Windows Analysis Report
http://keywestlending.com

{
    "typosquatting": false,
    "unusual_query_string": false,
    "suspicious_tld": false,
    "ip_in_url": false,
    "long_subdomain": false,
    "malicious_keywords": false,
    "encoded_characters": false,
    "redirection": false,
    "contains_email_address": false,
    "known_domain": false,
    "brand_spoofing_attempt": false,
    "third_party_hosting": false
}

URL: http://keywestlending.com

{
    "risk_score": 6,
    "reasoning": "The script demonstrates moderate-risk behaviors, including external data transmission and aggressive DOM manipulation. While it appears to have a legitimate purpose related to handling iframe messages, the use of the `nitro-og-src` attribute and the ability to remove overlays raises some concerns. Further review may be necessary to determine the full extent of the script's functionality and potential risks."
}

(function(){var t={childList:false,attributes:true,subtree:false,attributeFilter:["src"],attributeOldValue:true};var e=null;var r=[];function n(t){let n=r.indexOf(t);if(n>-1){r.splice(n,1);e.disconnect();a()}t.src=t.getAttribute("nitro-og-src");t.parentNode.querySelector(".nitro-removable-overlay")?.remove()}function i(){if(!e){e=new MutationObserver(function(t,e){t.forEach(t=>{if(t.type=="attributes"&&t.attributeName=="src"){let r=t.target;let n=r.getAttribute("nitro-og-src");let i=r.src;if(i!=n&&t.oldValue!==null){e.disconnect();let o=i.replace(t.oldValue,"");if(i.indexOf("data:")===0&&["?","&"].indexOf(o.substr(0,1))>-1){if(n.indexOf("?")>-1){r.setAttribute("nitro-og-src",n+"&"+o.substr(1))}else{r.setAttribute("nitro-og-src",n+"?"+o.substr(1))}}r.src=t.oldValue;a()}}})})}return e}function o(e){i().observe(e,t)}function a(){r.forEach(o)}window.addEventListener("message",function(t){if(t.data.action&&t.data.action==="playBtnClicked"){var e=document.getElementsByTagName("iframe");for(var r=0;r<e.length;r++){if(t.source===e[r].contentWindow){n(e[r])}}}});document.addEventListener("DOMContentLoaded",function(){document.querySelectorAll("iframe[nitro-og-src]").forEach(t=>{r.push(t)});a()})})();

{
    "risk_score": 2,
    "reasoning": "The provided JavaScript snippet appears to be a simple device detection and DOM manipulation script, which is a common practice for responsive web design. It checks the user agent string for mobile device identifiers and updates the HTML element's class list accordingly. This behavior is generally benign and does not exhibit any high-risk indicators."
}

(function(){var a=false;var e=document.documentElement.classList;var i=navigator.userAgent.toLowerCase();var n=["android","iphone","ipad"];var r=n.length;var o;var d=null;for(var t=0;t<r;t++){o=n[t];if(i.indexOf(o)>-1)d=o;if(e.contains(o)){a=true;e.remove(o)}}if(a&&d){e.add(d);if(d=="iphone"||d=="ipad"){e.add("ios")}}})();

{
    "risk_score": 3,
    "reasoning": "The provided JavaScript snippet appears to be a browser compatibility check and redirect for Internet Explorer and Trident-based browsers. It checks the user agent string and, if the user is on an affected browser, it appends a 'nonitro' parameter to the current URL. This behavior is likely a legitimate feature or workaround for a specific web application, and does not demonstrate any high-risk indicators. The script is considered low-risk with a score of 3."
}

if(navigator.userAgent.match(/MSIE|Internet Explorer/i)||navigator.userAgent.match(/Trident\/7\..*?rv:11/i)){var e=document.location.href;if(!e.match(/[?&]nonitro/)){if(e.indexOf("?")==-1){if(e.indexOf("#")==-1){document.location.href=e+"?nonitro=1"}else{document.location.href=e.replace("#","?nonitro=1#")}}else{if(e.indexOf("#")==-1){document.location.href=e+"&nonitro=1"}else{document.location.href=e.replace("#","&nonitro=1#")}}}}

