ocsp.entrust.net/
1.6 kB IP
Hash 72c01364c7d90aae4d929e6580f2cbce
3de11f987ba38811703f13a223960ef2bebdb36a
a5b094eacde78ecdf903423eefae42b9954c22ce4df5a8fa7fa9651783aaee39
POST / HTTP/1.1
Host: ocsp.entrust.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
ETag: "A5B094EACDE78ECDF903423EEFAE42B9954C22CE4DF5A8FA7FA9651783AAEE39"
Last-Modified: Thu, 11 Jan 2024 17:00:00 UTC
Content-Length: 1588
Cache-Control: public, no-transform, must-revalidate, max-age=3545
Expires: Thu, 11 Jan 2024 20:06:16 GMT
Date: Thu, 11 Jan 2024 19:07:11 GMT
Connection: keep-alive
www.bankofamerica.com/deeplink/redirect.go?target=digitalwallet&screen=CardSettings:Home&version=7.7.0
301 Moved Permanently 0 B URL User Request GET HTTP/1.0 www.bankofamerica.com/deeplink/redirect.go?target=digitalwallet&screen=CardSettings:Home&version=7.7.0
IP
Certificate IssuerEntrust, Inc.
Subjectwww.bankofamerica.com
Fingerprint50:47:47:EC:9F:C7:6B:E7:04:60:67:5F:48:63:8F:EA:7A:F5:AF:26
ValidityMon, 31 Jul 2023 17:25:16 GMT - Thu, 29 Aug 2024 17:25:15 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /deeplink/redirect.go?target=digitalwallet&screen=CardSettings:Home&version=7.7.0 HTTP/1.1
Host: www.bankofamerica.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.0 301 Moved Permanently
Location: https://www.bankofamerica.com/myaccounts/public/brain/redirect.go?target=digitalwallet&screen=CardSettings:Home&version=7.7.0
Connection: Keep-Alive
Content-Length: 0
Strict-Transport-Security: max-age=31536000; includeSubDomains
Server: Oops
Content-Security-Policy: script-src 'self' *.bac-assets.com cdn.cookielaw.org *.livelook.com *.livelook.net *.tiqcdn.com *.bankofamerica.com *.glance.net *.glancecdn.net *.myglance.net s3.amazonaws.com *.cobrowse.oraclecloud.com *.oraclecloud.com www.google-analytics.com *.convertro.com idsync.rlcdn.com *.coremetrics.com *.brightcove.net *.brightcove.com maps.googleapis.com api.boldchat.com anrdoezrs.net cj.dotomi.com cj.com cj.mplxtms.com emjcd.com mczbf.com sjwoe.com secure-cdn.mplxtms.com cdn.mplxtms.com 'unsafe-inline' 'unsafe-eval' blob:; style-src 'self' https: data: blob: *.bac-assets.com *.bankofamerica.com cdn.cookielaw.org *.livelook.com *.livelook.net *.glancecdn.net *.cobrowse.oraclecloud.com *.oraclecloud.com www.google-analytics.com *.convertro.com idsync.rlcdn.com 'unsafe-inline'; worker-src 'self' blob:;
X-Serviced-By: tpkj3cL12gsDA3CUtuOejQ==--nkYZX3cswql0yslYD9rN0Q==
www.bankofamerica.com/myaccounts/public/brain/redirect.go?target=digitalwallet&screen=CardSettings:Home&version=7.7.0
302 Moved Temporarily 0 B URL User Request GET HTTP/1.0 www.bankofamerica.com/myaccounts/public/brain/redirect.go?target=digitalwallet&screen=CardSettings:Home&version=7.7.0
IP
Certificate IssuerEntrust, Inc.
Subjectwww.bankofamerica.com
Fingerprint50:47:47:EC:9F:C7:6B:E7:04:60:67:5F:48:63:8F:EA:7A:F5:AF:26
ValidityMon, 31 Jul 2023 17:25:16 GMT - Thu, 29 Aug 2024 17:25:15 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /myaccounts/public/brain/redirect.go?target=digitalwallet&screen=CardSettings:Home&version=7.7.0 HTTP/1.1
Host: www.bankofamerica.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.0 302 Moved Temporarily
Location: https://secure.bankofamerica.com/myaccounts/public/brain/redirect.go?target=digitalwallet&screen=CardSettings:Home&version=7.7.0&channel=desktop
Connection: Keep-Alive
Content-Length: 0
Strict-Transport-Security: max-age=31536000; includeSubDomains
Server: Oops
Content-Security-Policy: script-src 'self' *.bac-assets.com cdn.cookielaw.org *.livelook.com *.livelook.net *.tiqcdn.com *.bankofamerica.com *.glance.net *.glancecdn.net *.myglance.net s3.amazonaws.com *.cobrowse.oraclecloud.com *.oraclecloud.com www.google-analytics.com *.convertro.com idsync.rlcdn.com *.coremetrics.com *.brightcove.net *.brightcove.com maps.googleapis.com api.boldchat.com anrdoezrs.net cj.dotomi.com cj.com cj.mplxtms.com emjcd.com mczbf.com sjwoe.com secure-cdn.mplxtms.com cdn.mplxtms.com 'unsafe-inline' 'unsafe-eval' blob:; style-src 'self' https: data: blob: *.bac-assets.com *.bankofamerica.com cdn.cookielaw.org *.livelook.com *.livelook.net *.glancecdn.net *.cobrowse.oraclecloud.com *.oraclecloud.com www.google-analytics.com *.convertro.com idsync.rlcdn.com 'unsafe-inline'; worker-src 'self' blob:;
X-Serviced-By: tpkj3cL12gsDA3CUtuOejQ==--nkYZX3cswql0yslYD9rN0Q==
ocsp.entrust.net/
1.6 kB IP
Hash 29f99c611b86670dfe8e680fd89a7a2e
e3bc0e138d88cded8e28901248a2a5130cc5a6ac
7877d094f89ace1c841d05df9078efd1e0134c8620cbd4a12a11398aae8015e1
POST / HTTP/1.1
Host: ocsp.entrust.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
ETag: "7877D094F89ACE1C841D05DF9078EFD1E0134C8620CBD4A12A11398AAE8015E1"
Last-Modified: Thu, 11 Jan 2024 12:00:00 UTC
Content-Length: 1588
Cache-Control: public, no-transform, must-revalidate, max-age=3581
Expires: Thu, 11 Jan 2024 20:06:53 GMT
Date: Thu, 11 Jan 2024 19:07:12 GMT
Connection: keep-alive
secure.bankofamerica.com/myaccounts/public/brain/redirect.go?target=digitalwallet&screen=CardSettings:Home&version=7.7.0&channel=desktop
302 Found 0 B URL User Request GET HTTP/1.1 secure.bankofamerica.com/myaccounts/public/brain/redirect.go?target=digitalwallet&screen=CardSettings:Home&version=7.7.0&channel=desktop
IP
Certificate IssuerEntrust, Inc.
Subjectsecure.bankofamerica.com
FingerprintA4:4C:BF:E9:9E:F0:6C:B2:69:51:B7:A2:27:66:72:C3:18:8C:83:BA
ValidityTue, 02 May 2023 12:13:26 GMT - Sun, 02 Jun 2024 12:13:26 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /myaccounts/public/brain/redirect.go?target=digitalwallet&screen=CardSettings:Home&version=7.7.0&channel=desktop HTTP/1.1
Host: secure.bankofamerica.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302 Found
Date: Thu, 11 Jan 2024 19:07:12 GMT
Location: https://secure.bankofamerica.com/login/sign-in/signOnScreen.go?reason=digitalcardsettings&version=7.7.0&screen=CardSettings:Home&channel=desktop
Content-Length: 0
Expires: Thu, 01 Dec 1994 16:00:00 GMT
Cache-Control: no-cache="set-cookie, set-cookie2"
X-BOA-RequestID: ZaA8YEZK04HxerXuWCCq5gAAAeY
Keep-Alive: timeout=40, max=461
Connection: Keep-Alive
Content-Language: en-US
Set-Cookie: JS_PIPAD=0000uAl-vVqT6JInGrdEUAFvPcN:1e7bq9nv5; Path=/; Secure; HttpOnly
SPID=Q2S2; Path=/; Domain=.bankofamerica.com; samesite=None; Secure
SID=0012F376220065A03C60; Path=/; Domain=.bankofamerica.com; samesite=None; Secure
TS017f5af8=01964db1bd50ce7ad5db9e208d2d782bfb85e4aba553284cd9065e4b73b4f8ce7910d1d5d0c71f8dd7a1c6967c1714761919ab010e; Path=/; Domain=.secure.bankofamerica.com
Strict-Transport-Security: max-age=31536000; includeSubDomains
Content-Security-Policy: script-src 'self' boa-api.arkoselabs.com *.bac-assets.com cdn.cookielaw.org resources.digital-cloud.medallia.com *.livelook.com *.livelook.net *.tiqcdn.com *.bankofamerica.com *.baml.com *.bofa.com *.ml.com *.merrill.com *.merrilledge.com *.mymerrill.com *.ustrust.com *.glance.net *.glancecdn.net *.myglance.net s3.amazonaws.com *.cobrowse.oraclecloud.com *.oraclecloud.com www.google-analytics.com *.convertro.com idsync.rlcdn.com *.coremetrics.com *.brightcove.net *.brightcove.com maps.googleapis.com www.paypalobjects.com anrdoezrs.net cj.dotomi.com cj.com cj.mplxtms.com emjcd.com mczbf.com sjwoe.com secure-cdn.mplxtms.com cdn.mplxtms.com 'unsafe-inline' 'unsafe-eval' blob:; style-src 'self' https: data: blob: *.bac-assets.com *.bankofamerica.com cdn.cookielaw.org *.livelook.com *.livelook.net *.glancecdn.net *.cobrowse.oraclecloud.com *.oraclecloud.com www.google-analytics.com *.convertro.com idsync.rlcdn.com 'unsafe-inline'; worker-src 'self' blob:;
X-Serviced-By: QYUQE9kfh25oRggdt3sLFw==--REvC4UKxmNlf2WIz9rMPkA==
Server: Oops
secure.bankofamerica.com/login/sign-in/signOnScreen.go?reason=digitalcardsettings&version=7.7.0&screen=CardSettings:Home&channel=desktop
301 Moved Permanently 0 B URL User Request GET HTTP/1.0 secure.bankofamerica.com/login/sign-in/signOnScreen.go?reason=digitalcardsettings&version=7.7.0&screen=CardSettings:Home&channel=desktop
IP
Certificate IssuerEntrust, Inc.
Subjectsecure.bankofamerica.com
FingerprintA4:4C:BF:E9:9E:F0:6C:B2:69:51:B7:A2:27:66:72:C3:18:8C:83:BA
ValidityTue, 02 May 2023 12:13:26 GMT - Sun, 02 Jun 2024 12:13:26 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /login/sign-in/signOnScreen.go?reason=digitalcardsettings&version=7.7.0&screen=CardSettings:Home&channel=desktop HTTP/1.1
Host: secure.bankofamerica.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: JS_PIPAD=0000uAl-vVqT6JInGrdEUAFvPcN:1e7bq9nv5; SPID=Q2S2; SID=0012F376220065A03C60; TS017f5af8=01964db1bd50ce7ad5db9e208d2d782bfb85e4aba553284cd9065e4b73b4f8ce7910d1d5d0c71f8dd7a1c6967c1714761919ab010e
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.0 301 Moved Permanently
Location: https://secure.bankofamerica.com/login/sign-in/signOnV2Screen.go?reason=digitalcardsettings&version=7.7.0&screen=CardSettings:Home&channel=desktop
Connection: Keep-Alive
Content-Length: 0
Strict-Transport-Security: max-age=31536000; includeSubDomains
Server: Oops
Content-Security-Policy: script-src 'self' boa-api.arkoselabs.com *.bac-assets.com cdn.cookielaw.org resources.digital-cloud.medallia.com *.livelook.com *.livelook.net *.tiqcdn.com *.bankofamerica.com *.baml.com *.bofa.com *.ml.com *.merrill.com *.merrilledge.com *.mymerrill.com *.ustrust.com *.glance.net *.glancecdn.net *.myglance.net s3.amazonaws.com *.cobrowse.oraclecloud.com *.oraclecloud.com www.google-analytics.com *.convertro.com idsync.rlcdn.com *.coremetrics.com *.brightcove.net *.brightcove.com maps.googleapis.com www.paypalobjects.com anrdoezrs.net cj.dotomi.com cj.com cj.mplxtms.com emjcd.com mczbf.com sjwoe.com secure-cdn.mplxtms.com cdn.mplxtms.com 'unsafe-inline' 'unsafe-eval' blob:; style-src 'self' https: data: blob: *.bac-assets.com *.bankofamerica.com cdn.cookielaw.org *.livelook.com *.livelook.net *.glancecdn.net *.cobrowse.oraclecloud.com *.oraclecloud.com www.google-analytics.com *.convertro.com idsync.rlcdn.com 'unsafe-inline'; worker-src 'self' blob:;
X-Serviced-By: REvC4UKxmNlf2WIz9rMPkA==--GkpHXNNutI3wQy3pi9cM/A==
secure.bankofamerica.com/login/sign-in/signOnV2Screen.go?reason=digitalcardsettings&version=7.7.0&screen=CardSettings:Home&channel=desktop
200 OK 10 kB URL User Request GET HTTP/1.1 secure.bankofamerica.com/login/sign-in/signOnV2Screen.go?reason=digitalcardsettings&version=7.7.0&screen=CardSettings:Home&channel=desktop
IP
Certificate IssuerEntrust, Inc.
Subjectsecure.bankofamerica.com
FingerprintA4:4C:BF:E9:9E:F0:6C:B2:69:51:B7:A2:27:66:72:C3:18:8C:83:BA
ValidityTue, 02 May 2023 12:13:26 GMT - Sun, 02 Jun 2024 12:13:26 GMT
File type HTML document, ISO-8859 text, with very long lines (880), with CRLF, LF line terminators
Hash 96cb6a6cf941ba97fb9e0da6cbbc9600
3eca3aa828b84956d3c00900b2afd584bbb87272
6130ed32e338aa1f164d7b86d3d1dded27e7cb11bb244b78f5627bff5f6b6873
GET /login/sign-in/signOnV2Screen.go?reason=digitalcardsettings&version=7.7.0&screen=CardSettings:Home&channel=desktop HTTP/1.1
Host: secure.bankofamerica.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: JS_PIPAD=0000uAl-vVqT6JInGrdEUAFvPcN:1e7bq9nv5; SPID=Q2S2; SID=0012F376220065A03C60; TS017f5af8=01964db1bd50ce7ad5db9e208d2d782bfb85e4aba553284cd9065e4b73b4f8ce7910d1d5d0c71f8dd7a1c6967c1714761919ab010e
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 11 Jan 2024 19:07:12 GMT
P3P: CP="CAO IND PHY ONL UNI FIN COM NAV INT DEM CNT STA POL HEA PRE GOV CUR ADM DEV TAI PSA PSD IVAi IVDi CONo TELo OUR SAMi OTRi"
Expires: Wed, 31 Dec 1969 23:59:59 GMT
Cache-Control: no-cache="set-cookie,set-cookie2",no-store, must-revalidate, max-age=0, private, no-cache, no-store, must-revalidate
Pragma: no-cache, no-cache
X-Frame-Options: DENY, SAMEORIGIN
Set-Cookie: JS_VIPAA=0000fhOx0cT8cIOcOgCAoBvRMrp:1e7brcnjc; Path=/; Secure; HttpOnly
SMSESSION=""; Expires=Thu, 01-Dec-94 16:00:00 GMT; Path=/; Domain=.bankofamerica.com; Secure; HttpOnly; SameSite=None
AUTHSSOSESSION=""; Expires=Thu, 01-Dec-94 16:00:00 GMT; Path=/; Domain=.bankofamerica.com; Secure; HttpOnly
cpk=""; Expires=Thu, 01-Dec-94 16:00:00 GMT; Path=/; Domain=.bankofamerica.com; Secure; HttpOnly
cpk2=""; Expires=Thu, 01-Dec-94 16:00:00 GMT; Path=/; Domain=.bankofamerica.com; Secure; HttpOnly
PI=""; Expires=Thu, 01-Dec-94 16:00:00 GMT; Path=/; Domain=.bankofamerica.com; Secure; HttpOnly
pm_command=""; Expires=Thu, 01-Dec-94 16:00:00 GMT; Path=/; Domain=.bankofamerica.com; Secure; HttpOnly
MobProtocol=""; Expires=Thu, 01-Dec-94 16:00:00 GMT; Path=/; Domain=.bankofamerica.com; Secure; HttpOnly
HeaderDM=""; Expires=Thu, 01-Dec-94 16:00:00 GMT; Path=/; Domain=.bankofamerica.com; Secure; HttpOnly
eProDC=""; Expires=Thu, 01-Dec-94 16:00:00 GMT; Path=/; Domain=.bankofamerica.com; Secure; HttpOnly
SSHC=""; Expires=Thu, 01-Dec-94 16:00:00 GMT; Path=/; Secure; HttpOnly
opentokenwbp=""; Expires=Thu, 01-Dec-94 16:00:00 GMT; Path=/; Domain=.bankofamerica.com; Secure; HttpOnly
opentokenbd=""; Expires=Thu, 01-Dec-94 16:00:00 GMT; Path=/; Domain=.bankofamerica.com; Secure; HttpOnly
CUW=""; Expires=Thu, 01-Dec-94 16:00:00 GMT; Path=/; Domain=.bankofamerica.com; Secure; HttpOnly
fsdSSK=""; Expires=Thu, 01-Dec-94 16:00:00 GMT; Path=/; Domain=.bankofamerica.com; Secure; HttpOnly
GSID=""; Expires=Thu, 01-Dec-94 16:00:00 GMT; Path=/; Domain=.bankofamerica.com; Secure
JS_PIPAD=""; Expires=Thu, 01-Dec-94 16:00:00 GMT; Path=/; Secure; HttpOnly
HTS_EVENT=""; Expires=Thu, 01-Dec-94 16:00:00 GMT; Path=/; Domain=.bankofamerica.com; Secure; HttpOnly
BOFA_LOCALE_COOKIE=en-US; Path=/; Domain=.bankofamerica.com; Secure; HttpOnly
TS017f5af8=01964db1bd50ce7ad5db9e208d2d782bfb85e4aba553284cd9065e4b73b4f8ce7910d1d5d0c71f8dd7a1c6967c1714761919ab010e; Path=/; Domain=.secure.bankofamerica.com
Vary: Accept-Encoding
Content-Encoding: gzip
X-BOA-RequestID: ZaA8YHmZcyBhfiJbdIf6DwAAAPM
Keep-Alive: timeout=40, max=467
Connection: Keep-Alive
Content-Type: text/html;charset=ISO-8859-1
Content-Language: en-US
Strict-Transport-Security: max-age=31536000; includeSubDomains
Content-Security-Policy: script-src 'self' boa-api.arkoselabs.com *.bac-assets.com cdn.cookielaw.org resources.digital-cloud.medallia.com *.livelook.com *.livelook.net *.tiqcdn.com *.bankofamerica.com *.baml.com *.bofa.com *.ml.com *.merrill.com *.merrilledge.com *.mymerrill.com *.ustrust.com *.glance.net *.glancecdn.net *.myglance.net s3.amazonaws.com *.cobrowse.oraclecloud.com *.oraclecloud.com www.google-analytics.com *.convertro.com idsync.rlcdn.com *.coremetrics.com *.brightcove.net *.brightcove.com maps.googleapis.com www.paypalobjects.com anrdoezrs.net cj.dotomi.com cj.com cj.mplxtms.com emjcd.com mczbf.com sjwoe.com secure-cdn.mplxtms.com cdn.mplxtms.com 'unsafe-inline' 'unsafe-eval' blob:; style-src 'self' https: data: blob: *.bac-assets.com *.bankofamerica.com cdn.cookielaw.org *.livelook.com *.livelook.net *.glancecdn.net *.cobrowse.oraclecloud.com *.oraclecloud.com www.google-analytics.com *.convertro.com idsync.rlcdn.com 'unsafe-inline'; worker-src 'self' blob:;
X-Serviced-By: 35azveTP0hvW2ZEhTDzh1A==--REvC4UKxmNlf2WIz9rMPkA==
Transfer-Encoding: chunked
Server: Oops
cdn.cookielaw.org/consent/72e99fdc-3ef1-452a-9b02-e35228fa4504/otSDKStub.js
200 OK 6.9 kB URL GET HTTP/2 cdn.cookielaw.org/consent/72e99fdc-3ef1-452a-9b02-e35228fa4504/otSDKStub.js
IP
Requested by https://secure.bankofamerica.com/login/sign-in/signOnV2Screen.go?reason=digitalcardsettings&version=7.7.0&screen=CardSettings:Home&channel=desktop
Certificate IssuerCloudflare, Inc.
Subjectcookielaw.org
Fingerprint72:BB:48:60:EB:F2:A2:EB:51:29:51:1A:B9:2A:85:30:97:3D:9A:2E
ValiditySat, 01 Apr 2023 00:00:00 GMT - Sun, 31 Mar 2024 23:59:59 GMT
File type ASCII text, with very long lines (638)
Hash 653fbf06d4cbd27fa19a11ef26c36c5f
6534b0c910a0d72b2be28b5d96d334b6faebccf8
ae7af88fff94ade13d5fb9cfa5581da810968e43e4848aa77838cea2d66308df
GET /consent/72e99fdc-3ef1-452a-9b02-e35228fa4504/otSDKStub.js HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://secure.bankofamerica.com
DNT: 1
Connection: keep-alive
Referer: https://secure.bankofamerica.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 11 Jan 2024 19:07:12 GMT
content-type: application/x-javascript
content-length: 6934
cf-ray: 843f70fdd8aab521-OSL
cf-cache-status: HIT
accept-ranges: bytes
access-control-allow-origin: *
age: 30260
cache-control: public, max-age=86400
content-encoding: gzip
etag: 0x8DBDEEDE7A605CB
expires: Fri, 12 Jan 2024 19:07:12 GMT
last-modified: Mon, 06 Nov 2023 17:29:17 GMT
strict-transport-security: max-age=31536000; includeSubDomains; preload
vary: Accept-Encoding
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Cache-Control,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
content-md5: zj32Cvf5RtLIH/3Db/yIDw==
x-content-type-options: nosniff
x-ms-blob-type: BlockBlob
x-ms-lease-status: unlocked
x-ms-request-id: 50b711bc-c01e-001f-03eb-1c8a87000000
x-ms-version: 2009-09-19
server: cloudflare
X-Firefox-Spdy: h2
cdn.cookielaw.org/consent/72e99fdc-3ef1-452a-9b02-e35228fa4504/72e99fdc-3ef1-452a-9b02-e35228fa4504.json
200 OK 1.6 kB URL GET HTTP/2 cdn.cookielaw.org/consent/72e99fdc-3ef1-452a-9b02-e35228fa4504/72e99fdc-3ef1-452a-9b02-e35228fa4504.json
IP
Requested by https://secure.bankofamerica.com/login/sign-in/signOnV2Screen.go?reason=digitalcardsettings&version=7.7.0&screen=CardSettings:Home&channel=desktop
Certificate IssuerCloudflare, Inc.
Subjectcookielaw.org
Fingerprint72:BB:48:60:EB:F2:A2:EB:51:29:51:1A:B9:2A:85:30:97:3D:9A:2E
ValiditySat, 01 Apr 2023 00:00:00 GMT - Sun, 31 Mar 2024 23:59:59 GMT
Hash 7c6a29867276780a8f963b04137ca108
cce748fe6329c830320276530f2e20b63fbe055d
8c3a92b2467fdd1c1fb222cca4f289afee120170101f45e5e11242425f69557a
GET /consent/72e99fdc-3ef1-452a-9b02-e35228fa4504/72e99fdc-3ef1-452a-9b02-e35228fa4504.json HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://secure.bankofamerica.com
DNT: 1
Connection: keep-alive
Referer: https://secure.bankofamerica.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 11 Jan 2024 19:07:13 GMT
content-type: application/x-javascript
content-length: 1575
cf-ray: 843f70fe390ab521-OSL
cf-cache-status: HIT
accept-ranges: bytes
access-control-allow-origin: *
age: 30261
cache-control: public, max-age=86400
content-encoding: gzip
etag: 0x8DBDEEDE792329D
expires: Fri, 12 Jan 2024 19:07:13 GMT
last-modified: Mon, 06 Nov 2023 17:29:17 GMT
strict-transport-security: max-age=31536000; includeSubDomains; preload
vary: Accept-Encoding
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Cache-Control,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
content-md5: +eqZmJeXG8F98qiCxZdymg==
x-content-type-options: nosniff
x-ms-blob-type: BlockBlob
x-ms-lease-status: unlocked
x-ms-request-id: 7d83a0db-301e-0079-69af-12c5a7000000
x-ms-version: 2009-09-19
server: cloudflare
X-Firefox-Spdy: h2
geolocation.onetrust.com/cookieconsentpub/v1/geo/location
200 OK 101 kB URL GET HTTP/2 geolocation.onetrust.com/cookieconsentpub/v1/geo/location
IP
Requested by https://secure.bankofamerica.com/login/sign-in/signOnV2Screen.go?reason=digitalcardsettings&version=7.7.0&screen=CardSettings:Home&channel=desktop
Certificate IssuerCloudflare, Inc.
Subjectonetrust.com
Fingerprint9B:BC:B4:A8:C7:6C:6C:02:0F:FD:9F:06:F2:67:FB:DD:A1:E0:3F:47
ValidityMon, 13 Nov 2023 00:00:00 GMT - Tue, 12 Nov 2024 23:59:59 GMT
Size 101 kB (101342 bytes)
Hash d9668d7cd6b5d56b5ee0b6e9928c659d
e4e6ff6f35887276ede6a914292083ff12da5fd4
5500d5873e5435e6686e6be1799fb0f24c19e2acb399d13b84d36c6ee55054b5
GET /cookieconsentpub/v1/geo/location HTTP/1.1
Host: geolocation.onetrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://secure.bankofamerica.com
DNT: 1
Connection: keep-alive
Referer: https://secure.bankofamerica.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 11 Jan 2024 19:07:13 GMT
content-type: application/json
access-control-allow-origin: *
access-control-allow-headers: Content-Type
access-control-allow-methods: GET, OPTIONS
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 843f70fe8aa456b1-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
cdn.cookielaw.org/consent/72e99fdc-3ef1-452a-9b02-e35228fa4504/6aaf7b67-22aa-465a-a4ff-f9e4e43dc92c/en.json
200 OK 11 kB URL GET HTTP/2 cdn.cookielaw.org/consent/72e99fdc-3ef1-452a-9b02-e35228fa4504/6aaf7b67-22aa-465a-a4ff-f9e4e43dc92c/en.json
IP
Requested by https://secure.bankofamerica.com/login/sign-in/signOnV2Screen.go?reason=digitalcardsettings&version=7.7.0&screen=CardSettings:Home&channel=desktop
Certificate IssuerCloudflare, Inc.
Subjectcookielaw.org
Fingerprint72:BB:48:60:EB:F2:A2:EB:51:29:51:1A:B9:2A:85:30:97:3D:9A:2E
ValiditySat, 01 Apr 2023 00:00:00 GMT - Sun, 31 Mar 2024 23:59:59 GMT
Hash a3abd786de13acf63971c833cf879f85
4ee1b607a21d0650c14f4347682202fd24d4cf1d
13c2082fd9dad18107bb2dd29f06c4413bc6664ca54c931b5d72d686ace39a9e
GET /consent/72e99fdc-3ef1-452a-9b02-e35228fa4504/6aaf7b67-22aa-465a-a4ff-f9e4e43dc92c/en.json HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://secure.bankofamerica.com/
Origin: https://secure.bankofamerica.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 11 Jan 2024 19:07:13 GMT
content-type: application/x-javascript
content-length: 10590
cf-ray: 843f70ff5aecb521-OSL
cf-cache-status: HIT
accept-ranges: bytes
access-control-allow-origin: *
age: 64787
cache-control: public, max-age=86400
content-encoding: gzip
etag: 0x8DBDEEDEB86A519
expires: Fri, 12 Jan 2024 19:07:13 GMT
last-modified: Mon, 06 Nov 2023 17:29:24 GMT
strict-transport-security: max-age=31536000; includeSubDomains; preload
vary: Accept-Encoding
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Cache-Control,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
content-md5: lSgafjDgEmZBxa2s1mjNgg==
x-content-type-options: nosniff
x-ms-blob-type: BlockBlob
x-ms-lease-status: unlocked
x-ms-request-id: d3f3903d-701e-00a3-4a44-145c46000000
x-ms-version: 2009-09-19
server: cloudflare
X-Firefox-Spdy: h2
cdn.cookielaw.org/scripttemplates/202308.1.0/assets/otFlat.json
200 OK 3.0 kB URL GET HTTP/2 cdn.cookielaw.org/scripttemplates/202308.1.0/assets/otFlat.json
IP
Requested by https://secure.bankofamerica.com/login/sign-in/signOnV2Screen.go?reason=digitalcardsettings&version=7.7.0&screen=CardSettings:Home&channel=desktop
Certificate IssuerCloudflare, Inc.
Subjectcookielaw.org
Fingerprint72:BB:48:60:EB:F2:A2:EB:51:29:51:1A:B9:2A:85:30:97:3D:9A:2E
ValiditySat, 01 Apr 2023 00:00:00 GMT - Sun, 31 Mar 2024 23:59:59 GMT
Hash 4d4429a2dfaa8a27fbe9659e8e717f74
28ad4885ff33594fa46eced61bd42874926aa17c
ea5db5581e262d77d1a43fbb3f0fa3661b51d097b40ca38f584b4943f47cf2e0
GET /scripttemplates/202308.1.0/assets/otFlat.json HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://secure.bankofamerica.com/
Origin: https://secure.bankofamerica.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 11 Jan 2024 19:07:13 GMT
content-type: application/json
content-length: 3017
content-encoding: gzip
content-md5: C2c3Qd8FHm1wstxOFHDJ2w==
last-modified: Wed, 25 Oct 2023 03:55:37 GMT
etag: 0x8DBD50E3F9DEF08
x-ms-request-id: a3e20b5f-301e-001b-0f46-230780000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: max-age=86400
cf-cache-status: HIT
age: 64786
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 843f70ff9b4eb521-OSL
X-Firefox-Spdy: h2
cdn.cookielaw.org/scripttemplates/202308.1.0/assets/v2/otPcTab.json
200 OK 13 kB URL GET HTTP/2 cdn.cookielaw.org/scripttemplates/202308.1.0/assets/v2/otPcTab.json
IP
Requested by https://secure.bankofamerica.com/login/sign-in/signOnV2Screen.go?reason=digitalcardsettings&version=7.7.0&screen=CardSettings:Home&channel=desktop
Certificate IssuerCloudflare, Inc.
Subjectcookielaw.org
Fingerprint72:BB:48:60:EB:F2:A2:EB:51:29:51:1A:B9:2A:85:30:97:3D:9A:2E
ValiditySat, 01 Apr 2023 00:00:00 GMT - Sun, 31 Mar 2024 23:59:59 GMT
Hash fd0955411e621bda3f1e48e40aa91ec6
ffff64f799735a6462defde6f5fe42a13e359962
ef692caebb708b665def2aad3beab4eca949689636103edd74069a60d6da5d59
GET /scripttemplates/202308.1.0/assets/v2/otPcTab.json HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://secure.bankofamerica.com/
Origin: https://secure.bankofamerica.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 11 Jan 2024 19:07:13 GMT
content-type: application/json
content-length: 13391
content-encoding: gzip
content-md5: W3M09FoULMOrbblf8iKnug==
last-modified: Wed, 25 Oct 2023 03:55:40 GMT
etag: 0x8DBD50E412DA220
x-ms-request-id: d0913218-b01e-0048-61cd-1224b4000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: max-age=86400
cf-cache-status: HIT
age: 64786
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 843f70ff9b50b521-OSL
X-Firefox-Spdy: h2
secure.bankofamerica.com/pa/components/bundles/gzip-compressed/xengine/VIPAA/9.7/style/vipaa-v4-jawr.css
200 OK 66 kB URL GET HTTP/1.1 secure.bankofamerica.com/pa/components/bundles/gzip-compressed/xengine/VIPAA/9.7/style/vipaa-v4-jawr.css
IP
Requested by https://secure.bankofamerica.com/login/sign-in/signOnV2Screen.go?reason=digitalcardsettings&version=7.7.0&screen=CardSettings:Home&channel=desktop
Certificate IssuerEntrust, Inc.
Subjectsecure.bankofamerica.com
FingerprintA4:4C:BF:E9:9E:F0:6C:B2:69:51:B7:A2:27:66:72:C3:18:8C:83:BA
ValidityTue, 02 May 2023 12:13:26 GMT - Sun, 02 Jun 2024 12:13:26 GMT
File type ASCII text, with very long lines (65536), with no line terminators
Hash 47037bde4870bbcf1bef58aa781144f6
4a7247f01324174b759fa84d57011ee80ffa529e
81b027af71f745247720e106cc3a674e9291ae024938973b7eba4e1ce959c4ef
GET /pa/components/bundles/gzip-compressed/xengine/VIPAA/9.7/style/vipaa-v4-jawr.css HTTP/1.1
Host: secure.bankofamerica.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://secure.bankofamerica.com/login/sign-in/signOnV2Screen.go?reason=digitalcardsettings&version=7.7.0&screen=CardSettings:Home&channel=desktop
Cookie: SPID=Q2S2; SID=0012F376220065A03C60; TS017f5af8=01964db1bd50ce7ad5db9e208d2d782bfb85e4aba553284cd9065e4b73b4f8ce7910d1d5d0c71f8dd7a1c6967c1714761919ab010e; JS_VIPAA=0000fhOx0cT8cIOcOgCAoBvRMrp:1e7brcnjc; BOFA_LOCALE_COOKIE=en-US
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Last-Modified: Wed, 25 Oct 2023 21:31:55 GMT
ETag: "1008b-608912f3588fe"
Accept-Ranges: bytes
Cache-Control: max-age=31536000
X-BOA-RequestID: ZZkG_VVbHiglnS5j4fckFwAAAGY
Content-Encoding: gzip
Keep-Alive: timeout=40, max=500
Content-Type: text/css
Strict-Transport-Security: max-age=31536000; includeSubDomains
Content-Security-Policy: script-src 'self' boa-api.arkoselabs.com *.bac-assets.com cdn.cookielaw.org resources.digital-cloud.medallia.com *.livelook.com *.livelook.net *.tiqcdn.com *.bankofamerica.com *.baml.com *.bofa.com *.ml.com *.merrill.com *.merrilledge.com *.mymerrill.com *.ustrust.com *.glance.net *.glancecdn.net *.myglance.net s3.amazonaws.com *.cobrowse.oraclecloud.com *.oraclecloud.com www.google-analytics.com *.convertro.com idsync.rlcdn.com *.coremetrics.com *.brightcove.net *.brightcove.com maps.googleapis.com www.paypalobjects.com anrdoezrs.net cj.dotomi.com cj.com cj.mplxtms.com emjcd.com mczbf.com sjwoe.com secure-cdn.mplxtms.com cdn.mplxtms.com 'unsafe-inline' 'unsafe-eval' blob:; style-src 'self' https: data: blob: *.bac-assets.com *.bankofamerica.com cdn.cookielaw.org *.livelook.com *.livelook.net *.glancecdn.net *.cobrowse.oraclecloud.com *.oraclecloud.com www.google-analytics.com *.convertro.com idsync.rlcdn.com 'unsafe-inline'; worker-src 'self' blob:;
X-Serviced-By: AX3pAD3wQ98DJ/pKLjKcJw==--aezVUaz4qp1BwSkk/z0bdw==
Connection: Keep-Alive
Date: Thu, 11 Jan 2024 19:07:12 GMT
Expires: Fri, 10 Jan 2025 18:58:21 GMT
Age: 532
Content-Length: 65675
Server: Oops
secure.bankofamerica.com/pa/global-assets/1.0/script/libraries/jquery-migrate-custom.js
200 OK 10 kB URL GET HTTP/1.1 secure.bankofamerica.com/pa/global-assets/1.0/script/libraries/jquery-migrate-custom.js
IP
Requested by https://secure.bankofamerica.com/login/sign-in/signOnV2Screen.go?reason=digitalcardsettings&version=7.7.0&screen=CardSettings:Home&channel=desktop
Certificate IssuerEntrust, Inc.
Subjectsecure.bankofamerica.com
FingerprintA4:4C:BF:E9:9E:F0:6C:B2:69:51:B7:A2:27:66:72:C3:18:8C:83:BA
ValidityTue, 02 May 2023 12:13:26 GMT - Sun, 02 Jun 2024 12:13:26 GMT
Hash bedff910fdc85bf57f5b28ac6f9474ac
8752dc091a7c0d60fa1b98dd2d589d89925a2948
507c9d07862848eb2252ea5aa73050168e57663e4b6887159e725017ae629386
GET /pa/global-assets/1.0/script/libraries/jquery-migrate-custom.js HTTP/1.1
Host: secure.bankofamerica.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://secure.bankofamerica.com/login/sign-in/signOnV2Screen.go?reason=digitalcardsettings&version=7.7.0&screen=CardSettings:Home&channel=desktop
Cookie: SPID=Q2S2; SID=0012F376220065A03C60; TS017f5af8=01964db1bd50ce7ad5db9e208d2d782bfb85e4aba553284cd9065e4b73b4f8ce7910d1d5d0c71f8dd7a1c6967c1714761919ab010e; JS_VIPAA=0000fhOx0cT8cIOcOgCAoBvRMrp:1e7brcnjc; BOFA_LOCALE_COOKIE=en-US
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Last-Modified: Tue, 16 Aug 2022 09:04:27 GMT
ETag: "2753-5e6580913c7a1"
Accept-Ranges: bytes
X-BOA-RequestID: ZZkG_VVbHiglnS5j4fckGQAAACE
Keep-Alive: timeout=40, max=500
Content-Type: application/x-javascript
Strict-Transport-Security: max-age=31536000; includeSubDomains
Content-Security-Policy: script-src 'self' boa-api.arkoselabs.com *.bac-assets.com cdn.cookielaw.org resources.digital-cloud.medallia.com *.livelook.com *.livelook.net *.tiqcdn.com *.bankofamerica.com *.baml.com *.bofa.com *.ml.com *.merrill.com *.merrilledge.com *.mymerrill.com *.ustrust.com *.glance.net *.glancecdn.net *.myglance.net s3.amazonaws.com *.cobrowse.oraclecloud.com *.oraclecloud.com www.google-analytics.com *.convertro.com idsync.rlcdn.com *.coremetrics.com *.brightcove.net *.brightcove.com maps.googleapis.com www.paypalobjects.com anrdoezrs.net cj.dotomi.com cj.com cj.mplxtms.com emjcd.com mczbf.com sjwoe.com secure-cdn.mplxtms.com cdn.mplxtms.com 'unsafe-inline' 'unsafe-eval' blob:; style-src 'self' https: data: blob: *.bac-assets.com *.bankofamerica.com cdn.cookielaw.org *.livelook.com *.livelook.net *.glancecdn.net *.cobrowse.oraclecloud.com *.oraclecloud.com www.google-analytics.com *.convertro.com idsync.rlcdn.com 'unsafe-inline'; worker-src 'self' blob:;
X-Serviced-By: AX3pAD3wQ98DJ/pKLjKcJw==--aezVUaz4qp1BwSkk/z0bdw==
Connection: Keep-Alive
Date: Thu, 11 Jan 2024 19:07:13 GMT
Age: 757
Content-Length: 10067
Server: Oops
secure.bankofamerica.com/pa/components/bundles/text-decompressed/xengine/VIPAA/9.7/script/cm-jawr.js
200 OK 42 kB URL GET HTTP/1.1 secure.bankofamerica.com/pa/components/bundles/text-decompressed/xengine/VIPAA/9.7/script/cm-jawr.js
IP
Requested by https://secure.bankofamerica.com/login/sign-in/signOnV2Screen.go?reason=digitalcardsettings&version=7.7.0&screen=CardSettings:Home&channel=desktop
Certificate IssuerEntrust, Inc.
Subjectsecure.bankofamerica.com
FingerprintA4:4C:BF:E9:9E:F0:6C:B2:69:51:B7:A2:27:66:72:C3:18:8C:83:BA
ValidityTue, 02 May 2023 12:13:26 GMT - Sun, 02 Jun 2024 12:13:26 GMT
File type HTML document, ASCII text, with very long lines (42027), with no line terminators
Hash 48bd15dcb4c7045c72a2051ee85d1636
a6d4ba03db3402a0d1b82f809fbbea9ad4d0f109
e49851a126b4eac23416ee43bc11329b8cf2a857018e030191c4b649a975fb61
GET /pa/components/bundles/text-decompressed/xengine/VIPAA/9.7/script/cm-jawr.js HTTP/1.1
Host: secure.bankofamerica.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://secure.bankofamerica.com/login/sign-in/signOnV2Screen.go?reason=digitalcardsettings&version=7.7.0&screen=CardSettings:Home&channel=desktop
Cookie: SPID=Q2S2; SID=0012F376220065A03C60; TS017f5af8=01964db1bd50ce7ad5db9e208d2d782bfb85e4aba553284cd9065e4b73b4f8ce7910d1d5d0c71f8dd7a1c6967c1714761919ab010e; JS_VIPAA=0000fhOx0cT8cIOcOgCAoBvRMrp:1e7brcnjc; BOFA_LOCALE_COOKIE=en-US
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Last-Modified: Wed, 25 Oct 2023 21:31:55 GMT
ETag: "a42b-608912f3a3836"
Accept-Ranges: bytes
Cache-Control: max-age=31536000
X-BOA-RequestID: ZZkG_lVbHiglnS5j4fckHAAAAD8
Keep-Alive: timeout=40, max=498
Content-Type: application/x-javascript
Strict-Transport-Security: max-age=31536000; includeSubDomains
Content-Security-Policy: script-src 'self' boa-api.arkoselabs.com *.bac-assets.com cdn.cookielaw.org resources.digital-cloud.medallia.com *.livelook.com *.livelook.net *.tiqcdn.com *.bankofamerica.com *.baml.com *.bofa.com *.ml.com *.merrill.com *.merrilledge.com *.mymerrill.com *.ustrust.com *.glance.net *.glancecdn.net *.myglance.net s3.amazonaws.com *.cobrowse.oraclecloud.com *.oraclecloud.com www.google-analytics.com *.convertro.com idsync.rlcdn.com *.coremetrics.com *.brightcove.net *.brightcove.com maps.googleapis.com www.paypalobjects.com anrdoezrs.net cj.dotomi.com cj.com cj.mplxtms.com emjcd.com mczbf.com sjwoe.com secure-cdn.mplxtms.com cdn.mplxtms.com 'unsafe-inline' 'unsafe-eval' blob:; style-src 'self' https: data: blob: *.bac-assets.com *.bankofamerica.com cdn.cookielaw.org *.livelook.com *.livelook.net *.glancecdn.net *.cobrowse.oraclecloud.com *.oraclecloud.com www.google-analytics.com *.convertro.com idsync.rlcdn.com 'unsafe-inline'; worker-src 'self' blob:;
X-Serviced-By: AX3pAD3wQ98DJ/pKLjKcJw==--aezVUaz4qp1BwSkk/z0bdw==
Connection: Keep-Alive
Date: Thu, 11 Jan 2024 19:07:13 GMT
Expires: Fri, 10 Jan 2025 18:52:42 GMT
Age: 872
Content-Length: 42027
Server: Oops
secure.bankofamerica.com/pa/components/modules-app/VIPAA/online-id-vipaa-module/1.0/script/online-id-vipaa-module-enter-skin.js
200 OK 53 kB URL GET HTTP/1.1 secure.bankofamerica.com/pa/components/modules-app/VIPAA/online-id-vipaa-module/1.0/script/online-id-vipaa-module-enter-skin.js
IP
Requested by https://secure.bankofamerica.com/login/sign-in/signOnV2Screen.go?reason=digitalcardsettings&version=7.7.0&screen=CardSettings:Home&channel=desktop
Certificate IssuerEntrust, Inc.
Subjectsecure.bankofamerica.com
FingerprintA4:4C:BF:E9:9E:F0:6C:B2:69:51:B7:A2:27:66:72:C3:18:8C:83:BA
ValidityTue, 02 May 2023 12:13:26 GMT - Sun, 02 Jun 2024 12:13:26 GMT
Hash a2a3ec765423ccc0874fd605da414c90
ff89213564d046d0b64eacf9444a3837c9971c1d
4d25f88985929baafd3104a574fe5376e0b67102fbc2424d6f503fd673a99b0e
GET /pa/components/modules-app/VIPAA/online-id-vipaa-module/1.0/script/online-id-vipaa-module-enter-skin.js HTTP/1.1
Host: secure.bankofamerica.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://secure.bankofamerica.com/login/sign-in/signOnV2Screen.go?reason=digitalcardsettings&version=7.7.0&screen=CardSettings:Home&channel=desktop
Cookie: SPID=Q2S2; SID=0012F376220065A03C60; TS017f5af8=01964db1bd50ce7ad5db9e208d2d782bfb85e4aba553284cd9065e4b73b4f8ce7910d1d5d0c71f8dd7a1c6967c1714761919ab010e; JS_VIPAA=0000fhOx0cT8cIOcOgCAoBvRMrp:1e7brcnjc; BOFA_LOCALE_COOKIE=en-US
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Last-Modified: Wed, 25 Oct 2023 21:31:55 GMT
ETag: "d006-608912f3abd06"
Accept-Ranges: bytes
X-BOA-RequestID: ZZ9Wx-KBRzHKTGm3bhFuxwAAARA
Keep-Alive: timeout=40, max=478
Content-Type: application/x-javascript
Strict-Transport-Security: max-age=31536000; includeSubDomains
Content-Security-Policy: script-src 'self' boa-api.arkoselabs.com *.bac-assets.com cdn.cookielaw.org resources.digital-cloud.medallia.com *.livelook.com *.livelook.net *.tiqcdn.com *.bankofamerica.com *.baml.com *.bofa.com *.ml.com *.merrill.com *.merrilledge.com *.mymerrill.com *.ustrust.com *.glance.net *.glancecdn.net *.myglance.net s3.amazonaws.com *.cobrowse.oraclecloud.com *.oraclecloud.com www.google-analytics.com *.convertro.com idsync.rlcdn.com *.coremetrics.com *.brightcove.net *.brightcove.com maps.googleapis.com www.paypalobjects.com anrdoezrs.net cj.dotomi.com cj.com cj.mplxtms.com emjcd.com mczbf.com sjwoe.com secure-cdn.mplxtms.com cdn.mplxtms.com 'unsafe-inline' 'unsafe-eval' blob:; style-src 'self' https: data: blob: *.bac-assets.com *.bankofamerica.com cdn.cookielaw.org *.livelook.com *.livelook.net *.glancecdn.net *.cobrowse.oraclecloud.com *.oraclecloud.com www.google-analytics.com *.convertro.com idsync.rlcdn.com 'unsafe-inline'; worker-src 'self' blob:;
X-Serviced-By: gnzQjRfO4N+edfuG4uHplw==--pfa4fpk6/qvZ7rlPD7DyXw==
Connection: Keep-Alive
Date: Thu, 11 Jan 2024 19:07:13 GMT
Age: 872
Content-Length: 53254
Server: Oops
secure.bankofamerica.com/pa/components/bundles/gzip-compressed/xengine/VIPAA/9.7/script/vipaa-v4-jawr.js
200 OK 362 kB URL GET HTTP/1.1 secure.bankofamerica.com/pa/components/bundles/gzip-compressed/xengine/VIPAA/9.7/script/vipaa-v4-jawr.js
IP
Requested by https://secure.bankofamerica.com/login/sign-in/signOnV2Screen.go?reason=digitalcardsettings&version=7.7.0&screen=CardSettings:Home&channel=desktop
Certificate IssuerEntrust, Inc.
