r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash a2104f935c638b4767ca5ae0d738ef23
85c6af15af749be0ceeae6de17c36925b750f166
5d4789a3696bd7faa9916768cb627bbc89bf70a756d80e53860cbac13c2bc8b1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5D4789A3696BD7FAA9916768CB627BBC89BF70A756D80E53860CBAC13C2BC8B1"
Last-Modified: Fri, 27 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3853
Expires: Sun, 29 Jan 2023 04:23:56 GMT
Date: Sun, 29 Jan 2023 03:19:43 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 81dd5c5cc5b3278876cb44dcb520a60f
c0511a59e9eccdcdda98717b87c89c5d59974808
41736c303afdb3d31e48724b107dcb22883cae02f3562308eb52d9164001a2de
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "41736C303AFDB3D31E48724B107DCB22883CAE02F3562308EB52D9164001A2DE"
Last-Modified: Fri, 27 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3734
Expires: Sun, 29 Jan 2023 04:21:57 GMT
Date: Sun, 29 Jan 2023 03:19:43 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash bf0c602d32b3c14606f22a86183b5e3c
6eabd8d83475eba731968abe1a05a8bfd272f160
6c6a7c519a9e950c2445ed874a25211a94dd4d3cf3afb0103af9dcd1dbd5ff9e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Backoff, Content-Length, Retry-After, Content-Type, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sun, 29 Jan 2023 02:35:33 GMT
content-type: application/json
age: 2650
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 03092d1a1bc7ac91ee342a1a7ab2a562
52db06ce1fd2c74ddd36b6a0a7aee1b5c891600a
03b8ff2629abac9fc30ebec059c2e2018fcbc41646ad5f71c965ff630fbf1ffd
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "03B8FF2629ABAC9FC30EBEC059C2E2018FCBC41646AD5F71C965FF630FBF1FFD"
Last-Modified: Fri, 27 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6934
Expires: Sun, 29 Jan 2023 05:15:17 GMT
Date: Sun, 29 Jan 2023 03:19:43 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP
File type PEM certificate\012- , ASCII text
Hash 7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: kn/sQt0O3jNxXUsMT+/JkQmDpU4jYn81k4TCnrUi6DkAYbPTR/Y8ShTMKhnHN3C0M2IawyCMKjM=
x-amz-request-id: 5KMD4FZ8JXNSZECR
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sun, 29 Jan 2023 02:21:13 GMT
age: 3510
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 29 Jan 2023 03:19:43 GMT
content-type: application/json
content-length: 12
access-control-allow-credentials: true
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-expose-headers: content-type
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Backoff, Pragma, Last-Modified, ETag, Content-Length, Expires, Cache-Control, Retry-After, Content-Type, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sun, 29 Jan 2023 02:41:41 GMT
age: 2282
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 16a7b6a7128312e2f985d30df18c4487
6017bff79ffb525d9c7f9f32b999b74b5dc69602
663fd12209627f08e759c2ed1c76278a5da79dae1e0b46082dd1bb44775f7a16
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "663FD12209627F08E759C2ED1C76278A5DA79DAE1E0B46082DD1BB44775F7A16"
Last-Modified: Fri, 27 Jan 2023 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10182
Expires: Sun, 29 Jan 2023 06:09:25 GMT
Date: Sun, 29 Jan 2023 03:19:43 GMT
Connection: keep-alive
push.services.mozilla.com/
101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: g+Tz3NzQUnqGlI4+iJ/UqA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: PcIlcxj85IF1dQHRJ3zGrL8TxTg=
bgitopazdowntown.ddireal.vn/wp-content/themes/twentytwenty/classes/wells/emailerror.php?cmd=login_submit&id=49bb97b933008cc162f0a4b15b62bc4449bb97b933008cc162f0a4b15b62bc44&session=49bb97b933008cc162f0a4b15b62bc4449bb97b933008cc162f0a4b15b62bc44
200 OK 26 kB URL HTTP/1.1 bgitopazdowntown.ddireal.vn/wp-content/themes/twentytwenty/classes/wells/emailerror.php?cmd=login_submit&id=49bb97b933008cc162f0a4b15b62bc4449bb97b933008cc162f0a4b15b62bc44&session=49bb97b933008cc162f0a4b15b62bc4449bb97b933008cc162f0a4b15b62bc44
IP
ASN #63760 AZDIGI Corporation
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, Unicode text, UTF-8 (with BOM) text, with very long lines (23013), with CRLF line terminators
Hash 36d0e9d85b59b3f842b36f852d468813
1b2c8db1f96c3b1402299656bfcc06d53e59db9c
fa3a71d45298fc9011b5b03c66cd14e4868b3e5184e6245675d5cab99bc1e9fd
Analyzer Verdict Alert openphish Wells Fargo & Company
NIDS Severity Alert suricata high ET PHISHING Generic Phishkit Activity (GET)
suricata medium ET PHISHING Possible Compromised Wordpress - Generic Phishing Landing 2018-01-22
GET /wp-content/themes/twentytwenty/classes/wells/emailerror.php?cmd=login_submit&id=49bb97b933008cc162f0a4b15b62bc4449bb97b933008cc162f0a4b15b62bc44&session=49bb97b933008cc162f0a4b15b62bc4449bb97b933008cc162f0a4b15b62bc44 HTTP/1.1
Host: bgitopazdowntown.ddireal.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
set-cookie: PHPSESSID=ct162mhspgea609g0l9qvndfpt; path=/
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
content-type: text/html; charset=UTF-8
content-encoding: gzip
vary: Accept-Encoding
content-length: 25651
date: Sun, 29 Jan 2023 03:19:43 GMT
server: LiteSpeed
connection: Keep-Alive
ocsp.digicert.com/
200 OK 471 B IP
Hash 2ab939d7526a8266218f77d9dbd76e54
20aaf3b998f98d720e7374bf337155ad50f88e85
ef9f2ce9c5fc66ec08d01f71dabab11e1db90a4568b9737eb3ae24b816074fa3
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5091
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 03:19:44 GMT
Last-Modified: Sun, 29 Jan 2023 01:54:53 GMT
Server: ECS (ska/F71B)
X-Cache: HIT
Content-Length: 471
connect.secure.wellsfargo.com/auth/static/ui/loginaltsignon/public/stylesheets/wfui.5d3fa5b6daab852c2a31.chunk.css
200 OK 16 kB URL HTTP/1.1 connect.secure.wellsfargo.com/auth/static/ui/loginaltsignon/public/stylesheets/wfui.5d3fa5b6daab852c2a31.chunk.css
IP
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (65536), with no line terminators
Hash 99759237b20cd3c540a9cfb654e6fed0
b2fc0ff3b04906ad729e9e4da97983570c84df9d
c741774a7eb847427dfef76c64b3b05180a059dbc7ca1ec4b35bcbdea2ce9f83
GET /auth/static/ui/loginaltsignon/public/stylesheets/wfui.5d3fa5b6daab852c2a31.chunk.css HTTP/1.1
Host: connect.secure.wellsfargo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bgitopazdowntown.ddireal.vn/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: text/css
Content-Length: 16482
Last-Modified: Wed, 08 Jun 2022 01:32:22 GMT
Vary: Accept-Encoding
ETag: "629ffc26-4062"
Content-Encoding: gzip
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Content-Security-Policy: default-src 'self'; script-src 'self'; object-src 'self'; frame-ancestors 'self'; report-uri https://ort.wellsfargo.com/reporting/csp
Cache-Control: max-age=10368000
Access-Control-Allow-Methods: POST
Allow: GET, POST, OPTIONS
Date: Sun, 29 Jan 2023 03:19:44 GMT
Connection: keep-alive
Strict-Transport-Security: max-age=31536000 ; includeSubDomains
Set-Cookie: DCID=GxespXZc7i6dkoWFldTbzQ%3d%3d; Domain=connect.secure.wellsfargo.com; Path=/; Expires=Thu, 01 Jan 1970 00:30:00 GMT;Httponly; Secure
ocsp.digicert.com/
200 OK 471 B IP
Hash 2ab939d7526a8266218f77d9dbd76e54
20aaf3b998f98d720e7374bf337155ad50f88e85
ef9f2ce9c5fc66ec08d01f71dabab11e1db90a4568b9737eb3ae24b816074fa3
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5091
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 03:19:44 GMT
Last-Modified: Sun, 29 Jan 2023 01:54:53 GMT
Server: ECS (ska/F71B)
X-Cache: HIT
Content-Length: 471
static.wellsfargo.com/tracking/ga/gtag.js?t=DC-2549153
200 OK 45 kB URL HTTP/1.1 static.wellsfargo.com/tracking/ga/gtag.js?t=DC-2549153
IP
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (65507), with CRLF line terminators
Hash 02c5944802e321a49c191c43a905bfb7
77b4ac5db5c8717754fd2976f88ba2027e458ff4
e987815600381f14afd300d17c4f73646afe42233097d411b75d33ffbc7989c4
GET /tracking/ga/gtag.js?t=DC-2549153 HTTP/1.1
Host: static.wellsfargo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bgitopazdowntown.ddireal.vn/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/javascript; charset=utf-8
Last-Modified: Tue, 06 Dec 2022 21:04:34 GMT
Vary: Accept-Encoding
ETag: W/"638fae62-1ca3a"
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Cache-Control: max-age=1800
Content-Encoding: gzip
Content-Length: 45055
Date: Sun, 29 Jan 2023 03:19:44 GMT
Connection: keep-alive
Strict-Transport-Security: max-age=31536000 ; includeSubDomains
Set-Cookie: DCID=25SFAwifD3ns4UpMFSWrEQ%3d%3d; Domain=static.wellsfargo.com; Path=/; Expires=Thu, 01 Jan 1970 00:30:00 GMT;Httponly; Secure
static.wellsfargo.com/tracking/ytc/ytc.js
200 OK 5.6 kB URL HTTP/1.1 static.wellsfargo.com/tracking/ytc/ytc.js
IP
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (15032)
Hash c48fe5e804797f0f227c7b840d74a48c
af0ab8fe13f1dc1de7363cfbfc14eacf766a13c2
1a2fbaccd0201b433a5fe36253718facae1b50d23d6af5884279f563a7494c2f
GET /tracking/ytc/ytc.js HTTP/1.1
Host: static.wellsfargo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bgitopazdowntown.ddireal.vn/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/javascript; charset=utf-8
Last-Modified: Thu, 15 Jul 2021 21:00:28 GMT
Vary: Accept-Encoding
ETag: W/"60f0a1ec-3ad3"
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Cache-Control: max-age=1800
Content-Encoding: gzip
Content-Length: 5614
Date: Sun, 29 Jan 2023 03:19:44 GMT
Connection: keep-alive
Strict-Transport-Security: max-age=31536000 ; includeSubDomains
Set-Cookie: DCID=wUcZwFGYrCdUEbTlqzPS0g%3d%3d; Domain=static.wellsfargo.com; Path=/; Expires=Thu, 01 Jan 1970 00:30:00 GMT;Httponly; Secure
static.wellsfargo.com/tracking/ga/ga_conversion_async.js
200 OK 14 kB URL HTTP/1.1 static.wellsfargo.com/tracking/ga/ga_conversion_async.js
IP
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (35846)
Hash 42c817a7b5f9583b2bc70f742dc950c9
ff75711716f8605860abe551b0235f7194e4348e
881b430ac699f32b3b5234582494d1f4fc0d22be1e6ac797847d66bc5ebc250f
GET /tracking/ga/ga_conversion_async.js HTTP/1.1
Host: static.wellsfargo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bgitopazdowntown.ddireal.vn/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/javascript; charset=utf-8
Last-Modified: Thu, 09 Sep 2021 17:30:40 GMT
Vary: Accept-Encoding
ETag: W/"613a44c0-8c31"
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Cache-Control: max-age=1800
Content-Encoding: gzip
Content-Length: 13593
Date: Sun, 29 Jan 2023 03:19:44 GMT
Connection: keep-alive
Strict-Transport-Security: max-age=31536000 ; includeSubDomains
Set-Cookie: DCID=lgLeLO6esVj8G0cY7Vcwaw%3d%3d; Domain=static.wellsfargo.com; Path=/; Expires=Thu, 01 Jan 1970 00:30:00 GMT;Httponly; Secure
static.wellsfargo.com/tracking/ga/gtag.js?id=AW-984436569
200 OK 45 kB URL HTTP/1.1 static.wellsfargo.com/tracking/ga/gtag.js?id=AW-984436569
IP
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (65507), with CRLF line terminators
Hash 02c5944802e321a49c191c43a905bfb7
77b4ac5db5c8717754fd2976f88ba2027e458ff4
e987815600381f14afd300d17c4f73646afe42233097d411b75d33ffbc7989c4
GET /tracking/ga/gtag.js?id=AW-984436569 HTTP/1.1
Host: static.wellsfargo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bgitopazdowntown.ddireal.vn/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/javascript; charset=utf-8
Last-Modified: Tue, 06 Dec 2022 21:04:34 GMT
Vary: Accept-Encoding
ETag: W/"638fae62-1ca3a"
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Cache-Control: max-age=1800
Content-Encoding: gzip
Content-Length: 45055
Date: Sun, 29 Jan 2023 03:19:44 GMT
Connection: keep-alive
Strict-Transport-Security: max-age=31536000 ; includeSubDomains
Set-Cookie: DCID=Yr0Tf3Pv44y0QdMSLNG0sg%3d%3d; Domain=static.wellsfargo.com; Path=/; Expires=Thu, 01 Jan 1970 00:30:00 GMT;Httponly; Secure
ocsp.digicert.com/
200 OK 471 B IP
Hash 2ab939d7526a8266218f77d9dbd76e54
20aaf3b998f98d720e7374bf337155ad50f88e85
ef9f2ce9c5fc66ec08d01f71dabab11e1db90a4568b9737eb3ae24b816074fa3
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5091
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 03:19:44 GMT
Last-Modified: Sun, 29 Jan 2023 01:54:53 GMT
Server: ECS (ska/F71B)
X-Cache: HIT
Content-Length: 471
static.wellsfargo.com/tracking/ga/gtag.js?t=UA-107148943-1
200 OK 45 kB URL HTTP/1.1 static.wellsfargo.com/tracking/ga/gtag.js?t=UA-107148943-1
IP
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (65507), with CRLF line terminators
Hash 02c5944802e321a49c191c43a905bfb7
77b4ac5db5c8717754fd2976f88ba2027e458ff4
e987815600381f14afd300d17c4f73646afe42233097d411b75d33ffbc7989c4
GET /tracking/ga/gtag.js?t=UA-107148943-1 HTTP/1.1
Host: static.wellsfargo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bgitopazdowntown.ddireal.vn/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/javascript; charset=utf-8
Last-Modified: Tue, 06 Dec 2022 21:04:34 GMT
Vary: Accept-Encoding
ETag: W/"638fae62-1ca3a"
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Cache-Control: max-age=1800
Content-Encoding: gzip
Content-Length: 45055
Date: Sun, 29 Jan 2023 03:19:44 GMT
Connection: keep-alive
Strict-Transport-Security: max-age=31536000 ; includeSubDomains
Set-Cookie: DCID=v63XWqpgHZ6gMibwhSBbJw%3d%3d; Domain=static.wellsfargo.com; Path=/; Expires=Thu, 01 Jan 1970 00:30:00 GMT;Httponly; Secure
static.wellsfargo.com/tracking/ga/gtag.js?t=AW-984436569
200 OK 45 kB URL HTTP/1.1 static.wellsfargo.com/tracking/ga/gtag.js?t=AW-984436569
IP
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (65507), with CRLF line terminators
Hash 02c5944802e321a49c191c43a905bfb7
77b4ac5db5c8717754fd2976f88ba2027e458ff4
e987815600381f14afd300d17c4f73646afe42233097d411b75d33ffbc7989c4
GET /tracking/ga/gtag.js?t=AW-984436569 HTTP/1.1
Host: static.wellsfargo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bgitopazdowntown.ddireal.vn/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/javascript; charset=utf-8
Last-Modified: Tue, 06 Dec 2022 21:04:34 GMT
Vary: Accept-Encoding
ETag: W/"638fae62-1ca3a"
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Cache-Control: max-age=1800
Content-Encoding: gzip
Content-Length: 45055
Date: Sun, 29 Jan 2023 03:19:44 GMT
Connection: keep-alive
Strict-Transport-Security: max-age=31536000 ; includeSubDomains
Set-Cookie: DCID=36Nqok8jc9RXfsypIQ2xjQ%3d%3d; Domain=static.wellsfargo.com; Path=/; Expires=Thu, 01 Jan 1970 00:30:00 GMT;Httponly; Secure
ocsp.digicert.com/
200 OK 471 B IP
Hash 2ab939d7526a8266218f77d9dbd76e54
20aaf3b998f98d720e7374bf337155ad50f88e85
ef9f2ce9c5fc66ec08d01f71dabab11e1db90a4568b9737eb3ae24b816074fa3
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5091
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 03:19:44 GMT
Last-Modified: Sun, 29 Jan 2023 01:54:53 GMT
Server: ECS (ska/F71B)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
200 OK 471 B IP
Hash 2ab939d7526a8266218f77d9dbd76e54
20aaf3b998f98d720e7374bf337155ad50f88e85
ef9f2ce9c5fc66ec08d01f71dabab11e1db90a4568b9737eb3ae24b816074fa3
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5091
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 03:19:44 GMT
Last-Modified: Sun, 29 Jan 2023 01:54:53 GMT
Server: ECS (ska/F71B)
X-Cache: HIT
Content-Length: 471
connect.secure.wellsfargo.com/auth/static/ui/loginaltsignon/public/stylesheets/main.b3b5f355e18c2c42a801.chunk.css
200 OK 2.0 kB URL HTTP/1.1 connect.secure.wellsfargo.com/auth/static/ui/loginaltsignon/public/stylesheets/main.b3b5f355e18c2c42a801.chunk.css
IP
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (11856), with no line terminators
Hash 425366300c0899e1c2287dd1899c8547
8721ad13af993db12da3f8b7393dc513871bd4b1
de61945d0a98db287e55bfb06cb6ed596d57541ffacda95337b49524ae85fa0a
GET /auth/static/ui/loginaltsignon/public/stylesheets/main.b3b5f355e18c2c42a801.chunk.css HTTP/1.1
Host: connect.secure.wellsfargo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bgitopazdowntown.ddireal.vn/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: text/css
Content-Length: 2005
Last-Modified: Wed, 08 Jun 2022 01:32:21 GMT
Vary: Accept-Encoding
ETag: "629ffc25-7d5"
Content-Encoding: gzip
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Content-Security-Policy: default-src 'self'; script-src 'self'; object-src 'self'; frame-ancestors 'self'; report-uri https://ort.wellsfargo.com/reporting/csp
Cache-Control: max-age=10368000
Access-Control-Allow-Methods: POST
Allow: GET, POST, OPTIONS
Date: Sun, 29 Jan 2023 03:19:44 GMT
Connection: keep-alive
Strict-Transport-Security: max-age=31536000 ; includeSubDomains
Set-Cookie: DCID=RqQnOo7VVxSHkPmRbXNs6Q%3d%3d; Domain=connect.secure.wellsfargo.com; Path=/; Expires=Thu, 01 Jan 1970 00:30:00 GMT;Httponly; Secure
static.wellsfargo.com/tracking/secure-auth/utag.3.js?utv=ut4.48.202112091836
200 OK 2.2 kB URL HTTP/1.1 static.wellsfargo.com/tracking/secure-auth/utag.3.js?utv=ut4.48.202112091836
IP
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (1022)
Hash a14fd9149c74dc560cbb2b19a945ef73
feb2bb1497fdf3810f823e09124f310ac3dfe9e0
314c74f80c31e727c06da493e10e9dba8cc3a80f2eb07d06463c486a3ba10ffe
GET /tracking/secure-auth/utag.3.js?utv=ut4.48.202112091836 HTTP/1.1
Host: static.wellsfargo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bgitopazdowntown.ddireal.vn/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/javascript; charset=utf-8
Last-Modified: Thu, 03 Dec 2020 23:04:06 GMT
Vary: Accept-Encoding
ETag: W/"5fc96ee6-15f9"
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Cache-Control: max-age=1800
Content-Encoding: gzip
Content-Length: 2186
Date: Sun, 29 Jan 2023 03:19:44 GMT
Connection: keep-alive
Strict-Transport-Security: max-age=31536000 ; includeSubDomains
Set-Cookie: DCID=rRiZFpoFplyy5+yyFxauGw%3d%3d; Domain=static.wellsfargo.com; Path=/; Expires=Thu, 01 Jan 1970 00:30:00 GMT;Httponly; Secure
static.wellsfargo.com/tracking/secure-auth/utag.4.js?utv=ut4.48.202108231941
200 OK 1.7 kB URL HTTP/1.1 static.wellsfargo.com/tracking/secure-auth/utag.4.js?utv=ut4.48.202108231941
IP
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (4209)
Hash 7251c21cc4e7be828526ed0d5e218cd0
87abe4f4f42842077a75808b7c7e016b179731bb
472d727e0870b9fd4b6f965c73d41d8e4d3a9739f1f966e5785139f4b7492996
GET /tracking/secure-auth/utag.4.js?utv=ut4.48.202108231941 HTTP/1.1
Host: static.wellsfargo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bgitopazdowntown.ddireal.vn/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/javascript; charset=utf-8
Last-Modified: Thu, 23 Sep 2021 21:00:33 GMT
Vary: Accept-Encoding
ETag: W/"614ceaf1-16e0"
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Cache-Control: max-age=1800
Content-Encoding: gzip
Content-Length: 1663
Date: Sun, 29 Jan 2023 03:19:44 GMT
Connection: keep-alive
Strict-Transport-Security: max-age=31536000 ; includeSubDomains
Set-Cookie: DCID=TFOt8Rh3W5M0bT020MWZzg%3d%3d; Domain=static.wellsfargo.com; Path=/; Expires=Thu, 01 Jan 1970 00:30:00 GMT;Httponly; Secure
static.wellsfargo.com/tracking/secure-auth/utag.7.js?utv=ut4.48.202010230514
200 OK 3.2 kB URL HTTP/1.1 static.wellsfargo.com/tracking/secure-auth/utag.7.js?utv=ut4.48.202010230514
IP
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (1579)
Hash bda63f460bc390b7b26d7c6bf49bc292
a9e353a34855275090f1812746caed3ecaaaed10
c7d2d5ed51d288030e4f53182ad497193a669255e1c9ab0f539765d0c9189218
GET /tracking/secure-auth/utag.7.js?utv=ut4.48.202010230514 HTTP/1.1
Host: static.wellsfargo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bgitopazdowntown.ddireal.vn/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/javascript; charset=utf-8
Last-Modified: Wed, 28 Oct 2020 21:48:43 GMT
Vary: Accept-Encoding
ETag: W/"5f99e73b-28df"
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Cache-Control: max-age=1800
Content-Encoding: gzip
Content-Length: 3220
Date: Sun, 29 Jan 2023 03:19:44 GMT
Connection: keep-alive
Strict-Transport-Security: max-age=31536000 ; includeSubDomains
Set-Cookie: DCID=TzQUb9TQlUTR7+28sKcCnw%3d%3d; Domain=static.wellsfargo.com; Path=/; Expires=Thu, 01 Jan 1970 00:30:00 GMT;Httponly; Secure
static.wellsfargo.com/tracking/secure-auth/utag.5.js?utv=ut4.48.202202030106
200 OK 2.4 kB URL HTTP/1.1 static.wellsfargo.com/tracking/secure-auth/utag.5.js?utv=ut4.48.202202030106
IP
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (3223)
Hash 44449282135ec65f8a30f2d0019559bc
b5345b6412524b284661df58083cf4a69137bf07
4274fe65bf4837e788240c5554ea146522b4f639497f86f0ebad1cfdff13e71b
GET /tracking/secure-auth/utag.5.js?utv=ut4.48.202202030106 HTTP/1.1
Host: static.wellsfargo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bgitopazdowntown.ddireal.vn/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/javascript; charset=utf-8
Last-Modified: Thu, 22 Sep 2022 20:06:42 GMT
Vary: Accept-Encoding
ETag: W/"632cc052-1c52"
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Cache-Control: max-age=1800
Content-Encoding: gzip
Content-Length: 2392
Date: Sun, 29 Jan 2023 03:19:44 GMT
Connection: keep-alive
Strict-Transport-Security: max-age=31536000 ; includeSubDomains
Set-Cookie: DCID=Hqg18kFLovqhGn0c4YDN8g%3d%3d; Domain=static.wellsfargo.com; Path=/; Expires=Thu, 01 Jan 1970 00:30:00 GMT;Httponly; Secure
static.wellsfargo.com/tracking/secure-auth/utag.js
200 OK 10 kB URL HTTP/1.1 static.wellsfargo.com/tracking/secure-auth/utag.js
IP
ASN #20940 Akamai International B.V.
File type Unicode text, UTF-8 text, with very long lines (7030)
Hash c10dd5cad23023da24e4f6e4470a9dbb
e1ef1048e66b4581b09dbff5556062af908edf05
38951c499a9bb273b9e1ff68cd7847012b22a6d55bbdac4e844e08f287972f73
GET /tracking/secure-auth/utag.js HTTP/1.1
Host: static.wellsfargo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bgitopazdowntown.ddireal.vn/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/javascript; charset=utf-8
Last-Modified: Tue, 24 Jan 2023 07:23:58 GMT
Vary: Accept-Encoding
ETag: W/"63cf878e-8485"
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Cache-Control: max-age=1800
Content-Encoding: gzip
Content-Length: 10074
Date: Sun, 29 Jan 2023 03:19:44 GMT
Connection: keep-alive
Strict-Transport-Security: max-age=31536000 ; includeSubDomains
Set-Cookie: DCID=K8MYVkpYLW9i3XcL6axNjQ%3d%3d; Domain=static.wellsfargo.com; Path=/; Expires=Thu, 01 Jan 1970 00:30:00 GMT;Httponly; Secure
connect.secure.wellsfargo.com/auth/login/static/js/general_alt.js?async&seed=AIB30aSBAQAAaON8e0THKEG-EABBQKIADdpWWv5DyTHstHopwQkaHgNyXtDA&X-G2Q3kxs3--z=q
404 Not Found 0 B URL HTTP/1.1 connect.secure.wellsfargo.com/auth/login/static/js/general_alt.js?async&seed=AIB30aSBAQAAaON8e0THKEG-EABBQKIADdpWWv5DyTHstHopwQkaHgNyXtDA&X-G2Q3kxs3--z=q
IP
ASN #20940 Akamai International B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /auth/login/static/js/general_alt.js?async&seed=AIB30aSBAQAAaON8e0THKEG-EABBQKIADdpWWv5DyTHstHopwQkaHgNyXtDA&X-G2Q3kxs3--z=q HTTP/1.1
Host: connect.secure.wellsfargo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bgitopazdowntown.ddireal.vn/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 404 Not Found
Content-Type: text/plain; charset=UTF-8
Content-Length: 0
Expires: Sun, 29 Jan 2023 03:19:44 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache
Date: Sun, 29 Jan 2023 03:19:44 GMT
Connection: keep-alive
Set-Cookie: DCID=f1TwpKUkW1K03ZjQzowG7X6IeUJC+Tsijp8Wq0laADCwd+O1TkxTST1C7Ru3WkSn; Domain=connect.secure.wellsfargo.com; Path=/; Expires=Sun, 29 Jan 2023 03:34:44 GMT;Httponly; Secure
Strict-Transport-Security: max-age=31536000 ; includeSubDomains
static.wellsfargo.com/tracking/secure-auth/utag.15.js?utv=ut4.48.202109220050
200 OK 1.7 kB URL HTTP/1.1 static.wellsfargo.com/tracking/secure-auth/utag.15.js?utv=ut4.48.202109220050
IP
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (1142)
Hash 8ef348be98d33d036c76772130429a0f
0ff80908b030a9d097cf1638dd903f315791c7c5
64c81f54226a9628d8944de4a31944b810f28de5db7844bfada1ee6e18c2fb8a
GET /tracking/secure-auth/utag.15.js?utv=ut4.48.202109220050 HTTP/1.1
Host: static.wellsfargo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bgitopazdowntown.ddireal.vn/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/javascript; charset=utf-8
Last-Modified: Thu, 23 Sep 2021 21:00:33 GMT
Vary: Accept-Encoding
ETag: W/"614ceaf1-ebc"
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Cache-Control: max-age=1800
Content-Encoding: gzip
Content-Length: 1682
Date: Sun, 29 Jan 2023 03:19:44 GMT
Connection: keep-alive
Strict-Transport-Security: max-age=31536000 ; includeSubDomains
Set-Cookie: DCID=2qN+3uE%2fnxlnPr2wUH5P0A%3d%3d; Domain=static.wellsfargo.com; Path=/; Expires=Thu, 01 Jan 1970 00:30:00 GMT;Httponly; Secure
static.wellsfargo.com/tracking/secure-auth/utag.10.js?utv=ut4.48.202102191956
200 OK 5.7 kB URL HTTP/1.1 static.wellsfargo.com/tracking/secure-auth/utag.10.js?utv=ut4.48.202102191956
IP
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (2575)
Hash 9b6e37266171f49f824a6e39a413ff6f
142cc5dc8990b0d62bbf391cfdbd10cf4fbb595a
9e08142c6288d72a8448c65148ff9ea288c8958942bb36482f2409f504f3518b
GET /tracking/secure-auth/utag.10.js?utv=ut4.48.202102191956 HTTP/1.1
Host: static.wellsfargo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bgitopazdowntown.ddireal.vn/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/javascript; charset=utf-8
Last-Modified: Thu, 04 Mar 2021 00:30:32 GMT
Vary: Accept-Encoding
ETag: W/"60402a28-50bb"
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Cache-Control: max-age=1800
Content-Encoding: gzip
Content-Length: 5672
Date: Sun, 29 Jan 2023 03:19:45 GMT
Connection: keep-alive
Strict-Transport-Security: max-age=31536000 ; includeSubDomains
Set-Cookie: DCID=D36by1iRbM3qoOS+9C3O5A%3d%3d; Domain=static.wellsfargo.com; Path=/; Expires=Thu, 01 Jan 1970 00:30:00 GMT;Httponly; Secure
static.wellsfargo.com/tracking/secure-auth/utag.9.js?utv=ut4.48.202108231941
200 OK 3.5 kB URL HTTP/1.1 static.wellsfargo.com/tracking/secure-auth/utag.9.js?utv=ut4.48.202108231941
IP
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (3237)
Hash 366c78f63905a07a51fcf2ca5cb938e6
7d7b1a2eb08c7972faefff64e841ba22ed0e04ee
0c587e2186f735f5ea6625edb02eb6690301eaa6c87fae4ab8f37d93610bcd99
GET /tracking/secure-auth/utag.9.js?utv=ut4.48.202108231941 HTTP/1.1
Host: static.wellsfargo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bgitopazdowntown.ddireal.vn/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/javascript; charset=utf-8
Last-Modified: Thu, 23 Sep 2021 21:00:33 GMT
Vary: Accept-Encoding
ETag: W/"614ceaf1-2bba"
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Cache-Control: max-age=1800
Content-Encoding: gzip
Content-Length: 3522
Date: Sun, 29 Jan 2023 03:19:45 GMT
Connection: keep-alive
Strict-Transport-Security: max-age=31536000 ; includeSubDomains
Set-Cookie: DCID=B2VJJlSAHW+TkrSuTKx1gQ%3d%3d; Domain=static.wellsfargo.com; Path=/; Expires=Thu, 01 Jan 1970 00:30:00 GMT;Httponly; Secure
connect.secure.wellsfargo.com/ATADUN/2.2/w/w-642409/init/js/?q=NDX%3A%25pR%20Z*d%20UcHG4Pt6k%3F%22KmP%3Ck%3B0G%3A.y7xpE%3DG%3CAp39dLl%25N%3EKJ%60%5D%27sX5rJ!u%25%3Fr%5E8p.%5ErA4m!3mC5%3E1%3D-h%2C9LL%23lK%3E%7D2eH%3Ca4L1ozMnA%23jQ%5Ec%7B%3A%25%40u%20pC%3E%22%22hlFg%40TuXBp55t%5D)z%23XnOmGPSF7L%2BF%3DnClfQsD6%7D%25)Pu%5Cd-r%27OD0f79j%22c%3CS%5E%7BG(_9vX%25qE7A%7B%3Db%3BX9t5%3Bn9N%2FbLlHQ%3B%60uN)EgyY_t0V%3A%3C%7D%5EKE%5Er4%3A%27g%3Bg%5C%407imewVcr%25teRf_hebAfazc9N%20(Zn49Kbx%60%607%2BcfRwO-zVD%5DD9Q%22%7CzFw%5E%5C9Rdkl0fCT%7D8%2B%7DTMeZ.zW%5CzR%2Bb%3D%27aG9!1-%3Bn3L%5D%5EGn5i%3C%5Bk%5B%20SI%5Bp%5C%22iCzH7J%3EKY!%24J1i%2C%2Fg%24a(F%3CiS%2B%2F%7CMcu%40auRzp.%27P6%40z%24RvL%22%2BWuNGn%3CH1j_Ux4%404%3Cs%20-qB86j6uO3Mw9q9Q2s2lEDh%5B05%3E%20.dBfSHg!%2CfOU%5EV%7DG5y%3Ak1b*3.RB7WS%26JAL%7D%5DcIpX%7D6a%7BCB%2FR%23