{
    "risk_score": 4,
    "reasoning": "The script appears to be related to the NitroPack service, which is a web optimization and performance tool. While it sends some data to a third-party domain, the behavior is consistent with typical analytics and telemetry functionality. The script does not exhibit any high-risk indicators like dynamic code execution or data exfiltration. However, the use of the `sendBeacon` API and the interaction with an external domain warrant further review to ensure the script's behavior is transparent and legitimate."
}

(()=>{window.NitroPack=window.NitroPack||{coreVersion:"9429066",isCounted:!1};let e=document.createElement("script");if(e.src="https://nitroscripts.com/ByAaHzKDrfYwKXVWZvndYbCvpgDAAInZ",e.async=!0,e.id="nitro-script",document.head.appendChild(e),!window.NitroPack.isCounted){window.NitroPack.isCounted=!0;let t=()=>{navigator.sendBeacon("https://to.getnitropack.com/p",JSON.stringify({siteId:"ByAaHzKDrfYwKXVWZvndYbCvpgDAAInZ",url:window.location.href,isOptimized:!!window.IS_NITROPACK,coreVersion:"9429066",missReason:window.NPTelemetryMetadata?.missReason||"",pageType:window.NPTelemetryMetadata?.pageType||"",isEligibleForOptimization:!!window.NPTelemetryMetadata?.isEligibleForOptimization}))};(()=>{let e=()=>new Promise(e=>{"complete"===document.readyState?e():window.addEventListener("load",e)}),i=()=>new Promise(e=>{document.prerendering?document.addEventListener("prerenderingchange",e,{once:!0}):e()}),a=async()=>{await i(),await e(),t()};a()})(),window.addEventListener("pageshow",e=>{if(e.persisted){let i=document.prerendering||self.performance?.getEntriesByType?.("navigation")[0]?.activationStart>0;"visible"!==document.visibilityState||i||t()}})}})();

{
    "risk_score": 2,
    "reasoning": "The provided JavaScript snippet appears to be a polyfill for the CSS preload feature, which is a legitimate and common practice to improve web performance. The script does not exhibit any high-risk behaviors, such as dynamic code execution, data exfiltration, or redirects to malicious domains. The script's purpose is to ensure that CSS resources are loaded efficiently, which is a common and expected functionality for web pages. While the script uses some legacy APIs like `XDomainRequest`, these pose only minor risks and are not inherently malicious. Overall, this script is likely benign and can be considered low risk."
}

(function(e){"use strict";if(!e.loadCSS){e.loadCSS=function(){}}var t=loadCSS.relpreload={};t.support=function(){var t;try{t=e.document.createElement("link").relList.supports("preload")}catch(e){t=false}return function(){return t}}();t.bindMediaToggle=function(e){var t=e.media||"all";function a(){e.media=t}if(e.addEventListener){e.addEventListener("load",a)}else if(e.attachEvent){e.attachEvent("onload",a)}setTimeout(function(){e.rel="stylesheet";e.media="only x"});setTimeout(a,3e3)};t.poly=function(){if(t.support()){return}var a=e.document.getElementsByTagName("link");for(var n=0;n<a.length;n++){var o=a[n];if(o.rel==="preload"&&o.getAttribute("as")==="style"&&!o.getAttribute("data-loadcss")){o.setAttribute("data-loadcss",true);t.bindMediaToggle(o)}}};if(!t.support()){t.poly();var a=e.setInterval(t.poly,500);if(e.addEventListener){e.addEventListener("load",function(){t.poly();e.clearInterval(a)})}else if(e.attachEvent){e.attachEvent("onload",function(){t.poly();e.clearInterval(a)})}}if(typeof exports!=="undefined"){exports.loadCSS=loadCSS}else{e.loadCSS=loadCSS}})(typeof global!=="undefined"?global:this);

{
    "risk_score": 4,
    "reasoning": "The provided JavaScript snippet appears to be a part of the Nitro web optimization framework. While it includes some potentially risky behaviors, such as dynamic code execution and data transmission, the overall context suggests it is likely a legitimate script with a focus on performance optimization and event handling. The script does not exhibit clear signs of malicious intent, but it could benefit from further review to ensure proper implementation and data handling practices."
}