Subjectsecure.bankofamerica.com
FingerprintA4:4C:BF:E9:9E:F0:6C:B2:69:51:B7:A2:27:66:72:C3:18:8C:83:BA
ValidityTue, 02 May 2023 12:13:26 GMT - Sun, 02 Jun 2024 12:13:26 GMT
File type ASCII text, with very long lines (65451)
Size 362 kB (361885 bytes)
Hash 5a91795550b58103beaa104e774097b8
729209710a21bf71f6d998bdd7a846a7f9ef83d1
335fd205eee75adbd15e24989ca730c4e0946593bdeb51493ae25d4b9646b448
GET /pa/components/bundles/gzip-compressed/xengine/VIPAA/9.7/script/vipaa-v4-jawr.js HTTP/1.1
Host: secure.bankofamerica.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://secure.bankofamerica.com/login/sign-in/signOnV2Screen.go?reason=digitalcardsettings&version=7.7.0&screen=CardSettings:Home&channel=desktop
Cookie: SPID=Q2S2; SID=0012F376220065A03C60; TS017f5af8=01964db1bd50ce7ad5db9e208d2d782bfb85e4aba553284cd9065e4b73b4f8ce7910d1d5d0c71f8dd7a1c6967c1714761919ab010e; JS_VIPAA=0000fhOx0cT8cIOcOgCAoBvRMrp:1e7brcnjc; BOFA_LOCALE_COOKIE=en-US
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Last-Modified: Wed, 25 Oct 2023 21:31:55 GMT
ETag: "5859d-608912f35812e"
Accept-Ranges: bytes
Cache-Control: max-age=31536000
X-BOA-RequestID: ZZ7IPbp6wuiEaO37JQGhHQAAAW8
Content-Encoding: gzip
Keep-Alive: timeout=40, max=403
Content-Type: application/x-javascript
Strict-Transport-Security: max-age=31536000; includeSubDomains
Content-Security-Policy: script-src 'self' boa-api.arkoselabs.com *.bac-assets.com cdn.cookielaw.org resources.digital-cloud.medallia.com *.livelook.com *.livelook.net *.tiqcdn.com *.bankofamerica.com *.baml.com *.bofa.com *.ml.com *.merrill.com *.merrilledge.com *.mymerrill.com *.ustrust.com *.glance.net *.glancecdn.net *.myglance.net s3.amazonaws.com *.cobrowse.oraclecloud.com *.oraclecloud.com www.google-analytics.com *.convertro.com idsync.rlcdn.com *.coremetrics.com *.brightcove.net *.brightcove.com maps.googleapis.com www.paypalobjects.com anrdoezrs.net cj.dotomi.com cj.com cj.mplxtms.com emjcd.com mczbf.com sjwoe.com secure-cdn.mplxtms.com cdn.mplxtms.com 'unsafe-inline' 'unsafe-eval' blob:; style-src 'self' https: data: blob: *.bac-assets.com *.bankofamerica.com cdn.cookielaw.org *.livelook.com *.livelook.net *.glancecdn.net *.cobrowse.oraclecloud.com *.oraclecloud.com www.google-analytics.com *.convertro.com idsync.rlcdn.com 'unsafe-inline'; worker-src 'self' blob:;
X-Serviced-By: 7Lcf/JURwOij9FX5x0gpRg==--+BB2bOm4oPG6DcpicXau4Q==
Connection: Keep-Alive
Date: Thu, 11 Jan 2024 19:07:13 GMT
Expires: Fri, 10 Jan 2025 19:00:19 GMT
Age: 415
Content-Length: 361885
Server: Oops
secure.bankofamerica.com/pa/components/bundles/gzip-compressed/xengine/VIPAA/9.7/style/vipaa-v4-jawr-print.css
200 OK 1.2 kB URL GET HTTP/1.1 secure.bankofamerica.com/pa/components/bundles/gzip-compressed/xengine/VIPAA/9.7/style/vipaa-v4-jawr-print.css
IP
Requested by https://secure.bankofamerica.com/login/sign-in/signOnV2Screen.go?reason=digitalcardsettings&version=7.7.0&screen=CardSettings:Home&channel=desktop
Certificate IssuerEntrust, Inc.
Subjectsecure.bankofamerica.com
FingerprintA4:4C:BF:E9:9E:F0:6C:B2:69:51:B7:A2:27:66:72:C3:18:8C:83:BA
ValidityTue, 02 May 2023 12:13:26 GMT - Sun, 02 Jun 2024 12:13:26 GMT
File type ASCII text, with very long lines (9953), with no line terminators
Hash a2af793292866b502045f42be5fc997c
088f20867c1ff4931bf7917ab47e6940f7dfe493
2f0ac0559a948fa017a8ecdb5bddf7ac54033e8aa1eb91ff7df93243c690f0d1
GET /pa/components/bundles/gzip-compressed/xengine/VIPAA/9.7/style/vipaa-v4-jawr-print.css HTTP/1.1
Host: secure.bankofamerica.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://secure.bankofamerica.com/login/sign-in/signOnV2Screen.go?reason=digitalcardsettings&version=7.7.0&screen=CardSettings:Home&channel=desktop
Cookie: SPID=Q2S2; SID=0012F376220065A03C60; TS017f5af8=01964db1bd50ce7ad5db9e208d2d782bfb85e4aba553284cd9065e4b73b4f8ce7910d1d5d0c71f8dd7a1c6967c1714761919ab010e; JS_VIPAA=0000fhOx0cT8cIOcOgCAoBvRMrp:1e7brcnjc; BOFA_LOCALE_COOKIE=en-US
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Last-Modified: Wed, 25 Oct 2023 21:31:55 GMT
ETag: "4a2-608912f3588fe"
Accept-Ranges: bytes
Cache-Control: max-age=31536000
X-BOA-RequestID: ZZkG_lVbHiglnS5j4fckIgAAAHE
Content-Encoding: gzip
Keep-Alive: timeout=40, max=494
Content-Type: text/css
Strict-Transport-Security: max-age=31536000; includeSubDomains
Content-Security-Policy: script-src 'self' boa-api.arkoselabs.com *.bac-assets.com cdn.cookielaw.org resources.digital-cloud.medallia.com *.livelook.com *.livelook.net *.tiqcdn.com *.bankofamerica.com *.baml.com *.bofa.com *.ml.com *.merrill.com *.merrilledge.com *.mymerrill.com *.ustrust.com *.glance.net *.glancecdn.net *.myglance.net s3.amazonaws.com *.cobrowse.oraclecloud.com *.oraclecloud.com www.google-analytics.com *.convertro.com idsync.rlcdn.com *.coremetrics.com *.brightcove.net *.brightcove.com maps.googleapis.com www.paypalobjects.com anrdoezrs.net cj.dotomi.com cj.com cj.mplxtms.com emjcd.com mczbf.com sjwoe.com secure-cdn.mplxtms.com cdn.mplxtms.com 'unsafe-inline' 'unsafe-eval' blob:; style-src 'self' https: data: blob: *.bac-assets.com *.bankofamerica.com cdn.cookielaw.org *.livelook.com *.livelook.net *.glancecdn.net *.cobrowse.oraclecloud.com *.oraclecloud.com www.google-analytics.com *.convertro.com idsync.rlcdn.com 'unsafe-inline'; worker-src 'self' blob:;
X-Serviced-By: AX3pAD3wQ98DJ/pKLjKcJw==--aezVUaz4qp1BwSkk/z0bdw==
Connection: Keep-Alive
Date: Thu, 11 Jan 2024 19:07:14 GMT
Expires: Fri, 10 Jan 2025 18:57:46 GMT
Age: 569
Content-Length: 1186
Server: Oops
secure.bankofamerica.com/pa/components/modules/global-footer-module/2.5/graphic/pill.png
200 OK 2.0 kB URL GET HTTP/1.1 secure.bankofamerica.com/pa/components/modules/global-footer-module/2.5/graphic/pill.png
IP
Requested by https://secure.bankofamerica.com/login/sign-in/signOnV2Screen.go?reason=digitalcardsettings&version=7.7.0&screen=CardSettings:Home&channel=desktop
Certificate IssuerEntrust, Inc.
Subjectsecure.bankofamerica.com
FingerprintA4:4C:BF:E9:9E:F0:6C:B2:69:51:B7:A2:27:66:72:C3:18:8C:83:BA
ValidityTue, 02 May 2023 12:13:26 GMT - Sun, 02 Jun 2024 12:13:26 GMT
File type PNG image data, 42 x 22, 8-bit/color RGBA, non-interlaced
Hash deb336030cc20254af3372fa76d24905
36cef85fb2cf764ddadf34fdcd8abfb120fc4172
6d608a9d27ae614aa0b16fe920f6a811bf6d4f320a5819b51d3edb9672912ad9
GET /pa/components/modules/global-footer-module/2.5/graphic/pill.png HTTP/1.1
Host: secure.bankofamerica.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://secure.bankofamerica.com/login/sign-in/signOnV2Screen.go?reason=digitalcardsettings&version=7.7.0&screen=CardSettings:Home&channel=desktop
Cookie: SPID=Q2S2; SID=0012F376220065A03C60; TS017f5af8=01964db1bd50ce7ad5db9e208d2d782bfb85e4aba553284cd9065e4b73b4f8ce7910d1d5d0c71f8dd7a1c6967c1714761919ab010e; JS_VIPAA=0000fhOx0cT8cIOcOgCAoBvRMrp:1e7brcnjc; BOFA_LOCALE_COOKIE=en-US
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Last-Modified: Wed, 25 Oct 2023 21:31:55 GMT
ETag: "7e6-608912f3af79e"
Accept-Ranges: bytes
X-BOA-RequestID: ZZkG_lVbHiglnS5j4fckIAAAACQ
Keep-Alive: timeout=40, max=495
Content-Type: image/png
Strict-Transport-Security: max-age=31536000; includeSubDomains
Content-Security-Policy: script-src 'self' boa-api.arkoselabs.com *.bac-assets.com cdn.cookielaw.org resources.digital-cloud.medallia.com *.livelook.com *.livelook.net *.tiqcdn.com *.bankofamerica.com *.baml.com *.bofa.com *.ml.com *.merrill.com *.merrilledge.com *.mymerrill.com *.ustrust.com *.glance.net *.glancecdn.net *.myglance.net s3.amazonaws.com *.cobrowse.oraclecloud.com *.oraclecloud.com www.google-analytics.com *.convertro.com idsync.rlcdn.com *.coremetrics.com *.brightcove.net *.brightcove.com maps.googleapis.com www.paypalobjects.com anrdoezrs.net cj.dotomi.com cj.com cj.mplxtms.com emjcd.com mczbf.com sjwoe.com secure-cdn.mplxtms.com cdn.mplxtms.com 'unsafe-inline' 'unsafe-eval' blob:; style-src 'self' https: data: blob: *.bac-assets.com *.bankofamerica.com cdn.cookielaw.org *.livelook.com *.livelook.net *.glancecdn.net *.cobrowse.oraclecloud.com *.oraclecloud.com www.google-analytics.com *.convertro.com idsync.rlcdn.com 'unsafe-inline'; worker-src 'self' blob:;
X-Serviced-By: AX3pAD3wQ98DJ/pKLjKcJw==--aezVUaz4qp1BwSkk/z0bdw==
Connection: Keep-Alive
Date: Thu, 11 Jan 2024 19:07:14 GMT
Age: 659
Content-Length: 2022
Server: Oops
secure.bankofamerica.com/pa/components/modules-app/VIPAA/online-id-vipaa-module/1.0/graphic/mobile_llama.png
200 OK 19 kB URL GET HTTP/1.1 secure.bankofamerica.com/pa/components/modules-app/VIPAA/online-id-vipaa-module/1.0/graphic/mobile_llama.png
IP
Requested by https://secure.bankofamerica.com/login/sign-in/signOnV2Screen.go?reason=digitalcardsettings&version=7.7.0&screen=CardSettings:Home&channel=desktop
Certificate IssuerEntrust, Inc.
Subjectsecure.bankofamerica.com
FingerprintA4:4C:BF:E9:9E:F0:6C:B2:69:51:B7:A2:27:66:72:C3:18:8C:83:BA
ValidityTue, 02 May 2023 12:13:26 GMT - Sun, 02 Jun 2024 12:13:26 GMT
File type PNG image data, 298 x 416, 8-bit colormap, non-interlaced
Hash 178098b4327cb4e5407e4a69c8cd2d18
0be208356ff56bea3794ed175f3682c2b0701415
6bb1d4b1b719488b9812d1fb67b41b03857eec8f4e0a4d46a8066574037d817a
GET /pa/components/modules-app/VIPAA/online-id-vipaa-module/1.0/graphic/mobile_llama.png HTTP/1.1
Host: secure.bankofamerica.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://secure.bankofamerica.com/login/sign-in/signOnV2Screen.go?reason=digitalcardsettings&version=7.7.0&screen=CardSettings:Home&channel=desktop
Cookie: SPID=Q2S2; SID=0012F376220065A03C60; TS017f5af8=01964db1bd50ce7ad5db9e208d2d782bfb85e4aba553284cd9065e4b73b4f8ce7910d1d5d0c71f8dd7a1c6967c1714761919ab010e; JS_VIPAA=0000fhOx0cT8cIOcOgCAoBvRMrp:1e7brcnjc; BOFA_LOCALE_COOKIE=en-US
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Last-Modified: Tue, 16 Aug 2022 08:36:34 GMT
ETag: "4adf-5e657a56463dd"
Accept-Ranges: bytes
X-BOA-RequestID: ZZkG_lVbHiglnS5j4fckHgAAAH8
Keep-Alive: timeout=40, max=496
Content-Type: image/png
Strict-Transport-Security: max-age=31536000; includeSubDomains
Content-Security-Policy: script-src 'self' boa-api.arkoselabs.com *.bac-assets.com cdn.cookielaw.org resources.digital-cloud.medallia.com *.livelook.com *.livelook.net *.tiqcdn.com *.bankofamerica.com *.baml.com *.bofa.com *.ml.com *.merrill.com *.merrilledge.com *.mymerrill.com *.ustrust.com *.glance.net *.glancecdn.net *.myglance.net s3.amazonaws.com *.cobrowse.oraclecloud.com *.oraclecloud.com www.google-analytics.com *.convertro.com idsync.rlcdn.com *.coremetrics.com *.brightcove.net *.brightcove.com maps.googleapis.com www.paypalobjects.com anrdoezrs.net cj.dotomi.com cj.com cj.mplxtms.com emjcd.com mczbf.com sjwoe.com secure-cdn.mplxtms.com cdn.mplxtms.com 'unsafe-inline' 'unsafe-eval' blob:; style-src 'self' https: data: blob: *.bac-assets.com *.bankofamerica.com cdn.cookielaw.org *.livelook.com *.livelook.net *.glancecdn.net *.cobrowse.oraclecloud.com *.oraclecloud.com www.google-analytics.com *.convertro.com idsync.rlcdn.com 'unsafe-inline'; worker-src 'self' blob:;
X-Serviced-By: AX3pAD3wQ98DJ/pKLjKcJw==--aezVUaz4qp1BwSkk/z0bdw==
Connection: Keep-Alive
Date: Thu, 11 Jan 2024 19:07:14 GMT
Age: 685
Content-Length: 19167
Server: Oops
secure.bankofamerica.com/content/images/ContextualSiteGraphics/Logos/en_US/BofA_rgb.png
200 OK 23 kB URL GET HTTP/1.1 secure.bankofamerica.com/content/images/ContextualSiteGraphics/Logos/en_US/BofA_rgb.png
IP
Requested by https://secure.bankofamerica.com/login/sign-in/signOnV2Screen.go?reason=digitalcardsettings&version=7.7.0&screen=CardSettings:Home&channel=desktop
Certificate IssuerEntrust, Inc.
Subjectsecure.bankofamerica.com
FingerprintA4:4C:BF:E9:9E:F0:6C:B2:69:51:B7:A2:27:66:72:C3:18:8C:83:BA
ValidityTue, 02 May 2023 12:13:26 GMT - Sun, 02 Jun 2024 12:13:26 GMT
File type PNG image data, 1520 x 170, 8-bit/color RGBA, non-interlaced
Hash 49bc9262c4a31f1ee2ca2dd5e1dc8588
5b145ba3666ffa9eded453160010567ccc24e8cc
30652cee5990b3b76f6cbf6f26362be9254dd62b4c6e6003c1127d1484573787
GET /content/images/ContextualSiteGraphics/Logos/en_US/BofA_rgb.png HTTP/1.1
Host: secure.bankofamerica.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://secure.bankofamerica.com/login/sign-in/signOnV2Screen.go?reason=digitalcardsettings&version=7.7.0&screen=CardSettings:Home&channel=desktop
Cookie: SPID=Q2S2; SID=0012F376220065A03C60; TS017f5af8=01964db1bd50ce7ad5db9e208d2d782bfb85e4aba553284cd9065e4b73b4f8ce7910d1d5d0c71f8dd7a1c6967c1714761919ab010e; JS_VIPAA=0000fhOx0cT8cIOcOgCAoBvRMrp:1e7brcnjc; BOFA_LOCALE_COOKIE=en-US
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Last-Modified: Tue, 05 Feb 2019 20:28:24 GMT
ETag: "99fe-5812b73724a00"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
X-BOA-RequestID: ZZkG_lVbHiglnS5j4fckHQAAAC4
Keep-Alive: timeout=40, max=497
Content-Type: image/png
Strict-Transport-Security: max-age=31536000; includeSubDomains
Content-Security-Policy: script-src 'self' boa-api.arkoselabs.com *.bac-assets.com cdn.cookielaw.org resources.digital-cloud.medallia.com *.livelook.com *.livelook.net *.tiqcdn.com *.bankofamerica.com *.baml.com *.bofa.com *.ml.com *.merrill.com *.merrilledge.com *.mymerrill.com *.ustrust.com *.glance.net *.glancecdn.net *.myglance.net s3.amazonaws.com *.cobrowse.oraclecloud.com *.oraclecloud.com www.google-analytics.com *.convertro.com idsync.rlcdn.com *.coremetrics.com *.brightcove.net *.brightcove.com maps.googleapis.com www.paypalobjects.com anrdoezrs.net cj.dotomi.com cj.com cj.mplxtms.com emjcd.com mczbf.com sjwoe.com secure-cdn.mplxtms.com cdn.mplxtms.com 'unsafe-inline' 'unsafe-eval' blob:; style-src 'self' https: data: blob: *.bac-assets.com *.bankofamerica.com cdn.cookielaw.org *.livelook.com *.livelook.net *.glancecdn.net *.cobrowse.oraclecloud.com *.oraclecloud.com www.google-analytics.com *.convertro.com idsync.rlcdn.com 'unsafe-inline'; worker-src 'self' blob:;
X-Serviced-By: AX3pAD3wQ98DJ/pKLjKcJw==--aezVUaz4qp1BwSkk/z0bdw==
Connection: Keep-Alive
Date: Thu, 11 Jan 2024 19:07:14 GMT
Age: 575
Content-Length: 23389
Server: Oops
cdn.cookielaw.org/logos/9b1b72d0-06ef-4e7c-9b2a-e8bc09f34daf/5a21514a-3b71-4677-b52d-207b6f11ff68/fceb4368-db91-43cf-af24-36ac5b5badc2/BOA.PNG
200 OK 71 kB URL GET HTTP/2 cdn.cookielaw.org/logos/9b1b72d0-06ef-4e7c-9b2a-e8bc09f34daf/5a21514a-3b71-4677-b52d-207b6f11ff68/fceb4368-db91-43cf-af24-36ac5b5badc2/BOA.PNG
IP
Requested by https://secure.bankofamerica.com/login/sign-in/signOnV2Screen.go?reason=digitalcardsettings&version=7.7.0&screen=CardSettings:Home&channel=desktop
Certificate IssuerCloudflare, Inc.
Subjectcookielaw.org
Fingerprint72:BB:48:60:EB:F2:A2:EB:51:29:51:1A:B9:2A:85:30:97:3D:9A:2E
ValiditySat, 01 Apr 2023 00:00:00 GMT - Sun, 31 Mar 2024 23:59:59 GMT
File type PNG image data, 849 x 84, 8-bit/color RGBA, non-interlaced
Hash 8ef07b55c4a1561c9271f57031a51a59
5a9dfd0174d1ba6b8784f928c98379f08cd711af
69d3432300ba1610b3b7b677b5e821630636aae7f61c01e1058158e69701b2d5
GET /logos/9b1b72d0-06ef-4e7c-9b2a-e8bc09f34daf/5a21514a-3b71-4677-b52d-207b6f11ff68/fceb4368-db91-43cf-af24-36ac5b5badc2/BOA.PNG HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://secure.bankofamerica.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 11 Jan 2024 19:07:14 GMT
content-type: image/png
content-length: 71361
content-md5: jvB7VcShVhyScfVwMaUaWQ==
last-modified: Thu, 13 Oct 2022 13:50:15 GMT
etag: 0x8DAAD21DBA3A72F
x-ms-request-id: 9035157e-501e-0040-53d5-123ebb000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: max-age=86400
cf-cache-status: HIT
age: 38378
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 843f710a9d60b521-OSL
X-Firefox-Spdy: h2
secure.bankofamerica.com/pa/components/modules/header-module/2.8/graphic/fsd-secure-esp-sprite.png
200 OK 473 B URL GET HTTP/1.1 secure.bankofamerica.com/pa/components/modules/header-module/2.8/graphic/fsd-secure-esp-sprite.png
IP
Requested by https://secure.bankofamerica.com/login/sign-in/signOnV2Screen.go?reason=digitalcardsettings&version=7.7.0&screen=CardSettings:Home&channel=desktop
Certificate IssuerEntrust, Inc.
Subjectsecure.bankofamerica.com
FingerprintA4:4C:BF:E9:9E:F0:6C:B2:69:51:B7:A2:27:66:72:C3:18:8C:83:BA
ValidityTue, 02 May 2023 12:13:26 GMT - Sun, 02 Jun 2024 12:13:26 GMT
File type PNG image data, 12 x 37, 8-bit/color RGBA, non-interlaced
Hash f6f74792e7ce049e3a26a8a725dba8c8
ca49f42737d7566f1970eba7c437399821a614fb
8c37fb372596058d87dd9208541c49b020d0e840e4f3a5baa27d39be2dc70b01
GET /pa/components/modules/header-module/2.8/graphic/fsd-secure-esp-sprite.png HTTP/1.1
Host: secure.bankofamerica.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://secure.bankofamerica.com/pa/components/bundles/gzip-compressed/xengine/VIPAA/9.7/style/vipaa-v4-jawr.css
Cookie: SPID=Q2S2; SID=0012F376220065A03C60; TS017f5af8=01964db1bd50ce7ad5db9e208d2d782bfb85e4aba553284cd9065e4b73b4f8ce7910d1d5d0c71f8dd7a1c6967c1714761919ab010e; JS_VIPAA=0000fhOx0cT8cIOcOgCAoBvRMrp:1e7brcnjc; BOFA_LOCALE_COOKIE=en-US; check=true; mbox=session#57dcbcff79f64b00b2c6b92b2b9f0cd1#1705001895
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Last-Modified: Tue, 16 Aug 2022 08:48:42 GMT
ETag: "1d9-5e657d0c8c396"
Accept-Ranges: bytes
X-BOA-RequestID: ZZkG_lVbHiglnS5j4fckIwAAAC0
Keep-Alive: timeout=40, max=499
Content-Type: image/png
Strict-Transport-Security: max-age=31536000; includeSubDomains
Content-Security-Policy: script-src 'self' boa-api.arkoselabs.com *.bac-assets.com cdn.cookielaw.org resources.digital-cloud.medallia.com *.livelook.com *.livelook.net *.tiqcdn.com *.bankofamerica.com *.baml.com *.bofa.com *.ml.com *.merrill.com *.merrilledge.com *.mymerrill.com *.ustrust.com *.glance.net *.glancecdn.net *.myglance.net s3.amazonaws.com *.cobrowse.oraclecloud.com *.oraclecloud.com www.google-analytics.com *.convertro.com idsync.rlcdn.com *.coremetrics.com *.brightcove.net *.brightcove.com maps.googleapis.com www.paypalobjects.com anrdoezrs.net cj.dotomi.com cj.com cj.mplxtms.com emjcd.com mczbf.com sjwoe.com secure-cdn.mplxtms.com cdn.mplxtms.com 'unsafe-inline' 'unsafe-eval' blob:; style-src 'self' https: data: blob: *.bac-assets.com *.bankofamerica.com cdn.cookielaw.org *.livelook.com *.livelook.net *.glancecdn.net *.cobrowse.oraclecloud.com *.oraclecloud.com www.google-analytics.com *.convertro.com idsync.rlcdn.com 'unsafe-inline'; worker-src 'self' blob:;
X-Serviced-By: AX3pAD3wQ98DJ/pKLjKcJw==--aezVUaz4qp1BwSkk/z0bdw==
Connection: Keep-Alive
Date: Thu, 11 Jan 2024 19:07:14 GMT
Age: 689
Content-Length: 473
Server: Oops
secure.bankofamerica.com/pa/global-assets/1.0/graphic/help-qm-fsd.png
200 OK 3.2 kB URL GET HTTP/1.1 secure.bankofamerica.com/pa/global-assets/1.0/graphic/help-qm-fsd.png
IP
Requested by https://secure.bankofamerica.com/login/sign-in/signOnV2Screen.go?reason=digitalcardsettings&version=7.7.0&screen=CardSettings:Home&channel=desktop
Certificate IssuerEntrust, Inc.
Subjectsecure.bankofamerica.com
FingerprintA4:4C:BF:E9:9E:F0:6C:B2:69:51:B7:A2:27:66:72:C3:18:8C:83:BA
ValidityTue, 02 May 2023 12:13:26 GMT - Sun, 02 Jun 2024 12:13:26 GMT
File type PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced
Hash a1874bec60e4440a4c0d240ef3d0a385
51e42f8b4483cfe0107394675e20c51acb1adb33
e1ac56ae25629e508f729b799d563d71920902a4cb26cf3bb602beb3e368775e
GET /pa/global-assets/1.0/graphic/help-qm-fsd.png HTTP/1.1
Host: secure.bankofamerica.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://secure.bankofamerica.com/pa/components/bundles/gzip-compressed/xengine/VIPAA/9.7/style/vipaa-v4-jawr.css
Cookie: SPID=Q2S2; SID=0012F376220065A03C60; TS017f5af8=01964db1bd50ce7ad5db9e208d2d782bfb85e4aba553284cd9065e4b73b4f8ce7910d1d5d0c71f8dd7a1c6967c1714761919ab010e; JS_VIPAA=0000fhOx0cT8cIOcOgCAoBvRMrp:1e7brcnjc; BOFA_LOCALE_COOKIE=en-US; check=true; mbox=session#57dcbcff79f64b00b2c6b92b2b9f0cd1#1705001895
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Last-Modified: Tue, 16 Aug 2022 09:03:59 GMT
ETag: "c94-5e658076c55d3"
Accept-Ranges: bytes
Cache-Control: max-age=31536000
Vary: Accept-Encoding
Content-Encoding: gzip
X-BOA-RequestID: ZZkG_lVbHiglnS5j4fckJAAAAHY
Keep-Alive: timeout=40, max=499
Content-Type: image/png
Strict-Transport-Security: max-age=31536000; includeSubDomains
Content-Security-Policy: script-src 'self' boa-api.arkoselabs.com *.bac-assets.com cdn.cookielaw.org resources.digital-cloud.medallia.com *.livelook.com *.livelook.net *.tiqcdn.com *.bankofamerica.com *.baml.com *.bofa.com *.ml.com *.merrill.com *.merrilledge.com *.mymerrill.com *.ustrust.com *.glance.net *.glancecdn.net *.myglance.net s3.amazonaws.com *.cobrowse.oraclecloud.com *.oraclecloud.com www.google-analytics.com *.convertro.com idsync.rlcdn.com *.coremetrics.com *.brightcove.net *.brightcove.com maps.googleapis.com www.paypalobjects.com anrdoezrs.net cj.dotomi.com cj.com cj.mplxtms.com emjcd.com mczbf.com sjwoe.com secure-cdn.mplxtms.com cdn.mplxtms.com 'unsafe-inline' 'unsafe-eval' blob:; style-src 'self' https: data: blob: *.bac-assets.com *.bankofamerica.com cdn.cookielaw.org *.livelook.com *.livelook.net *.glancecdn.net *.cobrowse.oraclecloud.com *.oraclecloud.com www.google-analytics.com *.convertro.com idsync.rlcdn.com 'unsafe-inline'; worker-src 'self' blob:;
X-Serviced-By: AX3pAD3wQ98DJ/pKLjKcJw==--aezVUaz4qp1BwSkk/z0bdw==
Connection: Keep-Alive
Date: Thu, 11 Jan 2024 19:07:14 GMT
Expires: Fri, 10 Jan 2025 19:00:29 GMT
Age: 406
Content-Length: 3243
Server: Oops
secure.bankofamerica.com/pa/global-assets/1.0/graphic/sign-in-sprite.png
200 OK 3.1 kB URL GET HTTP/1.1 secure.bankofamerica.com/pa/global-assets/1.0/graphic/sign-in-sprite.png
IP
Requested by https://secure.bankofamerica.com/login/sign-in/signOnV2Screen.go?reason=digitalcardsettings&version=7.7.0&screen=CardSettings:Home&channel=desktop
Certificate IssuerEntrust, Inc.
Subjectsecure.bankofamerica.com
FingerprintA4:4C:BF:E9:9E:F0:6C:B2:69:51:B7:A2:27:66:72:C3:18:8C:83:BA
ValidityTue, 02 May 2023 12:13:26 GMT - Sun, 02 Jun 2024 12:13:26 GMT
File type PNG image data, 9 x 135, 8-bit/color RGBA, non-interlaced
Hash cdcb0f012c00908030c706b328c6325e
40b1d7c103b08787c7e76ccf00a7174938c18ceb
2a1b1589e316d02ab75481e7aa88c9975afd2e87f17982fb6d38b6ebe2425a4c
GET /pa/global-assets/1.0/graphic/sign-in-sprite.png HTTP/1.1
Host: secure.bankofamerica.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://secure.bankofamerica.com/pa/components/bundles/gzip-compressed/xengine/VIPAA/9.7/style/vipaa-v4-jawr.css
Cookie: SPID=Q2S2; SID=0012F376220065A03C60; TS017f5af8=01964db1bd50ce7ad5db9e208d2d782bfb85e4aba553284cd9065e4b73b4f8ce7910d1d5d0c71f8dd7a1c6967c1714761919ab010e; JS_VIPAA=0000fhOx0cT8cIOcOgCAoBvRMrp:1e7brcnjc; BOFA_LOCALE_COOKIE=en-US; check=true; mbox=session#57dcbcff79f64b00b2c6b92b2b9f0cd1#1705001895
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Last-Modified: Tue, 16 Aug 2022 09:04:08 GMT
ETag: "c2f-5e65807f90d15"
Accept-Ranges: bytes
Cache-Control: max-age=31536000
Vary: Accept-Encoding
Content-Encoding: gzip
X-BOA-RequestID: ZZkG_lVbHiglnS5j4fckJQAAADM
Keep-Alive: timeout=40, max=493
Content-Type: image/png
Strict-Transport-Security: max-age=31536000; includeSubDomains
Content-Security-Policy: script-src 'self' boa-api.arkoselabs.com *.bac-assets.com cdn.cookielaw.org resources.digital-cloud.medallia.com *.livelook.com *.livelook.net *.tiqcdn.com *.bankofamerica.com *.baml.com *.bofa.com *.ml.com *.merrill.com *.merrilledge.com *.mymerrill.com *.ustrust.com *.glance.net *.glancecdn.net *.myglance.net s3.amazonaws.com *.cobrowse.oraclecloud.com *.oraclecloud.com www.google-analytics.com *.convertro.com idsync.rlcdn.com *.coremetrics.com *.brightcove.net *.brightcove.com maps.googleapis.com www.paypalobjects.com anrdoezrs.net cj.dotomi.com cj.com cj.mplxtms.com emjcd.com mczbf.com sjwoe.com secure-cdn.mplxtms.com cdn.mplxtms.com 'unsafe-inline' 'unsafe-eval' blob:; style-src 'self' https: data: blob: *.bac-assets.com *.bankofamerica.com cdn.cookielaw.org *.livelook.com *.livelook.net *.glancecdn.net *.cobrowse.oraclecloud.com *.oraclecloud.com www.google-analytics.com *.convertro.com idsync.rlcdn.com 'unsafe-inline'; worker-src 'self' blob:;
X-Serviced-By: AX3pAD3wQ98DJ/pKLjKcJw==--aezVUaz4qp1BwSkk/z0bdw==
Connection: Keep-Alive
Date: Thu, 11 Jan 2024 19:07:15 GMT
Expires: Fri, 10 Jan 2025 18:56:43 GMT
Age: 633
Content-Length: 3142
Server: Oops
secure.bankofamerica.com/pa/components/modules/global-footer-module/2.5/graphic/gfoot-home-icon.png
200 OK 144 B URL GET HTTP/1.1 secure.bankofamerica.com/pa/components/modules/global-footer-module/2.5/graphic/gfoot-home-icon.png
IP
Requested by https://secure.bankofamerica.com/login/sign-in/signOnV2Screen.go?reason=digitalcardsettings&version=7.7.0&screen=CardSettings:Home&channel=desktop
Certificate IssuerEntrust, Inc.
Subjectsecure.bankofamerica.com
FingerprintA4:4C:BF:E9:9E:F0:6C:B2:69:51:B7:A2:27:66:72:C3:18:8C:83:BA
ValidityTue, 02 May 2023 12:13:26 GMT - Sun, 02 Jun 2024 12:13:26 GMT
File type PNG image data, 14 x 9, 8-bit/color RGBA, non-interlaced
Hash 1f1d3a49189d9ff1e1b99d83e8a36be5
713bfd8a0cc4acb57d41ed3b82c6e601936018e7
a8bc6337547a246ef75d1ae66d7ec8a0ed6171c1ba49804a403124e27c8e8452
GET /pa/components/modules/global-footer-module/2.5/graphic/gfoot-home-icon.png HTTP/1.1
Host: secure.bankofamerica.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://secure.bankofamerica.com/pa/components/bundles/gzip-compressed/xengine/VIPAA/9.7/style/vipaa-v4-jawr.css
Cookie: SPID=Q2S2; SID=0012F376220065A03C60; TS017f5af8=01964db1bd50ce7ad5db9e208d2d782bfb85e4aba553284cd9065e4b73b4f8ce7910d1d5d0c71f8dd7a1c6967c1714761919ab010e; JS_VIPAA=0000fhOx0cT8cIOcOgCAoBvRMrp:1e7brcnjc; BOFA_LOCALE_COOKIE=en-US; check=true; mbox=session#57dcbcff79f64b00b2c6b92b2b9f0cd1#1705001895; cmTPSet=Y
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Last-Modified: Tue, 16 Aug 2022 08:47:37 GMT
ETag: "90-5e657cce98aed"
Accept-Ranges: bytes
X-BOA-RequestID: ZZlNcKleWooJmmWBY8IoIAAAAZo
Keep-Alive: timeout=40, max=499
Content-Type: image/png
Strict-Transport-Security: max-age=31536000; includeSubDomains
Content-Security-Policy: script-src 'self' boa-api.arkoselabs.com *.bac-assets.com cdn.cookielaw.org resources.digital-cloud.medallia.com *.livelook.com *.livelook.net *.tiqcdn.com *.bankofamerica.com *.baml.com *.bofa.com *.ml.com *.merrill.com *.merrilledge.com *.mymerrill.com *.ustrust.com *.glance.net *.glancecdn.net *.myglance.net s3.amazonaws.com *.cobrowse.oraclecloud.com *.oraclecloud.com www.google-analytics.com *.convertro.com idsync.rlcdn.com *.coremetrics.com *.brightcove.net *.brightcove.com maps.googleapis.com www.paypalobjects.com anrdoezrs.net cj.dotomi.com cj.com cj.mplxtms.com emjcd.com mczbf.com sjwoe.com secure-cdn.mplxtms.com cdn.mplxtms.com 'unsafe-inline' 'unsafe-eval' blob:; style-src 'self' https: data: blob: *.bac-assets.com *.bankofamerica.com cdn.cookielaw.org *.livelook.com *.livelook.net *.glancecdn.net *.cobrowse.oraclecloud.com *.oraclecloud.com www.google-analytics.com *.convertro.com idsync.rlcdn.com 'unsafe-inline'; worker-src 'self' blob:;
X-Serviced-By: QYUQE9kfh25oRggdt3sLFw==--2sng8r0d+5l8e+tbCnJt1g==
Connection: Keep-Alive
Date: Thu, 11 Jan 2024 19:07:15 GMT
Age: 569
Content-Length: 144
Server: Oops
secure.bankofamerica.com/pa/components/modules/global-footer-module/2.5/graphic/gfootb-static-sprite.png
200 OK 49 kB URL GET HTTP/1.1 secure.bankofamerica.com/pa/components/modules/global-footer-module/2.5/graphic/gfootb-static-sprite.png
IP
Requested by https://secure.bankofamerica.com/login/sign-in/signOnV2Screen.go?reason=digitalcardsettings&version=7.7.0&screen=CardSettings:Home&channel=desktop
Certificate IssuerEntrust, Inc.
Subjectsecure.bankofamerica.com
FingerprintA4:4C:BF:E9:9E:F0:6C:B2:69:51:B7:A2:27:66:72:C3:18:8C:83:BA
ValidityTue, 02 May 2023 12:13:26 GMT - Sun, 02 Jun 2024 12:13:26 GMT
File type PNG image data, 14 x 50, 8-bit/color RGBA, non-interlaced
Hash fbf368512d6de369ecf24f2778db0aa1
ad621d647f845c66d1780e44e5495e606605c5fa
ca3205c6a4eecfd67ad990b62b10e19f601230a2a5b2791676089e82836763f4
GET /pa/components/modules/global-footer-module/2.5/graphic/gfootb-static-sprite.png HTTP/1.1
Host: secure.bankofamerica.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://secure.bankofamerica.com/pa/components/bundles/gzip-compressed/xengine/VIPAA/9.7/style/vipaa-v4-jawr.css
Cookie: SPID=Q2S2; SID=0012F376220065A03C60; TS017f5af8=01964db1bd50ce7ad5db9e208d2d782bfb85e4aba553284cd9065e4b73b4f8ce7910d1d5d0c71f8dd7a1c6967c1714761919ab010e; JS_VIPAA=0000fhOx0cT8cIOcOgCAoBvRMrp:1e7brcnjc; BOFA_LOCALE_COOKIE=en-US; check=true; mbox=session#57dcbcff79f64b00b2c6b92b2b9f0cd1#1705001895; cmTPSet=Y
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Last-Modified: Tue, 16 Aug 2022 08:47:38 GMT
ETag: "be1b-5e657ccf790c0"
Accept-Ranges: bytes
X-BOA-RequestID: ZZlNcKleWooJmmWBY8IoHAAAAdw
Keep-Alive: timeout=40, max=500
Content-Type: image/png
Strict-Transport-Security: max-age=31536000; includeSubDomains
Content-Security-Policy: script-src 'self' boa-api.arkoselabs.com *.bac-assets.com cdn.cookielaw.org resources.digital-cloud.medallia.com *.livelook.com *.livelook.net *.tiqcdn.com *.bankofamerica.com *.baml.com *.bofa.com *.ml.com *.merrill.com *.merrilledge.com *.mymerrill.com *.ustrust.com *.glance.net *.glancecdn.net *.myglance.net s3.amazonaws.com *.cobrowse.oraclecloud.com *.oraclecloud.com www.google-analytics.com *.convertro.com idsync.rlcdn.com *.coremetrics.com *.brightcove.net *.brightcove.com maps.googleapis.com www.paypalobjects.com anrdoezrs.net cj.dotomi.com cj.com cj.mplxtms.com emjcd.com mczbf.com sjwoe.com secure-cdn.mplxtms.com cdn.mplxtms.com 'unsafe-inline' 'unsafe-eval' blob:; style-src 'self' https: data: blob: *.bac-assets.com *.bankofamerica.com cdn.cookielaw.org *.livelook.com *.livelook.net *.glancecdn.net *.cobrowse.oraclecloud.com *.oraclecloud.com www.google-analytics.com *.convertro.com idsync.rlcdn.com 'unsafe-inline'; worker-src 'self' blob:;
X-Serviced-By: QYUQE9kfh25oRggdt3sLFw==--2sng8r0d+5l8e+tbCnJt1g==
Connection: Keep-Alive
Date: Thu, 11 Jan 2024 19:07:15 GMT
Age: 569
Content-Length: 48667
Server: Oops
ocsp.entrust.net/
1.6 kB IP
Hash 1ad481c44f08e13c1bd1f701b9469841
65c199f8a63b2849b811760f645c928462adf120
0b1521161ca1f8e268a2619f35d44b75758ca391d21ae330d0f840682351528d
POST / HTTP/1.1
Host: ocsp.entrust.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
ETag: "0B1521161CA1F8E268A2619F35D44B75758CA391D21AE330D0F840682351528D"
Last-Modified: Thu, 11 Jan 2024 09:00:00 UTC
Content-Length: 1588
Cache-Control: public, no-transform, must-revalidate, max-age=3576
Expires: Thu, 11 Jan 2024 20:06:51 GMT
Date: Thu, 11 Jan 2024 19:07:15 GMT
Connection: keep-alive
ocsp.entrust.net/
1.6 kB IP
Hash 3cf3fdd937fcd427e3d07a431f064096
73d00e114b07ffe8a1de03f531e0bf8e7d89c19b
231f7bc53d79a8ec5bcddc91b1d0b50a5042e0cde939cfd1ac72131944d0e66d
POST / HTTP/1.1
Host: ocsp.entrust.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
ETag: "231F7BC53D79A8EC5BCDDC91B1D0B50A5042E0CDE939CFD1AC72131944D0E66D"
Last-Modified: Thu, 11 Jan 2024 13:00:00 UTC
Content-Length: 1588
Cache-Control: public, no-transform, must-revalidate, max-age=3583
Expires: Thu, 11 Jan 2024 20:06:58 GMT
Date: Thu, 11 Jan 2024 19:07:15 GMT
Connection: keep-alive
secure.bankofamerica.com/pa/global-assets/1.0/font/cnx-regular/cnx-regular.woff
200 OK 84 kB URL GET HTTP/1.1 secure.bankofamerica.com/pa/global-assets/1.0/font/cnx-regular/cnx-regular.woff
IP
Requested by https://secure.bankofamerica.com/login/sign-in/signOnV2Screen.go?reason=digitalcardsettings&version=7.7.0&screen=CardSettings:Home&channel=desktop
Certificate IssuerEntrust, Inc.
Subjectsecure.bankofamerica.com
FingerprintA4:4C:BF:E9:9E:F0:6C:B2:69:51:B7:A2:27:66:72:C3:18:8C:83:BA
ValidityTue, 02 May 2023 12:13:26 GMT - Sun, 02 Jun 2024 12:13:26 GMT
File type Web Open Font Format, TrueType, length 84472, version 1.0
Hash 6be2608379aa1dcee39359986a09502e
a482b47a282e8160628de2d9cb132f4560f79e04
1172386e1cd9f7fd9d7646df035d93473bbbf19e1b325fc54d9c2aa76e5a7a80
GET /pa/global-assets/1.0/font/cnx-regular/cnx-regular.woff HTTP/1.1
Host: secure.bankofamerica.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://secure.bankofamerica.com/login/sign-in/signOnV2Screen.go?reason=digitalcardsettings&version=7.7.0&screen=CardSettings:Home&channel=desktop
Cookie: SPID=Q2S2; SID=0012F376220065A03C60; TS017f5af8=01964db1bd50ce7ad5db9e208d2d782bfb85e4aba553284cd9065e4b73b4f8ce7910d1d5d0c71f8dd7a1c6967c1714761919ab010e; JS_VIPAA=0000fhOx0cT8cIOcOgCAoBvRMrp:1e7brcnjc; BOFA_LOCALE_COOKIE=en-US; check=true; mbox=session#57dcbcff79f64b00b2c6b92b2b9f0cd1#1705001895; cmTPSet=Y
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Last-Modified: Tue, 16 Aug 2022 09:03:48 GMT
ETag: "149f8-5e65806c87cb8"
Accept-Ranges: bytes
Cache-Control: max-age=31536000
Vary: Accept-Encoding
X-BOA-RequestID: ZZk6yEpQC52wv39_i9oi6AAAAXA
Keep-Alive: timeout=40, max=498
Strict-Transport-Security: max-age=31536000; includeSubDomains
Content-Security-Policy: script-src 'self' boa-api.arkoselabs.com *.bac-assets.com cdn.cookielaw.org resources.digital-cloud.medallia.com *.livelook.com *.livelook.net *.tiqcdn.com *.bankofamerica.com *.baml.com *.bofa.com *.ml.com *.merrill.com *.merrilledge.com *.mymerrill.com *.ustrust.com *.glance.net *.glancecdn.net *.myglance.net s3.amazonaws.com *.cobrowse.oraclecloud.com *.oraclecloud.com www.google-analytics.com *.convertro.com idsync.rlcdn.com *.coremetrics.com *.brightcove.net *.brightcove.com maps.googleapis.com www.paypalobjects.com anrdoezrs.net cj.dotomi.com cj.com cj.mplxtms.com emjcd.com mczbf.com sjwoe.com secure-cdn.mplxtms.com cdn.mplxtms.com 'unsafe-inline' 'unsafe-eval' blob:; style-src 'self' https: data: blob: *.bac-assets.com *.bankofamerica.com cdn.cookielaw.org *.livelook.com *.livelook.net *.glancecdn.net *.cobrowse.oraclecloud.com *.oraclecloud.com www.google-analytics.com *.convertro.com idsync.rlcdn.com 'unsafe-inline'; worker-src 'self' blob:;
X-Serviced-By: yenR36+0EiK6iGwKzPQT9A==--DszZ8KF0NMqbPd6c2Ule3w==
Connection: Keep-Alive
Date: Thu, 11 Jan 2024 19:07:15 GMT
Expires: Fri, 10 Jan 2025 18:58:59 GMT
Age: 497
Content-Length: 84472
Server: Oops
ocsp.entrust.net/
1.6 kB IP
Hash 7090a5275704d0debac9c2d2669d5ac9
29ce04c772ef962137b7d5144b4e21fd21e3ff48
66ffbdfba0cdf355cb03b1f442c1fb4be5562d0c8cf25852f6f98c1b6e90bde7
POST / HTTP/1.1
Host: ocsp.entrust.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
ETag: "66FFBDFBA0CDF355CB03B1F442C1FB4BE5562D0C8CF25852F6F98C1B6E90BDE7"
Last-Modified: Thu, 11 Jan 2024 16:00:00 UTC
Content-Length: 1588
Cache-Control: public, no-transform, must-revalidate, max-age=3567
Expires: Thu, 11 Jan 2024 20:06:42 GMT
Date: Thu, 11 Jan 2024 19:07:15 GMT
Connection: keep-alive
secure.bankofamerica.com/login/sign-in/cc.go
200 OK 38 kB URL GET HTTP/1.1 secure.bankofamerica.com/login/sign-in/cc.go
IP
Requested by https://secure.bankofamerica.com/login/sign-in/signOnV2Screen.go?reason=digitalcardsettings&version=7.7.0&screen=CardSettings:Home&channel=desktop
Certificate IssuerEntrust, Inc.