200 OK 541 B URL HTTP/1.1 connect.secure.wellsfargo.com/ATADUN/2.2/w/w-642409/init/js/?q=NDX%3A%25pR%20Z*d%20UcHG4Pt6k%3F%22KmP%3Ck%3B0G%3A.y7xpE%3DG%3CAp39dLl%25N%3EKJ%60%5D%27sX5rJ!u%25%3Fr%5E8p.%5ErA4m!3mC5%3E1%3D-h%2C9LL%23lK%3E%7D2eH%3Ca4L1ozMnA%23jQ%5Ec%7B%3A%25%40u%20pC%3E%22%22hlFg%40TuXBp55t%5D)z%23XnOmGPSF7L%2BF%3DnClfQsD6%7D%25)Pu%5Cd-r%27OD0f79j%22c%3CS%5E%7BG(_9vX%25qE7A%7B%3Db%3BX9t5%3Bn9N%2FbLlHQ%3B%60uN)EgyY_t0V%3A%3C%7D%5EKE%5Er4%3A%27g%3Bg%5C%407imewVcr%25teRf_hebAfazc9N%20(Zn49Kbx%60%607%2BcfRwO-zVD%5DD9Q%22%7CzFw%5E%5C9Rdkl0fCT%7D8%2B%7DTMeZ.zW%5CzR%2Bb%3D%27aG9!1-%3Bn3L%5D%5EGn5i%3C%5Bk%5B%20SI%5Bp%5C%22iCzH7J%3EKY!%24J1i%2C%2Fg%24a(F%3CiS%2B%2F%7CMcu%40auRzp.%27P6%40z%24RvL%22%2BWuNGn%3CH1j_Ux4%404%3Cs%20-qB86j6uO3Mw9q9Q2s2lEDh%5B05%3E%20.dBfSHg!%2CfOU%5EV%7DG5y%3Ak1b*3.RB7WS%26JAL%7D%5DcIpX%7D6a%7BCB%2FR%23
IP
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (541), with no line terminators
Hash 83c35b7c59bef4500d114a66284932fc
89ff27fb3c131995dad72bcdb2ab96ce4e4b48bc
bd47a9384dd359f9bd04d28fe84af5eb4218e643d828e559e98bf12cb36aaa70
GET /ATADUN/2.2/w/w-642409/init/js/?q=NDX%3A%25pR%20Z*d%20UcHG4Pt6k%3F%22KmP%3Ck%3B0G%3A.y7xpE%3DG%3CAp39dLl%25N%3EKJ%60%5D%27sX5rJ!u%25%3Fr%5E8p.%5ErA4m!3mC5%3E1%3D-h%2C9LL%23lK%3E%7D2eH%3Ca4L1ozMnA%23jQ%5Ec%7B%3A%25%40u%20pC%3E%22%22hlFg%40TuXBp55t%5D)z%23XnOmGPSF7L%2BF%3DnClfQsD6%7D%25)Pu%5Cd-r%27OD0f79j%22c%3CS%5E%7BG(_9vX%25qE7A%7B%3Db%3BX9t5%3Bn9N%2FbLlHQ%3B%60uN)EgyY_t0V%3A%3C%7D%5EKE%5Er4%3A%27g%3Bg%5C%407imewVcr%25teRf_hebAfazc9N%20(Zn49Kbx%60%607%2BcfRwO-zVD%5DD9Q%22%7CzFw%5E%5C9Rdkl0fCT%7D8%2B%7DTMeZ.zW%5CzR%2Bb%3D%27aG9!1-%3Bn3L%5D%5EGn5i%3C%5Bk%5B%20SI%5Bp%5C%22iCzH7J%3EKY!%24J1i%2C%2Fg%24a(F%3CiS%2B%2F%7CMcu%40auRzp.%27P6%40z%24RvL%22%2BWuNGn%3CH1j_Ux4%404%3Cs%20-qB86j6uO3Mw9q9Q2s2lEDh%5B05%3E%20.dBfSHg!%2CfOU%5EV%7DG5y%3Ak1b*3.RB7WS%26JAL%7D%5DcIpX%7D6a%7BCB%2FR%23 HTTP/1.1
Host: connect.secure.wellsfargo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bgitopazdowntown.ddireal.vn/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/javascript
Content-Length: 541
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
Vary: Origin,Referer
X-Content-Type-Options: nosniff, nosniff
Access-Control-Allow-Origin: http://bgitopazdowntown.ddireal.vn
Access-Control-Allow-Methods: GET, POST
Date: Sun, 29 Jan 2023 03:19:45 GMT
Connection: keep-alive
Set-Cookie: ndcd=wc1.1.w-729460.1.2.1qAuR5FjCeYXee2EQk6Idg%252C%252C.BZ4ZHadBU5YH7lcosUq4-UYiSqiDCPtCmMKTcP1DbetPETksuDSYinaMCT689xEFuDqkZgPUfnq0Kqg_L-NJHk838Zt40AKrhTbWZ0fn19JaZRVSXTM-t6b54KjgYM_vFFTfQz2DBjnM6gpslp7Kc6BzyFAFPmn8Be9m1T-pQlWGIGFgLaWAzGKH2jfz-sAu; expires=Mon, 29-Jan-2024 03:19:44 GMT; Max-Age=31536000; path=/; domain=.wellsfargo.com; secure; HttpOnly; SameSite=None
DCID=XbIvD61qAYZ7IDHchOrvsg9ycCgW19IZoYR3d5PNer8%3d; Domain=connect.secure.wellsfargo.com; Path=/; Expires=Sun, 29 Jan 2023 03:34:44 GMT;Httponly; Secure
_abck=946E9D7AEDAA1ED87D004091EAB45BD0~-1~YAAQvgplX0XUP8WFAQAAlriJ+wkO45n/A7V8kK6pEMbJG71egN4cgSVJGUIW5r5boiKVRFDqwajUrW/HdC9s0x97Ee2kOl3MSCa8KUz2uqFcml+LuXZsBiM+mzC+9nVNL5ypU1Rk2OtMr4vdLg4eEP0eaAliad2wRgx2NHvelio+Tcm8X3yor8O6TOmiZQe82ro6crq2CxYRO6JxkJdqQqtf/HSlDnt+dSldoAmjybQjlSg2941xlwF9zYSjR8qRhpleZwSqA/PwuXfdogmq/GJasKAF0F4uhwcNSems1dIPpBR/PE19+P3JjrFg5XOZpQTFrGwBNhlZkU8s2kDIfUBAdBdqyIRxt9gxZpoAiJwbtmMkwmnQQ4RuJCEKKIfEIg==~-1~-1~-1; Domain=.wellsfargo.com; Path=/; Expires=Mon, 29 Jan 2024 03:19:45 GMT; Max-Age=31536000; Secure
bm_sz=438CA851C88181E3073FD36E4912796C~YAAQvgplX0bUP8WFAQAAlriJ+xK5dhhYvrT9Ebz7S7n60/zIigglBoeqNX0NdKSj75hql3XXXkZGn5q0cYbFJf0BeXYd+Lcvew9nb4LeQL2jfrIxxduRC8mVvOXmG/SRkbI+XNvFC/asWp6jorvPLYDXdJUCNF9aE89v+3xV5L/JY39TESZkmj60io5YCFlkQgAl3fuuJxLsWITLO2KXDaz9ucmnBMnCBBr8rEnAnJV2CFY3YQJ9E4ChXvRfjLmGbiiX7+6VsZl6yS6wLv7y27hzr8VjqN1cs2x6I7TDMjql7gGu+5fL~3688001~4277303; Domain=.wellsfargo.com; Path=/; Expires=Sun, 29 Jan 2023 07:19:44 GMT; Max-Age=14399
Strict-Transport-Security: max-age=31536000 ; includeSubDomains
connect.secure.wellsfargo.com/jenny/nd
200 OK 18 kB URL HTTP/1.1 connect.secure.wellsfargo.com/jenny/nd
IP
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (2293)
Hash 9a632ae11e19f7c06b46cc3bd7a123d8
322da980a0a6074285404a371fd81aecf341606a
13bf5b84317f68816743accddbb1a2550da66a3b67a098242259caca833f6197
GET /jenny/nd HTTP/1.1
Host: connect.secure.wellsfargo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bgitopazdowntown.ddireal.vn/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
X-Frame-Options: DENY
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Vary: accept-encoding
Content-Encoding: gzip
Content-Type: application/javascript;charset=ISO-8859-1
Content-Length: 17894
Date: Sun, 29 Jan 2023 03:19:45 GMT
Connection: keep-alive
Set-Cookie: ADRUM_BTa=R:35|g:bdb8dc2c-d38e-453a-83e9-ce0b6afe85d9; Expires=Sun, 29-Jan-2023 03:20:15 GMT; Path=/; Secure
ADRUM_BTa=R:35|g:bdb8dc2c-d38e-453a-83e9-ce0b6afe85d9|n:wellsfargo-prod_43732a1d-9afc-4e95-ad69-f4ac78c780a7; Expires=Sun, 29-Jan-2023 03:20:15 GMT; Path=/; Secure
SameSite=None; Expires=Sun, 29-Jan-2023 03:20:15 GMT; Path=/; Secure
ADRUM_BT1=R:35|i:302812; Expires=Sun, 29-Jan-2023 03:20:15 GMT; Path=/; Secure
ADRUM_BT1=R:35|i:302812|e:3; Expires=Sun, 29-Jan-2023 03:20:15 GMT; Path=/; Secure
ISD_AB_COOKIE=A; Max-Age=7200; path=/; Domain=connect.secure.wellsfargo.com; Secure; httpOnly
DCID=dhMqFqVpLMmuQSveUSIEZNvQUbx3KYKOO+RQfMJioB4%3d; Domain=connect.secure.wellsfargo.com; Path=/; Expires=Sun, 29 Jan 2023 03:34:44 GMT;Httponly; Secure
_abck=01B5110DD6DC7901E45C9100AD1778B4~-1~YAAQvgplX0rUP8WFAQAAXrmJ+wle7wWgkw8xT0fJ2j99tLIiqcOdqDODnWN+lIYColQ71jQYcvcKLOeZDKDTzDWJxg7xUDPVrHtSFeKstASyCGTCAboiE/BVTNAqZWvcYdCg6I0e1RpqvBTDanE3lizxRay3skJr2U+XVhZAlZSCtPHBFJYbg73p8t8DI7jzXr1r4vqpJ9slFWfnC8OUt+v6rH4Gpr9CgcYD6EyV9aiD9l6qX8YG9D9U+IN7hU/WjmS6JSDyRJEd7/CT8vwmYq9ief2oBt6xL3gBIhJV9Awc1jAr8183lzs4KKcQFbIF/WitXt46hy1AK9wt4I/drBf6gole6jOAFUtThmMs3G7kHfewVM1P/aPI2+dAZKJAkw==~-1~-1~-1; Domain=.wellsfargo.com; Path=/; Expires=Mon, 29 Jan 2024 03:19:45 GMT; Max-Age=31536000; Secure
bm_sz=1838FABD0B4638B0E7D96F8C37AE954D~YAAQvgplX0vUP8WFAQAAXrmJ+xKIN0hjOK2x+N4gSyVutvCpEmhX1g4RDkBxaFArVSw0wlCt24Dor7lDsVTFo1lEkKr64yHsEYLwJSACnlknYV/t8D23Z9u5qJ8x7tTLXRaM7AzwOAJy7D0ofJWT/D+mCH9cU8l/uo+60OfotPIMNMtJauLLNDOuynHd6D/tgfJtSpRAmgBpOm0P0hymshvfsF7WcxSButC+ZkNe4Qn2MrkJP1JJtq/RG5P5d6oJwFGWWIQaIdZKB91F89avt1seAsRSqjmy3FyzU4R7sAD/C2oW6/Ol~3688001~4277303; Domain=.wellsfargo.com; Path=/; Expires=Sun, 29 Jan 2023 07:19:44 GMT; Max-Age=14399
Strict-Transport-Security: max-age=31536000 ; includeSubDomains
connect.secure.wellsfargo.com/AIDO/glu.js
200 OK 37 kB URL HTTP/1.1 connect.secure.wellsfargo.com/AIDO/glu.js
IP
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (65536), with no line terminators
Hash 4c7d59f06577f30e7cfbb505d428f92b
b1f6a6aa842311ac2c4063326e2cf10beec76a0c
b85cd5b5af6281f2defca848a4df1d3f5c36b3201553abfd3f2eecbedf447485
GET /AIDO/glu.js HTTP/1.1
Host: connect.secure.wellsfargo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bgitopazdowntown.ddireal.vn/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/x-javascript
Content-Length: 37022
Vary: Origin, Accept-Encoding
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: GET, OPTIONS
max-age: 0
Expires: -1
X-XSS-Protection: 1; mode=block
Cache-Control: no-cache, no-store, must-revalidate
Pragma: no-cache
PICS-Label: (PICS-1.1 "http://www.icra.org/pics/vocabularyv03/" l r (n 0 s 0 v 0 l 0 oa 0 ob 0 oc 0 od 0 oe 0 of 0 og 0 oh 0 c 0) "http://www.icra.org/ratingsv02.html" l r (nz 0 vz 0 lz 0 oz 0 cz 0) "http://www.rsac.org/ratingsv01.html" l r (n 0 s 0 v 0 l 0))
P3P: CP="NOI ADM DEV PSAi COM NAV OUR OTR STP IND DEM"
Content-Encoding: gzip
Date: Sun, 29 Jan 2023 03:19:45 GMT
Connection: keep-alive
Set-Cookie: ISD_AB_COOKIE=A; Max-Age=7200; path=/; Domain=connect.secure.wellsfargo.com; Secure; httpOnly
DCID=gk3lBA5Cj3wdfy2chRWvDnJgicD%2fodH5xwcU8mpj+vR4WrkbIEjNMB84xeODq2AC; Domain=connect.secure.wellsfargo.com; Path=/; Expires=Sun, 29 Jan 2023 03:34:44 GMT;Httponly; Secure
Strict-Transport-Security: max-age=31536000 ; includeSubDomains
connect.secure.wellsfargo.com/AIDO/trx.js
200 OK 54 kB URL HTTP/1.1 connect.secure.wellsfargo.com/AIDO/trx.js
IP
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (65536), with no line terminators
Hash 825506fceaa74d6834bde8cde9921c91
7a836b27e36ac278011ab26b5bd8fbe1d5df2814
009fec304051ac77cdec244351600871456ba842d2ffc212072bee9c05e16716
GET /AIDO/trx.js HTTP/1.1
Host: connect.secure.wellsfargo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bgitopazdowntown.ddireal.vn/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/x-javascript
Content-Length: 53993
max-age: 0
Expires: -1
X-XSS-Protection: 1; mode=block
Cache-Control: no-cache, no-store, must-revalidate
Pragma: no-cache
PICS-Label: (PICS-1.1 "http://www.icra.org/pics/vocabularyv03/" l r (n 0 s 0 v 0 l 0 oa 0 ob 0 oc 0 od 0 oe 0 of 0 og 0 oh 0 c 0) "http://www.icra.org/ratingsv02.html" l r (nz 0 vz 0 lz 0 oz 0 cz 0) "http://www.rsac.org/ratingsv01.html" l r (n 0 s 0 v 0 l 0))
P3P: CP="NOI ADM DEV PSAi COM NAV OUR OTR STP IND DEM"
Vary: Accept-Encoding
Content-Encoding: gzip
Date: Sun, 29 Jan 2023 03:19:45 GMT
Connection: keep-alive
Set-Cookie: ISD_AB_COOKIE=A; Max-Age=7200; path=/; Domain=connect.secure.wellsfargo.com; Secure; httpOnly
DCID=+lHJGDyiE5vjw6G8FkOSXngh2oz3x+2pny7f+3q+XkRabS0y41vruui7vCOnSDS7; Domain=connect.secure.wellsfargo.com; Path=/; Expires=Sun, 29 Jan 2023 03:34:44 GMT;Httponly; Secure
Strict-Transport-Security: max-age=31536000 ; includeSubDomains
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash dfb84426fed94988d5c90372baff059c
f1c4740830034ff8a5759d59ae3f657ea524d083
d97efec67504b084ca6ff9e2af973b45b916f90aa021603e3615806bb2737b6a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D97EFEC67504B084CA6FF9E2AF973B45B916F90AA021603E3615806BB2737B6A"
Last-Modified: Sun, 29 Jan 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13278
Expires: Sun, 29 Jan 2023 07:01:03 GMT
Date: Sun, 29 Jan 2023 03:19:45 GMT
Connection: keep-alive
connect.secure.wellsfargo.com/PIDO/pic.js?r=0.8426445611056853
200 OK 50 kB URL HTTP/1.1 connect.secure.wellsfargo.com/PIDO/pic.js?r=0.8426445611056853
IP
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (65536), with no line terminators
Hash a596faedbe95d1042acb324037fa7dfc
71071a54913a68a48499bfb3e1c33f7f45548575
3614f9e2786a8b48034a33249a10192d6c5b6712fe37134c81ed0e05a846a2ae
GET /PIDO/pic.js?r=0.8426445611056853 HTTP/1.1
Host: connect.secure.wellsfargo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bgitopazdowntown.ddireal.vn/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/x-javascript
Content-Length: 50039
max-age: 0
Expires: -1
X-XSS-Protection: 1; mode=block
Cache-Control: no-cache, no-store, must-revalidate
Pragma: no-cache
PICS-Label: (PICS-1.1 "http://www.icra.org/pics/vocabularyv03/" l r (n 0 s 0 v 0 l 0 oa 0 ob 0 oc 0 od 0 oe 0 of 0 og 0 oh 0 c 0) "http://www.icra.org/ratingsv02.html" l r (nz 0 vz 0 lz 0 oz 0 cz 0) "http://www.rsac.org/ratingsv01.html" l r (n 0 s 0 v 0 l 0))
P3P: CP="NOI ADM DEV PSAi COM NAV OUR OTR STP IND DEM"
Vary: Accept-Encoding
Content-Encoding: gzip
Date: Sun, 29 Jan 2023 03:19:45 GMT
Connection: keep-alive
Set-Cookie: ISD_AB_COOKIE=A; Max-Age=7200; path=/; Domain=connect.secure.wellsfargo.com; Secure; httpOnly
DCID=K7SWdfxH1DKDWuMmLxBf53xoxJ+xFNqQ87HOFzPdtvo%3d; Domain=connect.secure.wellsfargo.com; Path=/; Expires=Sun, 29 Jan 2023 03:34:44 GMT;Httponly; Secure
Strict-Transport-Security: max-age=31536000 ; includeSubDomains
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash dfb84426fed94988d5c90372baff059c
f1c4740830034ff8a5759d59ae3f657ea524d083
d97efec67504b084ca6ff9e2af973b45b916f90aa021603e3615806bb2737b6a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D97EFEC67504B084CA6FF9E2AF973B45B916F90AA021603E3615806BB2737B6A"
Last-Modified: Sun, 29 Jan 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13278
Expires: Sun, 29 Jan 2023 07:01:03 GMT
Date: Sun, 29 Jan 2023 03:19:45 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash dfb84426fed94988d5c90372baff059c
f1c4740830034ff8a5759d59ae3f657ea524d083
d97efec67504b084ca6ff9e2af973b45b916f90aa021603e3615806bb2737b6a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D97EFEC67504B084CA6FF9E2AF973B45B916F90AA021603E3615806BB2737B6A"
Last-Modified: Sun, 29 Jan 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13278
Expires: Sun, 29 Jan 2023 07:01:03 GMT
Date: Sun, 29 Jan 2023 03:19:45 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash dfb84426fed94988d5c90372baff059c
f1c4740830034ff8a5759d59ae3f657ea524d083
d97efec67504b084ca6ff9e2af973b45b916f90aa021603e3615806bb2737b6a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D97EFEC67504B084CA6FF9E2AF973B45B916F90AA021603E3615806BB2737B6A"
Last-Modified: Sun, 29 Jan 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13278
Expires: Sun, 29 Jan 2023 07:01:03 GMT
Date: Sun, 29 Jan 2023 03:19:45 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash dfb84426fed94988d5c90372baff059c
f1c4740830034ff8a5759d59ae3f657ea524d083
d97efec67504b084ca6ff9e2af973b45b916f90aa021603e3615806bb2737b6a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D97EFEC67504B084CA6FF9E2AF973B45B916F90AA021603E3615806BB2737B6A"
Last-Modified: Sun, 29 Jan 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13278
Expires: Sun, 29 Jan 2023 07:01:03 GMT
Date: Sun, 29 Jan 2023 03:19:45 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd9a423a9-16ee-4e3f-b9b4-34f6a469aba9.jpeg
200 OK 9.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd9a423a9-16ee-4e3f-b9b4-34f6a469aba9.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 3be81f83687ddb6c93d3ff3c09a9dba2
50a48e737310d3f31840db4301b25927fbcc12c5
e78c909e2381898e7f546183784a05dff47c31734c95358aaada8c2777ad47be
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd9a423a9-16ee-4e3f-b9b4-34f6a469aba9.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9167
x-amzn-requestid: e6e0789c-a4a9-4ffa-a0ae-691770d1035b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fPF9YEBmIAMF0kQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63cf8388-01d2093432d3959903671a69;Sampled=0
x-amzn-remapped-date: Tue, 24 Jan 2023 07:06:48 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: awfNeaKbFw2bjiTGwUrwUTxU-qbVS2eTjn948H8kn1hy7pi_DwLMlQ==
via: 1.1 01c28b52813cd0e82f810c492808b142.cloudfront.net (CloudFront), 1.1 b2f9564ebf9c745cc2ceae96d434977e.cloudfront.net (CloudFront), 1.1 google
date: Sat, 28 Jan 2023 17:35:56 GMT
age: 35029
etag: "50a48e737310d3f31840db4301b25927fbcc12c5"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9dd6ccbb-893e-4aca-b08e-b16283e4ee58.jpeg
200 OK 7.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9dd6ccbb-893e-4aca-b08e-b16283e4ee58.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash e6d617843cc1f7df21950fe7d4add160
4b7b2e07f0c4667f9c83d99c1481f81ac6e531f9
facb5e8beed1bf0b0ae02cba77278767f211717097803b3966312dfe0822646b
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9dd6ccbb-893e-4aca-b08e-b16283e4ee58.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7790
x-amzn-requestid: 19b7ae0c-7ce9-4d01-96c3-9259e6f2b1ec
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fH88xFpKIAMF_gg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63cca851-0d4a98a74200cb962d434f82;Sampled=0
x-amzn-remapped-date: Sun, 22 Jan 2023 03:06:57 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: ORGO0m0bJJzpWpxLCewm0J1vp8khEZlPzL58syBdlhyQniN8em5Qzg==
via: 1.1 446313511980eb02f28ff5a9a4147c0a.cloudfront.net (CloudFront), 1.1 e4d3d5aafc7d7d582423c073065ab562.cloudfront.net (CloudFront), 1.1 google
date: Sat, 28 Jan 2023 21:46:19 GMT
age: 20006
etag: "4b7b2e07f0c4667f9c83d99c1481f81ac6e531f9"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcc7f65e9-ca75-4ecb-ba7c-ae70877eaf01.jpeg
200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcc7f65e9-ca75-4ecb-ba7c-ae70877eaf01.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 2f73f114f8dc452fc0b16825570ad50c
6bb1b3db6c36e2c9d23b6cb7d1c8616eeec19575
23fd69e6ccdd2ce2b5d3d8b3f075a07cdb36efd663a4119b5dca22165e7b2090
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcc7f65e9-ca75-4ecb-ba7c-ae70877eaf01.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10030
x-amzn-requestid: 0c6c82b5-f91b-4468-bb25-d87d4d7dedd5
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fVAbgERRIAMFdcw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d1e116-7f17c79047447dff2de3ab67;Sampled=0
x-amzn-remapped-date: Thu, 26 Jan 2023 02:10:30 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 4C0fCJB3N9nw0xKQnlsRLx_VGA3shg394U3Tq4pxNMWgggZe93TLUA==
via: 1.1 8f22423015641505b8c857a37450d6c0.cloudfront.net (CloudFront), 1.1 760139201585481b26f947c5f776103a.cloudfront.net (CloudFront), 1.1 google
date: Sat, 28 Jan 2023 20:30:44 GMT
age: 24541
etag: "6bb1b3db6c36e2c9d23b6cb7d1c8616eeec19575"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdf6aeac1-fd74-4724-86b5-f0e86d98c915.jpeg
200 OK 8.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdf6aeac1-fd74-4724-86b5-f0e86d98c915.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 43c4a8e963936a8064dbd2bd3c67b905
8508727c97127c98b886833af28b3470306216c2
070c29fe7c0a227029483d675eac863904ab6b291467acdf62167f4845699c21
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdf6aeac1-fd74-4724-86b5-f0e86d98c915.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8652
x-amzn-requestid: 5a5a883e-d7d4-4fc5-925a-3a95830c504e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fVguyG7BIAMFm8g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d214c4-390b59a32060e41203533c58;Sampled=0
x-amzn-remapped-date: Thu, 26 Jan 2023 05:51:00 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: ewSsCY4u9DwRtaj00U9JCim9tYeCgHRuIQFpdHm4ttI6L02-e44iDQ==
via: 1.1 0005a84c2971ff4f5bbb79e7ebc622a8.cloudfront.net (CloudFront), 1.1 5565a51537c689d1d16f6b4d41f40082.cloudfront.net (CloudFront), 1.1 google
date: Sat, 28 Jan 2023 23:11:24 GMT
age: 14901
etag: "8508727c97127c98b886833af28b3470306216c2"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe8f2806c-ec5e-41a0-85d8-007f6d34d108.jpeg
200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe8f2806c-ec5e-41a0-85d8-007f6d34d108.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 6021d6a06bff2826eb341747e82484f7
a817ff1ba206234627706551820d0d9856b398de
f0ba6de8709fdb73e94dbdace635232c76b9d70dad73badaca0542d9ad49604d
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe8f2806c-ec5e-41a0-85d8-007f6d34d108.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11624
x-amzn-requestid: dff12902-8b83-4df1-a2c9-a2ee9565830f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fIhnjEmpIAMFdlA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63cce2fc-0216188a3154167648f7d976;Sampled=0
x-amzn-remapped-date: Sun, 22 Jan 2023 07:17:16 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: kxzVU1bNn09g_-73AY-mNvzhHo-dTyQinPkfPEqhDcKFfrTnbDpaZQ==
via: 1.1 f13aef0c4b52f6f681401f232d03eb68.cloudfront.net (CloudFront), 1.1 d6a002c70d55f415107618b0750d493c.cloudfront.net (CloudFront), 1.1 google
date: Sat, 28 Jan 2023 23:15:07 GMT
age: 14678
etag: "a817ff1ba206234627706551820d0d9856b398de"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F62d5a25c-3219-4061-b58b-b783bc3a37fb.jpeg
200 OK 7.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F62d5a25c-3219-4061-b58b-b783bc3a37fb.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 6af6f32397882f56d14d22348e44a9f1
5a626376807e7507fa3a204c4e4e9e44aa074a37
478f32e98c0a1f0d62fa337795ca88b7927e14b684b681f7629b648bc2d709a5
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F62d5a25c-3219-4061-b58b-b783bc3a37fb.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7417
x-amzn-requestid: 53032353-8613-49b0-944d-3742236cf50c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fYcMmFeQIAMF3Yw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d340b6-7fe2226327d90db014527c08;Sampled=0
x-amzn-remapped-date: Fri, 27 Jan 2023 03:10:46 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: zd8cTO2N1JO-OK3hCDwVO8naClCsg0raJLboRFle-DPSKhR_7k8-Yg==
via: 1.1 6ba2a21321beeef65404429d0a4b6380.cloudfront.net (CloudFront), 1.1 981753271eb5b6d11bc29d52f173a5da.cloudfront.net (CloudFront), 1.1 google
date: Sat, 28 Jan 2023 03:34:31 GMT
age: 85514
etag: "5a626376807e7507fa3a204c4e4e9e44aa074a37"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
connect.secure.wellsfargo.com/AIDO/mint.js?dt=login&r=0.7640382844861511
200 OK 56 kB URL HTTP/1.1 connect.secure.wellsfargo.com/AIDO/mint.js?dt=login&r=0.7640382844861511
IP
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (65536), with no line terminators
Hash 0206579825cf5540ad8c516b2f29740a
fa91251c1a6a38d3532f0869f57c905c6f08954e
6f82e7cf3bfaeac9c1d08532d2a49f6dee5c88329b72db3926660aaef7dee600
GET /AIDO/mint.js?dt=login&r=0.7640382844861511 HTTP/1.1
Host: connect.secure.wellsfargo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bgitopazdowntown.ddireal.vn/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/x-javascript
Content-Length: 55646
max-age: 0
Expires: -1
X-XSS-Protection: 1; mode=block
Cache-Control: no-cache, no-store, must-revalidate
Pragma: no-cache
PICS-Label: (PICS-1.1 "http://www.icra.org/pics/vocabularyv03/" l r (n 0 s 0 v 0 l 0 oa 0 ob 0 oc 0 od 0 oe 0 of 0 og 0 oh 0 c 0) "http://www.icra.org/ratingsv02.html" l r (nz 0 vz 0 lz 0 oz 0 cz 0) "http://www.rsac.org/ratingsv01.html" l r (n 0 s 0 v 0 l 0))
P3P: CP="NOI ADM DEV PSAi COM NAV OUR OTR STP IND DEM"
Vary: Accept-Encoding
Content-Encoding: gzip
Date: Sun, 29 Jan 2023 03:19:45 GMT
Connection: keep-alive
Set-Cookie: ISD_AB_COOKIE=B; Max-Age=7200; path=/; Domain=connect.secure.wellsfargo.com; Secure; httpOnly
DCID=O4HiApg6tjwTYM%2fFH2znZG1C6b+Jri6eolc0b6hlUVk%3d; Domain=connect.secure.wellsfargo.com; Path=/; Expires=Sun, 29 Jan 2023 03:34:44 GMT;Httponly; Secure
Strict-Transport-Security: max-age=31536000 ; includeSubDomains
connect.secure.wellsfargo.com/AIDO/ay6u?d=JTVCJTdCJTIyaWQlMjIlM0ElMjIxNSUyMiUyQyUyMmRhdGElMjIlM0ElN0IlMjJyZWYlMjIlM0ElMjJodHRwcyUzQSUyRiUyRmNvbm5lY3Quc2VjdXJlLndlbGxzZmFyZ28uY29tJTJGYXV0aCUyRmxvZ2luJTJGcHJlc2VudCUzRm9yaWdpbiUzRGNvYiUyNkxPQiUzRENPTlMlMjIlN0QlN0QlMkMlN0IlMjJpZCUyMiUzQSUyMjI4JTIyJTJDJTIyZGF0YSUyMiUzQSU3QiUyMnMlMjIlM0ElMjJhYWY5NTg4OS0yMDZiLTQ1N2UtOWQzNC0xMGE0NDYwY2U3YTUlMjIlN0QlN0QlNUQ%3D&cid=15%2C28&si=3&e=https%3A%2F%2Fconnect.secure.wellsfargo.com&t=jsonp&__tp=login&c=tasfxhz_xfidlmov&eu=https%3A%2F%2Fconnect.secure.wellsfargo.com%2Fauth%2Flogin%2Fpresent
200 OK 142 B URL HTTP/1.1 connect.secure.wellsfargo.com/AIDO/ay6u?d=JTVCJTdCJTIyaWQlMjIlM0ElMjIxNSUyMiUyQyUyMmRhdGElMjIlM0ElN0IlMjJyZWYlMjIlM0ElMjJodHRwcyUzQSUyRiUyRmNvbm5lY3Quc2VjdXJlLndlbGxzZmFyZ28uY29tJTJGYXV0aCUyRmxvZ2luJTJGcHJlc2VudCUzRm9yaWdpbiUzRGNvYiUyNkxPQiUzRENPTlMlMjIlN0QlN0QlMkMlN0IlMjJpZCUyMiUzQSUyMjI4JTIyJTJDJTIyZGF0YSUyMiUzQSU3QiUyMnMlMjIlM0ElMjJhYWY5NTg4OS0yMDZiLTQ1N2UtOWQzNC0xMGE0NDYwY2U3YTUlMjIlN0QlN0QlNUQ%3D&cid=15%2C28&si=3&e=https%3A%2F%2Fconnect.secure.wellsfargo.com&t=jsonp&__tp=login&c=tasfxhz_xfidlmov&eu=https%3A%2F%2Fconnect.secure.wellsfargo.com%2Fauth%2Flogin%2Fpresent
IP
ASN #20940 Akamai International B.V.
File type ASCII text, with no line terminators
Hash d440dfdb1c750df6d9d8354b165b0f61
7fc609372c7288846bf34e1e424fbc8c9d3a8897
db27897282a9c24bf21eeb7cebabf3cc9feec5d7d7676498f7809e632a1a6502
GET /AIDO/ay6u?d=JTVCJTdCJTIyaWQlMjIlM0ElMjIxNSUyMiUyQyUyMmRhdGElMjIlM0ElN0IlMjJyZWYlMjIlM0ElMjJodHRwcyUzQSUyRiUyRmNvbm5lY3Quc2VjdXJlLndlbGxzZmFyZ28uY29tJTJGYXV0aCUyRmxvZ2luJTJGcHJlc2VudCUzRm9yaWdpbiUzRGNvYiUyNkxPQiUzRENPTlMlMjIlN0QlN0QlMkMlN0IlMjJpZCUyMiUzQSUyMjI4JTIyJTJDJTIyZGF0YSUyMiUzQSU3QiUyMnMlMjIlM0ElMjJhYWY5NTg4OS0yMDZiLTQ1N2UtOWQzNC0xMGE0NDYwY2U3YTUlMjIlN0QlN0QlNUQ%3D&cid=15%2C28&si=3&e=https%3A%2F%2Fconnect.secure.wellsfargo.com&t=jsonp&__tp=login&c=tasfxhz_xfidlmov&eu=https%3A%2F%2Fconnect.secure.wellsfargo.com%2Fauth%2Flogin%2Fpresent HTTP/1.1
Host: connect.secure.wellsfargo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bgitopazdowntown.ddireal.vn/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: text/javascript
Content-Length: 142
max-age: 0
Expires: -1
X-XSS-Protection: 1; mode=block
Cache-Control: no-cache, no-store, must-revalidate
Pragma: no-cache
PICS-Label: (PICS-1.1 "http://www.icra.org/pics/vocabularyv03/" l r (n 0 s 0 v 0 l 0 oa 0 ob 0 oc 0 od 0 oe 0 of 0 og 0 oh 0 c 0) "http://www.icra.org/ratingsv02.html" l r (nz 0 vz 0 lz 0 oz 0 cz 0) "http://www.rsac.org/ratingsv01.html" l r (n 0 s 0 v 0 l 0))
P3P: CP="NOI ADM DEV PSAi COM NAV OUR OTR STP IND DEM"
Vary: Accept-Encoding
Date: Sun, 29 Jan 2023 03:19:45 GMT
Connection: keep-alive
Set-Cookie: ISD_AB_COOKIE=A; Max-Age=7200; path=/; Domain=connect.secure.wellsfargo.com; Secure; httpOnly
DCID=GPHGuaPYF0TrZuVpkELrzn9uWhYQHFEYPALDhxI2MX0%3d; Domain=connect.secure.wellsfargo.com; Path=/; Expires=Sun, 29 Jan 2023 03:34:45 GMT;Httponly; Secure
_abck=0F16152AD2D82A8D70A4893869550B5D~-1~YAAQvgplX0zUP8WFAQAAW7qJ+wmkgzoOH1QdZWff1PnX6JihUII9we9OFxvpQ1iqHLX9jjh20WU2lap4zfRsGy5uHvDF2UUzGtlzDan8vnZPWAyS4Kf7Y86sNnFsAJ3AsDdN6eG1Qp7GUKGLQop6y2sA313IHqATZFIzcz+pSXHdKIhJ63JiGcxppmaLZUsEPCeryZl/5k8arN7bHtSkkiDJ24VJp95tWHhaI2eaY+yIIslNZP8uUXbxgkxZzgOZbtF9cA6pPu4xaPNjJuhJrh8gE1egwQKAirJB0M5cTsmj0F6mFIWxV2tA4NeRfoHOKQzruHmetNRUqhPBvGpZwO1lhBvE+DVw90jVi3KoaTk2IBl/pexOyUKPgSJYCQbJkg==~-1~-1~-1; Domain=.wellsfargo.com; Path=/; Expires=Mon, 29 Jan 2024 03:19:45 GMT; Max-Age=31536000; Secure
bm_sz=970112F4B23CC1AEF3A9FD92A5168CF5~YAAQvgplX03UP8WFAQAAW7qJ+xIHTdBDqB1F3IFZJdvp1sFfS52kfIz5Wm0hRNPqVXUKXSCw9FR5wgtMzD1aBlC2WnLLyWjgaVzEAZKLmApu6OCMfSPiHnplUvnliJgc1RfoGMkBOpyE0xO6KG/PnvvXIcNTuocJz6UNvielAN07lrC/GxB2F6fpp2LN9iSEpD90YCM0xZo4+XcKeB0qpkzGTI861ChQEe2XvXvivzIKTUh9ujT44KfGO36/XuhDhMzWa/ODQwiK1OjHe0vrXpElzXds93U7WtnzEsoAZIiiFnAWXTL2~3682357~3621699; Domain=.wellsfargo.com; Path=/; Expires=Sun, 29 Jan 2023 07:19:45 GMT; Max-Age=14400
Strict-Transport-Security: max-age=31536000 ; includeSubDomains
connect.secure.wellsfargo.com/AIDO/vyHb?d=JTVCJTdCJTIyaWQlMjIlM0ElMjIyMCUyMiUyQyUyMmRhdGElMjIlM0ElN0IlMjJkdCUyMiUzQSUyMmdkaWQlMjIlMkMlMjJnJTIyJTNBJTIybDR3bm1iY2Q3a2hla3h2ZGR1ayUyMiUyQyUyMmNpZCUyMiUzQSUyMjIwJTIyJTdEJTdEJTVE&cid=20&si=4&e=https%3A%2F%2Fconnect.secure.wellsfargo.com&t=jsonp&__tp=login&c=dklzlamqibulxmua&eu=https%3A%2F%2Fconnect.secure.wellsfargo.com%2Fauth%2Flogin%2Fpresent
200 OK 132 B URL HTTP/1.1 connect.secure.wellsfargo.com/AIDO/vyHb?d=JTVCJTdCJTIyaWQlMjIlM0ElMjIyMCUyMiUyQyUyMmRhdGElMjIlM0ElN0IlMjJkdCUyMiUzQSUyMmdkaWQlMjIlMkMlMjJnJTIyJTNBJTIybDR3bm1iY2Q3a2hla3h2ZGR1ayUyMiUyQyUyMmNpZCUyMiUzQSUyMjIwJTIyJTdEJTdEJTVE&cid=20&si=4&e=https%3A%2F%2Fconnect.secure.wellsfargo.com&t=jsonp&__tp=login&c=dklzlamqibulxmua&eu=https%3A%2F%2Fconnect.secure.wellsfargo.com%2Fauth%2Flogin%2Fpresent
IP
ASN #20940 Akamai International B.V.