(()=>{if(window.NPRL!=undefined)return;(function(e){var t=e.prototype;t.after||(t.after=function(){var e,t=arguments,n=t.length,r=0,i=this,o=i.parentNode,a=Node,c=String,u=document;if(o!==null){while(r<n){(e=t[r])instanceof a?(i=i.nextSibling)!==null?o.insertBefore(e,i):o.appendChild(e):o.appendChild(u.createTextNode(c(e)));++r}}})})(Element);var e,t;e=t=function(){var t=false;var r=window.URL||window.webkitURL;var i=true;var o=true;var a=2;var c=null;var u=null;var d=window.nitroGtmExcludes!=undefined;var s=d?JSON.parse(atob(window.nitroGtmExcludes)).map(e=>new RegExp(e)):[];var l;var f;var m=null;var v=null;var p=null;var g={touch:["touchmove","touchend"],default:["mousemove","click","keydown","wheel"]};var h=true;var E=[];var y=false;var w=[];var b=0;var S=0;var N=false;var L=0;var R=null;var T=false;var O=false;var A=false;var C=[];var P=[];var I=[];var M=[];var k=false;var x={};var j=new Map;var _="noModule"in HTMLScriptElement.prototype;var B=requestAnimationFrame||mozRequestAnimationFrame||webkitRequestAnimationFrame||msRequestAnimationFrame;function q(e,t){if(!x[e]){x[e]=[]}x[e].push(t)}function D(e,t){if(x[e]){var n=0,r=x[e];for(var n=0;n<r.length;n++){r[n].call(this,t)}}}function H(){(function(e,t){var r=null;var i=function(e){r(e)};var o=null;var a={};var c=null;var u=null;var d=0;e.addEventListener(t,function(r){if(["load","DOMContentLoaded"].indexOf(t)!=-1){if(u){K(function(){e.triggerNitroEvent(t)})}c=true}else if(t=="readystatechange"){d++;n.ogReadyState=d==1?"interactive":"complete";if(u&&u>=d){n.documentReadyState=n.ogReadyState;K(function(){e.triggerNitroEvent(t)})}}});e.addEventListener(t+"Nitro",function(e){if(["load","DOMContentLoaded"].indexOf(t)!=-1){if(!c){e.preventDefault();e.stopImmediatePropagation()}else{}u=true}else if(t=="readystatechange"){u=n.documentReadyState=="interactive"?1:2;if(d<u){e.preventDefault();e.stopImmediatePropagation()}}});switch(t){case"load":o="onload";break;case"readystatechange":o="onreadystatechange";break;case"pageshow":o="onpageshow";break;default:o=null;break}if(o){Object.defineProperty(e,o,{get:function(){return r},set:function(n){if(typeof n!=="function"){r=null;e.removeEventListener(t+"Nitro",i)}else{if(!r){e.addEventListener(t+"Nitro",i)}r=n}}})}Object.defineProperty(e,"addEventListener"+t,{value:function(r){if(r!=t||!n.startedScriptLoading||document.currentScript&&document.currentScript.hasAttribute("nitro-exclude")){}else{arguments[0]+="Nitro"}e.ogAddEventListener.apply(e,arguments);a[arguments[1]]=arguments[0]}});Object.defineProperty(e,"removeEventListener"+t,{value:function(t){var n=a[arguments[1]];arguments[0]=n;e.ogRemoveEventListener.apply(e,arguments)}});Object.defineProperty(e,"triggerNitroEvent"+t,{value:function(t,n){n=n||e;var r=new Event(t+"Nitro",{bubbles:true});r.isNitroPack=true;Object.defineProperty(r,"type",{get:function(){return t},set:function(){}});Object.defineProperty(r,"target",{get:function(){return n},set:function(){}});e.dispatchEvent(r)}});if(typeof e.triggerNitroEvent==="undefined"){(function(){var t=e.addEventListener;var n=e.removeEventListener;Object.defineProperty(e,"ogAddEventListener",{value:t});Object.defineProperty(e,"ogRemoveEventListener",{value:n});Object.defineProperty(e,"addEventListener",{value:function(n){var r="addEventListener"+n;if(typeof e[r]!=="undefined"){e[r].apply(e,arguments)}else{t.apply(e,arguments)}},writable:true});Object.defineProperty(e,"removeEventListener",{value:function(t){var r="removeEventListener"+t;if(typeof e[r]!=="undefined"){e[r].apply(e,arguments)}else{n.apply(e,arguments)}}});Object.defineProperty(e,"triggerNitroEvent",{value:function(t,n){var r="triggerNitroEvent"+t;if(typeof e[r]!=="undefined"){e[r].apply(e,arguments)}}})})()}}).apply(null,arguments)}H(window,"load");H(window,"pageshow");H(window,"DOMContentLoaded");H(document,"DOMContentLoaded");H(document,"readystatechange");try{var U=new Worker(r.createObjectURL(new Blob([document.getElementById("nitro-web-worker").textContent],{type:"text/javas