Subjectsecure.bankofamerica.com
FingerprintA4:4C:BF:E9:9E:F0:6C:B2:69:51:B7:A2:27:66:72:C3:18:8C:83:BA
ValidityTue, 02 May 2023 12:13:26 GMT - Sun, 02 Jun 2024 12:13:26 GMT
File type ASCII text, with very long lines (4984)
Hash 7b3363f980b5bccd9439fd2641305172
5aef2840c26ed6bf8f3d9a4bf8c673733e96beab
cf538924ba9f7633e09e7aeebca96dc78af811f396b4f58d0b9b57c108554156
GET /login/sign-in/cc.go HTTP/1.1
Host: secure.bankofamerica.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/javascript, application/javascript, application/ecmascript, application/x-ecmascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Referer: https://secure.bankofamerica.com/login/sign-in/signOnV2Screen.go?reason=digitalcardsettings&version=7.7.0&screen=CardSettings:Home&channel=desktop
Cookie: SPID=Q2S2; SID=0012F376220065A03C60; TS017f5af8=01964db1bd50ce7ad5db9e208d2d782bfb85e4aba553284cd9065e4b73b4f8ce7910d1d5d0c71f8dd7a1c6967c1714761919ab010e; JS_VIPAA=0000fhOx0cT8cIOcOgCAoBvRMrp:1e7brcnjc; BOFA_LOCALE_COOKIE=en-US; check=true; mbox=session#57dcbcff79f64b00b2c6b92b2b9f0cd1#1705001895; cmTPSet=Y
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 11 Jan 2024 19:07:15 GMT
P3P: CP="CAO IND PHY ONL UNI FIN COM NAV INT DEM CNT STA POL HEA PRE GOV CUR ADM DEV TAI PSA PSD IVAi IVDi CONo TELo OUR SAMi OTRi"
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Pragma: no-cache
Cache-Control: no-cache
Content-Disposition: inline
X-BOA-RequestID: ZaA8Y3mZcyBhfiJbdIf7lwAAAL0
Keep-Alive: timeout=40, max=465
Connection: Keep-Alive
Content-Type: text/text
Content-Language: en-US
Set-Cookie: ccts=V+mTvolDunF7lqP7E6TpB9Ph5bPGb+lTXE6Wt0H1FGLs3ZNaSjLELWHVUTE7CSjp/ADJb/cnG9UzZhOQNJ9hlg==; Path=/; Domain=.bankofamerica.com; Secure; HttpOnly
TS017f5af8=01964db1bd50ce7ad5db9e208d2d782bfb85e4aba553284cd9065e4b73b4f8ce7910d1d5d0c71f8dd7a1c6967c1714761919ab010e; Path=/; Domain=.secure.bankofamerica.com
Strict-Transport-Security: max-age=31536000; includeSubDomains
Content-Security-Policy: script-src 'self' boa-api.arkoselabs.com *.bac-assets.com cdn.cookielaw.org resources.digital-cloud.medallia.com *.livelook.com *.livelook.net *.tiqcdn.com *.bankofamerica.com *.baml.com *.bofa.com *.ml.com *.merrill.com *.merrilledge.com *.mymerrill.com *.ustrust.com *.glance.net *.glancecdn.net *.myglance.net s3.amazonaws.com *.cobrowse.oraclecloud.com *.oraclecloud.com www.google-analytics.com *.convertro.com idsync.rlcdn.com *.coremetrics.com *.brightcove.net *.brightcove.com maps.googleapis.com www.paypalobjects.com anrdoezrs.net cj.dotomi.com cj.com cj.mplxtms.com emjcd.com mczbf.com sjwoe.com secure-cdn.mplxtms.com cdn.mplxtms.com 'unsafe-inline' 'unsafe-eval' blob:; style-src 'self' https: data: blob: *.bac-assets.com *.bankofamerica.com cdn.cookielaw.org *.livelook.com *.livelook.net *.glancecdn.net *.cobrowse.oraclecloud.com *.oraclecloud.com www.google-analytics.com *.convertro.com idsync.rlcdn.com 'unsafe-inline'; worker-src 'self' blob:;
X-Serviced-By: 35azveTP0hvW2ZEhTDzh1A==--REvC4UKxmNlf2WIz9rMPkA==
Transfer-Encoding: chunked
Server: Oops
sofa.bankofamerica.com/eluminate?tid=6&ci=90010394&vn2=e4.0&st=1705000034849&vn1=4.2.7.1BOA&ec=windows-1252&pi=OLB%3ATool%3ASiteKey%3BSign_In&cg=OLB%3ATool%3ASiteKey&rnd=1705007311537&pc=Y&jv=1.5&tz=0&ul=https%3A//secure.bankofamerica.com/login/sign-in/signOnV2Screen.go%3Freason%3Ddigitalcardsettings%26version%3D7.7.0%26screen%3DCardSettings%3AHome%26channel%3Ddesktop
302 Found 0 B URL GET HTTP/1.1 sofa.bankofamerica.com/eluminate?tid=6&ci=90010394&vn2=e4.0&st=1705000034849&vn1=4.2.7.1BOA&ec=windows-1252&pi=OLB%3ATool%3ASiteKey%3BSign_In&cg=OLB%3ATool%3ASiteKey&rnd=1705007311537&pc=Y&jv=1.5&tz=0&ul=https%3A//secure.bankofamerica.com/login/sign-in/signOnV2Screen.go%3Freason%3Ddigitalcardsettings%26version%3D7.7.0%26screen%3DCardSettings%3AHome%26channel%3Ddesktop
IP
Requested by https://secure.bankofamerica.com/login/sign-in/signOnV2Screen.go?reason=digitalcardsettings&version=7.7.0&screen=CardSettings:Home&channel=desktop
Certificate IssuerEntrust, Inc.
Subjectsofa.bankofamerica.com
Fingerprint26:54:B0:CC:86:55:47:09:A1:E5:DD:E7:91:69:11:58:0A:21:00:04
ValidityWed, 11 Oct 2023 13:29:26 GMT - Thu, 10 Oct 2024 13:29:25 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /eluminate?tid=6&ci=90010394&vn2=e4.0&st=1705000034849&vn1=4.2.7.1BOA&ec=windows-1252&pi=OLB%3ATool%3ASiteKey%3BSign_In&cg=OLB%3ATool%3ASiteKey&rnd=1705007311537&pc=Y&jv=1.5&tz=0&ul=https%3A//secure.bankofamerica.com/login/sign-in/signOnV2Screen.go%3Freason%3Ddigitalcardsettings%26version%3D7.7.0%26screen%3DCardSettings%3AHome%26channel%3Ddesktop HTTP/1.1
Host: sofa.bankofamerica.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://secure.bankofamerica.com/
Cookie: SPID=Q2S2; SID=0012F376220065A03C60; BOFA_LOCALE_COOKIE=en-US; check=true; mbox=session#57dcbcff79f64b00b2c6b92b2b9f0cd1#1705001895; cmTPSet=Y
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302 Found
Date: Thu, 11 Jan 2024 19:07:15 GMT
Server: Apache
Vary: Host
Location: /cm?tid=6&ci=90010394&vn2=e4.0&st=1705000034849&vn1=4.2.7.1BOA&ec=windows-1252&pi=OLB%3ATool%3ASiteKey%3BSign_In&cg=OLB%3ATool%3ASiteKey&rnd=1705007311537&pc=Y&jv=1.5&tz=0&ul=https%3A//secure.bankofamerica.com/login/sign-in/signOnV2Screen.go%3Freason%3Ddigitalcardsettings%26version%3D7.7.0%26screen%3DCardSettings%3AHome%26channel%3Ddesktop&cvdone=p
P3P: CP="NON DSP COR CUR ADMo DEVo PSAo PSDo OUR IND ONL UNI PUR COM NAV INT DEM STA"
Set-Cookie: CoreID6=83211705000035178550452; path=/; expires=Mon, 10 Jan 2039 19:07:15 GMT;SameSite=None;Secure
TestSess3=83211705000035178550452;path=/;SameSite=None;Secure
Content-Length: 0
Connection: close
www.bankofamerica.com/pa/global-assets/1.0/graphic/favicon.ico?ts=20151018
429 B URL GET www.bankofamerica.com/pa/global-assets/1.0/graphic/favicon.ico?ts=20151018
IP
Requested by https://secure.bankofamerica.com/login/sign-in/signOnV2Screen.go?reason=digitalcardsettings&version=7.7.0&screen=CardSettings:Home&channel=desktop
Certificate IssuerEntrust, Inc.
Subjectwww.bankofamerica.com
Fingerprint50:47:47:EC:9F:C7:6B:E7:04:60:67:5F:48:63:8F:EA:7A:F5:AF:26
ValidityMon, 31 Jul 2023 17:25:16 GMT - Thu, 29 Aug 2024 17:25:15 GMT
File type MS Windows icon resource - 1 icon, 16x16, 32 bits/pixel
Hash 165d08697e7e0ff31c98209b5195cb2d
ec5a74919d139899a1a74fdcfab9a2087e7fc7ca
1776ec2d36cfe2cab1aeffeb1d8d8eb4ccc53014fb6948c8ab46673df08bd7c0
GET /pa/global-assets/1.0/graphic/favicon.ico?ts=20151018 HTTP/1.1
Host: www.bankofamerica.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://secure.bankofamerica.com/
Cookie: SPID=Q2S2; SID=0012F376220065A03C60; BOFA_LOCALE_COOKIE=en-US; check=true; mbox=session#57dcbcff79f64b00b2c6b92b2b9f0cd1#1705001895; cmTPSet=Y; ccts=V+mTvolDunF7lqP7E6TpB9Ph5bPGb+lTXE6Wt0H1FGLs3ZNaSjLELWHVUTE7CSjp/ADJb/cnG9UzZhOQNJ9hlg==
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 11 Jan 2024 19:07:15 GMT
Last-Modified: Tue, 16 Aug 2022 09:03:59 GMT
ETag: "47e-5e658076a32f3"
Accept-Ranges: bytes
Cache-Control: max-age=31536000
Expires: Fri, 10 Jan 2025 19:07:15 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-BOA-RequestID: ZaA8Y8WfNmKXz7FSggmu9AAAAVc
Content-Length: 429
Keep-Alive: timeout=40, max=494
Connection: Keep-Alive
Content-Type: image/x-icon
X-Serviced-By: /pa/global-assets/1.0/graphic/favicon.ico--qzAJVSp5E8eNTvOUXo1oaw==--tpkj3cL12gsDA3CUtuOejQ==
Set-Cookie: WPID=Q2S2; Path=/; Domain=.bankofamerica.com
TS0126dbc2=0137c545e6f7e663f7ae41a718a2b76c5736b5afc3cbe9a4d96148cafc8846e164ac5024b45c315aeae00f6ed28b3aaa51afcb307b; Path=/; Domain=.www.bankofamerica.com; Secure
Strict-Transport-Security: max-age=31536000; includeSubDomains
Content-Security-Policy: script-src 'self' *.bac-assets.com cdn.cookielaw.org *.livelook.com *.livelook.net *.tiqcdn.com *.bankofamerica.com *.glance.net *.glancecdn.net *.myglance.net s3.amazonaws.com *.cobrowse.oraclecloud.com *.oraclecloud.com www.google-analytics.com *.convertro.com idsync.rlcdn.com *.coremetrics.com *.brightcove.net *.brightcove.com maps.googleapis.com api.boldchat.com anrdoezrs.net cj.dotomi.com cj.com cj.mplxtms.com emjcd.com mczbf.com sjwoe.com secure-cdn.mplxtms.com cdn.mplxtms.com 'unsafe-inline' 'unsafe-eval' blob:; style-src 'self' https: data: blob: *.bac-assets.com *.bankofamerica.com cdn.cookielaw.org *.livelook.com *.livelook.net *.glancecdn.net *.cobrowse.oraclecloud.com *.oraclecloud.com www.google-analytics.com *.convertro.com idsync.rlcdn.com 'unsafe-inline'; worker-src 'self' blob:;
Server: Oops
secure.bankofamerica.com/client/helper/spa-assets/components/utilities/client-helper/authhub-controller/authhub-helper/1.0.0/js/authhub-helper.js
200 OK 512 B URL GET HTTP/1.1 secure.bankofamerica.com/client/helper/spa-assets/components/utilities/client-helper/authhub-controller/authhub-helper/1.0.0/js/authhub-helper.js
IP
Requested by https://secure.bankofamerica.com/login/sign-in/signOnV2Screen.go?reason=digitalcardsettings&version=7.7.0&screen=CardSettings:Home&channel=desktop
Certificate IssuerEntrust, Inc.
Subjectsecure.bankofamerica.com
FingerprintA4:4C:BF:E9:9E:F0:6C:B2:69:51:B7:A2:27:66:72:C3:18:8C:83:BA
ValidityTue, 02 May 2023 12:13:26 GMT - Sun, 02 Jun 2024 12:13:26 GMT
File type ASCII text, with very long lines (1319)
Hash 13e80fd3861714ed2dbe681784c7a9af
ff0fe84050163e394e517c282278078af62774e1
ba007a904083bfdf2cd0a68b1b044ff20654d1f7a83303fe82edb6f0dd3714d4
GET /client/helper/spa-assets/components/utilities/client-helper/authhub-controller/authhub-helper/1.0.0/js/authhub-helper.js HTTP/1.1
Host: secure.bankofamerica.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://secure.bankofamerica.com/login/sign-in/signOnV2Screen.go?reason=digitalcardsettings&version=7.7.0&screen=CardSettings:Home&channel=desktop
Cookie: SPID=Q2S2; SID=0012F376220065A03C60; TS017f5af8=01964db1bd50ce7ad5db9e208d2d782bfb85e4aba553284cd9065e4b73b4f8ce7910d1d5d0c71f8dd7a1c6967c1714761919ab010e; JS_VIPAA=0000fhOx0cT8cIOcOgCAoBvRMrp:1e7brcnjc; BOFA_LOCALE_COOKIE=en-US; check=true; mbox=session#57dcbcff79f64b00b2c6b92b2b9f0cd1#1705001896|PC#57dcbcff79f64b00b2c6b92b2b9f0cd1.37_0#1768244836; cmTPSet=Y; ccts=V+mTvolDunF7lqP7E6TpB9Ph5bPGb+lTXE6Wt0H1FGLs3ZNaSjLELWHVUTE7CSjp/ADJb/cnG9UzZhOQNJ9hlg==; _cc=YjNkZTM0MjYtMzEzOS00NzZi; WPID=Q2S2; LSESSIONID=eyJpIjoiMTN0cGdkZ3VEMkNUbHVFU0dPQzIydz09IiwiZSI6IlpnbWdpcEt1WHFEY3NoSk9TUGVxclVMV1BXTllKdmpYTkdEeHRcL09YdnE0bDBWUEVcLzhWeTJjeUVvcXZRRXBvSVgwVDNNK3JsOEE2QVY2REVqNDJZYnhXdnQyYlBoUmdcL2NQaElSYmtiZ3NIZzdZaHZFXC9VallzR25YK2pTUWVcL0Y5MkNDc2haMkcwYll2RnBqUGZoMkN3PT0ifQ%3D%3D.bf7e6451e703a7a3.OWFhNTFhYmVkNmNiNGY5N2U5YzFlYWVhNTliNWYwZGFlMDU5NGIzNmQxMWVmMGNlNGY3YTE5MGJjMDM2OWIyZg%3D%3D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 11 Jan 2024 19:07:16 GMT
X-Frame-Options: SAMEORIGIN
Last-Modified: Mon, 15 May 2023 14:54:21 GMT
ETag: "554-5fbbca1464170"
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Cache-Control: max-age=26920000, public
Expires: Thu, 11 Jan 2024 19:07:17 GMT
X-BOA-RequestID: ZaA8ZDcz0tEDwK9LzUbR7AAAAWU
Content-Length: 512
Keep-Alive: timeout=40, max=485
Connection: Keep-Alive
Content-Type: application/x-javascript
Set-Cookie: TS017f5af8=01964db1bd50ce7ad5db9e208d2d782bfb85e4aba553284cd9065e4b73b4f8ce7910d1d5d0c71f8dd7a1c6967c1714761919ab010e; Path=/; Domain=.secure.bankofamerica.com
Strict-Transport-Security: max-age=31536000; includeSubDomains
Content-Security-Policy: script-src 'self' boa-api.arkoselabs.com *.bac-assets.com cdn.cookielaw.org resources.digital-cloud.medallia.com *.livelook.com *.livelook.net *.tiqcdn.com *.bankofamerica.com *.baml.com *.bofa.com *.ml.com *.merrill.com *.merrilledge.com *.mymerrill.com *.ustrust.com *.glance.net *.glancecdn.net *.myglance.net s3.amazonaws.com *.cobrowse.oraclecloud.com *.oraclecloud.com www.google-analytics.com *.convertro.com idsync.rlcdn.com *.coremetrics.com *.brightcove.net *.brightcove.com maps.googleapis.com www.paypalobjects.com anrdoezrs.net cj.dotomi.com cj.com cj.mplxtms.com emjcd.com mczbf.com sjwoe.com secure-cdn.mplxtms.com cdn.mplxtms.com 'unsafe-inline' 'unsafe-eval' blob:; style-src 'self' https: data: blob: *.bac-assets.com *.bankofamerica.com cdn.cookielaw.org *.livelook.com *.livelook.net *.glancecdn.net *.cobrowse.oraclecloud.com *.oraclecloud.com www.google-analytics.com *.convertro.com idsync.rlcdn.com 'unsafe-inline'; worker-src 'self' blob:;
X-Serviced-By: 35azveTP0hvW2ZEhTDzh1A==--REvC4UKxmNlf2WIz9rMPkA==
Server: Oops
secure.bankofamerica.com/client/helper/spa-assets/components/utilities/client-helper/script-manager-login/2.0.0/js/script-manager-login.js
200 OK 1.5 kB URL GET HTTP/1.1 secure.bankofamerica.com/client/helper/spa-assets/components/utilities/client-helper/script-manager-login/2.0.0/js/script-manager-login.js
IP
Requested by https://secure.bankofamerica.com/login/sign-in/signOnV2Screen.go?reason=digitalcardsettings&version=7.7.0&screen=CardSettings:Home&channel=desktop
Certificate IssuerEntrust, Inc.
Subjectsecure.bankofamerica.com
FingerprintA4:4C:BF:E9:9E:F0:6C:B2:69:51:B7:A2:27:66:72:C3:18:8C:83:BA
ValidityTue, 02 May 2023 12:13:26 GMT - Sun, 02 Jun 2024 12:13:26 GMT
File type ASCII text, with very long lines (3884)
Hash caee6e112b7376341d724e5a4e051812
4755fc1ee7b1f8339b5957cf3009ccabec257206
825ee09358be8ea30a8db9250736642830ba1a08b7cdfd65f3ec20bef261c742
GET /client/helper/spa-assets/components/utilities/client-helper/script-manager-login/2.0.0/js/script-manager-login.js HTTP/1.1
Host: secure.bankofamerica.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://secure.bankofamerica.com/login/sign-in/signOnV2Screen.go?reason=digitalcardsettings&version=7.7.0&screen=CardSettings:Home&channel=desktop
Cookie: SPID=Q2S2; SID=0012F376220065A03C60; TS017f5af8=01964db1bd50ce7ad5db9e208d2d782bfb85e4aba553284cd9065e4b73b4f8ce7910d1d5d0c71f8dd7a1c6967c1714761919ab010e; JS_VIPAA=0000fhOx0cT8cIOcOgCAoBvRMrp:1e7brcnjc; BOFA_LOCALE_COOKIE=en-US; check=true; mbox=session#57dcbcff79f64b00b2c6b92b2b9f0cd1#1705001896|PC#57dcbcff79f64b00b2c6b92b2b9f0cd1.37_0#1768244836; cmTPSet=Y; ccts=V+mTvolDunF7lqP7E6TpB9Ph5bPGb+lTXE6Wt0H1FGLs3ZNaSjLELWHVUTE7CSjp/ADJb/cnG9UzZhOQNJ9hlg==; _cc=YjNkZTM0MjYtMzEzOS00NzZi; WPID=Q2S2; LSESSIONID=eyJpIjoiMTN0cGdkZ3VEMkNUbHVFU0dPQzIydz09IiwiZSI6IlpnbWdpcEt1WHFEY3NoSk9TUGVxclVMV1BXTllKdmpYTkdEeHRcL09YdnE0bDBWUEVcLzhWeTJjeUVvcXZRRXBvSVgwVDNNK3JsOEE2QVY2REVqNDJZYnhXdnQyYlBoUmdcL2NQaElSYmtiZ3NIZzdZaHZFXC9VallzR25YK2pTUWVcL0Y5MkNDc2haMkcwYll2RnBqUGZoMkN3PT0ifQ%3D%3D.bf7e6451e703a7a3.OWFhNTFhYmVkNmNiNGY5N2U5YzFlYWVhNTliNWYwZGFlMDU5NGIzNmQxMWVmMGNlNGY3YTE5MGJjMDM2OWIyZg%3D%3D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 11 Jan 2024 19:07:16 GMT
X-Frame-Options: SAMEORIGIN
Last-Modified: Sat, 09 Dec 2023 01:18:23 GMT
ETag: "f5f-60c097a1c0f0e"
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Cache-Control: max-age=26920000, public
Expires: Thu, 11 Jan 2024 19:07:17 GMT
X-BOA-RequestID: ZaA8ZHmZcyBhfiJbdIf78wAAAKA
Content-Length: 1492
Keep-Alive: timeout=40, max=463
Connection: Keep-Alive
Content-Type: application/x-javascript
Set-Cookie: TS017f5af8=01964db1bd50ce7ad5db9e208d2d782bfb85e4aba553284cd9065e4b73b4f8ce7910d1d5d0c71f8dd7a1c6967c1714761919ab010e; Path=/; Domain=.secure.bankofamerica.com
Strict-Transport-Security: max-age=31536000; includeSubDomains
Content-Security-Policy: script-src 'self' boa-api.arkoselabs.com *.bac-assets.com cdn.cookielaw.org resources.digital-cloud.medallia.com *.livelook.com *.livelook.net *.tiqcdn.com *.bankofamerica.com *.baml.com *.bofa.com *.ml.com *.merrill.com *.merrilledge.com *.mymerrill.com *.ustrust.com *.glance.net *.glancecdn.net *.myglance.net s3.amazonaws.com *.cobrowse.oraclecloud.com *.oraclecloud.com www.google-analytics.com *.convertro.com idsync.rlcdn.com *.coremetrics.com *.brightcove.net *.brightcove.com maps.googleapis.com www.paypalobjects.com anrdoezrs.net cj.dotomi.com cj.com cj.mplxtms.com emjcd.com mczbf.com sjwoe.com secure-cdn.mplxtms.com cdn.mplxtms.com 'unsafe-inline' 'unsafe-eval' blob:; style-src 'self' https: data: blob: *.bac-assets.com *.bankofamerica.com cdn.cookielaw.org *.livelook.com *.livelook.net *.glancecdn.net *.cobrowse.oraclecloud.com *.oraclecloud.com www.google-analytics.com *.convertro.com idsync.rlcdn.com 'unsafe-inline'; worker-src 'self' blob:;
X-Serviced-By: 35azveTP0hvW2ZEhTDzh1A==--REvC4UKxmNlf2WIz9rMPkA==
Server: Oops
secure.bankofamerica.com/client/helper/spa-assets/components/utilities/client-helper/GIS/ap/1.0.0/js/ap.js
200 OK 1.7 kB URL GET HTTP/1.1 secure.bankofamerica.com/client/helper/spa-assets/components/utilities/client-helper/GIS/ap/1.0.0/js/ap.js
IP
Requested by https://secure.bankofamerica.com/login/sign-in/signOnV2Screen.go?reason=digitalcardsettings&version=7.7.0&screen=CardSettings:Home&channel=desktop
Certificate IssuerEntrust, Inc.
Subjectsecure.bankofamerica.com
FingerprintA4:4C:BF:E9:9E:F0:6C:B2:69:51:B7:A2:27:66:72:C3:18:8C:83:BA
ValidityTue, 02 May 2023 12:13:26 GMT - Sun, 02 Jun 2024 12:13:26 GMT
File type ASCII text, with very long lines (4915)
Hash 2b266983fa37435392d8e31f416e192b
d9f83edc10ebfd455f908f2fad7379a5515d6018
e06e57628e6b61532762d58a957b7ef153526a3b4859361e9584713a72d67358
GET /client/helper/spa-assets/components/utilities/client-helper/GIS/ap/1.0.0/js/ap.js HTTP/1.1
Host: secure.bankofamerica.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://secure.bankofamerica.com/login/sign-in/signOnV2Screen.go?reason=digitalcardsettings&version=7.7.0&screen=CardSettings:Home&channel=desktop
Cookie: SPID=Q2S2; SID=0012F376220065A03C60; TS017f5af8=01964db1bd50ce7ad5db9e208d2d782bfb85e4aba553284cd9065e4b73b4f8ce7910d1d5d0c71f8dd7a1c6967c1714761919ab010e; JS_VIPAA=0000fhOx0cT8cIOcOgCAoBvRMrp:1e7brcnjc; BOFA_LOCALE_COOKIE=en-US; check=true; mbox=session#57dcbcff79f64b00b2c6b92b2b9f0cd1#1705001896|PC#57dcbcff79f64b00b2c6b92b2b9f0cd1.37_0#1768244836; cmTPSet=Y; ccts=V+mTvolDunF7lqP7E6TpB9Ph5bPGb+lTXE6Wt0H1FGLs3ZNaSjLELWHVUTE7CSjp/ADJb/cnG9UzZhOQNJ9hlg==; _cc=YjNkZTM0MjYtMzEzOS00NzZi; WPID=Q2S2; LSESSIONID=eyJpIjoiMTN0cGdkZ3VEMkNUbHVFU0dPQzIydz09IiwiZSI6IlpnbWdpcEt1WHFEY3NoSk9TUGVxclVMV1BXTllKdmpYTkdEeHRcL09YdnE0bDBWUEVcLzhWeTJjeUVvcXZRRXBvSVgwVDNNK3JsOEE2QVY2REVqNDJZYnhXdnQyYlBoUmdcL2NQaElSYmtiZ3NIZzdZaHZFXC9VallzR25YK2pTUWVcL0Y5MkNDc2haMkcwYll2RnBqUGZoMkN3PT0ifQ%3D%3D.bf7e6451e703a7a3.OWFhNTFhYmVkNmNiNGY5N2U5YzFlYWVhNTliNWYwZGFlMDU5NGIzNmQxMWVmMGNlNGY3YTE5MGJjMDM2OWIyZg%3D%3D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 11 Jan 2024 19:07:16 GMT
X-Frame-Options: SAMEORIGIN
Last-Modified: Sat, 09 Dec 2023 01:18:17 GMT
ETag: "1354-60c0979c7d0ac"
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Cache-Control: max-age=26920000, public
Expires: Thu, 11 Jan 2024 19:07:17 GMT
X-BOA-RequestID: ZaA8ZHmZcyBhfiJbdIf8AAAAAN8
Content-Length: 1702
Keep-Alive: timeout=40, max=496
Connection: Keep-Alive
Content-Type: application/x-javascript
Set-Cookie: TS017f5af8=01964db1bd50ce7ad5db9e208d2d782bfb85e4aba553284cd9065e4b73b4f8ce7910d1d5d0c71f8dd7a1c6967c1714761919ab010e; Path=/; Domain=.secure.bankofamerica.com
Strict-Transport-Security: max-age=31536000; includeSubDomains
Content-Security-Policy: script-src 'self' boa-api.arkoselabs.com *.bac-assets.com cdn.cookielaw.org resources.digital-cloud.medallia.com *.livelook.com *.livelook.net *.tiqcdn.com *.bankofamerica.com *.baml.com *.bofa.com *.ml.com *.merrill.com *.merrilledge.com *.mymerrill.com *.ustrust.com *.glance.net *.glancecdn.net *.myglance.net s3.amazonaws.com *.cobrowse.oraclecloud.com *.oraclecloud.com www.google-analytics.com *.convertro.com idsync.rlcdn.com *.coremetrics.com *.brightcove.net *.brightcove.com maps.googleapis.com www.paypalobjects.com anrdoezrs.net cj.dotomi.com cj.com cj.mplxtms.com emjcd.com mczbf.com sjwoe.com secure-cdn.mplxtms.com cdn.mplxtms.com 'unsafe-inline' 'unsafe-eval' blob:; style-src 'self' https: data: blob: *.bac-assets.com *.bankofamerica.com cdn.cookielaw.org *.livelook.com *.livelook.net *.glancecdn.net *.cobrowse.oraclecloud.com *.oraclecloud.com www.google-analytics.com *.convertro.com idsync.rlcdn.com 'unsafe-inline'; worker-src 'self' blob:;
X-Serviced-By: 35azveTP0hvW2ZEhTDzh1A==--REvC4UKxmNlf2WIz9rMPkA==
Server: Oops
secure.bankofamerica.com/client/helper/spa-assets/components/utilities/client-helper/GIS/helper/1.0.0/js/helper.js
200 OK 1.8 kB URL GET HTTP/1.1 secure.bankofamerica.com/client/helper/spa-assets/components/utilities/client-helper/GIS/helper/1.0.0/js/helper.js
IP
Requested by https://secure.bankofamerica.com/login/sign-in/signOnV2Screen.go?reason=digitalcardsettings&version=7.7.0&screen=CardSettings:Home&channel=desktop
Certificate IssuerEntrust, Inc.
Subjectsecure.bankofamerica.com
FingerprintA4:4C:BF:E9:9E:F0:6C:B2:69:51:B7:A2:27:66:72:C3:18:8C:83:BA
ValidityTue, 02 May 2023 12:13:26 GMT - Sun, 02 Jun 2024 12:13:26 GMT
File type ASCII text, with very long lines (5658)
Hash 7370da5190517683a6ce7312e3cf0773
b81f50087d28309967d97d026215b53abade9d1c
55957050a049260a7c7535f1a4eac02c4c31d659319958ce9dbf22e1e9057a2a
GET /client/helper/spa-assets/components/utilities/client-helper/GIS/helper/1.0.0/js/helper.js HTTP/1.1
Host: secure.bankofamerica.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://secure.bankofamerica.com/login/sign-in/signOnV2Screen.go?reason=digitalcardsettings&version=7.7.0&screen=CardSettings:Home&channel=desktop
Cookie: SPID=Q2S2; SID=0012F376220065A03C60; TS017f5af8=01964db1bd50ce7ad5db9e208d2d782bfb85e4aba553284cd9065e4b73b4f8ce7910d1d5d0c71f8dd7a1c6967c1714761919ab010e; JS_VIPAA=0000fhOx0cT8cIOcOgCAoBvRMrp:1e7brcnjc; BOFA_LOCALE_COOKIE=en-US; check=true; mbox=session#57dcbcff79f64b00b2c6b92b2b9f0cd1#1705001896|PC#57dcbcff79f64b00b2c6b92b2b9f0cd1.37_0#1768244836; cmTPSet=Y; ccts=V+mTvolDunF7lqP7E6TpB9Ph5bPGb+lTXE6Wt0H1FGLs3ZNaSjLELWHVUTE7CSjp/ADJb/cnG9UzZhOQNJ9hlg==; _cc=YjNkZTM0MjYtMzEzOS00NzZi; WPID=Q2S2; LSESSIONID=eyJpIjoiMTN0cGdkZ3VEMkNUbHVFU0dPQzIydz09IiwiZSI6IlpnbWdpcEt1WHFEY3NoSk9TUGVxclVMV1BXTllKdmpYTkdEeHRcL09YdnE0bDBWUEVcLzhWeTJjeUVvcXZRRXBvSVgwVDNNK3JsOEE2QVY2REVqNDJZYnhXdnQyYlBoUmdcL2NQaElSYmtiZ3NIZzdZaHZFXC9VallzR25YK2pTUWVcL0Y5MkNDc2haMkcwYll2RnBqUGZoMkN3PT0ifQ%3D%3D.bf7e6451e703a7a3.OWFhNTFhYmVkNmNiNGY5N2U5YzFlYWVhNTliNWYwZGFlMDU5NGIzNmQxMWVmMGNlNGY3YTE5MGJjMDM2OWIyZg%3D%3D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 11 Jan 2024 19:07:16 GMT
X-Frame-Options: SAMEORIGIN
Last-Modified: Sat, 09 Dec 2023 01:18:17 GMT
ETag: "163f-60c0979c80f2d"
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Cache-Control: max-age=26920000, public
Expires: Thu, 11 Jan 2024 19:07:17 GMT
X-BOA-RequestID: ZaA8ZHmZcyBhfiJbdIf8AgAAAOI
Content-Length: 1767
Keep-Alive: timeout=40, max=462
Connection: Keep-Alive
Content-Type: application/x-javascript
Set-Cookie: TS017f5af8=01964db1bd50ce7ad5db9e208d2d782bfb85e4aba553284cd9065e4b73b4f8ce7910d1d5d0c71f8dd7a1c6967c1714761919ab010e; Path=/; Domain=.secure.bankofamerica.com
Strict-Transport-Security: max-age=31536000; includeSubDomains
Content-Security-Policy: script-src 'self' boa-api.arkoselabs.com *.bac-assets.com cdn.cookielaw.org resources.digital-cloud.medallia.com *.livelook.com *.livelook.net *.tiqcdn.com *.bankofamerica.com *.baml.com *.bofa.com *.ml.com *.merrill.com *.merrilledge.com *.mymerrill.com *.ustrust.com *.glance.net *.glancecdn.net *.myglance.net s3.amazonaws.com *.cobrowse.oraclecloud.com *.oraclecloud.com www.google-analytics.com *.convertro.com idsync.rlcdn.com *.coremetrics.com *.brightcove.net *.brightcove.com maps.googleapis.com www.paypalobjects.com anrdoezrs.net cj.dotomi.com cj.com cj.mplxtms.com emjcd.com mczbf.com sjwoe.com secure-cdn.mplxtms.com cdn.mplxtms.com 'unsafe-inline' 'unsafe-eval' blob:; style-src 'self' https: data: blob: *.bac-assets.com *.bankofamerica.com cdn.cookielaw.org *.livelook.com *.livelook.net *.glancecdn.net *.cobrowse.oraclecloud.com *.oraclecloud.com www.google-analytics.com *.convertro.com idsync.rlcdn.com 'unsafe-inline'; worker-src 'self' blob:;
X-Serviced-By: 35azveTP0hvW2ZEhTDzh1A==--REvC4UKxmNlf2WIz9rMPkA==
Server: Oops
secure.bankofamerica.com/login/rest/sas/sparta/v2/iac?dfp=true&_=1705000034751
200 OK 15 kB URL GET HTTP/1.1 secure.bankofamerica.com/login/rest/sas/sparta/v2/iac?dfp=true&_=1705000034751
IP
Requested by https://secure.bankofamerica.com/login/sign-in/signOnV2Screen.go?reason=digitalcardsettings&version=7.7.0&screen=CardSettings:Home&channel=desktop
Certificate IssuerEntrust, Inc.
Subjectsecure.bankofamerica.com
FingerprintA4:4C:BF:E9:9E:F0:6C:B2:69:51:B7:A2:27:66:72:C3:18:8C:83:BA
ValidityTue, 02 May 2023 12:13:26 GMT - Sun, 02 Jun 2024 12:13:26 GMT
File type ASCII text, with very long lines (4984)
Hash f36252bac0ca22f5551615b9963c10a5
6ac0b76fd96f288b38e506d6b6cc86ab21513b05
99d588646669d6f09348a88755fdbf14a512843d1b09bd10802cda97abe3bc52
GET /login/rest/sas/sparta/v2/iac?dfp=true&_=1705000034751 HTTP/1.1
Host: secure.bankofamerica.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
content-type: application/json
cache-control: no-cache
DNT: 1
Connection: keep-alive
Referer: https://secure.bankofamerica.com/login/sign-in/signOnV2Screen.go?reason=digitalcardsettings&version=7.7.0&screen=CardSettings:Home&channel=desktop
Cookie: SPID=Q2S2; SID=0012F376220065A03C60; TS017f5af8=01964db1bd50ce7ad5db9e208d2d782bfb85e4aba553284cd9065e4b73b4f8ce7910d1d5d0c71f8dd7a1c6967c1714761919ab010e; JS_VIPAA=0000fhOx0cT8cIOcOgCAoBvRMrp:1e7brcnjc; BOFA_LOCALE_COOKIE=en-US; check=true; mbox=session#57dcbcff79f64b00b2c6b92b2b9f0cd1#1705001896|PC#57dcbcff79f64b00b2c6b92b2b9f0cd1.37_0#1768244836; cmTPSet=Y; ccts=V+mTvolDunF7lqP7E6TpB9Ph5bPGb+lTXE6Wt0H1FGLs3ZNaSjLELWHVUTE7CSjp/ADJb/cnG9UzZhOQNJ9hlg==; _cc=YjNkZTM0MjYtMzEzOS00NzZi; WPID=Q2S2; LSESSIONID=eyJpIjoiMTN0cGdkZ3VEMkNUbHVFU0dPQzIydz09IiwiZSI6IlpnbWdpcEt1WHFEY3NoSk9TUGVxclVMV1BXTllKdmpYTkdEeHRcL09YdnE0bDBWUEVcLzhWeTJjeUVvcXZRRXBvSVgwVDNNK3JsOEE2QVY2REVqNDJZYnhXdnQyYlBoUmdcL2NQaElSYmtiZ3NIZzdZaHZFXC9VallzR25YK2pTUWVcL0Y5MkNDc2haMkcwYll2RnBqUGZoMkN3PT0ifQ%3D%3D.bf7e6451e703a7a3.OWFhNTFhYmVkNmNiNGY5N2U5YzFlYWVhNTliNWYwZGFlMDU5NGIzNmQxMWVmMGNlNGY3YTE5MGJjMDM2OWIyZg%3D%3D
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
HTTP/1.1 200 OK
Date: Thu, 11 Jan 2024 19:07:16 GMT
Cache-Control: no-cache
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Set-Cookie: CSID=NjNhNjQ3ZGEtYTVkMy00YTQxLWJmNTktZmRhMGI1ZjllY2UxOjE3MDUwMDAwMzYxOTI=; Expires=Thu, 11-Jan-24 20:07:15 GMT; Path=/; Domain=.bankofamerica.com; Secure
ccts=eZNFkpCbWdMywexMkW3gw8ZwTTbsO9OaArVwz+4RWCw3NnxVVCgBlfFnq6T3AJXYJeafidKKGLraRQgybbOVuA==; Path=/; Domain=.bankofamerica.com; Secure; HttpOnly
AHVC=0-7:https://secure2.bac-assets.com/sparta/client/helper/spa-assets/components/utilities/client-helper/behbio/cs/2.0.0/js/cs.js:https://secure2.bac-assets.com/sparta/client/helper/spa-assets/components/utilities/client-helper/behbio/bc/3.0.0/js/bc.js:https://secure2.bac-assets.com/sparta/client/helper/spa-assets/components/utilities/client-helper/behbio/auth/2.0.0/js/auth.js; Path=/; Domain=.bankofamerica.com; Secure
TS017f5af8=01964db1bd50ce7ad5db9e208d2d782bfb85e4aba553284cd9065e4b73b4f8ce7910d1d5d0c71f8dd7a1c6967c1714761919ab010e; Path=/; Domain=.secure.bankofamerica.com
Vary: Accept-Encoding
Content-Encoding: gzip
X-BOA-RequestID: ZaA8ZHmZcyBhfiJbdIf8BwAAAPA
Keep-Alive: timeout=40, max=500
Connection: Keep-Alive
Content-Type: text/plain;charset=utf-8
Content-Language: en-US
Strict-Transport-Security: max-age=31536000; includeSubDomains
Content-Security-Policy: script-src 'self' boa-api.arkoselabs.com *.bac-assets.com cdn.cookielaw.org resources.digital-cloud.medallia.com *.livelook.com *.livelook.net *.tiqcdn.com *.bankofamerica.com *.baml.com *.bofa.com *.ml.com *.merrill.com *.merrilledge.com *.mymerrill.com *.ustrust.com *.glance.net *.glancecdn.net *.myglance.net s3.amazonaws.com *.cobrowse.oraclecloud.com *.oraclecloud.com www.google-analytics.com *.convertro.com idsync.rlcdn.com *.coremetrics.com *.brightcove.net *.brightcove.com maps.googleapis.com www.paypalobjects.com anrdoezrs.net cj.dotomi.com cj.com cj.mplxtms.com emjcd.com mczbf.com sjwoe.com secure-cdn.mplxtms.com cdn.mplxtms.com 'unsafe-inline' 'unsafe-eval' blob:; style-src 'self' https: data: blob: *.bac-assets.com *.bankofamerica.com cdn.cookielaw.org *.livelook.com *.livelook.net *.glancecdn.net *.cobrowse.oraclecloud.com *.oraclecloud.com www.google-analytics.com *.convertro.com idsync.rlcdn.com 'unsafe-inline'; worker-src 'self' blob:;
X-Serviced-By: 35azveTP0hvW2ZEhTDzh1A==--REvC4UKxmNlf2WIz9rMPkA==
Transfer-Encoding: chunked
Server: Oops
ocsp.entrust.net/
1.6 kB IP
Hash 82d2c75330d5ad91549b238be4b1afec
26eb80bb35167fcbf9b63fedc2503100bb8ce492
ae4f51f48f69c171d343953cd37fe85d11b51191d0d05c67932910432a5ea697
POST / HTTP/1.1
Host: ocsp.entrust.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
ETag: "AE4F51F48F69C171D343953CD37FE85D11B51191D0D05C67932910432A5EA697"
Last-Modified: Thu, 11 Jan 2024 07:00:00 UTC
Content-Length: 1588
Cache-Control: public, no-transform, must-revalidate, max-age=3545
Expires: Thu, 11 Jan 2024 20:06:21 GMT
Date: Thu, 11 Jan 2024 19:07:16 GMT
Connection: keep-alive
ocsp.entrust.net/
1.6 kB IP
Hash 95b3802de1122b42c5f5bc699ad9c440
1cee2aeb757c0c80a9a4814b8d91a4d95841cb7d
d60b8a53e4a6a224c7404ead20898afe778c6f15966d62d986b436166e3c5cca
POST / HTTP/1.1
Host: ocsp.entrust.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
ETag: "D60B8A53E4A6A224C7404EAD20898AFE778C6F15966D62D986B436166E3C5CCA"
Last-Modified: Thu, 11 Jan 2024 07:00:00 UTC
Content-Length: 1588
Cache-Control: public, no-transform, must-revalidate, max-age=3587
Expires: Thu, 11 Jan 2024 20:07:03 GMT
Date: Thu, 11 Jan 2024 19:07:16 GMT
Connection: keep-alive
ocsp.entrust.net/
1.6 kB IP
Hash 8440b6021213b27efbbf4b9b6d34ae16
ce1e6c6926f9f5b674fae0f6cdd621ac4919ae79
23476174087766f8e463ee4e4048a66402d03d6f67d777ff7a2edd0ab5270705
POST / HTTP/1.1
Host: ocsp.entrust.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
ETag: "23476174087766F8E463EE4E4048A66402D03D6F67D777FF7A2EDD0AB5270705"
Last-Modified: Thu, 11 Jan 2024 07:00:00 UTC
Content-Length: 1588
Cache-Control: public, no-transform, must-revalidate, max-age=3519
Expires: Thu, 11 Jan 2024 20:05:55 GMT
Date: Thu, 11 Jan 2024 19:07:16 GMT
Connection: keep-alive
sofa.bankofamerica.com/cm?tid=6&ci=90010394&vn2=e4.0&st=1705000034849&vn1=4.2.7.1BOA&ec=windows-1252&pi=OLB%3ATool%3ASiteKey%3BSign_In&cg=OLB%3ATool%3ASiteKey&rnd=1705007311537&pc=Y&jv=1.5&tz=0&ul=https%3A//secure.bankofamerica.com/login/sign-in/signOnV2Screen.go%3Freason%3Ddigitalcardsettings%26version%3D7.7.0%26screen%3DCardSettings%3AHome%26channel%3Ddesktop&cvdone=p
200 OK 43 B URL GET HTTP/1.1 sofa.bankofamerica.com/cm?tid=6&ci=90010394&vn2=e4.0&st=1705000034849&vn1=4.2.7.1BOA&ec=windows-1252&pi=OLB%3ATool%3ASiteKey%3BSign_In&cg=OLB%3ATool%3ASiteKey&rnd=1705007311537&pc=Y&jv=1.5&tz=0&ul=https%3A//secure.bankofamerica.com/login/sign-in/signOnV2Screen.go%3Freason%3Ddigitalcardsettings%26version%3D7.7.0%26screen%3DCardSettings%3AHome%26channel%3Ddesktop&cvdone=p
IP
Requested by https://secure.bankofamerica.com/login/sign-in/signOnV2Screen.go?reason=digitalcardsettings&version=7.7.0&screen=CardSettings:Home&channel=desktop
Certificate IssuerEntrust, Inc.
Subjectsofa.bankofamerica.com
Fingerprint26:54:B0:CC:86:55:47:09:A1:E5:DD:E7:91:69:11:58:0A:21:00:04
ValidityWed, 11 Oct 2023 13:29:26 GMT - Thu, 10 Oct 2024 13:29:25 GMT
File type GIF image data, version 89a, 1 x 1
Hash 55fade2068e7503eae8d7ddf5eb6bd09
317496a096d6c86486a71d4521994bcd171a6bb3
e586a84d8523747f42e510d78e141015b6424cf67d612854e892a7bcedc8ec9e
GET /cm?tid=6&ci=90010394&vn2=e4.0&st=1705000034849&vn1=4.2.7.1BOA&ec=windows-1252&pi=OLB%3ATool%3ASiteKey%3BSign_In&cg=OLB%3ATool%3ASiteKey&rnd=1705007311537&pc=Y&jv=1.5&tz=0&ul=https%3A//secure.bankofamerica.com/login/sign-in/signOnV2Screen.go%3Freason%3Ddigitalcardsettings%26version%3D7.7.0%26screen%3DCardSettings%3AHome%26channel%3Ddesktop&cvdone=p HTTP/1.1
Host: sofa.bankofamerica.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://secure.bankofamerica.com/
DNT: 1
Connection: keep-alive
Cookie: SPID=Q2S2; SID=0012F376220065A03C60; BOFA_LOCALE_COOKIE=en-US; check=true; mbox=session#57dcbcff79f64b00b2c6b92b2b9f0cd1#1705001896|PC#57dcbcff79f64b00b2c6b92b2b9f0cd1.37_0#1768244836; cmTPSet=Y; ccts=V+mTvolDunF7lqP7E6TpB9Ph5bPGb+lTXE6Wt0H1FGLs3ZNaSjLELWHVUTE7CSjp/ADJb/cnG9UzZhOQNJ9hlg==; CoreID6=83211705000035178550452; TestSess3=83211705000035178550452; WPID=Q2S2
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 11 Jan 2024 19:07:16 GMT
Server: Apache
Vary: Host
Expires: Wed, 10 Jan 2024 19:07:16 GMT
Cache-Control: no-cache, no-store, must-revalidate, max-age=0, proxy-revalidate, no-transform, pre-check=0, post-check=0, private
Pragma: no-cache
Content-Length: 43
P3P: CP="NON DSP COR CUR ADMo DEVo PSAo PSDo OUR IND ONL UNI PUR COM NAV INT DEM STA"
Set-Cookie: 90010394_login=1705000036258646690790010394; path=/;SameSite=None;Secure
90010394_reset=1705000036;path=/;SameSite=None;Secure
Connection: close
Content-Type: image/gif
ocsp.entrust.net/
1.6 kB IP
Hash 8440b6021213b27efbbf4b9b6d34ae16
ce1e6c6926f9f5b674fae0f6cdd621ac4919ae79
23476174087766f8e463ee4e4048a66402d03d6f67d777ff7a2edd0ab5270705
POST / HTTP/1.1
Host: ocsp.entrust.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
ETag: "23476174087766F8E463EE4E4048A66402D03D6F67D777FF7A2EDD0AB5270705"
Last-Modified: Thu, 11 Jan 2024 07:00:00 UTC
Content-Length: 1588
Cache-Control: public, no-transform, must-revalidate, max-age=3584
Expires: Thu, 11 Jan 2024 20:07:00 GMT
Date: Thu, 11 Jan 2024 19:07:16 GMT
Connection: keep-alive
secure.bankofamerica.com/login/rest/sas/sparta/ui/event/log
200 OK 20 B URL POST HTTP/1.1 secure.bankofamerica.com/login/rest/sas/sparta/ui/event/log
IP
Requested by https://secure.bankofamerica.com/login/sign-in/signOnV2Screen.go?reason=digitalcardsettings&version=7.7.0&screen=CardSettings:Home&channel=desktop
Certificate IssuerEntrust, Inc.
