clientlibs/clientlib-site/resources/favicons/favicon-16x16.png HTTP/1.1
Host: dcutest.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dcutest.com/
Cookie: AMCV_46051B125B89FACB0A495DD6%40AdobeOrg=1176715910%7CMCIDTS%7C19393%7CMCMID%7C71058198921410280650863828544901609096%7CMCAAMLH-1676106339%7C6%7CMCAAMB-1676106339%7C6G1ynYcLPuiQxYZrsz_pkqfLG9yMXBpb2zX5dvJdYQJzPXImdj0y%7CMCOPTOUT-1675508739s%7CNONE%7CvVersion%7C5.4.0; firstvisit=yes; _gcl_au=1.1.617997405.1675501540; AMCVS_46051B125B89FACB0A495DD6%40AdobeOrg=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 09:05:05 GMT
content-type: image/png
content-length: 1133
x-dispatcher: dispatcher2useast1
x-vhost: publish
cache-control: public, max-age=31536000
x-content-type-options: nosniff
last-modified: Wed, 20 Mar 2019 05:24:11 GMT
etag: "46d-5847fd4e454c0"
strict-transport-security: max-age=31536000; includeSubDomains
content-security-policy: default-src *.quantummetric.com 'unsafe-inline' 'unsafe-eval' 'self' blob:; worker-src blob:; child-src blob:; object-src 'self'; media-src 'self' blob: usassets.chat.pega.com firefly-chat-production.s3.amazonaws.com https://www.dcu.org https://manifest.prod.boltdns.net/ https://dcu-dev-65.adobecqms.net/ https://players.brightcove.net/ https://vjs.zencdn.net/ https://bcbolt446c5271-a.akamaihd.net/; script-src 'self' 'unsafe-inline' 'unsafe-eval' blob: https://usuat.cobrowse.pega.com/ https://usuatassets.cobrowse.pega.com https://player.vimeo.com/ https://memchat.dcu-online.org/ https://geolocation.onetrust.com https://www.google.com https://cdn.cookielaw.org https://js-staging.poshdevelopment.com/ https://js.poshdevelopment.com https://api.poshdevelopment.com https://staging.poshdevelopment.com *.quantummetric.com http://dfcumanagedservicesstageenvironment.112.2o7.net https://analytics.twitter.com/ *.ads-twitter.com https://us.cobrowse.pega.com https://usassets.cobrowse.pega.com *.steelhousemedia.com https://dcu-mkt-stage1.campaign.adobe.com https://dcu.campaign.adobe.com https://www.calcxml.com/ *.cloudflare.com https://googleads.g.doubleclick.net https://chat.usefirefly.com https://usefirefly.com https://connect.facebook.net www.google-analytics.com assets.adobedtm.com *.timevaluecalculators.com *.bazaarvoice.com *.iesnare.com https://ajax.googleapis.com/ *.googleapis.com *.dcuinsurance.com tagmanager.google.com www.googletagmanager.com https://www.google-analytics.com https://firefly-chat-production.s3.amazonaws.com http://www.googleadservices.com https://connect.facebook.net http://digitalfederalcreditunion.sc.omtrdc.net https://digitalfederalcreditunion.sc.omtrdc.net https://dcu-dev-65.adobecqms.net/ https://dcu-qa-65.adobecqms.net/ https://dcu-stage-65.adobecqms.net/ https://stage.dcu.org/ *.dcu.org https://dculocator.wave2.io/ https://snap.licdn.com https://bat.bing.com https://up.pixel.ad https://ssl.google-analytics.com/ https://www.dcu.org/ https://static.ads-twitter.com/ https://players.brightcove.net/ https://vjs.zencdn.net/ https://bcbolt446c5271-a.akamaihd.net/ https://widget.use1.chat.pega.digital/ *.qualtrics.com; connect-src 'self' *.ads-twitter.com *.quantummetric.com https://dcu-mkt-stage1.campaign.adobe.com https://dcu.campaign.adobe.com wss://usefirefly.com https://usefirefly.com * *.cloudflare.com https://www.calcxml.com/ *.dcu.org *.omtrdc.net *.demdex.net *.bazaarvoice.com wss://chat.usefirefly.com https://www.google-analytics.com https://www.dcuinsurance.com http://digitalfederalcreditunion.sc.omtrdc.net https://digitalfederalcreditunion.sc.omtrdc.net https://www.dcu.org/ https://static.ads-twitter.com/; img-src 'self' *.com *.yahoo.com http://t.co/ dsum.casalemedia.com su.addthis.com s.thebrighttag.com image2.pubmatic.com ads.scorecardresearch.com t.mookie1.com x.bidswitch.net usermatch.krxd.net match.sharethrough.com cm.g.doubleclick.net ads.yahoo.com pixel.advertising.com insight.adsrvr.org www.facebook.com usassets.chat.pega.com firefly-chat-production.s3.amazonaws.com *.bazaarvoice.com https://www.dcu.org https://www.google.co.in https://www.google.com *.timevaluecalculators.com *.everesttech.net *.demdex.net *.omtrdc.net *.googleapis.com *.gstatic.com *.112.2o7.net https://stats.g.doubleclick.net https://www.calcxml.com/ www.google-analytics.com *.doubleclick.net/ https://bcbolt446c5271-a.akamaihd.net/ https://players.brightcove.net/ https://www.dcu.org/ data:; style-src 'self' 'unsafe-inline' *.cloudflare.com https://usuatassets.cobrowse.pega.com https://usassets.cobrowse.pega.com https://usefirefly.com https://dcu-mkt-stage1.campaign.adobe.com https://dcu.campaign.adobe.com