{
    "risk_score": 2,
    "reasoning": "The provided JavaScript snippet appears to be a simple scroll position tracking utility, which is a common and legitimate practice. It uses the browser's `sessionStorage` to store the user's scroll position on the current page, and it retrieves this position when the page is loaded. This behavior is typical for features like 'scroll to last position' functionality. The script does not exhibit any high-risk indicators, such as dynamic code execution, data exfiltration, or suspicious redirects. The only low-risk indicator is the use of the legacy `XDomainRequest` API, which poses a minor risk but is not inherently malicious. Overall, this script seems to be a benign utility with no clear signs of malicious intent."
}

var NPSH,NitroScrollHelper;NPSH=NitroScrollHelper=function(){let e=null;const o=window.sessionStorage.getItem("nitroScrollPos");function t(){let e=JSON.parse(window.sessionStorage.getItem("nitroScrollPos"))||{};if(typeof e!=="object"){e={}}e[document.URL]=window.scrollY;window.sessionStorage.setItem("nitroScrollPos",JSON.stringify(e))}window.addEventListener("scroll",function(){if(e!==null){clearTimeout(e)}e=setTimeout(t,200)},{passive:true});let r={};r.getScrollPos=()=>{if(!o){return 0}const e=JSON.parse(o);return e[document.URL]||0};r.isScrolled=()=>{return r.getScrollPos()>document.documentElement.clientHeight*.5};return r}();

{
    "risk_score": 2,
    "reasoning": "The provided JavaScript snippet appears to be a part of the 'lazysizes' library, which is a popular and widely-used lazy-loading library for images and iframes. The code does not contain any high-risk indicators such as dynamic code execution, data exfiltration, or redirects to malicious domains. The behaviors observed are primarily related to lazy-loading functionality, which is a common and legitimate practice. While the code uses some legacy APIs like `XDomainRequest`, these pose minor risks and are not inherently malicious. Overall, this script is likely benign and used for legitimate purposes."
}