Subjectsecure.bankofamerica.com
FingerprintA4:4C:BF:E9:9E:F0:6C:B2:69:51:B7:A2:27:66:72:C3:18:8C:83:BA
ValidityTue, 02 May 2023 12:13:26 GMT - Sun, 02 Jun 2024 12:13:26 GMT
Hash 6d290538241f6923cef94b8cf96e4013
f9dcc9a9dfba1f760a7d3248305718ed036d16dc
4a8573eb2407f8a92879c13943afd267534a2e5664708818938d079e8398482a
POST /login/rest/sas/sparta/ui/event/log HTTP/1.1
Host: secure.bankofamerica.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/json
cache-control: no-cache
Content-Length: 314
Origin: https://secure.bankofamerica.com
DNT: 1
Connection: keep-alive
Referer: https://secure.bankofamerica.com/login/sign-in/signOnV2Screen.go?reason=digitalcardsettings&version=7.7.0&screen=CardSettings:Home&channel=desktop
Cookie: SPID=Q2S2; SID=0012F376220065A03C60; TS017f5af8=01964db1bd50ce7ad5db9e208d2d782bfb85e4aba553284cd9065e4b73b4f8ce7910d1d5d0c71f8dd7a1c6967c1714761919ab010e; JS_VIPAA=0000fhOx0cT8cIOcOgCAoBvRMrp:1e7brcnjc; BOFA_LOCALE_COOKIE=en-US; check=true; mbox=session#57dcbcff79f64b00b2c6b92b2b9f0cd1#1705001896|PC#57dcbcff79f64b00b2c6b92b2b9f0cd1.37_0#1768244836; cmTPSet=Y; ccts=eZNFkpCbWdMywexMkW3gw8ZwTTbsO9OaArVwz+4RWCw3NnxVVCgBlfFnq6T3AJXYJeafidKKGLraRQgybbOVuA==; _cc=YjNkZTM0MjYtMzEzOS00NzZi; WPID=Q2S2; LSESSIONID=eyJpIjoiMTN0cGdkZ3VEMkNUbHVFU0dPQzIydz09IiwiZSI6IlpnbWdpcEt1WHFEY3NoSk9TUGVxclVMV1BXTllKdmpYTkdEeHRcL09YdnE0bDBWUEVcLzhWeTJjeUVvcXZRRXBvSVgwVDNNK3JsOEE2QVY2REVqNDJZYnhXdnQyYlBoUmdcL2NQaElSYmtiZ3NIZzdZaHZFXC9VallzR25YK2pTUWVcL0Y5MkNDc2haMkcwYll2RnBqUGZoMkN3PT0ifQ%3D%3D.bf7e6451e703a7a3.OWFhNTFhYmVkNmNiNGY5N2U5YzFlYWVhNTliNWYwZGFlMDU5NGIzNmQxMWVmMGNlNGY3YTE5MGJjMDM2OWIyZg%3D%3D; CSID=NjNhNjQ3ZGEtYTVkMy00YTQxLWJmNTktZmRhMGI1ZjllY2UxOjE3MDUwMDAwMzYxOTI=; AHVC=0-7:https://secure2.bac-assets.com/sparta/client/helper/spa-assets/components/utilities/client-helper/behbio/cs/2.0.0/js/cs.js:https://secure2.bac-assets.com/sparta/client/helper/spa-assets/components/utilities/client-helper/behbio/bc/3.0.0/js/bc.js:https://secure2.bac-assets.com/sparta/client/helper/spa-assets/components/utilities/client-helper/behbio/auth/2.0.0/js/auth.js
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
HTTP/1.1 200 OK
Date: Thu, 11 Jan 2024 19:07:16 GMT
Cache-Control: no-cache,no-store,must-revalidate,max-age=0
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1; mode=block
Accept-Language: en-US
X-BOA-Trace-ID: ZaA8ZHmZcyBhfiJbdIf8HAAAAMo
X-BOA-Session-ID: 0ruADoBoRtaXv1sdk4K9DUyKHwImUFH0Zkh79fXA
X-BOA-RequestID: ZaA8ZHmZcyBhfiJbdIf8HAAAAMo
Keep-Alive: timeout=40, max=442
Connection: Keep-Alive
Content-Type: application/json
Content-Language: en-US
Set-Cookie: GSID=0ruADoBoRtaXv1sdk4K9DUyKHwImUFH0Zkh79fXA; Path=/; Domain=.bankofamerica.com; Secure; HttpOnly
TS017f5af8=01964db1bd50ce7ad5db9e208d2d782bfb85e4aba553284cd9065e4b73b4f8ce7910d1d5d0c71f8dd7a1c6967c1714761919ab010e; Path=/; Domain=.secure.bankofamerica.com
Strict-Transport-Security: max-age=31536000; includeSubDomains
Content-Security-Policy: script-src 'self' boa-api.arkoselabs.com *.bac-assets.com cdn.cookielaw.org resources.digital-cloud.medallia.com *.livelook.com *.livelook.net *.tiqcdn.com *.bankofamerica.com *.baml.com *.bofa.com *.ml.com *.merrill.com *.merrilledge.com *.mymerrill.com *.ustrust.com *.glance.net *.glancecdn.net *.myglance.net s3.amazonaws.com *.cobrowse.oraclecloud.com *.oraclecloud.com www.google-analytics.com *.convertro.com idsync.rlcdn.com *.coremetrics.com *.brightcove.net *.brightcove.com maps.googleapis.com www.paypalobjects.com anrdoezrs.net cj.dotomi.com cj.com cj.mplxtms.com emjcd.com mczbf.com sjwoe.com secure-cdn.mplxtms.com cdn.mplxtms.com 'unsafe-inline' 'unsafe-eval' blob:; style-src 'self' https: data: blob: *.bac-assets.com *.bankofamerica.com cdn.cookielaw.org *.livelook.com *.livelook.net *.glancecdn.net *.cobrowse.oraclecloud.com *.oraclecloud.com www.google-analytics.com *.convertro.com idsync.rlcdn.com 'unsafe-inline'; worker-src 'self' blob:;
Access-Control-Allow-Origin: https://secure.bankofamerica.com
Access-Control-Allow-Credentials: true
Access-Control-Max-Age: 3600
Access-Control-Expose-Headers: SMIDENTITY, Uniq_session_id, device-type, csrfToken, gatewayCSRFToken
X-Serviced-By: 35azveTP0hvW2ZEhTDzh1A==--REvC4UKxmNlf2WIz9rMPkA==
Transfer-Encoding: chunked
Server: Oops
secure.bankofamerica.com/client/helper/spa-assets/components/utilities/client-helper/behbio/vendb/3.0.0/js/vendb.js
200 OK 134 kB URL GET HTTP/1.1 secure.bankofamerica.com/client/helper/spa-assets/components/utilities/client-helper/behbio/vendb/3.0.0/js/vendb.js
IP
Requested by https://secure.bankofamerica.com/login/sign-in/signOnV2Screen.go?reason=digitalcardsettings&version=7.7.0&screen=CardSettings:Home&channel=desktop
Certificate IssuerEntrust, Inc.
Subjectsecure.bankofamerica.com
FingerprintA4:4C:BF:E9:9E:F0:6C:B2:69:51:B7:A2:27:66:72:C3:18:8C:83:BA
ValidityTue, 02 May 2023 12:13:26 GMT - Sun, 02 Jun 2024 12:13:26 GMT
File type ASCII text, with very long lines (65536), with no line terminators
Size 134 kB (133455 bytes)
Hash 11b77e28b1929303c526d34d99a12407
25ed13c759a346a904c362112a4f2b8928a5c080
21d8774346a76334f7f55e9e4a742881cdd6bb5921914e397298d3a21a49c674
GET /client/helper/spa-assets/components/utilities/client-helper/behbio/vendb/3.0.0/js/vendb.js HTTP/1.1
Host: secure.bankofamerica.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://secure.bankofamerica.com/login/sign-in/signOnV2Screen.go?reason=digitalcardsettings&version=7.7.0&screen=CardSettings:Home&channel=desktop
Cookie: SPID=Q2S2; SID=0012F376220065A03C60; TS017f5af8=01964db1bd50ce7ad5db9e208d2d782bfb85e4aba553284cd9065e4b73b4f8ce7910d1d5d0c71f8dd7a1c6967c1714761919ab010e; JS_VIPAA=0000fhOx0cT8cIOcOgCAoBvRMrp:1e7brcnjc; BOFA_LOCALE_COOKIE=en-US; check=true; mbox=session#57dcbcff79f64b00b2c6b92b2b9f0cd1#1705001896|PC#57dcbcff79f64b00b2c6b92b2b9f0cd1.37_0#1768244836; cmTPSet=Y; ccts=V+mTvolDunF7lqP7E6TpB9Ph5bPGb+lTXE6Wt0H1FGLs3ZNaSjLELWHVUTE7CSjp/ADJb/cnG9UzZhOQNJ9hlg==; _cc=YjNkZTM0MjYtMzEzOS00NzZi; WPID=Q2S2; LSESSIONID=eyJpIjoiMTN0cGdkZ3VEMkNUbHVFU0dPQzIydz09IiwiZSI6IlpnbWdpcEt1WHFEY3NoSk9TUGVxclVMV1BXTllKdmpYTkdEeHRcL09YdnE0bDBWUEVcLzhWeTJjeUVvcXZRRXBvSVgwVDNNK3JsOEE2QVY2REVqNDJZYnhXdnQyYlBoUmdcL2NQaElSYmtiZ3NIZzdZaHZFXC9VallzR25YK2pTUWVcL0Y5MkNDc2haMkcwYll2RnBqUGZoMkN3PT0ifQ%3D%3D.bf7e6451e703a7a3.OWFhNTFhYmVkNmNiNGY5N2U5YzFlYWVhNTliNWYwZGFlMDU5NGIzNmQxMWVmMGNlNGY3YTE5MGJjMDM2OWIyZg%3D%3D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 11 Jan 2024 19:07:16 GMT
X-Frame-Options: SAMEORIGIN
Last-Modified: Sat, 09 Dec 2023 01:18:17 GMT
ETag: "c2f2c-60c0979ca68bc"
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Cache-Control: max-age=26920000, public
Expires: Thu, 11 Jan 2024 19:07:17 GMT
X-BOA-RequestID: ZaA8ZDcz0tEDwK9LzUbR8QAAAWM
Keep-Alive: timeout=40, max=483
Connection: Keep-Alive
Content-Type: application/x-javascript
Set-Cookie: TS017f5af8=01964db1bd50ce7ad5db9e208d2d782bfb85e4aba553284cd9065e4b73b4f8ce7910d1d5d0c71f8dd7a1c6967c1714761919ab010e; Path=/; Domain=.secure.bankofamerica.com
Strict-Transport-Security: max-age=31536000; includeSubDomains
Content-Security-Policy: script-src 'self' boa-api.arkoselabs.com *.bac-assets.com cdn.cookielaw.org resources.digital-cloud.medallia.com *.livelook.com *.livelook.net *.tiqcdn.com *.bankofamerica.com *.baml.com *.bofa.com *.ml.com *.merrill.com *.merrilledge.com *.mymerrill.com *.ustrust.com *.glance.net *.glancecdn.net *.myglance.net s3.amazonaws.com *.cobrowse.oraclecloud.com *.oraclecloud.com www.google-analytics.com *.convertro.com idsync.rlcdn.com *.coremetrics.com *.brightcove.net *.brightcove.com maps.googleapis.com www.paypalobjects.com anrdoezrs.net cj.dotomi.com cj.com cj.mplxtms.com emjcd.com mczbf.com sjwoe.com secure-cdn.mplxtms.com cdn.mplxtms.com 'unsafe-inline' 'unsafe-eval' blob:; style-src 'self' https: data: blob: *.bac-assets.com *.bankofamerica.com cdn.cookielaw.org *.livelook.com *.livelook.net *.glancecdn.net *.cobrowse.oraclecloud.com *.oraclecloud.com www.google-analytics.com *.convertro.com idsync.rlcdn.com 'unsafe-inline'; worker-src 'self' blob:;
X-Serviced-By: 35azveTP0hvW2ZEhTDzh1A==--REvC4UKxmNlf2WIz9rMPkA==
Transfer-Encoding: chunked
Server: Oops
secure.bankofamerica.com/login/rest/sas/sparta/ui/event/log
200 OK 20 B URL POST HTTP/1.1 secure.bankofamerica.com/login/rest/sas/sparta/ui/event/log
IP
Requested by https://secure.bankofamerica.com/login/sign-in/signOnV2Screen.go?reason=digitalcardsettings&version=7.7.0&screen=CardSettings:Home&channel=desktop
Certificate IssuerEntrust, Inc.
Subjectsecure.bankofamerica.com
FingerprintA4:4C:BF:E9:9E:F0:6C:B2:69:51:B7:A2:27:66:72:C3:18:8C:83:BA
ValidityTue, 02 May 2023 12:13:26 GMT - Sun, 02 Jun 2024 12:13:26 GMT
Hash 6d290538241f6923cef94b8cf96e4013
f9dcc9a9dfba1f760a7d3248305718ed036d16dc
4a8573eb2407f8a92879c13943afd267534a2e5664708818938d079e8398482a
POST /login/rest/sas/sparta/ui/event/log HTTP/1.1
Host: secure.bankofamerica.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/json
cache-control: no-cache
Content-Length: 316
Origin: https://secure.bankofamerica.com
DNT: 1
Connection: keep-alive
Referer: https://secure.bankofamerica.com/login/sign-in/signOnV2Screen.go?reason=digitalcardsettings&version=7.7.0&screen=CardSettings:Home&channel=desktop
Cookie: SPID=Q2S2; SID=0012F376220065A03C60; TS017f5af8=01964db1bd50ce7ad5db9e208d2d782bfb85e4aba553284cd9065e4b73b4f8ce7910d1d5d0c71f8dd7a1c6967c1714761919ab010e; JS_VIPAA=0000fhOx0cT8cIOcOgCAoBvRMrp:1e7brcnjc; BOFA_LOCALE_COOKIE=en-US; check=true; mbox=session#57dcbcff79f64b00b2c6b92b2b9f0cd1#1705001896|PC#57dcbcff79f64b00b2c6b92b2b9f0cd1.37_0#1768244836; cmTPSet=Y; ccts=eZNFkpCbWdMywexMkW3gw8ZwTTbsO9OaArVwz+4RWCw3NnxVVCgBlfFnq6T3AJXYJeafidKKGLraRQgybbOVuA==; _cc=YjNkZTM0MjYtMzEzOS00NzZi; WPID=Q2S2; LSESSIONID=eyJpIjoiMTN0cGdkZ3VEMkNUbHVFU0dPQzIydz09IiwiZSI6IlpnbWdpcEt1WHFEY3NoSk9TUGVxclVMV1BXTllKdmpYTkdEeHRcL09YdnE0bDBWUEVcLzhWeTJjeUVvcXZRRXBvSVgwVDNNK3JsOEE2QVY2REVqNDJZYnhXdnQyYlBoUmdcL2NQaElSYmtiZ3NIZzdZaHZFXC9VallzR25YK2pTUWVcL0Y5MkNDc2haMkcwYll2RnBqUGZoMkN3PT0ifQ%3D%3D.bf7e6451e703a7a3.OWFhNTFhYmVkNmNiNGY5N2U5YzFlYWVhNTliNWYwZGFlMDU5NGIzNmQxMWVmMGNlNGY3YTE5MGJjMDM2OWIyZg%3D%3D; CSID=NjNhNjQ3ZGEtYTVkMy00YTQxLWJmNTktZmRhMGI1ZjllY2UxOjE3MDUwMDAwMzYxOTI=; AHVC=0-7:https://secure2.bac-assets.com/sparta/client/helper/spa-assets/components/utilities/client-helper/behbio/cs/2.0.0/js/cs.js:https://secure2.bac-assets.com/sparta/client/helper/spa-assets/components/utilities/client-helper/behbio/bc/3.0.0/js/bc.js:https://secure2.bac-assets.com/sparta/client/helper/spa-assets/components/utilities/client-helper/behbio/auth/2.0.0/js/auth.js; GSID=0ruADoBoRtaXv1sdk4K9DUyKHwImUFH0Zkh79fXA
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
HTTP/1.1 200 OK
Date: Thu, 11 Jan 2024 19:07:16 GMT
Cache-Control: no-cache,no-store,must-revalidate,max-age=0
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1; mode=block
Accept-Language: en-US
X-BOA-Trace-ID: ZaA8ZDcz0tEDwK9LzUbR_wAAAV8
X-BOA-Session-ID: 0ruADoBoRtaXv1sdk4K9DUyKHwImUFH0Zkh79fXA
X-BOA-RequestID: ZaA8ZDcz0tEDwK9LzUbR_wAAAV8
Keep-Alive: timeout=40, max=484
Connection: Keep-Alive
Content-Type: application/json
Content-Language: en-US
Set-Cookie: TS017f5af8=01964db1bd50ce7ad5db9e208d2d782bfb85e4aba553284cd9065e4b73b4f8ce7910d1d5d0c71f8dd7a1c6967c1714761919ab010e; Path=/; Domain=.secure.bankofamerica.com
Strict-Transport-Security: max-age=31536000; includeSubDomains
Content-Security-Policy: script-src 'self' boa-api.arkoselabs.com *.bac-assets.com cdn.cookielaw.org resources.digital-cloud.medallia.com *.livelook.com *.livelook.net *.tiqcdn.com *.bankofamerica.com *.baml.com *.bofa.com *.ml.com *.merrill.com *.merrilledge.com *.mymerrill.com *.ustrust.com *.glance.net *.glancecdn.net *.myglance.net s3.amazonaws.com *.cobrowse.oraclecloud.com *.oraclecloud.com www.google-analytics.com *.convertro.com idsync.rlcdn.com *.coremetrics.com *.brightcove.net *.brightcove.com maps.googleapis.com www.paypalobjects.com anrdoezrs.net cj.dotomi.com cj.com cj.mplxtms.com emjcd.com mczbf.com sjwoe.com secure-cdn.mplxtms.com cdn.mplxtms.com 'unsafe-inline' 'unsafe-eval' blob:; style-src 'self' https: data: blob: *.bac-assets.com *.bankofamerica.com cdn.cookielaw.org *.livelook.com *.livelook.net *.glancecdn.net *.cobrowse.oraclecloud.com *.oraclecloud.com www.google-analytics.com *.convertro.com idsync.rlcdn.com 'unsafe-inline'; worker-src 'self' blob:;
Access-Control-Allow-Origin: https://secure.bankofamerica.com
Access-Control-Allow-Credentials: true
Access-Control-Max-Age: 3600
Access-Control-Expose-Headers: SMIDENTITY, Uniq_session_id, device-type, csrfToken, gatewayCSRFToken
X-Serviced-By: 35azveTP0hvW2ZEhTDzh1A==--REvC4UKxmNlf2WIz9rMPkA==
Transfer-Encoding: chunked
Server: Oops
boss.bankofamerica.com/30306/creanza.js
200 OK 36 kB URL GET HTTP/2 boss.bankofamerica.com/30306/creanza.js
IP
Requested by https://secure.bankofamerica.com/login/sign-in/signOnV2Screen.go?reason=digitalcardsettings&version=7.7.0&screen=CardSettings:Home&channel=desktop
Certificate IssuerEntrust, Inc.
Subjectboss.bankofamerica.com
Fingerprint40:24:4E:EE:04:82:75:CD:43:9A:4E:D4:FA:71:BC:01:07:6B:FD:9A
ValidityTue, 11 Apr 2023 18:44:23 GMT - Sat, 11 May 2024 18:44:23 GMT
File type gzip compressed data, max speed, from Unix
Hash 034089716ed1cbe7d9ab4f36d4199cf7
21ba25fad87cb3f74df988fe246944cadc160de8
d8e6fd28e60988a904d8496151c3834acd894d9bda4dbbec8538a524e42f5ed8
GET /30306/creanza.js HTTP/1.1
Host: boss.bankofamerica.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://secure.bankofamerica.com/
Cookie: SPID=Q2S2; SID=0012F376220065A03C60; BOFA_LOCALE_COOKIE=en-US; check=true; mbox=session#57dcbcff79f64b00b2c6b92b2b9f0cd1#1705001896|PC#57dcbcff79f64b00b2c6b92b2b9f0cd1.37_0#1768244836; cmTPSet=Y; ccts=V+mTvolDunF7lqP7E6TpB9Ph5bPGb+lTXE6Wt0H1FGLs3ZNaSjLELWHVUTE7CSjp/ADJb/cnG9UzZhOQNJ9hlg==; WPID=Q2S2; LSESSIONID=eyJpIjoiMTN0cGdkZ3VEMkNUbHVFU0dPQzIydz09IiwiZSI6IlpnbWdpcEt1WHFEY3NoSk9TUGVxclVMV1BXTllKdmpYTkdEeHRcL09YdnE0bDBWUEVcLzhWeTJjeUVvcXZRRXBvSVgwVDNNK3JsOEE2QVY2REVqNDJZYnhXdnQyYlBoUmdcL2NQaElSYmtiZ3NIZzdZaHZFXC9VallzR25YK2pTUWVcL0Y5MkNDc2haMkcwYll2RnBqUGZoMkN3PT0ifQ%3D%3D.bf7e6451e703a7a3.OWFhNTFhYmVkNmNiNGY5N2U5YzFlYWVhNTliNWYwZGFlMDU5NGIzNmQxMWVmMGNlNGY3YTE5MGJjMDM2OWIyZg%3D%3D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 11 Jan 2024 19:07:16 GMT
content-type: application/x-javascript
server: haile
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
x-xss-protection: 1
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
pics-label: (PICS-1.1 "http://www.icra.org/pics/vocabularyv03/" l r (n 0 s 0 v 0 l 0 oa 0 ob 0 oc 0 od 0 oe 0 of 0 og 0 oh 0 c 0) "http://www.icra.org/ratingsv02.html" l r (nz 0 vz 0 lz 0 oz 0 cz 0) "http://www.rsac.org/ratingsv01.html" l r (n 0 s 0 v 0 l 0))
p3p: CP="NOI ADM DEV PSAi COM NAV OUR OTR STP IND DEM"
content-encoding: gzip
X-Firefox-Spdy: h2
dull.bankofamerica.com/boaa/may?h=420be9ec3571aa73f6b9eaae2b6e8975aa67da39e4be93280ef0f597e2b641ad&s=121&ti=0.008&si=1&e=https%3A%2F%2Fsecure.bankofamerica.com&LSESSIONID=eyJpIjoiMTN0cGdkZ3VEMkNUbHVFU0dPQzIydz09IiwiZSI6IlpnbWdpcEt1WHFEY3NoSk9TUGVxclVMV1BXTllKdmpYTkdEeHRcL09YdnE0bDBWUEVcLzhWeTJjeUVvcXZRRXBvSVgwVDNNK3JsOEE2QVY2REVqNDJZYnhXdnQyYlBoUmdcL2NQaElSYmtiZ3NIZzdZaHZFXC9VallzR25YK2pTUWVcL0Y5MkNDc2haMkcwYll2RnBqUGZoMkN3PT0ifQ%3D%3D.bf7e6451e703a7a3.OWFhNTFhYmVkNmNiNGY5N2U5YzFlYWVhNTliNWYwZGFlMDU5NGIzNmQxMWVmMGNlNGY3YTE5MGJjMDM2OWIyZg%3D%3D&t=jsonp&__tp=login&c=isonlytwzkumcpeb&eu=https%3A%2F%2Fsecure.bankofamerica.com%2Flogin%2Fsign-in%2FsignOnV2Screen.go
200 OK 71 B URL GET HTTP/2 dull.bankofamerica.com/boaa/may?h=420be9ec3571aa73f6b9eaae2b6e8975aa67da39e4be93280ef0f597e2b641ad&s=121&ti=0.008&si=1&e=https%3A%2F%2Fsecure.bankofamerica.com&LSESSIONID=eyJpIjoiMTN0cGdkZ3VEMkNUbHVFU0dPQzIydz09IiwiZSI6IlpnbWdpcEt1WHFEY3NoSk9TUGVxclVMV1BXTllKdmpYTkdEeHRcL09YdnE0bDBWUEVcLzhWeTJjeUVvcXZRRXBvSVgwVDNNK3JsOEE2QVY2REVqNDJZYnhXdnQyYlBoUmdcL2NQaElSYmtiZ3NIZzdZaHZFXC9VallzR25YK2pTUWVcL0Y5MkNDc2haMkcwYll2RnBqUGZoMkN3PT0ifQ%3D%3D.bf7e6451e703a7a3.OWFhNTFhYmVkNmNiNGY5N2U5YzFlYWVhNTliNWYwZGFlMDU5NGIzNmQxMWVmMGNlNGY3YTE5MGJjMDM2OWIyZg%3D%3D&t=jsonp&__tp=login&c=isonlytwzkumcpeb&eu=https%3A%2F%2Fsecure.bankofamerica.com%2Flogin%2Fsign-in%2FsignOnV2Screen.go
IP
Requested by https://secure.bankofamerica.com/login/sign-in/signOnV2Screen.go?reason=digitalcardsettings&version=7.7.0&screen=CardSettings:Home&channel=desktop
Certificate IssuerEntrust, Inc.
Subjectdull.bankofamerica.com
Fingerprint06:06:2A:50:7C:50:5E:DA:32:13:4B:7E:FA:B7:22:23:5E:11:7B:86
ValidityTue, 11 Apr 2023 18:44:23 GMT - Sat, 11 May 2024 18:44:23 GMT
File type ASCII text, with no line terminators
Hash 3cd76cc5e6f1daf359d6e2093199d900
baaad56809cc897a324ebbbf73d3c882c8e4bceb
4277a48adde3ec0ddb09990e744250d8da147244458f7050e412a97e4120b023
GET /boaa/may?h=420be9ec3571aa73f6b9eaae2b6e8975aa67da39e4be93280ef0f597e2b641ad&s=121&ti=0.008&si=1&e=https%3A%2F%2Fsecure.bankofamerica.com&LSESSIONID=eyJpIjoiMTN0cGdkZ3VEMkNUbHVFU0dPQzIydz09IiwiZSI6IlpnbWdpcEt1WHFEY3NoSk9TUGVxclVMV1BXTllKdmpYTkdEeHRcL09YdnE0bDBWUEVcLzhWeTJjeUVvcXZRRXBvSVgwVDNNK3JsOEE2QVY2REVqNDJZYnhXdnQyYlBoUmdcL2NQaElSYmtiZ3NIZzdZaHZFXC9VallzR25YK2pTUWVcL0Y5MkNDc2haMkcwYll2RnBqUGZoMkN3PT0ifQ%3D%3D.bf7e6451e703a7a3.OWFhNTFhYmVkNmNiNGY5N2U5YzFlYWVhNTliNWYwZGFlMDU5NGIzNmQxMWVmMGNlNGY3YTE5MGJjMDM2OWIyZg%3D%3D&t=jsonp&__tp=login&c=isonlytwzkumcpeb&eu=https%3A%2F%2Fsecure.bankofamerica.com%2Flogin%2Fsign-in%2FsignOnV2Screen.go HTTP/1.1
Host: dull.bankofamerica.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://secure.bankofamerica.com/
Cookie: SPID=Q2S2; SID=0012F376220065A03C60; BOFA_LOCALE_COOKIE=en-US; check=true; mbox=session#57dcbcff79f64b00b2c6b92b2b9f0cd1#1705001896|PC#57dcbcff79f64b00b2c6b92b2b9f0cd1.37_0#1768244836; cmTPSet=Y; ccts=eZNFkpCbWdMywexMkW3gw8ZwTTbsO9OaArVwz+4RWCw3NnxVVCgBlfFnq6T3AJXYJeafidKKGLraRQgybbOVuA==; WPID=Q2S2; LSESSIONID=eyJpIjoiMTN0cGdkZ3VEMkNUbHVFU0dPQzIydz09IiwiZSI6IlpnbWdpcEt1WHFEY3NoSk9TUGVxclVMV1BXTllKdmpYTkdEeHRcL09YdnE0bDBWUEVcLzhWeTJjeUVvcXZRRXBvSVgwVDNNK3JsOEE2QVY2REVqNDJZYnhXdnQyYlBoUmdcL2NQaElSYmtiZ3NIZzdZaHZFXC9VallzR25YK2pTUWVcL0Y5MkNDc2haMkcwYll2RnBqUGZoMkN3PT0ifQ%3D%3D.bf7e6451e703a7a3.OWFhNTFhYmVkNmNiNGY5N2U5YzFlYWVhNTliNWYwZGFlMDU5NGIzNmQxMWVmMGNlNGY3YTE5MGJjMDM2OWIyZg%3D%3D; CSID=NjNhNjQ3ZGEtYTVkMy00YTQxLWJmNTktZmRhMGI1ZjllY2UxOjE3MDUwMDAwMzYxOTI=; AHVC=0-7:https://secure2.bac-assets.com/sparta/client/helper/spa-assets/components/utilities/client-helper/behbio/cs/2.0.0/js/cs.js:https://secure2.bac-assets.com/sparta/client/helper/spa-assets/components/utilities/client-helper/behbio/bc/3.0.0/js/bc.js:https://secure2.bac-assets.com/sparta/client/helper/spa-assets/components/utilities/client-helper/behbio/auth/2.0.0/js/auth.js; GSID=0ruADoBoRtaXv1sdk4K9DUyKHwImUFH0Zkh79fXA; cdContextId=2; bmuid=1705000036543-322160C1-8097-480A-9B4F-4EC67F550DB8
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 11 Jan 2024 19:07:16 GMT
content-type: text/javascript
content-length: 71
server: haile
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
x-xss-protection: 1
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
pics-label: (PICS-1.1 "http://www.icra.org/pics/vocabularyv03/" l r (n 0 s 0 v 0 l 0 oa 0 ob 0 oc 0 od 0 oe 0 of 0 og 0 oh 0 c 0) "http://www.icra.org/ratingsv02.html" l r (nz 0 vz 0 lz 0 oz 0 cz 0) "http://www.rsac.org/ratingsv01.html" l r (n 0 s 0 v 0 l 0))
p3p: CP="NOI ADM DEV PSAi COM NAV OUR OTR STP IND DEM"
X-Firefox-Spdy: h2
boss.bankofamerica.com/30306/dis4.js
200 OK 36 kB URL GET HTTP/2 boss.bankofamerica.com/30306/dis4.js
IP
Requested by https://secure.bankofamerica.com/login/sign-in/signOnV2Screen.go?reason=digitalcardsettings&version=7.7.0&screen=CardSettings:Home&channel=desktop
Certificate IssuerEntrust, Inc.
Subjectboss.bankofamerica.com
Fingerprint40:24:4E:EE:04:82:75:CD:43:9A:4E:D4:FA:71:BC:01:07:6B:FD:9A
ValidityTue, 11 Apr 2023 18:44:23 GMT - Sat, 11 May 2024 18:44:23 GMT
File type gzip compressed data, max speed, from Unix
Hash 9c44052f07822fb0bde27ccb47dd4325
3f60f2366457c7e41cc045721941d9349ab0f7cc
9a2d116dae3dc48b3d3d20ec98f7eb004b1b65ef13981189a7b1017a11928c69
GET /30306/dis4.js HTTP/1.1
Host: boss.bankofamerica.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://secure.bankofamerica.com/
Cookie: SPID=Q2S2; SID=0012F376220065A03C60; BOFA_LOCALE_COOKIE=en-US; check=true; mbox=session#57dcbcff79f64b00b2c6b92b2b9f0cd1#1705001896|PC#57dcbcff79f64b00b2c6b92b2b9f0cd1.37_0#1768244836; cmTPSet=Y; ccts=V+mTvolDunF7lqP7E6TpB9Ph5bPGb+lTXE6Wt0H1FGLs3ZNaSjLELWHVUTE7CSjp/ADJb/cnG9UzZhOQNJ9hlg==; WPID=Q2S2; LSESSIONID=eyJpIjoiMTN0cGdkZ3VEMkNUbHVFU0dPQzIydz09IiwiZSI6IlpnbWdpcEt1WHFEY3NoSk9TUGVxclVMV1BXTllKdmpYTkdEeHRcL09YdnE0bDBWUEVcLzhWeTJjeUVvcXZRRXBvSVgwVDNNK3JsOEE2QVY2REVqNDJZYnhXdnQyYlBoUmdcL2NQaElSYmtiZ3NIZzdZaHZFXC9VallzR25YK2pTUWVcL0Y5MkNDc2haMkcwYll2RnBqUGZoMkN3PT0ifQ%3D%3D.bf7e6451e703a7a3.OWFhNTFhYmVkNmNiNGY5N2U5YzFlYWVhNTliNWYwZGFlMDU5NGIzNmQxMWVmMGNlNGY3YTE5MGJjMDM2OWIyZg%3D%3D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 11 Jan 2024 19:07:16 GMT
content-type: application/x-javascript
server: haile
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
x-xss-protection: 1
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
pics-label: (PICS-1.1 "http://www.icra.org/pics/vocabularyv03/" l r (n 0 s 0 v 0 l 0 oa 0 ob 0 oc 0 od 0 oe 0 of 0 og 0 oh 0 c 0) "http://www.icra.org/ratingsv02.html" l r (nz 0 vz 0 lz 0 oz 0 cz 0) "http://www.rsac.org/ratingsv01.html" l r (n 0 s 0 v 0 l 0))
p3p: CP="NOI ADM DEV PSAi COM NAV OUR OTR STP IND DEM"
content-encoding: gzip
X-Firefox-Spdy: h2
bup.bankofamerica.com/client/v3.1/web/wup?cid=barbie
200 OK 2.1 kB URL POST HTTP/2 bup.bankofamerica.com/client/v3.1/web/wup?cid=barbie
IP
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Requested by https://secure.bankofamerica.com/login/sign-in/signOnV2Screen.go?reason=digitalcardsettings&version=7.7.0&screen=CardSettings:Home&channel=desktop
Certificate IssuerEntrust, Inc.
Subjectbup.bankofamerica.com
Fingerprint3C:93:13:E9:09:F5:04:93:85:01:C8:D8:E7:E5:B2:E7:16:24:5C:FE
ValidityWed, 20 Sep 2023 17:21:22 GMT - Sat, 12 Oct 2024 17:21:21 GMT
Hash 84ff62ef04c46f3aab9625527db094c0
1a605fd4d95aee4fbcf2ff2a2bdc36322e5e2d60
fd5a6bca7987107efc46fb0d26c2ee50d34b7b85018be0c4057068f5650981ce
POST /client/v3.1/web/wup?cid=barbie HTTP/1.1
Host: bup.bankofamerica.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 172
Origin: https://secure.bankofamerica.com
DNT: 1
Connection: keep-alive
Referer: https://secure.bankofamerica.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/json
content-length: 2104
date: Thu, 11 Jan 2024 19:07:16 GMT
server: uvicorn
access-control-allow-credentials: true
access-control-allow-origin: https://secure.bankofamerica.com
vary: Origin
cache-control: no-cache, no-store
pragma: no-cache
tail-id: 3c4f8d94-5aa8-4183-a498-28c2e8ace593
strict-transport-security: max-age=31536000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-security-policy: default-src 'self'
X-Firefox-Spdy: h2
bup.bankofamerica.com/client/v3.1/web/wup?cid=barbie
200 OK 709 B URL POST HTTP/2 bup.bankofamerica.com/client/v3.1/web/wup?cid=barbie
IP
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Requested by https://secure.bankofamerica.com/login/sign-in/signOnV2Screen.go?reason=digitalcardsettings&version=7.7.0&screen=CardSettings:Home&channel=desktop
Certificate IssuerEntrust, Inc.
Subjectbup.bankofamerica.com
Fingerprint3C:93:13:E9:09:F5:04:93:85:01:C8:D8:E7:E5:B2:E7:16:24:5C:FE
ValidityWed, 20 Sep 2023 17:21:22 GMT - Sat, 12 Oct 2024 17:21:21 GMT
Hash a5a4c2282cae5ae9a8c01b9c8b09a8cd
ae44a10b05fbc1277af736941ef3b436d19bb51e
5e8aea8be99e769c8267a50d03c63531103aedc1a40b10720c9da30b9f08415d
POST /client/v3.1/web/wup?cid=barbie HTTP/1.1
Host: bup.bankofamerica.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 1041
Origin: https://secure.bankofamerica.com
DNT: 1
Connection: keep-alive
Referer: https://secure.bankofamerica.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: application/json
content-length: 709
date: Thu, 11 Jan 2024 19:07:16 GMT
server: uvicorn
access-control-allow-credentials: true
access-control-allow-origin: https://secure.bankofamerica.com
vary: Origin
cache-control: no-cache, no-store
pragma: no-cache
tail-id: dfc3ce1f-f7b3-480d-8285-61775982c3f5
strict-transport-security: max-age=31536000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-security-policy: default-src 'self'
X-Firefox-Spdy: h2
aero.bankofamerica.com/30306/C5ib?d=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%3D&cid=15%2C8&si=0&e=https%3A%2F%2Fsecure.bankofamerica.com&LSESSIONID=eyJpIjoiMTN0cGdkZ3VEMkNUbHVFU0dPQzIydz09IiwiZSI6IlpnbWdpcEt1WHFEY3NoSk9TUGVxclVMV1BXTllKdmpYTkdEeHRcL09YdnE0bDBWUEVcLzhWeTJjeUVvcXZRRXBvSVgwVDNNK3JsOEE2QVY2REVqNDJZYnhXdnQyYlBoUmdcL2NQaElSYmtiZ3NIZzdZaHZFXC9VallzR25YK2pTUWVcL0Y5MkNDc2haMkcwYll2RnBqUGZoMkN3PT0ifQ%3D%3D.bf7e6451e703a7a3.OWFhNTFhYmVkNmNiNGY5N2U5YzFlYWVhNTliNWYwZGFlMDU5NGIzNmQxMWVmMGNlNGY3YTE5MGJjMDM2OWIyZg%3D%3D&t=jsonp&__tp=login&c=pqqssuqzs_ekodtw&eu=https%3A%2F%2Fsecure.bankofamerica.com%2Flogin%2Fsign-in%2FsignOnV2Screen.go
200 OK 168 B URL GET HTTP/2 aero.bankofamerica.com/30306/C5ib?d=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%3D&cid=15%2C8&si=0&e=https%3A%2F%2Fsecure.bankofamerica.com&LSESSIONID=eyJpIjoiMTN0cGdkZ3VEMkNUbHVFU0dPQzIydz09IiwiZSI6IlpnbWdpcEt1WHFEY3NoSk9TUGVxclVMV1BXTllKdmpYTkdEeHRcL09YdnE0bDBWUEVcLzhWeTJjeUVvcXZRRXBvSVgwVDNNK3JsOEE2QVY2REVqNDJZYnhXdnQyYlBoUmdcL2NQaElSYmtiZ3NIZzdZaHZFXC9VallzR25YK2pTUWVcL0Y5MkNDc2haMkcwYll2RnBqUGZoMkN3PT0ifQ%3D%3D.bf7e6451e703a7a3.OWFhNTFhYmVkNmNiNGY5N2U5YzFlYWVhNTliNWYwZGFlMDU5NGIzNmQxMWVmMGNlNGY3YTE5MGJjMDM2OWIyZg%3D%3D&t=jsonp&__tp=login&c=pqqssuqzs_ekodtw&eu=https%3A%2F%2Fsecure.bankofamerica.com%2Flogin%2Fsign-in%2FsignOnV2Screen.go
IP
Requested by https://secure.bankofamerica.com/login/sign-in/signOnV2Screen.go?reason=digitalcardsettings&version=7.7.0&screen=CardSettings:Home&channel=desktop
Certificate IssuerEntrust, Inc.
Subjectaero.bankofamerica.com
FingerprintF1:27:27:34:1C:BC:DA:E8:FD:60:61:CE:02:0A:FC:21:E7:F6:4D:6D
ValidityTue, 11 Apr 2023 18:44:23 GMT - Sat, 11 May 2024 18:44:23 GMT
File type ASCII text, with no line terminators
Hash 34a9d957de454d079f0f0eb95f675e2e
a0ed1837ba85ed87f7f30a15cd469fd876262945
cb391da1c8f4773da7373f046127eb73cc7f70a2db81ca279f62e9f95b57a226
GET /30306/C5ib?d=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%3D&cid=15%2C8&si=0&e=https%3A%2F%2Fsecure.bankofamerica.com&LSESSIONID=eyJpIjoiMTN0cGdkZ3VEMkNUbHVFU0dPQzIydz09IiwiZSI6IlpnbWdpcEt1WHFEY3NoSk9TUGVxclVMV1BXTllKdmpYTkdEeHRcL09YdnE0bDBWUEVcLzhWeTJjeUVvcXZRRXBvSVgwVDNNK3JsOEE2QVY2REVqNDJZYnhXdnQyYlBoUmdcL2NQaElSYmtiZ3NIZzdZaHZFXC9VallzR25YK2pTUWVcL0Y5MkNDc2haMkcwYll2RnBqUGZoMkN3PT0ifQ%3D%3D.bf7e6451e703a7a3.OWFhNTFhYmVkNmNiNGY5N2U5YzFlYWVhNTliNWYwZGFlMDU5NGIzNmQxMWVmMGNlNGY3YTE5MGJjMDM2OWIyZg%3D%3D&t=jsonp&__tp=login&c=pqqssuqzs_ekodtw&eu=https%3A%2F%2Fsecure.bankofamerica.com%2Flogin%2Fsign-in%2FsignOnV2Screen.go HTTP/1.1
Host: aero.bankofamerica.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://secure.bankofamerica.com/
Cookie: SPID=Q2S2; SID=0012F376220065A03C60; BOFA_LOCALE_COOKIE=en-US; check=true; mbox=session#57dcbcff79f64b00b2c6b92b2b9f0cd1#1705001896|PC#57dcbcff79f64b00b2c6b92b2b9f0cd1.37_0#1768244836; cmTPSet=Y; ccts=eZNFkpCbWdMywexMkW3gw8ZwTTbsO9OaArVwz+4RWCw3NnxVVCgBlfFnq6T3AJXYJeafidKKGLraRQgybbOVuA==; WPID=Q2S2; LSESSIONID=eyJpIjoiMTN0cGdkZ3VEMkNUbHVFU0dPQzIydz09IiwiZSI6IlpnbWdpcEt1WHFEY3NoSk9TUGVxclVMV1BXTllKdmpYTkdEeHRcL09YdnE0bDBWUEVcLzhWeTJjeUVvcXZRRXBvSVgwVDNNK3JsOEE2QVY2REVqNDJZYnhXdnQyYlBoUmdcL2NQaElSYmtiZ3NIZzdZaHZFXC9VallzR25YK2pTUWVcL0Y5MkNDc2haMkcwYll2RnBqUGZoMkN3PT0ifQ%3D%3D.bf7e6451e703a7a3.OWFhNTFhYmVkNmNiNGY5N2U5YzFlYWVhNTliNWYwZGFlMDU5NGIzNmQxMWVmMGNlNGY3YTE5MGJjMDM2OWIyZg%3D%3D; CSID=NjNhNjQ3ZGEtYTVkMy00YTQxLWJmNTktZmRhMGI1ZjllY2UxOjE3MDUwMDAwMzYxOTI=; AHVC=0-7:https://secure2.bac-assets.com/sparta/client/helper/spa-assets/components/utilities/client-helper/behbio/cs/2.0.0/js/cs.js:https://secure2.bac-assets.com/sparta/client/helper/spa-assets/components/utilities/client-helper/behbio/bc/3.0.0/js/bc.js:https://secure2.bac-assets.com/sparta/client/helper/spa-assets/components/utilities/client-helper/behbio/auth/2.0.0/js/auth.js; GSID=0ruADoBoRtaXv1sdk4K9DUyKHwImUFH0Zkh79fXA; cdContextId=2; bmuid=1705000036543-322160C1-8097-480A-9B4F-4EC67F550DB8
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 11 Jan 2024 19:07:17 GMT
content-type: text/javascript
content-length: 168
server: haile
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
x-xss-protection: 1
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
pics-label: (PICS-1.1 "http://www.icra.org/pics/vocabularyv03/" l r (n 0 s 0 v 0 l 0 oa 0 ob 0 oc 0 od 0 oe 0 of 0 og 0 oh 0 c 0) "http://www.icra.org/ratingsv02.html" l r (nz 0 vz 0 lz 0 oz 0 cz 0) "http://www.rsac.org/ratingsv01.html" l r (n 0 s 0 v 0 l 0))
p3p: CP="NOI ADM DEV PSAi COM NAV OUR OTR STP IND DEM"
X-Firefox-Spdy: h2
boss.bankofamerica.com/30306/pHAQ?d=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%3D%3D&cid=15%2C28&si=2&e=https%3A%2F%2Fsecure.bankofamerica.com&LSESSIONID=eyJpIjoiMTN0cGdkZ3VEMkNUbHVFU0dPQzIydz09IiwiZSI6IlpnbWdpcEt1WHFEY3NoSk9TUGVxclVMV1BXTllKdmpYTkdEeHRcL09YdnE0bDBWUEVcLzhWeTJjeUVvcXZRRXBvSVgwVDNNK3JsOEE2QVY2REVqNDJZYnhXdnQyYlBoUmdcL2NQaElSYmtiZ3NIZzdZaHZFXC9VallzR25YK2pTUWVcL0Y5MkNDc2haMkcwYll2RnBqUGZoMkN3PT0ifQ%3D%3D.bf7e6451e703a7a3.OWFhNTFhYmVkNmNiNGY5N2U5YzFlYWVhNTliNWYwZGFlMDU5NGIzNmQxMWVmMGNlNGY3YTE5MGJjMDM2OWIyZg%3D%3D&t=jsonp&__tp=login&c=sxrigutldwgxzyuz&eu=https%3A%2F%2Fsecure.bankofamerica.com%2Flogin%2Fsign-in%2FsignOnV2Screen.go
200 OK 169 B URL GET HTTP/2 boss.bankofamerica.com/30306/pHAQ?d=ZW5jZEArVzQ2UTkwTThRd081M0VLcEdLVDFYRE1uMkVSbUx3VmdTQXZZWUdFSnhPZXNmSFNyc2VNT0JqcUVTUmZlN3dmbGx0OGpDeVlVWmQ0T2FpMUF5Yk5PT1dzVHVqR1UrL2ZZdktJMkR1S0pjS2x6T1ZNREF4Ni9FNjJiZHArVWt6MkRiRHdRdzBqYzY5OGxRSTdSWWd2T2NkUkw2UUdya1VvY0RENzdNYTg4V1lpV1RidjZ6djczZENmcTh0TlI5R3Q4RjNGSzNreXVKZnk5cGl1K1BQTyt5bDVWL2U1TVRSbGlDS29NUDBYYkt2MnorVTdRekRpUm44WXlSNWdLWTVXUHF1L29zMVEwbFJPdWprSkhVY1l8MWFhOGM4MTFiOWZlZDkyN2VjYmUwNDQ1M2U2Y2YyOGEyZTFjMzI3MDYyMTY1ZjRlMDk1NDE2NmQ3ZDQzMjMwMTUyMTFkYjU4ZTdjNjlhMzI4M2JkNTAxNGNiM2Y2MmIwODEzNjc1YjAyY2E2ZGRlMWQ0YTY3MGEyMWQyY2IzOTE1ODUyMDdlNGU4ZDkyZTBhOTRmNzNhNjY1Y2RmMDNmNmNlNjBmYmVlODIyOTk0OTIxNDhlMDUyODA5YjQxOWRkZjA2Y2FhY2YzZmE3MjI1MGNjYmUwZDBjNTE3ZTZhMDY0MDY3YzJkNmYyOTg3MzhkMTE0M2NjYjVmZTJmNmU1NGUzYWVjZjUwYmVhYjRkNzY3Y2NkZDBjYzExN2Y3MjgxODFkMTJmZmQ0NzNmMTZlYjVkMDAzZGI1MzEyODdmYmM1YTlkYjc2ZDA5MjVkNDViZjcwZWYwY2FhNGU0YjQ4NzcyOGQ1ZDgwNTU5OTc2OWY5YzQ1MDE5YjdmMDk5YWE2NzA0NGYzZjY4MTdiMmU1OGYxMGI5NGI1MTIwYWU1YTZkMTcxMWM3ODY0MzgxNTIxOWY3OWFmM2E1YWU0Y2U0YTNmOWY3MTkzNGEyMDFkNDY5OTgyMTYxZWRhYTM1OWU4MzlhMDRhOWY4M2U5NDQyNzQ2ODY2NzhiZDI1ODQ2ZjB8MDBlZTBiNjJlY2FhYzg5Zg%3D%3D&cid=15%2C28&si=2&e=https%3A%2F%2Fsecure.bankofamerica.com&LSESSIONID=eyJpIjoiMTN0cGdkZ3VEMkNUbHVFU0dPQzIydz09IiwiZSI6IlpnbWdpcEt1WHFEY3NoSk9TUGVxclVMV1BXTllKdmpYTkdEeHRcL09YdnE0bDBWUEVcLzhWeTJjeUVvcXZRRXBvSVgwVDNNK3JsOEE2QVY2REVqNDJZYnhXdnQyYlBoUmdcL2NQaElSYmtiZ3NIZzdZaHZFXC9VallzR25YK2pTUWVcL0Y5MkNDc2haMkcwYll2RnBqUGZoMkN3PT0ifQ%3D%3D.bf7e6451e703a7a3.OWFhNTFhYmVkNmNiNGY5N2U5YzFlYWVhNTliNWYwZGFlMDU5NGIzNmQxMWVmMGNlNGY3YTE5MGJjMDM2OWIyZg%3D%3D&t=jsonp&__tp=login&c=sxrigutldwgxzyuz&eu=https%3A%2F%2Fsecure.bankofamerica.com%2Flogin%2Fsign-in%2FsignOnV2Screen.go
IP
Requested by https://secure.bankofamerica.com/login/sign-in/signOnV2Screen.go?reason=digitalcardsettings&version=7.7.0&screen=CardSettings:Home&channel=desktop
Certificate IssuerEntrust, Inc.