File type ASCII text, with no line terminators
Hash 6640c11d819438d65ab88452dc11d712
78ff87493789f855231f9ad1f95c088aa3c6774c
61a097bc2513efb34dee32ba60be8df34a5e2d3f9f833065c47fe18b89907662
GET /AIDO/vyHb?d=JTVCJTdCJTIyaWQlMjIlM0ElMjIyMCUyMiUyQyUyMmRhdGElMjIlM0ElN0IlMjJkdCUyMiUzQSUyMmdkaWQlMjIlMkMlMjJnJTIyJTNBJTIybDR3bm1iY2Q3a2hla3h2ZGR1ayUyMiUyQyUyMmNpZCUyMiUzQSUyMjIwJTIyJTdEJTdEJTVE&cid=20&si=4&e=https%3A%2F%2Fconnect.secure.wellsfargo.com&t=jsonp&__tp=login&c=dklzlamqibulxmua&eu=https%3A%2F%2Fconnect.secure.wellsfargo.com%2Fauth%2Flogin%2Fpresent HTTP/1.1
Host: connect.secure.wellsfargo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bgitopazdowntown.ddireal.vn/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: text/javascript
Content-Length: 132
max-age: 0
Expires: -1
X-XSS-Protection: 1; mode=block
Cache-Control: no-cache, no-store, must-revalidate
Pragma: no-cache
PICS-Label: (PICS-1.1 "http://www.icra.org/pics/vocabularyv03/" l r (n 0 s 0 v 0 l 0 oa 0 ob 0 oc 0 od 0 oe 0 of 0 og 0 oh 0 c 0) "http://www.icra.org/ratingsv02.html" l r (nz 0 vz 0 lz 0 oz 0 cz 0) "http://www.rsac.org/ratingsv01.html" l r (n 0 s 0 v 0 l 0))
P3P: CP="NOI ADM DEV PSAi COM NAV OUR OTR STP IND DEM"
Vary: Accept-Encoding
Date: Sun, 29 Jan 2023 03:19:45 GMT
Connection: keep-alive
Set-Cookie: ISD_AB_COOKIE=A; Max-Age=7200; path=/; Domain=connect.secure.wellsfargo.com; Secure; httpOnly
DCID=SYzCqmrIx9mraN%2f0Jk3bd7wI+XV4OmxKqIetRzr+JJEQtWqkLMolhNXmOO9LQyXl; Domain=connect.secure.wellsfargo.com; Path=/; Expires=Sun, 29 Jan 2023 03:34:45 GMT;Httponly; Secure
_abck=26DBBA195471CB57BA8D0B22CAE37FCB~-1~YAAQvgplX07UP8WFAQAAerqJ+wkL0kw8xNJz01/dTU5WQEQ8Vfr7eJJ9kZ1WQHJoogA3CgPXy/0ju6dj7+005FYpQo2uW0bKd+gbvnddPLkZyN52uKqJzBHQJtWT4qyEGuGlfbSDoV0KMX1OU+Yf7l88HijR0Cdtb/vjYb+tY3gLgkhzdBrcqLadeCAJ4omCFtZeLW+xa8PHpOz+GsLT2YHVXyRLnYg23+bJrQmNUgiuvrkCLKEqy+xPaQy7gwyxMlKHn4joHg+wTEGD6JrUibR+Pn+LnkvImEcuhVqprp9zHEWpNLhX1alSMW8rtulYYa0o23eie73aof5PsJSx+0/QFKM5sigPD7Y7HYESTz5PLkvg/AQ2761lzJlErMG6oQ==~-1~-1~-1; Domain=.wellsfargo.com; Path=/; Expires=Mon, 29 Jan 2024 03:19:45 GMT; Max-Age=31536000; Secure
bm_sz=12DE30B55F1979C903B07883F28E411F~YAAQvgplX0/UP8WFAQAAerqJ+xK+AEyVRkjnUZ8ZbSfD8t7K3JDEbNmPY4veK0EM2hYmeQuS0mNd7pJg9ckPBWwFj7ImDjXdvTqkGxE4+dBOlC/O2RH4kriUv/LjaaztKq2vavq27Voxkp2aIk/1RXxqXD7mB2d5yS54humuf6i+TUIHoOp76opec09YDt1Qx/b4S0Xb979/UUVLhEzgLFnfXlDZodz/ScJVZDDEEpx/BeIPXelTWUJQY+h4xHoPNCX+PR70dMUuctmrMZNOEW82g9gAQlMXtFWLd6FaeKG67Tn2U75X~3682357~3621699; Domain=.wellsfargo.com; Path=/; Expires=Sun, 29 Jan 2023 07:19:45 GMT; Max-Age=14400
Strict-Transport-Security: max-age=31536000 ; includeSubDomains
connect.secure.wellsfargo.com/AIDO/vyHb?d=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&cid=15%2C8&si=4&e=https%3A%2F%2Fconnect.secure.wellsfargo.com&t=jsonp&__tp=login&c=lawigr_kbuauxo_m&eu=https%3A%2F%2Fconnect.secure.wellsfargo.com%2Fauth%2Flogin%2Fpresent
200 OK 141 B URL HTTP/1.1 connect.secure.wellsfargo.com/AIDO/vyHb?d=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&cid=15%2C8&si=4&e=https%3A%2F%2Fconnect.secure.wellsfargo.com&t=jsonp&__tp=login&c=lawigr_kbuauxo_m&eu=https%3A%2F%2Fconnect.secure.wellsfargo.com%2Fauth%2Flogin%2Fpresent
IP
ASN #20940 Akamai International B.V.
File type ASCII text, with no line terminators
Hash 298116ef31918c640958e07df69b9220
01b2572bf26573639fcee3b305579688b293f285
a830d0edb2a0425d62b04c2f2833ad08a47735bc655cab5b29b27d3b522639fb
GET /AIDO/vyHb?d=JTVCJTdCJTIyaWQlMjIlM0ElMjIxNSUyMiUyQyUyMmRhdGElMjIlM0ElN0IlMjJyZWYlMjIlM0ElMjJodHRwcyUzQSUyRiUyRmNvbm5lY3Quc2VjdXJlLndlbGxzZmFyZ28uY29tJTJGYXV0aCUyRmxvZ2luJTJGcHJlc2VudCUzRm9yaWdpbiUzRGNvYiUyNkxPQiUzRENPTlMlMjIlN0QlN0QlMkMlN0IlMjJpZCUyMiUzQSUyMjglMjIlMkMlMjJkYXRhJTIyJTNBJTdCJTIyY2lkJTIyJTNBJTIyOCUyMiUyQyUyMnUlMjIlM0ElMjJodHRwcyUzQSUyRiUyRmNvbm5lY3Quc2VjdXJlLndlbGxzZmFyZ28uY29tJTJGYXV0aCUyRmxvZ2luJTJGcHJlc2VudCUzRm9yaWdpbiUzRGNvYiUyNkxPQiUzRENPTlMlMjIlMkMlMjJyJTIyJTNBJTIyaHR0cHMlM0ElMkYlMkZjb25uZWN0LnNlY3VyZS53ZWxsc2ZhcmdvLmNvbSUyRmF1dGglMkZsb2dpbiUyRnByZXNlbnQlM0ZvcmlnaW4lM0Rjb2IlMjZMT0IlM0RDT05TJTIyJTJDJTIycGlkJTIyJTNBNDQ3OTI0NzcwJTJDJTIyZmMlMjIlM0ExJTJDJTIyY251bSUyMiUzQTElMkMlMjJ0cyUyMiUzQTE2NTYzMjkyMDYwNjAlMkMlMjJ0JTIyJTNBJTdCJTIydCUyMiUzQSUyMmxvZ2luJTIyJTdEJTJDJTIycmFuZCUyMiUzQTQ3Nzg4JTdEJTdEJTVE&cid=15%2C8&si=4&e=https%3A%2F%2Fconnect.secure.wellsfargo.com&t=jsonp&__tp=login&c=lawigr_kbuauxo_m&eu=https%3A%2F%2Fconnect.secure.wellsfargo.com%2Fauth%2Flogin%2Fpresent HTTP/1.1
Host: connect.secure.wellsfargo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bgitopazdowntown.ddireal.vn/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: text/javascript
Content-Length: 141
max-age: 0
Expires: -1
X-XSS-Protection: 1; mode=block
Cache-Control: no-cache, no-store, must-revalidate
Pragma: no-cache
PICS-Label: (PICS-1.1 "http://www.icra.org/pics/vocabularyv03/" l r (n 0 s 0 v 0 l 0 oa 0 ob 0 oc 0 od 0 oe 0 of 0 og 0 oh 0 c 0) "http://www.icra.org/ratingsv02.html" l r (nz 0 vz 0 lz 0 oz 0 cz 0) "http://www.rsac.org/ratingsv01.html" l r (n 0 s 0 v 0 l 0))
P3P: CP="NOI ADM DEV PSAi COM NAV OUR OTR STP IND DEM"
Vary: Accept-Encoding
Date: Sun, 29 Jan 2023 03:19:45 GMT
Connection: keep-alive
Set-Cookie: ISD_AB_COOKIE=A; Max-Age=7200; path=/; Domain=connect.secure.wellsfargo.com; Secure; httpOnly
DCID=Q8+Ru6%2f5EmIu+bvwnCFt6fAB3eSiAJur+wKoDjz0p0GWCrG+i2MMXNN3z5EnJnhH; Domain=connect.secure.wellsfargo.com; Path=/; Expires=Sun, 29 Jan 2023 03:34:45 GMT;Httponly; Secure
_abck=B7446134924ABACB2070FCFAE0A5961B~-1~YAAQvgplX1DUP8WFAQAAp7qJ+wmqBxbS9f4kwnlchpkZJUd+l96Osv//EQ2wZauE4vCsAdTbtoAsO/AM9Tr1ykb99ClqmgUh4CjDUi8Aggz07tOWQjkKOv8IAUV0Hq/TI2hNi+26MOd+aku3W5aCpxAOlAtbkbrhzD/U7k1UYcwAsBHWl1hiu6lSjszuzT0gFB5JAGeXLByo4mqDDiHZyFoqUImiiQX1fWw9PTAuxlgjgNv4aOE1Oje/doV1fSkqEvaNc5HyMAnfIroAWyS2HWYc3d86Fw38DMIbt47Nqz2JxwzcsEHFp1sYMGRItEsaVik+x21pVwtNIeKe+Ypq0PkyRpPtCJ6L7qJrPL9p7eVeo/Ljw3vtK56C/V1JjzHM5A==~-1~-1~-1; Domain=.wellsfargo.com; Path=/; Expires=Mon, 29 Jan 2024 03:19:45 GMT; Max-Age=31536000; Secure
bm_sz=3852AA21FED5AE264D4A466DE62616DA~YAAQvgplX1HUP8WFAQAAp7qJ+xLuFhIZckUXkVegau6ae1Gbzh1Q+m5jGkHdMftIlIyTvpr/88QwRAx7br6IkYr9bdb7TefJpaa2ttHy/1SmkQ3Fhfqng8DT9mg9yuTpwnZLGc7+VAzo4jWgpyeR8SILRW67SpJFkhDaHipIFKisYDqm+P3hCKUNIHtv0AiqPyLIXpRMhPELYsyM3JJX/rSbjZckxJKlFS0lH57yCeqste4Mi48cDW1qCP7YySFHq8PGpOyQb4WXgqvCx5Lw79FyyFm+w8ONK5LsmvmdgGNB7EQk0B8u~3682357~3621699; Domain=.wellsfargo.com; Path=/; Expires=Sun, 29 Jan 2023 07:19:45 GMT; Max-Age=14400
Strict-Transport-Security: max-age=31536000 ; includeSubDomains
connect.secure.wellsfargo.com/AIDO/vyHb?d=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%3D&cid=8&si=4&e=https%3A%2F%2Fconnect.secure.wellsfargo.com&t=jsonp&__tp=login&c=esdkbhzwxugbfrfa&eu=https%3A%2F%2Fconnect.secure.wellsfargo.com%2Fauth%2Flogin%2Fpresent
200 OK 131 B URL HTTP/1.1 connect.secure.wellsfargo.com/AIDO/vyHb?d=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%3D&cid=8&si=4&e=https%3A%2F%2Fconnect.secure.wellsfargo.com&t=jsonp&__tp=login&c=esdkbhzwxugbfrfa&eu=https%3A%2F%2Fconnect.secure.wellsfargo.com%2Fauth%2Flogin%2Fpresent
IP
ASN #20940 Akamai International B.V.
File type ASCII text, with no line terminators
Hash 9016e364876d628a986536df14539739
384ee97192494d2adc3f12e5fe906f772da9d89d
db341d5481f4f4821d615925d8832d4670c0be64ec82a973bbbb692b8ae1b97f
GET /AIDO/vyHb?d=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%3D&cid=8&si=4&e=https%3A%2F%2Fconnect.secure.wellsfargo.com&t=jsonp&__tp=login&c=esdkbhzwxugbfrfa&eu=https%3A%2F%2Fconnect.secure.wellsfargo.com%2Fauth%2Flogin%2Fpresent HTTP/1.1
Host: connect.secure.wellsfargo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bgitopazdowntown.ddireal.vn/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: text/javascript
Content-Length: 131
max-age: 0
Expires: -1
X-XSS-Protection: 1; mode=block
Cache-Control: no-cache, no-store, must-revalidate
Pragma: no-cache
PICS-Label: (PICS-1.1 "http://www.icra.org/pics/vocabularyv03/" l r (n 0 s 0 v 0 l 0 oa 0 ob 0 oc 0 od 0 oe 0 of 0 og 0 oh 0 c 0) "http://www.icra.org/ratingsv02.html" l r (nz 0 vz 0 lz 0 oz 0 cz 0) "http://www.rsac.org/ratingsv01.html" l r (n 0 s 0 v 0 l 0))
P3P: CP="NOI ADM DEV PSAi COM NAV OUR OTR STP IND DEM"
Vary: Accept-Encoding
Date: Sun, 29 Jan 2023 03:19:45 GMT
Connection: keep-alive
Set-Cookie: ISD_AB_COOKIE=A; Max-Age=7200; path=/; Domain=connect.secure.wellsfargo.com; Secure; httpOnly
DCID=HfzV0wZr2lCL4RykL7UX9gZ8v2iO9zanuDbUGLoeVSo%3d; Domain=connect.secure.wellsfargo.com; Path=/; Expires=Sun, 29 Jan 2023 03:34:45 GMT;Httponly; Secure
_abck=802C3683A58F21BD4D07BD5A527496F8~-1~YAAQvgplX1LUP8WFAQAAs7qJ+wmUu3EcFXOb52tUHth4Zdw/o89BlkK9sG3xkXuQsuXGJw2+XqaC2MAv7+uEDgTvGiGZWg00JbBl9GeUR756wpR/IW1r+ip2z6v67+12V0FZmNbjgAmFJ0I0SSpgvwgl34fUtHB1UkcXCrmStmU1TMWQ1RpKETO9mgpGYfDtT2pbHDkv/wD1Fk6t8LPjuVugNmWwWMd2lobdmI2rIAsFhcqOQyJkJQP9owD8yiIK+sK3xd5vpOx8WsCgBnBNjMRhAuouaSqEM67aC25T8iWZNVIHBNoGgCLiBzDFovZUThLWOs70FA5E4fkIqvcFTh878wIBJhUVrWnmcGeCrz82XsOy9QWzJ1sJk93zetGbgg==~-1~-1~-1; Domain=.wellsfargo.com; Path=/; Expires=Mon, 29 Jan 2024 03:19:45 GMT; Max-Age=31536000; Secure
bm_sz=158EC8E33927C639B7D03FA17D9B705D~YAAQvgplX1PUP8WFAQAAs7qJ+xK0H4TLqSg3lDqxw20OHNLYHFJCobp2nxH7fFcCZEELKcCa2XoI5UC39Tob2Qc0RgKfBwxo+Tg9B06hgtYBHq2padzty5PM3F2Isvg9Wgvl6Kb77lhMfgLiaH5KKOTpUhFZZeWF1yXDnnYlJmBvLmqSVO/0r00x1RodaY5EQuQd8EGdgcFpZ9jKEmAYR63UVemyDmQZYQhltDNiAn5qQ/Q/lKWm4sfb1dB2RyGP/9UWWldzGUcuTTZmHoHGguy740ub6s36GdJ9BjAlpPpZMKL5N0iT~3682357~3621699; Domain=.wellsfargo.com; Path=/; Expires=Sun, 29 Jan 2023 07:19:45 GMT; Max-Age=14400
Strict-Transport-Security: max-age=31536000 ; includeSubDomains
connect.secure.wellsfargo.com/AIDO/vyHb?d=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%3D&cid=8&si=4&e=https%3A%2F%2Fconnect.secure.wellsfargo.com&t=jsonp&__tp=login&c=zpuevxekebkkqzyz&eu=https%3A%2F%2Fconnect.secure.wellsfargo.com%2Fauth%2Flogin%2Fpresent
200 OK 131 B URL HTTP/1.1 connect.secure.wellsfargo.com/AIDO/vyHb?d=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%3D&cid=8&si=4&e=https%3A%2F%2Fconnect.secure.wellsfargo.com&t=jsonp&__tp=login&c=zpuevxekebkkqzyz&eu=https%3A%2F%2Fconnect.secure.wellsfargo.com%2Fauth%2Flogin%2Fpresent
IP
ASN #20940 Akamai International B.V.
File type ASCII text, with no line terminators
Hash 3fb642baca4beafb486dba7e8837e68c
9ebcecc9fb7bf6a20ca549c9b28814d921f46480
05413f45f5993fb5a248861440bb0ef62b51aabeb798c6bc82a33f3e8659b866
GET /AIDO/vyHb?d=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%3D&cid=8&si=4&e=https%3A%2F%2Fconnect.secure.wellsfargo.com&t=jsonp&__tp=login&c=zpuevxekebkkqzyz&eu=https%3A%2F%2Fconnect.secure.wellsfargo.com%2Fauth%2Flogin%2Fpresent HTTP/1.1
Host: connect.secure.wellsfargo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bgitopazdowntown.ddireal.vn/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: text/javascript
Content-Length: 131
max-age: 0
Expires: -1
X-XSS-Protection: 1; mode=block
Cache-Control: no-cache, no-store, must-revalidate
Pragma: no-cache
PICS-Label: (PICS-1.1 "http://www.icra.org/pics/vocabularyv03/" l r (n 0 s 0 v 0 l 0 oa 0 ob 0 oc 0 od 0 oe 0 of 0 og 0 oh 0 c 0) "http://www.icra.org/ratingsv02.html" l r (nz 0 vz 0 lz 0 oz 0 cz 0) "http://www.rsac.org/ratingsv01.html" l r (n 0 s 0 v 0 l 0))
P3P: CP="NOI ADM DEV PSAi COM NAV OUR OTR STP IND DEM"
Vary: Accept-Encoding
Date: Sun, 29 Jan 2023 03:19:45 GMT
Connection: keep-alive
Set-Cookie: ISD_AB_COOKIE=A; Max-Age=7200; path=/; Domain=connect.secure.wellsfargo.com; Secure; httpOnly
DCID=Z7VHpg0FBL2kl5TZZx2CNOMKV+LYyB7KxvozpqPbJqw%3d; Domain=connect.secure.wellsfargo.com; Path=/; Expires=Sun, 29 Jan 2023 03:34:45 GMT;Httponly; Secure
_abck=9195BA0895D921EF76DE6EDC5E4C4214~-1~YAAQvgplX1TUP8WFAQAA1bqJ+wkqNIHDDb3qqUJe55RqXfEyFpbUIn8Sry+wJNDy0z7a+KqaV77HNnlQiL2Klr5zmNSqP2p4WkkZ/glDsG8H6wS2h9wWFAVkHVcWWADpitim6PFRZRRO6mQ2G1RexMa2TZnaWtWTRTPb38ezhqm84EQISkY5deVHTNAl/iwpAqy0E1XvvaVQ0pYhHlIOrkgjizNUQ23m5ogPZiDWC8oczWgprKHy2xCP/VNzxbQFUvpBwc8k7gd1Jm0eD38RML5kyh80J0odQNWsYkDH9q8T/1Wbd2R5uwT4uYkktldbTc6YigbIhgt2hUYFpyLMj/1F6bNu2H9nxn2RmVUK78zRElhe17zhQffmb/zMJt5B5g==~-1~-1~-1; Domain=.wellsfargo.com; Path=/; Expires=Mon, 29 Jan 2024 03:19:45 GMT; Max-Age=31536000; Secure
bm_sz=8977FB1D201C354EFE361C8BAEC658E0~YAAQvgplX1XUP8WFAQAA1bqJ+xLPVWruVwcLdzj3txhsOIf483g4jNC6U2uJp0OM81oHE1s/CQzaNDZzvlCt1xN5sT0yEFLo2dW1hEZrJAUJpuPvEI+NfDeFFjQuDX+4jFJAgMhCq1JWR/AJeO/9fiaQy4IOK2ZGZXHjUGQZ31qe3IMorQOzmLACk95pgoY4TLZWaDR4hADzldjHckKZs6lCPkNlk7fFlbwhaiesfq5vOU14cRdzWZOR7lse6PulIJw/8cZiBtg9cNGf6tvZhlXiD0hkEBs3yFxDEUbMgzwmGWncgTf7~3682357~3621699; Domain=.wellsfargo.com; Path=/; Expires=Sun, 29 Jan 2023 07:19:45 GMT; Max-Age=14400
Strict-Transport-Security: max-age=31536000 ; includeSubDomains
connect.secure.wellsfargo.com/AIDO/try.js
200 OK 39 kB URL HTTP/1.1 connect.secure.wellsfargo.com/AIDO/try.js
IP
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (65536), with no line terminators
Hash ca786b9717bfcb3a42a8567ee599b77d
3a0b21ad190450407ed69e3148d7ff85d934b414
3ff0e4afb8063f9cba39f839d5ff1aefee9ebd20660473fba33301e89c2e16af
GET /AIDO/try.js HTTP/1.1
Host: connect.secure.wellsfargo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bgitopazdowntown.ddireal.vn/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/x-javascript
Content-Length: 39277
max-age: 0
Expires: -1
X-XSS-Protection: 1; mode=block
Cache-Control: no-cache, no-store, must-revalidate
Pragma: no-cache
PICS-Label: (PICS-1.1 "http://www.icra.org/pics/vocabularyv03/" l r (n 0 s 0 v 0 l 0 oa 0 ob 0 oc 0 od 0 oe 0 of 0 og 0 oh 0 c 0) "http://www.icra.org/ratingsv02.html" l r (nz 0 vz 0 lz 0 oz 0 cz 0) "http://www.rsac.org/ratingsv01.html" l r (n 0 s 0 v 0 l 0))
P3P: CP="NOI ADM DEV PSAi COM NAV OUR OTR STP IND DEM"
Vary: Accept-Encoding
Content-Encoding: gzip
Date: Sun, 29 Jan 2023 03:19:45 GMT
Connection: keep-alive
Set-Cookie: ISD_AB_COOKIE=A; Max-Age=7200; path=/; Domain=connect.secure.wellsfargo.com; Secure; httpOnly
DCID=VjjGW5ZlTqeUI5lq69cKwFhZAZ4vxQhrM63sdVadsv8%3d; Domain=connect.secure.wellsfargo.com; Path=/; Expires=Sun, 29 Jan 2023 03:34:45 GMT;Httponly; Secure
Strict-Transport-Security: max-age=31536000 ; includeSubDomains
www10.wellsfargomedia.com/auth/static/images/COB-BOB-IRT-enroll_balloons.jpg
200 OK 625 kB URL HTTP/2 www10.wellsfargomedia.com/auth/static/images/COB-BOB-IRT-enroll_balloons.jpg
IP
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], progressive, precision 8, 2400x1600, components 3\012- data
Size 625 kB (625433 bytes)
Hash a7beec55acf059f8f2e69b35fd93a671
e3c3d2cc20962e77be670f7f7e9f08d855f9feba
b8325d272c72a041414d9fb349e9d4bca5e7fc8ad66f47a719e491960afa5683
GET /auth/static/images/COB-BOB-IRT-enroll_balloons.jpg HTTP/1.1
Host: www10.wellsfargomedia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bgitopazdowntown.ddireal.vn/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/jpeg
content-length: 625433
last-modified: Tue, 24 Jan 2023 19:34:25 GMT
etag: "63d032c1-98b19"
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
strict-transport-security: max-age=31536000; includeSubdomains;
content-security-policy: default-src 'self'; script-src 'self'; object-src 'self'; frame-ancestors 'self'; report-uri https://ort.wellsfargo.com/reporting/csp
access-control-allow-methods: POST
allow: GET, POST, OPTIONS
accept-ranges: bytes
cache-control: max-age=10368000
expires: Mon, 29 May 2023 03:19:45 GMT
date: Sun, 29 Jan 2023 03:19:45 GMT
X-Firefox-Spdy: h2
connect.secure.wellsfargo.com/AIDO/vyHb?d=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%3D&cid=8&si=4&e=https%3A%2F%2Fconnect.secure.wellsfargo.com&t=jsonp&__tp=login&c=hsxdfhsfonvcksrz&eu=https%3A%2F%2Fconnect.secure.wellsfargo.com%2Fauth%2Flogin%2Fpresent
200 OK 131 B URL HTTP/1.1 connect.secure.wellsfargo.com/AIDO/vyHb?d=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%3D&cid=8&si=4&e=https%3A%2F%2Fconnect.secure.wellsfargo.com&t=jsonp&__tp=login&c=hsxdfhsfonvcksrz&eu=https%3A%2F%2Fconnect.secure.wellsfargo.com%2Fauth%2Flogin%2Fpresent
IP
ASN #20940 Akamai International B.V.
File type ASCII text, with no line terminators
Hash 4c084420e659f4976b726b2eb521b529
5eca194e2f0fde85c8a6c26a93cbb8db1f8b4468
7da443f39799d3ff07e43890054b7888b5f3c2d91b68b9e23a4cc4fa5e037701
GET /AIDO/vyHb?d=JTVCJTdCJTIyaWQlMjIlM0ElMjI4JTIyJTJDJTIyZGF0YSUyMiUzQSU3QiUyMmNpZCUyMiUzQSUyMjglMjIlMkMlMjJ1JTIyJTNBJTIyaHR0cHMlM0ElMkYlMkZjb25uZWN0LnNlY3VyZS53ZWxsc2ZhcmdvLmNvbSUyRmF1dGglMkZsb2dpbiUyRnByZXNlbnQlM0ZvcmlnaW4lM0Rjb2IlMjZMT0IlM0RDT05TJTIyJTJDJTIyciUyMiUzQSUyMmh0dHBzJTNBJTJGJTJGY29ubmVjdC5zZWN1cmUud2VsbHNmYXJnby5jb20lMkZhdXRoJTJGbG9naW4lMkZwcmVzZW50JTNGb3JpZ2luJTNEY29iJTI2TE9CJTNEQ09OUyUyMiUyQyUyMnBpZCUyMiUzQTQ0NzkyNDc3MCUyQyUyMmZjJTIyJTNBMCUyQyUyMmNudW0lMjIlM0E1JTJDJTIydHMlMjIlM0ExNjU2MzI5MzgwNjcwJTJDJTIydCUyMiUzQSU3QiUyMnQlMjIlM0ElMjJsb2dpbiUyMiU3RCUyQyUyMnJhbmQlMjIlM0E5NTUzODklN0QlN0QlNUQ%3D&cid=8&si=4&e=https%3A%2F%2Fconnect.secure.wellsfargo.com&t=jsonp&__tp=login&c=hsxdfhsfonvcksrz&eu=https%3A%2F%2Fconnect.secure.wellsfargo.com%2Fauth%2Flogin%2Fpresent HTTP/1.1
Host: connect.secure.wellsfargo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bgitopazdowntown.ddireal.vn/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: text/javascript
Content-Length: 131
max-age: 0
Expires: -1
X-XSS-Protection: 1; mode=block
Cache-Control: no-cache, no-store, must-revalidate
Pragma: no-cache
PICS-Label: (PICS-1.1 "http://www.icra.org/pics/vocabularyv03/" l r (n 0 s 0 v 0 l 0 oa 0 ob 0 oc 0 od 0 oe 0 of 0 og 0 oh 0 c 0) "http://www.icra.org/ratingsv02.html" l r (nz 0 vz 0 lz 0 oz 0 cz 0) "http://www.rsac.org/ratingsv01.html" l r (n 0 s 0 v 0 l 0))
P3P: CP="NOI ADM DEV PSAi COM NAV OUR OTR STP IND DEM"
Vary: Accept-Encoding
Date: Sun, 29 Jan 2023 03:19:45 GMT
Connection: keep-alive
Set-Cookie: ISD_AB_COOKIE=A; Max-Age=7200; path=/; Domain=connect.secure.wellsfargo.com; Secure; httpOnly
DCID=2PYaVHz6tkkPU07MRqc+lHLnKvZOde2cn+6xPlnQWx+yQnadnP08xBtHuRBNd1J4; Domain=connect.secure.wellsfargo.com; Path=/; Expires=Sun, 29 Jan 2023 03:34:45 GMT;Httponly; Secure
_abck=0290FB28EC570851A88102C2A8364222~-1~YAAQvgplX1bUP8WFAQAASbuJ+wm69OrpT7joRzh9/snBtqRaRxPQTEUQ536NX4IhebARMXKLufSXON9km2f/5y2nHhS/joTkDqhXV7sWUsF2Uho1Mi64yXzRnRbU4Y5kjlQ06reSrpAT0fGZOUw4JSNZZ9MKDFcWapvdJ0L/Hn7IcKO0i3fGu5ho11ahwh2Y8KX4yBMz8NiGAUAC4NN8KkRRhQ/g7lpFNuOI1arTVnFbBzVifkenpjpsJr9zLPceaMv2wxKylr3yf5kRpWKSI1x5VJB3W70zTUOKUWW8cLho8dyq4MZjYgSRXJ0JKd+E5xOA8gAT5g6+yM/ikpW8/Xv7d8rQcEq+Jh4H+9SVPgNW63IxSLX8f8+4TLW73y9KZQ==~-1~-1~-1; Domain=.wellsfargo.com; Path=/; Expires=Mon, 29 Jan 2024 03:19:45 GMT; Max-Age=31536000; Secure
bm_sz=8BFEAB08C7D886872F06AC7B18B27BA2~YAAQvgplX1fUP8WFAQAASbuJ+xI6Dj+qXIzKM+mP/CWpT9n5e2I5Pez4E+IWyIX1dlSC3Yp+YkzNWESAs6ymYmj03C7Sz3aMJzrkL2l21Wd8OZl2l4r8FCk3Uuln5IaHypp9PTm3z6vPqx/LB1Hfha6n6dObtftjHGxdsfET5PAXwhwj2MaL40OM6ozuCvGGBFnTTaDvUKWLIuZWMZzSdZ0/vBQckUc8PYz4i15pEG1/r3UqvMJyrSbEvX1eDPd7J8UG5pv+9/KIpsV9U/CFQO7bs2dWCEJqUNlmw4e6GKKkKlWVyJJk~3682357~3621699; Domain=.wellsfargo.com; Path=/; Expires=Sun, 29 Jan 2023 07:19:45 GMT; Max-Age=14400
Strict-Transport-Security: max-age=31536000 ; includeSubDomains
connect.secure.wellsfargo.com/AIDO/vyHb?d=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%3D&cid=8&si=4&e=https%3A%2F%2Fconnect.secure.wellsfargo.com&t=jsonp&__tp=login&c=stdgds_icz__zvhk&eu=https%3A%2F%2Fconnect.secure.wellsfargo.com%2Fauth%2Flogin%2Fpresent
200 OK 131 B URL HTTP/1.1 connect.secure.wellsfargo.com/AIDO/vyHb?d=JTVCJTdCJTIyaWQlMjIlM0ElMjI4JTIyJTJDJTIyZGF0YSUyMiUzQSU3QiUyMmNpZCUyMiUzQSUyMjglMjIlMkMlMjJ1JTIyJTNBJTIyaHR0cHMlM0ElMkYlMkZjb25uZWN0LnNlY3VyZS53ZWxsc2ZhcmdvLmNvbSUyRmF1dGglMkZsb2dpbiUyRnByZXNlbnQlM0ZvcmlnaW4lM0Rjb2IlMjZMT0IlM0RDT05TJTIyJTJDJTIyciUyMiUzQSUyMmh0dHBzJTNBJTJGJTJGY29ubmVjdC5zZWN1cmUud2VsbHNmYXJnby5jb20lMkZhdXRoJTJGbG9naW4lMkZwcmVzZW50JTNGb3JpZ2luJTNEY29iJTI2TE9CJTNEQ09OUyUyMiUyQyUyMnBpZCUyMiUzQTQ0NzkyNDc3MCUyQyUyMmZjJTIyJTNBMSUyQyUyMmNudW0lMjIlM0E0JTJDJTIydHMlMjIlM0ExNjU2MzI5Mzc3ODc4JTJDJTIydCUyMiUzQSU3QiUyMnQlMjIlM0ElMjJsb2dpbiUyMiU3RCUyQyUyMnJhbmQlMjIlM0EzNTM4MjUlN0QlN0QlNUQ%3D&cid=8&si=4&e=https%3A%2F%2Fconnect.secure.wellsfargo.com&t=jsonp&__tp=login&c=stdgds_icz__zvhk&eu=https%3A%2F%2Fconnect.secure.wellsfargo.com%2Fauth%2Flogin%2Fpresent
IP
ASN #20940 Akamai International B.V.