(function(e,t){if(typeof module=="object"&&module.exports){module.exports=lazySizes}else{e.lazySizes=t(e,e.document,Date)}})(window,function e(e,t,r){"use strict";if(!e.IntersectionObserver||!t.getElementsByClassName||!e.MutationObserver){return}var i,n;var a=t.documentElement;var s=e.HTMLPictureElement;var o="addEventListener";var l="getAttribute";var c=e[o].bind(e);var u=e.setTimeout;var f=e.requestAnimationFrame||u;var d=e.requestIdleCallback||u;var v=/^picture$/i;var m=["load","error","lazyincluded","_lazyloaded"];var g=Array.prototype.forEach;var p=function(e,t){return e.classList.contains(t)};var z=function(e,t){e.classList.add(t)};var h=function(e,t){e.classList.remove(t)};var y=function(e,t,r){var i=r?o:"removeEventListener";if(r){y(e,t)}m.forEach(function(r){e[i](r,t)})};var b=function(e,r,n,a,s){var o=t.createEvent("CustomEvent");if(!n){n={}}n.instance=i;o.initCustomEvent(r,!a,!s,n);e.dispatchEvent(o);return o};var C=function(t,r){var i;if(!s&&(i=e.picturefill||n.pf)){i({reevaluate:true,elements:[t]})}else if(r&&r.src){t.src=r.src}};var w=function(e,t){return(getComputedStyle(e,null)||{})[t]};var E=function(e,t,r){r=r||e.offsetWidth;while(r<n.minSize&&t&&!e._lazysizesWidth){r=t.offsetWidth;t=t.parentNode}return r};var A=function(){var e,r;var i=[];var n=function(){var t;e=true;r=false;while(i.length){t=i.shift();t[0].apply(t[1],t[2])}e=false};return function(a){if(e){a.apply(this,arguments)}else{i.push([a,this,arguments]);if(!r){r=true;(t.hidden?u:f)(n)}}}}();var x=function(e,t){return t?function(){A(e)}:function(){var t=this;var r=arguments;A(function(){e.apply(t,r)})}};var L=function(e){var t;var i=0;var a=n.throttleDelay;var s=n.ricTimeout;var o=function(){t=false;i=r.now();e()};var l=d&&s>49?function(){d(o,{timeout:s});if(s!==n.ricTimeout){s=n.ricTimeout}}:x(function(){u(o)},true);return function(e){var n;if(e=e===true){s=33}if(t){return}t=true;n=a-(r.now()-i);if(n<0){n=0}if(e||n<9){l()}else{u(l,n)}}};var T=function(e){var t,i;var n=99;var a=function(){t=null;e()};var s=function(){var e=r.now()-i;if(e<n){u(s,n-e)}else{(d||a)(a)}};return function(){i=r.now();if(!t){t=u(s,n)}}};var _=function(){var i,s;var o,f,d,m;var E;var T=new Set;var _=new Map;var M=/^img$/i;var R=/^iframe$/i;var W="onscroll"in e&&!/glebot/.test(navigator.userAgent);var O=0;var S=0;var F=function(e){O--;if(S){S--}if(e&&e.target){y(e.target,F)}if(!e||O<0||!e.target){O=0;S=0}if(G.length&&O-S<1&&O<3){u(function(){while(G.length&&O-S<1&&O<4){J({target:G.shift()})}})}};var I=function(e){if(E==null){E=w(t.body,"visibility")=="hidden"}return E||!(w(e.parentNode,"visibility")=="hidden"&&w(e,"visibility")=="hidden")};var P=function(e){z(e.target,n.loadedClass);h(e.target,n.loadingClass);h(e.target,n.lazyClass);y(e.target,D)};var B=x(P);var D=function(e){B({target:e.target})};var $=function(e,t){try{e.contentWindow.location.replace(t)}catch(r){e.src=t}};var k=function(e){var t;var r=e[l](n.srcsetAttr);if(t=n.customMedia[e[l]("data-media")||e[l]("media")]){e.setAttribute("media",t)}if(r){e.setAttribute("srcset",r)}};var q=x(function(e,t,r,i,a){var s,o,c,f,m,p;if(!(m=b(e,"lazybeforeunveil",t)).defaultPrevented){if(i){if(r){z(e,n.autosizesClass)}else{e.setAttribute("sizes",i)}}o=e[l](n.srcsetAttr);s=e[l](n.srcAttr);if(a){c=e.parentNode;f=c&&v.test(c.nodeName||"")}p=t.firesLoad||"src"in e&&(o||s||f);m={target:e};if(p){y(e,F,true);clearTimeout(d);d=u(F,2500);z(e,n.loadingClass);y(e,D,true)}if(f){g.call(c.getElementsByTagName("source"),k)}if(o){e.setAttribute("srcset",o)}else if(s&&!f){if(R.test(e.nodeName)){$(e,s)}else{e.src=s}}if(o||f){C(e,{src:s})}}A(function(){if(e._lazyRace){delete e._lazyRace}if(!p||e.complete){if(p){F(m)}else{O--}P(m)}})});var H=function(e){if(n.isPaused)return;var t,r;var a=M.test(e.nodeName);var o=a&&(e[l](n.sizesAttr)||e[l]("sizes"));var c=o=="auto";if(c&&a&&(e.src||e.srcset)&&!e.complete&&!p(e,n.errorClass)){return}t=b(e,"lazyunveilread").detail;if(c){N.updateElem(e,true,e.offsetWidth)}O++;if((r=G.indexOf(e))!=-1){G.splice(r,1)}_.delete