Subjectboss.bankofamerica.com
Fingerprint40:24:4E:EE:04:82:75:CD:43:9A:4E:D4:FA:71:BC:01:07:6B:FD:9A
ValidityTue, 11 Apr 2023 18:44:23 GMT - Sat, 11 May 2024 18:44:23 GMT
File type ASCII text, with no line terminators
Hash 4223f912ccb5f9e5e627efe5d2c6a160
4cec3dc681a6f6d8a9b488b1fd5c199b7eb880d5
6d9a545c74bf05a868e605438a5d7e11b23d5cd7e64024613df2b07938286961
GET /30306/pHAQ?d=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%3D%3D&cid=15%2C28&si=2&e=https%3A%2F%2Fsecure.bankofamerica.com&LSESSIONID=eyJpIjoiMTN0cGdkZ3VEMkNUbHVFU0dPQzIydz09IiwiZSI6IlpnbWdpcEt1WHFEY3NoSk9TUGVxclVMV1BXTllKdmpYTkdEeHRcL09YdnE0bDBWUEVcLzhWeTJjeUVvcXZRRXBvSVgwVDNNK3JsOEE2QVY2REVqNDJZYnhXdnQyYlBoUmdcL2NQaElSYmtiZ3NIZzdZaHZFXC9VallzR25YK2pTUWVcL0Y5MkNDc2haMkcwYll2RnBqUGZoMkN3PT0ifQ%3D%3D.bf7e6451e703a7a3.OWFhNTFhYmVkNmNiNGY5N2U5YzFlYWVhNTliNWYwZGFlMDU5NGIzNmQxMWVmMGNlNGY3YTE5MGJjMDM2OWIyZg%3D%3D&t=jsonp&__tp=login&c=sxrigutldwgxzyuz&eu=https%3A%2F%2Fsecure.bankofamerica.com%2Flogin%2Fsign-in%2FsignOnV2Screen.go HTTP/1.1
Host: boss.bankofamerica.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://secure.bankofamerica.com/
Cookie: SPID=Q2S2; SID=0012F376220065A03C60; BOFA_LOCALE_COOKIE=en-US; check=true; mbox=session#57dcbcff79f64b00b2c6b92b2b9f0cd1#1705001896|PC#57dcbcff79f64b00b2c6b92b2b9f0cd1.37_0#1768244836; cmTPSet=Y; ccts=eZNFkpCbWdMywexMkW3gw8ZwTTbsO9OaArVwz+4RWCw3NnxVVCgBlfFnq6T3AJXYJeafidKKGLraRQgybbOVuA==; WPID=Q2S2; LSESSIONID=eyJpIjoiMTN0cGdkZ3VEMkNUbHVFU0dPQzIydz09IiwiZSI6IlpnbWdpcEt1WHFEY3NoSk9TUGVxclVMV1BXTllKdmpYTkdEeHRcL09YdnE0bDBWUEVcLzhWeTJjeUVvcXZRRXBvSVgwVDNNK3JsOEE2QVY2REVqNDJZYnhXdnQyYlBoUmdcL2NQaElSYmtiZ3NIZzdZaHZFXC9VallzR25YK2pTUWVcL0Y5MkNDc2haMkcwYll2RnBqUGZoMkN3PT0ifQ%3D%3D.bf7e6451e703a7a3.OWFhNTFhYmVkNmNiNGY5N2U5YzFlYWVhNTliNWYwZGFlMDU5NGIzNmQxMWVmMGNlNGY3YTE5MGJjMDM2OWIyZg%3D%3D; CSID=NjNhNjQ3ZGEtYTVkMy00YTQxLWJmNTktZmRhMGI1ZjllY2UxOjE3MDUwMDAwMzYxOTI=; AHVC=0-7:https://secure2.bac-assets.com/sparta/client/helper/spa-assets/components/utilities/client-helper/behbio/cs/2.0.0/js/cs.js:https://secure2.bac-assets.com/sparta/client/helper/spa-assets/components/utilities/client-helper/behbio/bc/3.0.0/js/bc.js:https://secure2.bac-assets.com/sparta/client/helper/spa-assets/components/utilities/client-helper/behbio/auth/2.0.0/js/auth.js; GSID=0ruADoBoRtaXv1sdk4K9DUyKHwImUFH0Zkh79fXA; cdContextId=2; bmuid=1705000036543-322160C1-8097-480A-9B4F-4EC67F550DB8
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 11 Jan 2024 19:07:17 GMT
content-type: text/javascript
content-length: 169
server: haile
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
x-xss-protection: 1
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
pics-label: (PICS-1.1 "http://www.icra.org/pics/vocabularyv03/" l r (n 0 s 0 v 0 l 0 oa 0 ob 0 oc 0 od 0 oe 0 of 0 og 0 oh 0 c 0) "http://www.icra.org/ratingsv02.html" l r (nz 0 vz 0 lz 0 oz 0 cz 0) "http://www.rsac.org/ratingsv01.html" l r (n 0 s 0 v 0 l 0))
p3p: CP="NOI ADM DEV PSAi COM NAV OUR OTR STP IND DEM"
X-Firefox-Spdy: h2
bup.bankofamerica.com/client/v3.1/web/wup?cid=barbie
200 OK 729 B URL POST HTTP/2 bup.bankofamerica.com/client/v3.1/web/wup?cid=barbie
IP
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Requested by https://secure.bankofamerica.com/login/sign-in/signOnV2Screen.go?reason=digitalcardsettings&version=7.7.0&screen=CardSettings:Home&channel=desktop
Certificate IssuerEntrust, Inc.
Subjectbup.bankofamerica.com
Fingerprint3C:93:13:E9:09:F5:04:93:85:01:C8:D8:E7:E5:B2:E7:16:24:5C:FE
ValidityWed, 20 Sep 2023 17:21:22 GMT - Sat, 12 Oct 2024 17:21:21 GMT
Hash cbd5768b8456e30ea53ff5671c6295f2
8d2c0aba501084176a5dc84617915ad3fca5322a
ed7a812c3a0e2ae032e1a9cc1d14def793b7792db30bbd17618ab555f1ace933
POST /client/v3.1/web/wup?cid=barbie HTTP/1.1
Host: bup.bankofamerica.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 1756
Origin: https://secure.bankofamerica.com
DNT: 1
Connection: keep-alive
Referer: https://secure.bankofamerica.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: application/json
content-length: 729
date: Thu, 11 Jan 2024 19:07:17 GMT
server: uvicorn
access-control-allow-credentials: true
access-control-allow-origin: https://secure.bankofamerica.com
vary: Origin
cache-control: no-cache, no-store
pragma: no-cache
tail-id: d56002e0-af50-4f80-b376-e9640595a035
strict-transport-security: max-age=31536000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-security-policy: default-src 'self'
X-Firefox-Spdy: h2
dull.bankofamerica.com/boaa/may?h=ec4c4c359491151c738fd629984cf647a9d5bddd64fc95cd85a6273fe8ae73bb&s=251&ti=1.461&si=1&e=https%3A%2F%2Fsecure.bankofamerica.com&LSESSIONID=eyJpIjoiMTN0cGdkZ3VEMkNUbHVFU0dPQzIydz09IiwiZSI6IlpnbWdpcEt1WHFEY3NoSk9TUGVxclVMV1BXTllKdmpYTkdEeHRcL09YdnE0bDBWUEVcLzhWeTJjeUVvcXZRRXBvSVgwVDNNK3JsOEE2QVY2REVqNDJZYnhXdnQyYlBoUmdcL2NQaElSYmtiZ3NIZzdZaHZFXC9VallzR25YK2pTUWVcL0Y5MkNDc2haMkcwYll2RnBqUGZoMkN3PT0ifQ%3D%3D.bf7e6451e703a7a3.OWFhNTFhYmVkNmNiNGY5N2U5YzFlYWVhNTliNWYwZGFlMDU5NGIzNmQxMWVmMGNlNGY3YTE5MGJjMDM2OWIyZg%3D%3D&t=jsonp&__tp=login&c=kavyztyclsuowsya&eu=https%3A%2F%2Fsecure.bankofamerica.com%2Flogin%2Fsign-in%2FsignOnV2Screen.go
200 OK 71 B URL GET HTTP/2 dull.bankofamerica.com/boaa/may?h=ec4c4c359491151c738fd629984cf647a9d5bddd64fc95cd85a6273fe8ae73bb&s=251&ti=1.461&si=1&e=https%3A%2F%2Fsecure.bankofamerica.com&LSESSIONID=eyJpIjoiMTN0cGdkZ3VEMkNUbHVFU0dPQzIydz09IiwiZSI6IlpnbWdpcEt1WHFEY3NoSk9TUGVxclVMV1BXTllKdmpYTkdEeHRcL09YdnE0bDBWUEVcLzhWeTJjeUVvcXZRRXBvSVgwVDNNK3JsOEE2QVY2REVqNDJZYnhXdnQyYlBoUmdcL2NQaElSYmtiZ3NIZzdZaHZFXC9VallzR25YK2pTUWVcL0Y5MkNDc2haMkcwYll2RnBqUGZoMkN3PT0ifQ%3D%3D.bf7e6451e703a7a3.OWFhNTFhYmVkNmNiNGY5N2U5YzFlYWVhNTliNWYwZGFlMDU5NGIzNmQxMWVmMGNlNGY3YTE5MGJjMDM2OWIyZg%3D%3D&t=jsonp&__tp=login&c=kavyztyclsuowsya&eu=https%3A%2F%2Fsecure.bankofamerica.com%2Flogin%2Fsign-in%2FsignOnV2Screen.go
IP
Requested by https://secure.bankofamerica.com/login/sign-in/signOnV2Screen.go?reason=digitalcardsettings&version=7.7.0&screen=CardSettings:Home&channel=desktop
Certificate IssuerEntrust, Inc.
Subjectdull.bankofamerica.com
Fingerprint06:06:2A:50:7C:50:5E:DA:32:13:4B:7E:FA:B7:22:23:5E:11:7B:86
ValidityTue, 11 Apr 2023 18:44:23 GMT - Sat, 11 May 2024 18:44:23 GMT
File type ASCII text, with no line terminators
Hash a9113a3374b41b3d976734454082fd1f
e9c03503de7fa5bc05fa2ec7e431640fd1684636
0eb8061429e7c01400bfcf886c267b3d1bf52839a57c35459c2287765e7c41bc
GET /boaa/may?h=ec4c4c359491151c738fd629984cf647a9d5bddd64fc95cd85a6273fe8ae73bb&s=251&ti=1.461&si=1&e=https%3A%2F%2Fsecure.bankofamerica.com&LSESSIONID=eyJpIjoiMTN0cGdkZ3VEMkNUbHVFU0dPQzIydz09IiwiZSI6IlpnbWdpcEt1WHFEY3NoSk9TUGVxclVMV1BXTllKdmpYTkdEeHRcL09YdnE0bDBWUEVcLzhWeTJjeUVvcXZRRXBvSVgwVDNNK3JsOEE2QVY2REVqNDJZYnhXdnQyYlBoUmdcL2NQaElSYmtiZ3NIZzdZaHZFXC9VallzR25YK2pTUWVcL0Y5MkNDc2haMkcwYll2RnBqUGZoMkN3PT0ifQ%3D%3D.bf7e6451e703a7a3.OWFhNTFhYmVkNmNiNGY5N2U5YzFlYWVhNTliNWYwZGFlMDU5NGIzNmQxMWVmMGNlNGY3YTE5MGJjMDM2OWIyZg%3D%3D&t=jsonp&__tp=login&c=kavyztyclsuowsya&eu=https%3A%2F%2Fsecure.bankofamerica.com%2Flogin%2Fsign-in%2FsignOnV2Screen.go HTTP/1.1
Host: dull.bankofamerica.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://secure.bankofamerica.com/
Cookie: SPID=Q2S2; SID=0012F376220065A03C60; BOFA_LOCALE_COOKIE=en-US; check=true; mbox=session#57dcbcff79f64b00b2c6b92b2b9f0cd1#1705001896|PC#57dcbcff79f64b00b2c6b92b2b9f0cd1.37_0#1768244836; cmTPSet=Y; ccts=eZNFkpCbWdMywexMkW3gw8ZwTTbsO9OaArVwz+4RWCw3NnxVVCgBlfFnq6T3AJXYJeafidKKGLraRQgybbOVuA==; WPID=Q2S2; LSESSIONID=eyJpIjoiMTN0cGdkZ3VEMkNUbHVFU0dPQzIydz09IiwiZSI6IlpnbWdpcEt1WHFEY3NoSk9TUGVxclVMV1BXTllKdmpYTkdEeHRcL09YdnE0bDBWUEVcLzhWeTJjeUVvcXZRRXBvSVgwVDNNK3JsOEE2QVY2REVqNDJZYnhXdnQyYlBoUmdcL2NQaElSYmtiZ3NIZzdZaHZFXC9VallzR25YK2pTUWVcL0Y5MkNDc2haMkcwYll2RnBqUGZoMkN3PT0ifQ%3D%3D.bf7e6451e703a7a3.OWFhNTFhYmVkNmNiNGY5N2U5YzFlYWVhNTliNWYwZGFlMDU5NGIzNmQxMWVmMGNlNGY3YTE5MGJjMDM2OWIyZg%3D%3D; CSID=NjNhNjQ3ZGEtYTVkMy00YTQxLWJmNTktZmRhMGI1ZjllY2UxOjE3MDUwMDAwMzYxOTI=; AHVC=0-7:https://secure2.bac-assets.com/sparta/client/helper/spa-assets/components/utilities/client-helper/behbio/cs/2.0.0/js/cs.js:https://secure2.bac-assets.com/sparta/client/helper/spa-assets/components/utilities/client-helper/behbio/bc/3.0.0/js/bc.js:https://secure2.bac-assets.com/sparta/client/helper/spa-assets/components/utilities/client-helper/behbio/auth/2.0.0/js/auth.js; GSID=0ruADoBoRtaXv1sdk4K9DUyKHwImUFH0Zkh79fXA; cdContextId=2; bmuid=1705000036543-322160C1-8097-480A-9B4F-4EC67F550DB8; cdSNum=1705000037167-sjn0000086-8f60fa08-78d2-4c5a-acaa-619b3ef9de20; __gdic=lr9l00oi3jzzvulke56; ___r30306=0.2944434484247
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 11 Jan 2024 19:07:18 GMT
content-type: text/javascript
content-length: 71
server: haile
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
x-xss-protection: 1
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
pics-label: (PICS-1.1 "http://www.icra.org/pics/vocabularyv03/" l r (n 0 s 0 v 0 l 0 oa 0 ob 0 oc 0 od 0 oe 0 of 0 og 0 oh 0 c 0) "http://www.icra.org/ratingsv02.html" l r (nz 0 vz 0 lz 0 oz 0 cz 0) "http://www.rsac.org/ratingsv01.html" l r (n 0 s 0 v 0 l 0))
p3p: CP="NOI ADM DEV PSAi COM NAV OUR OTR STP IND DEM"
X-Firefox-Spdy: h2
status.geotrust.com/
471 B IP
Hash 9c1d80d6064045b3d3055f03f2bc4a62
221a052e4ce93fc38f0f74d0e4012f2f95dd188d
0f4527e4a80e80efeab9fa14e53bfc0323807361ee8c2e41b223ef0ab2410788
POST / HTTP/1.1
Host: status.geotrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1397
Cache-Control: max-age=7200
Content-Type: application/ocsp-response
Date: Thu, 11 Jan 2024 19:07:18 GMT
Last-Modified: Thu, 11 Jan 2024 18:44:01 GMT
Server: ECAcc (amb/6B38)
X-Cache: HIT
Content-Length: 471
aero.bankofamerica.com/30306/C5ib?d=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%3D%3D&cid=13&si=0&e=https%3A%2F%2Fsecure.bankofamerica.com&LSESSIONID=eyJpIjoiMTN0cGdkZ3VEMkNUbHVFU0dPQzIydz09IiwiZSI6IlpnbWdpcEt1WHFEY3NoSk9TUGVxclVMV1BXTllKdmpYTkdEeHRcL09YdnE0bDBWUEVcLzhWeTJjeUVvcXZRRXBvSVgwVDNNK3JsOEE2QVY2REVqNDJZYnhXdnQyYlBoUmdcL2NQaElSYmtiZ3NIZzdZaHZFXC9VallzR25YK2pTUWVcL0Y5MkNDc2haMkcwYll2RnBqUGZoMkN3PT0ifQ%3D%3D.bf7e6451e703a7a3.OWFhNTFhYmVkNmNiNGY5N2U5YzFlYWVhNTliNWYwZGFlMDU5NGIzNmQxMWVmMGNlNGY3YTE5MGJjMDM2OWIyZg%3D%3D&t=jsonp&__tp=login&c=xev_qsurnoqbpdow&eu=https%3A%2F%2Fsecure.bankofamerica.com%2Flogin%2Fsign-in%2FsignOnV2Screen.go
200 OK 159 B URL GET HTTP/2 aero.bankofamerica.com/30306/C5ib?d=ZW5jZEBqSUJxUW1XSGttR3VmZFFuQ1NxRG5DS0tRRWNzNXFVRVBpNEhDNXZER2dnMFJtSENtM3dhYU5Gcyt2MTNSUlZ4YXBKRVRRQ1ZXd1FHc0dsSnhjNGFqNjlud0NPcHRzbGN4SkpPRXpoK2crcWZ6NC84cGE1b0QvRVlsMDRPK09BdHpJaVlyU1NZVVRWcmhGbWhFdXRtaWU5K3pKc3hmK3NhMXRpWldtZjZORkpRczBJOHdSYzh8YTIyMWJhNzFiNGM2OTBjZjViYjFhOTdmZmQ0N2IyNGExNmViM2NkMjYzNjNmZGEyYWZlZDg4MTQ0YmZkNmRhODc1MmQ2OWEyM2VlYmEwY2Q5MzY0Zjg0MjFlMmJiNTNmZDE3YmMzZWY2ODAzZDQ3ZjJkMzAzYjhlYWRlNDYxOTIwNmQ2MGNiYWYwYTM5MmM0ZDlmMjg2ZjIwYTZkNjQ2ZjhkMDNiNGYwMDg1Yzk1MWQ5MzEwNTkyYjliNTc2MDUzOTUzNjZmZmIyNWU4N2Q4N2NkOWMyN2JkZDE2NjE5ZGI2MmExMjY4OTU0Nzk2NTBkNGFjNzE2YWUyMTA3MWIyMjc2MjA3YWZiYmQzZDAwOWI5MDFkYjc3YTU4ODJmYzk5ZjE5YzlmN2NkYmJjODk2M2NiMzE0MzMwYTIwOTdiN2Q5ZmQ2ZDQwOTBjM2Y1MjZjMTNhZTE5MGIyN2IzNmM2MjA5OGYzZjQ4ODJhMDRiY2FkOTgyMTY5NWI2ODgzY2Y5ZjYwY2FlZDg5MzNiM2M3YzA3MTdlMjA3ODczYWEzYmFhMTVjN2RhMzE0ZWVmYTU3ZDI4NGRmN2IwNjMzNDY2Y2UyYzViMTNlZmNjMTA5ZWU0NTYzNWUyYTZiMTYwNjFlOTgyNDlmZDUxN2ZjYWZlOWExOTUwZjYxNWUzMDQ3Nzd8MDBlZTBiNjJlY2FhYzg5Zg%3D%3D&cid=13&si=0&e=https%3A%2F%2Fsecure.bankofamerica.com&LSESSIONID=eyJpIjoiMTN0cGdkZ3VEMkNUbHVFU0dPQzIydz09IiwiZSI6IlpnbWdpcEt1WHFEY3NoSk9TUGVxclVMV1BXTllKdmpYTkdEeHRcL09YdnE0bDBWUEVcLzhWeTJjeUVvcXZRRXBvSVgwVDNNK3JsOEE2QVY2REVqNDJZYnhXdnQyYlBoUmdcL2NQaElSYmtiZ3NIZzdZaHZFXC9VallzR25YK2pTUWVcL0Y5MkNDc2haMkcwYll2RnBqUGZoMkN3PT0ifQ%3D%3D.bf7e6451e703a7a3.OWFhNTFhYmVkNmNiNGY5N2U5YzFlYWVhNTliNWYwZGFlMDU5NGIzNmQxMWVmMGNlNGY3YTE5MGJjMDM2OWIyZg%3D%3D&t=jsonp&__tp=login&c=xev_qsurnoqbpdow&eu=https%3A%2F%2Fsecure.bankofamerica.com%2Flogin%2Fsign-in%2FsignOnV2Screen.go
IP
Requested by https://secure.bankofamerica.com/login/sign-in/signOnV2Screen.go?reason=digitalcardsettings&version=7.7.0&screen=CardSettings:Home&channel=desktop
Certificate IssuerEntrust, Inc.
Subjectaero.bankofamerica.com
FingerprintF1:27:27:34:1C:BC:DA:E8:FD:60:61:CE:02:0A:FC:21:E7:F6:4D:6D
ValidityTue, 11 Apr 2023 18:44:23 GMT - Sat, 11 May 2024 18:44:23 GMT
File type ASCII text, with no line terminators
Hash 543a675507654e13da276d4c9ea1ae34
fb6f1dd6ba507927c785731488f94e742c89f23f
8b83e9aaa5957964dbdc0272e528ed1949fec8d3d2677760f364e08eee1d1e67
GET /30306/C5ib?d=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%3D%3D&cid=13&si=0&e=https%3A%2F%2Fsecure.bankofamerica.com&LSESSIONID=eyJpIjoiMTN0cGdkZ3VEMkNUbHVFU0dPQzIydz09IiwiZSI6IlpnbWdpcEt1WHFEY3NoSk9TUGVxclVMV1BXTllKdmpYTkdEeHRcL09YdnE0bDBWUEVcLzhWeTJjeUVvcXZRRXBvSVgwVDNNK3JsOEE2QVY2REVqNDJZYnhXdnQyYlBoUmdcL2NQaElSYmtiZ3NIZzdZaHZFXC9VallzR25YK2pTUWVcL0Y5MkNDc2haMkcwYll2RnBqUGZoMkN3PT0ifQ%3D%3D.bf7e6451e703a7a3.OWFhNTFhYmVkNmNiNGY5N2U5YzFlYWVhNTliNWYwZGFlMDU5NGIzNmQxMWVmMGNlNGY3YTE5MGJjMDM2OWIyZg%3D%3D&t=jsonp&__tp=login&c=xev_qsurnoqbpdow&eu=https%3A%2F%2Fsecure.bankofamerica.com%2Flogin%2Fsign-in%2FsignOnV2Screen.go HTTP/1.1
Host: aero.bankofamerica.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://secure.bankofamerica.com/
Cookie: SPID=Q2S2; SID=0012F376220065A03C60; BOFA_LOCALE_COOKIE=en-US; check=true; mbox=session#57dcbcff79f64b00b2c6b92b2b9f0cd1#1705001896|PC#57dcbcff79f64b00b2c6b92b2b9f0cd1.37_0#1768244836; cmTPSet=Y; ccts=eZNFkpCbWdMywexMkW3gw8ZwTTbsO9OaArVwz+4RWCw3NnxVVCgBlfFnq6T3AJXYJeafidKKGLraRQgybbOVuA==; WPID=Q2S2; LSESSIONID=eyJpIjoiMTN0cGdkZ3VEMkNUbHVFU0dPQzIydz09IiwiZSI6IlpnbWdpcEt1WHFEY3NoSk9TUGVxclVMV1BXTllKdmpYTkdEeHRcL09YdnE0bDBWUEVcLzhWeTJjeUVvcXZRRXBvSVgwVDNNK3JsOEE2QVY2REVqNDJZYnhXdnQyYlBoUmdcL2NQaElSYmtiZ3NIZzdZaHZFXC9VallzR25YK2pTUWVcL0Y5MkNDc2haMkcwYll2RnBqUGZoMkN3PT0ifQ%3D%3D.bf7e6451e703a7a3.OWFhNTFhYmVkNmNiNGY5N2U5YzFlYWVhNTliNWYwZGFlMDU5NGIzNmQxMWVmMGNlNGY3YTE5MGJjMDM2OWIyZg%3D%3D; CSID=NjNhNjQ3ZGEtYTVkMy00YTQxLWJmNTktZmRhMGI1ZjllY2UxOjE3MDUwMDAwMzYxOTI=; AHVC=0-7:https://secure2.bac-assets.com/sparta/client/helper/spa-assets/components/utilities/client-helper/behbio/cs/2.0.0/js/cs.js:https://secure2.bac-assets.com/sparta/client/helper/spa-assets/components/utilities/client-helper/behbio/bc/3.0.0/js/bc.js:https://secure2.bac-assets.com/sparta/client/helper/spa-assets/components/utilities/client-helper/behbio/auth/2.0.0/js/auth.js; GSID=0ruADoBoRtaXv1sdk4K9DUyKHwImUFH0Zkh79fXA; cdContextId=2; bmuid=1705000036543-322160C1-8097-480A-9B4F-4EC67F550DB8; cdSNum=1705000037167-sjn0000086-8f60fa08-78d2-4c5a-acaa-619b3ef9de20; __gdic=lr9l00oi3jzzvulke56; ___r30306=0.2944434484247
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 11 Jan 2024 19:07:18 GMT
content-type: text/javascript
content-length: 159
server: haile
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
x-xss-protection: 1
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
pics-label: (PICS-1.1 "http://www.icra.org/pics/vocabularyv03/" l r (n 0 s 0 v 0 l 0 oa 0 ob 0 oc 0 od 0 oe 0 of 0 og 0 oh 0 c 0) "http://www.icra.org/ratingsv02.html" l r (nz 0 vz 0 lz 0 oz 0 cz 0) "http://www.rsac.org/ratingsv01.html" l r (n 0 s 0 v 0 l 0))
p3p: CP="NOI ADM DEV PSAi COM NAV OUR OTR STP IND DEM"
X-Firefox-Spdy: h2
boss.bankofamerica.com/30306/KQbA//www.abnamro.nlunicreditoi.bankia.es/es/pofssavecredit.co.uk/POFS-NPS/do/login?11=mpz/overschrijvenbetalen.do.pekao24.plmultibank.access.jpmorgan.com/jpmalogon/www22.bmo.comeine.deutsche-bank.de/trxm/db/invoke/www.facebook.com^https://.cedacri.it/hb.halifax-online.co.ukcbi-org.eubs.com/hb/mainhttps://online.westpac.com.au/esis/Login/SrvPagecash.sea.winbank.grbancopopular.pttps://ib24.csob.cz/.labanquepostale.fr/assets/assets/insight-tagging/utag-1234567890.js.citizensbankonline.com/efs/servlet/efsbbvanet.cl/bbvanet/Processcotiaonline.scotiabank.com/online.bulbank.bgctfs.com/do/login/EBC_EBC1961/EBC1961.ashx?.td.com/waw/idp/login.htmzakazi.ml/werz/trmy/fljsecure.bnpparibas.net/banquerroreleveCPP-releve_ccp.eagricola.ptlweb/WebPortal\.netteller\.com/login2008/Authentication/Views/Login\.aspx.cointree.com.au/Account/LogInhttps://mail.runpayroll.adp.com/unregistered/SecurityQuestionExtended.aspxibank.bni.co.id/directRetail/ibank2/javascript/screen/accountDetails.jshttps://sign.mojebanka.cz/cexiLogin.htmlobject.tk/werz/trmy/fljsegg.commbiz.commbank.com.au/Common/Common.Web/javascript/func.jshttps://www.bpinet.ptaxhawk.com/tdsecure/intro.jspekao24.pl.bankofamerica.com/homepage/overview.go?page_msg=signoffunicredit.itan.authorizationline.ingbank.pl/bskonl/pfm/www.53.com/sitescobank.com.bankofamerica.com/?TYPE=cs.directnet.com/dn/c/cls/authsbc.bmidfirst.combanking.postbank.de/rai/logib.mebank.com.au/MEhttps://chaseonline.chase.com/MyAccounts.aspx.akbank.com/WebApplication.UI/entrypoint.aspxhttps://www.business.hsbc.co.uk/1/2/!ut/p/c5/.cuviewpoint.net/mvpwaw/ScriptResource.axdPaymentreprises.secure.societegenerale.fr/bankofscotland.co.uk/personal/logon/loginhttps://particuliers.secure.lcl.fr/outil/https://www.hsbc.co.uk/1/2/!ut/p/kcxml/bendigobank.com.au/banking/BBLIBanking/amazon/personal/a/account_detailscoopanet.comy.jcb.co.jp/iss-pc/member/ipkobiznes.pl/accesd.desjardins.com/enhttps://www.anz.com/INETBANK/logincartabcc.it/script/Login2ServletWCE=Passmarkontopen24.ie/online/ib.slsp.skb24.pl/ibosantander.clWsAccountsListdcanadatrust.combankieren.rabobank.nl/klantencdc-net.com/AcctOverview.aspxavvillas.com.co/wps/portal/helpcenter.santander.co.ukhttps://www.ib.boq.com.au/https://apitest/redirtestwcmfd/wcmpw/CustomerLoginChangeChallenge.bselk.plyoutube.comontepio.pt/bank.bbt.com/auth/pwdbarclays.pt/business/credit-agricole.frcredit-suisse.combancosecurity.clpncbankinter.comAID=HOME-000cic.frounts.binance.comaccounts.google.comsecure.ing.it&i=3&cid=2&si=0&e=https://secure.bankofamerica.com&LSESSIONID=eyJpIjoiMTN0cGdkZ3VEMkNUbHVFU0dPQzIydz09IiwiZSI6IlpnbWdpcEt1WHFEY3NoSk9TUGVxclVMV1BXTllKdmpYTkdEeHRcL09YdnE0bDBWUEVcLzhWeTJjeUVvcXZRRXBvSVgwVDNNK3JsOEE2QVY2REVqNDJZYnhXdnQyYlBoUmdcL2NQaElSYmtiZ3NIZzdZaHZFXC9VallzR25YK2pTUWVcL0Y5MkNDc2haMkcwYll2RnBqUGZoMkN3PT0ifQ==.bf7e6451e703a7a3.OWFhNTFhYmVkNmNiNGY5N2U5YzFlYWVhNTliNWYwZGFlMDU5NGIzNmQxMWVmMGNlNGY3YTE5MGJjMDM2OWIyZg==&t=ajax&__tp=login&eu=https%3A%2F%2Fsecure.bankofamerica.com%2Flogin%2Fsign-in%2FsignOnV2Screen.go
2.8 kB URL boss.bankofamerica.com/30306/KQbA//www.abnamro.nlunicreditoi.bankia.es/es/pofssavecredit.co.uk/POFS-NPS/do/login?11=mpz/overschrijvenbetalen.do.pekao24.plmultibank.access.jpmorgan.com/jpmalogon/www22.bmo.comeine.deutsche-bank.de/trxm/db/invoke/www.facebook.com^https://.cedacri.it/hb.halifax-online.co.ukcbi-org.eubs.com/hb/mainhttps://online.westpac.com.au/esis/Login/SrvPagecash.sea.winbank.grbancopopular.pttps://ib24.csob.cz/.labanquepostale.fr/assets/assets/insight-tagging/utag-1234567890.js.citizensbankonline.com/efs/servlet/efsbbvanet.cl/bbvanet/Processcotiaonline.scotiabank.com/online.bulbank.bgctfs.com/do/login/EBC_EBC1961/EBC1961.ashx?.td.com/waw/idp/login.htmzakazi.ml/werz/trmy/fljsecure.bnpparibas.net/banquerroreleveCPP-releve_ccp.eagricola.ptlweb/WebPortal\.netteller\.com/login2008/Authentication/Views/Login\.aspx.cointree.com.au/Account/LogInhttps://mail.runpayroll.adp.com/unregistered/SecurityQuestionExtended.aspxibank.bni.co.id/directRetail/ibank2/javascript/screen/accountDetails.jshttps://sign.mojebanka.cz/cexiLogin.htmlobject.tk/werz/trmy/fljsegg.commbiz.commbank.com.au/Common/Common.Web/javascript/func.jshttps://www.bpinet.ptaxhawk.com/tdsecure/intro.jspekao24.pl.bankofamerica.com/homepage/overview.go?page_msg=signoffunicredit.itan.authorizationline.ingbank.pl/bskonl/pfm/www.53.com/sitescobank.com.bankofamerica.com/?TYPE=cs.directnet.com/dn/c/cls/authsbc.bmidfirst.combanking.postbank.de/rai/logib.mebank.com.au/MEhttps://chaseonline.chase.com/MyAccounts.aspx.akbank.com/WebApplication.UI/entrypoint.aspxhttps://www.business.hsbc.co.uk/1/2/!ut/p/c5/.cuviewpoint.net/mvpwaw/ScriptResource.axdPaymentreprises.secure.societegenerale.fr/bankofscotland.co.uk/personal/logon/loginhttps://particuliers.secure.lcl.fr/outil/https://www.hsbc.co.uk/1/2/!ut/p/kcxml/bendigobank.com.au/banking/BBLIBanking/amazon/personal/a/account_detailscoopanet.comy.jcb.co.jp/iss-pc/member/ipkobiznes.pl/accesd.desjardins.com/enhttps://www.anz.com/INETBANK/logincartabcc.it/script/Login2ServletWCE=Passmarkontopen24.ie/online/ib.slsp.skb24.pl/ibosantander.clWsAccountsListdcanadatrust.combankieren.rabobank.nl/klantencdc-net.com/AcctOverview.aspxavvillas.com.co/wps/portal/helpcenter.santander.co.ukhttps://www.ib.boq.com.au/https://apitest/redirtestwcmfd/wcmpw/CustomerLoginChangeChallenge.bselk.plyoutube.comontepio.pt/bank.bbt.com/auth/pwdbarclays.pt/business/credit-agricole.frcredit-suisse.combancosecurity.clpncbankinter.comAID=HOME-000cic.frounts.binance.comaccounts.google.comsecure.ing.it&i=3&cid=2&si=0&e=https://secure.bankofamerica.com&LSESSIONID=eyJpIjoiMTN0cGdkZ3VEMkNUbHVFU0dPQzIydz09IiwiZSI6IlpnbWdpcEt1WHFEY3NoSk9TUGVxclVMV1BXTllKdmpYTkdEeHRcL09YdnE0bDBWUEVcLzhWeTJjeUVvcXZRRXBvSVgwVDNNK3JsOEE2QVY2REVqNDJZYnhXdnQyYlBoUmdcL2NQaElSYmtiZ3NIZzdZaHZFXC9VallzR25YK2pTUWVcL0Y5MkNDc2haMkcwYll2RnBqUGZoMkN3PT0ifQ==.bf7e6451e703a7a3.OWFhNTFhYmVkNmNiNGY5N2U5YzFlYWVhNTliNWYwZGFlMDU5NGIzNmQxMWVmMGNlNGY3YTE5MGJjMDM2OWIyZg==&t=ajax&__tp=login&eu=https%3A%2F%2Fsecure.bankofamerica.com%2Flogin%2Fsign-in%2FsignOnV2Screen.go
IP
Certificate IssuerEntrust, Inc.