https://www.calcxml.com/ https://tagmanager.google.com usassets.chat.pega.com *.timevaluecalculators.com https://fonts.googleapis.com/ *.googleapis.com *.bazaarvoice.com https://match.adsrvr.org https://match.prod.bidr.io https://dcu-dev-65.adobecqms.net/ https://dcu-qa-65.adobecqms.net/ https://dcu-stage-65.adobecqms.net/ https://stage.dcu.org/ *.dcu.org https://dculocator.wave2.io/ https://www.dcu.org/; font-src 'self' https://fonts.gstatic.com/ fonts.gstatic.com https://www.dcu.org/ data:; frame-src 'self' https://player.vimeo.com/ *.quantummetric.com https://dcu.secure.nonprofitsoapbox.com https://americasaves.org/ https://app.loanspq.com/ https://dcu.mortgagewebcenter.com/ https://apps.rps.ascensus.com/ https://forms.fivision.com/ *.doubleclick.net *.culookup.com *.dcu.org *.demdex.net https://dcu.demdex.net *.locatorsearch.com *.bazaarvoice.com https://www.fmsi-lts.com/DIG_WS https://fmsi-lts.com/ *.adobecqms.net http://cookies.onetrust.mgr.consensu.org/ stage.dcu.org https://stage.dcu.org/ https://dcu-stage-65.adobecqms.net/ http://dcu-stage-65.adobecqms.net/ https://dcu-dev-65.adobecqms.net/ https://dcu-qa-65.adobecqms.net/ https://dcu-stage.adobecqms.net/ *.dcu.org https://dcu-mkt-stage1.campaign.adobe.com https://dcu.campaign.adobe.com https://js-staging.poshdevelopment.com/ https://js.poshdevelopment.com https://api.poshdevelopment.com https://staging.poshdevelopment.com *.youtube.com https://dculocator.wave2.io/ https://www.dcu.org/ https://pixel.sitescout.com/ https://memchat.dcu-online.org/ *.qualtrics.com
content-disposition: inline
x-cache: Miss from cloudfront
via: 1.1 dbfaae0db03f11cf713bbcbdb25be4a2.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: qnKvhlsGfq0-i3CaMt6-NyXs5W35x_zmcrXhywxezw46oIcFXBwDRg==
cf-cache-status: MISS
expires: Sun, 04 Feb 2024 09:05:05 GMT
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 79423e15e953b529-OSL
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 6dbec22b5869d37d7f5f0344513d01ba
eb892238319aa3c490e0d40a237bb74ba4866c10
1a206663985db251a361952ccdc1c62b5c89a2ecdd82497590bf1bef86d30e46
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4854
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 09:05:06 GMT
Last-Modified: Sat, 04 Feb 2023 07:44:12 GMT
Server: ECS (ska/F6FC)
X-Cache: HIT
Content-Length: 471
assets.adobedtm.com/c710ed4af822/9928f11b8b77/1fdcb61dcc7c/RCffb6d76976b14e35abd0072e19121a28-source.min.js
23.38.200.237200 OK 419 B URL HTTP/2 assets.adobedtm.com/c710ed4af822/9928f11b8b77/1fdcb61dcc7c/RCffb6d76976b14e35abd0072e19121a28-source.min.js
IP 23.38.200.237:0
File type ASCII text, with very long lines (474)
Hash 87900c55d05f20125513ace9be1923a2
112605b7627d3221165c39d2742a94a00c5cc2da
8a340af02876f8340ef2f6a92c32d121069f04eac33420b2a51e0581fe259865
GET /c710ed4af822/9928f11b8b77/1fdcb61dcc7c/RCffb6d76976b14e35abd0072e19121a28-source.min.js HTTP/1.1
Host: assets.adobedtm.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dcutest.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
content-type: application/x-javascript
etag: "048c95de6cbcd6f598c868bcd5dafd53:1675236858.488417"
last-modified: Wed, 01 Feb 2023 07:34:18 GMT
server: AkamaiNetStorage
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=3600
expires: Sat, 04 Feb 2023 10:05:06 GMT
date: Sat, 04 Feb 2023 09:05:06 GMT
content-length: 419
access-control-allow-origin: https://dcutest.com
timing-allow-origin: *
X-Firefox-Spdy: h2
assets.adobedtm.com/c710ed4af822/9928f11b8b77/1fdcb61dcc7c/RC8a0b5db257b8486ba509924115edeba1-source.min.js
23.38.200.237200 OK 372 B URL HTTP/2 assets.adobedtm.com/c710ed4af822/9928f11b8b77/1fdcb61dcc7c/RC8a0b5db257b8486ba509924115edeba1-source.min.js
IP 23.38.200.237:0
File type ASCII text, with very long lines (522)
Hash 156990a62d4cb026dc5ac09aaa7becdb
55ad39d1ace615c69505eecec2441479d337ac5f
19c6a4bac6838c38ac9395f933e4483661e514140ee417f83b292e372d67698d
GET /c710ed4af822/9928f11b8b77/1fdcb61dcc7c/RC8a0b5db257b8486ba509924115edeba1-source.min.js HTTP/1.1
Host: assets.adobedtm.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dcutest.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
content-type: application/x-javascript
etag: "048c95de6cbcd6f598c868bcd5dafd53:1675236858.488417"
last-modified: Wed, 01 Feb 2023 07:34:18 GMT
server: AkamaiNetStorage
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=3600
expires: Sat, 04 Feb 2023 10:05:06 GMT
date: Sat, 04 Feb 2023 09:05:06 GMT
content-length: 372
access-control-allow-origin: https://dcutest.com
timing-allow-origin: *
X-Firefox-Spdy: h2