{
    "risk_score": 2,
    "reasoning": "The provided JavaScript snippet appears to be a configuration for the 'lazysizes' library, which is a popular lazy-loading library for images and other media. The script sets various configuration options for the library, such as the class name for lazy-loaded elements, the attribute names for lazy-loaded source and srcset, and some performance-related settings. This behavior is common for lazy-loading implementations and does not indicate any high-risk or malicious activities. The script also includes some event listeners to handle the loading of styles and the overall page load, which is a typical setup for a lazy-loading solution. Overall, this script seems to be a legitimate and benign implementation of a common web performance optimization technique."
}

window.nitro_lazySizesConfig=window.nitro_lazySizesConfig||{};window.nitro_lazySizesConfig.lazyClass="nitro-lazy";nitro_lazySizesConfig.srcAttr="nitro-lazy-src";nitro_lazySizesConfig.srcsetAttr="nitro-lazy-srcset";nitro_lazySizesConfig.expand=10;nitro_lazySizesConfig.expFactor=1;nitro_lazySizesConfig.hFac=1;nitro_lazySizesConfig.loadMode=1;nitro_lazySizesConfig.ricTimeout=50;nitro_lazySizesConfig.loadHidden=true;(function(){var t=null;var e=false;var a=false;var i=window.scrollY;var r=Date.now();function n(){window.removeEventListener("scroll",n);window.nitro_lazySizesConfig.expand=300}function o(t){let e=t.timeStamp-r;let a=Math.abs(i-window.scrollY)/e;let n=Math.max(a*200,300);r=t.timeStamp;i=window.scrollY;window.nitro_lazySizesConfig.expand=n}window.addEventListener("scroll",o,{passive:true});window.addEventListener("NitroStylesLoaded",function(){e=true});window.addEventListener("load",function(){a=true});document.addEventListener("lazybeforeunveil",function(t){var e=false;var a=t.target.getAttribute("nitro-lazy-bg");var i=t.target.getAttribute("data-nitro-fragment-id");if(a){let i=t.target.style.backgroundImage.replace("data:image/gif;base64,R0lGODlhAQABAIABAAAAAP///yH5BAEAAAEALAAAAAABAAEAAAICTAEAOw==",a.replace(/\(/g,"%28").replace(/\)/g,"%29"));if(i===t.target.style.backgroundImage){i="url("+a.replace(/\(/g,"%28").replace(/\)/g,"%29")+")"}let r=t.target.style.backgroundImage;let n=["initial","inherit"].indexOf(r.toLowerCase())===-1;if(r&&n){i=r+", "+i}t.target.style.backgroundImage=i;e=true}if(t.target.tagName=="VIDEO"){if(t.target.hasAttribute("nitro-lazy-poster")){t.target.setAttribute("poster",t.target.getAttribute("nitro-lazy-poster"))}else if(!t.target.hasAttribute("poster")){t.target.setAttribute("preload","metadata")}e=true}if(i){if(!window.loadNitroFragment(i,"lazy")){t.preventDefault();return false}}if(t.target.classList.contains("av-animated-generic")){t.target.classList.add("avia_start_animation","avia_start_delayed_animation");e=true}if(!e){var r=t.target.tagName.toLowerCase();if(r!=="img"&&r!=="iframe"){t.target.querySelectorAll("img[nitro-l

{
    "risk_score": 4,
    "reasoning": "The provided JavaScript snippet exhibits some moderate-risk behaviors, but also has some contextual factors that suggest it may be a legitimate script. The key points are:

- It uses the `PerformanceObserver` API to monitor the Largest Contentful Paint (LCP) metric, which is a common performance monitoring practice. This is a low-risk behavior.
- It sets up event listeners for `touchstart` and `mouseover` on the document, which could be used for user interaction tracking. This is a moderate-risk behavior.
- It logs various events and data to an object called `NP_PPL`, which could be used for analytics or telemetry purposes. This is a moderate-risk behavior.
- It checks for a specific cookie value (`9d63262f59cd9b3378f01392c`) to determine if the logging should be enabled. This suggests the script may have a legitimate purpose.
- It includes some checks to ensure the URLs being prefetched are on the same domain and not excluded, which helps mitigate potential risks.