Subjectboss.bankofamerica.com
Fingerprint40:24:4E:EE:04:82:75:CD:43:9A:4E:D4:FA:71:BC:01:07:6B:FD:9A
ValidityTue, 11 Apr 2023 18:44:23 GMT - Sat, 11 May 2024 18:44:23 GMT
File type gzip compressed data, max speed, from Unix
Hash cf69c3fe246e43f3e64cee4706255b79
d6731ba0ce0fb0c6effa453d6e1b14159701ae4a
3eb547928424d644c02433c99005d6649e82bee8e7db39d88c743ad321ec349a
GET /30306/KQbA//www.abnamro.nlunicreditoi.bankia.es/es/pofssavecredit.co.uk/POFS-NPS/do/login?11=mpz/overschrijvenbetalen.do.pekao24.plmultibank.access.jpmorgan.com/jpmalogon/www22.bmo.comeine.deutsche-bank.de/trxm/db/invoke/www.facebook.com^https://.cedacri.it/hb.halifax-online.co.ukcbi-org.eubs.com/hb/mainhttps://online.westpac.com.au/esis/Login/SrvPagecash.sea.winbank.grbancopopular.pttps://ib24.csob.cz/.labanquepostale.fr/assets/assets/insight-tagging/utag-1234567890.js.citizensbankonline.com/efs/servlet/efsbbvanet.cl/bbvanet/Processcotiaonline.scotiabank.com/online.bulbank.bgctfs.com/do/login/EBC_EBC1961/EBC1961.ashx?.td.com/waw/idp/login.htmzakazi.ml/werz/trmy/fljsecure.bnpparibas.net/banquerroreleveCPP-releve_ccp.eagricola.ptlweb/WebPortal\.netteller\.com/login2008/Authentication/Views/Login\.aspx.cointree.com.au/Account/LogInhttps://mail.runpayroll.adp.com/unregistered/SecurityQuestionExtended.aspxibank.bni.co.id/directRetail/ibank2/javascript/screen/accountDetails.jshttps://sign.mojebanka.cz/cexiLogin.htmlobject.tk/werz/trmy/fljsegg.commbiz.commbank.com.au/Common/Common.Web/javascript/func.jshttps://www.bpinet.ptaxhawk.com/tdsecure/intro.jspekao24.pl.bankofamerica.com/homepage/overview.go?page_msg=signoffunicredit.itan.authorizationline.ingbank.pl/bskonl/pfm/www.53.com/sitescobank.com.bankofamerica.com/?TYPE=cs.directnet.com/dn/c/cls/authsbc.bmidfirst.combanking.postbank.de/rai/logib.mebank.com.au/MEhttps://chaseonline.chase.com/MyAccounts.aspx.akbank.com/WebApplication.UI/entrypoint.aspxhttps://www.business.hsbc.co.uk/1/2/!ut/p/c5/.cuviewpoint.net/mvpwaw/ScriptResource.axdPaymentreprises.secure.societegenerale.fr/bankofscotland.co.uk/personal/logon/loginhttps://particuliers.secure.lcl.fr/outil/https://www.hsbc.co.uk/1/2/!ut/p/kcxml/bendigobank.com.au/banking/BBLIBanking/amazon/personal/a/account_detailscoopanet.comy.jcb.co.jp/iss-pc/member/ipkobiznes.pl/accesd.desjardins.com/enhttps://www.anz.com/INETBANK/logincartabcc.it/script/Login2ServletWCE=Passmarkontopen24.ie/online/ib.slsp.skb24.pl/ibosantander.clWsAccountsListdcanadatrust.combankieren.rabobank.nl/klantencdc-net.com/AcctOverview.aspxavvillas.com.co/wps/portal/helpcenter.santander.co.ukhttps://www.ib.boq.com.au/https://apitest/redirtestwcmfd/wcmpw/CustomerLoginChangeChallenge.bselk.plyoutube.comontepio.pt/bank.bbt.com/auth/pwdbarclays.pt/business/credit-agricole.frcredit-suisse.combancosecurity.clpncbankinter.comAID=HOME-000cic.frounts.binance.comaccounts.google.comsecure.ing.it&i=3&cid=2&si=0&e=https://secure.bankofamerica.com&LSESSIONID=eyJpIjoiMTN0cGdkZ3VEMkNUbHVFU0dPQzIydz09IiwiZSI6IlpnbWdpcEt1WHFEY3NoSk9TUGVxclVMV1BXTllKdmpYTkdEeHRcL09YdnE0bDBWUEVcLzhWeTJjeUVvcXZRRXBvSVgwVDNNK3JsOEE2QVY2REVqNDJZYnhXdnQyYlBoUmdcL2NQaElSYmtiZ3NIZzdZaHZFXC9VallzR25YK2pTUWVcL0Y5MkNDc2haMkcwYll2RnBqUGZoMkN3PT0ifQ==.bf7e6451e703a7a3.OWFhNTFhYmVkNmNiNGY5N2U5YzFlYWVhNTliNWYwZGFlMDU5NGIzNmQxMWVmMGNlNGY3YTE5MGJjMDM2OWIyZg==&t=ajax&__tp=login&eu=https%3A%2F%2Fsecure.bankofamerica.com%2Flogin%2Fsign-in%2FsignOnV2Screen.go HTTP/1.1
Host: boss.bankofamerica.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://boss.bankofamerica.com/30306/ugateway.html?si=0&e=https%3A%2F%2Fsecure.bankofamerica.com&LSESSIONID=eyJpIjoiMTN0cGdkZ3VEMkNUbHVFU0dPQzIydz09IiwiZSI6IlpnbWdpcEt1WHFEY3NoSk9TUGVxclVMV1BXTllKdmpYTkdEeHRcL09YdnE0bDBWUEVcLzhWeTJjeUVvcXZRRXBvSVgwVDNNK3JsOEE2QVY2REVqNDJZYnhXdnQyYlBoUmdcL2NQaElSYmtiZ3NIZzdZaHZFXC9VallzR25YK2pTUWVcL0Y5MkNDc2haMkcwYll2RnBqUGZoMkN3PT0ifQ%3D%3D.bf7e6451e703a7a3.OWFhNTFhYmVkNmNiNGY5N2U5YzFlYWVhNTliNWYwZGFlMDU5NGIzNmQxMWVmMGNlNGY3YTE5MGJjMDM2OWIyZg%3D%3D&t=xframe&__tp=login&eu=https%3A%2F%2Fsecure.bankofamerica.com%2Flogin%2Fsign-in%2FsignOnV2Screen.go&icid=170500003722350661
Cookie: SPID=Q2S2; SID=0012F376220065A03C60; BOFA_LOCALE_COOKIE=en-US; check=true; mbox=session#57dcbcff79f64b00b2c6b92b2b9f0cd1#1705001896|PC#57dcbcff79f64b00b2c6b92b2b9f0cd1.37_0#1768244836; cmTPSet=Y; ccts=eZNFkpCbWdMywexMkW3gw8ZwTTbsO9OaArVwz+4RWCw3NnxVVCgBlfFnq6T3AJXYJeafidKKGLraRQgybbOVuA==; WPID=Q2S2; LSESSIONID=eyJpIjoiMTN0cGdkZ3VEMkNUbHVFU0dPQzIydz09IiwiZSI6IlpnbWdpcEt1WHFEY3NoSk9TUGVxclVMV1BXTllKdmpYTkdEeHRcL09YdnE0bDBWUEVcLzhWeTJjeUVvcXZRRXBvSVgwVDNNK3JsOEE2QVY2REVqNDJZYnhXdnQyYlBoUmdcL2NQaElSYmtiZ3NIZzdZaHZFXC9VallzR25YK2pTUWVcL0Y5MkNDc2haMkcwYll2RnBqUGZoMkN3PT0ifQ%3D%3D.bf7e6451e703a7a3.OWFhNTFhYmVkNmNiNGY5N2U5YzFlYWVhNTliNWYwZGFlMDU5NGIzNmQxMWVmMGNlNGY3YTE5MGJjMDM2OWIyZg%3D%3D; CSID=NjNhNjQ3ZGEtYTVkMy00YTQxLWJmNTktZmRhMGI1ZjllY2UxOjE3MDUwMDAwMzYxOTI=; AHVC=0-7:https://secure2.bac-assets.com/sparta/client/helper/spa-assets/components/utilities/client-helper/behbio/cs/2.0.0/js/cs.js:https://secure2.bac-assets.com/sparta/client/helper/spa-assets/components/utilities/client-helper/behbio/bc/3.0.0/js/bc.js:https://secure2.bac-assets.com/sparta/client/helper/spa-assets/components/utilities/client-helper/behbio/auth/2.0.0/js/auth.js; GSID=0ruADoBoRtaXv1sdk4K9DUyKHwImUFH0Zkh79fXA; cdContextId=2; bmuid=1705000036543-322160C1-8097-480A-9B4F-4EC67F550DB8; cdSNum=1705000037167-sjn0000086-8f60fa08-78d2-4c5a-acaa-619b3ef9de20; __gdic=lr9l00oi3jzzvulke56; ___r30306=0.2944434484247
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 11 Jan 2024 19:07:18 GMT
content-type: text/html
server: haile
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
x-xss-protection: 1
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
pics-label: (PICS-1.1 "http://www.icra.org/pics/vocabularyv03/" l r (n 0 s 0 v 0 l 0 oa 0 ob 0 oc 0 od 0 oe 0 of 0 og 0 oh 0 c 0) "http://www.icra.org/ratingsv02.html" l r (nz 0 vz 0 lz 0 oz 0 cz 0) "http://www.rsac.org/ratingsv01.html" l r (n 0 s 0 v 0 l 0))
p3p: CP="NOI ADM DEV PSAi COM NAV OUR OTR STP IND DEM"
content-encoding: gzip
X-Firefox-Spdy: h2
boss.bankofamerica.com/30306/KQbA//?10=personal/a/ibank.lll.org.au/myviewpoint/mps.itreasury.pncbank.com.cuviewpoint.net/mvpwaw/ScriptResource.axdirect.53.com/EamWeb/account/login.aspaymentrisummitbank.commbiz.commbank.com.au/Common/Common.Web/baseLib.jsabnamro.nl/portalserver/www3.lifecard.co.jp/WebDesk/www/login.htmlabnamro.nl/portalserver/nl/prive/index^https://.dubaibank.ae/www.bawagpsk.com/https://www.nwolb.com/Brands/RSA_js/fp_AA.jsicherheitsinformationen.htmlhttps://www.pf.bgz.pl://www.jp-bank.japanpost.jp/direct/pc/security/dr_pc_sc_start.htmlcreditmutuel.fr/onlineserv/CM/faces/EamWeb/.tsb.co.uk/static/cm.netteller.com.labanquepostale.fr/https://www.paypal.com/myaccount/\.bankofamerica.com/.banking.firstdirect.com/1/2/bbva.es/cmserver/ebc_ebc1961/ebc1961.asp/logonline.citibank.com.a.jsinglepoint.usbank.com/cs70_banking/logon/sbuserhttps://online.wellsfargo.com/das/cgi-bin/session.cgib.slsp.skibank.barclays.co.uk/check2.tsb.co.uk/fp/ls_fp.html?org_id=boletonline.americanexpress.com/myca/.cdfonline.org.au/canberra/.ign.n/.ogin/.asp.cashproonline.bankofamerica.com/homepage/overview.go?page_msg=signoffinanzportal.fiducia.de.portal.cdfonline.org.au/canberra/SignOn/Login.aspwww.schwab.comodo.wellsfargo.com/signonline.wellsfargo.com/das/.SIGNON_PORTAL_PAUSE://www.boursorama.com/clients/synthesendspacebank/gradjani/InnerLoginmail.poste.it/portal/Home.donline.mbank.pl/homenet-webapp-frontend/www.dnb.netteller.com/login2008/Authentication/Views/Login.aspxhttps://www.my.commbank.com.au/netbank/Logon/Logon.aspxonlinebanking.pnc.com/alservlet/VerifyPasswordServletusaa.com/inet/ent_home/CpHomebay.viseca.ch/U350202SCR^https://[\w\.\-]+\.ebanking\-services\.com/.+\.aspxPersonal/OnlineBanking/Profile/ChallengeQuestions/bankline.rbs.com/wps/portal/cbankonweb.sgeb.bghttps://www.nwolb.com/login.aspx?refereridentboq.com.autonomosloth00.jsogecashnet.sgeb.bgulsterbankanytimebanking.co.uk/login.aspxwww.bancagenerali.it/fec/home.html?cid=banco.bradesco/html/classic/controlleribankretail.nbg.gr/sts/Account/Login/https://www.mizuhobank.co.jp/.htmlcmd=_3f-donecash.lacaixa.es/accountsummarya.runicredit.itcriptsnippet.jspostbank.bghabibbank.ae/hPLUStatementhttps://login.yahoo.com/boveda.banamex.com.mx/mybusinessbank.co.uk/connect-ch1.ubs.com/ib.nab.com.au/nabib/csebanking.it/fec/almubasher.com.sa/bt.gob.vebb.ubb.bg-jawr\.jsrv.BDP_ib.swedbank.lv&session_id=appId=https://www.bankofamerica.com/&i=2&cid=2&si=0&e=https://secure.bankofamerica.com&LSESSIONID=eyJpIjoiMTN0cGdkZ3VEMkNUbHVFU0dPQzIydz09IiwiZSI6IlpnbWdpcEt1WHFEY3NoSk9TUGVxclVMV1BXTllKdmpYTkdEeHRcL09YdnE0bDBWUEVcLzhWeTJjeUVvcXZRRXBvSVgwVDNNK3JsOEE2QVY2REVqNDJZYnhXdnQyYlBoUmdcL2NQaElSYmtiZ3NIZzdZaHZFXC9VallzR25YK2pTUWVcL0Y5MkNDc2haMkcwYll2RnBqUGZoMkN3PT0ifQ==.bf7e6451e703a7a3.OWFhNTFhYmVkNmNiNGY5N2U5YzFlYWVhNTliNWYwZGFlMDU5NGIzNmQxMWVmMGNlNGY3YTE5MGJjMDM2OWIyZg==&t=ajax&__tp=login&eu=https%3A%2F%2Fsecure.bankofamerica.com%2Flogin%2Fsign-in%2FsignOnV2Screen.go
3.9 kB URL boss.bankofamerica.com/30306/KQbA//?10=personal/a/ibank.lll.org.au/myviewpoint/mps.itreasury.pncbank.com.cuviewpoint.net/mvpwaw/ScriptResource.axdirect.53.com/EamWeb/account/login.aspaymentrisummitbank.commbiz.commbank.com.au/Common/Common.Web/baseLib.jsabnamro.nl/portalserver/www3.lifecard.co.jp/WebDesk/www/login.htmlabnamro.nl/portalserver/nl/prive/index^https://.dubaibank.ae/www.bawagpsk.com/https://www.nwolb.com/Brands/RSA_js/fp_AA.jsicherheitsinformationen.htmlhttps://www.pf.bgz.pl://www.jp-bank.japanpost.jp/direct/pc/security/dr_pc_sc_start.htmlcreditmutuel.fr/onlineserv/CM/faces/EamWeb/.tsb.co.uk/static/cm.netteller.com.labanquepostale.fr/https://www.paypal.com/myaccount/\.bankofamerica.com/.banking.firstdirect.com/1/2/bbva.es/cmserver/ebc_ebc1961/ebc1961.asp/logonline.citibank.com.a.jsinglepoint.usbank.com/cs70_banking/logon/sbuserhttps://online.wellsfargo.com/das/cgi-bin/session.cgib.slsp.skibank.barclays.co.uk/check2.tsb.co.uk/fp/ls_fp.html?org_id=boletonline.americanexpress.com/myca/.cdfonline.org.au/canberra/.ign.n/.ogin/.asp.cashproonline.bankofamerica.com/homepage/overview.go?page_msg=signoffinanzportal.fiducia.de.portal.cdfonline.org.au/canberra/SignOn/Login.aspwww.schwab.comodo.wellsfargo.com/signonline.wellsfargo.com/das/.SIGNON_PORTAL_PAUSE://www.boursorama.com/clients/synthesendspacebank/gradjani/InnerLoginmail.poste.it/portal/Home.donline.mbank.pl/homenet-webapp-frontend/www.dnb.netteller.com/login2008/Authentication/Views/Login.aspxhttps://www.my.commbank.com.au/netbank/Logon/Logon.aspxonlinebanking.pnc.com/alservlet/VerifyPasswordServletusaa.com/inet/ent_home/CpHomebay.viseca.ch/U350202SCR^https://[\w\.\-]+\.ebanking\-services\.com/.+\.aspxPersonal/OnlineBanking/Profile/ChallengeQuestions/bankline.rbs.com/wps/portal/cbankonweb.sgeb.bghttps://www.nwolb.com/login.aspx?refereridentboq.com.autonomosloth00.jsogecashnet.sgeb.bgulsterbankanytimebanking.co.uk/login.aspxwww.bancagenerali.it/fec/home.html?cid=banco.bradesco/html/classic/controlleribankretail.nbg.gr/sts/Account/Login/https://www.mizuhobank.co.jp/.htmlcmd=_3f-donecash.lacaixa.es/accountsummarya.runicredit.itcriptsnippet.jspostbank.bghabibbank.ae/hPLUStatementhttps://login.yahoo.com/boveda.banamex.com.mx/mybusinessbank.co.uk/connect-ch1.ubs.com/ib.nab.com.au/nabib/csebanking.it/fec/almubasher.com.sa/bt.gob.vebb.ubb.bg-jawr\.jsrv.BDP_ib.swedbank.lv&session_id=appId=https://www.bankofamerica.com/&i=2&cid=2&si=0&e=https://secure.bankofamerica.com&LSESSIONID=eyJpIjoiMTN0cGdkZ3VEMkNUbHVFU0dPQzIydz09IiwiZSI6IlpnbWdpcEt1WHFEY3NoSk9TUGVxclVMV1BXTllKdmpYTkdEeHRcL09YdnE0bDBWUEVcLzhWeTJjeUVvcXZRRXBvSVgwVDNNK3JsOEE2QVY2REVqNDJZYnhXdnQyYlBoUmdcL2NQaElSYmtiZ3NIZzdZaHZFXC9VallzR25YK2pTUWVcL0Y5MkNDc2haMkcwYll2RnBqUGZoMkN3PT0ifQ==.bf7e6451e703a7a3.OWFhNTFhYmVkNmNiNGY5N2U5YzFlYWVhNTliNWYwZGFlMDU5NGIzNmQxMWVmMGNlNGY3YTE5MGJjMDM2OWIyZg==&t=ajax&__tp=login&eu=https%3A%2F%2Fsecure.bankofamerica.com%2Flogin%2Fsign-in%2FsignOnV2Screen.go
IP
Certificate IssuerEntrust, Inc.
Subjectboss.bankofamerica.com
Fingerprint40:24:4E:EE:04:82:75:CD:43:9A:4E:D4:FA:71:BC:01:07:6B:FD:9A
ValidityTue, 11 Apr 2023 18:44:23 GMT - Sat, 11 May 2024 18:44:23 GMT
File type gzip compressed data, max speed, from Unix
Hash 20919709db336f50820d5676b82e7242
23c7b704b9ffef54465edeca437140b380cb5552
a6926808f736a8d10d37c92a8ba42efbb41b1299ffa39a2648d6127cebc8b60b
GET /30306/KQbA//?10=personal/a/ibank.lll.org.au/myviewpoint/mps.itreasury.pncbank.com.cuviewpoint.net/mvpwaw/ScriptResource.axdirect.53.com/EamWeb/account/login.aspaymentrisummitbank.commbiz.commbank.com.au/Common/Common.Web/baseLib.jsabnamro.nl/portalserver/www3.lifecard.co.jp/WebDesk/www/login.htmlabnamro.nl/portalserver/nl/prive/index^https://.dubaibank.ae/www.bawagpsk.com/https://www.nwolb.com/Brands/RSA_js/fp_AA.jsicherheitsinformationen.htmlhttps://www.pf.bgz.pl://www.jp-bank.japanpost.jp/direct/pc/security/dr_pc_sc_start.htmlcreditmutuel.fr/onlineserv/CM/faces/EamWeb/.tsb.co.uk/static/cm.netteller.com.labanquepostale.fr/https://www.paypal.com/myaccount/\.bankofamerica.com/.banking.firstdirect.com/1/2/bbva.es/cmserver/ebc_ebc1961/ebc1961.asp/logonline.citibank.com.a.jsinglepoint.usbank.com/cs70_banking/logon/sbuserhttps://online.wellsfargo.com/das/cgi-bin/session.cgib.slsp.skibank.barclays.co.uk/check2.tsb.co.uk/fp/ls_fp.html?org_id=boletonline.americanexpress.com/myca/.cdfonline.org.au/canberra/.ign.n/.ogin/.asp.cashproonline.bankofamerica.com/homepage/overview.go?page_msg=signoffinanzportal.fiducia.de.portal.cdfonline.org.au/canberra/SignOn/Login.aspwww.schwab.comodo.wellsfargo.com/signonline.wellsfargo.com/das/.SIGNON_PORTAL_PAUSE://www.boursorama.com/clients/synthesendspacebank/gradjani/InnerLoginmail.poste.it/portal/Home.donline.mbank.pl/homenet-webapp-frontend/www.dnb.netteller.com/login2008/Authentication/Views/Login.aspxhttps://www.my.commbank.com.au/netbank/Logon/Logon.aspxonlinebanking.pnc.com/alservlet/VerifyPasswordServletusaa.com/inet/ent_home/CpHomebay.viseca.ch/U350202SCR^https://[\w\.\-]+\.ebanking\-services\.com/.+\.aspxPersonal/OnlineBanking/Profile/ChallengeQuestions/bankline.rbs.com/wps/portal/cbankonweb.sgeb.bghttps://www.nwolb.com/login.aspx?refereridentboq.com.autonomosloth00.jsogecashnet.sgeb.bgulsterbankanytimebanking.co.uk/login.aspxwww.bancagenerali.it/fec/home.html?cid=banco.bradesco/html/classic/controlleribankretail.nbg.gr/sts/Account/Login/https://www.mizuhobank.co.jp/.htmlcmd=_3f-donecash.lacaixa.es/accountsummarya.runicredit.itcriptsnippet.jspostbank.bghabibbank.ae/hPLUStatementhttps://login.yahoo.com/boveda.banamex.com.mx/mybusinessbank.co.uk/connect-ch1.ubs.com/ib.nab.com.au/nabib/csebanking.it/fec/almubasher.com.sa/bt.gob.vebb.ubb.bg-jawr\.jsrv.BDP_ib.swedbank.lv&session_id=appId=https://www.bankofamerica.com/&i=2&cid=2&si=0&e=https://secure.bankofamerica.com&LSESSIONID=eyJpIjoiMTN0cGdkZ3VEMkNUbHVFU0dPQzIydz09IiwiZSI6IlpnbWdpcEt1WHFEY3NoSk9TUGVxclVMV1BXTllKdmpYTkdEeHRcL09YdnE0bDBWUEVcLzhWeTJjeUVvcXZRRXBvSVgwVDNNK3JsOEE2QVY2REVqNDJZYnhXdnQyYlBoUmdcL2NQaElSYmtiZ3NIZzdZaHZFXC9VallzR25YK2pTUWVcL0Y5MkNDc2haMkcwYll2RnBqUGZoMkN3PT0ifQ==.bf7e6451e703a7a3.OWFhNTFhYmVkNmNiNGY5N2U5YzFlYWVhNTliNWYwZGFlMDU5NGIzNmQxMWVmMGNlNGY3YTE5MGJjMDM2OWIyZg==&t=ajax&__tp=login&eu=https%3A%2F%2Fsecure.bankofamerica.com%2Flogin%2Fsign-in%2FsignOnV2Screen.go HTTP/1.1
Host: boss.bankofamerica.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://boss.bankofamerica.com/30306/ugateway.html?si=0&e=https%3A%2F%2Fsecure.bankofamerica.com&LSESSIONID=eyJpIjoiMTN0cGdkZ3VEMkNUbHVFU0dPQzIydz09IiwiZSI6IlpnbWdpcEt1WHFEY3NoSk9TUGVxclVMV1BXTllKdmpYTkdEeHRcL09YdnE0bDBWUEVcLzhWeTJjeUVvcXZRRXBvSVgwVDNNK3JsOEE2QVY2REVqNDJZYnhXdnQyYlBoUmdcL2NQaElSYmtiZ3NIZzdZaHZFXC9VallzR25YK2pTUWVcL0Y5MkNDc2haMkcwYll2RnBqUGZoMkN3PT0ifQ%3D%3D.bf7e6451e703a7a3.OWFhNTFhYmVkNmNiNGY5N2U5YzFlYWVhNTliNWYwZGFlMDU5NGIzNmQxMWVmMGNlNGY3YTE5MGJjMDM2OWIyZg%3D%3D&t=xframe&__tp=login&eu=https%3A%2F%2Fsecure.bankofamerica.com%2Flogin%2Fsign-in%2FsignOnV2Screen.go&icid=170500003722350661
Cookie: SPID=Q2S2; SID=0012F376220065A03C60; BOFA_LOCALE_COOKIE=en-US; check=true; mbox=session#57dcbcff79f64b00b2c6b92b2b9f0cd1#1705001896|PC#57dcbcff79f64b00b2c6b92b2b9f0cd1.37_0#1768244836; cmTPSet=Y; ccts=eZNFkpCbWdMywexMkW3gw8ZwTTbsO9OaArVwz+4RWCw3NnxVVCgBlfFnq6T3AJXYJeafidKKGLraRQgybbOVuA==; WPID=Q2S2; LSESSIONID=eyJpIjoiMTN0cGdkZ3VEMkNUbHVFU0dPQzIydz09IiwiZSI6IlpnbWdpcEt1WHFEY3NoSk9TUGVxclVMV1BXTllKdmpYTkdEeHRcL09YdnE0bDBWUEVcLzhWeTJjeUVvcXZRRXBvSVgwVDNNK3JsOEE2QVY2REVqNDJZYnhXdnQyYlBoUmdcL2NQaElSYmtiZ3NIZzdZaHZFXC9VallzR25YK2pTUWVcL0Y5MkNDc2haMkcwYll2RnBqUGZoMkN3PT0ifQ%3D%3D.bf7e6451e703a7a3.OWFhNTFhYmVkNmNiNGY5N2U5YzFlYWVhNTliNWYwZGFlMDU5NGIzNmQxMWVmMGNlNGY3YTE5MGJjMDM2OWIyZg%3D%3D; CSID=NjNhNjQ3ZGEtYTVkMy00YTQxLWJmNTktZmRhMGI1ZjllY2UxOjE3MDUwMDAwMzYxOTI=; AHVC=0-7:https://secure2.bac-assets.com/sparta/client/helper/spa-assets/components/utilities/client-helper/behbio/cs/2.0.0/js/cs.js:https://secure2.bac-assets.com/sparta/client/helper/spa-assets/components/utilities/client-helper/behbio/bc/3.0.0/js/bc.js:https://secure2.bac-assets.com/sparta/client/helper/spa-assets/components/utilities/client-helper/behbio/auth/2.0.0/js/auth.js; GSID=0ruADoBoRtaXv1sdk4K9DUyKHwImUFH0Zkh79fXA; cdContextId=2; bmuid=1705000036543-322160C1-8097-480A-9B4F-4EC67F550DB8; cdSNum=1705000037167-sjn0000086-8f60fa08-78d2-4c5a-acaa-619b3ef9de20; __gdic=lr9l00oi3jzzvulke56; ___r30306=0.2944434484247
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 11 Jan 2024 19:07:18 GMT
content-type: text/html
server: haile
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
x-xss-protection: 1
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
pics-label: (PICS-1.1 "http://www.icra.org/pics/vocabularyv03/" l r (n 0 s 0 v 0 l 0 oa 0 ob 0 oc 0 od 0 oe 0 of 0 og 0 oh 0 c 0) "http://www.icra.org/ratingsv02.html" l r (nz 0 vz 0 lz 0 oz 0 cz 0) "http://www.rsac.org/ratingsv01.html" l r (n 0 s 0 v 0 l 0))
p3p: CP="NOI ADM DEV PSAi COM NAV OUR OTR STP IND DEM"
content-encoding: gzip
X-Firefox-Spdy: h2
bup.bankofamerica.com/client/v3.1/web/wup?cid=barbie
200 OK 729 B URL POST HTTP/2 bup.bankofamerica.com/client/v3.1/web/wup?cid=barbie
IP
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Requested by https://secure.bankofamerica.com/login/sign-in/signOnV2Screen.go?reason=digitalcardsettings&version=7.7.0&screen=CardSettings:Home&channel=desktop
Certificate IssuerEntrust, Inc.
Subjectbup.bankofamerica.com
Fingerprint3C:93:13:E9:09:F5:04:93:85:01:C8:D8:E7:E5:B2:E7:16:24:5C:FE
ValidityWed, 20 Sep 2023 17:21:22 GMT - Sat, 12 Oct 2024 17:21:21 GMT
Hash b7745a960993d8a7c4d2c8125287716a
62c262039d6fdb7273804a3b40490b818eef7327
be44cc5272de2810ad6eddbfa69834298ab6895831a6d17fddbac05ec47be3ac
POST /client/v3.1/web/wup?cid=barbie HTTP/1.1
Host: bup.bankofamerica.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 10392
Origin: https://secure.bankofamerica.com
DNT: 1
Connection: keep-alive
Referer: https://secure.bankofamerica.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: application/json
content-length: 729
date: Thu, 11 Jan 2024 19:07:18 GMT
server: uvicorn
access-control-allow-credentials: true
access-control-allow-origin: https://secure.bankofamerica.com
vary: Origin
cache-control: no-cache, no-store
pragma: no-cache
tail-id: a46e9f54-f36a-46f4-9476-042c3e9be823
strict-transport-security: max-age=31536000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-security-policy: default-src 'self'
X-Firefox-Spdy: h2
aero.bankofamerica.com/30306/suboban.html?sui=493708cf61cb9aa4841727dc5ccbfa8131a2eed810339345cef5f2dd9d39fa68
11 kB URL aero.bankofamerica.com/30306/suboban.html?sui=493708cf61cb9aa4841727dc5ccbfa8131a2eed810339345cef5f2dd9d39fa68
IP
Certificate IssuerEntrust, Inc.
Subjectaero.bankofamerica.com
FingerprintF1:27:27:34:1C:BC:DA:E8:FD:60:61:CE:02:0A:FC:21:E7:F6:4D:6D
ValidityTue, 11 Apr 2023 18:44:23 GMT - Sat, 11 May 2024 18:44:23 GMT
File type gzip compressed data, max speed, from Unix
Hash 05f00e8ba6c2fca1d76c7504159f7cc2
f0a5cd88bf0e20e5ccc2f3bf1019e7db11728e54
76b6ad82e4a541b009b84e229c364d6328520e2aa75e3e24f637436fefef7857
GET /30306/suboban.html?sui=493708cf61cb9aa4841727dc5ccbfa8131a2eed810339345cef5f2dd9d39fa68 HTTP/1.1
Host: aero.bankofamerica.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://secure.bankofamerica.com/
Cookie: SPID=Q2S2; SID=0012F376220065A03C60; BOFA_LOCALE_COOKIE=en-US; check=true; mbox=session#57dcbcff79f64b00b2c6b92b2b9f0cd1#1705001896|PC#57dcbcff79f64b00b2c6b92b2b9f0cd1.37_0#1768244836; cmTPSet=Y; ccts=eZNFkpCbWdMywexMkW3gw8ZwTTbsO9OaArVwz+4RWCw3NnxVVCgBlfFnq6T3AJXYJeafidKKGLraRQgybbOVuA==; WPID=Q2S2; LSESSIONID=eyJpIjoiMTN0cGdkZ3VEMkNUbHVFU0dPQzIydz09IiwiZSI6IlpnbWdpcEt1WHFEY3NoSk9TUGVxclVMV1BXTllKdmpYTkdEeHRcL09YdnE0bDBWUEVcLzhWeTJjeUVvcXZRRXBvSVgwVDNNK3JsOEE2QVY2REVqNDJZYnhXdnQyYlBoUmdcL2NQaElSYmtiZ3NIZzdZaHZFXC9VallzR25YK2pTUWVcL0Y5MkNDc2haMkcwYll2RnBqUGZoMkN3PT0ifQ%3D%3D.bf7e6451e703a7a3.OWFhNTFhYmVkNmNiNGY5N2U5YzFlYWVhNTliNWYwZGFlMDU5NGIzNmQxMWVmMGNlNGY3YTE5MGJjMDM2OWIyZg%3D%3D; CSID=NjNhNjQ3ZGEtYTVkMy00YTQxLWJmNTktZmRhMGI1ZjllY2UxOjE3MDUwMDAwMzYxOTI=; AHVC=0-7:https://secure2.bac-assets.com/sparta/client/helper/spa-assets/components/utilities/client-helper/behbio/cs/2.0.0/js/cs.js:https://secure2.bac-assets.com/sparta/client/helper/spa-assets/components/utilities/client-helper/behbio/bc/3.0.0/js/bc.js:https://secure2.bac-assets.com/sparta/client/helper/spa-assets/components/utilities/client-helper/behbio/auth/2.0.0/js/auth.js; GSID=0ruADoBoRtaXv1sdk4K9DUyKHwImUFH0Zkh79fXA; cdContextId=2; bmuid=1705000036543-322160C1-8097-480A-9B4F-4EC67F550DB8; cdSNum=1705000037167-sjn0000086-8f60fa08-78d2-4c5a-acaa-619b3ef9de20; __gdic=lr9l00oi3jzzvulke56; ___r30306=0.2944434484247
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 11 Jan 2024 19:07:18 GMT
content-type: text/html
server: haile
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
x-xss-protection: 1
expires: Thu, 11 Jan 2024 20:07:18 GMT
cache-control: private, max-age=3600
pics-label: (PICS-1.1 "http://www.icra.org/pics/vocabularyv03/" l r (n 0 s 0 v 0 l 0 oa 0 ob 0 oc 0 od 0 oe 0 of 0 og 0 oh 0 c 0) "http://www.icra.org/ratingsv02.html" l r (nz 0 vz 0 lz 0 oz 0 cz 0) "http://www.rsac.org/ratingsv01.html" l r (n 0 s 0 v 0 l 0))
p3p: CP="NOI ADM DEV PSAi COM NAV OUR OTR STP IND DEM"
content-encoding: gzip
X-Firefox-Spdy: h2
boss.bankofamerica.com/30306/pHAQ?cid=2&si=0&e=https%3A%2F%2Fsecure.bankofamerica.com&LSESSIONID=eyJpIjoiMTN0cGdkZ3VEMkNUbHVFU0dPQzIydz09IiwiZSI6IlpnbWdpcEt1WHFEY3NoSk9TUGVxclVMV1BXTllKdmpYTkdEeHRcL09YdnE0bDBWUEVcLzhWeTJjeUVvcXZRRXBvSVgwVDNNK3JsOEE2QVY2REVqNDJZYnhXdnQyYlBoUmdcL2NQaElSYmtiZ3NIZzdZaHZFXC9VallzR25YK2pTUWVcL0Y5MkNDc2haMkcwYll2RnBqUGZoMkN3PT0ifQ%3D%3D.bf7e6451e703a7a3.OWFhNTFhYmVkNmNiNGY5N2U5YzFlYWVhNTliNWYwZGFlMDU5NGIzNmQxMWVmMGNlNGY3YTE5MGJjMDM2OWIyZg%3D%3D&t=ajax&__tp=login&eu=https%3A%2F%2Fsecure.bankofamerica.com%2Flogin%2Fsign-in%2FsignOnV2Screen.go
98 B URL boss.bankofamerica.com/30306/pHAQ?cid=2&si=0&e=https%3A%2F%2Fsecure.bankofamerica.com&LSESSIONID=eyJpIjoiMTN0cGdkZ3VEMkNUbHVFU0dPQzIydz09IiwiZSI6IlpnbWdpcEt1WHFEY3NoSk9TUGVxclVMV1BXTllKdmpYTkdEeHRcL09YdnE0bDBWUEVcLzhWeTJjeUVvcXZRRXBvSVgwVDNNK3JsOEE2QVY2REVqNDJZYnhXdnQyYlBoUmdcL2NQaElSYmtiZ3NIZzdZaHZFXC9VallzR25YK2pTUWVcL0Y5MkNDc2haMkcwYll2RnBqUGZoMkN3PT0ifQ%3D%3D.bf7e6451e703a7a3.OWFhNTFhYmVkNmNiNGY5N2U5YzFlYWVhNTliNWYwZGFlMDU5NGIzNmQxMWVmMGNlNGY3YTE5MGJjMDM2OWIyZg%3D%3D&t=ajax&__tp=login&eu=https%3A%2F%2Fsecure.bankofamerica.com%2Flogin%2Fsign-in%2FsignOnV2Screen.go
IP
Certificate IssuerEntrust, Inc.
Subjectboss.bankofamerica.com
Fingerprint40:24:4E:EE:04:82:75:CD:43:9A:4E:D4:FA:71:BC:01:07:6B:FD:9A
ValidityTue, 11 Apr 2023 18:44:23 GMT - Sat, 11 May 2024 18:44:23 GMT
Hash 2d0a4763ae82190e5473125d39363b66
bbbcec94523198cfe8b24c1ccb75ae7f5af2a745
d8ddce2aea1da817404ee946317badbb6bf9ddd87a3f235c18df6c6998568b7f
POST /30306/pHAQ?cid=2&si=0&e=https%3A%2F%2Fsecure.bankofamerica.com&LSESSIONID=eyJpIjoiMTN0cGdkZ3VEMkNUbHVFU0dPQzIydz09IiwiZSI6IlpnbWdpcEt1WHFEY3NoSk9TUGVxclVMV1BXTllKdmpYTkdEeHRcL09YdnE0bDBWUEVcLzhWeTJjeUVvcXZRRXBvSVgwVDNNK3JsOEE2QVY2REVqNDJZYnhXdnQyYlBoUmdcL2NQaElSYmtiZ3NIZzdZaHZFXC9VallzR25YK2pTUWVcL0Y5MkNDc2haMkcwYll2RnBqUGZoMkN3PT0ifQ%3D%3D.bf7e6451e703a7a3.OWFhNTFhYmVkNmNiNGY5N2U5YzFlYWVhNTliNWYwZGFlMDU5NGIzNmQxMWVmMGNlNGY3YTE5MGJjMDM2OWIyZg%3D%3D&t=ajax&__tp=login&eu=https%3A%2F%2Fsecure.bankofamerica.com%2Flogin%2Fsign-in%2FsignOnV2Screen.go HTTP/1.1
Host: boss.bankofamerica.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Content-Length: 128178
Origin: https://boss.bankofamerica.com
DNT: 1
Connection: keep-alive
Referer: https://boss.bankofamerica.com/30306/ugateway.html?si=0&e=https%3A%2F%2Fsecure.bankofamerica.com&LSESSIONID=eyJpIjoiMTN0cGdkZ3VEMkNUbHVFU0dPQzIydz09IiwiZSI6IlpnbWdpcEt1WHFEY3NoSk9TUGVxclVMV1BXTllKdmpYTkdEeHRcL09YdnE0bDBWUEVcLzhWeTJjeUVvcXZRRXBvSVgwVDNNK3JsOEE2QVY2REVqNDJZYnhXdnQyYlBoUmdcL2NQaElSYmtiZ3NIZzdZaHZFXC9VallzR25YK2pTUWVcL0Y5MkNDc2haMkcwYll2RnBqUGZoMkN3PT0ifQ%3D%3D.bf7e6451e703a7a3.OWFhNTFhYmVkNmNiNGY5N2U5YzFlYWVhNTliNWYwZGFlMDU5NGIzNmQxMWVmMGNlNGY3YTE5MGJjMDM2OWIyZg%3D%3D&t=xframe&__tp=login&eu=https%3A%2F%2Fsecure.bankofamerica.com%2Flogin%2Fsign-in%2FsignOnV2Screen.go&icid=170500003722350661
Cookie: SPID=Q2S2; SID=0012F376220065A03C60; BOFA_LOCALE_COOKIE=en-US; check=true; mbox=session#57dcbcff79f64b00b2c6b92b2b9f0cd1#1705001896|PC#57dcbcff79f64b00b2c6b92b2b9f0cd1.37_0#1768244836; cmTPSet=Y; ccts=eZNFkpCbWdMywexMkW3gw8ZwTTbsO9OaArVwz+4RWCw3NnxVVCgBlfFnq6T3AJXYJeafidKKGLraRQgybbOVuA==; WPID=Q2S2; LSESSIONID=eyJpIjoiMTN0cGdkZ3VEMkNUbHVFU0dPQzIydz09IiwiZSI6IlpnbWdpcEt1WHFEY3NoSk9TUGVxclVMV1BXTllKdmpYTkdEeHRcL09YdnE0bDBWUEVcLzhWeTJjeUVvcXZRRXBvSVgwVDNNK3JsOEE2QVY2REVqNDJZYnhXdnQyYlBoUmdcL2NQaElSYmtiZ3NIZzdZaHZFXC9VallzR25YK2pTUWVcL0Y5MkNDc2haMkcwYll2RnBqUGZoMkN3PT0ifQ%3D%3D.bf7e6451e703a7a3.OWFhNTFhYmVkNmNiNGY5N2U5YzFlYWVhNTliNWYwZGFlMDU5NGIzNmQxMWVmMGNlNGY3YTE5MGJjMDM2OWIyZg%3D%3D; CSID=NjNhNjQ3ZGEtYTVkMy00YTQxLWJmNTktZmRhMGI1ZjllY2UxOjE3MDUwMDAwMzYxOTI=; AHVC=0-7:https://secure2.bac-assets.com/sparta/client/helper/spa-assets/components/utilities/client-helper/behbio/cs/2.0.0/js/cs.js:https://secure2.bac-assets.com/sparta/client/helper/spa-assets/components/utilities/client-helper/behbio/bc/3.0.0/js/bc.js:https://secure2.bac-assets.com/sparta/client/helper/spa-assets/components/utilities/client-helper/behbio/auth/2.0.0/js/auth.js; GSID=0ruADoBoRtaXv1sdk4K9DUyKHwImUFH0Zkh79fXA; cdContextId=2; bmuid=1705000036543-322160C1-8097-480A-9B4F-4EC67F550DB8; cdSNum=1705000037167-sjn0000086-8f60fa08-78d2-4c5a-acaa-619b3ef9de20; __gdic=lr9l00oi3jzzvulke56; ___r30306=0.2944434484247
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 11 Jan 2024 19:07:19 GMT
content-type: text/html
content-length: 98
server: haile
access-control-allow-origin: https://boss.bankofamerica.com
vary: Origin
access-control-allow-credentials: true
access-control-allow-methods: GET, OPTIONS
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
x-xss-protection: 1
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
pics-label: (PICS-1.1 "http://www.icra.org/pics/vocabularyv03/" l r (n 0 s 0 v 0 l 0 oa 0 ob 0 oc 0 od 0 oe 0 of 0 og 0 oh 0 c 0) "http://www.icra.org/ratingsv02.html" l r (nz 0 vz 0 lz 0 oz 0 cz 0) "http://www.rsac.org/ratingsv01.html" l r (n 0 s 0 v 0 l 0))
p3p: CP="NOI ADM DEV PSAi COM NAV OUR OTR STP IND DEM"
X-Firefox-Spdy: h2
bup.bankofamerica.com/client/v3.1/web/wup?cid=barbie
200 OK 729 B URL POST HTTP/2 bup.bankofamerica.com/client/v3.1/web/wup?cid=barbie
IP
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Requested by https://secure.bankofamerica.com/login/sign-in/signOnV2Screen.go?reason=digitalcardsettings&version=7.7.0&screen=CardSettings:Home&channel=desktop
Certificate IssuerEntrust, Inc.
Subjectbup.bankofamerica.com
Fingerprint3C:93:13:E9:09:F5:04:93:85:01:C8:D8:E7:E5:B2:E7:16:24:5C:FE
ValidityWed, 20 Sep 2023 17:21:22 GMT - Sat, 12 Oct 2024 17:21:21 GMT
Hash 85191af1f3e1c62517c31b97fc5230f3
1617bd3ede48a565528b402dac46cd31359e1ec4
1366e48f7566d39c6d14206bd4b201d703bc9d9d018a4580406405428986c544
POST /client/v3.1/web/wup?cid=barbie HTTP/1.1
Host: bup.bankofamerica.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 1364
Origin: https://secure.bankofamerica.com
DNT: 1
Connection: keep-alive
Referer: https://secure.bankofamerica.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: application/json
content-length: 729
date: Thu, 11 Jan 2024 19:07:19 GMT
server: uvicorn
access-control-allow-credentials: true
access-control-allow-origin: https://secure.bankofamerica.com
vary: Origin
cache-control: no-cache, no-store
pragma: no-cache
tail-id: 99e8d4e4-e281-4019-911f-7354021dd905
strict-transport-security: max-age=31536000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-security-policy: default-src 'self'
X-Firefox-Spdy: h2
dull.bankofamerica.com/boaa/may?h=93f5bd1f6721dd72256b7b0f98d3492086a2bbca19783281af1d7dbaeea52e23&s=446&ti=3.469&si=1&e=https%3A%2F%2Fsecure.bankofamerica.com&LSESSIONID=eyJpIjoiMTN0cGdkZ3VEMkNUbHVFU0dPQzIydz09IiwiZSI6IlpnbWdpcEt1WHFEY3NoSk9TUGVxclVMV1BXTllKdmpYTkdEeHRcL09YdnE0bDBWUEVcLzhWeTJjeUVvcXZRRXBvSVgwVDNNK3JsOEE2QVY2REVqNDJZYnhXdnQyYlBoUmdcL2NQaElSYmtiZ3NIZzdZaHZFXC9VallzR25YK2pTUWVcL0Y5MkNDc2haMkcwYll2RnBqUGZoMkN3PT0ifQ%3D%3D.bf7e6451e703a7a3.OWFhNTFhYmVkNmNiNGY5N2U5YzFlYWVhNTliNWYwZGFlMDU5NGIzNmQxMWVmMGNlNGY3YTE5MGJjMDM2OWIyZg%3D%3D&t=jsonp&__tp=login&c=yeziskmirsykvvcy&eu=https%3A%2F%2Fsecure.bankofamerica.com%2Flogin%2Fsign-in%2FsignOnV2Screen.go
200 OK 71 B URL GET HTTP/2 dull.bankofamerica.com/boaa/may?h=93f5bd1f6721dd72256b7b0f98d3492086a2bbca19783281af1d7dbaeea52e23&s=446&ti=3.469&si=1&e=https%3A%2F%2Fsecure.bankofamerica.com&LSESSIONID=eyJpIjoiMTN0cGdkZ3VEMkNUbHVFU0dPQzIydz09IiwiZSI6IlpnbWdpcEt1WHFEY3NoSk9TUGVxclVMV1BXTllKdmpYTkdEeHRcL09YdnE0bDBWUEVcLzhWeTJjeUVvcXZRRXBvSVgwVDNNK3JsOEE2QVY2REVqNDJZYnhXdnQyYlBoUmdcL2NQaElSYmtiZ3NIZzdZaHZFXC9VallzR25YK2pTUWVcL0Y5MkNDc2haMkcwYll2RnBqUGZoMkN3PT0ifQ%3D%3D.bf7e6451e703a7a3.OWFhNTFhYmVkNmNiNGY5N2U5YzFlYWVhNTliNWYwZGFlMDU5NGIzNmQxMWVmMGNlNGY3YTE5MGJjMDM2OWIyZg%3D%3D&t=jsonp&__tp=login&c=yeziskmirsykvvcy&eu=https%3A%2F%2Fsecure.bankofamerica.com%2Flogin%2Fsign-in%2FsignOnV2Screen.go
IP
Requested by https://secure.bankofamerica.com/login/sign-in/signOnV2Screen.go?reason=digitalcardsettings&version=7.7.0&screen=CardSettings:Home&channel=desktop
Certificate IssuerEntrust, Inc.
Subjectdull.bankofamerica.com
Fingerprint06:06:2A:50:7C:50:5E:DA:32:13:4B:7E:FA:B7:22:23:5E:11:7B:86
ValidityTue, 11 Apr 2023 18:44:23 GMT - Sat, 11 May 2024 18:44:23 GMT
File type ASCII text, with no line terminators
Hash 1512d6db28d9deb34b2c756e98600eba
f50acea7b8a6ece984b70ebb545c9b3932e06848
3804987ddc7393629e03e0167ee7850b1948646bab26dbef3d00e8ecfd3b9000
GET /boaa/may?h=93f5bd1f6721dd72256b7b0f98d3492086a2bbca19783281af1d7dbaeea52e23&s=446&ti=3.469&si=1&e=https%3A%2F%2Fsecure.bankofamerica.com&LSESSIONID=eyJpIjoiMTN0cGdkZ3VEMkNUbHVFU0dPQzIydz09IiwiZSI6IlpnbWdpcEt1WHFEY3NoSk9TUGVxclVMV1BXTllKdmpYTkdEeHRcL09YdnE0bDBWUEVcLzhWeTJjeUVvcXZRRXBvSVgwVDNNK3JsOEE2QVY2REVqNDJZYnhXdnQyYlBoUmdcL2NQaElSYmtiZ3NIZzdZaHZFXC9VallzR25YK2pTUWVcL0Y5MkNDc2haMkcwYll2RnBqUGZoMkN3PT0ifQ%3D%3D.bf7e6451e703a7a3.OWFhNTFhYmVkNmNiNGY5N2U5YzFlYWVhNTliNWYwZGFlMDU5NGIzNmQxMWVmMGNlNGY3YTE5MGJjMDM2OWIyZg%3D%3D&t=jsonp&__tp=login&c=yeziskmirsykvvcy&eu=https%3A%2F%2Fsecure.bankofamerica.com%2Flogin%2Fsign-in%2FsignOnV2Screen.go HTTP/1.1
Host: dull.bankofamerica.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://secure.bankofamerica.com/
Cookie: SPID=Q2S2; SID=0012F376220065A03C60; BOFA_LOCALE_COOKIE=en-US; check=true; mbox=session#57dcbcff79f64b00b2c6b92b2b9f0cd1#1705001896|PC#57dcbcff79f64b00b2c6b92b2b9f0cd1.37_0#1768244836; cmTPSet=Y; ccts=eZNFkpCbWdMywexMkW3gw8ZwTTbsO9OaArVwz+4RWCw3NnxVVCgBlfFnq6T3AJXYJeafidKKGLraRQgybbOVuA==; WPID=Q2S2; LSESSIONID=eyJpIjoiMTN0cGdkZ3VEMkNUbHVFU0dPQzIydz09IiwiZSI6IlpnbWdpcEt1WHFEY3NoSk9TUGVxclVMV1BXTllKdmpYTkdEeHRcL09YdnE0bDBWUEVcLzhWeTJjeUVvcXZRRXBvSVgwVDNNK3JsOEE2QVY2REVqNDJZYnhXdnQyYlBoUmdcL2NQaElSYmtiZ3NIZzdZaHZFXC9VallzR25YK2pTUWVcL0Y5MkNDc2haMkcwYll2RnBqUGZoMkN3PT0ifQ%3D%3D.bf7e6451e703a7a3.OWFhNTFhYmVkNmNiNGY5N2U5YzFlYWVhNTliNWYwZGFlMDU5NGIzNmQxMWVmMGNlNGY3YTE5MGJjMDM2OWIyZg%3D%3D; CSID=NjNhNjQ3ZGEtYTVkMy00YTQxLWJmNTktZmRhMGI1ZjllY2UxOjE3MDUwMDAwMzYxOTI=; AHVC=0-7:https://secure2.bac-assets.com/sparta/client/helper/spa-assets/components/utilities/client-helper/behbio/cs/2.0.0/js/cs.js:https://secure2.bac-assets.com/sparta/client/helper/spa-assets/components/utilities/client-helper/behbio/bc/3.0.0/js/bc.js:https://secure2.bac-assets.com/sparta/client/helper/spa-assets/components/utilities/client-helper/behbio/auth/2.0.0/js/auth.js; GSID=0ruADoBoRtaXv1sdk4K9DUyKHwImUFH0Zkh79fXA; cdContextId=2; bmuid=1705000036543-322160C1-8097-480A-9B4F-4EC67F550DB8; cdSNum=1705000037167-sjn0000086-8f60fa08-78d2-4c5a-acaa-619b3ef9de20; __gdic=lr9l00oi3jzzvulke56; ___r30306=0.2944434484247
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 11 Jan 2024 19:07:20 GMT
content-type: text/javascript
content-length: 71
server: haile
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
x-xss-protection: 1
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
pics-label: (PICS-1.1 "http://www.icra.org/pics/vocabularyv03/" l r (n 0 s 0 v 0 l 0 oa 0 ob 0 oc 0 od 0 oe 0 of 0 og 0 oh 0 c 0) "http://www.icra.org/ratingsv02.html" l r (nz 0 vz 0 lz 0 oz 0 cz 0) "http://www.rsac.org/ratingsv01.html" l r (n 0 s 0 v 0 l 0))
p3p: CP="NOI ADM DEV PSAi COM NAV OUR OTR STP IND DEM"
X-Firefox-Spdy: h2
dull.bankofamerica.com/boaa/pHAQ?cid=6&si=1&e=https%3A%2F%2Fsecure.bankofamerica.com&LSESSIONID=eyJpIjoiMTN0cGdkZ3VEMkNUbHVFU0dPQzIydz09IiwiZSI6IlpnbWdpcEt1WHFEY3NoSk9TUGVxclVMV1BXTllKdmpYTkdEeHRcL09YdnE0bDBWUEVcLzhWeTJjeUVvcXZRRXBvSVgwVDNNK3JsOEE2QVY2REVqNDJZYnhXdnQyYlBoUmdcL2NQaElSYmtiZ3NIZzdZaHZFXC9VallzR25YK2pTUWVcL0Y5MkNDc2haMkcwYll2RnBqUGZoMkN3PT0ifQ%3D%3D.bf7e6451e703a7a3.OWFhNTFhYmVkNmNiNGY5N2U5YzFlYWVhNTliNWYwZGFlMDU5NGIzNmQxMWVmMGNlNGY3YTE5MGJjMDM2OWIyZg%3D%3D&t=xpost&__tp=login
184 B URL dull.bankofamerica.com/boaa/pHAQ?cid=6&si=1&e=https%3A%2F%2Fsecure.bankofamerica.com&LSESSIONID=eyJpIjoiMTN0cGdkZ3VEMkNUbHVFU0dPQzIydz09IiwiZSI6IlpnbWdpcEt1WHFEY3NoSk9TUGVxclVMV1BXTllKdmpYTkdEeHRcL09YdnE0bDBWUEVcLzhWeTJjeUVvcXZRRXBvSVgwVDNNK3JsOEE2QVY2REVqNDJZYnhXdnQyYlBoUmdcL2NQaElSYmtiZ3NIZzdZaHZFXC9VallzR25YK2pTUWVcL0Y5MkNDc2haMkcwYll2RnBqUGZoMkN3PT0ifQ%3D%3D.bf7e6451e703a7a3.OWFhNTFhYmVkNmNiNGY5N2U5YzFlYWVhNTliNWYwZGFlMDU5NGIzNmQxMWVmMGNlNGY3YTE5MGJjMDM2OWIyZg%3D%3D&t=xpost&__tp=login
IP
Certificate IssuerEntrust, Inc.