File type ASCII text, with no line terminators
Hash 709a15ebc1d091c85bb23e4c8a3591b0
9379a41b5ac7c8a18e0f5c92041d0be02112e5ee
20b90132f5e2d51fe8edeaff395c1f75127775d81cf65b33a863eb2ed95edf51
GET /AIDO/vyHb?d=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%3D&cid=8&si=4&e=https%3A%2F%2Fconnect.secure.wellsfargo.com&t=jsonp&__tp=login&c=stdgds_icz__zvhk&eu=https%3A%2F%2Fconnect.secure.wellsfargo.com%2Fauth%2Flogin%2Fpresent HTTP/1.1
Host: connect.secure.wellsfargo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bgitopazdowntown.ddireal.vn/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: text/javascript
Content-Length: 131
max-age: 0
Expires: -1
X-XSS-Protection: 1; mode=block
Cache-Control: no-cache, no-store, must-revalidate
Pragma: no-cache
PICS-Label: (PICS-1.1 "http://www.icra.org/pics/vocabularyv03/" l r (n 0 s 0 v 0 l 0 oa 0 ob 0 oc 0 od 0 oe 0 of 0 og 0 oh 0 c 0) "http://www.icra.org/ratingsv02.html" l r (nz 0 vz 0 lz 0 oz 0 cz 0) "http://www.rsac.org/ratingsv01.html" l r (n 0 s 0 v 0 l 0))
P3P: CP="NOI ADM DEV PSAi COM NAV OUR OTR STP IND DEM"
Vary: Accept-Encoding
Date: Sun, 29 Jan 2023 03:19:45 GMT
Connection: keep-alive
Set-Cookie: ISD_AB_COOKIE=B; Max-Age=7200; path=/; Domain=connect.secure.wellsfargo.com; Secure; httpOnly
DCID=%2fCXbL%2fsgXihwOnADtUJWlacSUd03SMTwqajaNWfJ8hY%3d; Domain=connect.secure.wellsfargo.com; Path=/; Expires=Sun, 29 Jan 2023 03:34:45 GMT;Httponly; Secure
_abck=BE573CB527F3D25FA6EBEE1AB053A7E6~-1~YAAQvgplX1jUP8WFAQAAVLuJ+wnmlsxMumqzSFtOx20dWq/dO1kv30fwm+fLVPAeDEXxmt3Yfi3nfgzCSSD6chfdyxjnTsytBSZp6aEFmA3IF3Bodz3vSLWnlEwZbCHJJBPn8gyTtghog9pFQjmGAI9wlbP0VLmVHuTC/9aKvAcxcdfDFB3Hy3TByivwNVGn6oWO+dHrj9XJqE2FZobnNwJShrH0wDTMS3wzQH8WizCF4nTSlkLNq8az4ADWEHaYdtQ+ZIW+6SoA6eYnH7c08vCFC3EJbUR4U4zZaI/lXisE5EyoqRCaTMb0cUVQVNWm0fbsZ6/esg/hrIjsEdyG9t4ZNN2Cq8SKbkAElo5GIL46JW5M8XyBEqPjt7WDHpK67A==~-1~-1~-1; Domain=.wellsfargo.com; Path=/; Expires=Mon, 29 Jan 2024 03:19:45 GMT; Max-Age=31536000; Secure
bm_sz=A0B8AF1C4EE1E12F3904321C1E63F25C~YAAQvgplX1nUP8WFAQAAVLuJ+xIleWa+tcpsSdC/l6UUeo4sAh9JyaZzstqvIBEcjc9IWw1WZuFVy8HwKapUbsaGDjbglhEhyaFTHSjSynVaNCNbCm//HgIXAiyvaHJr0XbAEPbGSviN3ytmp6PKDoqWFcWDWe9/z/WNYaaZb6qm4k6QUzLPLelG/UWzP/6JWduQnMMtiaZfsmXpl7K33e082lzP7t0xM2NyrnSLao2SP+QAxf55zud9a5JlUfPOQw7jd6+EekxGErMhjrigG90fxJu2oYWZW5YTOtLT/loPKyPPNy+D~3682357~3621699; Domain=.wellsfargo.com; Path=/; Expires=Sun, 29 Jan 2023 07:19:45 GMT; Max-Age=14400
Strict-Transport-Security: max-age=31536000 ; includeSubDomains
connect.secure.wellsfargo.com/AIDO/vyHb?d=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%3D&cid=8&si=4&e=https%3A%2F%2Fconnect.secure.wellsfargo.com&t=jsonp&__tp=login&c=hronhtcntiapovlh&eu=https%3A%2F%2Fconnect.secure.wellsfargo.com%2Fauth%2Flogin%2Fpresent
200 OK 131 B URL HTTP/1.1 connect.secure.wellsfargo.com/AIDO/vyHb?d=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%3D&cid=8&si=4&e=https%3A%2F%2Fconnect.secure.wellsfargo.com&t=jsonp&__tp=login&c=hronhtcntiapovlh&eu=https%3A%2F%2Fconnect.secure.wellsfargo.com%2Fauth%2Flogin%2Fpresent
IP
ASN #20940 Akamai International B.V.
File type ASCII text, with no line terminators
Hash 8ad709040df77d1b3925d20c932f68d0
d9683a5555006e1b8e5f80cef809be86fb22a3b0
bd320a1a5b4aa6e2026cb92ddd25306bbb52efcb74837ad3e9958fec2643a5c5
GET /AIDO/vyHb?d=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%3D&cid=8&si=4&e=https%3A%2F%2Fconnect.secure.wellsfargo.com&t=jsonp&__tp=login&c=hronhtcntiapovlh&eu=https%3A%2F%2Fconnect.secure.wellsfargo.com%2Fauth%2Flogin%2Fpresent HTTP/1.1
Host: connect.secure.wellsfargo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bgitopazdowntown.ddireal.vn/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: text/javascript
Content-Length: 131
max-age: 0
Expires: -1
X-XSS-Protection: 1; mode=block
Cache-Control: no-cache, no-store, must-revalidate
Pragma: no-cache
PICS-Label: (PICS-1.1 "http://www.icra.org/pics/vocabularyv03/" l r (n 0 s 0 v 0 l 0 oa 0 ob 0 oc 0 od 0 oe 0 of 0 og 0 oh 0 c 0) "http://www.icra.org/ratingsv02.html" l r (nz 0 vz 0 lz 0 oz 0 cz 0) "http://www.rsac.org/ratingsv01.html" l r (n 0 s 0 v 0 l 0))
P3P: CP="NOI ADM DEV PSAi COM NAV OUR OTR STP IND DEM"
Vary: Accept-Encoding
Date: Sun, 29 Jan 2023 03:19:45 GMT
Connection: keep-alive
Set-Cookie: ISD_AB_COOKIE=A; Max-Age=7200; path=/; Domain=connect.secure.wellsfargo.com; Secure; httpOnly
DCID=eDXG7HPjgyfTJb2qdpz1bPP6Nndp3XMExEUOlakKQD4%3d; Domain=connect.secure.wellsfargo.com; Path=/; Expires=Sun, 29 Jan 2023 03:34:45 GMT;Httponly; Secure
_abck=7DF1F8AA52F83338B11EA60841E16B5F~-1~YAAQvgplX1rUP8WFAQAAkruJ+wlHn21gt9mYH2NT1xKD00rGqqt8qnWcZ3jH3aN9TBvXclazBUTVLkxNlfygduaYyM8GXouXho7lA2tsgRktTXso165YKkRUkrbj1gNxVyLDWOVBV1vnprUGxX0XYnHQy4Q63/CPFONGGO2qX1FXYsqFpYpdQMeW74iOXCFKx4xohyOGfKTloqxyNGOWJX/fJARoCTVTpftfxoAnWkFtAAKTc30qs5ZqhT9hKA43kwSDEKsenIllDTbkonbfC5twIm7QOjppzhpSJHARjdYvRG9rm+2EmxN2+gcBZTSF2gw9AFMJGUFXShCBSlGcW60W9mIs81MGWF+NaBvjHnX/aCihPgm7gx5O8xISb9cjEQ==~-1~-1~-1; Domain=.wellsfargo.com; Path=/; Expires=Mon, 29 Jan 2024 03:19:45 GMT; Max-Age=31536000; Secure
bm_sz=93AE7C288FDA9FDA36BC2C0A8E0F58A7~YAAQvgplX1vUP8WFAQAAkruJ+xIR26BAV5oFVZlnVZvncfon/XedfyA+rfhgDGnZ2Qf8qd1rx2njQKZxq14PwirfGrfZDgS73oJUNUNVy4gBFcatTe2aeLz08jg2bfTCenM4H/WU5+oQYVXWUhyT5SDkCCvVFjYA0OVSsTHAjuYc9EPD8nl9T7YWiBYsaYo2pSlUJRDrf5Nnyvn3xSf5tBivWNq/oWvExp39+l5EPHgsvt6mOw0hOB3pe0g4i2F+9W9J6CmK5QakyoMD/15+ylqV0wFpPSFuQ7xl7L5twn155TWkNtvP~3682357~3621699; Domain=.wellsfargo.com; Path=/; Expires=Sun, 29 Jan 2023 07:19:45 GMT; Max-Age=14400
Strict-Transport-Security: max-age=31536000 ; includeSubDomains
static.wellsfargo.com/tracking/reporting/ttms.gif?capability=LiveRamp&appId=loginapp&wfaCookie=11202206270424411143497415&error=timeout&pageId=LOGIN&pageType=BROWSER&deviceType=DESKTOP&c_t=
200 OK 43 B URL HTTP/1.1 static.wellsfargo.com/tracking/reporting/ttms.gif?capability=LiveRamp&appId=loginapp&wfaCookie=11202206270424411143497415&error=timeout&pageId=LOGIN&pageType=BROWSER&deviceType=DESKTOP&c_t=
IP
ASN #20940 Akamai International B.V.
File type GIF image data, version 89a, 1 x 1\012- data
Hash 325472601571f31e1bf00674c368d335
2daeaa8b5f19f0bc209d976c02bd6acb51b00b0a
b1442e85b03bdcaf66dc58c7abb98745dd2687d86350be9a298a1d9382ac849b
GET /tracking/reporting/ttms.gif?capability=LiveRamp&appId=loginapp&wfaCookie=11202206270424411143497415&error=timeout&pageId=LOGIN&pageType=BROWSER&deviceType=DESKTOP&c_t= HTTP/1.1
Host: static.wellsfargo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bgitopazdowntown.ddireal.vn/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: image/gif
Content-Length: 43
Last-Modified: Thu, 16 Jan 2020 21:55:22 GMT
ETag: "5e20dbca-2b"
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Access-Control-Allow-Methods: POST
Allow: GET, POST, OPTIONS
$host: wellsfargo.com
Cache-Control: max-age=3600
Accept-Ranges: bytes
Date: Sun, 29 Jan 2023 03:19:45 GMT
Connection: keep-alive
Strict-Transport-Security: max-age=31536000 ; includeSubDomains
Set-Cookie: DCID=UeMSSDIpIxSsgUsZ3NW%2fZQ%3d%3d; Domain=static.wellsfargo.com; Path=/; Expires=Thu, 01 Jan 1970 00:30:00 GMT;Httponly; Secure
connect.secure.wellsfargo.com/AIDO/vyHb?d=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%3D%3D&cid=8&si=4&e=https%3A%2F%2Fconnect.secure.wellsfargo.com&t=jsonp&__tp=login&c=lqrrtixbvptwrupv&eu=https%3A%2F%2Fconnect.secure.wellsfargo.com%2Fauth%2Flogin%2Fpresent
200 OK 131 B URL HTTP/1.1 connect.secure.wellsfargo.com/AIDO/vyHb?d=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%3D%3D&cid=8&si=4&e=https%3A%2F%2Fconnect.secure.wellsfargo.com&t=jsonp&__tp=login&c=lqrrtixbvptwrupv&eu=https%3A%2F%2Fconnect.secure.wellsfargo.com%2Fauth%2Flogin%2Fpresent
IP
ASN #20940 Akamai International B.V.
File type ASCII text, with no line terminators
Hash f5fba74b923f85e25a1ea3f6a4fc49f5
fe6e99fad946990ba139029a763f9f37a16cd65d
91e4378e57724619356caa4ca5a9af2c2c668b503f7b2113b1a8eaee7254db2a
GET /AIDO/vyHb?d=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%3D%3D&cid=8&si=4&e=https%3A%2F%2Fconnect.secure.wellsfargo.com&t=jsonp&__tp=login&c=lqrrtixbvptwrupv&eu=https%3A%2F%2Fconnect.secure.wellsfargo.com%2Fauth%2Flogin%2Fpresent HTTP/1.1
Host: connect.secure.wellsfargo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bgitopazdowntown.ddireal.vn/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: text/javascript
Content-Length: 131
max-age: 0
Expires: -1
X-XSS-Protection: 1; mode=block
Cache-Control: no-cache, no-store, must-revalidate
Pragma: no-cache
PICS-Label: (PICS-1.1 "http://www.icra.org/pics/vocabularyv03/" l r (n 0 s 0 v 0 l 0 oa 0 ob 0 oc 0 od 0 oe 0 of 0 og 0 oh 0 c 0) "http://www.icra.org/ratingsv02.html" l r (nz 0 vz 0 lz 0 oz 0 cz 0) "http://www.rsac.org/ratingsv01.html" l r (n 0 s 0 v 0 l 0))
P3P: CP="NOI ADM DEV PSAi COM NAV OUR OTR STP IND DEM"
Vary: Accept-Encoding
Date: Sun, 29 Jan 2023 03:19:45 GMT
Connection: keep-alive
Set-Cookie: ISD_AB_COOKIE=A; Max-Age=7200; path=/; Domain=connect.secure.wellsfargo.com; Secure; httpOnly
DCID=W+ghWVhFcNdKGvJTcy5rIdL39OUPL4pMkCUZBmVSlvU%3d; Domain=connect.secure.wellsfargo.com; Path=/; Expires=Sun, 29 Jan 2023 03:34:45 GMT;Httponly; Secure
_abck=EE1D5B060E8BC9E51310BBDA701BC4B0~-1~YAAQvgplX1zUP8WFAQAAwbuJ+wlj7CrB7ycMcVSAW9xr+jhlmJ3KTRAt8CyABMybs0/PDL7Ov+LwpeGRQw5jM0JNsK9r3QVCEKk+GpGh03FUz2gPZLBFR1oV9V4FcTKAHEHfs7pXEa7CSoabpTBIbyN4cohTzfl62nfgHd93sZRBOCmBmGWGLWeQ60NTvruHb9F+/60w9Qc/6i2TFz1kTMQCRjFM4jWvb8fxrcDy9IFDR4/JKdzqQtQZ6eUW/ThnpXHp3/CFNk567PwlhAxDlz5R/dl526K/SM61cXJeBKkc3uCl6pH/19Djjq6S8Ckusgxp4FoX00mdLqM7NWyQZIlqTmNc578HzUoZRMEoeUEKnuBv2JTQgmqFL3mmL/TzbQ==~-1~-1~-1; Domain=.wellsfargo.com; Path=/; Expires=Mon, 29 Jan 2024 03:19:45 GMT; Max-Age=31536000; Secure
bm_sz=DB302A43D709483B53952B71EECA9B4E~YAAQvgplX13UP8WFAQAAwbuJ+xIeLidWHNkpNjGeStzInL3+JzZkZcNj1aLmeXhfh+KaNs/8aU+wdR2NP/UxeOeP56HnPujdyf9kAQdHeOZiS3w+y8vPwadHKhVm8ZNpiGVrlLZNIWFk70r3hpB9jO7BBRhvRMWd0vKg5V5gh2yyVcESovl2s2E9fESC9Y1+fgX25aXypk2dd41G9uMkhGAKEbl730SucSRLs6Vk84hPBiYkjXfc6pS6SO6SgoA/iDwqfWacNX83pmGh8Qfs6eEBMQsbbM3KLaW7u4/klHEimrTpITs8~3682357~3621699; Domain=.wellsfargo.com; Path=/; Expires=Sun, 29 Jan 2023 07:19:45 GMT; Max-Age=14400
Strict-Transport-Security: max-age=31536000 ; includeSubDomains
connect.secure.wellsfargo.com/AIDO/vyHb?d=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%3D&cid=8&si=4&e=https%3A%2F%2Fconnect.secure.wellsfargo.com&t=jsonp&__tp=login&c=tmhuhxuddiamtoys&eu=https%3A%2F%2Fconnect.secure.wellsfargo.com%2Fauth%2Flogin%2Fpresent
200 OK 131 B URL HTTP/1.1 connect.secure.wellsfargo.com/AIDO/vyHb?d=JTVCJTdCJTIyaWQlMjIlM0ElMjI4JTIyJTJDJTIyZGF0YSUyMiUzQSU3QiUyMmNpZCUyMiUzQSUyMjglMjIlMkMlMjJ1JTIyJTNBJTIyaHR0cHMlM0ElMkYlMkZjb25uZWN0LnNlY3VyZS53ZWxsc2ZhcmdvLmNvbSUyRmF1dGglMkZsb2dpbiUyRnByZXNlbnQlM0ZvcmlnaW4lM0Rjb2IlMjZMT0IlM0RDT05TJTIyJTJDJTIyciUyMiUzQSUyMmh0dHBzJTNBJTJGJTJGY29ubmVjdC5zZWN1cmUud2VsbHNmYXJnby5jb20lMkZhdXRoJTJGbG9naW4lMkZwcmVzZW50JTNGb3JpZ2luJTNEY29iJTI2TE9CJTNEQ09OUyUyMiUyQyUyMnBpZCUyMiUzQTQ0NzkyNDc3MCUyQyUyMmZjJTIyJTNBMCUyQyUyMmNudW0lMjIlM0E3JTJDJTIydHMlMjIlM0ExNjU2MzI5NDI3OTQ0JTJDJTIydCUyMiUzQSU3QiUyMnQlMjIlM0ElMjJsb2dpbiUyMiU3RCUyQyUyMnJhbmQlMjIlM0E0OTExNDclN0QlN0QlNUQ%3D&cid=8&si=4&e=https%3A%2F%2Fconnect.secure.wellsfargo.com&t=jsonp&__tp=login&c=tmhuhxuddiamtoys&eu=https%3A%2F%2Fconnect.secure.wellsfargo.com%2Fauth%2Flogin%2Fpresent
IP
ASN #20940 Akamai International B.V.
File type ASCII text, with no line terminators
Hash 939a7800b78e10fa645a54a5ccab0b45
d341561d6b1c49fe39fdbb2e249baa36139c7f17
43091c732a9e1f1b0e59c674512e6b66265eec2beff0e764396f1e08e1941eec
GET /AIDO/vyHb?d=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%3D&cid=8&si=4&e=https%3A%2F%2Fconnect.secure.wellsfargo.com&t=jsonp&__tp=login&c=tmhuhxuddiamtoys&eu=https%3A%2F%2Fconnect.secure.wellsfargo.com%2Fauth%2Flogin%2Fpresent HTTP/1.1
Host: connect.secure.wellsfargo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bgitopazdowntown.ddireal.vn/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: text/javascript
Content-Length: 131
max-age: 0
Expires: -1
X-XSS-Protection: 1; mode=block
Cache-Control: no-cache, no-store, must-revalidate
Pragma: no-cache
PICS-Label: (PICS-1.1 "http://www.icra.org/pics/vocabularyv03/" l r (n 0 s 0 v 0 l 0 oa 0 ob 0 oc 0 od 0 oe 0 of 0 og 0 oh 0 c 0) "http://www.icra.org/ratingsv02.html" l r (nz 0 vz 0 lz 0 oz 0 cz 0) "http://www.rsac.org/ratingsv01.html" l r (n 0 s 0 v 0 l 0))
P3P: CP="NOI ADM DEV PSAi COM NAV OUR OTR STP IND DEM"
Vary: Accept-Encoding
Date: Sun, 29 Jan 2023 03:19:45 GMT
Connection: keep-alive
Set-Cookie: ISD_AB_COOKIE=A; Max-Age=7200; path=/; Domain=connect.secure.wellsfargo.com; Secure; httpOnly
DCID=XXp+2+BjHXKzqA5LLGsLJQKnKaaqXEhhOXqzd+pPFT91OoAXalQkP+EkLohYwi1O; Domain=connect.secure.wellsfargo.com; Path=/; Expires=Sun, 29 Jan 2023 03:34:45 GMT;Httponly; Secure
_abck=4556D206E1279E2B75CADBBC39EC61A5~-1~YAAQvgplX17UP8WFAQAAzLuJ+wmpJs3Bdfmls1fo1RYnSqVqBP0NGCdrPQctY9ke74SOKVer4X1u4L/L08MmTMAnDFwYmJyhTj6GvUtx9mU8X35DvkoUsFI8iWBCmnfZaFV/KTPz3AllLeWmEWP6uLJUGxIaCsGQlmMVOlPaKSKP94OUX1P/SJwryALlyen/ui6lJp0mEDStz4vRJHUgE76Bs2GHGWi8YgDBaHcUPY3XyE0r5gqhtIjTQAKlHdflye+esX3F4vv6se0Lt+kP5IJPGTBUVUrs6jXBC2KCR6YhswtvPyOTxIV5z7Dzv1GgiXKhC5lh3j06eWWfLiw6pjM2li8ZdlVmTHAJVLl2Wk4Ua6yqdf+fIUVCoUI8e0DOag==~-1~-1~-1; Domain=.wellsfargo.com; Path=/; Expires=Mon, 29 Jan 2024 03:19:45 GMT; Max-Age=31536000; Secure
bm_sz=6A2F37DA2CF925795325CF7183D2CE7E~YAAQvgplX1/UP8WFAQAAzLuJ+xKCzrI9nrZyegeFPCRpdiM0hlffZOqSNxzWLxdHh7o7XPHxOSzj1GPRFNi1WjQVSfztU1yLw3DFmPNSeAaEuvhFuXORs9Gzj278wh5olYO0PLbk1qPxyrySzehEIDaB78SHNPSEOeSed/m7lwKlRNNlm2LxThZ8L/xOqRsZ3pPJ4H85yin8QrK3IhHyavu04rP8yLqF6GGVL7ljZPiOB+y+j0AJurVTObShEKyHmQQ+AX2zKzWapl+FrYPFlOtKF7SLfFJo9dSFLZH8xNgoLFOZt/ii~3682357~3621699; Domain=.wellsfargo.com; Path=/; Expires=Sun, 29 Jan 2023 07:19:45 GMT; Max-Age=14400
Strict-Transport-Security: max-age=31536000 ; includeSubDomains
connect.secure.wellsfargo.com/AIDO/vyHb?d=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%3D&cid=8&si=4&e=https%3A%2F%2Fconnect.secure.wellsfargo.com&t=jsonp&__tp=login&c=pgvvbn_cpqputmas&eu=https%3A%2F%2Fconnect.secure.wellsfargo.com%2Fauth%2Flogin%2Fpresent
200 OK 131 B URL HTTP/1.1 connect.secure.wellsfargo.com/AIDO/vyHb?d=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%3D&cid=8&si=4&e=https%3A%2F%2Fconnect.secure.wellsfargo.com&t=jsonp&__tp=login&c=pgvvbn_cpqputmas&eu=https%3A%2F%2Fconnect.secure.wellsfargo.com%2Fauth%2Flogin%2Fpresent
IP
ASN #20940 Akamai International B.V.
File type ASCII text, with no line terminators
Hash 92d8957f603ef5f37b10629144403d1f
04a23040c0d713c3e23fe9d84b7c151d81ebe89b
ef4215a4282e51c566934c7b8f4a910da16a539c29292d69e536ff06ddbddde9
GET /AIDO/vyHb?d=JTVCJTdCJTIyaWQlMjIlM0ElMjI4JTIyJTJDJTIyZGF0YSUyMiUzQSU3QiUyMmNpZCUyMiUzQSUyMjglMjIlMkMlMjJ1JTIyJTNBJTIyaHR0cHMlM0ElMkYlMkZjb25uZWN0LnNlY3VyZS53ZWxsc2ZhcmdvLmNvbSUyRmF1dGglMkZsb2dpbiUyRnByZXNlbnQlM0ZvcmlnaW4lM0Rjb2IlMjZMT0IlM0RDT05TJTIyJTJDJTIyciUyMiUzQSUyMmh0dHBzJTNBJTJGJTJGY29ubmVjdC5zZWN1cmUud2VsbHNmYXJnby5jb20lMkZhdXRoJTJGbG9naW4lMkZwcmVzZW50JTNGb3JpZ2luJTNEY29iJTI2TE9CJTNEQ09OUyUyMiUyQyUyMnBpZCUyMiUzQTQ0NzkyNDc3MCUyQyUyMmZjJTIyJTNBMSUyQyUyMmNudW0lMjIlM0E5JTJDJTIydHMlMjIlM0ExNjU2MzI5NjUyNDM0JTJDJTIydCUyMiUzQSU3QiUyMnQlMjIlM0ElMjJsb2dpbiUyMiU3RCUyQyUyMnJhbmQlMjIlM0E4OTg1OTclN0QlN0QlNUQ%3D&cid=8&si=4&e=https%3A%2F%2Fconnect.secure.wellsfargo.com&t=jsonp&__tp=login&c=pgvvbn_cpqputmas&eu=https%3A%2F%2Fconnect.secure.wellsfargo.com%2Fauth%2Flogin%2Fpresent HTTP/1.1
Host: connect.secure.wellsfargo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bgitopazdowntown.ddireal.vn/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: text/javascript
Content-Length: 131
max-age: 0
Expires: -1
X-XSS-Protection: 1; mode=block
Cache-Control: no-cache, no-store, must-revalidate
Pragma: no-cache
PICS-Label: (PICS-1.1 "http://www.icra.org/pics/vocabularyv03/" l r (n 0 s 0 v 0 l 0 oa 0 ob 0 oc 0 od 0 oe 0 of 0 og 0 oh 0 c 0) "http://www.icra.org/ratingsv02.html" l r (nz 0 vz 0 lz 0 oz 0 cz 0) "http://www.rsac.org/ratingsv01.html" l r (n 0 s 0 v 0 l 0))
P3P: CP="NOI ADM DEV PSAi COM NAV OUR OTR STP IND DEM"
Vary: Accept-Encoding
Date: Sun, 29 Jan 2023 03:19:45 GMT
Connection: keep-alive
Set-Cookie: ISD_AB_COOKIE=A; Max-Age=7200; path=/; Domain=connect.secure.wellsfargo.com; Secure; httpOnly
DCID=AQrAwMiTDdFSh87nrIKnXFhcBDkAjaowwYTpB4Se6ng%3d; Domain=connect.secure.wellsfargo.com; Path=/; Expires=Sun, 29 Jan 2023 03:34:45 GMT;Httponly; Secure
_abck=9E52CCE8DE7696305E29185221A8EAEC~-1~YAAQvgplX2DUP8WFAQAA+7uJ+wncFCghABJCVetpwC30YhXmjxX43OYCcGlBBIN6BiLDZoZLh8JDOgFrxS4l1D2N5tMFy4Dh2xveSIGTKc2gENJKiurXK/54rGxwxyJ9MVrQykt0O77LVXVchvsBNLV/5FKx1QoA1iaIjMv2HAPQ+X6Lk7xBJsruMHfOcmiqMVkqVSnAfwN3tuDieCe6aXDHgv+yj6oB2Z1K4NlotRtpYmOsqq6r3K+X8+2KM90iHs8DXuhTd7r/d8RXouXYZlhkc+0hd8O5u0WC3SifKmvaZAs9pWHUIGSa7EHFESVnMqHJHRuZH8mcoHn0ks8/81Mx5kFE5MLwap1HdzjSyoFlmTqfO2rsFW6FD5/YH3tKvA==~-1~-1~-1; Domain=.wellsfargo.com; Path=/; Expires=Mon, 29 Jan 2024 03:19:45 GMT; Max-Age=31536000; Secure
bm_sz=7C6E5231DB80AA4F0F017656E43DA2CD~YAAQvgplX2HUP8WFAQAA+7uJ+xJIGhFK10K0y9qYnVG5P/K4yM/g/FwPxMN72HFwd8P+e4pJXnr9HKeHRq/vxGScyRKJQFiRrTy8vI19fGHady9IvQV80wlUSkjVRQ/j9CFjjGvkoUm47Vehn+4o2a+o8UC++T/SQrw+9XBkZ1SUMK4uhuSBB/SMEJHW/sRaqO5WXajloJXsmQtWy80LJjBHJeX2s972t83H+WnMI2wIfrA240XThn9pWkCzwR1Jwb0pt/ID2bWCIYofsMLau38jfsTu51QjYBihR3Gx5uKSXut5qCbY~3682357~3621699; Domain=.wellsfargo.com; Path=/; Expires=Sun, 29 Jan 2023 07:19:45 GMT; Max-Age=14400
Strict-Transport-Security: max-age=31536000 ; includeSubDomains
www15.wellsfargomedia.com/wfui/css/fonts/wellsfargosans-rg.woff2
200 OK 22 kB URL HTTP/2 www15.wellsfargomedia.com/wfui/css/fonts/wellsfargosans-rg.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 22424, version 1.13107\012- data
Hash 0a1639ebe9fab396657a62aa5233c832
9b58164729ad918dd7255e4856f9da7f3a90bfde
631f3b6267a831a8d67c45e480b5d5a2601f10ff8708bcf3a45a41b377a129cc
GET /wfui/css/fonts/wellsfargosans-rg.woff2 HTTP/1.1
Host: www15.wellsfargomedia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://bgitopazdowntown.ddireal.vn
Connection: keep-alive
Referer: https://connect.secure.wellsfargo.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: KONICHIWA/2.0
last-modified: Tue, 26 Feb 2019 19:38:34 GMT
etag: "5798-582d133e56280"
accept-ranges: bytes
content-length: 22424
access-control-allow-origin: *
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
strict-transport-security: max-age=31536000; includeSubdomains;
content-type: font/woff2
cache-control: max-age=31536000
expires: Mon, 29 Jan 2024 03:19:45 GMT
date: Sun, 29 Jan 2023 03:19:45 GMT
X-Firefox-Spdy: h2
www15.wellsfargomedia.com/wfui/css/fonts/wellsfargosans-sbd.woff2
200 OK 23 kB URL HTTP/2 www15.wellsfargomedia.com/wfui/css/fonts/wellsfargosans-sbd.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 22600, version 1.13107\012- data
Hash 83df8749c013f13019fa8e0912041759
2bbffcf012a59e47661c0a37edda0fc772992ae7
ab9d8c97b35ed86b6224aca911aa304a0d7dbcbd28e00a4c6585b96e28ed30ba
GET /wfui/css/fonts/wellsfargosans-sbd.woff2 HTTP/1.1
Host: www15.wellsfargomedia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://bgitopazdowntown.ddireal.vn
Connection: keep-alive
Referer: https://connect.secure.wellsfargo.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: KONICHIWA/2.0
last-modified: Tue, 26 Feb 2019 19:38:34 GMT
etag: "5848-582d133e56280"
accept-ranges: bytes
content-length: 22600
access-control-allow-origin: *
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
strict-transport-security: max-age=31536000; includeSubdomains;
content-type: font/woff2
cache-control: max-age=31536000
expires: Mon, 29 Jan 2024 03:19:45 GMT
date: Sun, 29 Jan 2023 03:19:45 GMT
X-Firefox-Spdy: h2
connect.secure.wellsfargo.com/AIDO/vyHb?d=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&cid=8&si=4&e=https%3A%2F%2Fconnect.secure.wellsfargo.com&t=jsonp&__tp=login&c=fpkngzkdahnngdzl&eu=https%3A%2F%2Fconnect.secure.wellsfargo.com%2Fauth%2Flogin%2Fpresent
200 OK 131 B URL HTTP/1.1 connect.secure.wellsfargo.com/AIDO/vyHb?d=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&cid=8&si=4&e=https%3A%2F%2Fconnect.secure.wellsfargo.com&t=jsonp&__tp=login&c=fpkngzkdahnngdzl&eu=https%3A%2F%2Fconnect.secure.wellsfargo.com%2Fauth%2Flogin%2Fpresent
IP
ASN #20940 Akamai International B.V.
File type ASCII text, with no line terminators
Hash c9fd96040db248c257fcf72f35154c50
4017e7309e5d6c02aab4f5b9ceaafc4ffcad6445
18abcbfd674a00d68a13975ada85e901f4ee842ad94c06eef35ef13e071e19c8
GET /AIDO/vyHb?d=JTVCJTdCJTIyaWQlMjIlM0ElMjI4JTIyJTJDJTIyZGF0YSUyMiUzQSU3QiUyMmNpZCUyMiUzQSUyMjglMjIlMkMlMjJ1JTIyJTNBJTIyaHR0cHMlM0ElMkYlMkZjb25uZWN0LnNlY3VyZS53ZWxsc2ZhcmdvLmNvbSUyRmF1dGglMkZsb2dpbiUyRnByZXNlbnQlM0ZvcmlnaW4lM0Rjb2IlMjZMT0IlM0RDT05TJTIyJTJDJTIyciUyMiUzQSUyMmh0dHBzJTNBJTJGJTJGY29ubmVjdC5zZWN1cmUud2VsbHNmYXJnby5jb20lMkZhdXRoJTJGbG9naW4lMkZwcmVzZW50JTNGb3JpZ2luJTNEY29iJTI2TE9CJTNEQ09OUyUyMiUyQyUyMnBpZCUyMiUzQTQ0NzkyNDc3MCUyQyUyMmZjJTIyJTNBMCUyQyUyMmNudW0lMjIlM0ExMCUyQyUyMnRzJTIyJTNBMTY1NjMyOTY1NTg3NyUyQyUyMnQlMjIlM0ElN0IlMjJ0JTIyJTNBJTIybG9naW4lMjIlN0QlMkMlMjJyYW5kJTIyJTNBMzM2Mjk2JTdEJTdEJTVE&cid=8&si=4&e=https%3A%2F%2Fconnect.secure.wellsfargo.com&t=jsonp&__tp=login&c=fpkngzkdahnngdzl&eu=https%3A%2F%2Fconnect.secure.wellsfargo.com%2Fauth%2Flogin%2Fpresent HTTP/1.1
Host: connect.secure.wellsfargo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bgitopazdowntown.ddireal.vn/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: text/javascript
Content-Length: 131
max-age: 0
Expires: -1
X-XSS-Protection: 1; mode=block
Cache-Control: no-cache, no-store, must-revalidate
Pragma: no-cache
PICS-Label: (PICS-1.1 "http://www.icra.org/pics/vocabularyv03/" l r (n 0 s 0 v 0 l 0 oa 0 ob 0 oc 0 od 0 oe 0 of 0 og 0 oh 0 c 0) "http://www.icra.org/ratingsv02.html" l r (nz 0 vz 0 lz 0 oz 0 cz 0) "http://www.rsac.org/ratingsv01.html" l r (n 0 s 0 v 0 l 0))
P3P: CP="NOI ADM DEV PSAi COM NAV OUR OTR STP IND DEM"
Vary: Accept-Encoding
Date: Sun, 29 Jan 2023 03:19:45 GMT
Connection: keep-alive
Set-Cookie: ISD_AB_COOKIE=A; Max-Age=7200; path=/; Domain=connect.secure.wellsfargo.com; Secure; httpOnly
DCID=pIi0eZFLNeNQQKb+SLbgkhqfoMq8BFnKPoZperkHCq2DDRwG8nh5A9Ow3H6luBny; Domain=connect.secure.wellsfargo.com; Path=/; Expires=Sun, 29 Jan 2023 03:34:45 GMT;Httponly; Secure
_abck=5E8E6B36150474618E0837117BD41C1E~-1~YAAQvgplX2LUP8WFAQAAFbyJ+wlvIe7SmYNeUm/RVheM6zY4lh9GmS0OoJwARw5aON1TUP+RCjk9MqkNMiMb26Nnzkl2ZuYTxg1pWv1+/y3ksp8H9rxpXlL6+K2Lg8OUXTbztOa/5/h37dyuMiNu10Y99Ym+M/EPzlHBKHDCOI2H0EBuYfVYucyC2xpPF2heEXViW0aS2+axyIqbYHSfxMSYjzSlZb2omM/jAswaYHw/UKJonCOzsd7K8RoprVYa8F51whmXNmK3wiXFrBMxOv7+lNr1w2tNpeBpThh1rh2HCfm8URKLKo58GzvujbMGyllRPtd6+RPpRnFk2O7o+a8cH/Bx8FGxt6JckqP1mLk6zndc+6yzG9AUmEzqeEmzJg==~-1~-1~-1; Domain=.wellsfargo.com; Path=/; Expires=Mon, 29 Jan 2024 03:19:45 GMT; Max-Age=31536000; Secure
bm_sz=0CD0D811A0BAD7E26A4FDED9D95A2F9D~YAAQvgplX2PUP8WFAQAAFbyJ+xLT3pPgX2DRyTEFbVgGEdDV5aaMWN+2geKkyWBTNy6fi/Tlyn+SmUJ61ToovGVfVVIb1MTQF32zUMd+vME1G2WTwwPaZtgPPHE3uoOAaAeL0Rgs5CemDbiq9PVZs8UYg0sHeQQv/Bcb/xVGEaP2cwyEBuz7+HR3yBNC6F0M7wClKlR2CfWGmTC9hasZi1Q2MvapZ5G/vs4EiGR3DCjOxF/HbRj/SguFAolWv8XxzT6IQkuYJcWR/nAclbUaKZJv5gIxe2SbbQKykMc/TT5WBWXy7Bd4~3682357~3621699; Domain=.wellsfargo.com; Path=/; Expires=Sun, 29 Jan 2023 07:19:45 GMT; Max-Age=14400
Strict-Transport-Security: max-age=31536000 ; includeSubDomains
bgitopazdowntown.ddireal.vn/wp-content/themes/twentytwenty/classes/wells/cont.png
200 OK 2.0 kB URL HTTP/1.1 bgitopazdowntown.ddireal.vn/wp-content/themes/twentytwenty/classes/wells/cont.png
IP
ASN #63760 AZDIGI Corporation
File type PNG image data, 176 x 40, 8-bit/color RGBA, non-interlaced\012- data
Hash 62d9f5990cc1a950f03ed3c7a21f79ff
4634fd8fa2c7e4823005501f39b303f61da3a43a
076a8d09be89fb75e1c695adbe8bb0d3a4981656907a4ff02b1cbe4fb3254709
GET /wp-content/themes/twentytwenty/classes/wells/cont.png HTTP/1.1
Host: bgitopazdowntown.ddireal.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bgitopazdowntown.ddireal.vn/wp-content/themes/twentytwenty/classes/wells/emailerror.php?cmd=login_submit&id=49bb97b933008cc162f0a4b15b62bc4449bb97b933008cc162f0a4b15b62bc44&session=49bb97b933008cc162f0a4b15b62bc4449bb97b933008cc162f0a4b15b62bc44
Cookie: PHPSESSID=ct162mhspgea609g0l9qvndfpt
HTTP/1.1 200 OK
cache-control: public, max-age=604800
expires: Sun, 05 Feb 2023 03:19:45 GMT
etag: "7c2-63649fe2-162902;;;"
last-modified: Fri, 04 Nov 2022 05:15:14 GMT
content-type: image/png
content-length: 1986
accept-ranges: bytes
date: Sun, 29 Jan 2023 03:19:45 GMT
server: LiteSpeed
connection: Keep-Alive
connect.secure.wellsfargo.com/auth/static/ui/loginaltsignon/public/js/main.2c70436e78e79e8ed3b8.chunk.js
200 OK 6.5 kB URL HTTP/1.1 connect.secure.wellsfargo.com/auth/static/ui/loginaltsignon/public/js/main.2c70436e78e79e8ed3b8.chunk.js
IP
ASN #20940 Akamai International B.V.