assets.adobedtm.com/c710ed4af822/9928f11b8b77/1fdcb61dcc7c/RCfc37ee40613b41a7a590eda8a7aecdb2-source.min.js
23.38.200.237200 OK 111 kB URL HTTP/2 assets.adobedtm.com/c710ed4af822/9928f11b8b77/1fdcb61dcc7c/RCfc37ee40613b41a7a590eda8a7aecdb2-source.min.js
IP 23.38.200.237:0
File type ASCII text, with very long lines (64471)
Size 111 kB (110686 bytes)
Hash ee21e6ee2d616c1e21a406e3312931c5
f051930223b4a1d32bfbfb7db4efdfea4c72e517
4d70fd87ec35a827d8aced32b92daf9c688501d02c537d83817236e3ef37b55f
GET /c710ed4af822/9928f11b8b77/1fdcb61dcc7c/RCfc37ee40613b41a7a590eda8a7aecdb2-source.min.js HTTP/1.1
Host: assets.adobedtm.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dcutest.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
content-type: application/x-javascript
etag: "048c95de6cbcd6f598c868bcd5dafd53:1675236858.488417"
last-modified: Wed, 01 Feb 2023 07:34:18 GMT
server: AkamaiNetStorage
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=3600
expires: Sat, 04 Feb 2023 10:05:06 GMT
date: Sat, 04 Feb 2023 09:05:06 GMT
content-length: 232
access-control-allow-origin: https://dcutest.com
timing-allow-origin: *
X-Firefox-Spdy: h2
siteintercept.qualtrics.com/WRSiteInterceptEngine/Targeting.php?Q_ZoneID=ZN_55evi07XtYFAX2u&Q_CLIENTVERSION=1.84.0&Q_CLIENTTYPE=webAdobeLaunch
104.17.208.240200 OK 678 B URL HTTP/2 siteintercept.qualtrics.com/WRSiteInterceptEngine/Targeting.php?Q_ZoneID=ZN_55evi07XtYFAX2u&Q_CLIENTVERSION=1.84.0&Q_CLIENTTYPE=webAdobeLaunch
IP 104.17.208.240:0
File type JSON data\012- , ASCII text, with very long lines (1329), with no line terminators
Hash e263a2b67d307f06f4b7b48da354cfa4
c2f9dd3ce2a0abddbdb6dd50331e7a5a87d1a95a
2e2f8ad49e9d4c21d6dffe90013fda1bc25391aa05562fe9c74a7b144812cae7
POST /WRSiteInterceptEngine/Targeting.php?Q_ZoneID=ZN_55evi07XtYFAX2u&Q_CLIENTVERSION=1.84.0&Q_CLIENTTYPE=webAdobeLaunch HTTP/1.1
Host: siteintercept.qualtrics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/x-www-form-urlencoded
Content-Length: 98
Origin: https://dcutest.com
Connection: keep-alive
Referer: https://dcutest.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 09:05:06 GMT
content-type: application/json
cf-ray: 79423e1d8be60b06-OSL
access-control-allow-origin: https://dcutest.com
cache-control: no-store, no-cache, must-revalidate, max-age=0
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: DYNAMIC
access-control-allow-credentials: true
permissions-policy: camera=(), geolocation=(), microphone=()
referrer-policy: strict-origin-when-cross-origin
timing-allow-origin: *
trace-id: 83bca5ca37295da0
x-content-type-options: nosniff
vary: Accept-Encoding
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
www.facebook.com/tr/?id=629895564074653&ev=Microdata&dl=https%3A%2F%2Fdcutest.com%2F&rl=&if=false&ts=1675501541262&cd[DataLayer]=%5B%5D&cd[Meta]=%7B%22title%22%3A%22Digital%20Federal%20Credit%20Union%20%7C%20Personal%20%26%20Business%20Banking%22%2C%22meta%3Adescription%22%3A%22DCU%20-%20Digital%20Federal%20Credit%20Union%20-%20Come%20to%20us%20for%20a%20better%20deal%20on%20free%20checking%2C%20auto%20loans%2C%20mortgages%2C%20credit%20cards%2C%20savings%2C%20business%20banking%2C%20and%20more.%20%22%7D&cd[OpenGraph]=%7B%22og%3Atype%22%3A%22website%22%2C%22og%3Atitle%22%3A%22Digital%20Federal%20Credit%20Union%20%7C%20Personal%20%26%20Business%20Banking%22%2C%22og%3Adescription%22%3A%22DCU%20-%20Digital%20Federal%20Credit%20Union%20-%20Come%20to%20us%20for%20a%20better%20deal%20on%20free%20checking%2C%20auto%20loans%2C%20mortgages%2C%20credit%20cards%2C%20savings%2C%20business%20banking%2C%20and%20more.%20%22%2C%22og%3Aimage%22%3A%22%20https%3A%2F%2Fstage.dcu.org%2Fcontent%2Fdam%2Fdcu%2Fglobal%2Fgeneric%2Fimages%2Fpage-hero%2FDCU_IMG_GLO_Branch-Details_C10A_3233_1324_Desktop_PageHero_01.jpg%22%2C%22og%3Aurl%22%3A%22https%3A%2F%2Fstage.dcu.org%2F%22%7D&cd[Schema.org]=%5B%5D&cd[JSON-LD]=%5B%5D&sw=1280&sh=1024&v=2.9.95&r=stable&a=adobe_launch&ec=1&o=29&fbp=fb.1.1675501540755.1067833931&it=1675501539883&coo=false&es=automatic&tm=3&exp=b2&rqm=GET