Subjectdull.bankofamerica.com
Fingerprint06:06:2A:50:7C:50:5E:DA:32:13:4B:7E:FA:B7:22:23:5E:11:7B:86
ValidityTue, 11 Apr 2023 18:44:23 GMT - Sat, 11 May 2024 18:44:23 GMT
File type ASCII text, with no line terminators
Hash 614d423b52a3c5bca0cd47a9e4863f42
3b2cd20821644a1a16a3472c3c7daa78b6b997ef
94cc2d1631bca837d8916a3c2928e8566c02856ee4a498c32f0fa11f12e86ddd
POST /boaa/pHAQ?cid=6&si=1&e=https%3A%2F%2Fsecure.bankofamerica.com&LSESSIONID=eyJpIjoiMTN0cGdkZ3VEMkNUbHVFU0dPQzIydz09IiwiZSI6IlpnbWdpcEt1WHFEY3NoSk9TUGVxclVMV1BXTllKdmpYTkdEeHRcL09YdnE0bDBWUEVcLzhWeTJjeUVvcXZRRXBvSVgwVDNNK3JsOEE2QVY2REVqNDJZYnhXdnQyYlBoUmdcL2NQaElSYmtiZ3NIZzdZaHZFXC9VallzR25YK2pTUWVcL0Y5MkNDc2haMkcwYll2RnBqUGZoMkN3PT0ifQ%3D%3D.bf7e6451e703a7a3.OWFhNTFhYmVkNmNiNGY5N2U5YzFlYWVhNTliNWYwZGFlMDU5NGIzNmQxMWVmMGNlNGY3YTE5MGJjMDM2OWIyZg%3D%3D&t=xpost&__tp=login HTTP/1.1
Host: dull.bankofamerica.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
X-Embedding-Uri: https://secure.bankofamerica.com/login/sign-in/signOnV2Screen.go
Content-Length: 69494
Origin: https://dull.bankofamerica.com
DNT: 1
Connection: keep-alive
Referer: https://dull.bankofamerica.com/boaa/iconnectmx.html?sui=493708cf61cb9aa4841727dc5ccbfa8131a2eed810339345cef5f2dd9d39fa68
Cookie: SPID=Q2S2; SID=0012F376220065A03C60; BOFA_LOCALE_COOKIE=en-US; check=true; mbox=session#57dcbcff79f64b00b2c6b92b2b9f0cd1#1705001896|PC#57dcbcff79f64b00b2c6b92b2b9f0cd1.37_0#1768244836; cmTPSet=Y; ccts=eZNFkpCbWdMywexMkW3gw8ZwTTbsO9OaArVwz+4RWCw3NnxVVCgBlfFnq6T3AJXYJeafidKKGLraRQgybbOVuA==; WPID=Q2S2; LSESSIONID=eyJpIjoiMTN0cGdkZ3VEMkNUbHVFU0dPQzIydz09IiwiZSI6IlpnbWdpcEt1WHFEY3NoSk9TUGVxclVMV1BXTllKdmpYTkdEeHRcL09YdnE0bDBWUEVcLzhWeTJjeUVvcXZRRXBvSVgwVDNNK3JsOEE2QVY2REVqNDJZYnhXdnQyYlBoUmdcL2NQaElSYmtiZ3NIZzdZaHZFXC9VallzR25YK2pTUWVcL0Y5MkNDc2haMkcwYll2RnBqUGZoMkN3PT0ifQ%3D%3D.bf7e6451e703a7a3.OWFhNTFhYmVkNmNiNGY5N2U5YzFlYWVhNTliNWYwZGFlMDU5NGIzNmQxMWVmMGNlNGY3YTE5MGJjMDM2OWIyZg%3D%3D; CSID=NjNhNjQ3ZGEtYTVkMy00YTQxLWJmNTktZmRhMGI1ZjllY2UxOjE3MDUwMDAwMzYxOTI=; AHVC=0-7:https://secure2.bac-assets.com/sparta/client/helper/spa-assets/components/utilities/client-helper/behbio/cs/2.0.0/js/cs.js:https://secure2.bac-assets.com/sparta/client/helper/spa-assets/components/utilities/client-helper/behbio/bc/3.0.0/js/bc.js:https://secure2.bac-assets.com/sparta/client/helper/spa-assets/components/utilities/client-helper/behbio/auth/2.0.0/js/auth.js; GSID=0ruADoBoRtaXv1sdk4K9DUyKHwImUFH0Zkh79fXA; cdContextId=2; bmuid=1705000036543-322160C1-8097-480A-9B4F-4EC67F550DB8; cdSNum=1705000037167-sjn0000086-8f60fa08-78d2-4c5a-acaa-619b3ef9de20; __gdic=lr9l00oi3jzzvulke56; ___r30306=0.2944434484247
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 11 Jan 2024 19:07:20 GMT
content-type: text/html
content-length: 184
server: haile
access-control-allow-origin: https://dull.bankofamerica.com
vary: Origin
access-control-allow-credentials: true
access-control-allow-methods: GET, OPTIONS
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
x-xss-protection: 1
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
pics-label: (PICS-1.1 "http://www.icra.org/pics/vocabularyv03/" l r (n 0 s 0 v 0 l 0 oa 0 ob 0 oc 0 od 0 oe 0 of 0 og 0 oh 0 c 0) "http://www.icra.org/ratingsv02.html" l r (nz 0 vz 0 lz 0 oz 0 cz 0) "http://www.rsac.org/ratingsv01.html" l r (n 0 s 0 v 0 l 0))
p3p: CP="NOI ADM DEV PSAi COM NAV OUR OTR STP IND DEM"
X-Firefox-Spdy: h2
bup.bankofamerica.com/client/v3.1/web/wup?cid=barbie
200 OK 729 B URL POST HTTP/2 bup.bankofamerica.com/client/v3.1/web/wup?cid=barbie
IP
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Requested by https://secure.bankofamerica.com/login/sign-in/signOnV2Screen.go?reason=digitalcardsettings&version=7.7.0&screen=CardSettings:Home&channel=desktop
Certificate IssuerEntrust, Inc.
Subjectbup.bankofamerica.com
Fingerprint3C:93:13:E9:09:F5:04:93:85:01:C8:D8:E7:E5:B2:E7:16:24:5C:FE
ValidityWed, 20 Sep 2023 17:21:22 GMT - Sat, 12 Oct 2024 17:21:21 GMT
Hash ef599f71776614cf2afaafdcf6f943fd
3dc0c1a9a57e71b492c8cb1d060aef2f7aed609d
2036c1c22c06a7e28775f455b2dba1cc1f285cedbbed3aa5b2dd09b78f322e46
POST /client/v3.1/web/wup?cid=barbie HTTP/1.1
Host: bup.bankofamerica.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 1676
Origin: https://secure.bankofamerica.com
DNT: 1
Connection: keep-alive
Referer: https://secure.bankofamerica.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: application/json
content-length: 729
date: Thu, 11 Jan 2024 19:07:20 GMT
server: uvicorn
access-control-allow-credentials: true
access-control-allow-origin: https://secure.bankofamerica.com
vary: Origin
cache-control: no-cache, no-store
pragma: no-cache
tail-id: 5e29ea25-e324-4c38-96b7-adf7ef3fb35c
strict-transport-security: max-age=31536000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-security-policy: default-src 'self'
X-Firefox-Spdy: h2
dull.bankofamerica.com/boaa/iconnectmx.html?sui=493708cf61cb9aa4841727dc5ccbfa8131a2eed810339345cef5f2dd9d39fa68
11 kB URL dull.bankofamerica.com/boaa/iconnectmx.html?sui=493708cf61cb9aa4841727dc5ccbfa8131a2eed810339345cef5f2dd9d39fa68
IP
Certificate IssuerEntrust, Inc.
Subjectdull.bankofamerica.com
Fingerprint06:06:2A:50:7C:50:5E:DA:32:13:4B:7E:FA:B7:22:23:5E:11:7B:86
ValidityTue, 11 Apr 2023 18:44:23 GMT - Sat, 11 May 2024 18:44:23 GMT
File type gzip compressed data, max speed, from Unix
Hash f65fdc79e6b9e5e6bf5bc0d6ee03bc34
ece24a0a0f97e3dd84d33454045a5b0b19f9672c
91c93a793ce090f0f4dfec20eb7670414fa080b82dee36e5d21c74bd4b80a65e
GET /boaa/iconnectmx.html?sui=493708cf61cb9aa4841727dc5ccbfa8131a2eed810339345cef5f2dd9d39fa68 HTTP/1.1
Host: dull.bankofamerica.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://secure.bankofamerica.com/
Cookie: SPID=Q2S2; SID=0012F376220065A03C60; BOFA_LOCALE_COOKIE=en-US; check=true; mbox=session#57dcbcff79f64b00b2c6b92b2b9f0cd1#1705001896|PC#57dcbcff79f64b00b2c6b92b2b9f0cd1.37_0#1768244836; cmTPSet=Y; ccts=eZNFkpCbWdMywexMkW3gw8ZwTTbsO9OaArVwz+4RWCw3NnxVVCgBlfFnq6T3AJXYJeafidKKGLraRQgybbOVuA==; WPID=Q2S2; LSESSIONID=eyJpIjoiMTN0cGdkZ3VEMkNUbHVFU0dPQzIydz09IiwiZSI6IlpnbWdpcEt1WHFEY3NoSk9TUGVxclVMV1BXTllKdmpYTkdEeHRcL09YdnE0bDBWUEVcLzhWeTJjeUVvcXZRRXBvSVgwVDNNK3JsOEE2QVY2REVqNDJZYnhXdnQyYlBoUmdcL2NQaElSYmtiZ3NIZzdZaHZFXC9VallzR25YK2pTUWVcL0Y5MkNDc2haMkcwYll2RnBqUGZoMkN3PT0ifQ%3D%3D.bf7e6451e703a7a3.OWFhNTFhYmVkNmNiNGY5N2U5YzFlYWVhNTliNWYwZGFlMDU5NGIzNmQxMWVmMGNlNGY3YTE5MGJjMDM2OWIyZg%3D%3D; CSID=NjNhNjQ3ZGEtYTVkMy00YTQxLWJmNTktZmRhMGI1ZjllY2UxOjE3MDUwMDAwMzYxOTI=; AHVC=0-7:https://secure2.bac-assets.com/sparta/client/helper/spa-assets/components/utilities/client-helper/behbio/cs/2.0.0/js/cs.js:https://secure2.bac-assets.com/sparta/client/helper/spa-assets/components/utilities/client-helper/behbio/bc/3.0.0/js/bc.js:https://secure2.bac-assets.com/sparta/client/helper/spa-assets/components/utilities/client-helper/behbio/auth/2.0.0/js/auth.js; GSID=0ruADoBoRtaXv1sdk4K9DUyKHwImUFH0Zkh79fXA; cdContextId=2; bmuid=1705000036543-322160C1-8097-480A-9B4F-4EC67F550DB8; cdSNum=1705000037167-sjn0000086-8f60fa08-78d2-4c5a-acaa-619b3ef9de20; __gdic=lr9l00oi3jzzvulke56; ___r30306=0.2944434484247
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 11 Jan 2024 19:07:18 GMT
content-type: text/html
server: haile
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
x-xss-protection: 1
expires: Thu, 11 Jan 2024 20:07:18 GMT
cache-control: private, max-age=3600
pics-label: (PICS-1.1 "http://www.icra.org/pics/vocabularyv03/" l r (n 0 s 0 v 0 l 0 oa 0 ob 0 oc 0 od 0 oe 0 of 0 og 0 oh 0 c 0) "http://www.icra.org/ratingsv02.html" l r (nz 0 vz 0 lz 0 oz 0 cz 0) "http://www.rsac.org/ratingsv01.html" l r (n 0 s 0 v 0 l 0))
p3p: CP="NOI ADM DEV PSAi COM NAV OUR OTR STP IND DEM"
content-encoding: gzip
X-Firefox-Spdy: h2
bup.bankofamerica.com/client/v3.1/web/wup?cid=barbie
200 OK 729 B URL POST HTTP/2 bup.bankofamerica.com/client/v3.1/web/wup?cid=barbie
IP
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Requested by https://secure.bankofamerica.com/login/sign-in/signOnV2Screen.go?reason=digitalcardsettings&version=7.7.0&screen=CardSettings:Home&channel=desktop
Certificate IssuerEntrust, Inc.
Subjectbup.bankofamerica.com
Fingerprint3C:93:13:E9:09:F5:04:93:85:01:C8:D8:E7:E5:B2:E7:16:24:5C:FE
ValidityWed, 20 Sep 2023 17:21:22 GMT - Sat, 12 Oct 2024 17:21:21 GMT
Hash 3811692e4c2d1a0af1c5023b560add64
a0ff14f22b55bdb9148fc192b296ac6dee8c5b84
0e1c528c4e3d638d64b2b91f6fd358f96bd065ba2f91ca5a9c70b8310988a43d
POST /client/v3.1/web/wup?cid=barbie HTTP/1.1
Host: bup.bankofamerica.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 2724
Origin: https://secure.bankofamerica.com
DNT: 1
Connection: keep-alive
Referer: https://secure.bankofamerica.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: application/json
content-length: 729
date: Thu, 11 Jan 2024 19:07:21 GMT
server: uvicorn
access-control-allow-credentials: true
access-control-allow-origin: https://secure.bankofamerica.com
vary: Origin
cache-control: no-cache, no-store
pragma: no-cache
tail-id: 0a349803-1e06-42a2-a313-64dd8aaabb7f
strict-transport-security: max-age=31536000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-security-policy: default-src 'self'
X-Firefox-Spdy: h2
bup.bankofamerica.com/client/v3.1/web/wup?cid=barbie
200 OK 729 B URL POST HTTP/2 bup.bankofamerica.com/client/v3.1/web/wup?cid=barbie
IP
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Requested by https://secure.bankofamerica.com/login/sign-in/signOnV2Screen.go?reason=digitalcardsettings&version=7.7.0&screen=CardSettings:Home&channel=desktop
Certificate IssuerEntrust, Inc.
Subjectbup.bankofamerica.com
Fingerprint3C:93:13:E9:09:F5:04:93:85:01:C8:D8:E7:E5:B2:E7:16:24:5C:FE
ValidityWed, 20 Sep 2023 17:21:22 GMT - Sat, 12 Oct 2024 17:21:21 GMT
Hash 93ff2f92aff788537c284a95cdafe43b
b0872a001d9fe8df3cf98b9b75f86c4616697ba0
1d969cc591f491e93eb852b8a65b9ab715c540b55afcfc76d585b47c0802bc8b
POST /client/v3.1/web/wup?cid=barbie HTTP/1.1
Host: bup.bankofamerica.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 2184
Origin: https://secure.bankofamerica.com
DNT: 1
Connection: keep-alive
Referer: https://secure.bankofamerica.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: application/json
content-length: 729
date: Thu, 11 Jan 2024 19:07:21 GMT
server: uvicorn
access-control-allow-credentials: true
access-control-allow-origin: https://secure.bankofamerica.com
vary: Origin
cache-control: no-cache, no-store
pragma: no-cache
tail-id: f3281fdd-cd9e-4707-a154-829a49ed6bf4
strict-transport-security: max-age=31536000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-security-policy: default-src 'self'
X-Firefox-Spdy: h2
aero.bankofamerica.com/30306/suboban.html?sui=493708cf61cb9aa4841727dc5ccbfa8131a2eed810339345cef5f2dd9d39fa68
11 kB URL aero.bankofamerica.com/30306/suboban.html?sui=493708cf61cb9aa4841727dc5ccbfa8131a2eed810339345cef5f2dd9d39fa68
IP
Certificate IssuerEntrust, Inc.
Subjectaero.bankofamerica.com
FingerprintF1:27:27:34:1C:BC:DA:E8:FD:60:61:CE:02:0A:FC:21:E7:F6:4D:6D
ValidityTue, 11 Apr 2023 18:44:23 GMT - Sat, 11 May 2024 18:44:23 GMT
File type gzip compressed data, max speed, from Unix
Hash 1f9d6bac10642e1c1a70bbd5257dfc90
4faf92c0f68167866fcc548c5cebf7e76cfb3fb9
1fb57ce46a5f8f6425a92444cfb8fe9e38b92adc8f501b0d03fc6111a71c5490
GET /30306/suboban.html?sui=493708cf61cb9aa4841727dc5ccbfa8131a2eed810339345cef5f2dd9d39fa68 HTTP/1.1
Host: aero.bankofamerica.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://secure.bankofamerica.com/
Cookie: SPID=Q2S2; SID=0012F376220065A03C60; BOFA_LOCALE_COOKIE=en-US; check=true; mbox=session#57dcbcff79f64b00b2c6b92b2b9f0cd1#1705001896|PC#57dcbcff79f64b00b2c6b92b2b9f0cd1.37_0#1768244836; cmTPSet=Y; ccts=eZNFkpCbWdMywexMkW3gw8ZwTTbsO9OaArVwz+4RWCw3NnxVVCgBlfFnq6T3AJXYJeafidKKGLraRQgybbOVuA==; WPID=Q2S2; LSESSIONID=eyJpIjoiMTN0cGdkZ3VEMkNUbHVFU0dPQzIydz09IiwiZSI6IlpnbWdpcEt1WHFEY3NoSk9TUGVxclVMV1BXTllKdmpYTkdEeHRcL09YdnE0bDBWUEVcLzhWeTJjeUVvcXZRRXBvSVgwVDNNK3JsOEE2QVY2REVqNDJZYnhXdnQyYlBoUmdcL2NQaElSYmtiZ3NIZzdZaHZFXC9VallzR25YK2pTUWVcL0Y5MkNDc2haMkcwYll2RnBqUGZoMkN3PT0ifQ%3D%3D.bf7e6451e703a7a3.OWFhNTFhYmVkNmNiNGY5N2U5YzFlYWVhNTliNWYwZGFlMDU5NGIzNmQxMWVmMGNlNGY3YTE5MGJjMDM2OWIyZg%3D%3D; CSID=NjNhNjQ3ZGEtYTVkMy00YTQxLWJmNTktZmRhMGI1ZjllY2UxOjE3MDUwMDAwMzYxOTI=; AHVC=0-7:https://secure2.bac-assets.com/sparta/client/helper/spa-assets/components/utilities/client-helper/behbio/cs/2.0.0/js/cs.js:https://secure2.bac-assets.com/sparta/client/helper/spa-assets/components/utilities/client-helper/behbio/bc/3.0.0/js/bc.js:https://secure2.bac-assets.com/sparta/client/helper/spa-assets/components/utilities/client-helper/behbio/auth/2.0.0/js/auth.js; GSID=0ruADoBoRtaXv1sdk4K9DUyKHwImUFH0Zkh79fXA; cdContextId=2; bmuid=1705000036543-322160C1-8097-480A-9B4F-4EC67F550DB8; cdSNum=1705000037167-sjn0000086-8f60fa08-78d2-4c5a-acaa-619b3ef9de20; __gdic=lr9l00oi3jzzvulke56; ___r30306=0.2944434484247
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 11 Jan 2024 19:07:21 GMT
content-type: text/html
server: haile
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
x-xss-protection: 1
expires: Thu, 11 Jan 2024 20:07:21 GMT
cache-control: private, max-age=3600
pics-label: (PICS-1.1 "http://www.icra.org/pics/vocabularyv03/" l r (n 0 s 0 v 0 l 0 oa 0 ob 0 oc 0 od 0 oe 0 of 0 og 0 oh 0 c 0) "http://www.icra.org/ratingsv02.html" l r (nz 0 vz 0 lz 0 oz 0 cz 0) "http://www.rsac.org/ratingsv01.html" l r (n 0 s 0 v 0 l 0))
p3p: CP="NOI ADM DEV PSAi COM NAV OUR OTR STP IND DEM"
content-encoding: gzip
X-Firefox-Spdy: h2
bup.bankofamerica.com/client/v3.1/web/wup?cid=barbie
200 OK 729 B URL POST HTTP/2 bup.bankofamerica.com/client/v3.1/web/wup?cid=barbie
IP
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Requested by https://secure.bankofamerica.com/login/sign-in/signOnV2Screen.go?reason=digitalcardsettings&version=7.7.0&screen=CardSettings:Home&channel=desktop
Certificate IssuerEntrust, Inc.
Subjectbup.bankofamerica.com
Fingerprint3C:93:13:E9:09:F5:04:93:85:01:C8:D8:E7:E5:B2:E7:16:24:5C:FE
ValidityWed, 20 Sep 2023 17:21:22 GMT - Sat, 12 Oct 2024 17:21:21 GMT
Hash 4663f8444cae379fc0585d10c80ebf54
92ea465b14fa24198f56dcac3477ba3510bd665c
87c87233a9b4590b36cceeb6ffbd4c64bc2d66062e2a42f3af89f949f7c7e4c8
POST /client/v3.1/web/wup?cid=barbie HTTP/1.1
Host: bup.bankofamerica.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 1192
Origin: https://secure.bankofamerica.com
DNT: 1
Connection: keep-alive
Referer: https://secure.bankofamerica.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: application/json
content-length: 729
date: Thu, 11 Jan 2024 19:07:22 GMT
server: uvicorn
access-control-allow-credentials: true
access-control-allow-origin: https://secure.bankofamerica.com
vary: Origin
cache-control: no-cache, no-store
pragma: no-cache
tail-id: 7cb9aac3-88a2-494f-a655-17781adfb067
strict-transport-security: max-age=31536000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-security-policy: default-src 'self'
X-Firefox-Spdy: h2
aero.bankofamerica.com/30306/C5ib?d=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%3D%3D&cid=8&si=0&e=https%3A%2F%2Fsecure.bankofamerica.com&LSESSIONID=eyJpIjoiMTN0cGdkZ3VEMkNUbHVFU0dPQzIydz09IiwiZSI6IlpnbWdpcEt1WHFEY3NoSk9TUGVxclVMV1BXTllKdmpYTkdEeHRcL09YdnE0bDBWUEVcLzhWeTJjeUVvcXZRRXBvSVgwVDNNK3JsOEE2QVY2REVqNDJZYnhXdnQyYlBoUmdcL2NQaElSYmtiZ3NIZzdZaHZFXC9VallzR25YK2pTUWVcL0Y5MkNDc2haMkcwYll2RnBqUGZoMkN3PT0ifQ%3D%3D.bf7e6451e703a7a3.OWFhNTFhYmVkNmNiNGY5N2U5YzFlYWVhNTliNWYwZGFlMDU5NGIzNmQxMWVmMGNlNGY3YTE5MGJjMDM2OWIyZg%3D%3D&t=jsonp&__tp=login&c=bverlef_bszmahqw&eu=https%3A%2F%2Fsecure.bankofamerica.com%2Flogin%2Fsign-in%2FsignOnV2Screen.go
158 B URL aero.bankofamerica.com/30306/C5ib?d=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%3D%3D&cid=8&si=0&e=https%3A%2F%2Fsecure.bankofamerica.com&LSESSIONID=eyJpIjoiMTN0cGdkZ3VEMkNUbHVFU0dPQzIydz09IiwiZSI6IlpnbWdpcEt1WHFEY3NoSk9TUGVxclVMV1BXTllKdmpYTkdEeHRcL09YdnE0bDBWUEVcLzhWeTJjeUVvcXZRRXBvSVgwVDNNK3JsOEE2QVY2REVqNDJZYnhXdnQyYlBoUmdcL2NQaElSYmtiZ3NIZzdZaHZFXC9VallzR25YK2pTUWVcL0Y5MkNDc2haMkcwYll2RnBqUGZoMkN3PT0ifQ%3D%3D.bf7e6451e703a7a3.OWFhNTFhYmVkNmNiNGY5N2U5YzFlYWVhNTliNWYwZGFlMDU5NGIzNmQxMWVmMGNlNGY3YTE5MGJjMDM2OWIyZg%3D%3D&t=jsonp&__tp=login&c=bverlef_bszmahqw&eu=https%3A%2F%2Fsecure.bankofamerica.com%2Flogin%2Fsign-in%2FsignOnV2Screen.go
IP
Certificate IssuerEntrust, Inc.
Subjectaero.bankofamerica.com
FingerprintF1:27:27:34:1C:BC:DA:E8:FD:60:61:CE:02:0A:FC:21:E7:F6:4D:6D
ValidityTue, 11 Apr 2023 18:44:23 GMT - Sat, 11 May 2024 18:44:23 GMT
File type ASCII text, with no line terminators
Hash f82872a7b43d2961f34577d9e16e473e
3a3c509d2b0c551dd1fa5adec1f30f616c2236b9
7bf2b6204b318724cc85841e7dfe37a4e0cac853b59355fe17ed9b4cbe7b0c0c
GET /30306/C5ib?d=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%3D%3D&cid=8&si=0&e=https%3A%2F%2Fsecure.bankofamerica.com&LSESSIONID=eyJpIjoiMTN0cGdkZ3VEMkNUbHVFU0dPQzIydz09IiwiZSI6IlpnbWdpcEt1WHFEY3NoSk9TUGVxclVMV1BXTllKdmpYTkdEeHRcL09YdnE0bDBWUEVcLzhWeTJjeUVvcXZRRXBvSVgwVDNNK3JsOEE2QVY2REVqNDJZYnhXdnQyYlBoUmdcL2NQaElSYmtiZ3NIZzdZaHZFXC9VallzR25YK2pTUWVcL0Y5MkNDc2haMkcwYll2RnBqUGZoMkN3PT0ifQ%3D%3D.bf7e6451e703a7a3.OWFhNTFhYmVkNmNiNGY5N2U5YzFlYWVhNTliNWYwZGFlMDU5NGIzNmQxMWVmMGNlNGY3YTE5MGJjMDM2OWIyZg%3D%3D&t=jsonp&__tp=login&c=bverlef_bszmahqw&eu=https%3A%2F%2Fsecure.bankofamerica.com%2Flogin%2Fsign-in%2FsignOnV2Screen.go HTTP/1.1
Host: aero.bankofamerica.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://secure.bankofamerica.com/
Cookie: SPID=Q2S2; SID=0012F376220065A03C60; BOFA_LOCALE_COOKIE=en-US; check=true; mbox=session#57dcbcff79f64b00b2c6b92b2b9f0cd1#1705001896|PC#57dcbcff79f64b00b2c6b92b2b9f0cd1.37_0#1768244836; cmTPSet=Y; ccts=eZNFkpCbWdMywexMkW3gw8ZwTTbsO9OaArVwz+4RWCw3NnxVVCgBlfFnq6T3AJXYJeafidKKGLraRQgybbOVuA==; WPID=Q2S2; LSESSIONID=eyJpIjoiMTN0cGdkZ3VEMkNUbHVFU0dPQzIydz09IiwiZSI6IlpnbWdpcEt1WHFEY3NoSk9TUGVxclVMV1BXTllKdmpYTkdEeHRcL09YdnE0bDBWUEVcLzhWeTJjeUVvcXZRRXBvSVgwVDNNK3JsOEE2QVY2REVqNDJZYnhXdnQyYlBoUmdcL2NQaElSYmtiZ3NIZzdZaHZFXC9VallzR25YK2pTUWVcL0Y5MkNDc2haMkcwYll2RnBqUGZoMkN3PT0ifQ%3D%3D.bf7e6451e703a7a3.OWFhNTFhYmVkNmNiNGY5N2U5YzFlYWVhNTliNWYwZGFlMDU5NGIzNmQxMWVmMGNlNGY3YTE5MGJjMDM2OWIyZg%3D%3D; CSID=NjNhNjQ3ZGEtYTVkMy00YTQxLWJmNTktZmRhMGI1ZjllY2UxOjE3MDUwMDAwMzYxOTI=; AHVC=0-7:https://secure2.bac-assets.com/sparta/client/helper/spa-assets/components/utilities/client-helper/behbio/cs/2.0.0/js/cs.js:https://secure2.bac-assets.com/sparta/client/helper/spa-assets/components/utilities/client-helper/behbio/bc/3.0.0/js/bc.js:https://secure2.bac-assets.com/sparta/client/helper/spa-assets/components/utilities/client-helper/behbio/auth/2.0.0/js/auth.js; GSID=0ruADoBoRtaXv1sdk4K9DUyKHwImUFH0Zkh79fXA; cdContextId=2; bmuid=1705000036543-322160C1-8097-480A-9B4F-4EC67F550DB8; cdSNum=1705000037167-sjn0000086-8f60fa08-78d2-4c5a-acaa-619b3ef9de20; __gdic=lr9l00oi3jzzvulke56; ___r30306=0.2944434484247
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 11 Jan 2024 19:07:33 GMT
content-type: text/javascript
content-length: 158
server: haile
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
x-xss-protection: 1
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
pics-label: (PICS-1.1 "http://www.icra.org/pics/vocabularyv03/" l r (n 0 s 0 v 0 l 0 oa 0 ob 0 oc 0 od 0 oe 0 of 0 og 0 oh 0 c 0) "http://www.icra.org/ratingsv02.html" l r (nz 0 vz 0 lz 0 oz 0 cz 0) "http://www.rsac.org/ratingsv01.html" l r (n 0 s 0 v 0 l 0))
p3p: CP="NOI ADM DEV PSAi COM NAV OUR OTR STP IND DEM"
X-Firefox-Spdy: h2
cdn.cookielaw.org/logos/static/ot_guard_logo.svg
200 OK 497 B URL GET HTTP/2 cdn.cookielaw.org/logos/static/ot_guard_logo.svg
IP
Requested by https://secure.bankofamerica.com/login/sign-in/signOnV2Screen.go?reason=digitalcardsettings&version=7.7.0&screen=CardSettings:Home&channel=desktop
Certificate IssuerCloudflare, Inc.
Subjectcookielaw.org
Fingerprint72:BB:48:60:EB:F2:A2:EB:51:29:51:1A:B9:2A:85:30:97:3D:9A:2E
ValiditySat, 01 Apr 2023 00:00:00 GMT - Sun, 31 Mar 2024 23:59:59 GMT
File type SVG Scalable Vector Graphics image
Hash 4cefeea2da1f500b581d4842d6454a50
9939dd4c1394641f53655e558bfdca7499480c52
220f235f0188ff469b92b56eb86adf4e828b8a90c587ebfa073383b8583aaeb2
GET /logos/static/ot_guard_logo.svg HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://secure.bankofamerica.com/
Origin: https://secure.bankofamerica.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 11 Jan 2024 19:07:14 GMT
content-type: image/svg+xml
content-md5: tXyZydHjxQshFMbbBT1/8A==
last-modified: Wed, 10 Jan 2024 03:41:50 GMT
x-ms-request-id: 7e2d0ad6-a01e-0036-658f-43b4f3000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: max-age=86400
cf-cache-status: HIT
age: 64786
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 843f710a9d6db521-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
cdn.cookielaw.org/scripttemplates/202308.1.0/assets/otCommonStyles.css
200 OK 22 kB URL GET HTTP/2 cdn.cookielaw.org/scripttemplates/202308.1.0/assets/otCommonStyles.css
IP
Requested by https://secure.bankofamerica.com/login/sign-in/signOnV2Screen.go?reason=digitalcardsettings&version=7.7.0&screen=CardSettings:Home&channel=desktop
Certificate IssuerCloudflare, Inc.
Subjectcookielaw.org
Fingerprint72:BB:48:60:EB:F2:A2:EB:51:29:51:1A:B9:2A:85:30:97:3D:9A:2E
ValiditySat, 01 Apr 2023 00:00:00 GMT - Sun, 31 Mar 2024 23:59:59 GMT
File type ASCII text, with very long lines (21778), with no line terminators
Hash 73bc4067d312180a1b19a4d883f42d6a
ad328a9a572fbea43f295e7769835ff08f6ff1fd
d3f7b0ec4de079928a999641e781e80f33597a392a561bc460276dfb4efb6eec
GET /scripttemplates/202308.1.0/assets/otCommonStyles.css HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://secure.bankofamerica.com/
Origin: https://secure.bankofamerica.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 11 Jan 2024 19:07:13 GMT
content-type: text/css
content-md5: c7xAZ9MSGAobGaTYg/Qtag==
last-modified: Wed, 25 Oct 2023 03:55:54 GMT
x-ms-request-id: 21861088-301e-0079-4ab5-0ec5a7000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: max-age=86400
cf-cache-status: HIT
age: 34288
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 843f70ff9b55b521-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
cdn.cookielaw.org/scripttemplates/202308.1.0/otBannerSdk.js
200 OK 421 kB URL GET HTTP/2 cdn.cookielaw.org/scripttemplates/202308.1.0/otBannerSdk.js
IP
Requested by https://secure.bankofamerica.com/login/sign-in/signOnV2Screen.go?reason=digitalcardsettings&version=7.7.0&screen=CardSettings:Home&channel=desktop
Certificate IssuerCloudflare, Inc.
Subjectcookielaw.org
Fingerprint72:BB:48:60:EB:F2:A2:EB:51:29:51:1A:B9:2A:85:30:97:3D:9A:2E
ValiditySat, 01 Apr 2023 00:00:00 GMT - Sun, 31 Mar 2024 23:59:59 GMT
Size 421 kB (420655 bytes)
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /scripttemplates/202308.1.0/otBannerSdk.js HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://secure.bankofamerica.com
DNT: 1
Connection: keep-alive
Referer: https://secure.bankofamerica.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 11 Jan 2024 19:07:13 GMT
content-type: application/javascript
content-length: 101254
content-encoding: gzip
content-md5: 2+I2Cj649lHjQKiedh8F2Q==
last-modified: Wed, 25 Oct 2023 03:55:47 GMT
etag: 0x8DBD50E45B16C1C
x-ms-request-id: 95ba9ec1-001e-005d-5d54-143307000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: max-age=86400
cf-cache-status: HIT
age: 64789
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 843f70fec9e9b521-OSL
X-Firefox-Spdy: h2
rail.bankofamerica.com/30306/hover.js?dt=login&r=0.3622039730010346
200 OK 78 kB URL GET HTTP/2 rail.bankofamerica.com/30306/hover.js?dt=login&r=0.3622039730010346
IP
Requested by https://secure.bankofamerica.com/login/sign-in/signOnV2Screen.go?reason=digitalcardsettings&version=7.7.0&screen=CardSettings:Home&channel=desktop
Certificate IssuerEntrust, Inc.
Subjectrail.bankofamerica.com
Fingerprint6C:B6:2C:AC:0A:3B:FC:ED:A3:C1:AE:17:34:16:67:A8:5A:0D:31:63
ValidityTue, 11 Apr 2023 15:57:55 GMT - Sat, 11 May 2024 15:57:55 GMT
File type ASCII text, with very long lines (65536), with no line terminators
Hash 6b9db519ecce5191caa0fe02a6fe4152
3c5679d8930249ce408ddda944f2c0ebba8fb3ba
c385d7a86a703e7fb70ab01a8c1a3062f0ca219af3150edc787e0502e44c0680
GET /30306/hover.js?dt=login&r=0.3622039730010346 HTTP/1.1
Host: rail.bankofamerica.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://secure.bankofamerica.com/
Cookie: SPID=Q2S2; SID=0012F376220065A03C60; BOFA_LOCALE_COOKIE=en-US; check=true; mbox=session#57dcbcff79f64b00b2c6b92b2b9f0cd1#1705001895; cmTPSet=Y
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 11 Jan 2024 19:07:15 GMT
content-type: application/x-javascript
server: haile
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
x-xss-protection: 1
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
pics-label: (PICS-1.1 "http://www.icra.org/pics/vocabularyv03/" l r (n 0 s 0 v 0 l 0 oa 0 ob 0 oc 0 od 0 oe 0 of 0 og 0 oh 0 c 0) "http://www.icra.org/ratingsv02.html" l r (nz 0 vz 0 lz 0 oz 0 cz 0) "http://www.rsac.org/ratingsv01.html" l r (n 0 s 0 v 0 l 0))
p3p: CP="NOI ADM DEV PSAi COM NAV OUR OTR STP IND DEM"
content-encoding: gzip
X-Firefox-Spdy: h2
aero.bankofamerica.com/30306/kurt.js
200 OK 112 kB URL GET HTTP/2 aero.bankofamerica.com/30306/kurt.js
IP
Requested by https://secure.bankofamerica.com/login/sign-in/signOnV2Screen.go?reason=digitalcardsettings&version=7.7.0&screen=CardSettings:Home&channel=desktop
Certificate IssuerEntrust, Inc.
Subjectaero.bankofamerica.com
FingerprintF1:27:27:34:1C:BC:DA:E8:FD:60:61:CE:02:0A:FC:21:E7:F6:4D:6D
ValidityTue, 11 Apr 2023 18:44:23 GMT - Sat, 11 May 2024 18:44:23 GMT
File type ASCII text, with very long lines (65536), with no line terminators
Size 112 kB (112021 bytes)
Hash 41572dde43dab7da85dd72c85ab6c120
17f7f63c6d722812ba6a061eef00c5d0ebdd8f51
f9eecd1252222f57c2555ee571a0bd328ca4dcdef73c48ef05bf26fbcea25b56
GET /30306/kurt.js HTTP/1.1
Host: aero.bankofamerica.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://secure.bankofamerica.com/
Cookie: SPID=Q2S2; SID=0012F376220065A03C60; BOFA_LOCALE_COOKIE=en-US; check=true; mbox=session#57dcbcff79f64b00b2c6b92b2b9f0cd1#1705001896|PC#57dcbcff79f64b00b2c6b92b2b9f0cd1.37_0#1768244836; cmTPSet=Y; ccts=V+mTvolDunF7lqP7E6TpB9Ph5bPGb+lTXE6Wt0H1FGLs3ZNaSjLELWHVUTE7CSjp/ADJb/cnG9UzZhOQNJ9hlg==; WPID=Q2S2; LSESSIONID=eyJpIjoiMTN0cGdkZ3VEMkNUbHVFU0dPQzIydz09IiwiZSI6IlpnbWdpcEt1WHFEY3NoSk9TUGVxclVMV1BXTllKdmpYTkdEeHRcL09YdnE0bDBWUEVcLzhWeTJjeUVvcXZRRXBvSVgwVDNNK3JsOEE2QVY2REVqNDJZYnhXdnQyYlBoUmdcL2NQaElSYmtiZ3NIZzdZaHZFXC9VallzR25YK2pTUWVcL0Y5MkNDc2haMkcwYll2RnBqUGZoMkN3PT0ifQ%3D%3D.bf7e6451e703a7a3.OWFhNTFhYmVkNmNiNGY5N2U5YzFlYWVhNTliNWYwZGFlMDU5NGIzNmQxMWVmMGNlNGY3YTE5MGJjMDM2OWIyZg%3D%3D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 11 Jan 2024 19:07:16 GMT
content-type: application/x-javascript
server: haile
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
x-xss-protection: 1
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
pics-label: (PICS-1.1 "http://www.icra.org/pics/vocabularyv03/" l r (n 0 s 0 v 0 l 0 oa 0 ob 0 oc 0 od 0 oe 0 of 0 og 0 oh 0 c 0) "http://www.icra.org/ratingsv02.html" l r (nz 0 vz 0 lz 0 oz 0 cz 0) "http://www.rsac.org/ratingsv01.html" l r (n 0 s 0 v 0 l 0))
p3p: CP="NOI ADM DEV PSAi COM NAV OUR OTR STP IND DEM"
content-encoding: gzip
X-Firefox-Spdy: h2
aero.bankofamerica.com/30306/suboban.html?sui=493708cf61cb9aa4841727dc5ccbfa8131a2eed810339345cef5f2dd9d39fa68
200 OK 27 kB URL GET HTTP/2 aero.bankofamerica.com/30306/suboban.html?sui=493708cf61cb9aa4841727dc5ccbfa8131a2eed810339345cef5f2dd9d39fa68
IP
Requested by https://secure.bankofamerica.com/login/sign-in/signOnV2Screen.go?reason=digitalcardsettings&version=7.7.0&screen=CardSettings:Home&channel=desktop
Certificate IssuerEntrust, Inc.
Subjectaero.bankofamerica.com
FingerprintF1:27:27:34:1C:BC:DA:E8:FD:60:61:CE:02:0A:FC:21:E7:F6:4D:6D
ValidityTue, 11 Apr 2023 18:44:23 GMT - Sat, 11 May 2024 18:44:23 GMT
File type HTML document, ASCII text, with very long lines (26551), with no line terminators
Hash db8b7e7f32d8b7ead414920c5116e911
700ba7bfdf93025535bc2e7ebf6bdb7766282827
a57a3516d21c6e9125ed1aee29e5522d640b5c52967fed3b5fd0f8a736f3a7c4
GET /30306/suboban.html?sui=493708cf61cb9aa4841727dc5ccbfa8131a2eed810339345cef5f2dd9d39fa68 HTTP/1.1
Host: aero.bankofamerica.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://secure.bankofamerica.com/
Cookie: SPID=Q2S2; SID=0012F376220065A03C60; BOFA_LOCALE_COOKIE=en-US; check=true; mbox=session#57dcbcff79f64b00b2c6b92b2b9f0cd1#1705001896|PC#57dcbcff79f64b00b2c6b92b2b9f0cd1.37_0#1768244836; cmTPSet=Y; ccts=eZNFkpCbWdMywexMkW3gw8ZwTTbsO9OaArVwz+4RWCw3NnxVVCgBlfFnq6T3AJXYJeafidKKGLraRQgybbOVuA==; WPID=Q2S2; LSESSIONID=eyJpIjoiMTN0cGdkZ3VEMkNUbHVFU0dPQzIydz09IiwiZSI6IlpnbWdpcEt1WHFEY3NoSk9TUGVxclVMV1BXTllKdmpYTkdEeHRcL09YdnE0bDBWUEVcLzhWeTJjeUVvcXZRRXBvSVgwVDNNK3JsOEE2QVY2REVqNDJZYnhXdnQyYlBoUmdcL2NQaElSYmtiZ3NIZzdZaHZFXC9VallzR25YK2pTUWVcL0Y5MkNDc2haMkcwYll2RnBqUGZoMkN3PT0ifQ%3D%3D.bf7e6451e703a7a3.OWFhNTFhYmVkNmNiNGY5N2U5YzFlYWVhNTliNWYwZGFlMDU5NGIzNmQxMWVmMGNlNGY3YTE5MGJjMDM2OWIyZg%3D%3D; CSID=NjNhNjQ3ZGEtYTVkMy00YTQxLWJmNTktZmRhMGI1ZjllY2UxOjE3MDUwMDAwMzYxOTI=; AHVC=0-7:https://secure2.bac-assets.com/sparta/client/helper/spa-assets/components/utilities/client-helper/behbio/cs/2.0.0/js/cs.js:https://secure2.bac-assets.com/sparta/client/helper/spa-assets/components/utilities/client-helper/behbio/bc/3.0.0/js/bc.js:https://secure2.bac-assets.com/sparta/client/helper/spa-assets/components/utilities/client-helper/behbio/auth/2.0.0/js/auth.js; GSID=0ruADoBoRtaXv1sdk4K9DUyKHwImUFH0Zkh79fXA; cdContextId=2; bmuid=1705000036543-322160C1-8097-480A-9B4F-4EC67F550DB8; cdSNum=1705000037167-sjn0000086-8f60fa08-78d2-4c5a-acaa-619b3ef9de20; __gdic=lr9l00oi3jzzvulke56; ___r30306=0.2944434484247
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 11 Jan 2024 19:07:20 GMT
content-type: text/html
server: haile
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
x-xss-protection: 1
expires: Thu, 11 Jan 2024 20:07:20 GMT
cache-control: private, max-age=3600
pics-label: (PICS-1.1 "http://www.icra.org/pics/vocabularyv03/" l r (n 0 s 0 v 0 l 0 oa 0 ob 0 oc 0 od 0 oe 0 of 0 og 0 oh 0 c 0) "http://www.icra.org/ratingsv02.html" l r (nz 0 vz 0 lz 0 oz 0 cz 0) "http://www.rsac.org/ratingsv01.html" l r (n 0 s 0 v 0 l 0))
p3p: CP="NOI ADM DEV PSAi COM NAV OUR OTR STP IND DEM"
content-encoding: gzip
X-Firefox-Spdy: h2
awuseb.advanced-web-analytics.com/30306/nuadke.html?e=https%3A%2F%2Fsecure.bankofamerica.com&es=eyJpIjoiMTN0cGdkZ3VEMkNUbHVFU0dPQzIydz09IiwiZSI6IlpnbWdpcEt1WHFEY3NoSk9TUGVxclVMV1BXTllKdmpYTkdEeHRcL09YdnE0bDBWUEVcLzhWeTJjeUVvcXZRRXBvSVgwVDNNK3JsOEE2QVY2REVqNDJZYnhXdnQyYlBoUmdcL2NQaElSYmtiZ3NIZzdZaHZFXC9VallzR25YK2pTUWVcL0Y5MkNDc2haMkcwYll2RnBqUGZoMkN3PT0ifQ%3D%3D.bf7e6451e703a7a3.OWFhNTFhYmVkNmNiNGY5N2U5YzFlYWVhNTliNWYwZGFlMDU5NGIzNmQxMWVmMGNlNGY3YTE5MGJjMDM2OWIyZg%3D%3D&eu=https%3A%2F%2Fsecure.bankofamerica.com%2Flogin%2Fsign-in%2FsignOnV2Screen.go&icid=170500003749172216
200 OK 75 kB URL GET HTTP/2 awuseb.advanced-web-analytics.com/30306/nuadke.html?e=https%3A%2F%2Fsecure.bankofamerica.com&es=eyJpIjoiMTN0cGdkZ3VEMkNUbHVFU0dPQzIydz09IiwiZSI6IlpnbWdpcEt1WHFEY3NoSk9TUGVxclVMV1BXTllKdmpYTkdEeHRcL09YdnE0bDBWUEVcLzhWeTJjeUVvcXZRRXBvSVgwVDNNK3JsOEE2QVY2REVqNDJZYnhXdnQyYlBoUmdcL2NQaElSYmtiZ3NIZzdZaHZFXC9VallzR25YK2pTUWVcL0Y5MkNDc2haMkcwYll2RnBqUGZoMkN3PT0ifQ%3D%3D.bf7e6451e703a7a3.OWFhNTFhYmVkNmNiNGY5N2U5YzFlYWVhNTliNWYwZGFlMDU5NGIzNmQxMWVmMGNlNGY3YTE5MGJjMDM2OWIyZg%3D%3D&eu=https%3A%2F%2Fsecure.bankofamerica.com%2Flogin%2Fsign-in%2FsignOnV2Screen.go&icid=170500003749172216
IP
Requested by https://secure.bankofamerica.com/login/sign-in/signOnV2Screen.go?reason=digitalcardsettings&version=7.7.0&screen=CardSettings:Home&channel=desktop
Certificate IssuerDigiCert Inc
Subject*.advanced-web-analytics.com
Fingerprint66:95:F9:B9:9E:EE:14:33:9B:39:84:C8:01:C5:D4:29:D3:90:28:EB
ValidityThu, 13 Apr 2023 00:00:00 GMT - Fri, 10 May 2024 23:59:59 GMT
File type HTML document, ASCII text, with very long lines (65536), with no line terminators
Hash 3a73dada2797f7335a81648c0531398f
6fb743c3da1f5beecd70e35844f26dd7d7c558af
670536e390484c92ed62312e787ad06073f8f326eab80232237a646f74cf165d
GET /30306/nuadke.html?e=https%3A%2F%2Fsecure.bankofamerica.com&es=eyJpIjoiMTN0cGdkZ3VEMkNUbHVFU0dPQzIydz09IiwiZSI6IlpnbWdpcEt1WHFEY3NoSk9TUGVxclVMV1BXTllKdmpYTkdEeHRcL09YdnE0bDBWUEVcLzhWeTJjeUVvcXZRRXBvSVgwVDNNK3JsOEE2QVY2REVqNDJZYnhXdnQyYlBoUmdcL2NQaElSYmtiZ3NIZzdZaHZFXC9VallzR25YK2pTUWVcL0Y5MkNDc2haMkcwYll2RnBqUGZoMkN3PT0ifQ%3D%3D.bf7e6451e703a7a3.OWFhNTFhYmVkNmNiNGY5N2U5YzFlYWVhNTliNWYwZGFlMDU5NGIzNmQxMWVmMGNlNGY3YTE5MGJjMDM2OWIyZg%3D%3D&eu=https%3A%2F%2Fsecure.bankofamerica.com%2Flogin%2Fsign-in%2FsignOnV2Screen.go&icid=170500003749172216 HTTP/1.1
Host: awuseb.advanced-web-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://secure.bankofamerica.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/html
date: Thu, 11 Jan 2024 19:07:18 GMT
server: haile
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
x-xss-protection: 1
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
pics-label: (PICS-1.1 "http://www.icra.org/pics/vocabularyv03/" l r (n 0 s 0 v 0 l 0 oa 0 ob 0 oc 0 od 0 oe 0 of 0 og 0 oh 0 c 0) "http://www.icra.org/ratingsv02.html" l r (nz 0 vz 0 lz 0 oz 0 cz 0) "http://www.rsac.org/ratingsv01.html" l r (n 0 s 0 v 0 l 0))
p3p: CP="NOI ADM DEV PSAi COM NAV OUR OTR STP IND DEM"
content-encoding: gzip
x-cache: Miss from cloudfront
via: 1.1 50584ad285d5f627ddebae74efdd0770.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: CDOxSUjlbyGlN_Xw1vatOkPJ6QDlJaev2V-SGReIrrsssQmX8SAXCw==
X-Firefox-Spdy: h2
target.bankofamerica.com/m2/bankofamerica/mbox/json?mbox=target-global-mbox&mboxSession=57dcbcff79f64b00b2c6b92b2b9f0cd1&mboxPC=&mboxPage=c0d3b4f6b7314b65a684c3505fff3068&mboxRid=5d7e3c6f884246db88a5600aa307eea4&mboxVersion=1.8.0&mboxCount=1&mboxTime=1705000034781&mboxHost=secure.bankofamerica.com&mboxURL=https%3A%2F%2Fsecure.bankofamerica.com%2Flogin%2Fsign-in%2FsignOnV2Screen.go%3Freason%3Ddigitalcardsettings%26version%3D7.7.0%26screen%3DCardSettings%3AHome%26channel%3Ddesktop&mboxReferrer=&mboxXDomain=enabled&browserHeight=1024&browserWidth=1280&browserTimeOffset=0&screenHeight=1024&screenWidth=1280&colorDepth=24&devicePixelRatio=1&screenOrientation=landscape&at_property=2c28efc5-fc52-2eba-d89f-6f09359d852c&mboxState=No%20State%20Selected
200 OK 7.6 kB URL GET HTTP/2 target.bankofamerica.com/m2/bankofamerica/mbox/json?mbox=target-global-mbox&mboxSession=57dcbcff79f64b00b2c6b92b2b9f0cd1&mboxPC=&mboxPage=c0d3b4f6b7314b65a684c3505fff3068&mboxRid=5d7e3c6f884246db88a5600aa307eea4&mboxVersion=1.8.0&mboxCount=1&mboxTime=1705000034781&mboxHost=secure.bankofamerica.com&mboxURL=https%3A%2F%2Fsecure.bankofamerica.com%2Flogin%2Fsign-in%2FsignOnV2Screen.go%3Freason%3Ddigitalcardsettings%26version%3D7.7.0%26screen%3DCardSettings%3AHome%26channel%3Ddesktop&mboxReferrer=&mboxXDomain=enabled&browserHeight=1024&browserWidth=1280&browserTimeOffset=0&screenHeight=1024&screenWidth=1280&colorDepth=24&devicePixelRatio=1&screenOrientation=landscape&at_property=2c28efc5-fc52-2eba-d89f-6f09359d852c&mboxState=No%20State%20Selected
IP
Requested by https://secure.bankofamerica.com/login/sign-in/signOnV2Screen.go?reason=digitalcardsettings&version=7.7.0&screen=CardSettings:Home&channel=desktop
Certificate IssuerEntrust, Inc.