Overall, the script appears to be focused on performance monitoring and user interaction tracking, which are common practices. However, the lack of transparency around the data being collected and the use of the `NP_PPL` object warrant further review. A risk score of 4 is assigned due to the moderate-risk behaviors, but the script may be legitimate with proper context."
}

(function(){const e=document.createElement("link");if(!(e.relList&&e.relList.supports&&e.relList.supports("prefetch"))){return}let t=document.cookie.includes("9d63262f59cd9b3378f01392c");let n={initNP_PPL:function(){if(window.NP_PPL!==undefined)return;window.NP_PPL={prefetches:[],lcpEvents:[],other:[]}},logPrefetch:function(e,n,r){let o=JSON.parse(window.sessionStorage.getItem("nitro_prefetched_urls"));if(o===null)o={};if(o[e]===undefined){o[e]={type:n,initiator:r};window.sessionStorage.setItem("nitro_prefetched_urls",JSON.stringify(o))}if(!t)return;window.NP_PPL.prefetches.push({url:e,type:n,initiator:r,timestamp:performance.now()})},logLcpEvent:function(e,n=null){if(!t)return;window.NP_PPL.lcpEvents.push({message:e,data:n,timestamp:performance.now()})},logOther:function(e,n=null){if(!t)return;window.NP_PPL.other.push({message:e,data:n,timestamp:performance.now()})}};if(t){n.initNP_PPL()}let r=0;const o=300;let l=".keywestlending.com";let c=new RegExp(l+"$");function a(){return performance.now()-r>o}function u(){let e;let t=performance.now();const r={capture:true,passive:true};document.addEventListener("touchstart",o,r);document.addEventListener("mouseover",l,r);function o(e){t=performance.now();const n=e.target.closest("a");if(!n||!s(n)){return}g(n.href,"TOUCH")}function l(r){n.logOther("mouseoverListener() called",r);if(performance.now()-t<1111){return}const o=r.target.closest("a");if(!o||!s(o)){return}o.addEventListener("mouseout",c,{passive:true});e=setTimeout(function(){n.logOther("mouseoverTimer CALLBACK called",r);g(o.href,"HOVER");e=undefined},85)}function c(t){if(t.relatedTarget&&t.target.closest("a")==t.relatedTarget.closest("a")){return}if(e){clearTimeout(e);e=undefined}}}function f(){if(!PerformanceObserver.supportedEntryTypes.includes("largest-contentful-paint")){n.logLcpEvent("PerformanceObserver does not support LCP events in this browser.");return}let e=new PerformanceObserver(e=>{n.logLcpEvent("LCP_DETECTED",e.getEntries().at(-1).element);C=e.getEntries().at(-1).element});let t=function(e){k=window.requestIdleCallback(O);window.removeEventListener("load",t)};I.forEach(e=>{window.addEventListener(e,P,{once:true})});e.observe({type:"largest-contentful-paint",buffered:true});window.addEventListener("load",t)}function s(e){if(!e){n.logOther("Link Not Prefetchable: empty link element.",e);return false}if(!e.href){n.logOther("Link Not Prefetchable: empty href attribute.",e);return false}let t=e.href;let r=null;try{r=new URL(t)}catch(t){n.logOther("Link Not Prefetchable: "+t,e);return false}let o="."+r.hostname.replace("www.","");if(!["http:","https:"].includes(e.protocol)){n.logOther("Link Not Prefetchable: missing protocol in the URL.",e);return false}if(e.protocol=="http:"&&location.protocol=="https:"){n.logOther("Link Not Prefetchable: URL is HTTP but the current page is HTTPS.",e);return false}if(e.getAttribute("href").charAt(0)=="#"||e.hash&&e.pathname+e.search==location.pathname+location.search){n.logOther("Link Not Prefetchable: URL is the current location but with a hash.",e);return false}if(c.exec(o)===null){n.logOther("Link Not Prefetchable: Different domain.",e);return false}for(i=0;i<x.length;i++){if(t.match(x[i])!==null){n.logOther("Link Not Prefetchable: Excluded URL "+t+".",{link:e,regex:x[i]});return false}}return true}function p(){let e=navigator.connection;if(!e){return false}if(e.saveData){n.logOther("Data Saving Mode detected.");return true}return false}function d(){if(M!==null){return M}M=p();return M}if(!window.requestIdleCallback){window.requestIdleCallback=function(e,t){var t=t||{};var n=1;var r=t.timeout||n;var o=performance.now();return setTimeout(function(){e({get didTimeout(){return t.timeout?false:performance.now()-o-n>r},timeRemaining:function(){return Math.max(0,n+(performance.now()-o))}})},n)}}if(!window.cancelIdleCallback){window.cancelIdleCallback=function(e){clearTimeout(e)}}let h=function(e,t){n.logLcpEvent("MUTATION_DETECTED",e);clearTimeout(R);R=setTimeout(T,500,e)};let m=function(