157.240.205.35200 OK 0 B URL HTTP/2 www.facebook.com/tr/?id=629895564074653&ev=Microdata&dl=https%3A%2F%2Fdcutest.com%2F&rl=&if=false&ts=1675501541262&cd[DataLayer]=%5B%5D&cd[Meta]=%7B%22title%22%3A%22Digital%20Federal%20Credit%20Union%20%7C%20Personal%20%26%20Business%20Banking%22%2C%22meta%3Adescription%22%3A%22DCU%20-%20Digital%20Federal%20Credit%20Union%20-%20Come%20to%20us%20for%20a%20better%20deal%20on%20free%20checking%2C%20auto%20loans%2C%20mortgages%2C%20credit%20cards%2C%20savings%2C%20business%20banking%2C%20and%20more.%20%22%7D&cd[OpenGraph]=%7B%22og%3Atype%22%3A%22website%22%2C%22og%3Atitle%22%3A%22Digital%20Federal%20Credit%20Union%20%7C%20Personal%20%26%20Business%20Banking%22%2C%22og%3Adescription%22%3A%22DCU%20-%20Digital%20Federal%20Credit%20Union%20-%20Come%20to%20us%20for%20a%20better%20deal%20on%20free%20checking%2C%20auto%20loans%2C%20mortgages%2C%20credit%20cards%2C%20savings%2C%20business%20banking%2C%20and%20more.%20%22%2C%22og%3Aimage%22%3A%22%20https%3A%2F%2Fstage.dcu.org%2Fcontent%2Fdam%2Fdcu%2Fglobal%2Fgeneric%2Fimages%2Fpage-hero%2FDCU_IMG_GLO_Branch-Details_C10A_3233_1324_Desktop_PageHero_01.jpg%22%2C%22og%3Aurl%22%3A%22https%3A%2F%2Fstage.dcu.org%2F%22%7D&cd[Schema.org]=%5B%5D&cd[JSON-LD]=%5B%5D&sw=1280&sh=1024&v=2.9.95&r=stable&a=adobe_launch&ec=1&o=29&fbp=fb.1.1675501540755.1067833931&it=1675501539883&coo=false&es=automatic&tm=3&exp=b2&rqm=GET
IP 157.240.205.35:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /tr/?id=629895564074653&ev=Microdata&dl=https%3A%2F%2Fdcutest.com%2F&rl=&if=false&ts=1675501541262&cd[DataLayer]=%5B%5D&cd[Meta]=%7B%22title%22%3A%22Digital%20Federal%20Credit%20Union%20%7C%20Personal%20%26%20Business%20Banking%22%2C%22meta%3Adescription%22%3A%22DCU%20-%20Digital%20Federal%20Credit%20Union%20-%20Come%20to%20us%20for%20a%20better%20deal%20on%20free%20checking%2C%20auto%20loans%2C%20mortgages%2C%20credit%20cards%2C%20savings%2C%20business%20banking%2C%20and%20more.%20%22%7D&cd[OpenGraph]=%7B%22og%3Atype%22%3A%22website%22%2C%22og%3Atitle%22%3A%22Digital%20Federal%20Credit%20Union%20%7C%20Personal%20%26%20Business%20Banking%22%2C%22og%3Adescription%22%3A%22DCU%20-%20Digital%20Federal%20Credit%20Union%20-%20Come%20to%20us%20for%20a%20better%20deal%20on%20free%20checking%2C%20auto%20loans%2C%20mortgages%2C%20credit%20cards%2C%20savings%2C%20business%20banking%2C%20and%20more.%20%22%2C%22og%3Aimage%22%3A%22%20https%3A%2F%2Fstage.dcu.org%2Fcontent%2Fdam%2Fdcu%2Fglobal%2Fgeneric%2Fimages%2Fpage-hero%2FDCU_IMG_GLO_Branch-Details_C10A_3233_1324_Desktop_PageHero_01.jpg%22%2C%22og%3Aurl%22%3A%22https%3A%2F%2Fstage.dcu.org%2F%22%7D&cd[Schema.org]=%5B%5D&cd[JSON-LD]=%5B%5D&sw=1280&sh=1024&v=2.9.95&r=stable&a=adobe_launch&ec=1&o=29&fbp=fb.1.1675501540755.1067833931&it=1675501539883&coo=false&es=automatic&tm=3&exp=b2&rqm=GET HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dcutest.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/plain
access-control-allow-origin:
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400
date: Sat, 04 Feb 2023 09:05:06 GMT
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 313 B IP 93.184.220.29:0
Hash 4837206a8cfc4c9dc2b6c4248f4bbc95
005dd2dadbf30e938e51b94bd3889c30c7a4c4bf
40631588446256234c01c152fa9a5937c832322e9903b4c8674fa1bb892e6ffc
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1050
Cache-Control: max-age=138678
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 09:05:06 GMT
Etag: "63dd965e-139"
Expires: Sun, 05 Feb 2023 23:36:24 GMT
Last-Modified: Fri, 03 Feb 2023 23:18:54 GMT
Server: ECS (ska/F6FC)
X-Cache: HIT
Content-Length: 313
digitalfederalcreditunion.sc.omtrdc.net/b/ss/dfcumaindev/10/JS-2.22.4-LCXS/s93221061051201?AQB=1&ndh=1&pf=1&callback=s_c_il[1].doPostbacks&et=1&t=4%2F1%2F2023%209%3A5%3A40%206%200&d.&nsid=0&jsonv=1&.d&vid=71058198921410280650863828544901609096&mid=71058198921410280650863828544901609096&aamlh=6&ce=UTF-8&pageName=.%3Aen%3Ahomepage&g=https%3A%2F%2Fdcutest.com%2F&c.&getTimeBetweenEvents=3.0&.c&cc=USD&server=dcutest.com&events=event1&aamb=6G1ynYcLPuiQxYZrsz_pkqfLG9yMXBpb2zX5dvJdYQJzPXImdj0y&c9=D%3Dv9&v9=https%3A%2F%2Fdcutest.com%2F&v10=D%3Dc10&v11=.%3Aen%3Ahomepage&v12=year%3D2023%20%7C%20month%3DFebruary%20%7C%20date%3D4%20%7C%20day%3DSaturday%20%7C%20time%3D9%3A05%20AM&v13=New&c14=39&v14=D%3Dc14&c15=New%20Visitor&c16=1&c17=first%20hit%20of%20visit&v20=DCU%20Main%20Web&v41=71058198921410280650863828544901609096&v55=Firefox&v56=105.0&v57=Mozilla%2F5.0%20%28Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0%29%20Gecko%2F20100101%20Firefox%2F105.0&s=1280x1024&c=24&j=1.6&v=N&k=Y&bw=1280&bh=939&mcorgid=46051B125B89FACB0A495DD6%40AdobeOrg&AQE=1