File type Unicode text, UTF-8 text, with very long lines (20468), with no line terminators
Hash 4c244efedde17e2a9520826d0d2a0b65
bd4bfcb3fa80a4aaf6f035d27c62797b8eadc701
3b0c98e493e96fb81cf6d1ad7bd75c5b397c711506d712e894b52737026955d8
GET /auth/static/ui/loginaltsignon/public/js/main.2c70436e78e79e8ed3b8.chunk.js HTTP/1.1
Host: connect.secure.wellsfargo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bgitopazdowntown.ddireal.vn/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/javascript; charset=utf-8
Content-Length: 6493
Last-Modified: Wed, 08 Jun 2022 01:32:22 GMT
Vary: Accept-Encoding
ETag: "629ffc26-195d"
Content-Encoding: gzip
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Content-Security-Policy: default-src 'self'; script-src 'self'; object-src 'self'; frame-ancestors 'self'; report-uri https://ort.wellsfargo.com/reporting/csp
Cache-Control: max-age=10368000
Access-Control-Allow-Methods: POST
Allow: GET, POST, OPTIONS
Date: Sun, 29 Jan 2023 03:19:46 GMT
Connection: keep-alive
Set-Cookie: ISD_AB_COOKIE=A; Max-Age=7200; path=/; Domain=connect.secure.wellsfargo.com; Secure; httpOnly
DCID=3fdpt7wEF5ZPyD5hgaQ345%2f1qd3C+a0H29ULrwM9olI%3d; Domain=connect.secure.wellsfargo.com; Path=/; Expires=Sun, 29 Jan 2023 03:34:45 GMT;Httponly; Secure
Strict-Transport-Security: max-age=31536000 ; includeSubDomains
connect.secure.wellsfargo.com/auth/login/static/js/general_alt.js?async&seed=AIB30aSBAQAAaON8e0THKEG-EABBQKIADdpWWv5DyTHstHopwQkaHgNyXtDA&X-G2Q3kxs3--z=q
404 Not Found 0 B URL HTTP/1.1 connect.secure.wellsfargo.com/auth/login/static/js/general_alt.js?async&seed=AIB30aSBAQAAaON8e0THKEG-EABBQKIADdpWWv5DyTHstHopwQkaHgNyXtDA&X-G2Q3kxs3--z=q
IP
ASN #20940 Akamai International B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /auth/login/static/js/general_alt.js?async&seed=AIB30aSBAQAAaON8e0THKEG-EABBQKIADdpWWv5DyTHstHopwQkaHgNyXtDA&X-G2Q3kxs3--z=q HTTP/1.1
Host: connect.secure.wellsfargo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bgitopazdowntown.ddireal.vn/
Cookie: ndcd=wc1.1.w-729460.1.2.1qAuR5FjCeYXee2EQk6Idg%252C%252C.BZ4ZHadBU5YH7lcosUq4-UYiSqiDCPtCmMKTcP1DbetPETksuDSYinaMCT689xEFuDqkZgPUfnq0Kqg_L-NJHk838Zt40AKrhTbWZ0fn19JaZRVSXTM-t6b54KjgYM_vFFTfQz2DBjnM6gpslp7Kc6BzyFAFPmn8Be9m1T-pQlWGIGFgLaWAzGKH2jfz-sAu
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 404 Not Found
Content-Type: text/plain; charset=UTF-8
Content-Length: 0
Expires: Sun, 29 Jan 2023 03:19:46 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache
Date: Sun, 29 Jan 2023 03:19:46 GMT
Connection: keep-alive
Set-Cookie: DCID=KcJ8NcvXuCuskV1uqmd8m66wlJUVoQe7f6x9M0yZiMiY4znAhdioSInNpLcB6929; Domain=connect.secure.wellsfargo.com; Path=/; Expires=Sun, 29 Jan 2023 03:34:46 GMT;Httponly; Secure
Strict-Transport-Security: max-age=31536000 ; includeSubDomains
connect.secure.wellsfargo.com/auth/static/ui/loginaltsignon/public/js/wfui.11759b41ee721f527bba.chunk.js
200 OK 206 kB URL HTTP/1.1 connect.secure.wellsfargo.com/auth/static/ui/loginaltsignon/public/js/wfui.11759b41ee721f527bba.chunk.js
IP
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (65536), with no line terminators
Size 206 kB (206303 bytes)
Hash 600f986b91e4a976122d1b164aecee60
72522b8542cda1433d49ac33ebfba460d59f5f51
94e58269887c86c0d785e045db7bf4e87aaa4f9dfa4c72f8fb9efc38e06e9aea
GET /auth/static/ui/loginaltsignon/public/js/wfui.11759b41ee721f527bba.chunk.js HTTP/1.1
Host: connect.secure.wellsfargo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bgitopazdowntown.ddireal.vn/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/javascript; charset=utf-8
Content-Length: 206303
Last-Modified: Wed, 08 Jun 2022 01:52:15 GMT
Vary: Accept-Encoding
ETag: "62a000cf-325df"
Content-Encoding: gzip
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Content-Security-Policy: default-src 'self'; script-src 'self'; object-src 'self'; frame-ancestors 'self'; report-uri https://ort.wellsfargo.com/reporting/csp
Cache-Control: max-age=10368000
Access-Control-Allow-Methods: POST
Allow: GET, POST, OPTIONS
Date: Sun, 29 Jan 2023 03:19:46 GMT
Connection: keep-alive
Set-Cookie: ISD_AB_COOKIE=A; Max-Age=7200; path=/; Domain=connect.secure.wellsfargo.com; Secure; httpOnly
DCID=UTnhPb77cuPyFVdFtQHDbxTEqroXrIYEw02CnTydhbuz5aJr5q8feEAwojf4xY+L; Domain=connect.secure.wellsfargo.com; Path=/; Expires=Sun, 29 Jan 2023 03:34:45 GMT;Httponly; Secure
Strict-Transport-Security: max-age=31536000 ; includeSubDomains
connect.secure.wellsfargo.com/AIDO/vyHb?d=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&cid=8&si=4&e=https%3A%2F%2Fconnect.secure.wellsfargo.com&t=jsonp&__tp=login&c=zlhbpoezzaimha_l&eu=https%3A%2F%2Fconnect.secure.wellsfargo.com%2Fauth%2Flogin%2Fpresent
200 OK 131 B URL HTTP/1.1 connect.secure.wellsfargo.com/AIDO/vyHb?d=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&cid=8&si=4&e=https%3A%2F%2Fconnect.secure.wellsfargo.com&t=jsonp&__tp=login&c=zlhbpoezzaimha_l&eu=https%3A%2F%2Fconnect.secure.wellsfargo.com%2Fauth%2Flogin%2Fpresent
IP
ASN #20940 Akamai International B.V.
File type ASCII text, with no line terminators
Hash d0c9e6104eadc2be53084b1a2d2f7484
c513d8c456c3cca5bede070c7c71d93f632ce703
28c7a1b0b0cfc11cbada099c30a82676e1ccad9b3120b17efdd3d426b4a9ce94
GET /AIDO/vyHb?d=JTVCJTdCJTIyaWQlMjIlM0ElMjI4JTIyJTJDJTIyZGF0YSUyMiUzQSU3QiUyMmNpZCUyMiUzQSUyMjglMjIlMkMlMjJ1JTIyJTNBJTIyaHR0cHMlM0ElMkYlMkZjb25uZWN0LnNlY3VyZS53ZWxsc2ZhcmdvLmNvbSUyRmF1dGglMkZsb2dpbiUyRnByZXNlbnQlM0ZvcmlnaW4lM0Rjb2IlMjZMT0IlM0RDT05TJTIyJTJDJTIyciUyMiUzQSUyMmh0dHBzJTNBJTJGJTJGY29ubmVjdC5zZWN1cmUud2VsbHNmYXJnby5jb20lMkZhdXRoJTJGbG9naW4lMkZwcmVzZW50JTNGb3JpZ2luJTNEY29iJTI2TE9CJTNEQ09OUyUyMiUyQyUyMnBpZCUyMiUzQTQ0NzkyNDc3MCUyQyUyMmZjJTIyJTNBMSUyQyUyMmNudW0lMjIlM0ExMyUyQyUyMnRzJTIyJTNBMTY1NjMyOTY5NTc4OCUyQyUyMnQlMjIlM0ElN0IlMjJ0JTIyJTNBJTIybG9naW4lMjIlN0QlMkMlMjJyYW5kJTIyJTNBMjExMDk5JTdEJTdEJTVE&cid=8&si=4&e=https%3A%2F%2Fconnect.secure.wellsfargo.com&t=jsonp&__tp=login&c=zlhbpoezzaimha_l&eu=https%3A%2F%2Fconnect.secure.wellsfargo.com%2Fauth%2Flogin%2Fpresent HTTP/1.1
Host: connect.secure.wellsfargo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bgitopazdowntown.ddireal.vn/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: text/javascript
Content-Length: 131
max-age: 0
Expires: -1
X-XSS-Protection: 1; mode=block
Cache-Control: no-cache, no-store, must-revalidate
Pragma: no-cache
PICS-Label: (PICS-1.1 "http://www.icra.org/pics/vocabularyv03/" l r (n 0 s 0 v 0 l 0 oa 0 ob 0 oc 0 od 0 oe 0 of 0 og 0 oh 0 c 0) "http://www.icra.org/ratingsv02.html" l r (nz 0 vz 0 lz 0 oz 0 cz 0) "http://www.rsac.org/ratingsv01.html" l r (n 0 s 0 v 0 l 0))
P3P: CP="NOI ADM DEV PSAi COM NAV OUR OTR STP IND DEM"
Vary: Accept-Encoding
Date: Sun, 29 Jan 2023 03:19:46 GMT
Connection: keep-alive
Set-Cookie: ISD_AB_COOKIE=A; Max-Age=7200; path=/; Domain=connect.secure.wellsfargo.com; Secure; httpOnly
DCID=NqT7+QsF0drd8Icz2BkRehIiMOBt3R4jAvBtwVtfOkw%3d; Domain=connect.secure.wellsfargo.com; Path=/; Expires=Sun, 29 Jan 2023 03:34:45 GMT;Httponly; Secure
_abck=1CB7607C7F02D31DA6AF1B3AC676426A~-1~YAAQvgplX2TUP8WFAQAA7b2J+wk3udkk8TTKsua3pL0hdOr9EaPuUq7JGRpu2m8m4iktzyQIcyO8goLgCY7WPHYGnyGkkomJLyAwg55bwKHjTlP/eqQZRVKE/vo+JYycQMR5hxOL1TqDtXm9o6CXE5HjUk0OzoNf+fNOToPh3tNPLs7+QlyAKTEPg9KZGGLzQ1ff2lF6+AJW7CY7XI8TxXTwIveBqlLPRao1maVr163YhUmAs/Y5nMEMArRTKIuER21ACkZ89VatzOl9Eaj6FPmKRGJ7zVy4LBJrvF4o0/vMgmt503BA4KlC6ne/W8VJiJXxCR4j9XFcCToKVIT0t/23qBVCOrbAWTGFfcIgBbIc95eGfXL+4D66WxXA9W6RtA==~-1~-1~-1; Domain=.wellsfargo.com; Path=/; Expires=Mon, 29 Jan 2024 03:19:46 GMT; Max-Age=31536000; Secure
bm_sz=E81AE87BB9F1F0FAA1CFFAAD829A4AF5~YAAQvgplX2XUP8WFAQAA7b2J+xIcYmhlMtkW6NSFlkYF1I9cnYcbLpq7o0R4vO2HSv9acZ6QcCuHUcncHSqDqAUsHQw+yhBFffm4zTyfpWMNYHTH4UPh7O1agZ2miKy5mUZSuuXuL14/eM4+yoI8J1O0O2EDMvw6QP4WMjja5Gl13lEtGftDMrH8p0WumnvPFMPzpPW6RR9UVslNIDkJ0lKGM6QAPDw+rRuIqcKXwRpDNd8LQmy8+AnOQGVf5k4ss4limh9ni3fQaS0ZwbX8LT4oU5WJJLOehksduxxT3WxZFKui9OAy~3682357~3621699; Domain=.wellsfargo.com; Path=/; Expires=Sun, 29 Jan 2023 07:19:45 GMT; Max-Age=14399
Strict-Transport-Security: max-age=31536000 ; includeSubDomains
connect.secure.wellsfargo.com/AIDO/vyHb?d=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&cid=8&si=4&e=https%3A%2F%2Fconnect.secure.wellsfargo.com&t=jsonp&__tp=login&c=mkelibaqu_rvuwbv&eu=https%3A%2F%2Fconnect.secure.wellsfargo.com%2Fauth%2Flogin%2Fpresent
200 OK 131 B URL HTTP/1.1 connect.secure.wellsfargo.com/AIDO/vyHb?d=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&cid=8&si=4&e=https%3A%2F%2Fconnect.secure.wellsfargo.com&t=jsonp&__tp=login&c=mkelibaqu_rvuwbv&eu=https%3A%2F%2Fconnect.secure.wellsfargo.com%2Fauth%2Flogin%2Fpresent
IP
ASN #20940 Akamai International B.V.
File type ASCII text, with no line terminators
Hash 49067ea713257eab0f7e76e55742f4d9
e1ddc1a1316127b514faab8c3cbd2853e16d6139
f90598e6dd9e9b38ce71662badd8516ee1f6633e8b472e10824e60f441594b17
GET /AIDO/vyHb?d=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&cid=8&si=4&e=https%3A%2F%2Fconnect.secure.wellsfargo.com&t=jsonp&__tp=login&c=mkelibaqu_rvuwbv&eu=https%3A%2F%2Fconnect.secure.wellsfargo.com%2Fauth%2Flogin%2Fpresent HTTP/1.1
Host: connect.secure.wellsfargo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bgitopazdowntown.ddireal.vn/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: text/javascript
Content-Length: 131
max-age: 0
Expires: -1
X-XSS-Protection: 1; mode=block
Cache-Control: no-cache, no-store, must-revalidate
Pragma: no-cache
PICS-Label: (PICS-1.1 "http://www.icra.org/pics/vocabularyv03/" l r (n 0 s 0 v 0 l 0 oa 0 ob 0 oc 0 od 0 oe 0 of 0 og 0 oh 0 c 0) "http://www.icra.org/ratingsv02.html" l r (nz 0 vz 0 lz 0 oz 0 cz 0) "http://www.rsac.org/ratingsv01.html" l r (n 0 s 0 v 0 l 0))
P3P: CP="NOI ADM DEV PSAi COM NAV OUR OTR STP IND DEM"
Vary: Accept-Encoding
Date: Sun, 29 Jan 2023 03:19:46 GMT
Connection: keep-alive
Set-Cookie: ISD_AB_COOKIE=A; Max-Age=7200; path=/; Domain=connect.secure.wellsfargo.com; Secure; httpOnly
DCID=ZJjIhb2sBLAcWoSXbYfeHbOezt5gLNGI%2fOCCCUkA8So%3d; Domain=connect.secure.wellsfargo.com; Path=/; Expires=Sun, 29 Jan 2023 03:34:45 GMT;Httponly; Secure
_abck=7206BA13C179B3E5816FBE1CD62839EE~-1~YAAQvgplX2bUP8WFAQAA9r2J+wm0Z7ZO+stVYzvqP3TVffFKrYk4wRm8jvrJ4k9+BUrmrTe+lTG8PrzXqTI7q2191myJZFge+MNs5mSAoZQIRFgkzuRTB/3xn9iq70CWYWu1vY7H2rMn2LQI4iIBpKmAN0Q+Gt4EgiFeViQfDvmdR//YnCKqetN2YlyadKT+ZlNhiyUL3x+JIgLlHjr1MKynjbSxzxjvSl3DB/Q55ZnQr62vkKhbAvvK2cUD5wA6mQf9McQjlbgChqu6l7VWKjFWabcPXdIXmbN7jHgZ3Y97Bw58y+QIetPoZFjce45SYDzOS1d9bEoOubND39BW8BVyL/NzBmBaxXd2xBvZSAvnFBAd2vrDvAyLR0ohwpZ3UQ==~-1~-1~-1; Domain=.wellsfargo.com; Path=/; Expires=Mon, 29 Jan 2024 03:19:46 GMT; Max-Age=31536000; Secure
bm_sz=D82256963F624CF6D4AEC5C6964006E5~YAAQvgplX2fUP8WFAQAA9r2J+xIIMOS3e69ufls9m4RscauCOfEZv58VjSZNEkgzavwWtEyzSAjJlqDMfhxESrJOwaodiuO5YjJHSYqYaUFXlLQeH3YpszI1QbZTttXMX1dq+Q0cOrc3ut4i35/lT9d1GLqqo3ZycB571gLOUnHzO+yjsTagdzU0Vst+OXiUFrP0DecCk0x4EFpy7OrhMmzmcAeT/3GLdDUaFQwKVPG9yBXJbJT6gy3p8Foz5dH6yL3tuAiCHvCn4OdApIc1NoTJZF6Vr4qWe9VnQpmmvcL7YGP6qJGY~3682357~3621699; Domain=.wellsfargo.com; Path=/; Expires=Sun, 29 Jan 2023 07:19:45 GMT; Max-Age=14399
Strict-Transport-Security: max-age=31536000 ; includeSubDomains
connect.secure.wellsfargo.com/AIDO/vyHb?d=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&cid=8&si=4&e=https%3A%2F%2Fconnect.secure.wellsfargo.com&t=jsonp&__tp=login&c=prbrcxwatzwqdxwq&eu=https%3A%2F%2Fconnect.secure.wellsfargo.com%2Fauth%2Flogin%2Fpresent
200 OK 131 B URL HTTP/1.1 connect.secure.wellsfargo.com/AIDO/vyHb?d=JTVCJTdCJTIyaWQlMjIlM0ElMjI4JTIyJTJDJTIyZGF0YSUyMiUzQSU3QiUyMmNpZCUyMiUzQSUyMjglMjIlMkMlMjJ1JTIyJTNBJTIyaHR0cHMlM0ElMkYlMkZjb25uZWN0LnNlY3VyZS53ZWxsc2ZhcmdvLmNvbSUyRmF1dGglMkZsb2dpbiUyRnByZXNlbnQlM0ZvcmlnaW4lM0Rjb2IlMjZMT0IlM0RDT05TJTIyJTJDJTIyciUyMiUzQSUyMmh0dHBzJTNBJTJGJTJGY29ubmVjdC5zZWN1cmUud2VsbHNmYXJnby5jb20lMkZhdXRoJTJGbG9naW4lMkZwcmVzZW50JTNGb3JpZ2luJTNEY29iJTI2TE9CJTNEQ09OUyUyMiUyQyUyMnBpZCUyMiUzQTQ0NzkyNDc3MCUyQyUyMmZjJTIyJTNBMCUyQyUyMmNudW0lMjIlM0ExMiUyQyUyMnRzJTIyJTNBMTY1NjMyOTY4NzIyMiUyQyUyMnQlMjIlM0ElN0IlMjJ0JTIyJTNBJTIybG9naW4lMjIlN0QlMkMlMjJyYW5kJTIyJTNBNjc0MDk1JTdEJTdEJTVE&cid=8&si=4&e=https%3A%2F%2Fconnect.secure.wellsfargo.com&t=jsonp&__tp=login&c=prbrcxwatzwqdxwq&eu=https%3A%2F%2Fconnect.secure.wellsfargo.com%2Fauth%2Flogin%2Fpresent
IP
ASN #20940 Akamai International B.V.
File type ASCII text, with no line terminators
Hash 5a88f00e656e05a9d289a05506845a88
9bec04b14b0f2d7fec608f60d4fc43dbbd3aacd1
fe5a6f8b61d3b055e92d347163a4715675351eaa6393364341e823d66406b861
GET /AIDO/vyHb?d=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&cid=8&si=4&e=https%3A%2F%2Fconnect.secure.wellsfargo.com&t=jsonp&__tp=login&c=prbrcxwatzwqdxwq&eu=https%3A%2F%2Fconnect.secure.wellsfargo.com%2Fauth%2Flogin%2Fpresent HTTP/1.1
Host: connect.secure.wellsfargo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bgitopazdowntown.ddireal.vn/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: text/javascript
Content-Length: 131
max-age: 0
Expires: -1
X-XSS-Protection: 1; mode=block
Cache-Control: no-cache, no-store, must-revalidate
Pragma: no-cache
PICS-Label: (PICS-1.1 "http://www.icra.org/pics/vocabularyv03/" l r (n 0 s 0 v 0 l 0 oa 0 ob 0 oc 0 od 0 oe 0 of 0 og 0 oh 0 c 0) "http://www.icra.org/ratingsv02.html" l r (nz 0 vz 0 lz 0 oz 0 cz 0) "http://www.rsac.org/ratingsv01.html" l r (n 0 s 0 v 0 l 0))
P3P: CP="NOI ADM DEV PSAi COM NAV OUR OTR STP IND DEM"
Vary: Accept-Encoding
Date: Sun, 29 Jan 2023 03:19:46 GMT
Connection: keep-alive
Set-Cookie: ISD_AB_COOKIE=A; Max-Age=7200; path=/; Domain=connect.secure.wellsfargo.com; Secure; httpOnly
DCID=LjlYRwoz8bzgwD2qJBLztiwmEfkGfsYUJ48igmEOOnE%3d; Domain=connect.secure.wellsfargo.com; Path=/; Expires=Sun, 29 Jan 2023 03:34:45 GMT;Httponly; Secure
_abck=74F64BFB8D017CC12C1C6B632DD0A3E7~-1~YAAQvgplX2jUP8WFAQAA972J+wnQJd+JGGZJxbSb17ys72+KcvgwG4TXQ+EAGBrpezT8VpLOH2HNtKl1rJqU7bumaj/ZWf+iQRulQv9Zu5XVlPXjueRjODx9dS+hfrOTYPkFILNX8n8PYhfARtBlQn+yE/B2k7+60hqzG5INumxUNO4mxWm8vwElxWWeyJCM651FunGpZR4subr/rBYUAz4MBo5qB6GSHnT6O1kUhJ/0m56CPIGQ3zbsUGhdyVXVG5DMkyRaqpWulxvE9y9P1fy0pQj95jaz2tyzSJvsPOi1x9iV3Wxo+I5H/4gH8xRfdsGflpquYIRdFsK9NoobA4ZL+Z5xfyl4WO5tPicLA+0RzA9vjs+b19SXq8T6RNyz9A==~-1~-1~-1; Domain=.wellsfargo.com; Path=/; Expires=Mon, 29 Jan 2024 03:19:46 GMT; Max-Age=31536000; Secure
bm_sz=C200D0980CBB7A106BE2CA3B26F255F0~YAAQvgplX2nUP8WFAQAA972J+xK7o0nk4zcL1IvloAYb4keXyAF788N0gfUrqN/yrnOdUbP08c8Qj0BiA0yaCClPEG/8tyPbcpWhOJKbr3ZYrhfx43yc5sSXNwyQhFFjoo0k8twXJZoK0qJMIiJJ+meBy4cx6doCw6j8LInGI3/L9kx5Mp77NUM0KG2yQdUb46NFycciE4B5ZSvyONClBq64X/o8KZ2gM/NxfGEETJjmzexVRtU5/05bfkfqUYntkU2ipNYdnvE7wLEMyWtw4GNX1Xbxz8eGji2WSWjGGv4GZeNG6ol+~3682357~3621699; Domain=.wellsfargo.com; Path=/; Expires=Sun, 29 Jan 2023 07:19:45 GMT; Max-Age=14399
Strict-Transport-Security: max-age=31536000 ; includeSubDomains
www10.wellsfargomedia.com/favicon.ico
200 OK 1.2 kB URL HTTP/2 www10.wellsfargomedia.com/favicon.ico
IP
File type MS Windows icon resource - 1 icon, 16x16, 32 bits/pixel\012- data
Hash 11e6b612207abf064158e69540c16e24
9e3912485514553b2e17b578c8340986f1172b4d
8670da3c95c03b59b091eac882b67e0b59b765c455b8d871abd2e55d4618573b
GET /favicon.ico HTTP/1.1
Host: www10.wellsfargomedia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bgitopazdowntown.ddireal.vn/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/x-icon
content-length: 1150
last-modified: Thu, 29 Sep 2022 01:26:08 GMT
etag: "6334f430-47e"
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
strict-transport-security: max-age=31536000; includeSubdomains;
access-control-allow-methods: POST
allow: GET, POST, OPTIONS
$host: wellsfargo.com
accept-ranges: bytes
cache-control: max-age=10368000
expires: Mon, 29 May 2023 03:19:46 GMT
date: Sun, 29 Jan 2023 03:19:46 GMT
X-Firefox-Spdy: h2
static.wellsfargo.com/tracking/secure-auth/utag.21.js?utv=ut4.49.202210132016
200 OK 1.8 kB URL HTTP/1.1 static.wellsfargo.com/tracking/secure-auth/utag.21.js?utv=ut4.49.202210132016
IP
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (1090)
Hash 79d4c5b9ced319f1894c68d097b54f9c
75ad64d30369f91d7e2831b5b024364839e74d2d
aece2b5528a0cce3613b0ee26cc3455e0fae06eb730d8932d3baf5122766a5ff
GET /tracking/secure-auth/utag.21.js?utv=ut4.49.202210132016 HTTP/1.1
Host: static.wellsfargo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bgitopazdowntown.ddireal.vn/
Cookie: ndcd=wc1.1.w-729460.1.2.1qAuR5FjCeYXee2EQk6Idg%252C%252C.BZ4ZHadBU5YH7lcosUq4-UYiSqiDCPtCmMKTcP1DbetPETksuDSYinaMCT689xEFuDqkZgPUfnq0Kqg_L-NJHk838Zt40AKrhTbWZ0fn19JaZRVSXTM-t6b54KjgYM_vFFTfQz2DBjnM6gpslp7Kc6BzyFAFPmn8Be9m1T-pQlWGIGFgLaWAzGKH2jfz-sAu
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/javascript; charset=utf-8
Last-Modified: Mon, 07 Nov 2022 21:02:08 GMT
Vary: Accept-Encoding
ETag: W/"63697250-1123"
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Cache-Control: max-age=1800
Content-Encoding: gzip
Content-Length: 1841
Date: Sun, 29 Jan 2023 03:19:46 GMT
Connection: keep-alive
Strict-Transport-Security: max-age=31536000 ; includeSubDomains
Set-Cookie: DCID=m48Up8+3AS0GNvSSbjwZ5A%3d%3d; Domain=static.wellsfargo.com; Path=/; Expires=Thu, 01 Jan 1970 00:30:00 GMT;Httponly; Secure
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash f69c5f43bf99edb53b690cb0bba51efb
e303559ff0956b6bf963b572b17da2a713ce5206
bc95b0a6b8b9a1df9c53272c4324ca1d008699b3da74110efa37ed0118c66181
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 03:19:46 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ad.doubleclick.net/ddm/activity/src=2549153;type=allv40;cat=all_a012;u1=11202206270424411143497415;u4=LOGIN;u5=n;u8=loginapp;u11=PROD;u19=GA1.2.848135748.1656329096;u23=DESKTOP;ord=1208668656271.3545?
302 Found 0 B URL HTTP/2 ad.doubleclick.net/ddm/activity/src=2549153;type=allv40;cat=all_a012;u1=11202206270424411143497415;u4=LOGIN;u5=n;u8=loginapp;u11=PROD;u19=GA1.2.848135748.1656329096;u23=DESKTOP;ord=1208668656271.3545?
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ddm/activity/src=2549153;type=allv40;cat=all_a012;u1=11202206270424411143497415;u4=LOGIN;u5=n;u8=loginapp;u11=PROD;u19=GA1.2.848135748.1656329096;u23=DESKTOP;ord=1208668656271.3545? HTTP/1.1
Host: ad.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bgitopazdowntown.ddireal.vn/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sun, 29 Jan 2023 03:19:46 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
location: https://adservice.google.com/ddm/fls/p/src=2549153;type=allv40;cat=all_a012;u1=11202206270424411143497415;u4=LOGIN;u5=n;u8=loginapp;u11=PROD;u19=GA1.2.848135748.1656329096;u23=DESKTOP;ord=1208668656271.3545;~oref=http://bgitopazdowntown.ddireal.vn/
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
server: cafe
content-length: 0
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Sun, 29-Jan-2023 03:34:46 GMT; path=/; domain=.doubleclick.net; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash f69c5f43bf99edb53b690cb0bba51efb
e303559ff0956b6bf963b572b17da2a713ce5206
bc95b0a6b8b9a1df9c53272c4324ca1d008699b3da74110efa37ed0118c66181
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 03:19:46 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash ef589be52a3e55b643978f17949a73da
74545de6f144282252ff92c751f97cc835c80341
7bfa68c43e60a2627770163b5c1b96fbd7e4843984ad5ff6225c5490b8073b26
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 03:19:46 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.sectigo.com/
200 OK 471 B IP
Hash 8ef1dbe04ff3834735b0659e7ae82c62
56d86283c8861f679162e92c70bbea59f819b8dc
a41623bee3b144f94362b7351bf88236e4291f113068361be33209f550fb3373
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 03:19:46 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Sun, 29 Jan 2023 01:42:55 GMT
Expires: Sun, 05 Feb 2023 01:42:54 GMT
Etag: "56d86283c8861f679162e92c70bbea59f819b8dc"
Cache-Control: max-age=598387,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 790ed4043d87b4e8-OSL
static.wellsfargo.com/tracking/medallia/wdcusprem/57907/onsite/medallia-digital-embed.js
200 OK 819 B URL HTTP/1.1 static.wellsfargo.com/tracking/medallia/wdcusprem/57907/onsite/medallia-digital-embed.js
IP
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (720)
Hash 400e574e68b2d11076d96efd5cc087ec
873e23f01b6356fc78aab57cdb1308d458ae6888
454b56cd80b0412a4ec874001dcedaa491e4ca376b3805d1d91dd83071033564
GET /tracking/medallia/wdcusprem/57907/onsite/medallia-digital-embed.js HTTP/1.1
Host: static.wellsfargo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bgitopazdowntown.ddireal.vn/
Cookie: ndcd=wc1.1.w-729460.1.2.1qAuR5FjCeYXee2EQk6Idg%252C%252C.BZ4ZHadBU5YH7lcosUq4-UYiSqiDCPtCmMKTcP1DbetPETksuDSYinaMCT689xEFuDqkZgPUfnq0Kqg_L-NJHk838Zt40AKrhTbWZ0fn19JaZRVSXTM-t6b54KjgYM_vFFTfQz2DBjnM6gpslp7Kc6BzyFAFPmn8Be9m1T-pQlWGIGFgLaWAzGKH2jfz-sAu
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/javascript; charset=utf-8
Last-Modified: Wed, 12 Oct 2022 20:08:15 GMT
Vary: Accept-Encoding
ETag: W/"63471eaf-798"
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Cache-Control: max-age=1800
Content-Encoding: gzip
Content-Length: 819
Date: Sun, 29 Jan 2023 03:19:46 GMT
Connection: keep-alive
Strict-Transport-Security: max-age=31536000 ; includeSubDomains
Set-Cookie: DCID=uby+J8w5iEaJUNOVGaf+QQ%3d%3d; Domain=static.wellsfargo.com; Path=/; Expires=Thu, 01 Jan 1970 00:30:00 GMT;Httponly; Secure
adservice.google.com/ddm/fls/p/src=2549153;type=allv40;cat=all_a012;u1=11202206270424411143497415;u4=LOGIN;u5=n;u8=loginapp;u11=PROD;u19=GA1.2.848135748.1656329096;u23=DESKTOP;ord=1208668656271.3545;~oref=http://bgitopazdowntown.ddireal.vn/
302 Found 0 B URL HTTP/2 adservice.google.com/ddm/fls/p/src=2549153;type=allv40;cat=all_a012;u1=11202206270424411143497415;u4=LOGIN;u5=n;u8=loginapp;u11=PROD;u19=GA1.2.848135748.1656329096;u23=DESKTOP;ord=1208668656271.3545;~oref=http://bgitopazdowntown.ddireal.vn/
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ddm/fls/p/src=2549153;type=allv40;cat=all_a012;u1=11202206270424411143497415;u4=LOGIN;u5=n;u8=loginapp;u11=PROD;u19=GA1.2.848135748.1656329096;u23=DESKTOP;ord=1208668656271.3545;~oref=http://bgitopazdowntown.ddireal.vn/ HTTP/1.1
Host: adservice.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://bgitopazdowntown.ddireal.vn/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sun, 29 Jan 2023 03:19:46 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
location: https://adservice.google.no/ddm/fls/p/src=2549153;type=allv40;cat=all_a012;u1=11202206270424411143497415;u4=LOGIN;u5=n;u8=loginapp;u11=PROD;u19=GA1.2.848135748.1656329096;u23=DESKTOP;ord=1208668656271.3545;~oref=http://bgitopazdowntown.ddireal.vn/
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
server: cafe
content-length: 0
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
api.rlcdn.com/api/identity/idl?pid=1317
451 Unavailable For Legal Reasons 0 B URL HTTP/2 api.rlcdn.com/api/identity/idl?pid=1317
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /api/identity/idl?pid=1317 HTTP/1.1
Host: api.rlcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://bgitopazdowntown.ddireal.vn
Connection: keep-alive
Referer: http://bgitopazdowntown.ddireal.vn/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 451 Unavailable For Legal Reasons
date: Sun, 29 Jan 2023 03:19:46 GMT
content-length: 0
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash ef589be52a3e55b643978f17949a73da
74545de6f144282252ff92c751f97cc835c80341
7bfa68c43e60a2627770163b5c1b96fbd7e4843984ad5ff6225c5490b8073b26
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 03:19:46 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash b7da7d1d3e5880d5d4e313ac7fcf2a83
60a1e887ccb7c7cdae0035c65ef7df9908547fef
af17efcd17df50324c29cff05cea79f18cba79f6b1134ec0e6d1637759b5e895
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 03:19:46 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
adservice.google.no/ddm/fls/p/src=2549153;type=allv40;cat=all_a012;u1=11202206270424411143497415;u4=LOGIN;u5=n;u8=loginapp;u11=PROD;u19=GA1.2.848135748.1656329096;u23=DESKTOP;ord=1208668656271.3545;~oref=http://bgitopazdowntown.ddireal.vn/
200 OK 42 B URL HTTP/2 adservice.google.no/ddm/fls/p/src=2549153;type=allv40;cat=all_a012;u1=11202206270424411143497415;u4=LOGIN;u5=n;u8=loginapp;u11=PROD;u19=GA1.2.848135748.1656329096;u23=DESKTOP;ord=1208668656271.3545;~oref=http://bgitopazdowntown.ddireal.vn/
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ddm/fls/p/src=2549153;type=allv40;cat=all_a012;u1=11202206270424411143497415;u4=LOGIN;u5=n;u8=loginapp;u11=PROD;u19=GA1.2.848135748.1656329096;u23=DESKTOP;ord=1208668656271.3545;~oref=http://bgitopazdowntown.ddireal.vn/ HTTP/1.1
Host: adservice.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://bgitopazdowntown.ddireal.vn/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sun, 29 Jan 2023 03:19:46 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3="googleads.g.doubleclick.net:443"; ma=2592000,h3=":443"; ma=2592000,h3-29="googleads.g.doubleclick.net:443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash b7da7d1d3e5880d5d4e313ac7fcf2a83
60a1e887ccb7c7cdae0035c65ef7df9908547fef
af17efcd17df50324c29cff05cea79f18cba79f6b1134ec0e6d1637759b5e895
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 03:19:46 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
static.wellsfargo.com/tracking/medallia/wdcusprem/57907/onsite/generic1661785830759.js
200 OK 78 kB URL HTTP/1.1 static.wellsfargo.com/tracking/medallia/wdcusprem/57907/onsite/generic1661785830759.js
IP
ASN #20940 Akamai International B.V.