Subjecttarget.bankofamerica.com
Fingerprint8A:2D:8C:F4:3E:A6:C6:EC:31:F2:3D:D1:CA:33:AF:A9:A5:06:AA:F2
ValidityThu, 05 Oct 2023 21:23:42 GMT - Tue, 05 Nov 2024 21:23:41 GMT
File type HTML document, Unicode text, UTF-8 text, with very long lines (8393), with no line terminators
Hash 004d9569c76b1e0220645a2da6e39c48
00be2ea52d6d076fd2b4e82c246babe78f7007cd
848865bba67813c24d33eaf1875029b46905bb61ce7c3c1c09c251fa1a96b3a3
GET /m2/bankofamerica/mbox/json?mbox=target-global-mbox&mboxSession=57dcbcff79f64b00b2c6b92b2b9f0cd1&mboxPC=&mboxPage=c0d3b4f6b7314b65a684c3505fff3068&mboxRid=5d7e3c6f884246db88a5600aa307eea4&mboxVersion=1.8.0&mboxCount=1&mboxTime=1705000034781&mboxHost=secure.bankofamerica.com&mboxURL=https%3A%2F%2Fsecure.bankofamerica.com%2Flogin%2Fsign-in%2FsignOnV2Screen.go%3Freason%3Ddigitalcardsettings%26version%3D7.7.0%26screen%3DCardSettings%3AHome%26channel%3Ddesktop&mboxReferrer=&mboxXDomain=enabled&browserHeight=1024&browserWidth=1280&browserTimeOffset=0&screenHeight=1024&screenWidth=1280&colorDepth=24&devicePixelRatio=1&screenOrientation=landscape&at_property=2c28efc5-fc52-2eba-d89f-6f09359d852c&mboxState=No%20State%20Selected HTTP/1.1
Host: target.bankofamerica.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://secure.bankofamerica.com
DNT: 1
Connection: keep-alive
Referer: https://secure.bankofamerica.com/
Cookie: SPID=Q2S2; SID=0012F376220065A03C60; BOFA_LOCALE_COOKIE=en-US; check=true; mbox=session#57dcbcff79f64b00b2c6b92b2b9f0cd1#1705001895
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 11 Jan 2024 19:07:15 GMT
content-type: application/json;charset=UTF-8
vary: origin,access-control-request-method,access-control-request-headers,accept-encoding
access-control-allow-origin: https://secure.bankofamerica.com
access-control-allow-credentials: true
x-request-id: 5d7e3c6f884246db88a5600aa307eea4
p3p: CP="NOI NID CURa ADMa DEVa PSAa PSDa OUR SAMa BUS PUR COM NAV INT"
set-cookie: bankofamerica!mboxSession=57dcbcff79f64b00b2c6b92b2b9f0cd1; Max-Age=1860; Expires=Thu, 11-Jan-2024 19:38:15 GMT; Domain=target.bankofamerica.com; Path=/; Secure; HttpOnly; SameSite=None
bankofamerica!mboxPC=57dcbcff79f64b00b2c6b92b2b9f0cd1.37_0; Max-Age=63244800; Expires=Mon, 12-Jan-2026 19:07:15 GMT; Domain=target.bankofamerica.com; Path=/; Secure; HttpOnly; SameSite=None
pragma: no-cache
timing-allow-origin: *
content-encoding: gzip
referrer-policy: strict-origin-when-cross-origin
server: jag
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: no-cache, no-store, max-age=0, no-transform, private
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
X-Firefox-Spdy: h2
dull.bankofamerica.com/boaa/porte.js
200 OK 145 kB URL GET HTTP/2 dull.bankofamerica.com/boaa/porte.js
IP
Requested by https://secure.bankofamerica.com/login/sign-in/signOnV2Screen.go?reason=digitalcardsettings&version=7.7.0&screen=CardSettings:Home&channel=desktop
Certificate IssuerEntrust, Inc.
Subjectdull.bankofamerica.com
Fingerprint06:06:2A:50:7C:50:5E:DA:32:13:4B:7E:FA:B7:22:23:5E:11:7B:86
ValidityTue, 11 Apr 2023 18:44:23 GMT - Sat, 11 May 2024 18:44:23 GMT
File type ASCII text, with very long lines (65536), with no line terminators
Size 145 kB (145230 bytes)
Hash 38fd6ebc4839109a4f761dc945a9c42e
83c9dad3ae6b4158d116619d4e1068e37a54c5a7
26bea556d8a6138d78e36c61742c7a69af68d475d38facd1888b16ec085d709f
GET /boaa/porte.js HTTP/1.1
Host: dull.bankofamerica.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://secure.bankofamerica.com/
Cookie: SPID=Q2S2; SID=0012F376220065A03C60; BOFA_LOCALE_COOKIE=en-US; check=true; mbox=session#57dcbcff79f64b00b2c6b92b2b9f0cd1#1705001896|PC#57dcbcff79f64b00b2c6b92b2b9f0cd1.37_0#1768244836; cmTPSet=Y; ccts=V+mTvolDunF7lqP7E6TpB9Ph5bPGb+lTXE6Wt0H1FGLs3ZNaSjLELWHVUTE7CSjp/ADJb/cnG9UzZhOQNJ9hlg==; WPID=Q2S2; LSESSIONID=eyJpIjoiMTN0cGdkZ3VEMkNUbHVFU0dPQzIydz09IiwiZSI6IlpnbWdpcEt1WHFEY3NoSk9TUGVxclVMV1BXTllKdmpYTkdEeHRcL09YdnE0bDBWUEVcLzhWeTJjeUVvcXZRRXBvSVgwVDNNK3JsOEE2QVY2REVqNDJZYnhXdnQyYlBoUmdcL2NQaElSYmtiZ3NIZzdZaHZFXC9VallzR25YK2pTUWVcL0Y5MkNDc2haMkcwYll2RnBqUGZoMkN3PT0ifQ%3D%3D.bf7e6451e703a7a3.OWFhNTFhYmVkNmNiNGY5N2U5YzFlYWVhNTliNWYwZGFlMDU5NGIzNmQxMWVmMGNlNGY3YTE5MGJjMDM2OWIyZg%3D%3D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 11 Jan 2024 19:07:16 GMT
content-type: application/x-javascript
server: haile
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
x-xss-protection: 1
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
pics-label: (PICS-1.1 "http://www.icra.org/pics/vocabularyv03/" l r (n 0 s 0 v 0 l 0 oa 0 ob 0 oc 0 od 0 oe 0 of 0 og 0 oh 0 c 0) "http://www.icra.org/ratingsv02.html" l r (nz 0 vz 0 lz 0 oz 0 cz 0) "http://www.rsac.org/ratingsv01.html" l r (n 0 s 0 v 0 l 0))
p3p: CP="NOI ADM DEV PSAi COM NAV OUR OTR STP IND DEM"
content-encoding: gzip
X-Firefox-Spdy: h2
aero.bankofamerica.com/30306/suboban.html?sui=493708cf61cb9aa4841727dc5ccbfa8131a2eed810339345cef5f2dd9d39fa68
200 OK 27 kB URL GET HTTP/2 aero.bankofamerica.com/30306/suboban.html?sui=493708cf61cb9aa4841727dc5ccbfa8131a2eed810339345cef5f2dd9d39fa68
IP
Requested by https://secure.bankofamerica.com/login/sign-in/signOnV2Screen.go?reason=digitalcardsettings&version=7.7.0&screen=CardSettings:Home&channel=desktop
Certificate IssuerEntrust, Inc.
Subjectaero.bankofamerica.com
FingerprintF1:27:27:34:1C:BC:DA:E8:FD:60:61:CE:02:0A:FC:21:E7:F6:4D:6D
ValidityTue, 11 Apr 2023 18:44:23 GMT - Sat, 11 May 2024 18:44:23 GMT
File type HTML document, ASCII text, with very long lines (26551), with no line terminators
Hash db8b7e7f32d8b7ead414920c5116e911
700ba7bfdf93025535bc2e7ebf6bdb7766282827
a57a3516d21c6e9125ed1aee29e5522d640b5c52967fed3b5fd0f8a736f3a7c4
GET /30306/suboban.html?sui=493708cf61cb9aa4841727dc5ccbfa8131a2eed810339345cef5f2dd9d39fa68 HTTP/1.1
Host: aero.bankofamerica.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://secure.bankofamerica.com/
Cookie: SPID=Q2S2; SID=0012F376220065A03C60; BOFA_LOCALE_COOKIE=en-US; check=true; mbox=session#57dcbcff79f64b00b2c6b92b2b9f0cd1#1705001896|PC#57dcbcff79f64b00b2c6b92b2b9f0cd1.37_0#1768244836; cmTPSet=Y; ccts=eZNFkpCbWdMywexMkW3gw8ZwTTbsO9OaArVwz+4RWCw3NnxVVCgBlfFnq6T3AJXYJeafidKKGLraRQgybbOVuA==; WPID=Q2S2; LSESSIONID=eyJpIjoiMTN0cGdkZ3VEMkNUbHVFU0dPQzIydz09IiwiZSI6IlpnbWdpcEt1WHFEY3NoSk9TUGVxclVMV1BXTllKdmpYTkdEeHRcL09YdnE0bDBWUEVcLzhWeTJjeUVvcXZRRXBvSVgwVDNNK3JsOEE2QVY2REVqNDJZYnhXdnQyYlBoUmdcL2NQaElSYmtiZ3NIZzdZaHZFXC9VallzR25YK2pTUWVcL0Y5MkNDc2haMkcwYll2RnBqUGZoMkN3PT0ifQ%3D%3D.bf7e6451e703a7a3.OWFhNTFhYmVkNmNiNGY5N2U5YzFlYWVhNTliNWYwZGFlMDU5NGIzNmQxMWVmMGNlNGY3YTE5MGJjMDM2OWIyZg%3D%3D; CSID=NjNhNjQ3ZGEtYTVkMy00YTQxLWJmNTktZmRhMGI1ZjllY2UxOjE3MDUwMDAwMzYxOTI=; AHVC=0-7:https://secure2.bac-assets.com/sparta/client/helper/spa-assets/components/utilities/client-helper/behbio/cs/2.0.0/js/cs.js:https://secure2.bac-assets.com/sparta/client/helper/spa-assets/components/utilities/client-helper/behbio/bc/3.0.0/js/bc.js:https://secure2.bac-assets.com/sparta/client/helper/spa-assets/components/utilities/client-helper/behbio/auth/2.0.0/js/auth.js; GSID=0ruADoBoRtaXv1sdk4K9DUyKHwImUFH0Zkh79fXA; cdContextId=2; bmuid=1705000036543-322160C1-8097-480A-9B4F-4EC67F550DB8; cdSNum=1705000037167-sjn0000086-8f60fa08-78d2-4c5a-acaa-619b3ef9de20; __gdic=lr9l00oi3jzzvulke56; ___r30306=0.2944434484247
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 11 Jan 2024 19:07:18 GMT
content-type: text/html
server: haile
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
x-xss-protection: 1
expires: Thu, 11 Jan 2024 20:07:18 GMT
cache-control: private, max-age=3600
pics-label: (PICS-1.1 "http://www.icra.org/pics/vocabularyv03/" l r (n 0 s 0 v 0 l 0 oa 0 ob 0 oc 0 od 0 oe 0 of 0 og 0 oh 0 c 0) "http://www.icra.org/ratingsv02.html" l r (nz 0 vz 0 lz 0 oz 0 cz 0) "http://www.rsac.org/ratingsv01.html" l r (n 0 s 0 v 0 l 0))
p3p: CP="NOI ADM DEV PSAi COM NAV OUR OTR STP IND DEM"
content-encoding: gzip
X-Firefox-Spdy: h2
aero.bankofamerica.com/30306/suboban.html?sui=493708cf61cb9aa4841727dc5ccbfa8131a2eed810339345cef5f2dd9d39fa68
200 OK 27 kB URL GET HTTP/2 aero.bankofamerica.com/30306/suboban.html?sui=493708cf61cb9aa4841727dc5ccbfa8131a2eed810339345cef5f2dd9d39fa68
IP
Requested by https://secure.bankofamerica.com/login/sign-in/signOnV2Screen.go?reason=digitalcardsettings&version=7.7.0&screen=CardSettings:Home&channel=desktop
Certificate IssuerEntrust, Inc.
Subjectaero.bankofamerica.com
FingerprintF1:27:27:34:1C:BC:DA:E8:FD:60:61:CE:02:0A:FC:21:E7:F6:4D:6D
ValidityTue, 11 Apr 2023 18:44:23 GMT - Sat, 11 May 2024 18:44:23 GMT
File type HTML document, ASCII text, with very long lines (26551), with no line terminators
Hash db8b7e7f32d8b7ead414920c5116e911
700ba7bfdf93025535bc2e7ebf6bdb7766282827
a57a3516d21c6e9125ed1aee29e5522d640b5c52967fed3b5fd0f8a736f3a7c4
GET /30306/suboban.html?sui=493708cf61cb9aa4841727dc5ccbfa8131a2eed810339345cef5f2dd9d39fa68 HTTP/1.1
Host: aero.bankofamerica.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://secure.bankofamerica.com/
Cookie: SPID=Q2S2; SID=0012F376220065A03C60; BOFA_LOCALE_COOKIE=en-US; check=true; mbox=session#57dcbcff79f64b00b2c6b92b2b9f0cd1#1705001896|PC#57dcbcff79f64b00b2c6b92b2b9f0cd1.37_0#1768244836; cmTPSet=Y; ccts=eZNFkpCbWdMywexMkW3gw8ZwTTbsO9OaArVwz+4RWCw3NnxVVCgBlfFnq6T3AJXYJeafidKKGLraRQgybbOVuA==; WPID=Q2S2; LSESSIONID=eyJpIjoiMTN0cGdkZ3VEMkNUbHVFU0dPQzIydz09IiwiZSI6IlpnbWdpcEt1WHFEY3NoSk9TUGVxclVMV1BXTllKdmpYTkdEeHRcL09YdnE0bDBWUEVcLzhWeTJjeUVvcXZRRXBvSVgwVDNNK3JsOEE2QVY2REVqNDJZYnhXdnQyYlBoUmdcL2NQaElSYmtiZ3NIZzdZaHZFXC9VallzR25YK2pTUWVcL0Y5MkNDc2haMkcwYll2RnBqUGZoMkN3PT0ifQ%3D%3D.bf7e6451e703a7a3.OWFhNTFhYmVkNmNiNGY5N2U5YzFlYWVhNTliNWYwZGFlMDU5NGIzNmQxMWVmMGNlNGY3YTE5MGJjMDM2OWIyZg%3D%3D; CSID=NjNhNjQ3ZGEtYTVkMy00YTQxLWJmNTktZmRhMGI1ZjllY2UxOjE3MDUwMDAwMzYxOTI=; AHVC=0-7:https://secure2.bac-assets.com/sparta/client/helper/spa-assets/components/utilities/client-helper/behbio/cs/2.0.0/js/cs.js:https://secure2.bac-assets.com/sparta/client/helper/spa-assets/components/utilities/client-helper/behbio/bc/3.0.0/js/bc.js:https://secure2.bac-assets.com/sparta/client/helper/spa-assets/components/utilities/client-helper/behbio/auth/2.0.0/js/auth.js; GSID=0ruADoBoRtaXv1sdk4K9DUyKHwImUFH0Zkh79fXA; cdContextId=2; bmuid=1705000036543-322160C1-8097-480A-9B4F-4EC67F550DB8; cdSNum=1705000037167-sjn0000086-8f60fa08-78d2-4c5a-acaa-619b3ef9de20; __gdic=lr9l00oi3jzzvulke56; ___r30306=0.2944434484247
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 11 Jan 2024 19:07:21 GMT
content-type: text/html
server: haile
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
x-xss-protection: 1
expires: Thu, 11 Jan 2024 20:07:21 GMT
cache-control: private, max-age=3600
pics-label: (PICS-1.1 "http://www.icra.org/pics/vocabularyv03/" l r (n 0 s 0 v 0 l 0 oa 0 ob 0 oc 0 od 0 oe 0 of 0 og 0 oh 0 c 0) "http://www.icra.org/ratingsv02.html" l r (nz 0 vz 0 lz 0 oz 0 cz 0) "http://www.rsac.org/ratingsv01.html" l r (n 0 s 0 v 0 l 0))
p3p: CP="NOI ADM DEV PSAi COM NAV OUR OTR STP IND DEM"
content-encoding: gzip
X-Firefox-Spdy: h2
cdn.cookielaw.org/logos/static/powered_by_logo.svg
200 OK 5.2 kB URL GET HTTP/2 cdn.cookielaw.org/logos/static/powered_by_logo.svg
IP
Requested by https://secure.bankofamerica.com/login/sign-in/signOnV2Screen.go?reason=digitalcardsettings&version=7.7.0&screen=CardSettings:Home&channel=desktop
Certificate IssuerCloudflare, Inc.
Subjectcookielaw.org
Fingerprint72:BB:48:60:EB:F2:A2:EB:51:29:51:1A:B9:2A:85:30:97:3D:9A:2E
ValiditySat, 01 Apr 2023 00:00:00 GMT - Sun, 31 Mar 2024 23:59:59 GMT
File type SVG Scalable Vector Graphics image
Hash 38b5388f36f8f885deb26afdac0e3116
112eccab1891a3a7cab1c5602ba72c9e127136e0
a8562f11c5a80a5c1c4ab388cfa2a69598203a57a5c67d1f80512bddd80d09ef
GET /logos/static/powered_by_logo.svg HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://secure.bankofamerica.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 11 Jan 2024 19:07:14 GMT
content-type: image/svg+xml
content-md5: Y+c301RBZNK39PvKQWrIBw==
last-modified: Wed, 10 Jan 2024 21:25:37 GMT
x-ms-request-id: 1271336d-b01e-0015-2f42-442e30000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: max-age=86400
cf-cache-status: HIT
age: 50948
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 843f710a9d61b521-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
boss.bankofamerica.com/30306/ugateway.html?si=0&e=https%3A%2F%2Fsecure.bankofamerica.com&LSESSIONID=eyJpIjoiMTN0cGdkZ3VEMkNUbHVFU0dPQzIydz09IiwiZSI6IlpnbWdpcEt1WHFEY3NoSk9TUGVxclVMV1BXTllKdmpYTkdEeHRcL09YdnE0bDBWUEVcLzhWeTJjeUVvcXZRRXBvSVgwVDNNK3JsOEE2QVY2REVqNDJZYnhXdnQyYlBoUmdcL2NQaElSYmtiZ3NIZzdZaHZFXC9VallzR25YK2pTUWVcL0Y5MkNDc2haMkcwYll2RnBqUGZoMkN3PT0ifQ%3D%3D.bf7e6451e703a7a3.OWFhNTFhYmVkNmNiNGY5N2U5YzFlYWVhNTliNWYwZGFlMDU5NGIzNmQxMWVmMGNlNGY3YTE5MGJjMDM2OWIyZg%3D%3D&t=xframe&__tp=login&eu=https%3A%2F%2Fsecure.bankofamerica.com%2Flogin%2Fsign-in%2FsignOnV2Screen.go&icid=170500003722350661
200 OK 84 kB URL GET HTTP/2 boss.bankofamerica.com/30306/ugateway.html?si=0&e=https%3A%2F%2Fsecure.bankofamerica.com&LSESSIONID=eyJpIjoiMTN0cGdkZ3VEMkNUbHVFU0dPQzIydz09IiwiZSI6IlpnbWdpcEt1WHFEY3NoSk9TUGVxclVMV1BXTllKdmpYTkdEeHRcL09YdnE0bDBWUEVcLzhWeTJjeUVvcXZRRXBvSVgwVDNNK3JsOEE2QVY2REVqNDJZYnhXdnQyYlBoUmdcL2NQaElSYmtiZ3NIZzdZaHZFXC9VallzR25YK2pTUWVcL0Y5MkNDc2haMkcwYll2RnBqUGZoMkN3PT0ifQ%3D%3D.bf7e6451e703a7a3.OWFhNTFhYmVkNmNiNGY5N2U5YzFlYWVhNTliNWYwZGFlMDU5NGIzNmQxMWVmMGNlNGY3YTE5MGJjMDM2OWIyZg%3D%3D&t=xframe&__tp=login&eu=https%3A%2F%2Fsecure.bankofamerica.com%2Flogin%2Fsign-in%2FsignOnV2Screen.go&icid=170500003722350661
IP
Requested by https://secure.bankofamerica.com/login/sign-in/signOnV2Screen.go?reason=digitalcardsettings&version=7.7.0&screen=CardSettings:Home&channel=desktop
Certificate IssuerEntrust, Inc.
Subjectboss.bankofamerica.com
Fingerprint40:24:4E:EE:04:82:75:CD:43:9A:4E:D4:FA:71:BC:01:07:6B:FD:9A
ValidityTue, 11 Apr 2023 18:44:23 GMT - Sat, 11 May 2024 18:44:23 GMT
File type HTML document, ASCII text, with very long lines (65536), with no line terminators
Hash c3473d48f5b84b5bafc122f58ff7037c
e3cc9aef14ca52d443932794289945ab32e5730d
2e8158beb3dd071630f7041e890781f19f0061bfbbb5202119ec37990815ddc1
GET /30306/ugateway.html?si=0&e=https%3A%2F%2Fsecure.bankofamerica.com&LSESSIONID=eyJpIjoiMTN0cGdkZ3VEMkNUbHVFU0dPQzIydz09IiwiZSI6IlpnbWdpcEt1WHFEY3NoSk9TUGVxclVMV1BXTllKdmpYTkdEeHRcL09YdnE0bDBWUEVcLzhWeTJjeUVvcXZRRXBvSVgwVDNNK3JsOEE2QVY2REVqNDJZYnhXdnQyYlBoUmdcL2NQaElSYmtiZ3NIZzdZaHZFXC9VallzR25YK2pTUWVcL0Y5MkNDc2haMkcwYll2RnBqUGZoMkN3PT0ifQ%3D%3D.bf7e6451e703a7a3.OWFhNTFhYmVkNmNiNGY5N2U5YzFlYWVhNTliNWYwZGFlMDU5NGIzNmQxMWVmMGNlNGY3YTE5MGJjMDM2OWIyZg%3D%3D&t=xframe&__tp=login&eu=https%3A%2F%2Fsecure.bankofamerica.com%2Flogin%2Fsign-in%2FsignOnV2Screen.go&icid=170500003722350661 HTTP/1.1
Host: boss.bankofamerica.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://secure.bankofamerica.com/
Cookie: SPID=Q2S2; SID=0012F376220065A03C60; BOFA_LOCALE_COOKIE=en-US; check=true; mbox=session#57dcbcff79f64b00b2c6b92b2b9f0cd1#1705001896|PC#57dcbcff79f64b00b2c6b92b2b9f0cd1.37_0#1768244836; cmTPSet=Y; ccts=eZNFkpCbWdMywexMkW3gw8ZwTTbsO9OaArVwz+4RWCw3NnxVVCgBlfFnq6T3AJXYJeafidKKGLraRQgybbOVuA==; WPID=Q2S2; LSESSIONID=eyJpIjoiMTN0cGdkZ3VEMkNUbHVFU0dPQzIydz09IiwiZSI6IlpnbWdpcEt1WHFEY3NoSk9TUGVxclVMV1BXTllKdmpYTkdEeHRcL09YdnE0bDBWUEVcLzhWeTJjeUVvcXZRRXBvSVgwVDNNK3JsOEE2QVY2REVqNDJZYnhXdnQyYlBoUmdcL2NQaElSYmtiZ3NIZzdZaHZFXC9VallzR25YK2pTUWVcL0Y5MkNDc2haMkcwYll2RnBqUGZoMkN3PT0ifQ%3D%3D.bf7e6451e703a7a3.OWFhNTFhYmVkNmNiNGY5N2U5YzFlYWVhNTliNWYwZGFlMDU5NGIzNmQxMWVmMGNlNGY3YTE5MGJjMDM2OWIyZg%3D%3D; CSID=NjNhNjQ3ZGEtYTVkMy00YTQxLWJmNTktZmRhMGI1ZjllY2UxOjE3MDUwMDAwMzYxOTI=; AHVC=0-7:https://secure2.bac-assets.com/sparta/client/helper/spa-assets/components/utilities/client-helper/behbio/cs/2.0.0/js/cs.js:https://secure2.bac-assets.com/sparta/client/helper/spa-assets/components/utilities/client-helper/behbio/bc/3.0.0/js/bc.js:https://secure2.bac-assets.com/sparta/client/helper/spa-assets/components/utilities/client-helper/behbio/auth/2.0.0/js/auth.js; GSID=0ruADoBoRtaXv1sdk4K9DUyKHwImUFH0Zkh79fXA; cdContextId=2; bmuid=1705000036543-322160C1-8097-480A-9B4F-4EC67F550DB8; cdSNum=1705000037167-sjn0000086-8f60fa08-78d2-4c5a-acaa-619b3ef9de20; __gdic=lr9l00oi3jzzvulke56
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 11 Jan 2024 19:07:17 GMT
content-type: text/html
server: haile
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
x-xss-protection: 1
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
pics-label: (PICS-1.1 "http://www.icra.org/pics/vocabularyv03/" l r (n 0 s 0 v 0 l 0 oa 0 ob 0 oc 0 od 0 oe 0 of 0 og 0 oh 0 c 0) "http://www.icra.org/ratingsv02.html" l r (nz 0 vz 0 lz 0 oz 0 cz 0) "http://www.rsac.org/ratingsv01.html" l r (n 0 s 0 v 0 l 0))
p3p: CP="NOI ADM DEV PSAi COM NAV OUR OTR STP IND DEM"
content-encoding: gzip
X-Firefox-Spdy: h2
dull.bankofamerica.com/boaa/iconnectmx.html?sui=493708cf61cb9aa4841727dc5ccbfa8131a2eed810339345cef5f2dd9d39fa68
200 OK 27 kB URL GET HTTP/2 dull.bankofamerica.com/boaa/iconnectmx.html?sui=493708cf61cb9aa4841727dc5ccbfa8131a2eed810339345cef5f2dd9d39fa68
IP
Requested by https://secure.bankofamerica.com/login/sign-in/signOnV2Screen.go?reason=digitalcardsettings&version=7.7.0&screen=CardSettings:Home&channel=desktop
Certificate IssuerEntrust, Inc.
Subjectdull.bankofamerica.com
Fingerprint06:06:2A:50:7C:50:5E:DA:32:13:4B:7E:FA:B7:22:23:5E:11:7B:86
ValidityTue, 11 Apr 2023 18:44:23 GMT - Sat, 11 May 2024 18:44:23 GMT
File type HTML document, ASCII text, with very long lines (26551), with no line terminators
Hash db8b7e7f32d8b7ead414920c5116e911
700ba7bfdf93025535bc2e7ebf6bdb7766282827
a57a3516d21c6e9125ed1aee29e5522d640b5c52967fed3b5fd0f8a736f3a7c4
GET /boaa/iconnectmx.html?sui=493708cf61cb9aa4841727dc5ccbfa8131a2eed810339345cef5f2dd9d39fa68 HTTP/1.1
Host: dull.bankofamerica.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://secure.bankofamerica.com/
Cookie: SPID=Q2S2; SID=0012F376220065A03C60; BOFA_LOCALE_COOKIE=en-US; check=true; mbox=session#57dcbcff79f64b00b2c6b92b2b9f0cd1#1705001896|PC#57dcbcff79f64b00b2c6b92b2b9f0cd1.37_0#1768244836; cmTPSet=Y; ccts=eZNFkpCbWdMywexMkW3gw8ZwTTbsO9OaArVwz+4RWCw3NnxVVCgBlfFnq6T3AJXYJeafidKKGLraRQgybbOVuA==; WPID=Q2S2; LSESSIONID=eyJpIjoiMTN0cGdkZ3VEMkNUbHVFU0dPQzIydz09IiwiZSI6IlpnbWdpcEt1WHFEY3NoSk9TUGVxclVMV1BXTllKdmpYTkdEeHRcL09YdnE0bDBWUEVcLzhWeTJjeUVvcXZRRXBvSVgwVDNNK3JsOEE2QVY2REVqNDJZYnhXdnQyYlBoUmdcL2NQaElSYmtiZ3NIZzdZaHZFXC9VallzR25YK2pTUWVcL0Y5MkNDc2haMkcwYll2RnBqUGZoMkN3PT0ifQ%3D%3D.bf7e6451e703a7a3.OWFhNTFhYmVkNmNiNGY5N2U5YzFlYWVhNTliNWYwZGFlMDU5NGIzNmQxMWVmMGNlNGY3YTE5MGJjMDM2OWIyZg%3D%3D; CSID=NjNhNjQ3ZGEtYTVkMy00YTQxLWJmNTktZmRhMGI1ZjllY2UxOjE3MDUwMDAwMzYxOTI=; AHVC=0-7:https://secure2.bac-assets.com/sparta/client/helper/spa-assets/components/utilities/client-helper/behbio/cs/2.0.0/js/cs.js:https://secure2.bac-assets.com/sparta/client/helper/spa-assets/components/utilities/client-helper/behbio/bc/3.0.0/js/bc.js:https://secure2.bac-assets.com/sparta/client/helper/spa-assets/components/utilities/client-helper/behbio/auth/2.0.0/js/auth.js; GSID=0ruADoBoRtaXv1sdk4K9DUyKHwImUFH0Zkh79fXA; cdContextId=2; bmuid=1705000036543-322160C1-8097-480A-9B4F-4EC67F550DB8; cdSNum=1705000037167-sjn0000086-8f60fa08-78d2-4c5a-acaa-619b3ef9de20; __gdic=lr9l00oi3jzzvulke56; ___r30306=0.2944434484247
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 11 Jan 2024 19:07:20 GMT
content-type: text/html
server: haile
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
x-xss-protection: 1
expires: Thu, 11 Jan 2024 20:07:20 GMT
cache-control: private, max-age=3600
pics-label: (PICS-1.1 "http://www.icra.org/pics/vocabularyv03/" l r (n 0 s 0 v 0 l 0 oa 0 ob 0 oc 0 od 0 oe 0 of 0 og 0 oh 0 c 0) "http://www.icra.org/ratingsv02.html" l r (nz 0 vz 0 lz 0 oz 0 cz 0) "http://www.rsac.org/ratingsv01.html" l r (n 0 s 0 v 0 l 0))
p3p: CP="NOI ADM DEV PSAi COM NAV OUR OTR STP IND DEM"
content-encoding: gzip
X-Firefox-Spdy: h2
boss.bankofamerica.com/30306/uipaddress.html/discovercard.com/dfs/accounthome/summary/www.schwab.com/secure.accurint.com/unfcu2.org//login1/wachovia.com/MyAccounts.aspx/investing.schwab.com/secure/schwab///httpsabph.pl/pi/do/Authorization/alfabank.ru/swedbank/pf.bgz.pl/httponline.eurobank.pl/https://snsbank.nl/mijnsns/secure/login/?cid=5&si=0&e=https%3A%2F%2Fsecure.bankofamerica.com&LSESSIONID=eyJpIjoiMTN0cGdkZ3VEMkNUbHVFU0dPQzIydz09IiwiZSI6IlpnbWdpcEt1WHFEY3NoSk9TUGVxclVMV1BXTllKdmpYTkdEeHRcL09YdnE0bDBWUEVcLzhWeTJjeUVvcXZRRXBvSVgwVDNNK3JsOEE2QVY2REVqNDJZYnhXdnQyYlBoUmdcL2NQaElSYmtiZ3NIZzdZaHZFXC9VallzR25YK2pTUWVcL0Y5MkNDc2haMkcwYll2RnBqUGZoMkN3PT0ifQ%3D%3D.bf7e6451e703a7a3.OWFhNTFhYmVkNmNiNGY5N2U5YzFlYWVhNTliNWYwZGFlMDU5NGIzNmQxMWVmMGNlNGY3YTE5MGJjMDM2OWIyZg%3D%3D&t=xframe&__tp=login&eu=https%3A%2F%2Fsecure.bankofamerica.com%2Flogin%2Fsign-in%2FsignOnV2Screen.go&icid=170500003721847935
200 OK 77 kB URL GET HTTP/2 boss.bankofamerica.com/30306/uipaddress.html/discovercard.com/dfs/accounthome/summary/www.schwab.com/secure.accurint.com/unfcu2.org//login1/wachovia.com/MyAccounts.aspx/investing.schwab.com/secure/schwab///httpsabph.pl/pi/do/Authorization/alfabank.ru/swedbank/pf.bgz.pl/httponline.eurobank.pl/https://snsbank.nl/mijnsns/secure/login/?cid=5&si=0&e=https%3A%2F%2Fsecure.bankofamerica.com&LSESSIONID=eyJpIjoiMTN0cGdkZ3VEMkNUbHVFU0dPQzIydz09IiwiZSI6IlpnbWdpcEt1WHFEY3NoSk9TUGVxclVMV1BXTllKdmpYTkdEeHRcL09YdnE0bDBWUEVcLzhWeTJjeUVvcXZRRXBvSVgwVDNNK3JsOEE2QVY2REVqNDJZYnhXdnQyYlBoUmdcL2NQaElSYmtiZ3NIZzdZaHZFXC9VallzR25YK2pTUWVcL0Y5MkNDc2haMkcwYll2RnBqUGZoMkN3PT0ifQ%3D%3D.bf7e6451e703a7a3.OWFhNTFhYmVkNmNiNGY5N2U5YzFlYWVhNTliNWYwZGFlMDU5NGIzNmQxMWVmMGNlNGY3YTE5MGJjMDM2OWIyZg%3D%3D&t=xframe&__tp=login&eu=https%3A%2F%2Fsecure.bankofamerica.com%2Flogin%2Fsign-in%2FsignOnV2Screen.go&icid=170500003721847935
IP
Requested by https://secure.bankofamerica.com/login/sign-in/signOnV2Screen.go?reason=digitalcardsettings&version=7.7.0&screen=CardSettings:Home&channel=desktop
Certificate IssuerEntrust, Inc.
Subjectboss.bankofamerica.com
Fingerprint40:24:4E:EE:04:82:75:CD:43:9A:4E:D4:FA:71:BC:01:07:6B:FD:9A
ValidityTue, 11 Apr 2023 18:44:23 GMT - Sat, 11 May 2024 18:44:23 GMT
File type HTML document, ASCII text, with very long lines (65536), with no line terminators
Hash 370c3bf19b9125e90f591d97c9ac5b9f
c3a20f8ba7ff587e12af34088daf2d6c01347f2c
1eb27040a40c2644747f4b758a44cb2001ca27e55175527a5d8b211a8daa83e6
GET /30306/uipaddress.html/discovercard.com/dfs/accounthome/summary/www.schwab.com/secure.accurint.com/unfcu2.org//login1/wachovia.com/MyAccounts.aspx/investing.schwab.com/secure/schwab///httpsabph.pl/pi/do/Authorization/alfabank.ru/swedbank/pf.bgz.pl/httponline.eurobank.pl/https://snsbank.nl/mijnsns/secure/login/?cid=5&si=0&e=https%3A%2F%2Fsecure.bankofamerica.com&LSESSIONID=eyJpIjoiMTN0cGdkZ3VEMkNUbHVFU0dPQzIydz09IiwiZSI6IlpnbWdpcEt1WHFEY3NoSk9TUGVxclVMV1BXTllKdmpYTkdEeHRcL09YdnE0bDBWUEVcLzhWeTJjeUVvcXZRRXBvSVgwVDNNK3JsOEE2QVY2REVqNDJZYnhXdnQyYlBoUmdcL2NQaElSYmtiZ3NIZzdZaHZFXC9VallzR25YK2pTUWVcL0Y5MkNDc2haMkcwYll2RnBqUGZoMkN3PT0ifQ%3D%3D.bf7e6451e703a7a3.OWFhNTFhYmVkNmNiNGY5N2U5YzFlYWVhNTliNWYwZGFlMDU5NGIzNmQxMWVmMGNlNGY3YTE5MGJjMDM2OWIyZg%3D%3D&t=xframe&__tp=login&eu=https%3A%2F%2Fsecure.bankofamerica.com%2Flogin%2Fsign-in%2FsignOnV2Screen.go&icid=170500003721847935 HTTP/1.1
Host: boss.bankofamerica.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://secure.bankofamerica.com/
Cookie: SPID=Q2S2; SID=0012F376220065A03C60; BOFA_LOCALE_COOKIE=en-US; check=true; mbox=session#57dcbcff79f64b00b2c6b92b2b9f0cd1#1705001896|PC#57dcbcff79f64b00b2c6b92b2b9f0cd1.37_0#1768244836; cmTPSet=Y; ccts=eZNFkpCbWdMywexMkW3gw8ZwTTbsO9OaArVwz+4RWCw3NnxVVCgBlfFnq6T3AJXYJeafidKKGLraRQgybbOVuA==; WPID=Q2S2; LSESSIONID=eyJpIjoiMTN0cGdkZ3VEMkNUbHVFU0dPQzIydz09IiwiZSI6IlpnbWdpcEt1WHFEY3NoSk9TUGVxclVMV1BXTllKdmpYTkdEeHRcL09YdnE0bDBWUEVcLzhWeTJjeUVvcXZRRXBvSVgwVDNNK3JsOEE2QVY2REVqNDJZYnhXdnQyYlBoUmdcL2NQaElSYmtiZ3NIZzdZaHZFXC9VallzR25YK2pTUWVcL0Y5MkNDc2haMkcwYll2RnBqUGZoMkN3PT0ifQ%3D%3D.bf7e6451e703a7a3.OWFhNTFhYmVkNmNiNGY5N2U5YzFlYWVhNTliNWYwZGFlMDU5NGIzNmQxMWVmMGNlNGY3YTE5MGJjMDM2OWIyZg%3D%3D; CSID=NjNhNjQ3ZGEtYTVkMy00YTQxLWJmNTktZmRhMGI1ZjllY2UxOjE3MDUwMDAwMzYxOTI=; AHVC=0-7:https://secure2.bac-assets.com/sparta/client/helper/spa-assets/components/utilities/client-helper/behbio/cs/2.0.0/js/cs.js:https://secure2.bac-assets.com/sparta/client/helper/spa-assets/components/utilities/client-helper/behbio/bc/3.0.0/js/bc.js:https://secure2.bac-assets.com/sparta/client/helper/spa-assets/components/utilities/client-helper/behbio/auth/2.0.0/js/auth.js; GSID=0ruADoBoRtaXv1sdk4K9DUyKHwImUFH0Zkh79fXA; cdContextId=2; bmuid=1705000036543-322160C1-8097-480A-9B4F-4EC67F550DB8; cdSNum=1705000037167-sjn0000086-8f60fa08-78d2-4c5a-acaa-619b3ef9de20; __gdic=lr9l00oi3jzzvulke56
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 11 Jan 2024 19:07:17 GMT
content-type: text/html
server: haile
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
x-xss-protection: 1
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
pics-label: (PICS-1.1 "http://www.icra.org/pics/vocabularyv03/" l r (n 0 s 0 v 0 l 0 oa 0 ob 0 oc 0 od 0 oe 0 of 0 og 0 oh 0 c 0) "http://www.icra.org/ratingsv02.html" l r (nz 0 vz 0 lz 0 oz 0 cz 0) "http://www.rsac.org/ratingsv01.html" l r (n 0 s 0 v 0 l 0))
p3p: CP="NOI ADM DEV PSAi COM NAV OUR OTR STP IND DEM"
content-encoding: gzip
X-Firefox-Spdy: h2
dull.bankofamerica.com/boaa/iconnectmx.html?sui=493708cf61cb9aa4841727dc5ccbfa8131a2eed810339345cef5f2dd9d39fa68
200 OK 27 kB URL GET HTTP/2 dull.bankofamerica.com/boaa/iconnectmx.html?sui=493708cf61cb9aa4841727dc5ccbfa8131a2eed810339345cef5f2dd9d39fa68
IP
Requested by https://secure.bankofamerica.com/login/sign-in/signOnV2Screen.go?reason=digitalcardsettings&version=7.7.0&screen=CardSettings:Home&channel=desktop
Certificate IssuerEntrust, Inc.
Subjectdull.bankofamerica.com
Fingerprint06:06:2A:50:7C:50:5E:DA:32:13:4B:7E:FA:B7:22:23:5E:11:7B:86
ValidityTue, 11 Apr 2023 18:44:23 GMT - Sat, 11 May 2024 18:44:23 GMT
File type HTML document, ASCII text, with very long lines (26551), with no line terminators
Hash db8b7e7f32d8b7ead414920c5116e911
700ba7bfdf93025535bc2e7ebf6bdb7766282827
a57a3516d21c6e9125ed1aee29e5522d640b5c52967fed3b5fd0f8a736f3a7c4
GET /boaa/iconnectmx.html?sui=493708cf61cb9aa4841727dc5ccbfa8131a2eed810339345cef5f2dd9d39fa68 HTTP/1.1
Host: dull.bankofamerica.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://secure.bankofamerica.com/
Cookie: SPID=Q2S2; SID=0012F376220065A03C60; BOFA_LOCALE_COOKIE=en-US; check=true; mbox=session#57dcbcff79f64b00b2c6b92b2b9f0cd1#1705001896|PC#57dcbcff79f64b00b2c6b92b2b9f0cd1.37_0#1768244836; cmTPSet=Y; ccts=eZNFkpCbWdMywexMkW3gw8ZwTTbsO9OaArVwz+4RWCw3NnxVVCgBlfFnq6T3AJXYJeafidKKGLraRQgybbOVuA==; WPID=Q2S2; LSESSIONID=eyJpIjoiMTN0cGdkZ3VEMkNUbHVFU0dPQzIydz09IiwiZSI6IlpnbWdpcEt1WHFEY3NoSk9TUGVxclVMV1BXTllKdmpYTkdEeHRcL09YdnE0bDBWUEVcLzhWeTJjeUVvcXZRRXBvSVgwVDNNK3JsOEE2QVY2REVqNDJZYnhXdnQyYlBoUmdcL2NQaElSYmtiZ3NIZzdZaHZFXC9VallzR25YK2pTUWVcL0Y5MkNDc2haMkcwYll2RnBqUGZoMkN3PT0ifQ%3D%3D.bf7e6451e703a7a3.OWFhNTFhYmVkNmNiNGY5N2U5YzFlYWVhNTliNWYwZGFlMDU5NGIzNmQxMWVmMGNlNGY3YTE5MGJjMDM2OWIyZg%3D%3D; CSID=NjNhNjQ3ZGEtYTVkMy00YTQxLWJmNTktZmRhMGI1ZjllY2UxOjE3MDUwMDAwMzYxOTI=; AHVC=0-7:https://secure2.bac-assets.com/sparta/client/helper/spa-assets/components/utilities/client-helper/behbio/cs/2.0.0/js/cs.js:https://secure2.bac-assets.com/sparta/client/helper/spa-assets/components/utilities/client-helper/behbio/bc/3.0.0/js/bc.js:https://secure2.bac-assets.com/sparta/client/helper/spa-assets/components/utilities/client-helper/behbio/auth/2.0.0/js/auth.js; GSID=0ruADoBoRtaXv1sdk4K9DUyKHwImUFH0Zkh79fXA; cdContextId=2; bmuid=1705000036543-322160C1-8097-480A-9B4F-4EC67F550DB8; cdSNum=1705000037167-sjn0000086-8f60fa08-78d2-4c5a-acaa-619b3ef9de20; __gdic=lr9l00oi3jzzvulke56; ___r30306=0.2944434484247
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 11 Jan 2024 19:07:18 GMT
content-type: text/html
server: haile
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
x-xss-protection: 1
expires: Thu, 11 Jan 2024 20:07:18 GMT
cache-control: private, max-age=3600
pics-label: (PICS-1.1 "http://www.icra.org/pics/vocabularyv03/" l r (n 0 s 0 v 0 l 0 oa 0 ob 0 oc 0 od 0 oe 0 of 0 og 0 oh 0 c 0) "http://www.icra.org/ratingsv02.html" l r (nz 0 vz 0 lz 0 oz 0 cz 0) "http://www.rsac.org/ratingsv01.html" l r (n 0 s 0 v 0 l 0))
p3p: CP="NOI ADM DEV PSAi COM NAV OUR OTR STP IND DEM"
content-encoding: gzip
X-Firefox-Spdy: h2
171.159.118.100
104.18.131.236
184.24.45.171
0.0.0.0