15.236.125.10200 OK 2.3 kB URL HTTP/2 digitalfederalcreditunion.sc.omtrdc.net/b/ss/dfcumaindev/10/JS-2.22.4-LCXS/s93221061051201?AQB=1&ndh=1&pf=1&callback=s_c_il[1].doPostbacks&et=1&t=4%2F1%2F2023%209%3A5%3A40%206%200&d.&nsid=0&jsonv=1&.d&vid=71058198921410280650863828544901609096&mid=71058198921410280650863828544901609096&aamlh=6&ce=UTF-8&pageName=.%3Aen%3Ahomepage&g=https%3A%2F%2Fdcutest.com%2F&c.&getTimeBetweenEvents=3.0&.c&cc=USD&server=dcutest.com&events=event1&aamb=6G1ynYcLPuiQxYZrsz_pkqfLG9yMXBpb2zX5dvJdYQJzPXImdj0y&c9=D%3Dv9&v9=https%3A%2F%2Fdcutest.com%2F&v10=D%3Dc10&v11=.%3Aen%3Ahomepage&v12=year%3D2023%20%7C%20month%3DFebruary%20%7C%20date%3D4%20%7C%20day%3DSaturday%20%7C%20time%3D9%3A05%20AM&v13=New&c14=39&v14=D%3Dc14&c15=New%20Visitor&c16=1&c17=first%20hit%20of%20visit&v20=DCU%20Main%20Web&v41=71058198921410280650863828544901609096&v55=Firefox&v56=105.0&v57=Mozilla%2F5.0%20%28Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0%29%20Gecko%2F20100101%20Firefox%2F105.0&s=1280x1024&c=24&j=1.6&v=N&k=Y&bw=1280&bh=939&mcorgid=46051B125B89FACB0A495DD6%40AdobeOrg&AQE=1
IP 15.236.125.10:0
File type ASCII text, with very long lines (2281)
Hash 9dd921991747ec006874a6b7a50be883
c54c2894f1e8831f644110969fb4d8df10ea21ac
268ed756dde5ae71c51f4bf98e07ccfe251f9e81cbcbcf1eb41fce819abe73e6
GET /b/ss/dfcumaindev/10/JS-2.22.4-LCXS/s93221061051201?AQB=1&ndh=1&pf=1&callback=s_c_il[1].doPostbacks&et=1&t=4%2F1%2F2023%209%3A5%3A40%206%200&d.&nsid=0&jsonv=1&.d&vid=71058198921410280650863828544901609096&mid=71058198921410280650863828544901609096&aamlh=6&ce=UTF-8&pageName=.%3Aen%3Ahomepage&g=https%3A%2F%2Fdcutest.com%2F&c.&getTimeBetweenEvents=3.0&.c&cc=USD&server=dcutest.com&events=event1&aamb=6G1ynYcLPuiQxYZrsz_pkqfLG9yMXBpb2zX5dvJdYQJzPXImdj0y&c9=D%3Dv9&v9=https%3A%2F%2Fdcutest.com%2F&v10=D%3Dc10&v11=.%3Aen%3Ahomepage&v12=year%3D2023%20%7C%20month%3DFebruary%20%7C%20date%3D4%20%7C%20day%3DSaturday%20%7C%20time%3D9%3A05%20AM&v13=New&c14=39&v14=D%3Dc14&c15=New%20Visitor&c16=1&c17=first%20hit%20of%20visit&v20=DCU%20Main%20Web&v41=71058198921410280650863828544901609096&v55=Firefox&v56=105.0&v57=Mozilla%2F5.0%20%28Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0%29%20Gecko%2F20100101%20Firefox%2F105.0&s=1280x1024&c=24&j=1.6&v=N&k=Y&bw=1280&bh=939&mcorgid=46051B125B89FACB0A495DD6%40AdobeOrg&AQE=1 HTTP/1.1
Host: digitalfederalcreditunion.sc.omtrdc.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dcutest.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
date: Sat, 04 Feb 2023 09:05:06 GMT
expires: Fri, 03 Feb 2023 09:05:06 GMT
last-modified: Sun, 05 Feb 2023 09:05:06 GMT
pragma: no-cache
p3p: CP="This is not a P3P policy"
server: jag
etag: 3598112087175593984-4619643727104462754
vary: *
dcs: dcs-prod-irl1-1-v045-03c381005.edge-irl1.demdex.com 5 ms
x-aam-tid: pWHqZqcBTmM=
content-type: application/x-javascript;charset=utf-8
content-length: 2282
cache-control: no-cache, no-store, max-age=0, no-transform, private
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 8a57a3311e7907b4dd0d69a6d3118f18
445b3ce04bc249ddc6b4354a53c50b9631513c89
64ff1c6906705439bd3a676d85f1ebf468a604901fdd41d998710d08d39e3726
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4652
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 09:05:10 GMT
Last-Modified: Sat, 04 Feb 2023 07:47:38 GMT
Server: ECS (ska/F6FC)
X-Cache: HIT
Content-Length: 279
geolocation.onetrust.com/cookieconsentpub/v1/geo/location
104.18.27.85200 OK 0 B URL HTTP/2 geolocation.onetrust.com/cookieconsentpub/v1/geo/location
IP 104.18.27.85:0
GET /cookieconsentpub/v1/geo/location HTTP/1.1
Host: geolocation.onetrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://dcutest.com
Connection: keep-alive
Referer: https://dcutest.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 04 Feb 2023 09:05:04 GMT
content-type: application/json
access-control-allow-origin: *
access-control-allow-headers: Content-Type
access-control-allow-methods: GET, OPTIONS
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 79423e14bcaf1bfe-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
dcutest.com/etc.clientlibs/dcu/clientlibs/clientlib-base.min.js
104.17.91.69200 OK 0 B URL HTTP/2 dcutest.com/etc.clientlibs/dcu/clientlibs/clientlib-base.min.js
IP 104.17.91.69:0
Analyzer Verdict Alert openphish Digital Federal Credit Union
fortinet Phishing
GET /etc.clientlibs/dcu/clientlibs/clientlib-base.min.js HTTP/1.1
Host: dcutest.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dcutest.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 09:05:03 GMT
content-type: application/javascript;charset=utf-8
x-dispatcher: dispatcher1useast1
x-vhost: publish
x-content-type-options: nosniff
last-modified: Tue, 08 Nov 2022 07:55:53 GMT
etag: "555c0-5ecf0de833440-gzip"
content-encoding: gzip
cache-control: public, max-age=14400
strict-transport-security: max-age=31536000; includeSubDomains