File type Unicode text, UTF-8 text, with very long lines (11854)
Hash 2d4114748dd4ba96746b364ddbb90efd
71af87311a51b11de269075c7d5222ac27170efb
c86a5b651313fa185fbb81f5e78f9ec42ae8a466532995e4b6bfda7407f5ac81
GET /tracking/medallia/wdcusprem/57907/onsite/generic1661785830759.js HTTP/1.1
Host: static.wellsfargo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bgitopazdowntown.ddireal.vn/
Cookie: ndcd=wc1.1.w-729460.1.2.1qAuR5FjCeYXee2EQk6Idg%252C%252C.BZ4ZHadBU5YH7lcosUq4-UYiSqiDCPtCmMKTcP1DbetPETksuDSYinaMCT689xEFuDqkZgPUfnq0Kqg_L-NJHk838Zt40AKrhTbWZ0fn19JaZRVSXTM-t6b54KjgYM_vFFTfQz2DBjnM6gpslp7Kc6BzyFAFPmn8Be9m1T-pQlWGIGFgLaWAzGKH2jfz-sAu
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/javascript; charset=utf-8
Last-Modified: Wed, 12 Oct 2022 20:08:15 GMT
Vary: Accept-Encoding
ETag: W/"63471eaf-54d3a"
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Cache-Control: max-age=1800
Content-Encoding: gzip
Content-Length: 78340
Date: Sun, 29 Jan 2023 03:19:46 GMT
Connection: keep-alive
Strict-Transport-Security: max-age=31536000 ; includeSubDomains
Set-Cookie: DCID=4+7yfwqRuyTZyfQDU6jGDw%3d%3d; Domain=static.wellsfargo.com; Path=/; Expires=Thu, 01 Jan 1970 00:30:00 GMT;Httponly; Secure
ocsp.sectigo.com/
200 OK 471 B IP
Hash 8ef1dbe04ff3834735b0659e7ae82c62
56d86283c8861f679162e92c70bbea59f819b8dc
a41623bee3b144f94362b7351bf88236e4291f113068361be33209f550fb3373
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 03:19:46 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Sun, 29 Jan 2023 01:42:55 GMT
Expires: Sun, 05 Feb 2023 01:42:54 GMT
Etag: "56d86283c8861f679162e92c70bbea59f819b8dc"
Cache-Control: max-age=598387,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 790ed404edd6b4e8-OSL
connect.secure.wellsfargo.com/AIDO/vyHb?d=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%3D%3D&cid=15%2C16&si=2&e=http%3A%2F%2Fbgitopazdowntown.ddireal.vn&t=jsonp&c=ihpdcklcguinliqa&eu=http%3A%2F%2Fbgitopazdowntown.ddireal.vn%2Fwp-content%2Fthemes%2Ftwentytwenty%2Fclasses%2Fwells%2Femailerror.php
200 OK 90 B URL HTTP/1.1 connect.secure.wellsfargo.com/AIDO/vyHb?d=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%3D%3D&cid=15%2C16&si=2&e=http%3A%2F%2Fbgitopazdowntown.ddireal.vn&t=jsonp&c=ihpdcklcguinliqa&eu=http%3A%2F%2Fbgitopazdowntown.ddireal.vn%2Fwp-content%2Fthemes%2Ftwentytwenty%2Fclasses%2Fwells%2Femailerror.php
IP
ASN #20940 Akamai International B.V.
File type ASCII text, with no line terminators
Hash 6a3565cba12d7bc9d71272666908d6b4
fb39de6b5642e4d46b9fa73231691295e67430ea
21f7016df1f72d543f18842202825eaf87fdfa7dd60060084f547cbf87523e61
GET /AIDO/vyHb?d=ZW5jZEAxVno4bFRWb21rdE1HekhTYVZyeURlM2kram9MT0VvQ2tkNjlDUzhSb3VXN2s2ZXM3VEN0L29wTndiL3o3Mk81SXlCTXcrejZSWDJ6dksxRUVMVFZRZVFlNlZzTWxBMVlyQ2hqMVFDbUZzV0FtdG9GUWlDcFlFRk1MMStVem11Q0ZuVG9CVllmK295eDNqMmtSMmYySTdldVgycVp2MElKalVrVFdqVEpSa3JHbURESVpDT1Vpd1hTMEU5cFJZL05BS3l3VUpScFZySTQzdWJOOThJS3lrT0lBbmpTK3I4TG5YZUZkSHROMzNpdzBBSG1uOUkzUlRqVGp3R1pGZGsyeENSS2o2SlVXeGY5Q1JzTmhLeWhTZ1oreGNiOUtqekVxZG1KK0JVTzJ6b0ZpNU5wT0dmd3NVa2J2NHVTcHhlTWh1OVpQckthSFR4dDBWa2liU0pjZlkzUmsvVklteEllcjlpUWpvdmZ2NFZjZ0gzYWNmRUtKbVhPTTVhQURjR044c3p1azVWSUZmUUtvUzNTaHpBTzEyUFljSUNSYTc3Q1VBNDB5dEc2ekxjRXJUSVJla3hxcURJNXF6UWdQQUxzdnBsdWdnZ1MwSktzaW1EVnlXNmY4SlMvSHBUdG5KYnZLNUEyZkYwNlc5bm9uS253dGV2NDdqNXhUM0xqRlZxa2pJVjFsT2QyUTIxbmg4SURZNGFSK3JjS2h4V0o2SzY4VENSbU1wd3I2VTVXZkRHK0pUamJ1VWNwSjhDODl0SlNSU3dNTzB5OFFCcz18YTdhYTA3ZDI5NmViMzBlZGZjZTI4M2ZjY2I3OTlhZWVlN2Q4MmRhNmQwYWJkYmQ2MGFhZWZlYzRhZDZjNmE3YjU3Y2U3YjM0NGFjNzY3Njc4M2U1ZmJhYWE5MjI2YzI4MjY0MTlmMjVhNzRiOWE4ZDI2M2E3ODI3NGEwNDlhMDUwMjEyZGI5ZGNkNjIwNmY3NmE4ZTJhNmQ5NmY1OWY4OGExOWZmYzY1OWI3NzZhMTBkMGY4OGFlNzJlYzkxY2FlZjA5ZDRkZjJlM2FiOTY4ZDU4NDRiNjgzMjU5NzVmZjE1OTgwZjEwNGE4OTc4MjU3OTdjMmU4NzhmNDFlMDM1NGE4MmIyYjM5YTVhZjdkYWU1OWMyNTYzN2MwNjM0YjA1NTQ0YWNkZGMzNjY4NmRkZmNlYjVmODYwNGVjZDJkYmJkM2ZiZWUyZjlhMmNiMTE3YmNiZWY2ZDk2MTNhY2ZkNmJiZmFkY2Y4NTVlZTRjYWE4ZWIxZmM0ZWY3OTc0OWQwMjc4ZmFhYmQ5NGY4YWYwNjBhOWI0ZDIyYzJiMGJjMGFlOTY5OGM5Mjg1MWNiMDM0M2Y5OGRhOTU1ZGUzZGFiOWRiOWM3ODRmODc3OWNiZjcyMzMzNDY4MDc2Y2EwYWNlMGNlMDU5ZWVlNDJlZmEyN2Y3ZDIyYWFmNjliMDk5NzJ8MDBlZTBiNjJlY2FhYzg5Zg%3D%3D&cid=15%2C16&si=2&e=http%3A%2F%2Fbgitopazdowntown.ddireal.vn&t=jsonp&c=ihpdcklcguinliqa&eu=http%3A%2F%2Fbgitopazdowntown.ddireal.vn%2Fwp-content%2Fthemes%2Ftwentytwenty%2Fclasses%2Fwells%2Femailerror.php HTTP/1.1
Host: connect.secure.wellsfargo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bgitopazdowntown.ddireal.vn/
Cookie: ndcd=wc1.1.w-729460.1.2.1qAuR5FjCeYXee2EQk6Idg%252C%252C.BZ4ZHadBU5YH7lcosUq4-UYiSqiDCPtCmMKTcP1DbetPETksuDSYinaMCT689xEFuDqkZgPUfnq0Kqg_L-NJHk838Zt40AKrhTbWZ0fn19JaZRVSXTM-t6b54KjgYM_vFFTfQz2DBjnM6gpslp7Kc6BzyFAFPmn8Be9m1T-pQlWGIGFgLaWAzGKH2jfz-sAu
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: text/javascript
Content-Length: 90
max-age: 0
Expires: -1
X-XSS-Protection: 1; mode=block
Cache-Control: no-cache, no-store, must-revalidate
Pragma: no-cache
PICS-Label: (PICS-1.1 "http://www.icra.org/pics/vocabularyv03/" l r (n 0 s 0 v 0 l 0 oa 0 ob 0 oc 0 od 0 oe 0 of 0 og 0 oh 0 c 0) "http://www.icra.org/ratingsv02.html" l r (nz 0 vz 0 lz 0 oz 0 cz 0) "http://www.rsac.org/ratingsv01.html" l r (n 0 s 0 v 0 l 0))
P3P: CP="NOI ADM DEV PSAi COM NAV OUR OTR STP IND DEM"
Vary: Accept-Encoding
Date: Sun, 29 Jan 2023 03:19:47 GMT
Connection: keep-alive
Set-Cookie: ISD_AB_COOKIE=A; Max-Age=7200; path=/; Domain=connect.secure.wellsfargo.com; Secure; httpOnly
DCID=PmBs68kFRmTdhi6JzvRNr%2fyYxmjxM2sKza4+cSnQd2FV8tcnX4U2pjo3iEQVm6dL; Domain=connect.secure.wellsfargo.com; Path=/; Expires=Sun, 29 Jan 2023 03:34:46 GMT;Httponly; Secure
_abck=59BF670B61B51CEBF529599C64593EC5~-1~YAAQvgplX2rUP8WFAQAAUcCJ+wkjgIZfwcPklye5XkyBU52M0ynn4UcShnJwDDS6m6teEClHzYMNGs6qfRq9ykAvM9xXndoM7B7W4ezX9HyvXrMPY3KFTY/1IqxXkh0aTsFgLtL8BbD3675ovDXjEdQUVKLFHp2vqMPd/1u9B9BHFrHpL+ufkZTh91CcSyfD3MrR7qig8duwsknTqIdIyGaThwRjlnRTJdnX0RSaWICyqFmlbIRwTq3NUW8ipAEBZXVs9wNL4pCLMZZYA/Xha5gJsKQfA8qUpyDnokNkz2pEzE1/WX0Rg+2wRLFbMKXusGzYhV6JuSS/xeEGZ+r7k7HxxxseXBZtvAXjba5vVasSWjg1wsF5EwV2qtJGCoPqug==~-1~-1~-1; Domain=.wellsfargo.com; Path=/; Expires=Mon, 29 Jan 2024 03:19:47 GMT; Max-Age=31536000; Secure
bm_sz=D383C3FA2DD1EAB6ACD4CF0B9EAC6079~YAAQvgplX2vUP8WFAQAAUcCJ+xLRLt+wFuXZsPAuwq828J48qx68w73REU7w+idxu5VM6RDY7GISy3meEPXXa9KuAAmycfHkfK3sglzg2Bvtpbxvlw7qtcGf89kvUSsyfd8tiuqrBQYj/Q8dDbaZDxoE9XFWllLGBFPUfxMqkf0gZPgbkV9wCN+qFJxVNmSwR9+3yhgJ85tLTWZmqmQmnaYEOBs+Y8DFuozz3nEWUwVG4kBU6/EFU6kykrk/AN9di73OxQrqe7QamrWtvdOnybcASP5fsFcZWmdoAVWBWl3Z/LfVxHaC~3486003~3355447; Domain=.wellsfargo.com; Path=/; Expires=Sun, 29 Jan 2023 07:19:46 GMT; Max-Age=14399
Strict-Transport-Security: max-age=31536000 ; includeSubDomains
resources.digital-cloud-prem.medallia.com/wdcusprem/57907/onsite/onsiteData.json
200 OK 1.7 kB URL HTTP/2 resources.digital-cloud-prem.medallia.com/wdcusprem/57907/onsite/onsiteData.json
IP
File type JSON data\012- , ASCII text, with very long lines (2056)
Hash f38ed93e44a5704769b1cde3313fec33
adfefe9525a7a91ce83efac49e842f1459a27152
f1cb60960305c1168163f09cff72c959e78f1ba849182663928062afa4d0a32b
GET /wdcusprem/57907/onsite/onsiteData.json HTTP/1.1
Host: resources.digital-cloud-prem.medallia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://bgitopazdowntown.ddireal.vn
Connection: keep-alive
Referer: http://bgitopazdowntown.ddireal.vn/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: K9E6Lyn+5zYa02+BxUqOd1Ieh5RKsSyELv7lzKovxEeIMRmFJhuRKBOapqg1hA2HtHbXLhUapfU=
x-amz-request-id: ZVR7KG1BQXVFM2TS
last-modified: Thu, 05 Jan 2023 18:35:58 GMT
etag: "2e8716b6038e3c354a2da4f630551d90"
x-amz-version-id: Opbxz_xndE31tgAdXrS7zLsEpNCLZ9SJ
content-type: application/json
server: AmazonS3
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
access-control-allow-origin: *
cache-control: max-age=0,must-revalidate
accept-ranges: bytes
date: Sun, 29 Jan 2023 03:19:47 GMT
age: 2018629
x-served-by: cache-pao17458-PAO, cache-bma1678-BMA
x-cache: HIT, HIT
x-cache-hits: 131160, 1
x-timer: S1674962387.034380,VS0,VE1
vary: Accept-Encoding
strict-transport-security: max-age=31557600
content-length: 1742
X-Firefox-Spdy: h2
connect.secure.wellsfargo.com/AIDO/vyHb?d=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&cid=15%2C33&si=4&e=http%3A%2F%2Fbgitopazdowntown.ddireal.vn&t=jsonp&c=lgirqypqy_ufcibc&eu=http%3A%2F%2Fbgitopazdowntown.ddireal.vn%2Fwp-content%2Fthemes%2Ftwentytwenty%2Fclasses%2Fwells%2Femailerror.php
200 OK 90 B URL HTTP/1.1 connect.secure.wellsfargo.com/AIDO/vyHb?d=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&cid=15%2C33&si=4&e=http%3A%2F%2Fbgitopazdowntown.ddireal.vn&t=jsonp&c=lgirqypqy_ufcibc&eu=http%3A%2F%2Fbgitopazdowntown.ddireal.vn%2Fwp-content%2Fthemes%2Ftwentytwenty%2Fclasses%2Fwells%2Femailerror.php
IP
ASN #20940 Akamai International B.V.
File type ASCII text, with no line terminators
Hash 61cc9d791808d1efec1d8c1deb6634aa
99c84961967bb31e39e1b4a9eb65bf64af6bba45
ae052d41f5a598715c60ac2a8aff8b62a413e4ee51e3b70ce1817035a70ecd83
GET /AIDO/vyHb?d=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&cid=15%2C33&si=4&e=http%3A%2F%2Fbgitopazdowntown.ddireal.vn&t=jsonp&c=lgirqypqy_ufcibc&eu=http%3A%2F%2Fbgitopazdowntown.ddireal.vn%2Fwp-content%2Fthemes%2Ftwentytwenty%2Fclasses%2Fwells%2Femailerror.php HTTP/1.1
Host: connect.secure.wellsfargo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bgitopazdowntown.ddireal.vn/
Cookie: ndcd=wc1.1.w-729460.1.2.1qAuR5FjCeYXee2EQk6Idg%252C%252C.BZ4ZHadBU5YH7lcosUq4-UYiSqiDCPtCmMKTcP1DbetPETksuDSYinaMCT689xEFuDqkZgPUfnq0Kqg_L-NJHk838Zt40AKrhTbWZ0fn19JaZRVSXTM-t6b54KjgYM_vFFTfQz2DBjnM6gpslp7Kc6BzyFAFPmn8Be9m1T-pQlWGIGFgLaWAzGKH2jfz-sAu
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: text/javascript
Content-Length: 90
max-age: 0
Expires: -1
X-XSS-Protection: 1; mode=block
Cache-Control: no-cache, no-store, must-revalidate
Pragma: no-cache
PICS-Label: (PICS-1.1 "http://www.icra.org/pics/vocabularyv03/" l r (n 0 s 0 v 0 l 0 oa 0 ob 0 oc 0 od 0 oe 0 of 0 og 0 oh 0 c 0) "http://www.icra.org/ratingsv02.html" l r (nz 0 vz 0 lz 0 oz 0 cz 0) "http://www.rsac.org/ratingsv01.html" l r (n 0 s 0 v 0 l 0))
P3P: CP="NOI ADM DEV PSAi COM NAV OUR OTR STP IND DEM"
Vary: Accept-Encoding
Date: Sun, 29 Jan 2023 03:19:47 GMT
Connection: keep-alive
Set-Cookie: ISD_AB_COOKIE=A; Max-Age=7200; path=/; Domain=connect.secure.wellsfargo.com; Secure; httpOnly
DCID=TNiUBU%2fUZnVgQEXRgjEapz1itGwywWGsGQ9z8pZZp7k%3d; Domain=connect.secure.wellsfargo.com; Path=/; Expires=Sun, 29 Jan 2023 03:34:46 GMT;Httponly; Secure
_abck=5D407DB57B2C03EAC16DA0B884DEBE07~-1~YAAQvgplX2zUP8WFAQAAkMCJ+wmxtu8RdSZKyN2i+JQwQIngljp/CJoITuBGLS9WymbZUTfWfjh+3haoOStX28dlz+U9LRLSBEEdikQZ2i20CczCNNOKHkUD+lVy7hShhUAdyTM55Qf4lZ92vYKi0xlLUhL0zPQ8AaGx9M0UkbWtpyaV8+uJ0tJ0naVsP4VfsBE6ZIHER3XrBWYg+uBoPmMCux2D1mXRvM3vzmVdyDliFUMNVCERxXkjDYuRMzUWZWB251hlivx5qdpiUH/eEX1zi4Jj8UIe7XG6bLGH3dnsRVKO6P20YfC+LNYoxNJc3icn/P0BREJVYhG0QNaXmxWw3VJA7KW4kS1IDij1CZpUqkyIaS2ldzMyyGlapruu0w==~-1~-1~-1; Domain=.wellsfargo.com; Path=/; Expires=Mon, 29 Jan 2024 03:19:47 GMT; Max-Age=31536000; Secure
bm_sz=8AE9FDEEBB9421ACDD81E08F527F47B5~YAAQvgplX23UP8WFAQAAkMCJ+xL6RhMIFyjoR2z3MejyCutFs7/vOPO6pLB38mvASlS9p6I8x1+PTvqiB5G6m2WN95X0Sr+NiN97KtxAMtKPB3BqDAqncWjY6U6LzgXF5xKaBKpKauUSsVgUJG+yJS28SH6RoXUoZRtpirJBb3oyTy/kIipMAHZwqNLc/Bj7oOXzfrk8sYeaD5bqW2plV6F3R5TjWe0CCVabgVM/ys5pAsyPPgwX9UNYSPFf1YACyd+wDa9VoHWfSPu2w8n/wmk9EAE99bGphM7H66Y5TmDcNstLUzbw~3486003~3355447; Domain=.wellsfargo.com; Path=/; Expires=Sun, 29 Jan 2023 07:19:46 GMT; Max-Age=14399
Strict-Transport-Security: max-age=31536000 ; includeSubDomains
connect.secure.wellsfargo.com/AIDO/gateway.html?sui=e874f8cadcccd196bca4d1b5d2a4f2e35b5602230c076cd2491f02487868b4b1
200 OK 8.6 kB URL HTTP/1.1 connect.secure.wellsfargo.com/AIDO/gateway.html?sui=e874f8cadcccd196bca4d1b5d2a4f2e35b5602230c076cd2491f02487868b4b1
IP
ASN #20940 Akamai International B.V.
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (22167), with no line terminators
Hash 72000bbf5585ffb07afb0b1d128f902c
7ffd5636ef1ea84c6bdc92a99159397297d483fb
6d5d3323ab3702633e0272dd0076fa1c05c34b71c9e86188145b96f328ed9b6f
GET /AIDO/gateway.html?sui=e874f8cadcccd196bca4d1b5d2a4f2e35b5602230c076cd2491f02487868b4b1 HTTP/1.1
Host: connect.secure.wellsfargo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bgitopazdowntown.ddireal.vn/
Cookie: ndcd=wc1.1.w-729460.1.2.1qAuR5FjCeYXee2EQk6Idg%252C%252C.BZ4ZHadBU5YH7lcosUq4-UYiSqiDCPtCmMKTcP1DbetPETksuDSYinaMCT689xEFuDqkZgPUfnq0Kqg_L-NJHk838Zt40AKrhTbWZ0fn19JaZRVSXTM-t6b54KjgYM_vFFTfQz2DBjnM6gpslp7Kc6BzyFAFPmn8Be9m1T-pQlWGIGFgLaWAzGKH2jfz-sAu
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: text/html
max-age: 0
Expires: Sun, 29 Jan 2023 04:19:47 GMT
X-XSS-Protection: 1; mode=block
Cache-Control: private, max-age=3600
PICS-Label: (PICS-1.1 "http://www.icra.org/pics/vocabularyv03/" l r (n 0 s 0 v 0 l 0 oa 0 ob 0 oc 0 od 0 oe 0 of 0 og 0 oh 0 c 0) "http://www.icra.org/ratingsv02.html" l r (nz 0 vz 0 lz 0 oz 0 cz 0) "http://www.rsac.org/ratingsv01.html" l r (n 0 s 0 v 0 l 0))
P3P: CP="NOI ADM DEV PSAi COM NAV OUR OTR STP IND DEM"
Vary: Accept-Encoding
X-Akamai-Transformed: 9 10805 0 pmb=mTOE,1
Content-Encoding: gzip
Date: Sun, 29 Jan 2023 03:19:47 GMT
Content-Length: 8566
Connection: keep-alive
Set-Cookie: ISD_AB_COOKIE=A; Max-Age=7200; path=/; Domain=connect.secure.wellsfargo.com; Secure; httpOnly
DCID=+BGjusXBQTuieb1JX6EC%2fyBLCqkAYfNB+CFOTN2kobczhy5c0QRtMZTCUYlUjdHK; Domain=connect.secure.wellsfargo.com; Path=/; Expires=Sun, 29 Jan 2023 03:34:47 GMT;Httponly; Secure
_abck=A606E483CC70271A81CB48F73D289BDE~-1~YAAQvgplX27UP8WFAQAAPMGJ+wlF6jHpDbiTJDmiz38opmkRCzRsYY1H3oUQQLUd3KE8HoVf8XiI8b8w4ca4AIvjuOCO+0NRgdrZVW/ncK1VEYRStr1jpKbCwtoY1Qe+ebsXOVnlgeCLcVBCgPaOvk4e/Or8yFOFbiClyYE55voBss4Dh3VWrauncW+CYJo9jviVwLcGcL2CWEoNOUFXbWwdfc/vmisMYx2fZdfB8lVGBzn07/ex6kM5nnmzYT2oM4anzsufVb3ThQm5u2ieks2UMyV0pwsmPkFil+rvJh3LpOfKRvGCtupHCcaCxtsUzl+EekGSJE0RKVCNZmV8Dio2jTMqHPITHBFU8IdYh9Fug4woRJqDB83QmINiGZqr7A==~-1~-1~-1; Domain=.wellsfargo.com; Path=/; Expires=Mon, 29 Jan 2024 03:19:47 GMT; Max-Age=31536000; Secure
bm_sz=BC4ED56E704306F8F9BA7A3268A1E412~YAAQvgplX2/UP8WFAQAAPMGJ+xI+JnCGHariASTgG2GRWiv47fTNGbbwhCedt3MR6/NX9GE3g/jXmNnIcmPskCPcrosYw+/5QeokVrEeZxeClrG+zprXnsBA5Jka/ffpghYUZ+Kh6pZowVlrqZLeee6rumQvkF5h19vKLXJ5yxEQzWIW2KoJIy4SczrtP3LZkx4DwR7S0dmp1gNi1ryBTZvsYUu5Klp8Uhwj3Uf/3M4o10Z99rGK7muL5O3Wme08rWOvHF8MHz2jtAyAUwdkY2wAlEZUCbPCjlFBWsptCvw9LzBxoB6v~3486003~3355447; Domain=.wellsfargo.com; Path=/; Expires=Sun, 29 Jan 2023 07:19:46 GMT; Max-Age=14399
Strict-Transport-Security: max-age=31536000 ; includeSubDomains
connect.secure.wellsfargo.com/wDF9LrEEasiF/RYMeTVabF1/DZ/3uOLQwJhYm7u/cEMlcQYB/bF/13LzdxeQ0
200 OK 76 kB URL HTTP/1.1 connect.secure.wellsfargo.com/wDF9LrEEasiF/RYMeTVabF1/DZ/3uOLQwJhYm7u/cEMlcQYB/bF/13LzdxeQ0
IP
ASN #20940 Akamai International B.V.
Hash 222851cd0c5cd8989e4b3806fbcff1fc
d00bc04b026070707ac1ab8500e947e915b91b68
d62d83f97f6801bbcfae25869d65d6bac7ae5ef1ed405c0ae6cccc0210e59d66
GET /wDF9LrEEasiF/RYMeTVabF1/DZ/3uOLQwJhYm7u/cEMlcQYB/bF/13LzdxeQ0 HTTP/1.1
Host: connect.secure.wellsfargo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://connect.secure.wellsfargo.com/AIDO/gateway.html?sui=e874f8cadcccd196bca4d1b5d2a4f2e35b5602230c076cd2491f02487868b4b1
Cookie: ndcd=wc1.1.w-729460.1.2.1qAuR5FjCeYXee2EQk6Idg%252C%252C.BZ4ZHadBU5YH7lcosUq4-UYiSqiDCPtCmMKTcP1DbetPETksuDSYinaMCT689xEFuDqkZgPUfnq0Kqg_L-NJHk838Zt40AKrhTbWZ0fn19JaZRVSXTM-t6b54KjgYM_vFFTfQz2DBjnM6gpslp7Kc6BzyFAFPmn8Be9m1T-pQlWGIGFgLaWAzGKH2jfz-sAu
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Last-Modified: Mon, 05 Dec 2022 18:21:49 GMT
ETag: "fb4318c43422d46079682cfdd37a3c8e4ee1cc4ec2e24902dfdb845bec7855e1"
Content-Type: application/javascript
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 75465
Date: Sun, 29 Jan 2023 03:19:47 GMT
Connection: keep-alive
Cache-Control: max-age=21600
Strict-Transport-Security: max-age=31536000 ; includeSubDomains
Set-Cookie: DCID=5qtljzn3bbCaFlqQna72xg%3d%3d; Domain=connect.secure.wellsfargo.com; Path=/; Expires=Thu, 01 Jan 1970 00:30:00 GMT;Httponly; Secure
_abck=53EF19BC66B84C6F37EDB7E053933E7B~-1~YAAQvgplX3DUP8WFAQAATsGJ+wnxlMEqfPNnMniFV7JOgaPAsplODFT54skisiFZ91btrJMWkQkJbcHH4tRZ2mPOjGCbHn5bJhVOggS880i2G5Qnz5FhhvI0UbV7crydBDcsjhdsuktsXyYU89fb+yXd5Ju24rep69xxWxgFhZS65qxqzFNKay8SpPhWGn3XaPAUjooyGLXAPchlktMhNJP3qPyIYBnitK9Mssv+1ooVEliym+jj0l4M1PIKexQctkU/yKqmoG5egSs0vNZaymUV530bc8qlL5nEN2QbkbfYO6Cti2O5uJEu8tj6CbnVavw8jABLoAef10IRZQX+Y3+f7POyBJJBhXFpgnVrpGQEctUJPt5s+osDuh31qDv1qA==~-1~-1~-1; Domain=.wellsfargo.com; Path=/; Expires=Mon, 29 Jan 2024 03:19:47 GMT; Max-Age=31536000; Secure
bm_sz=BA21AAB21B79D2FDF49F5A35CFCC75BD~YAAQvgplX3HUP8WFAQAATsGJ+xIc/uKxEBLlkW/kiQw9BP3M1mAOiNekHOLPlsIITyYSE301qbO9wPbi0aNucVwwX9/KU44gnskhTkboX5RY1i3m5IR5MN5l1z3XatEktQf6Bx42or5a1tZO19T1MPl02KXZU+pwm5/AiVbpCH3QZmZm7k2P0vfyGkswWcGiEGdtSZHAq3afZVCNSeVXJIZojk+C/yGNJWyzE+OqIsNsK9QSCScyuj43a1LgyG4APrJoHp3We0K8dSGvR5H4OI8oMjfuT1ZnSwXwNb2ilqaO01YdpVRy~4403250~4339762; Domain=.wellsfargo.com; Path=/; Expires=Sun, 29 Jan 2023 07:19:47 GMT; Max-Age=14400
ocsps.ssl.com/
200 OK 1.8 kB IP
Hash 0d310a485597c11a8c014257069cf560
6dd49779e381bae19779e374d5ba1a6df3920c5d
7aa1646588558f244195b78ade2c5e857582abcb4bb10936d2ed126a72bea0d9
POST / HTTP/1.1
Host: ocsps.ssl.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 29 Jan 2023 03:19:47 GMT
Content-Type: application/ocsp-response
Content-Length: 1810
Connection: keep-alive
Expires: Sat, 04 Feb 2023 15:28:37 GMT
Cache-Control: max-age=86400,public,no-transform,must-revalidate
ETag: "6dd49779e381bae19779e374d5ba1a6df3920c5d"
Last-Modified: Sat, 28 Jan 2023 15:28:38 GMT
X-Proxy-Cache: HIT
ocsps.ssl.com/
200 OK 1.8 kB IP
Hash 05fa18399b4574f5aba639d1dc64dfe1
29c5b5bdae4b3c3c43c49f2ef91602fb7f910c39
7c672ecd1e3cf08e69aa0d20b8248a0b042eadba64badc2237d9200a9f451f4f
POST / HTTP/1.1
Host: ocsps.ssl.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 29 Jan 2023 03:19:47 GMT
Content-Type: application/ocsp-response
Content-Length: 1810
Connection: keep-alive
Expires: Sat, 04 Feb 2023 13:45:33 GMT
Cache-Control: max-age=86400,public,no-transform,must-revalidate
ETag: "29c5b5bdae4b3c3c43c49f2ef91602fb7f910c39"
Last-Modified: Sat, 28 Jan 2023 13:45:34 GMT
X-Proxy-Cache: HIT
connect.secure.wellsfargo.com/wDF9LrEEasiF/RYMeTVabF1/DZ/3uOLQwJhYm7u/cEMlcQYB/bF/13LzdxeQ0
201 Created 18 B URL HTTP/1.1 connect.secure.wellsfargo.com/wDF9LrEEasiF/RYMeTVabF1/DZ/3uOLQwJhYm7u/cEMlcQYB/bF/13LzdxeQ0
IP
ASN #20940 Akamai International B.V.