{
  "contains_trigger_text": true,
  "trigger_text": "FASTER, FAIR & MORE FLEXIBLE MORTGAGE LENDING NEAR YOU",
  "prominent_button_name": "APPLY NOW",
  "text_input_field_labels": [
    "Loan Purpose",
    "Select Services",
    "How will this property be used?",
    "Estimated Credit Score"
  ],
  "pdf_icon_visible": false,
  "has_visible_captcha": false,
  "has_urgent_text": false,
  "has_visible_qrcode": false,
  "contains_chinese_text": false,
  "contains_fake_security_alerts": false
}

{
    "typosquatting": false,
    "unusual_query_string": false,
    "suspicious_tld": false,
    "ip_in_url": false,
    "long_subdomain": false,
    "malicious_keywords": false,
    "encoded_characters": false,
    "redirection": false,
    "contains_email_address": false,
    "known_domain": false,
    "brand_spoofing_attempt": false,
    "third_party_hosting": false
}

URL: https://keywestlending.com

{
  "contains_trigger_text": true,
  "trigger_text": "FASTER, FAIR & MORE FLEXIBLE MORTGAGE LENDING NEAR YOU",
  "prominent_button_name": "APPLY NOW",
  "text_input_field_labels": [
    "Loan Purpose",
    "Select Services",
    "How will this property be used?",
    "Estimated Credit Score"
  ],
  "pdf_icon_visible": false,
  "has_visible_captcha": false,
  "has_urgent_text": false,
  "has_visible_qrcode": false,
  "contains_chinese_text": false,
  "contains_fake_security_alerts": false
}

{
  "contains_trigger_text": false,
  "trigger_text": "unknown",
  "prominent_button_name": "unknown",
  "text_input_field_labels": "unknown",
  "pdf_icon_visible": false,
  "has_visible_captcha": true,
  "has_urgent_text": false,
  "has_visible_qrcode": false,
  "contains_chinese_text": false,
  "contains_fake_security_alerts": false
}

{
  "contains_trigger_text": false,
  "trigger_text": "unknown",
  "prominent_button_name": "unknown",
  "text_input_field_labels": "unknown",
  "pdf_icon_visible": false,
  "has_visible_captcha": true,
  "has_urgent_text": false,
  "has_visible_qrcode": false,
  "contains_chinese_text": false,
  "contains_fake_security_alerts": false
}

{
"contains_trigger_text": true,
"trigger_text": "Verification Steps",
"prominent_button_name": "VERIFY",
"text_input_field_labels": "unknown",
"pdf_icon_visible": false,
"has_visible_captcha": true,
"has_urgent_text": false,
"has_visible_qrcode": false,
"contains_chinese_text": false,
"contains_fake_security_alerts": false
}

{
  "brands": [
    "Keywest Lending"
  ]
}

{
  "brands": [
    "Keywest Lending"
  ]
}

{
  "brands": "unknown"
}

{
  "brands": "unknown"
}

{
  "brands": "unknown"
}