content-security-policy: default-src *.quantummetric.com 'unsafe-inline' 'unsafe-eval' 'self' blob:; worker-src blob:; child-src blob:; object-src 'self'; media-src 'self' blob: usassets.chat.pega.com firefly-chat-production.s3.amazonaws.com https://www.dcu.org https://manifest.prod.boltdns.net/ https://dcu-dev-65.adobecqms.net/ https://players.brightcove.net/ https://vjs.zencdn.net/ https://bcbolt446c5271-a.akamaihd.net/; script-src 'self' 'unsafe-inline' 'unsafe-eval' blob: https://usuat.cobrowse.pega.com/ https://usuatassets.cobrowse.pega.com https://player.vimeo.com/ https://memchat.dcu-online.org/ https://geolocation.onetrust.com https://www.google.com https://cdn.cookielaw.org https://js-staging.poshdevelopment.com/ https://js.poshdevelopment.com https://api.poshdevelopment.com https://staging.poshdevelopment.com *.quantummetric.com http://dfcumanagedservicesstageenvironment.112.2o7.net https://analytics.twitter.com/ *.ads-twitter.com https://us.cobrowse.pega.com https://usassets.cobrowse.pega.com *.steelhousemedia.com https://dcu-mkt-stage1.campaign.adobe.com https://dcu.campaign.adobe.com https://www.calcxml.com/ *.cloudflare.com https://googleads.g.doubleclick.net https://chat.usefirefly.com https://usefirefly.com https://connect.facebook.net www.google-analytics.com assets.adobedtm.com *.timevaluecalculators.com *.bazaarvoice.com *.iesnare.com https://ajax.googleapis.com/ *.googleapis.com *.dcuinsurance.com tagmanager.google.com www.googletagmanager.com https://www.google-analytics.com https://firefly-chat-production.s3.amazonaws.com http://www.googleadservices.com https://connect.facebook.net http://digitalfederalcreditunion.sc.omtrdc.net https://digitalfederalcreditunion.sc.omtrdc.net https://dcu-dev-65.adobecqms.net/ https://dcu-qa-65.adobecqms.net/ https://dcu-stage-65.adobecqms.net/ https://stage.dcu.org/ *.dcu.org https://dculocator.wave2.io/ https://snap.licdn.com https://bat.bing.com https://up.pixel.ad https://ssl.google-analytics.com/ https://www.dcu.org/ https://static.ads-twitter.com/ https://players.brightcove.net/ https://vjs.zencdn.net/ https://bcbolt446c5271-a.akamaihd.net/ https://widget.use1.chat.pega.digital/ *.qualtrics.com; connect-src 'self' *.ads-twitter.com *.quantummetric.com https://dcu-mkt-stage1.campaign.adobe.com https://dcu.campaign.adobe.com wss://usefirefly.com https://usefirefly.com * *.cloudflare.com https://www.calcxml.com/ *.dcu.org *.omtrdc.net *.demdex.net *.bazaarvoice.com wss://chat.usefirefly.com https://www.google-analytics.com https://www.dcuinsurance.com http://digitalfederalcreditunion.sc.omtrdc.net https://digitalfederalcreditunion.sc.omtrdc.net https://www.dcu.org/ https://static.ads-twitter.com/; img-src 'self' *.com *.yahoo.com http://t.co/ dsum.casalemedia.com su.addthis.com s.thebrighttag.com image2.pubmatic.com ads.scorecardresearch.com t.mookie1.com x.bidswitch.net usermatch.krxd.net match.sharethrough.com cm.g.doubleclick.net ads.yahoo.com pixel.advertising.com insight.adsrvr.org www.facebook.com usassets.chat.pega.com firefly-chat-production.s3.amazonaws.com *.bazaarvoice.com https://www.dcu.org https://www.google.co.in https://www.google.com *.timevaluecalculators.com *.everesttech.net *.demdex.net *.omtrdc.net *.googleapis.com *.gstatic.com *.112.2o7.net https://stats.g.doubleclick.net https://www.calcxml.com/ www.google-analytics.com *.doubleclick.net/ https://bcbolt446c5271-a.akamaihd.net/ https://players.brightcove.net/ https://www.dcu.org/ data:; style-src 'self' 'unsafe-inline' *.cloudflare.com https://usuatassets.cobrowse.pega.com https://usassets.cobrowse.pega.com https://usefirefly.com https://dcu-mkt-stage1.campaign.adobe.com https://dcu.campaign.adobe.com https://www.calcxml.com/ https://tagmanager.google.com usassets.chat.pega.com *.timevaluecalculators.com https://fonts.googleapis.com/ *.googleapis.com *.bazaarvoice.com https://match.adsrvr.org https://match.prod.bidr.io https://dcu-dev-65.adobecqms.net/ https://dcu-qa-65.adobecqms.net/ https://dcu-stage-65.adobecqms.net/ https://stage.dcu.org/ *.dcu.org https://dculocator.wave2.io/ https://www.dcu.org/; font-src 'self' https://fonts.gstatic.com/ fonts.gstatic.com https://www.dcu.org/ data:; frame-src 'self' https://player.vimeo.com/ *.quantummetric.com https://dcu.secure.nonprofitsoapbox.com https://americasaves.org/ https://app.loanspq.com/ https://dcu.mortgagewebcenter.com/ https://apps.rps.ascensus.com/ https://forms.fivision.com/ *.doubleclick.net *.culookup.com *.dcu.org *.demdex.net https://dcu.demdex.net *.locatorsearch.com *.bazaarvoice.com https://www.fmsi-lts.com/DIG_WS https://fmsi-lts.com/ *.adobecqms.net http://cookies.onetrust.mgr.consensu.org/ stage.dcu.org https://stage.dcu.org/ https://dcu-stage-65.adobecqms.net/ http://dcu-stage-65.adobecqms.net/ https://dcu-dev-65.adobecqms.net/ https://dcu-qa-65.adobecqms.net/ https://dcu-stage.adobecqms.net/ *.dcu.org https://dcu-mkt-stage1.campaign.adobe.com https://dcu.campaign.adobe.com https://js-staging.poshdevelopment.com/ https://js.poshdevelopment.com https://api.poshdevelopment.com https://staging.poshdevelopment.com *.youtube.com https://dculocator.wave2.io/ https://www.dcu.org/ https://pixel.sitescout.com/ https://memchat.dcu-online.org/ *.qualtrics.com