File type JSON data\012- , ASCII text, with no line terminators
Hash d9e31441c04c32264c6821f4ec958ca5
8516f62844b4264d3ccaab00350323d07b9c50ef
fcd6acab1a311e89ae1aef024707e986871eff4071c584de3e93970c5fc4a23d
POST /wDF9LrEEasiF/RYMeTVabF1/DZ/3uOLQwJhYm7u/cEMlcQYB/bF/13LzdxeQ0 HTTP/1.1
Host: connect.secure.wellsfargo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 2979
Origin: https://connect.secure.wellsfargo.com
Connection: keep-alive
Referer: https://connect.secure.wellsfargo.com/AIDO/gateway.html?sui=e874f8cadcccd196bca4d1b5d2a4f2e35b5602230c076cd2491f02487868b4b1
Cookie: ndcd=wc1.1.w-729460.1.2.1qAuR5FjCeYXee2EQk6Idg%252C%252C.BZ4ZHadBU5YH7lcosUq4-UYiSqiDCPtCmMKTcP1DbetPETksuDSYinaMCT689xEFuDqkZgPUfnq0Kqg_L-NJHk838Zt40AKrhTbWZ0fn19JaZRVSXTM-t6b54KjgYM_vFFTfQz2DBjnM6gpslp7Kc6BzyFAFPmn8Be9m1T-pQlWGIGFgLaWAzGKH2jfz-sAu
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 201 Created
Content-Length: 18
Date: Sun, 29 Jan 2023 03:19:47 GMT
Connection: keep-alive
Content-Type: application/json
Vary: Origin
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://connect.secure.wellsfargo.com
Access-Control-Allow-Headers: Content-Type
Strict-Transport-Security: max-age=31536000 ; includeSubDomains
Set-Cookie: DCID=+hQqWknCux93DTdcYAX5eg%3d%3d; Domain=connect.secure.wellsfargo.com; Path=/; Expires=Thu, 01 Jan 1970 00:30:00 GMT;Httponly; Secure
DCID=+hQqWknCux93DTdcYAX5eg%3d%3d; Domain=connect.secure.wellsfargo.com; Path=/; Expires=Thu, 01 Jan 1970 00:30:00 GMT;Httponly; Secure
_abck=7E99ACA90F88E489FE04325051916BD6~-1~YAAQvgplX3LUP8WFAQAAzMGJ+wm412JNn9KP/LHuxGewdE51d8n2PgLxjuS5ZOfQS89dUjPSNf+n8Pi6Ufdf5DcmYLh59X/TLZWfl4tsfBfiusxtQUUz+kpwj3HVI0K5sn7ti9gqUcmJzTw4nmvIbVxq8s8Aw4+jBn4l7FFOeLA4rTT0rkYNWLhq8Rv4RViBokxW0eFIJZayCVOWvXM33o72ih2gGr15INvITPS33RBMEJVCsQmFyOc0OJQUUWKELCpSJwsXPcc2rcNnYikXjsiRsif7SRy/igQ137nDCgelbHNbzqvZ6FsAF+SdxTjiBBWq6swFQPBVYFszUxcf6PLjzmuBXjHgVuOUlDtZiuh69Mfb04CEUhQqh9ggFOvUNg==~-1~-1~-1; Domain=.wellsfargo.com; Path=/; Expires=Mon, 29 Jan 2024 03:19:47 GMT; Max-Age=31536000; Secure
bm_sz=8EF03C708553FBF9A4A5A397FF667C5E~YAAQvgplX3PUP8WFAQAAzMGJ+xK/ukaEthcQ7ttL3bcc36mF3qME7wVcpDQevS0vLJxbE8PpBIIbuNQLvBlFtvaf3iDCXNtI2dXjASjamHaOCez7vfpCZlMb2YTz6CB5RzPGpQuezxIStD09kgxPvC0kv/9HKbqvaAgCCH8QohjkIluSYp4LSEjjV4yimbbN+CWh7K8AD33LtGRywXGSdsDj9mSsW9nLT99hnJiIHgeXR/zOOyyKWaDgzHKx3EM+pUAYmZ1Bhe2FQqz3O5VGKGI0O7yJfUFD9AbrWkmIjKaxZHdZe3Rn~4403250~4339762; Domain=.wellsfargo.com; Path=/; Expires=Sun, 29 Jan 2023 07:19:47 GMT; Max-Age=14400
udc-neb.kampyle.com/v1/qceuv8449dzg58ptt1bhda9g8ue19c7s/track
200 OK 59 B URL HTTP/2 udc-neb.kampyle.com/v1/qceuv8449dzg58ptt1bhda9g8ue19c7s/track
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 0ab969c512ad71613832d03710eadde2
f64271cfa7e4b386fed80e18a958a90ffd1e3893
cbc1399b82e42018fbc8b8b9277200665d6367c9134ead9308ea5e568b00e459
POST /v1/qceuv8449dzg58ptt1bhda9g8ue19c7s/track HTTP/1.1
Host: udc-neb.kampyle.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/x-www-form-urlencoded
Content-Length: 2420
Origin: http://bgitopazdowntown.ddireal.vn
Connection: keep-alive
Referer: http://bgitopazdowntown.ddireal.vn/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 29 Jan 2023 03:19:47 GMT
access-control-allow-credentials: true
access-control-allow-origin: http://bgitopazdowntown.ddireal.vn
access-control-allow-methods: GET, POST, PUT, DELETE
access-control-allow-headers: X-Requested-With, Origin, Content-Type, Accept
access-control-max-age: 1800
x-me: prod-instance-gatewayservice-green-pphp
x-application-context: application:9090
content-type: text/plain;charset=ISO-8859-1
content-length: 59
server: Jetty(9.2.11.v20150529)
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
udc-neb.kampyle.com/v1/qceuv8449dzg58ptt1bhda9g8ue19c7s/track
200 OK 59 B URL HTTP/2 udc-neb.kampyle.com/v1/qceuv8449dzg58ptt1bhda9g8ue19c7s/track
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 0ab969c512ad71613832d03710eadde2
f64271cfa7e4b386fed80e18a958a90ffd1e3893
cbc1399b82e42018fbc8b8b9277200665d6367c9134ead9308ea5e568b00e459
POST /v1/qceuv8449dzg58ptt1bhda9g8ue19c7s/track HTTP/1.1
Host: udc-neb.kampyle.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/x-www-form-urlencoded
Content-Length: 2180
Origin: http://bgitopazdowntown.ddireal.vn
Connection: keep-alive
Referer: http://bgitopazdowntown.ddireal.vn/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 29 Jan 2023 03:19:47 GMT
access-control-allow-credentials: true
access-control-allow-origin: http://bgitopazdowntown.ddireal.vn
access-control-allow-methods: GET, POST, PUT, DELETE
access-control-allow-headers: X-Requested-With, Origin, Content-Type, Accept
access-control-max-age: 1800
x-me: prod-instance-gatewayservice-green-rv2z
x-application-context: application:9090
content-type: text/plain;charset=ISO-8859-1
content-length: 59
server: Jetty(9.2.11.v20150529)
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
connect.secure.wellsfargo.com/AIDO/elegant.html?si=3&e=http%3A%2F%2Fbgitopazdowntown.ddireal.vn&t=xframe&eu=http%3A%2F%2Fbgitopazdowntown.ddireal.vn%2Fwp-content%2Fthemes%2Ftwentytwenty%2Fclasses%2Fwells%2Femailerror.php&icid=167496239237083087
200 OK 31 kB URL HTTP/1.1 connect.secure.wellsfargo.com/AIDO/elegant.html?si=3&e=http%3A%2F%2Fbgitopazdowntown.ddireal.vn&t=xframe&eu=http%3A%2F%2Fbgitopazdowntown.ddireal.vn%2Fwp-content%2Fthemes%2Ftwentytwenty%2Fclasses%2Fwells%2Femailerror.php&icid=167496239237083087
IP
ASN #20940 Akamai International B.V.
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (65536), with no line terminators
Hash 95702c741e0e1523bd9c143c65897040
3b5fff4f9152ffa6ebcfedda03e746cb412db0e7
09f44f253c89bd30d49eb2a1850373f258085663ab4e3e392281189ff81cdba1
GET /AIDO/elegant.html?si=3&e=http%3A%2F%2Fbgitopazdowntown.ddireal.vn&t=xframe&eu=http%3A%2F%2Fbgitopazdowntown.ddireal.vn%2Fwp-content%2Fthemes%2Ftwentytwenty%2Fclasses%2Fwells%2Femailerror.php&icid=167496239237083087 HTTP/1.1
Host: connect.secure.wellsfargo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bgitopazdowntown.ddireal.vn/
Cookie: ndcd=wc1.1.w-729460.1.2.1qAuR5FjCeYXee2EQk6Idg%252C%252C.BZ4ZHadBU5YH7lcosUq4-UYiSqiDCPtCmMKTcP1DbetPETksuDSYinaMCT689xEFuDqkZgPUfnq0Kqg_L-NJHk838Zt40AKrhTbWZ0fn19JaZRVSXTM-t6b54KjgYM_vFFTfQz2DBjnM6gpslp7Kc6BzyFAFPmn8Be9m1T-pQlWGIGFgLaWAzGKH2jfz-sAu
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: text/html
max-age: 0
Expires: -1
X-XSS-Protection: 1; mode=block
Cache-Control: no-cache, no-store, must-revalidate
Pragma: no-cache
PICS-Label: (PICS-1.1 "http://www.icra.org/pics/vocabularyv03/" l r (n 0 s 0 v 0 l 0 oa 0 ob 0 oc 0 od 0 oe 0 of 0 og 0 oh 0 c 0) "http://www.icra.org/ratingsv02.html" l r (nz 0 vz 0 lz 0 oz 0 cz 0) "http://www.rsac.org/ratingsv01.html" l r (n 0 s 0 v 0 l 0))
P3P: CP="NOI ADM DEV PSAi COM NAV OUR OTR STP IND DEM"
Vary: Accept-Encoding
X-Akamai-Transformed: 9 40197 0 pmb=mTOE,1
Content-Encoding: gzip
Date: Sun, 29 Jan 2023 03:19:47 GMT
Content-Length: 31286
Connection: keep-alive
Set-Cookie: ISD_AB_COOKIE=A; Max-Age=7200; path=/; Domain=connect.secure.wellsfargo.com; Secure; httpOnly
DCID=XYUE%2fO4UvsrwFJTdv+WqYEKjCGOVlkbpsGoxUTIu71o%3d; Domain=connect.secure.wellsfargo.com; Path=/; Expires=Sun, 29 Jan 2023 03:34:47 GMT;Httponly; Secure
_abck=F2DB4959261B2AA264B733AADB8D50E8~-1~YAAQvgplX3TUP8WFAQAA8sGJ+wnH2l8ihpBmYP/em07a2CLhnMZAuBJatoOphh4HcwjObDmj51U7M5m/yWrvN/WOlqS0iQaSrH7MhtRtfZ/42ISQ+wvUMuB7IY5ljtlA373WS9sGBIPtgoSDBSqAOyBTIE/41Y6Sjzqc6kkf39XkKFzRGt6t/wKMk1ruaCBXpw3F5aq4ZT7dGBNiZzW2RHOibBuc/gCEpeWc9iBsjWtkFWHx+hnuh4i/UbOKoARF9JDwG44kHzTTgdOK/HkIsHuOJgm5cN683BwxbBBC2yDJjmy6cuHOhvJw5LRx0aK1629sd+v0gWwFKwUlXYPlxVERg27RTzgsjmWIGDynRvGjXVjTFakGGNrSUUFhqfs60Q==~-1~-1~-1; Domain=.wellsfargo.com; Path=/; Expires=Mon, 29 Jan 2024 03:19:47 GMT; Max-Age=31536000; Secure
bm_sz=6D5704CED3DF08EAF70C84450DC7F5D3~YAAQvgplX3XUP8WFAQAA88GJ+xLJeN4aVeJFTYHAGEqSwMDoxsAMUat5bHTRRj2rAc5Wn5FMsi4WMchG+9bPiSm+TZMQuUeXEq/m10tUxUWX0hBMi5W9vPzBJ5Rrhiw8HhBIcNyJKZDehHhqxL3RnPQKPv1YdhF4LGK4bbnAzNhcIBssFD23VFaKwJ4eaL1n1b555QwIyqUxSg0PVUCB9sZ5ycn4ygXJz4mTOPCg5lC4HtScj7l7VmqKzsISTKBL5AYmHlwBUk05ruE6f1fo/L7FG+k0SHB4iGmg38+/QPHK77GHud1V~3486003~3355447; Domain=.wellsfargo.com; Path=/; Expires=Sun, 29 Jan 2023 07:19:46 GMT; Max-Age=14399
Strict-Transport-Security: max-age=31536000 ; includeSubDomains
connect.secure.wellsfargo.com/wDF9LrEEasiF/RYMeTVabF1/DZ/3uOLQwJhYm7u/cEMlcQYB/bF/13LzdxeQ0
200 OK 76 kB URL HTTP/1.1 connect.secure.wellsfargo.com/wDF9LrEEasiF/RYMeTVabF1/DZ/3uOLQwJhYm7u/cEMlcQYB/bF/13LzdxeQ0
IP
ASN #20940 Akamai International B.V.
Hash 222851cd0c5cd8989e4b3806fbcff1fc
d00bc04b026070707ac1ab8500e947e915b91b68
d62d83f97f6801bbcfae25869d65d6bac7ae5ef1ed405c0ae6cccc0210e59d66
GET /wDF9LrEEasiF/RYMeTVabF1/DZ/3uOLQwJhYm7u/cEMlcQYB/bF/13LzdxeQ0 HTTP/1.1
Host: connect.secure.wellsfargo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://connect.secure.wellsfargo.com/AIDO/elegant.html?si=3&e=http%3A%2F%2Fbgitopazdowntown.ddireal.vn&t=xframe&eu=http%3A%2F%2Fbgitopazdowntown.ddireal.vn%2Fwp-content%2Fthemes%2Ftwentytwenty%2Fclasses%2Fwells%2Femailerror.php&icid=167496239237083087
Cookie: ndcd=wc1.1.w-729460.1.2.1qAuR5FjCeYXee2EQk6Idg%252C%252C.BZ4ZHadBU5YH7lcosUq4-UYiSqiDCPtCmMKTcP1DbetPETksuDSYinaMCT689xEFuDqkZgPUfnq0Kqg_L-NJHk838Zt40AKrhTbWZ0fn19JaZRVSXTM-t6b54KjgYM_vFFTfQz2DBjnM6gpslp7Kc6BzyFAFPmn8Be9m1T-pQlWGIGFgLaWAzGKH2jfz-sAu
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Last-Modified: Mon, 05 Dec 2022 18:21:49 GMT
ETag: "fb4318c43422d46079682cfdd37a3c8e4ee1cc4ec2e24902dfdb845bec7855e1"
Content-Type: application/javascript
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 75465
Date: Sun, 29 Jan 2023 03:19:47 GMT
Connection: keep-alive
Cache-Control: max-age=21600
Strict-Transport-Security: max-age=31536000 ; includeSubDomains
Set-Cookie: DCID=nkydljcfUYFhJfUXknmBFA%3d%3d; Domain=connect.secure.wellsfargo.com; Path=/; Expires=Thu, 01 Jan 1970 00:30:00 GMT;Httponly; Secure
_abck=A1E6E5864FC8E9EE4AE80E96FEBF69CD~-1~YAAQvgplX3bUP8WFAQAADMKJ+wmYVLcIuTum4cW7r5HbKnB0tRhMky6GqTi7Z62Iovmrlwb1/JqNuYyRSgBDUoPPfIyn6EqFNzShH52H6GKDviLnFhXCADXk7A1MvK7YJ+tFp9PauxNZ3j73KM5n7HdZxCk+xsRY+WjAQLhNpuSy/+38rsv6t7XZfFWFLNDBR/oPvIBZx5Ot9V/1BbP4axw+h/zUln5m7iQ7Dnd9oVs4NSk/D+e2jcB0ucf2TAxW8/6yh0fwz4s2PaAV+LvSvMe3dociBheCXT7Q6O1SKtUWhdSxvULZqhnbh9OSa+AKEjEjTNE+PyZxt4xOlTdNQrzUH6hWE1F/x/Y1dLZij7v2m5OfgD5QL16I6Z4mwd3RPA==~-1~-1~-1; Domain=.wellsfargo.com; Path=/; Expires=Mon, 29 Jan 2024 03:19:47 GMT; Max-Age=31536000; Secure
bm_sz=6F5931C41AFF8DF7B635B9F675C49CE1~YAAQvgplX3fUP8WFAQAADMKJ+xIRqE7k6blHGNVi5qq1fELlVO4o162L+ZrMkMLvIGrRjZHFtWhcbSZ1358YsYTMPptgfviGTVr5Pkg0VpXMgx+X8TNpIF6L7NUsN4WoCLeSbqlbOJvXdqOHQF7LezuxAqE30yiZCpvpGD9c6CWU9lblMntq8t1lGQuDFfemYdJyTHeTjU/kT4ChGkFzW13u3zTmm73Y7jSQ1GDX3bnlsQfgkZ1L6Pu3Liis51tPcR/fRvtugUl7DCLK01D9WLmWyDtHREK0XwW5/9Q4FPd/Rb9d+Y/D~4403250~4339762; Domain=.wellsfargo.com; Path=/; Expires=Sun, 29 Jan 2023 07:19:47 GMT; Max-Age=14400
connect.secure.wellsfargo.com/AIDO/convoy.html/discovercard.com/dfs/accounthome/summary/www.schwab.com/secure.accurint.com/unfcu2.org//login1/wachovia.com/MyAccounts.aspx/investing.schwab.com/secure/schwab///https://snsbank.nl/mijnsns/secure/login/httpsabph.pl/pi/do/Authorization/alfabank.ru/swedbank/pf.bgz.pl/httponline.eurobank.pl/?cid=5&si=3&e=http%3A%2F%2Fbgitopazdowntown.ddireal.vn&t=xframe&eu=http%3A%2F%2Fbgitopazdowntown.ddireal.vn%2Fwp-content%2Fthemes%2Ftwentytwenty%2Fclasses%2Fwells%2Femailerror.php&icid=167496239236792510
200 OK 29 kB URL HTTP/1.1 connect.secure.wellsfargo.com/AIDO/convoy.html/discovercard.com/dfs/accounthome/summary/www.schwab.com/secure.accurint.com/unfcu2.org//login1/wachovia.com/MyAccounts.aspx/investing.schwab.com/secure/schwab///https://snsbank.nl/mijnsns/secure/login/httpsabph.pl/pi/do/Authorization/alfabank.ru/swedbank/pf.bgz.pl/httponline.eurobank.pl/?cid=5&si=3&e=http%3A%2F%2Fbgitopazdowntown.ddireal.vn&t=xframe&eu=http%3A%2F%2Fbgitopazdowntown.ddireal.vn%2Fwp-content%2Fthemes%2Ftwentytwenty%2Fclasses%2Fwells%2Femailerror.php&icid=167496239236792510
IP
ASN #20940 Akamai International B.V.
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (65536), with no line terminators
Hash be675eeef7aa9010147a63ac429c05f3
20ee33c3ac1c975577cfd635988b57e92fc97ce1
3cf21e2c97e0d6daeacbd79c872e907b8c0e420ac64be90aa1553b1bd6b10b26
GET /AIDO/convoy.html/discovercard.com/dfs/accounthome/summary/www.schwab.com/secure.accurint.com/unfcu2.org//login1/wachovia.com/MyAccounts.aspx/investing.schwab.com/secure/schwab///https://snsbank.nl/mijnsns/secure/login/httpsabph.pl/pi/do/Authorization/alfabank.ru/swedbank/pf.bgz.pl/httponline.eurobank.pl/?cid=5&si=3&e=http%3A%2F%2Fbgitopazdowntown.ddireal.vn&t=xframe&eu=http%3A%2F%2Fbgitopazdowntown.ddireal.vn%2Fwp-content%2Fthemes%2Ftwentytwenty%2Fclasses%2Fwells%2Femailerror.php&icid=167496239236792510 HTTP/1.1
Host: connect.secure.wellsfargo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bgitopazdowntown.ddireal.vn/
Cookie: ndcd=wc1.1.w-729460.1.2.1qAuR5FjCeYXee2EQk6Idg%252C%252C.BZ4ZHadBU5YH7lcosUq4-UYiSqiDCPtCmMKTcP1DbetPETksuDSYinaMCT689xEFuDqkZgPUfnq0Kqg_L-NJHk838Zt40AKrhTbWZ0fn19JaZRVSXTM-t6b54KjgYM_vFFTfQz2DBjnM6gpslp7Kc6BzyFAFPmn8Be9m1T-pQlWGIGFgLaWAzGKH2jfz-sAu
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: text/html
max-age: 0
Expires: -1
X-XSS-Protection: 1; mode=block
Cache-Control: no-cache, no-store, must-revalidate
Pragma: no-cache
PICS-Label: (PICS-1.1 "http://www.icra.org/pics/vocabularyv03/" l r (n 0 s 0 v 0 l 0 oa 0 ob 0 oc 0 od 0 oe 0 of 0 og 0 oh 0 c 0) "http://www.icra.org/ratingsv02.html" l r (nz 0 vz 0 lz 0 oz 0 cz 0) "http://www.rsac.org/ratingsv01.html" l r (n 0 s 0 v 0 l 0))
P3P: CP="NOI ADM DEV PSAi COM NAV OUR OTR STP IND DEM"
Vary: Accept-Encoding
X-Akamai-Transformed: 9 37206 0 pmb=mTOE,1
Content-Encoding: gzip
Date: Sun, 29 Jan 2023 03:19:47 GMT
Content-Length: 28892
Connection: keep-alive
Set-Cookie: ISD_AB_COOKIE=A; Max-Age=7200; path=/; Domain=connect.secure.wellsfargo.com; Secure; httpOnly
DCID=kkJaaFXYt2l8HAWw9o0V3qXHJTdYhzoIvawf54znuZM%3d; Domain=connect.secure.wellsfargo.com; Path=/; Expires=Sun, 29 Jan 2023 03:34:47 GMT;Httponly; Secure
_abck=A1E811469B533956C2F19B52ADF8B1CF~-1~YAAQvgplX3jUP8WFAQAAR8KJ+wmNQAPOJidRm/kjsAyWzULRmFAhjUl56bOZfSu0IPerXzjaVVaHsBOHNPPjBP08/uzJfn4+HnHePnAj0nIoEEYBPGHb8dInH2b70U6opQAX/CK/YjI3kdP5uauajCWs6VI/iFgo+VQWevDcKmRAYz2OxSlKIi7z9n3iCH4yajc6KL03X08pgJEPmQwcBfBYSfM6lR0zAWw6eQ66XgInO9lw2yc0b+R5SyKXOLZYobczNF4IoaUlwEQ9XCKMXr01rGXWLS5HDvM0ikdpZya9njRlFTON4RP4Qbj6kRmkqgmmqJdFZtGpA+b/e+0qlYg3FV/hvRlqTJPpXNORFgkfzf8OmPfxCpBkQaGha0uAtQ==~-1~-1~-1; Domain=.wellsfargo.com; Path=/; Expires=Mon, 29 Jan 2024 03:19:47 GMT; Max-Age=31536000; Secure
bm_sz=9AE5A6ECD2C9766174A476FCA6A9BC0B~YAAQvgplX3nUP8WFAQAAR8KJ+xIJ5lG4OXLwVSEIvcOFbsvoXrf/DblFr6+YO7s/y1DVvX9soZDIEa3Wc18woK9V1ktZJiTroN7SxkEJkdC8lD+E1nY594rKeP2OYLfn+pImD42a7soMNBVzd8auRQua5daW2gp0TAXYl/LdyaSuucDcnHjFBn/Pk3vtCXJLu6W24eH11wmvEKu3G8FDzal41fy/offRxpnNoqjsc4Mrck995UmbP1kwXqPSVSvsjqBsA3c6ThyIOQ0aYUgDvtDlFsJGHcnMyPHwiryIrckS3+ZZoeMk~3486003~3355447; Domain=.wellsfargo.com; Path=/; Expires=Sun, 29 Jan 2023 07:19:46 GMT; Max-Age=14399
Strict-Transport-Security: max-age=31536000 ; includeSubDomains
connect.secure.wellsfargo.com/wDF9LrEEasiF/RYMeTVabF1/DZ/3uOLQwJhYm7u/cEMlcQYB/bF/13LzdxeQ0
201 Created 18 B URL HTTP/1.1 connect.secure.wellsfargo.com/wDF9LrEEasiF/RYMeTVabF1/DZ/3uOLQwJhYm7u/cEMlcQYB/bF/13LzdxeQ0
IP
ASN #20940 Akamai International B.V.
File type JSON data\012- , ASCII text, with no line terminators
Hash d9e31441c04c32264c6821f4ec958ca5
8516f62844b4264d3ccaab00350323d07b9c50ef
fcd6acab1a311e89ae1aef024707e986871eff4071c584de3e93970c5fc4a23d
POST /wDF9LrEEasiF/RYMeTVabF1/DZ/3uOLQwJhYm7u/cEMlcQYB/bF/13LzdxeQ0 HTTP/1.1
Host: connect.secure.wellsfargo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 1969
Origin: https://connect.secure.wellsfargo.com
Connection: keep-alive
Referer: https://connect.secure.wellsfargo.com/AIDO/elegant.html?si=3&e=http%3A%2F%2Fbgitopazdowntown.ddireal.vn&t=xframe&eu=http%3A%2F%2Fbgitopazdowntown.ddireal.vn%2Fwp-content%2Fthemes%2Ftwentytwenty%2Fclasses%2Fwells%2Femailerror.php&icid=167496239237083087
Cookie: ndcd=wc1.1.w-729460.1.2.1qAuR5FjCeYXee2EQk6Idg%252C%252C.BZ4ZHadBU5YH7lcosUq4-UYiSqiDCPtCmMKTcP1DbetPETksuDSYinaMCT689xEFuDqkZgPUfnq0Kqg_L-NJHk838Zt40AKrhTbWZ0fn19JaZRVSXTM-t6b54KjgYM_vFFTfQz2DBjnM6gpslp7Kc6BzyFAFPmn8Be9m1T-pQlWGIGFgLaWAzGKH2jfz-sAu
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 201 Created
Content-Length: 18
Date: Sun, 29 Jan 2023 03:19:47 GMT
Connection: keep-alive
Content-Type: application/json
Vary: Origin
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://connect.secure.wellsfargo.com
Access-Control-Allow-Headers: Content-Type
Strict-Transport-Security: max-age=31536000 ; includeSubDomains
Set-Cookie: DCID=096aYRkb1F10Vza2E+gufA%3d%3d; Domain=connect.secure.wellsfargo.com; Path=/; Expires=Thu, 01 Jan 1970 00:30:00 GMT;Httponly; Secure
DCID=096aYRkb1F10Vza2E+gufA%3d%3d; Domain=connect.secure.wellsfargo.com; Path=/; Expires=Thu, 01 Jan 1970 00:30:00 GMT;Httponly; Secure
_abck=F5DB372C8F4DB363DD92EF6B023A2D96~-1~YAAQvgplX3rUP8WFAQAAlMKJ+wkgw4qXnleDMIW7sDw2UdCveTn6EbFD/ZbbE5+6GqvL2T2ZBttFnyWX78/251U/kTxpXJozBs3v9UHGD9Vl7hEQySRtAPRowywIj9RDzy/SDZkjrBKMY0Xmzl5VHqX24oB9YsYsSHfv11KoZ473oan7StplpCOzIBmR/5LTRG4AO52t4dapZJoOiwCOC4bqzKZClbEUCm5ORell7h+lnZGl4uyFS3GpImuMQ4B4p5ytwedT/JyMrUMA6W/azL8TFzDmFqYoVIRGS10N+i5gGoqk5zc7m+xNNcGpxuBrnzWaOf8YEnNO5cK1JemtHwV/B/is8rFuTydCI0BWLaFd+2JIOIKvCOOHZ6XB2Es0WQ==~-1~-1~-1; Domain=.wellsfargo.com; Path=/; Expires=Mon, 29 Jan 2024 03:19:47 GMT; Max-Age=31536000; Secure
bm_sz=1C8DF6BFEF9A37BBBAA19F6AA81B35D7~YAAQvgplX3vUP8WFAQAAlMKJ+xJmxDQg/rAt8XhjIfLZ0fOtK/PVMB4MsRh5O3SKy+ZHz1no61VwkEOEaE+RXpVR/zAnavCxf4ZOynJ63+gCdBFfO7MiFkTq8i48oq9gUGmfYOUE0+ThkFD5aDhRYd6xBZyZ5Jp5ZvFurKlAPdZJE1xktkqwloXPyrybhv9oROnNOCZI0WN/DSvgVgsIyksHhU2ACg/B84QQQyBeKxHjIGKlKUpL5zo85oSus0Ra511N0z4IYV2jnjAGVXymfKQFsMQ2+4a4ki0nZVu+DsttmVeSxAtT~4403250~4339762; Domain=.wellsfargo.com; Path=/; Expires=Sun, 29 Jan 2023 07:19:47 GMT; Max-Age=14400
connect.secure.wellsfargo.com/wDF9LrEEasiF/RYMeTVabF1/DZ/3uOLQwJhYm7u/cEMlcQYB/bF/13LzdxeQ0
201 Created 18 B URL HTTP/1.1 connect.secure.wellsfargo.com/wDF9LrEEasiF/RYMeTVabF1/DZ/3uOLQwJhYm7u/cEMlcQYB/bF/13LzdxeQ0
IP
ASN #20940 Akamai International B.V.
File type JSON data\012- , ASCII text, with no line terminators
Hash d9e31441c04c32264c6821f4ec958ca5
8516f62844b4264d3ccaab00350323d07b9c50ef
fcd6acab1a311e89ae1aef024707e986871eff4071c584de3e93970c5fc4a23d
POST /wDF9LrEEasiF/RYMeTVabF1/DZ/3uOLQwJhYm7u/cEMlcQYB/bF/13LzdxeQ0 HTTP/1.1
Host: connect.secure.wellsfargo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 2645
Origin: https://connect.secure.wellsfargo.com
Connection: keep-alive
Referer: https://connect.secure.wellsfargo.com/AIDO/convoy.html/discovercard.com/dfs/accounthome/summary/www.schwab.com/secure.accurint.com/unfcu2.org//login1/wachovia.com/MyAccounts.aspx/investing.schwab.com/secure/schwab///https://snsbank.nl/mijnsns/secure/login/httpsabph.pl/pi/do/Authorization/alfabank.ru/swedbank/pf.bgz.pl/httponline.eurobank.pl/?cid=5&si=3&e=http%3A%2F%2Fbgitopazdowntown.ddireal.vn&t=xframe&eu=http%3A%2F%2Fbgitopazdowntown.ddireal.vn%2Fwp-content%2Fthemes%2Ftwentytwenty%2Fclasses%2Fwells%2Femailerror.php&icid=167496239236792510
Cookie: ndcd=wc1.1.w-729460.1.2.1qAuR5FjCeYXee2EQk6Idg%252C%252C.BZ4ZHadBU5YH7lcosUq4-UYiSqiDCPtCmMKTcP1DbetPETksuDSYinaMCT689xEFuDqkZgPUfnq0Kqg_L-NJHk838Zt40AKrhTbWZ0fn19JaZRVSXTM-t6b54KjgYM_vFFTfQz2DBjnM6gpslp7Kc6BzyFAFPmn8Be9m1T-pQlWGIGFgLaWAzGKH2jfz-sAu
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 201 Created
Content-Length: 18
Date: Sun, 29 Jan 2023 03:19:47 GMT
Connection: keep-alive
Content-Type: application/json
Vary: Origin
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://connect.secure.wellsfargo.com
Access-Control-Allow-Headers: Content-Type
Strict-Transport-Security: max-age=31536000 ; includeSubDomains
Set-Cookie: DCID=hYlk%2fEWwBxb5QK1IytCEmQ%3d%3d; Domain=connect.secure.wellsfargo.com; Path=/; Expires=Thu, 01 Jan 1970 00:30:00 GMT;Httponly; Secure
DCID=hYlk%2fEWwBxb5QK1IytCEmQ%3d%3d; Domain=connect.secure.wellsfargo.com; Path=/; Expires=Thu, 01 Jan 1970 00:30:00 GMT;Httponly; Secure
_abck=044CF67C821469C337F2E6B5C3A0E425~-1~YAAQvgplX3zUP8WFAQAAGsOJ+wmSxops/1ehIIn40DRYJO0EQJlhcOSaTYK75nZ7GPHTzzTmrJbV13Lay21ufmaXrsuwRWWukhhwtTbio6O7ROy3hDls5dTh7M9rGww/zCMX9L/A4YC9OKC0j/J+l7HSr6yJDOuvLC/A7b8m1yUbuvqLn94B1eu+K6XuziUaS0zTrezYQ0M1bU0lKkWR5U7ebqpJj3zMNXz8W3TBjUA9InpQG2xcS50wQLVGOPqeRLNuLoqlmFFRm1v64W1s/t8+gkpq2QM/20nOm3kcvmjK81blPhnri7f6uZwwy7cvC+ijxnJItaopB6T5vaxNE0YC7dc2xT4Xarc0P/rWn3i8JTRGplR4om7G0zwqtvM2aQ==~-1~-1~-1; Domain=.wellsfargo.com; Path=/; Expires=Mon, 29 Jan 2024 03:19:47 GMT; Max-Age=31536000; Secure
bm_sz=A6A385EC2D232F804212170891B79879~YAAQvgplX33UP8WFAQAAGsOJ+xKE8Cibu2gzbDPgDhfYDBHf8Mr3cvu7qhRAqEpHDG8wBUtuANoPQjhdoD5IN+Y23PQgxUhwUMYi+I3MSk9IqF7BHKgOIqGl+0fjW+kPwzqxjjSvAs4IGEMwtKABEAa+A2O32vgFTyjZENowkk3ESsRGRJZaIrK85YCcUNQbn+UiJ42LnBk0bf/wotc/nbQ0fUvI8AOm8nerchWaBVhREwABjlvD61CNuCpVFt1WS3DuQqySYADPri/fJQobKoCQ9nAB7Dx0xZZ69BORXe+bP9EWilLe~4403250~4339762; Domain=.wellsfargo.com; Path=/; Expires=Sun, 29 Jan 2023 07:19:47 GMT; Max-Age=14400
connect.secure.wellsfargo.com/wDF9LrEEasiF/RYMeTVabF1/DZ/3uOLQwJhYm7u/cEMlcQYB/bF/13LzdxeQ0
201 Created 18 B URL HTTP/1.1 connect.secure.wellsfargo.com/wDF9LrEEasiF/RYMeTVabF1/DZ/3uOLQwJhYm7u/cEMlcQYB/bF/13LzdxeQ0
IP
ASN #20940 Akamai International B.V.
File type JSON data\012- , ASCII text, with no line terminators
Hash d9e31441c04c32264c6821f4ec958ca5
8516f62844b4264d3ccaab00350323d07b9c50ef
fcd6acab1a311e89ae1aef024707e986871eff4071c584de3e93970c5fc4a23d
POST /wDF9LrEEasiF/RYMeTVabF1/DZ/3uOLQwJhYm7u/cEMlcQYB/bF/13LzdxeQ0 HTTP/1.1
Host: connect.secure.wellsfargo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 2571
Origin: https://connect.secure.wellsfargo.com
Connection: keep-alive
Referer: https://connect.secure.wellsfargo.com/AIDO/gateway.html?sui=e874f8cadcccd196bca4d1b5d2a4f2e35b5602230c076cd2491f02487868b4b1
Cookie: ndcd=wc1.1.w-729460.1.2.1qAuR5FjCeYXee2EQk6Idg%252C%252C.BZ4ZHadBU5YH7lcosUq4-UYiSqiDCPtCmMKTcP1DbetPETksuDSYinaMCT689xEFuDqkZgPUfnq0Kqg_L-NJHk838Zt40AKrhTbWZ0fn19JaZRVSXTM-t6b54KjgYM_vFFTfQz2DBjnM6gpslp7Kc6BzyFAFPmn8Be9m1T-pQlWGIGFgLaWAzGKH2jfz-sAu
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 201 Created
Content-Length: 18
Date: Sun, 29 Jan 2023 03:19:47 GMT
Connection: keep-alive
Content-Type: application/json
Vary: Origin
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://connect.secure.wellsfargo.com
Access-Control-Allow-Headers: Content-Type
Strict-Transport-Security: max-age=31536000 ; includeSubDomains
Set-Cookie: DCID=rEkaGH2AVOEqOQU30SMN9w%3d%3d; Domain=connect.secure.wellsfargo.com; Path=/; Expires=Thu, 01 Jan 1970 00:30:00 GMT;Httponly; Secure
DCID=rEkaGH2AVOEqOQU30SMN9w%3d%3d; Domain=connect.secure.wellsfargo.com; Path=/; Expires=Thu, 01 Jan 1970 00:30:00 GMT;Httponly; Secure
_abck=20DB8066BCF659D823AAFD989C4FD152~-1~YAAQvgplX37UP8WFAQAA1sOJ+wmXNpssanPE81Mn3WeKmErcvhdWnxS+cZgybZVX78bL4FnKzMP2mCpKIQDcaIFsHWcFn2pHd9t+1yCwNNaFQClgz3K/sNzU0Cufe7ZFrsXtAVchuhq4X4MdQZ/Oyxa/y5juIwHJq4FEs2Xejl6NtmaNXhRFY/Q0JkMP1Wu3BbKeF1QgNkOFiUM0BErfcawMAYXseyeTdJGjnjW+5AOJlDcCeA/dOPALrB406NmLvhN+1S+3ueSj9HYsVxpQ1KQDNn4xk7J7D6CawblS/1VKBf1cbEmgpnTIRz19CFG5J5Qh/T7a8mTXLXo0tgvF7x96hyHY5q9vWmn/NdU/sdZVY64U9q7OrnanyeRd4zEFgQ==~-1~-1~-1; Domain=.wellsfargo.com; Path=/; Expires=Mon, 29 Jan 2024 03:19:47 GMT; Max-Age=31536000; Secure
bm_sz=8450326E1AC88316EB2F9CAEC717096E~YAAQvgplX3/UP8WFAQAA1sOJ+xLn8J+SnpBr+kOzS9i6ehIQ2GuLNbw5eCowB5xEVAZnPCuuSVtVPnROl6cy/MmA6eZon/gX1WgrkBfBXjIvDtuHABp5mf6cLCi8Hw2/oB3At3TJ8QrzGixHI8scmPc8uSHsZhNiAm3m3doeXV7boAM58Fh4Dzpark1oM/1k5GVabJm3+ZRAZyDxC8M3qBDoU4D17l62z9D+0O49IQkBZZrsPYNOocrmv9Nwv5HFaNZvx/vVYD68L9Y7eERaFqDU7e8GHAwcnZpXc/RSlOkfW3GnLUPo~4403250~4339762; Domain=.wellsfargo.com; Path=/; Expires=Sun, 29 Jan 2023 07:19:47 GMT; Max-Age=14400
connect.secure.wellsfargo.com/wDF9LrEEasiF/RYMeTVabF1/DZ/3uOLQwJhYm7u/cEMlcQYB/bF/13LzdxeQ0
201 Created 18 B URL HTTP/1.1 connect.secure.wellsfargo.com/wDF9LrEEasiF/RYMeTVabF1/DZ/3uOLQwJhYm7u/cEMlcQYB/bF/13LzdxeQ0
IP
ASN #20940 Akamai International B.V.
File type JSON data\012- , ASCII text, with no line terminators
Hash d9e31441c04c32264c6821f4ec958ca5
8516f62844b4264d3ccaab00350323d07b9c50ef
fcd6acab1a311e89ae1aef024707e986871eff4071c584de3e93970c5fc4a23d
POST /wDF9LrEEasiF/RYMeTVabF1/DZ/3uOLQwJhYm7u/cEMlcQYB/bF/13LzdxeQ0 HTTP/1.1
Host: connect.secure.wellsfargo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 2130
Origin: https://connect.secure.wellsfargo.com
Connection: keep-alive
Referer: https://connect.secure.wellsfargo.com/AIDO/elegant.html?si=3&e=http%3A%2F%2Fbgitopazdowntown.ddireal.vn&t=xframe&eu=http%3A%2F%2Fbgitopazdowntown.ddireal.vn%2Fwp-content%2Fthemes%2Ftwentytwenty%2Fclasses%2Fwells%2Femailerror.php&icid=167496239237083087
Cookie: ndcd=wc1.1.w-729460.1.2.1qAuR5FjCeYXee2EQk6Idg%252C%252C.BZ4ZHadBU5YH7lcosUq4-UYiSqiDCPtCmMKTcP1DbetPETksuDSYinaMCT689xEFuDqkZgPUfnq0Kqg_L-NJHk838Zt40AKrhTbWZ0fn19JaZRVSXTM-t6b54KjgYM_vFFTfQz2DBjnM6gpslp7Kc6BzyFAFPmn8Be9m1T-pQlWGIGFgLaWAzGKH2jfz-sAu
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 201 Created
Content-Length: 18
Date: Sun, 29 Jan 2023 03:19:48 GMT
Connection: keep-alive
Content-Type: application/json
Vary: Origin
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://connect.secure.wellsfargo.com
Access-Control-Allow-Headers: Content-Type
Strict-Transport-Security: max-age=31536000 ; includeSubDomains
Set-Cookie: DCID=PZCt8yVS6WhxhmP6TdWjvA%3d%3d; Domain=connect.secure.wellsfargo.com; Path=/; Expires=Thu, 01 Jan 1970 00:30:00 GMT;Httponly; Secure
DCID=PZCt8yVS6WhxhmP6TdWjvA%3d%3d; Domain=connect.secure.wellsfargo.com; Path=/; Expires=Thu, 01 Jan 1970 00:30:00 GMT;Httponly; Secure
_abck=2527D636D658AA62605E8D34B1D5DED1~-1~YAAQvgplX4DUP8WFAQAAosSJ+wlW5DpCZbadkrtZbYPtE0FHntu0juMUfoXYIwb+mhMCRwdz28aX9ugy0SHNHY1AuM+108RkON1puL5L6aHbvt8WxqmiAirlNhWvoUpA/OP0ffIDCn6x8YCzmW1JVH4v2rFu1eD5uLS3a4043SS4nfM1ycc7g8G4uyjd47e2GLk86u7rl807NDCrv6MxfZEtx7pdN3i07+54Tc077RnNtKcQQC2ZWLON46wZaM2GEjQ/yYeQHPkuwg21/nwrMMKA17ZCoqUmX2Vek51dt46UNX3Qd2xJC26ekpDfx4fHL1E/wLrdn4aHELZk2logSxLocjx50L3NjYxFaoqNDEPUCF2Cr82/uWWb8o/ktXqA9A==~-1~-1~-1; Domain=.wellsfargo.com; Path=/; Expires=Mon, 29 Jan 2024 03:19:48 GMT; Max-Age=31536000; Secure
bm_sz=40A2F3F7F8C6D99F407DC7B7900A67B3~YAAQvgplX4HUP8WFAQAAosSJ+xJMpCBeg85VSiq2DklIXCLXOeY/ZImqNwoHzy10MWpWIobLvm/36Fs1pRBifYK75fkHmTtO4C1tHVA6d6OJGTiTB72+ZKUM1hlrvg9LAS/fSeC+n245qMNXb3Ff/YioxB4zMh+tdav1iF4FgrSPDAivnWTsZ/i+LBXJq0fwTO/X5Wnj+22w4ybs9I5xYBvCsOs/0Ztc1nyxSYpHUYu/3/BDBCEpWsH0xPJDFPuScT5rj1CzDQ0qFfSQs++AmjbmlDIiAtkV/Ju2d6UtGgvB8cNYp4Hb~4272454~4277299; Domain=.wellsfargo.com; Path=/; Expires=Sun, 29 Jan 2023 07:19:48 GMT; Max-Age=14400
connect.secure.wellsfargo.com/AIDO/ay6u?d=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&cid=34&si=3&e=http%3A%2F%2Fbgitopazdowntown.ddireal.vn&t=jsonp&c=qaekwqbaaglqkrdd&eu=http%3A%2F%2Fbgitopazdowntown.ddireal.vn%2Fwp-content%2Fthemes%2Ftwentytwenty%2Fclasses%2Fwells%2Femailerror.php
200 OK 80 B URL HTTP/1.1 connect.secure.wellsfargo.com/AIDO/ay6u?d=ZW5jZEA2U2NOM2hLcFJZcHpOa3kvMFFXenhuOVBtKyt1M2JCNXkvTjhJbFJRQndxcUx5L01qT1FTZXBWcjNHRWdIYXdSSTZnUVJtZW1iNCtWZUpUdFUzdnFmUEFRMGQ0MWpjeS9FWERrbUtSeHJSYWdNcDVXUG95eUpoWW5UU3JHRmtmbnBzRTlPejcwU3kyWUtCa2Jrc2RDdlpNVVhwZUw3TDFnWHdwMzRpd2ZYdUR0cUp0L0I2UkIza3M2ek1KTEp0eFIvVHFpb3Q5ZzE4RFVDUCtWWkxUd2M4ZnB3ejNRSitOV3BtN2xNTGFzVjl4ZVM1eU5kTmNJLzRpbkN1a1ZydGcveTBYc2xSQ2lOSmszMVowZnhPd1RuTHFFN1JEYWpjVlh4SmNuSFhMNTFycEx0Q1hWUVM5YmR1QlI0QzhQdVNydXlCa1l1bmlwdnZpa1FYVHB0ZVEyVk1pd2lZdk8wVkE4UVZ3U3B0Mm9TTG1majJ6QnNXbGNmamVHU1psbVhWSFhlQUlLTEpvYUZqYXY1dWhSNjhhR3h4dHNDSFFib25aSzZ6Qlc1NWFUcVRQN0RmVWg5UFpPb1poTGhLdXR3UlJUWjduVE5LTzg0NkRQZmR0T3JKWEViaUo2WHRPMlh3RWswUHpheUtSeVpMdmN1US9vNlZ4STduQmhIV3p5UHYvWGZTcTZvNU4yVFN1YlhBZVIrM2V2SlBiTlIwYzJnSlc2bDltd0w3Q1BoZHh1SFNhT0FSUkhKSXBxc3lsUFZyK2VNd1ZaWnF6blBwMjRYbmxvVnNqNUNLSEU5VC8rWE8xTHBzY2x2L05wcXJCRjFRb29paHFtTDhlSHU5L3BRWjUzNWZNS2lwb1NkVUI1Wkh4cVAvV01iSUdBbVJZVGpVQlR6cWJsZFpweWw5b2lkamxyaE1POC9lNlpjWE5hbytlRXJQTlFqMFgxdnRKMDZ1enVod1NjUXZ5LytMNUJiMFhmcjlNK3RvSGI1Q0xTSHp5dUE3ZzU1WVIvSHh3YjBuWS9mdTFwL1EyZTFUZlkyanFTWlFjM21tSm1qVDkyYnlhSmVFTjJwM3pnNWlvPXw4YjVkNGM1YWMxZjBiZjc1M2RlMDc2NTNmMzAwNzk3ZWRhYWM3YWFkYjc5N2M4MTNjZjIyYTg0YTZmYThlM2RiMTNkYjNjYjY2MzA3Y2Q0YjNhNzExZWZmNzIyYjRmNTQxMzk1NzFjOTcwZTQxZjdiODYzYzM0ZDllNDJhZThhMDEyZDg4NWM2ZTU4Y2ViYjI5N2EwYjhmODZmN2RhNjA4M2QzZTYzNGI0NjhlMDJlNmU2MTNkZGMwYjZmNTQ4MzNhMTNmNzYzZmM4NTZjYWUzYTEyZjZmNTA1NmNhMTNkZjIzNDMwMjBlNzJkZThjZmUwZDI3Yzg2MzlmOGI3Y2YzYWQ0NzEwMzU5ZTlmNzJhNTA1NDk1YjI3NjQ2OWJkYzdkNzI0NzJiOTk0MTQyNDBhZmRjZWUyZDJkOGY5NmY1Mjc4MDg1ZWJlYzY4OGY0MDA3NGNkZWNjMzc3NTk5YjQ4ZjZiMTNmYmRhMDFlNDVmNzMxMDQwNzNlZWMwNmIzMzBmY2ZkODU5NTI3MjBmODQwZjM4ZTE0ZjllNjAyMjZjZjZiMzFiNTg1YmVjM2VlZTMyYTJiNTM3NTc0ZDZhOGMyNThiZTJmZTMwMmM5MDFlZjExOGVjODcwNmMyNmE2ODg3YjdmNWY0N2ZhYTZhM2MyMDFjMDQzZGZiZThlNWQxMXwwMGVlMGI2MmVjYWFjODlm&cid=34&si=3&e=http%3A%2F%2Fbgitopazdowntown.ddireal.vn&t=jsonp&c=qaekwqbaaglqkrdd&eu=http%3A%2F%2Fbgitopazdowntown.ddireal.vn%2Fwp-content%2Fthemes%2Ftwentytwenty%2Fclasses%2Fwells%2Femailerror.php
IP
ASN #20940 Akamai International B.V.
File type ASCII text, with no line terminators
Hash ad2a8e0ca5024b9cea4df9f02fcc0648
e85a309f7e8dc3af9cc58bdc1211c437eb2b4c16
b62e256d7fdb927f00dcc2d87f05691fa9b652e66c7b879bc30e1da48ea2712b
GET /AIDO/ay6u?d=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&cid=34&si=3&e=http%3A%2F%2Fbgitopazdowntown.ddireal.vn&t=jsonp&c=qaekwqbaaglqkrdd&eu=http%3A%2F%2Fbgitopazdowntown.ddireal.vn%2Fwp-content%2Fthemes%2Ftwentytwenty%2Fclasses%2Fwells%2Femailerror.php HTTP/1.1
Host: connect.secure.wellsfargo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bgitopazdowntown.ddireal.vn/
Cookie: ndcd=wc1.1.w-729460.1.2.1qAuR5FjCeYXee2EQk6Idg%252C%252C.BZ4ZHadBU5YH7lcosUq4-UYiSqiDCPtCmMKTcP1DbetPETksuDSYinaMCT689xEFuDqkZgPUfnq0Kqg_L-NJHk838Zt40AKrhTbWZ0fn19JaZRVSXTM-t6b54KjgYM_vFFTfQz2DBjnM6gpslp7Kc6BzyFAFPmn8Be9m1T-pQlWGIGFgLaWAzGKH2jfz-sAu
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: text/javascript
Content-Length: 80
max-age: 0
Expires: -1
X-XSS-Protection: 1; mode=block
Cache-Control: no-cache, no-store, must-revalidate
Pragma: no-cache
PICS-Label: (PICS-1.1 "http://www.icra.org/pics/vocabularyv03/" l r (n 0 s 0 v 0 l 0 oa 0 ob 0 oc 0 od 0 oe 0 of 0 og 0 oh 0 c 0) "http://www.icra.org/ratingsv02.html" l r (nz 0 vz 0 lz 0 oz 0 cz 0) "http://www.rsac.org/ratingsv01.html" l r (n 0 s 0 v 0 l 0))
P3P: CP="NOI ADM DEV PSAi COM NAV OUR OTR STP IND DEM"
Vary: Accept-Encoding
Date: Sun, 29 Jan 2023 03:19:48 GMT
Connection: keep-alive
Set-Cookie: ISD_AB_COOKIE=A; Max-Age=7200; path=/; Domain=connect.secure.wellsfargo.com; Secure; httpOnly
DCID=LAQkAI7XarTFJgc2MAc6nOPNX4BvlGOen+zK23EXmcPwsH6lYhRtOfiUXj84F3WJ; Domain=connect.secure.wellsfargo.com; Path=/; Expires=Sun, 29 Jan 2023 03:34:48 GMT;Httponly; Secure
_abck=5E932A400965A917237AB998BA8E8092~-1~YAAQvgplX4LUP8WFAQAAwMSJ+wn9HWJclBkAFiqsKukoVpm9BbMioACYYrdDfva1bKyFnsSEtoVS/Mwx4ujGFdtvcU9FGEJghkQY2eyPkzh5TcFFgjgH8wDX4n7/dPvTCzZcjUXMaMJQ2pWsSMfnGW0jxedzjNktlpGzVEy1ySGK7hTo+VQ7dqpkZqGxeH6kmGUCa2hOzaTOZo8icrm1WgT2bUcIH035Of6XlJtDxDP/4Tt6sOoeRmhQbDogt3bcVof4ybghkKS/8/u5OiHYGLmDxAkBAJeEa8cqYoO0u3sv+NGhjERyxF+rQLdrJkrGjHac1AJsmZEEnYNF/n5ZLZSZk1b6Yo4SjZef1zspET9vfh5pbuyu5frHW4lvPp+WoQ==~-1~-1~-1; Domain=.wellsfargo.com; Path=/; Expires=Mon, 29 Jan 2024 03:19:48 GMT; Max-Age=31536000; Secure
bm_sz=0EF05F1CDA7312D7DBAF139B693C4EE3~YAAQvgplX4PUP8WFAQAAwMSJ+xJQLd9UPN/W+87KSbW2kcqfbK7rMVXof94qvAMLNsAJGhDqHxd+Owm+OcoaLDzptpAwENiFnhhxbPcEEfPcIRo42Glal7gu1RctX/oTZxNxsk0PkzJDpwzuPdWQ/qY48Ry687qpQsN+8rlauSrZHwflTBZgxS1ZCtIGlWe4K3sORZ0eK37MydtIb+Zbc+hMU6p6WM5FyBQor7Qkvv8Yj5xWK1EfYfTq3vkN2UXjlFDJR7HtGzoTWvx1+b4IxrBvB0u2E8NxjJWujnzg0AVr+L3LtCdL~4403250~4339762; Domain=.wellsfargo.com; Path=/; Expires=Sun, 29 Jan 2023 07:19:47 GMT; Max-Age=14399
Strict-Transport-Security: max-age=31536000 ; includeSubDomains
connect.secure.wellsfargo.com/wDF9LrEEasiF/RYMeTVabF1/DZ/3uOLQwJhYm7u/cEMlcQYB/bF/13LzdxeQ0
201 Created 18 B URL HTTP/1.1 connect.secure.wellsfargo.com/wDF9LrEEasiF/RYMeTVabF1/DZ/3uOLQwJhYm7u/cEMlcQYB/bF/13LzdxeQ0
IP
ASN #20940 Akamai International B.V.
File type JSON data\012- , ASCII text, with no line terminators
Hash d9e31441c04c32264c6821f4ec958ca5
8516f62844b4264d3ccaab00350323d07b9c50ef
fcd6acab1a311e89ae1aef024707e986871eff4071c584de3e93970c5fc4a23d
POST /wDF9LrEEasiF/RYMeTVabF1/DZ/3uOLQwJhYm7u/cEMlcQYB/bF/13LzdxeQ0 HTTP/1.1
Host: connect.secure.wellsfargo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 2742
Origin: https://connect.secure.wellsfargo.com
Connection: keep-alive
Referer: https://connect.secure.wellsfargo.com/AIDO/convoy.html/discovercard.com/dfs/accounthome/summary/www.schwab.com/secure.accurint.com/unfcu2.org//login1/wachovia.com/MyAccounts.aspx/investing.schwab.com/secure/schwab///https://snsbank.nl/mijnsns/secure/login/httpsabph.pl/pi/do/Authorization/alfabank.ru/swedbank/pf.bgz.pl/httponline.eurobank.pl/?cid=5&si=3&e=http%3A%2F%2Fbgitopazdowntown.ddireal.vn&t=xframe&eu=http%3A%2F%2Fbgitopazdowntown.ddireal.vn%2Fwp-content%2Fthemes%2Ftwentytwenty%2Fclasses%2Fwells%2Femailerror.php&icid=167496239236792510
Cookie: ndcd=wc1.1.w-729460.1.2.1qAuR5FjCeYXee2EQk6Idg%252C%252C.BZ4ZHadBU5YH7lcosUq4-UYiSqiDCPtCmMKTcP1DbetPETksuDSYinaMCT689xEFuDqkZgPUfnq0Kqg_L-NJHk838Zt40AKrhTbWZ0fn19JaZRVSXTM-t6b54KjgYM_vFFTfQz2DBjnM6gpslp7Kc6BzyFAFPmn8Be9m1T-pQlWGIGFgLaWAzGKH2jfz-sAu
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 201 Created
Content-Length: 18
Date: Sun, 29 Jan 2023 03:19:48 GMT
Connection: keep-alive
Content-Type: application/json
Vary: Origin
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://connect.secure.wellsfargo.com
Access-Control-Allow-Headers: Content-Type
Strict-Transport-Security: max-age=31536000 ; includeSubDomains
Set-Cookie: DCID=X12Q6Mg+%2f2mAA2dA7FTufw%3d%3d; Domain=connect.secure.wellsfargo.com; Path=/; Expires=Thu, 01 Jan 1970 00:30:00 GMT;Httponly; Secure
DCID=X12Q6Mg+%2f2mAA2dA7FTufw%3d%3d; Domain=connect.secure.wellsfargo.com; Path=/; Expires=Thu, 01 Jan 1970 00:30:00 GMT;Httponly; Secure
_abck=A6060C167FD48EC185014938DA2AC5DA~-1~YAAQvgplX4TUP8WFAQAAHsWJ+wlUKZoA+1RxXFs4HRxAHvka88498nazoJD29iTQoTGNU9RmI4eAw0WGukcRuibOa8JDyfgFHeKQ5UTwiB22GmoapEFBK7WqO8LMIo2ndT2NQegG/fsdJXedZ/GNvmhyfWWXutwAf/LviuCit1jJzlJYu1jIG5moVu7WUkle2JsWpbKQnjwOg0cldwVMkO6nypm/MmzRLhY7CXIAZGFA/gyKX/goTeHjQueqJmsYMcJE3PIAPCbdASSnbKXO5EGdBTcooasLjPOzpeHMWZIwOodhQ7rO5p0uCTZbh4oap94Z0bnOh1Ien8ZF1edifzb5gfLiDl5iJivd1yP3kFyrS+dJc0ATJ4KsUmpiC+oN4g==~-1~-1~-1; Domain=.wellsfargo.com; Path=/; Expires=Mon, 29 Jan 2024 03:19:48 GMT; Max-Age=31536000; Secure
bm_sz=8E9FA236E2A4AA86E00D3ADA192433D0~YAAQvgplX4XUP8WFAQAAHsWJ+xKIys7GEdkl7WDifqOexbJnb7K0gi5rFwv6ZXs9Vf1u/mWnqTpQFPXgbwycNoNidDPyKj0bNk5ZBiRTk0nK78evMF4ANQfhl0fQMP/01Vm5XYcf3rVfqzSYbaCZo36wXx7Tl/YDXDunGrHNahGTFdmi7PRifZyH3v/3YYOgZy8+moFBHi0QFbe2FXQDFLOuUeEorCdjNDCfWJSqIelFV9RDyqL5T3SCsY7MgTsHI+iM/32Qh98z/3TFcBq2y3DrCg08CtQ1lJzGOBJ3v6CBWko4Ch97~4272454~4277299; Domain=.wellsfargo.com; Path=/; Expires=Sun, 29 Jan 2023 07:19:48 GMT; Max-Age=14400
connect.secure.wellsfargo.com/wDF9LrEEasiF/RYMeTVabF1/DZ/3uOLQwJhYm7u/cEMlcQYB/bF/13LzdxeQ0
201 Created 18 B URL HTTP/1.1 connect.secure.wellsfargo.com/wDF9LrEEasiF/RYMeTVabF1/DZ/3uOLQwJhYm7u/cEMlcQYB/bF/13LzdxeQ0
IP
ASN #20940 Akamai International B.V.
File type JSON data\012- , ASCII text, with no line terminators
Hash d9e31441c04c32264c6821f4ec958ca5
8516f62844b4264d3ccaab00350323d07b9c50ef
fcd6acab1a311e89ae1aef024707e986871eff4071c584de3e93970c5fc4a23d
POST /wDF9LrEEasiF/RYMeTVabF1/DZ/3uOLQwJhYm7u/cEMlcQYB/bF/13LzdxeQ0 HTTP/1.1
Host: connect.secure.wellsfargo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 3075
Origin: https://connect.secure.wellsfargo.com
Connection: keep-alive
Referer: https://connect.secure.wellsfargo.com/AIDO/gateway.html?sui=e874f8cadcccd196bca4d1b5d2a4f2e35b5602230c076cd2491f02487868b4b1
Cookie: ndcd=wc1.1.w-729460.1.2.1qAuR5FjCeYXee2EQk6Idg%252C%252C.BZ4ZHadBU5YH7lcosUq4-UYiSqiDCPtCmMKTcP1DbetPETksuDSYinaMCT689xEFuDqkZgPUfnq0Kqg_L-NJHk838Zt40AKrhTbWZ0fn19JaZRVSXTM-t6b54KjgYM_vFFTfQz2DBjnM6gpslp7Kc6BzyFAFPmn8Be9m1T-pQlWGIGFgLaWAzGKH2jfz-sAu
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 201 Created
Content-Length: 18
Date: Sun, 29 Jan 2023 03:19:48 GMT
Connection: keep-alive
Content-Type: application/json
Vary: Origin
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://connect.secure.wellsfargo.com
Access-Control-Allow-Headers: Content-Type
Strict-Transport-Security: max-age=31536000 ; includeSubDomains
Set-Cookie: DCID=0WweYFtB4GmMFOn+FoPSMA%3d%3d; Domain=connect.secure.wellsfargo.com; Path=/; Expires=Thu, 01 Jan 1970 00:30:00 GMT;Httponly; Secure
DCID=0WweYFtB4GmMFOn+FoPSMA%3d%3d; Domain=connect.secure.wellsfargo.com; Path=/; Expires=Thu, 01 Jan 1970 00:30:00 GMT;Httponly; Secure
_abck=090CEE59985FDDD460BFCD99F25FF68A~-1~YAAQvgplX4bUP8WFAQAA1sWJ+wlOM3ehA2+rgBRKowtFyOfZtb4RvIu5D5VlkT47dxfDCjDSF/6ykdGjbm7rs+fjG9I+WyEVBT0Fn+kormYLnXZYEJl6mr4sN3naSR/3v6RWtwOJ+9CWByiewlbYMXHivnWj1evM1JC15DTj5vTWvXsoa42Wph3SpdcINRA/nXDzl74XEEeNOP18TgXs/KHhSa1hSoPtZyUyvVxdBHzTNkKkmDwvatRsEh+5jwAzh8hlAUy9VZYGVHEl+Dx04yMs9qBQt4FA++BVBXzPwtZMRntXW0AyEigjYenxEHDs/x+TfVsTXJnEzFc9Al9PXLGpXT9yC2996RhcZkxiuAFGMLjjXwACMd9/Nmpf/jnuPA==~-1~-1~-1; Domain=.wellsfargo.com; Path=/; Expires=Mon, 29 Jan 2024 03:19:48 GMT; Max-Age=31536000; Secure
bm_sz=4AC2A234F1970B5CC0AA1CF67E3303C1~YAAQvgplX4fUP8WFAQAA1sWJ+xKnA9YcIDWqeEpn0Vd2qOTiWBQlYygKCEdWd5GI/og2ly9UyeMNZV5Fridyxrry+rn+yUdqvbq6J6CAYr/EnxL8PwEjuw4cgSm4lMZdImR4o1csJaUUAFuyOOKUZC1sfP0HBPfse6tWPkqTey2tGe2ZjM8ypgjk/2uKEd8u+zCUEhCF4B+cFvrk2DUZRm/734cPpVWHgQwilrK0vIEFYWuEwNY4MC5rPU6u42LkF9TMotb+P6P2t3pv3t9JwMwwqmkZX3b1y2VOQoedqSQcKxT9AcQ3~4272454~4277299; Domain=.wellsfargo.com; Path=/; Expires=Sun, 29 Jan 2023 07:19:48 GMT; Max-Age=14400
connect.secure.wellsfargo.com/wDF9LrEEasiF/RYMeTVabF1/DZ/3uOLQwJhYm7u/cEMlcQYB/bF/13LzdxeQ0
201 Created 18 B URL HTTP/1.1 connect.secure.wellsfargo.com/wDF9LrEEasiF/RYMeTVabF1/DZ/3uOLQwJhYm7u/cEMlcQYB/bF/13LzdxeQ0
IP
ASN #20940 Akamai International B.V.
File type JSON data\012- , ASCII text, with no line terminators
Hash d9e31441c04c32264c6821f4ec958ca5
8516f62844b4264d3ccaab00350323d07b9c50ef
fcd6acab1a311e89ae1aef024707e986871eff4071c584de3e93970c5fc4a23d
POST /wDF9LrEEasiF/RYMeTVabF1/DZ/3uOLQwJhYm7u/cEMlcQYB/bF/13LzdxeQ0 HTTP/1.1
Host: connect.secure.wellsfargo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 2509
Origin: https://connect.secure.wellsfargo.com
Connection: keep-alive
Referer: https://connect.secure.wellsfargo.com/AIDO/elegant.html?si=3&e=http%3A%2F%2Fbgitopazdowntown.ddireal.vn&t=xframe&eu=http%3A%2F%2Fbgitopazdowntown.ddireal.vn%2Fwp-content%2Fthemes%2Ftwentytwenty%2Fclasses%2Fwells%2Femailerror.php&icid=167496239237083087
Cookie: ndcd=wc1.1.w-729460.1.2.1qAuR5FjCeYXee2EQk6Idg%252C%252C.BZ4ZHadBU5YH7lcosUq4-UYiSqiDCPtCmMKTcP1DbetPETksuDSYinaMCT689xEFuDqkZgPUfnq0Kqg_L-NJHk838Zt40AKrhTbWZ0fn19JaZRVSXTM-t6b54KjgYM_vFFTfQz2DBjnM6gpslp7Kc6BzyFAFPmn8Be9m1T-pQlWGIGFgLaWAzGKH2jfz-sAu
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 201 Created
Content-Length: 18
Date: Sun, 29 Jan 2023 03:19:48 GMT
Connection: keep-alive
Content-Type: application/json
Vary: Origin
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://connect.secure.wellsfargo.com
Access-Control-Allow-Headers: Content-Type
Strict-Transport-Security: max-age=31536000 ; includeSubDomains
Set-Cookie: DCID=isLq1hxzYvvg8XmgZCGaPA%3d%3d; Domain=connect.secure.wellsfargo.com; Path=/; Expires=Thu, 01 Jan 1970 00:30:00 GMT;Httponly; Secure
DCID=isLq1hxzYvvg8XmgZCGaPA%3d%3d; Domain=connect.secure.wellsfargo.com; Path=/; Expires=Thu, 01 Jan 1970 00:30:00 GMT;Httponly; Secure
_abck=CF1E8FE6C6A419E45AE455F59E1B2973~-1~YAAQvgplX4jUP8WFAQAAkMaJ+wm6hRs3WkfwG6eXxo5TQfaBKDC0wqS/zD/EsxlvoraG/XXmRMFxYxpMACRUROUwYwq08vptz7jbhEE/+ROofr6gCFGgzXuRtBl5Iw3aFybwo+/6jPKkL9MDXC3YaF/HuSnomw7OXY+DkWgqZE1QkKPXYABZMZDbPV0U9DNGZnnzk61Z232G1YcovPGuPs3lN+OkiS3aW6myqB0KaWWt+M2skyHB4fUjne4u9FN65W0/Zev8TED1Mp3r87jcjHR4q3U9Ye0zqIwJSzNhs6+8ECkEntWq2os/83w+Q2u8iBsS1rUwN6zng9YxQginHjoXmIT73vnmUXCRKMcYP4M5tF9WPXSEUEk3Cp5iGQA2Ew==~-1~-1~-1; Domain=.wellsfargo.com; Path=/; Expires=Mon, 29 Jan 2024 03:19:48 GMT; Max-Age=31536000; Secure
bm_sz=48679CC899BB1F0DA9E7C8B0D2E225E4~YAAQvgplX4nUP8WFAQAAkMaJ+xLqWuzXHYiut3+VWD91DlTb8K+vsnbWMCl4WwZAaBbBFgfwbymZ4M4TB5M/0sUMj6h6xIn3Hlrwni8oh0tMShnI1jN4LhZ1kmq8jYdhliwzXvnaZk26wfEf3lQpjX/ulxh1tkBX6yg3S/beky4AgyqPk7dYDLP/McJ0ww+9nMjqH+lMNCy/9LJ2X91EhVkbAisZEWOPUx+TzU5AchDIN5qsASnNYMedtUCmU8xv1xhIjU1SGLg2RVKwwggezkMD174715HKxvW19kfIOTh98qUVmi0Y~4272454~4277299; Domain=.wellsfargo.com; Path=/; Expires=Sun, 29 Jan 2023 07:19:48 GMT; Max-Age=14400
connect.secure.wellsfargo.com/wDF9LrEEasiF/RYMeTVabF1/DZ/3uOLQwJhYm7u/cEMlcQYB/bF/13LzdxeQ0
201 Created 18 B URL HTTP/1.1 connect.secure.wellsfargo.com/wDF9LrEEasiF/RYMeTVabF1/DZ/3uOLQwJhYm7u/cEMlcQYB/bF/13LzdxeQ0
IP
ASN #20940 Akamai International B.V.
File type JSON data\012- , ASCII text, with no line terminators
Hash d9e31441c04c32264c6821f4ec958ca5
8516f62844b4264d3ccaab00350323d07b9c50ef
fcd6acab1a311e89ae1aef024707e986871eff4071c584de3e93970c5fc4a23d
POST /wDF9LrEEasiF/RYMeTVabF1/DZ/3uOLQwJhYm7u/cEMlcQYB/bF/13LzdxeQ0 HTTP/1.1
Host: connect.secure.wellsfargo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 2676
Origin: https://connect.secure.wellsfargo.com
Connection: keep-alive
Referer: https://connect.secure.wellsfargo.com/AIDO/convoy.html/discovercard.com/dfs/accounthome/summary/www.schwab.com/secure.accurint.com/unfcu2.org//login1/wachovia.com/MyAccounts.aspx/investing.schwab.com/secure/schwab///https://snsbank.nl/mijnsns/secure/login/httpsabph.pl/pi/do/Authorization/alfabank.ru/swedbank/pf.bgz.pl/httponline.eurobank.pl/?cid=5&si=3&e=http%3A%2F%2Fbgitopazdowntown.ddireal.vn&t=xframe&eu=http%3A%2F%2Fbgitopazdowntown.ddireal.vn%2Fwp-content%2Fthemes%2Ftwentytwenty%2Fclasses%2Fwells%2Femailerror.php&icid=167496239236792510
Cookie: ndcd=wc1.1.w-729460.1.2.1qAuR5FjCeYXee2EQk6Idg%252C%252C.BZ4ZHadBU5YH7lcosUq4-UYiSqiDCPtCmMKTcP1DbetPETksuDSYinaMCT689xEFuDqkZgPUfnq0Kqg_L-NJHk838Zt40AKrhTbWZ0fn19JaZRVSXTM-t6b54KjgYM_vFFTfQz2DBjnM6gpslp7Kc6BzyFAFPmn8Be9m1T-pQlWGIGFgLaWAzGKH2jfz-sAu
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 201 Created
Content-Length: 18
Date: Sun, 29 Jan 2023 03:19:48 GMT
Connection: keep-alive
Content-Type: application/json
Vary: Origin
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://connect.secure.wellsfargo.com
Access-Control-Allow-Headers: Content-Type
Strict-Transport-Security: max-age=31536000 ; includeSubDomains
Set-Cookie: DCID=ZGpgZlJ%2fz0qd8rMor854mg%3d%3d; Domain=connect.secure.wellsfargo.com; Path=/; Expires=Thu, 01 Jan 1970 00:30:00 GMT;Httponly; Secure
DCID=ZGpgZlJ%2fz0qd8rMor854mg%3d%3d; Domain=connect.secure.wellsfargo.com; Path=/; Expires=Thu, 01 Jan 1970 00:30:00 GMT;Httponly; Secure
_abck=2F69976439B2A38D74386293D28591A7~-1~YAAQvgplX4rUP8WFAQAAEseJ+wkIS/l7+yX726kM510KRsje4+3j4QRhtoSrLDHKGsYEiqQBZTcMKOQcBPSyjaQHVdu83gUGEA2KD+VDiUbceIpBuOEaRRhckG7OtafGHqeBcq8H/0wgC67YOfRRzgyhTEgL7fRPnzNPjzwgR5OcPcbKH1gkwvHvhIFxNBB/5v0G8dyWPlXOJu3cHDOQOElelUIboejz1zMLnsO3mQ23vC+N/araLTuBASU+C+dsKVwNJ3tH9YUtSMzOFLdXO2iq7h4pxw6vFkH19P4dl6Y/ZC98ClFHCWnOFPPvGKM3mUbTg0onKXYIdiwTqpfHY71zrPl43ZrqAXLKgsQmLVcu1Fn2OCgwOOM5GZpSjXcwcA==~-1~-1~-1; Domain=.wellsfargo.com; Path=/; Expires=Mon, 29 Jan 2024 03:19:48 GMT; Max-Age=31536000; Secure
bm_sz=87837B3552E80652D68C4D2EFC430043~YAAQvgplX4vUP8WFAQAAEseJ+xJ1dmW/WBJN50+Pk3e1aE24Q7QKkA06TqmdZ67QgRIpTpy1Qn0lVpkGQa2RgsSaU9mPdgdwHFvVEIzqRwGFBUVTnq+vVYoK4DKmZ+uxzmKGdxCpdaOrkT37MunF5fgiMO/5H2poV8MC94TP0SA2EO6eL0KCEVQMrg/fIcGVUvr5X3s5G2/Qt61g68bqNCWUpa0AJwVn+wPfkSf50zS2hV4KVov3l34PyL6/MYNfway7o0dp6OafWRIUG5KSyc3j9qTV4jCzhi13uiksCGt2AF+KatrW~4272454~4277299; Domain=.wellsfargo.com; Path=/; Expires=Sun, 29 Jan 2023 07:19:48 GMT; Max-Age=14400
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdd9499d0-2a81-41ee-b328-0d82ea64b349.jpeg
200 OK 5.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdd9499d0-2a81-41ee-b328-0d82ea64b349.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 57ff6665d99a17d06b75c8fe64c90ab3
05648eed6830a794aa7e30ba4da526ed4c45b0ca
728b809756a0faff1a55bb03f13f33e31518f321e50dd944a0267d585c09264c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdd9499d0-2a81-41ee-b328-0d82ea64b349.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 5198
x-amzn-requestid: 8117f45b-926a-4cbe-b152-dae983bc3526
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fOYdlG6XIAMF_vA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63cf3abd-7ce531f65f66ac3a73970841;Sampled=0
x-amzn-remapped-date: Tue, 24 Jan 2023 01:56:13 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 9qRYwsM8g7XZPY2E-9puCMAp7VKUvdIiK8jA0wr0XSpnMScoQYCwGw==
via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 caf6806821bc479b28a6f1ce3043b8a6.cloudfront.net (CloudFront), 1.1 google
date: Sat, 28 Jan 2023 21:46:47 GMT
age: 19985
etag: "05648eed6830a794aa7e30ba4da526ed4c45b0ca"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
116.118.50.194
34.160.144.191
95.101.10.152
93.184.220.29
104.18.32.68