vary: Accept-Encoding
x-cache: Miss from cloudfront
via: 1.1 814e8c24454087e83cd261a6cf477166.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 955l1nkTr2MXIgxy3rVcXlsfv5wnDFAtZW6xWtVNYFbAv80omQJw1g==
cf-cache-status: MISS
expires: Sat, 04 Feb 2023 13:05:03 GMT
server: cloudflare
cf-ray: 79423e08fac2b529-OSL
X-Firefox-Spdy: h2
siteintercept.qualtrics.com/dxjsmodule/13.5e21898857f4389ff4e3.chunk.js?Q_CLIENTVERSION=1.84.0&Q_CLIENTTYPE=web&Q_BRANDID=dcutest.com
104.17.208.240200 OK 0 B URL HTTP/2 siteintercept.qualtrics.com/dxjsmodule/13.5e21898857f4389ff4e3.chunk.js?Q_CLIENTVERSION=1.84.0&Q_CLIENTTYPE=web&Q_BRANDID=dcutest.com
IP 104.17.208.240:0
GET /dxjsmodule/13.5e21898857f4389ff4e3.chunk.js?Q_CLIENTVERSION=1.84.0&Q_CLIENTTYPE=web&Q_BRANDID=dcutest.com HTTP/1.1
Host: siteintercept.qualtrics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dcutest.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 09:05:06 GMT
content-type: application/javascript
cf-ray: 79423e1d2b900b06-OSL
access-control-allow-origin: *
age: 290813
cache-control: public, max-age=604800, s-maxage=604800
etag: W/"fd58-18604fe92b0"
last-modified: Mon, 30 Jan 2023 23:23:58 GMT
strict-transport-security: max-age=31536000; includeSubDomains; preload
vary: Accept-Encoding
cf-cache-status: HIT
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
cf-bgj: minify
cf-polished: origSize=64856
edge-control: max-age=604800
permissions-policy: camera=(), geolocation=(), microphone=()
referrer-policy: strict-origin-when-cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
dcutest.com/
104.17.91.69200 OK 0 B IP 104.17.91.69:0
Analyzer Verdict Alert openphish Digital Federal Credit Union
fortinet Phishing
GET / HTTP/1.1
Host: dcutest.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
date: Sat, 04 Feb 2023 09:05:02 GMT
content-type: text/html;charset=utf-8
x-dispatcher: dispatcher1useast1
x-vhost: publish
x-content-type-options: nosniff
last-modified: Fri, 03 Feb 2023 06:58:54 GMT
cache-control: max-age=900, public
strict-transport-security: max-age=31536000; includeSubDomains
content-security-policy: default-src *.quantummetric.com 'unsafe-inline' 'unsafe-eval' 'self' blob:; worker-src blob:; child-src blob:; object-src 'self'; media-src 'self' blob: usassets.chat.pega.com firefly-chat-production.s3.amazonaws.com https://www.dcu.org https://manifest.prod.boltdns.net/ https://dcu-dev-65.adobecqms.net/ https://players.brightcove.net/ https://vjs.zencdn.net/ https://bcbolt446c5271-a.akamaihd.net/; script-src 'self' 'unsafe-inline' 'unsafe-eval' blob: https://usuat.cobrowse.pega.com/ https://usuatassets.cobrowse.pega.com https://player.vimeo.com/ https://memchat.dcu-online.org/ https://geolocation.onetrust.com https://www.google.com https://cdn.cookielaw.org https://js-staging.poshdevelopment.com/ https://js.poshdevelopment.com https://api.poshdevelopment.com https://staging.poshdevelopment.com *.quantummetric.com http://dfcumanagedservicesstageenvironment.112.2o7.net https://analytics.twitter.com/ *.ads-twitter.com https://us.cobrowse.pega.com https://usassets.cobrowse.pega.com *.steelhousemedia.com https://dcu-mkt-stage1.campaign.adobe.com https://dcu.campaign.adobe.com https://www.calcxml.com/ *.cloudflare.com https://googleads.g.doubleclick.net https://chat.usefirefly.com https://usefirefly.com https://connect.facebook.net www.google-analytics.com assets.adobedtm.com *.timevaluecalculators.com *.bazaarvoice.com *.iesnare.com https://ajax.googleapis.com/ *.googleapis.com *.dcuinsurance.com tagmanager.google.com www.googletagmanager.com https://www.google-analytics.com https://firefly-chat-production.s3.amazonaws.com http://www.googleadservices.com https://connect.facebook.net http://digitalfederalcreditunion.sc.omtrdc.net https://digitalfederalcreditunion.sc.omtrdc.net https://dcu-dev-65.adobecqms.net/ https://dcu-qa-65.adobecqms.net/ https://dcu-stage-65.adobecqms.net/ https://stage.dcu.org/ *.dcu.org https://dculocator.wave2.io/ https://snap.licdn.com https://bat.bing.com https://up.pixel.ad https://ssl.google-analytics.com/ https://www.dcu.org/ https://static.ads-twitter.com/ https://players.brightcove.net/ https://vjs.zencdn.net/ https://bcbolt446c5271-a.akamaihd.net/ https://widget.use1.chat.pega.digital/ *.qualtrics.com; connect-src 'self' *.ads-twitter.com *.quantummetric.com https://dcu-mkt-stage1.campaign.adobe.com https://dcu.campaign.adobe.com wss://usefirefly.com https://usefirefly.com * *.cloudflare.com https://www.calcxml.com/ *.dcu.org *.omtrdc.net *.demdex.net *.bazaarvoice.com wss://chat.usefirefly.com https://www.google-analytics.com https://www.dcuinsurance.com http://digitalfederalcreditunion.sc.omtrdc.net https://digitalfederalcreditunion.sc.omtrdc.net https://www.dcu.org/ https://static.ads-twitter.com/; img-src 'self' *.com *.yahoo.com http://t.co/ dsum.casalemedia.com su.addthis.com s.thebrighttag.com image2.pubmatic.com ads.scorecardresearch.com t.mookie1.com x.bidswitch.net usermatch.krxd.net match.sharethrough.com cm.g.doubleclick.net ads.yahoo.com pixel.advertising.com insight.adsrvr.org www.facebook.com usassets.chat.pega.com firefly-chat-production.s3.amazonaws.com *.bazaarvoice.com https://www.dcu.org https://www.google.co.in https://www.google.com *.timevaluecalculators.com *.everesttech.net *.demdex.net *.omtrdc.net *.googleapis.com *.gstatic.com *.112.2o7.net https://stats.g.doubleclick.net https://www.calcxml.com/ www.google-analytics.com *.doubleclick.net/ https://bcbolt446c5271-a.akamaihd.net/ https://players.brightcove.net/ https://www.dcu.org/ data:; style-src 'self' 'unsafe-inline' *.cloudflare.com https://usuatassets.cobrowse.pega.com https://usassets.cobrowse.pega.com https://usefirefly.com https://dcu-mkt-stage1.campaign.adobe.com https://dcu.campaign.adobe.com https://www.calcxml.com/ https://tagmanager.google.com usassets.chat.pega.com *.timevaluecalculators.com https://fonts.googleapis.com/ *.googleapis.com *.bazaarvoice.com https://match.adsrvr.org https://match.prod.bidr.io https://dcu-dev-65.adobecqms.net/ https://dcu-qa-65.adobecqms.net/ https://dcu-stage-65.adobecqms.net/ https://stage.dcu.org/ *.dcu.org https://dculocator.wave2.io/ https://www.dcu.org/; font-src 'self' https://fonts.gstatic.com/ fonts.gstatic.com https://www.dcu.org/ data:; frame-src 'self' https://player.vimeo.com/ *.quantummetric.com https://dcu.secure.nonprofitsoapbox.com https://americasaves.org/ https://app.loanspq.com/ https://dcu.mortgagewebcenter.com/ https://apps.rps.ascensus.com/ https://forms.fivision.com/ *.doubleclick.net *.culookup.com *.dcu.org *.demdex.net https://dcu.demdex.net *.locatorsearch.com *.bazaarvoice.com https://www.fmsi-lts.com/DIG_WS https://fmsi-lts.com/ *.adobecqms.net http://cookies.onetrust.mgr.consensu.org/ stage.dcu.org https://stage.dcu.org/ https://dcu-stage-65.adobecqms.net/ http://dcu-stage-65.adobecqms.net/ https://dcu-dev-65.adobecqms.net/ https://dcu-qa-65.adobecqms.net/ https://dcu-stage.adobecqms.net/ *.dcu.org https://dcu-mkt-stage1.campaign.adobe.com https://dcu.campaign.adobe.com https://js-staging.poshdevelopment.com/ https://js.poshdevelopment.com https://api.poshdevelopment.com https://staging.poshdevelopment.com *.youtube.com https://dculocator.wave2.io/ https://www.dcu.org/ https://pixel.sitescout.com/ https://memchat.dcu-online.org/ *.qualtrics.com
vary: Accept-Encoding
x-cache: Miss from cloudfront
via: 1.1 5de23153ac267c206221751e1cccb6e8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: -2IYPWRqIDXO50p8jdgwlyAK9hzTqkGdAidIRc_qtO3AqYd6ibNmLQ==
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 79423e044d10b529-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
zn55evi07xtyfax2u-dcu.siteintercept.qualtrics.com/WRSiteInterceptEngine/?Q_ZID=ZN_55evi07XtYFAX2u
104.17.208.240200 OK 0 B URL HTTP/2 zn55evi07xtyfax2u-dcu.siteintercept.qualtrics.com/WRSiteInterceptEngine/?Q_ZID=ZN_55evi07XtYFAX2u
IP 104.17.208.240:0
GET /WRSiteInterceptEngine/?Q_ZID=ZN_55evi07XtYFAX2u HTTP/1.1
Host: zn55evi07xtyfax2u-dcu.siteintercept.qualtrics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dcutest.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 04 Feb 2023 09:05:06 GMT
content-type: application/javascript; charset=utf-8
cf-ray: 79423e1ceb5c0b06-OSL
access-control-allow-origin: *
age: 77327
cache-control: public, max-age=3600, s-maxage=604800
etag: W/"2127-6ppLkB349I2FHsSEMMf3Bvcv5oI"
strict-transport-security: max-age=31536000; includeSubDomains; preload
vary: Accept-Encoding
cf-cache-status: HIT
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
cf-bgj: minify
cf-polished: origSize=8487
edge-control: max-age=604800
permissions-policy: camera=(), geolocation=(), microphone=()
referrer-policy: strict-origin-when-cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2